| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Virus? (Neue Startseite etc.)Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
08.09.2018, 20:45
| #1 |
 |  Virus? (Neue Startseite etc.) Hallo, ich möchte auch mal wieder um Eure Hilfe bitten. Ich war vorhin im Netz unterwegs und habe auf eines meiner Lesezeichen (schon vor langerZeit gesetzt und nie ein Problem) geklickt. Statt der gewünschten Seite öffnete sich eine andere. Ich hatte zunächst gedacht, ich habe auf der gewünschten Seite aus Versehen auf eine Werbung geklickt und bin dann auf den Zurück-Pfeil gegangen, doch die Seite blieb. Also einmal lange auf den Zurückpfeil und der Seitenname (hab ich mir leider nicht gemerkt) füllte die gesamte Historie dieses Tabs. Ich hab dann den Browser (FF) geschlossen und wollte mein Antivir drüberlaufen lassen, das dann sagte, seit 3 Tagen nicht mehr upgedatet und "Fehler beim Update". Also auf Update geklickt, da hieß es, ich müsse neu starten. Wollte das machen, der Neu starten Bildschirm kam und blieb. Nach mehreren Minuten hab ich dann einen Kaltstart gemacht, Antivir upgedatet und drüberlaufen (Komplettchck) lassen - Ohne Befund. Mein Browser hat jetzt allerdings eine neue Startseite (sm DOT de), beim googlen sagte es etwas vom "Clear Think"-Virus? Antivir hat, wie gesagt nichts gefunden, daher bin ich mir jetzt doch sehr unsicher und hoffe, Ihr könnt mir helfen, um sicherzugehen, daß mein System sauber ist? Ich habe FRST 64-Bit schon einmal drüberlaufen lassen, hier die Protokolle: FRST text: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 23.08.2018
durchgeführt von theod (08-09-2018 21:33:46)
Gestartet von C:\Users\theod\Desktop
Windows 10 Home Version 1803 17134.228 (X64) (2018-06-23 18:19:20)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1673751870-2414484956-341457126-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1673751870-2414484956-341457126-503 - Limited - Disabled)
Gast (S-1-5-21-1673751870-2414484956-341457126-501 - Limited - Disabled)
theod (S-1-5-21-1673751870-2414484956-341457126-1001 - Administrator - Enabled) => C:\Users\theod
WDAGUtilityAccount (S-1-5-21-1673751870-2414484956-341457126-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3029 - Acer Incorporated)
Acer Collection (HKLM-x32\...\{8CD449EA-BBA0-477F-AFF9-9AF6E8C50EF2}) (Version: 1.01.3011 - Acer Incorporated)
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3014 - Acer Incorporated)
Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.03.3004 - Acer Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
App Explorer (HKU\S-1-5-19\...\Host App Service) (Version: 0.272.1.295 - SweetLabs) <==== ACHTUNG
App Explorer (HKU\S-1-5-20\...\Host App Service) (Version: 0.272.1.295 - SweetLabs) <==== ACHTUNG
App Explorer (HKU\S-1-5-21-1673751870-2414484956-341457126-1001\...\Host App Service) (Version: 0.273.2.800 - SweetLabs) <==== ACHTUNG
Arles Image Web Page Creator 7.4.3 (HKLM-x32\...\Arles Image Web Page Creator_is1) (Version: - )
Avira (HKLM-x32\...\{532da46c-2aa3-4588-a4a2-b02bc641bf95}) (Version: 1.2.119.17994 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{9620D4C2-CF5B-4DBE-8103-CC9DAB0871C6}) (Version: 1.2.119.17994 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.40.12 - Avira Operations GmbH & Co. KG)
Dashlane Upgrade Service (HKLM-x32\...\Dashlane Upgrade Service) (Version: 2.1.17.0 - Dashlane, Inc.)
Dolby Audio X2 Windows API SDK (HKLM\...\{F994125B-7BF5-4A38-A569-82833CEB24DC}) (Version: 0.8.4.83 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{EF9495BF-843A-4F81-ACC5-40F51748D462}) (Version: 0.8.4.73 - Dolby Laboratories, Inc.)
ELAN FingerPrint (HKLM\...\ElanFP) (Version: 1.6.8.102 - ELAN Microelectronic Corp.)
ElsterFormular (HKLM-x32\...\{0AEAC7E9-C2F6-438C-BF5D-9938549C71B1}) (Version: 19.5 - Thüringer Landesfinanzdirektion)
FileZilla Client 3.36.0 (HKU\S-1-5-21-1673751870-2414484956-341457126-1001\...\FileZilla Client) (Version: 3.36.0 - Tim Kosse)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1028 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4749 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.7.0.1014 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1713.2 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan)
Microsoft OneDrive (HKU\S-1-5-21-1673751870-2414484956-341457126-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Mozilla Firefox 62.0 (x64 de) (HKLM\...\Mozilla Firefox 62.0 (x64 de)) (Version: 62.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 62.0.0.6816 - Mozilla)
Mozilla Thunderbird 52.9.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 52.9.1 (x86 de)) (Version: 52.9.1 - Mozilla)
NetObjects Fusion 8 (HKLM-x32\...\{08E13613-9064-472E-AA5C-46B9B4C83146}) (Version: 8 - )
NVIDIA 3D Vision Treiber 388.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.16 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Grafiktreiber 388.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.16 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{F0C909D7-D643-4628-8C6A-94073139F0CE}) (Version: 4.15.9789 - Apache Software Foundation)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
Pixum Fotowelt (HKLM-x32\...\Pixum Fotowelt) (Version: 6.3.1 - CEWE Stiftung u Co. KGaA)
Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10434 - Qualcomm)
Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.312 - Qualcomm Atheros)
Qweb Symbol (HKLM-x32\...\Qweb.de) (Version: 1.1 - Qweb Symbol) <==== ACHTUNG
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21299 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8224 - Realtek Semiconductor Corp.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
StarMoney (HKLM-x32\...\{74C19128-CCD0-4A3B-B67C-3FD6E740E9DE}) (Version: 5.0.3.44 - StarFinanz) Hidden
StarMoney (HKLM-x32\...\{853BFDCF-3401-4E8D-82B3-507411156D04}) (Version: 5.0.3.44 - StarFinanz) Hidden
StarMoney 10 S-Edition (HKLM-x32\...\{C290AC52-A49F-48C6-9B26-F5D76DC67BE8}) (Version: 10 - Star Finanz GmbH)
Startfenster-Replace (HKLM-x32\...\Startfenster-Replace.de) (Version: 1.0.3 - Startfenster-Replace) <==== ACHTUNG
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{54228DC1-0B27-4215-B2BE-4D07C521F242}) (Version: 2.33.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{B8B01E04-5393-4902-98E6-0E2787F03C80}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden
Updater (HKLM-x32\...\Updater) (Version: 1.0 - Updater) <==== ACHTUNG
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-2) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-3) (Version: 1.0.42.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2018-09-04] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igfxDTCM.dll [2017-08-01] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-30] (NVIDIA Corporation)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2018-09-04] (Avira Operations GmbH & Co. KG)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {05BE8846-B906-4573-B9B0-65822F5B2932} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe [2017-12-13] (Acer Incorporated)
Task: {1F4582B7-8238-40F2-B3E5-E9AA7B632FD9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {2C302AA6-080D-49B9-8BD1-09A95798D348} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2017-05-24] ()
Task: {315E4BE7-BFFC-42AC-BD0B-791149F2E6E3} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2017-06-06] (Acer Incorporated)
Task: {32238887-49EF-45D7-B5E2-2655102D7C91} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {378EACD9-BA1D-40EE-AA87-3FC541F2732D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-07] (Adobe Systems Incorporated)
Task: {39B1222E-048E-46EC-8BF1-7C98A2032937} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {3C851E4A-A38D-4630-805B-A731E82F9668} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2017-05-24] ()
Task: {40E2A55F-BCCC-49E2-B3CA-A664C9882FE0} - System32\Tasks\PicstreamAgent => C:\Program [Argument = Files (x86)\Acer\AOP Framework\uwplauncher.exe AcerIncorporated.6245439DEEE9E_48frkmn4z8aw4!abPhoto]
Task: {5958FF10-7B51-4F54-8555-08C15CD2F8E6} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2017-02-24] (Intel(R) Corporation)
Task: {5990008D-70D0-4F22-AD7E-07982844DA0D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {5B26078B-092A-4329-8C58-68C23961905F} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2018-09-04] (Avira Operations GmbH & Co. KG)
Task: {63907506-FAB8-4A51-83FB-B26E132BAA15} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {7A69FD06-6A0E-4240-823E-32020A7F085D} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe [2017-12-14] ()
Task: {84A466A0-8E9B-4456-BB5D-9DFA2114A142} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2017-05-23] (TODO: <Company name>)
Task: {87AAF15F-EB11-499E-9F59-2EFCE23B78FB} - System32\Tasks\AcerCloud => C:\ProgramData\acer\Acer Portal\launchPortal.exe [2017-06-07] ()
Task: {8E189374-9F2E-4A13-B5CC-A5E1AA415C03} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {9160DE52-E82E-4CE7-8B32-800EE2A5BF08} - System32\Tasks\MonitorAcerPortal => C:\ProgramData\acer\Acer Portal\monitorPortal.exe [2017-06-07] ()
Task: {98F2110A-212C-4978-A952-77AA57B832A4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {9BB86C93-F384-44FA-8B90-DC54A9760E0E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-09-07] (Adobe Systems Incorporated)
Task: {B8DE3AEF-220A-4DD8-9B7B-BF7B066045B5} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2017-06-06] (Acer Incorporated)
Task: {B93B4CA4-213A-458A-A3B8-A432C99C4C0A} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [2016-09-20] ()
Task: {BDF49CD9-C569-4463-8A7E-F91600037CD1} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [2017-05-24] ()
Task: {C970A5C1-8A4D-45BD-89E3-79136FBE15A7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {D1DF1F8E-1E78-492B-BF04-971FEBB39C2A} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {D694488E-E527-4B4E-ADA1-22C613C07979} - System32\Tasks\App Explorer => C:\Users\theod\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [2018-06-20] (SweetLabs, Inc) <==== ACHTUNG
Task: {DE695F94-BD6A-4340-B77E-87EA73EA4788} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {EF1A4675-046A-4754-AFB4-2B0E9AEFFBC5} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [2017-06-06] (Acer Incorporated)
Task: {FABFCD26-C218-4016-B1C0-7F7F533A497F} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\theod\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.startfenster.de/tab
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.startfenster.de/tab
ShortcutWithArgument: C:\Users\Public\Desktop\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.startfenster.de/tab
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-12-26 15:40 - 2017-07-28 10:42 - 000423016 ____N () C:\WINDOWS\system32\cAVS\Intel(R) Audio Service\IntelSstPpDll.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2017-12-26 15:58 - 2017-06-07 10:04 - 000111320 _____ () C:\Program Files (x86)\Acer\AOP Framework\Clearfishellext_x64.dll
2018-08-27 13:57 - 2018-08-27 13:57 - 000054440 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-08-15 12:05 - 2018-08-03 05:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-16 22:56 - 2018-07-16 22:58 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-07-16 22:56 - 2018-07-16 22:58 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-07-16 22:56 - 2018-07-16 22:58 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-07-16 22:56 - 2018-07-16 22:58 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll
2018-07-16 22:56 - 2018-07-16 22:58 - 000653824 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-07-16 22:56 - 2018-07-16 22:58 - 000146432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.Proxies.dll
2018-08-11 09:45 - 2018-08-11 09:46 - 035124224 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-08-11 09:45 - 2018-08-11 09:46 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-08-11 09:45 - 2018-08-11 09:46 - 006417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-04-17 18:03 - 2018-04-17 18:07 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-08-11 09:45 - 2018-08-11 09:46 - 009010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2017-12-26 15:58 - 2017-12-26 15:58 - 000052736 _____ () C:\Program Files\WindowsApps\AcerIncorporated.AcerPortal_1.1.9.0_x86__48frkmn4z8aw4\Acer Portal\monitorPortal.exe
2017-12-14 18:10 - 2017-12-14 18:10 - 000479024 _____ () C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe
2017-05-24 21:11 - 2017-05-24 21:11 - 004645168 _____ () C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
2018-08-27 22:27 - 2018-08-27 22:29 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-08-27 22:27 - 2018-08-27 22:29 - 069283840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-04-17 18:23 - 2018-04-17 18:41 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-08-17 21:03 - 2018-08-17 21:07 - 000049664 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 003699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-05-04 08:33 - 2018-05-04 08:45 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-17 21:03 - 2018-08-17 21:07 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-17 21:03 - 2018-08-17 21:07 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-04-17 18:23 - 2018-04-17 18:41 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 014333440 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 003544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 002869248 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 10:48 - 2018-07-27 10:50 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-08-09 22:16 - 2018-08-09 22:15 - 000243352 _____ () C:\Program Files (x86)\Avira\Antivirus\ssl-44.dll
2018-08-09 22:16 - 2018-08-09 22:15 - 001204472 _____ () C:\Program Files (x86)\Avira\Antivirus\crypto-42.dll
2018-04-19 12:22 - 2016-01-28 15:33 - 001058624 _____ () C:\Program Files (x86)\StarMoney 10 S-Edition\ouservice\libxml2.dll
2018-04-19 12:22 - 2011-01-13 11:44 - 000232800 _____ () C:\Program Files (x86)\StarMoney 10 S-Edition\ouservice\PATCHW32.dll
2017-06-06 01:23 - 2017-06-06 01:23 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2017-12-26 15:58 - 2017-12-26 15:58 - 000202456 _____ () C:\Program Files\WindowsApps\AcerIncorporated.AcerPortal_1.1.9.0_x86__48frkmn4z8aw4\Acer Portal\curllib.dll
2017-12-26 15:58 - 2017-12-26 15:58 - 000119000 _____ () C:\Program Files\WindowsApps\AcerIncorporated.AcerPortal_1.1.9.0_x86__48frkmn4z8aw4\Acer Portal\OpenLDAP.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1673751870-2414484956-341457126-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\theod\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{7F078026-02EE-4C71-9131-03D5F142D357}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{9DDE1F98-0E9B-4A41-ABB2-12E3764C3450}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{86D49088-A0A8-4828-ABDE-5950223D2632}] => (Allow) C:\Program Files (x86)\StarMoney 10 S-Edition\app\StarMoney.exe
FirewallRules: [{ADA03585-92BF-4B93-A0AD-3DB310DAC76E}] => (Allow) C:\Program Files (x86)\StarMoney 10 S-Edition\app\StarMoney.exe
FirewallRules: [{338DB877-E50D-4309-8D04-5814F0524861}] => (Allow) C:\Program Files (x86)\StarMoney 10 S-Edition\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{27407DED-5DDC-4715-ADAB-0174CE5FF02C}] => (Allow) C:\Program Files (x86)\StarMoney 10 S-Edition\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{4B65C993-1345-464D-ADBC-C466512B9A5E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B7DE5F8D-5021-4D6D-AC06-5A555725AC0F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{95772DE8-2A8D-470E-96B8-560CFBE2F260}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{1083830C-A0B0-4B7C-BF5E-E277850B94F9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{83160944-BCA9-4EC9-B5EA-059B9B97EF78}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D93E4996-9D4F-4418-B69B-D920DBDA4922}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0005508F-7E12-430D-B3CA-CF1EA0CCD11F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{95241629-3CD2-4D6C-BB23-A941513E5DBC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{D5410E32-DDF9-4FF1-B488-5C570A3FDDB3}C:\program files\filezilla ftp client\filezilla.exe] => (Allow) C:\program files\filezilla ftp client\filezilla.exe
FirewallRules: [UDP Query User{1A04E1EB-130E-4617-A99B-B3EF4D2CFE12}C:\program files\filezilla ftp client\filezilla.exe] => (Allow) C:\program files\filezilla ftp client\filezilla.exe
FirewallRules: [{551DF6D9-258C-4BDE-957D-BD653536B1A9}] => (Block) C:\program files\filezilla ftp client\filezilla.exe
FirewallRules: [{C341D089-4FBA-4E88-B19E-57736DD82738}] => (Block) C:\program files\filezilla ftp client\filezilla.exe
==================== Wiederherstellungspunkte =========================
22-08-2018 12:33:44 Geplanter Prüfpunkt
31-08-2018 19:17:02 Geplanter Prüfpunkt
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/04/2018 09:16:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: RAVBg64.exe, Version: 1.0.0.278, Zeitstempel: 0x596c231e
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.17134.228, Zeitstempel: 0x6d15b6d7
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000f4d1b
ID des fehlerhaften Prozesses: 0x19c
Startzeit der fehlerhaften Anwendung: 0x01d44435ba77daa5
Pfad der fehlerhaften Anwendung: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: ad91ba79-e15d-4fec-8191-35cada6982d8
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (09/04/2018 03:58:14 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-8ADNS30D)
Description: httphttp-2147467263
Error: (09/04/2018 03:45:17 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-8ADNS30D)
Description: httphttp-2147467263
Error: (09/03/2018 01:34:43 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-8ADNS30D)
Description: httphttp-2147467263
Error: (09/02/2018 10:36:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MicrosoftEdgeCP.exe, Version: 11.0.17134.228, Zeitstempel: 0x5b63c801
Name des fehlerhaften Moduls: edgehtml.dll, Version: 11.0.17134.228, Zeitstempel: 0x5b38eec2
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000005ebdfd
ID des fehlerhaften Prozesses: 0x6c4
Startzeit der fehlerhaften Anwendung: 0x01d441d0c6568e13
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\edgehtml.dll
Berichtskennung: 43eee519-c611-4a03-aa12-5a8de32e080b
Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ContentProcess
Error: (08/29/2018 07:44:43 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Fehler beim Aktualisieren des -Status auf SECURITY_PRODUCT_STATE_ON.
Error: (08/29/2018 07:44:43 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Fehler beim Aktualisieren des -Status auf SECURITY_PRODUCT_STATE_ON.
Error: (08/29/2018 07:34:43 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Fehler beim Aktualisieren des -Status auf SECURITY_PRODUCT_STATE_ON.
Systemfehler:
=============
Error: (09/08/2018 09:04:08 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/08/2018 08:56:13 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Start" für die COM-Serveranwendung mit der CLSID
Windows.SecurityCenter.WscBrokerManager
und der APPID
Nicht verfügbar
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/08/2018 08:54:48 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/08/2018 08:54:44 PM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-8ADNS30D)
Description: Ein DCOM-Server konnte nicht gestartet werden: microsoft.windowscommunicationsapps_16005.10730.20064.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca als Nicht verfügbar/Nicht verfügbar. Fehler:
"0"
Aufgetreten beim Start dieses Befehls:
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.10730.20064.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
Error: (09/08/2018 08:54:44 PM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-8ADNS30D)
Description: Ein DCOM-Server konnte nicht gestartet werden: microsoft.windowscommunicationsapps_16005.10730.20064.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca als Nicht verfügbar/Nicht verfügbar. Fehler:
"298"
Aufgetreten beim Start dieses Befehls:
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.10730.20064.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
Error: (09/08/2018 08:54:31 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/08/2018 08:54:31 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/08/2018 08:54:02 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 08.09.2018 um 20:37:26 unerwartet heruntergefahren.
CodeIntegrity:
===================================
Date: 2018-06-29 09:55:01.193
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-s..-credentialprovider_31bf3856ad364e35_10.0.16299.15_none_1057d35f60b828e4\BioCredProv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:55:01.191
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-s..-credentialprovider_31bf3856ad364e35_10.0.16299.15_none_1057d35f60b828e4\BioCredProv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:55:01.189
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-s..-credentialprovider_31bf3856ad364e35_10.0.16299.15_none_1057d35f60b828e4\BioCredProv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:55:01.187
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-s..-credentialprovider_31bf3856ad364e35_10.0.16299.15_none_1057d35f60b828e4\BioCredProv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:54:58.202
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-security-spp-clientext_31bf3856ad364e35_10.0.16299.125_none_e4bdfa665037ae02\sppcext.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:54:58.199
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-security-spp-clientext_31bf3856ad364e35_10.0.16299.125_none_e4bdfa665037ae02\sppcext.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:54:58.196
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-security-spp-clientext_31bf3856ad364e35_10.0.16299.125_none_e4bdfa665037ae02\sppcext.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:54:58.193
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-security-spp-clientext_31bf3856ad364e35_10.0.16299.125_none_e4bdfa665037ae02\sppcext.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-7300HQ CPU @ 2.50GHz
Prozentuale Nutzung des RAM: 49%
Installierter physikalischer RAM: 8075.6 MB
Verfügbarer physikalischer RAM: 4116.06 MB
Summe virtueller Speicher: 11531.6 MB
Verfügbarer virtueller Speicher: 6730.38 MB
==================== Laufwerke ================================
Drive c: (Acer) (Fixed) (Total:237.36 GB) (Free:176.7 GB) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:707.5 GB) NTFS
\\?\Volume{5e5ed73a-65cc-4a77-be4d-56100ebdf999}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.59 GB) NTFS
\\?\Volume{f0a23464-6f84-4b28-8ca8-3365b51006c4}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 08375BCA)
Partition: GPT.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 08375BED)
Partition: GPT.
==================== Ende von Addition.txt ============================
Addition text: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 23.08.2018
durchgeführt von theod (08-09-2018 21:33:46)
Gestartet von C:\Users\theod\Desktop
Windows 10 Home Version 1803 17134.228 (X64) (2018-06-23 18:19:20)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1673751870-2414484956-341457126-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1673751870-2414484956-341457126-503 - Limited - Disabled)
Gast (S-1-5-21-1673751870-2414484956-341457126-501 - Limited - Disabled)
theod (S-1-5-21-1673751870-2414484956-341457126-1001 - Administrator - Enabled) => C:\Users\theod
WDAGUtilityAccount (S-1-5-21-1673751870-2414484956-341457126-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3029 - Acer Incorporated)
Acer Collection (HKLM-x32\...\{8CD449EA-BBA0-477F-AFF9-9AF6E8C50EF2}) (Version: 1.01.3011 - Acer Incorporated)
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3014 - Acer Incorporated)
Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.03.3004 - Acer Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.154 - Adobe Systems Incorporated)
App Explorer (HKU\S-1-5-19\...\Host App Service) (Version: 0.272.1.295 - SweetLabs) <==== ACHTUNG
App Explorer (HKU\S-1-5-20\...\Host App Service) (Version: 0.272.1.295 - SweetLabs) <==== ACHTUNG
App Explorer (HKU\S-1-5-21-1673751870-2414484956-341457126-1001\...\Host App Service) (Version: 0.273.2.800 - SweetLabs) <==== ACHTUNG
Arles Image Web Page Creator 7.4.3 (HKLM-x32\...\Arles Image Web Page Creator_is1) (Version: - )
Avira (HKLM-x32\...\{532da46c-2aa3-4588-a4a2-b02bc641bf95}) (Version: 1.2.119.17994 - Avira Operations GmbH & Co. KG)
Avira (HKLM-x32\...\{9620D4C2-CF5B-4DBE-8103-CC9DAB0871C6}) (Version: 1.2.119.17994 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.40.12 - Avira Operations GmbH & Co. KG)
Dashlane Upgrade Service (HKLM-x32\...\Dashlane Upgrade Service) (Version: 2.1.17.0 - Dashlane, Inc.)
Dolby Audio X2 Windows API SDK (HKLM\...\{F994125B-7BF5-4A38-A569-82833CEB24DC}) (Version: 0.8.4.83 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{EF9495BF-843A-4F81-ACC5-40F51748D462}) (Version: 0.8.4.73 - Dolby Laboratories, Inc.)
ELAN FingerPrint (HKLM\...\ElanFP) (Version: 1.6.8.102 - ELAN Microelectronic Corp.)
ElsterFormular (HKLM-x32\...\{0AEAC7E9-C2F6-438C-BF5D-9938549C71B1}) (Version: 19.5 - Thüringer Landesfinanzdirektion)
FileZilla Client 3.36.0 (HKU\S-1-5-21-1673751870-2414484956-341457126-1001\...\FileZilla Client) (Version: 3.36.0 - Tim Kosse)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.7.0.1028 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4749 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.7.0.1014 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1713.2 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{17408817-d415-4768-a160-ae6d46d6bdb0}) (Version: 10.1.1.44 - Intel(R) Corporation) Hidden
IrfanView 4.51 (64-bit) (HKLM\...\IrfanView64) (Version: 4.51 - Irfan Skiljan)
Microsoft OneDrive (HKU\S-1-5-21-1673751870-2414484956-341457126-1001\...\OneDriveSetup.exe) (Version: 18.131.0701.0007 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Mozilla Firefox 62.0 (x64 de) (HKLM\...\Mozilla Firefox 62.0 (x64 de)) (Version: 62.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 59.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 62.0.0.6816 - Mozilla)
Mozilla Thunderbird 52.9.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 52.9.1 (x86 de)) (Version: 52.9.1 - Mozilla)
NetObjects Fusion 8 (HKLM-x32\...\{08E13613-9064-472E-AA5C-46B9B4C83146}) (Version: 8 - )
NVIDIA 3D Vision Treiber 388.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 388.16 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.6.0.74 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.6.0.74 - NVIDIA Corporation)
NVIDIA Grafiktreiber 388.16 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 388.16 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0329 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0329 - NVIDIA Corporation)
NvNodejs (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvNodejs) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
NvTelemetry (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvTelemetry) (Version: 2.4.10.0 - NVIDIA Corporation) Hidden
NvvHci (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvvHci) (Version: 2.02.0.5 - NVIDIA Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{F0C909D7-D643-4628-8C6A-94073139F0CE}) (Version: 4.15.9789 - Apache Software Foundation)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
Pixum Fotowelt (HKLM-x32\...\Pixum Fotowelt) (Version: 6.3.1 - CEWE Stiftung u Co. KGaA)
Qualcomm Atheros 11ac Wireless LAN Installer (HKLM-x32\...\{20CA507E-24AA-4741-87CF-CC1B250790B7}) (Version: 11.0.10434 - Qualcomm)
Qualcomm Atheros Bluetooth Installer (64) (HKLM\...\{628988B4-3FA5-4EA6-BAA3-DA640F6718BD}) (Version: 10.0.0.312 - Qualcomm Atheros)
Qweb Symbol (HKLM-x32\...\Qweb.de) (Version: 1.1 - Qweb Symbol) <==== ACHTUNG
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21299 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.16.323.2017 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8224 - Realtek Semiconductor Corp.)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 7.1.0370 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController) (Version: 3.6.0.74 - NVIDIA Corporation) Hidden
StarMoney (HKLM-x32\...\{74C19128-CCD0-4A3B-B67C-3FD6E740E9DE}) (Version: 5.0.3.44 - StarFinanz) Hidden
StarMoney (HKLM-x32\...\{853BFDCF-3401-4E8D-82B3-507411156D04}) (Version: 5.0.3.44 - StarFinanz) Hidden
StarMoney 10 S-Edition (HKLM-x32\...\{C290AC52-A49F-48C6-9B26-F5D76DC67BE8}) (Version: 10 - Star Finanz GmbH)
Startfenster-Replace (HKLM-x32\...\Startfenster-Replace.de) (Version: 1.0.3 - Startfenster-Replace) <==== ACHTUNG
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{54228DC1-0B27-4215-B2BE-4D07C521F242}) (Version: 2.33.0.0 - Microsoft Corporation)
UpdateAssistant (HKLM\...\{B8B01E04-5393-4902-98E6-0E2787F03C80}) (Version: 1.13.0.0 - Microsoft Corporation) Hidden
Updater (HKLM-x32\...\Updater) (Version: 1.0 - Updater) <==== ACHTUNG
VLC media player (HKLM\...\VLC media player) (Version: 3.0.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-2) (Version: 1.0.42.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.0.42.0 (HKLM\...\VulkanRT1.0.42.0-3) (Version: 1.0.42.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-06-07] (Acer Incorporated)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2018-09-04] (Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igfxDTCM.dll [2017-08-01] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-30] (NVIDIA Corporation)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2018-09-04] (Avira Operations GmbH & Co. KG)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {05BE8846-B906-4573-B9B0-65822F5B2932} - System32\Tasks\Acer Collection Monitor Application => C:\Program Files (x86)\Acer\Acer Collection\ACEMon.exe [2017-12-13] (Acer Incorporated)
Task: {1F4582B7-8238-40F2-B3E5-E9AA7B632FD9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-05-03] (NVIDIA Corporation)
Task: {2C302AA6-080D-49B9-8BD1-09A95798D348} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2017-05-24] ()
Task: {315E4BE7-BFFC-42AC-BD0B-791149F2E6E3} - System32\Tasks\Power Button => C:\Program Files\Acer\Acer Quick Access\ePowerButton_NB.exe [2017-06-06] (Acer Incorporated)
Task: {32238887-49EF-45D7-B5E2-2655102D7C91} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {378EACD9-BA1D-40EE-AA87-3FC541F2732D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-09-07] (Adobe Systems Incorporated)
Task: {39B1222E-048E-46EC-8BF1-7C98A2032937} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {3C851E4A-A38D-4630-805B-A731E82F9668} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [2017-05-24] ()
Task: {40E2A55F-BCCC-49E2-B3CA-A664C9882FE0} - System32\Tasks\PicstreamAgent => C:\Program [Argument = Files (x86)\Acer\AOP Framework\uwplauncher.exe AcerIncorporated.6245439DEEE9E_48frkmn4z8aw4!abPhoto]
Task: {5958FF10-7B51-4F54-8555-08C15CD2F8E6} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [2017-02-24] (Intel(R) Corporation)
Task: {5990008D-70D0-4F22-AD7E-07982844DA0D} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-05-03] (NVIDIA Corporation)
Task: {5B26078B-092A-4329-8C58-68C23961905F} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2018-09-04] (Avira Operations GmbH & Co. KG)
Task: {63907506-FAB8-4A51-83FB-B26E132BAA15} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-05-03] (NVIDIA Corporation)
Task: {65B85F6F-35B3-4459-A179-28255D5B7B25} - System32\Tasks\Microsoft\Windows\HelloFace\FODCleanupTask => C:\WINDOWS\System32\WinBioPlugIns\FaceFodUninstaller.exe [2018-04-12] ()
Task: {7A69FD06-6A0E-4240-823E-32020A7F085D} - System32\Tasks\Acer Collection Application => C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe [2017-12-14] ()
Task: {84A466A0-8E9B-4456-BB5D-9DFA2114A142} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2017-05-23] (TODO: <Company name>)
Task: {87AAF15F-EB11-499E-9F59-2EFCE23B78FB} - System32\Tasks\AcerCloud => C:\ProgramData\acer\Acer Portal\launchPortal.exe [2017-06-07] ()
Task: {8E189374-9F2E-4A13-B5CC-A5E1AA415C03} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-05-03] (NVIDIA Corporation)
Task: {9160DE52-E82E-4CE7-8B32-800EE2A5BF08} - System32\Tasks\MonitorAcerPortal => C:\ProgramData\acer\Acer Portal\monitorPortal.exe [2017-06-07] ()
Task: {98F2110A-212C-4978-A952-77AA57B832A4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-05-03] (NVIDIA Corporation)
Task: {9BB86C93-F384-44FA-8B90-DC54A9760E0E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_154_Plugin.exe [2018-09-07] (Adobe Systems Incorporated)
Task: {B8DE3AEF-220A-4DD8-9B7B-BF7B066045B5} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [2017-06-06] (Acer Incorporated)
Task: {B93B4CA4-213A-458A-A3B8-A432C99C4C0A} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [2016-09-20] ()
Task: {BDF49CD9-C569-4463-8A7E-F91600037CD1} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [2017-05-24] ()
Task: {C970A5C1-8A4D-45BD-89E3-79136FBE15A7} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {D1DF1F8E-1E78-492B-BF04-971FEBB39C2A} - System32\Tasks\Microsoft\Windows\Setup\Notifier => C:\WINDOWS\system32\Notifier.exe
Task: {D694488E-E527-4B4E-ADA1-22C613C07979} - System32\Tasks\App Explorer => C:\Users\theod\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [2018-06-20] (SweetLabs, Inc) <==== ACHTUNG
Task: {DE695F94-BD6A-4340-B77E-87EA73EA4788} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-05-03] (NVIDIA Corporation)
Task: {EF1A4675-046A-4754-AFB4-2B0E9AEFFBC5} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [2017-06-06] (Acer Incorporated)
Task: {FABFCD26-C218-4016-B1C0-7F7F533A497F} - System32\Tasks\DashlaneUpgradeCheck => net [Argument = start "Dashlane Upgrade Service"]
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\theod\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.startfenster.de/tab
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.startfenster.de/tab
ShortcutWithArgument: C:\Users\Public\Desktop\Firefox.lnk -> C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.startfenster.de/tab
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-12-26 15:40 - 2017-07-28 10:42 - 000423016 ____N () C:\WINDOWS\system32\cAVS\Intel(R) Audio Service\IntelSstPpDll.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000491744 _____ () C:\Windows\System32\InputHost.dll
2017-12-26 15:58 - 2017-06-07 10:04 - 000111320 _____ () C:\Program Files (x86)\Acer\AOP Framework\Clearfishellext_x64.dll
2018-08-27 13:57 - 2018-08-27 13:57 - 000054440 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 000472064 _____ () C:\Windows\ShellExperiences\TileControl.dll
2018-04-12 01:34 - 2018-04-12 01:34 - 002759168 _____ () C:\Windows\ShellComponents\TaskFlowUI.dll
2018-08-15 12:05 - 2018-08-03 05:09 - 002185728 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-07-16 22:56 - 2018-07-16 22:58 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-07-16 22:56 - 2018-07-16 22:58 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2018-07-16 22:56 - 2018-07-16 22:58 - 022373888 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2018-07-16 22:56 - 2018-07-16 22:58 - 002610176 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\skypert.dll
2018-07-16 22:56 - 2018-07-16 22:58 - 000653824 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\RtmMvrUap.dll
2018-07-16 22:56 - 2018-07-16 22:58 - 000146432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.1815.210.0_x64__kzf8qxf38zg5c\SkypeHost.Proxies.dll
2018-08-11 09:45 - 2018-08-11 09:46 - 035124224 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Video.UI.exe
2018-08-11 09:45 - 2018-08-11 09:46 - 000290816 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\SharedUI.dll
2018-08-11 09:45 - 2018-08-11 09:46 - 006417408 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntCommon.dll
2018-04-17 18:03 - 2018-04-17 18:07 - 003553704 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-08-11 09:45 - 2018-08-11 09:46 - 009010176 _____ () C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.18071.11811.0_x64__8wekyb3d8bbwe\EntPlat.dll
2017-12-26 15:58 - 2017-12-26 15:58 - 000052736 _____ () C:\Program Files\WindowsApps\AcerIncorporated.AcerPortal_1.1.9.0_x86__48frkmn4z8aw4\Acer Portal\monitorPortal.exe
2017-12-14 18:10 - 2017-12-14 18:10 - 000479024 _____ () C:\Program Files (x86)\Acer\Acer Collection\ACEStd.exe
2017-05-24 21:11 - 2017-05-24 21:11 - 004645168 _____ () C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
2018-08-27 22:27 - 2018-08-27 22:29 - 000479232 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2018-08-27 22:27 - 2018-08-27 22:29 - 069283840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2018-04-17 18:23 - 2018-04-17 18:41 - 002523136 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\UnityEngineDelegates.dll
2018-08-17 21:03 - 2018-08-17 21:07 - 000049664 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\RenderingPlugin.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 003699200 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\MediaEngineCSWrapper.dll
2018-05-04 08:33 - 2018-05-04 08:45 - 000009216 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\ImagePipelineNative.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 000035328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\WinMLWrapper.UWP.dll
2018-08-17 21:03 - 2018-08-17 21:07 - 002480640 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\opencv_imgproc320.dll
2018-08-17 21:03 - 2018-08-17 21:07 - 002280960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\opencv_core320.dll
2018-04-17 18:23 - 2018-04-17 18:41 - 002283008 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\TrackingDLLUWP.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 014333440 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\PhotosApp.Windows.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 003544576 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\MediaEngine.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 002869248 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\AppCore.Windows.dll
2018-08-27 22:27 - 2018-08-27 22:29 - 000973312 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
2018-07-27 10:48 - 2018-07-27 10:50 - 004584960 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2018.18071.15310.1000_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
2018-08-09 22:16 - 2018-08-09 22:15 - 000243352 _____ () C:\Program Files (x86)\Avira\Antivirus\ssl-44.dll
2018-08-09 22:16 - 2018-08-09 22:15 - 001204472 _____ () C:\Program Files (x86)\Avira\Antivirus\crypto-42.dll
2018-04-19 12:22 - 2016-01-28 15:33 - 001058624 _____ () C:\Program Files (x86)\StarMoney 10 S-Edition\ouservice\libxml2.dll
2018-04-19 12:22 - 2011-01-13 11:44 - 000232800 _____ () C:\Program Files (x86)\StarMoney 10 S-Edition\ouservice\PATCHW32.dll
2017-06-06 01:23 - 2017-06-06 01:23 - 001244304 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2017-12-26 15:58 - 2017-12-26 15:58 - 000202456 _____ () C:\Program Files\WindowsApps\AcerIncorporated.AcerPortal_1.1.9.0_x86__48frkmn4z8aw4\Acer Portal\curllib.dll
2017-12-26 15:58 - 2017-12-26 15:58 - 000119000 _____ () C:\Program Files\WindowsApps\AcerIncorporated.AcerPortal_1.1.9.0_x86__48frkmn4z8aw4\Acer Portal\OpenLDAP.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1673751870-2414484956-341457126-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\theod\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{7F078026-02EE-4C71-9131-03D5F142D357}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{9DDE1F98-0E9B-4A41-ABB2-12E3764C3450}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [{86D49088-A0A8-4828-ABDE-5950223D2632}] => (Allow) C:\Program Files (x86)\StarMoney 10 S-Edition\app\StarMoney.exe
FirewallRules: [{ADA03585-92BF-4B93-A0AD-3DB310DAC76E}] => (Allow) C:\Program Files (x86)\StarMoney 10 S-Edition\app\StarMoney.exe
FirewallRules: [{338DB877-E50D-4309-8D04-5814F0524861}] => (Allow) C:\Program Files (x86)\StarMoney 10 S-Edition\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{27407DED-5DDC-4715-ADAB-0174CE5FF02C}] => (Allow) C:\Program Files (x86)\StarMoney 10 S-Edition\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{4B65C993-1345-464D-ADBC-C466512B9A5E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{B7DE5F8D-5021-4D6D-AC06-5A555725AC0F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{95772DE8-2A8D-470E-96B8-560CFBE2F260}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{1083830C-A0B0-4B7C-BF5E-E277850B94F9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{83160944-BCA9-4EC9-B5EA-059B9B97EF78}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{D93E4996-9D4F-4418-B69B-D920DBDA4922}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0005508F-7E12-430D-B3CA-CF1EA0CCD11F}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{95241629-3CD2-4D6C-BB23-A941513E5DBC}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{D5410E32-DDF9-4FF1-B488-5C570A3FDDB3}C:\program files\filezilla ftp client\filezilla.exe] => (Allow) C:\program files\filezilla ftp client\filezilla.exe
FirewallRules: [UDP Query User{1A04E1EB-130E-4617-A99B-B3EF4D2CFE12}C:\program files\filezilla ftp client\filezilla.exe] => (Allow) C:\program files\filezilla ftp client\filezilla.exe
FirewallRules: [{551DF6D9-258C-4BDE-957D-BD653536B1A9}] => (Block) C:\program files\filezilla ftp client\filezilla.exe
FirewallRules: [{C341D089-4FBA-4E88-B19E-57736DD82738}] => (Block) C:\program files\filezilla ftp client\filezilla.exe
==================== Wiederherstellungspunkte =========================
22-08-2018 12:33:44 Geplanter Prüfpunkt
31-08-2018 19:17:02 Geplanter Prüfpunkt
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/04/2018 09:16:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: RAVBg64.exe, Version: 1.0.0.278, Zeitstempel: 0x596c231e
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.17134.228, Zeitstempel: 0x6d15b6d7
Ausnahmecode: 0xc0000374
Fehleroffset: 0x00000000000f4d1b
ID des fehlerhaften Prozesses: 0x19c
Startzeit der fehlerhaften Anwendung: 0x01d44435ba77daa5
Pfad der fehlerhaften Anwendung: C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: ad91ba79-e15d-4fec-8191-35cada6982d8
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (09/04/2018 03:58:14 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-8ADNS30D)
Description: httphttp-2147467263
Error: (09/04/2018 03:45:17 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-8ADNS30D)
Description: httphttp-2147467263
Error: (09/03/2018 01:34:43 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: LAPTOP-8ADNS30D)
Description: httphttp-2147467263
Error: (09/02/2018 10:36:16 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MicrosoftEdgeCP.exe, Version: 11.0.17134.228, Zeitstempel: 0x5b63c801
Name des fehlerhaften Moduls: edgehtml.dll, Version: 11.0.17134.228, Zeitstempel: 0x5b38eec2
Ausnahmecode: 0xc0000602
Fehleroffset: 0x00000000005ebdfd
ID des fehlerhaften Prozesses: 0x6c4
Startzeit der fehlerhaften Anwendung: 0x01d441d0c6568e13
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\edgehtml.dll
Berichtskennung: 43eee519-c611-4a03-aa12-5a8de32e080b
Vollständiger Name des fehlerhaften Pakets: Microsoft.MicrosoftEdge_42.17134.1.0_neutral__8wekyb3d8bbwe
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ContentProcess
Error: (08/29/2018 07:44:43 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Fehler beim Aktualisieren des -Status auf SECURITY_PRODUCT_STATE_ON.
Error: (08/29/2018 07:44:43 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Fehler beim Aktualisieren des -Status auf SECURITY_PRODUCT_STATE_ON.
Error: (08/29/2018 07:34:43 PM) (Source: SecurityCenter) (EventID: 16) (User: )
Description: Fehler beim Aktualisieren des -Status auf SECURITY_PRODUCT_STATE_ON.
Systemfehler:
=============
Error: (09/08/2018 09:04:08 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/08/2018 08:56:13 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\SYSTEM" (SID: S-1-5-18) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Start" für die COM-Serveranwendung mit der CLSID
Windows.SecurityCenter.WscBrokerManager
und der APPID
Nicht verfügbar
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/08/2018 08:54:48 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/08/2018 08:54:44 PM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-8ADNS30D)
Description: Ein DCOM-Server konnte nicht gestartet werden: microsoft.windowscommunicationsapps_16005.10730.20064.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca als Nicht verfügbar/Nicht verfügbar. Fehler:
"0"
Aufgetreten beim Start dieses Befehls:
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.10730.20064.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
Error: (09/08/2018 08:54:44 PM) (Source: DCOM) (EventID: 10001) (User: LAPTOP-8ADNS30D)
Description: Ein DCOM-Server konnte nicht gestartet werden: microsoft.windowscommunicationsapps_16005.10730.20064.0_x64__8wekyb3d8bbwe!microsoft.windowslive.calendar.AppXwkn9j84yh1kvnt49k5r8h6y1ecsv09hs.mca als Nicht verfügbar/Nicht verfügbar. Fehler:
"298"
Aufgetreten beim Start dieses Befehls:
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.10730.20064.0_x64__8wekyb3d8bbwe\HxTsr.exe" -ServerName:Hx.IPC.Server
Error: (09/08/2018 08:54:31 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/08/2018 08:54:31 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (09/08/2018 08:54:02 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 08.09.2018 um 20:37:26 unerwartet heruntergefahren.
CodeIntegrity:
===================================
Date: 2018-06-29 09:55:01.193
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-s..-credentialprovider_31bf3856ad364e35_10.0.16299.15_none_1057d35f60b828e4\BioCredProv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:55:01.191
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-s..-credentialprovider_31bf3856ad364e35_10.0.16299.15_none_1057d35f60b828e4\BioCredProv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:55:01.189
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-s..-credentialprovider_31bf3856ad364e35_10.0.16299.15_none_1057d35f60b828e4\BioCredProv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:55:01.187
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-s..-credentialprovider_31bf3856ad364e35_10.0.16299.15_none_1057d35f60b828e4\BioCredProv.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:54:58.202
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-security-spp-clientext_31bf3856ad364e35_10.0.16299.125_none_e4bdfa665037ae02\sppcext.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:54:58.199
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-security-spp-clientext_31bf3856ad364e35_10.0.16299.125_none_e4bdfa665037ae02\sppcext.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:54:58.196
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-security-spp-clientext_31bf3856ad364e35_10.0.16299.125_none_e4bdfa665037ae02\sppcext.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2018-06-29 09:54:58.193
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows.old\WINDOWS\WinSxS\wow64_microsoft-windows-security-spp-clientext_31bf3856ad364e35_10.0.16299.125_none_e4bdfa665037ae02\sppcext.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5-7300HQ CPU @ 2.50GHz
Prozentuale Nutzung des RAM: 49%
Installierter physikalischer RAM: 8075.6 MB
Verfügbarer physikalischer RAM: 4116.06 MB
Summe virtueller Speicher: 11531.6 MB
Verfügbarer virtueller Speicher: 6730.38 MB
==================== Laufwerke ================================
Drive c: (Acer) (Fixed) (Total:237.36 GB) (Free:176.7 GB) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:707.5 GB) NTFS
\\?\Volume{5e5ed73a-65cc-4a77-be4d-56100ebdf999}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.59 GB) NTFS
\\?\Volume{f0a23464-6f84-4b28-8ca8-3365b51006c4}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.05 GB) FAT32
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 08375BCA)
Partition: GPT.
========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: 08375BED)
Partition: GPT.
==================== Ende von Addition.txt ============================
Vielen Dank! |
|
08.09.2018, 20:53
| #2 |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Virus? (Neue Startseite etc.) Hi,
__________________1. Internetseiten sind sehr dynamisch, nur weil ein Auftritt mal "früher" dawar heißt das nicht, dass man den in 5 oder 10 Jahren genauso wieder vorfindet 2. du hast Müll auf deinem Rechner, das ist thematisch was völlig anderes Avira bitte komplett deinstallieren Von Avira wird hier schon lange abgeraten, außerdem will ich für eine Analyse und Bereinigung so wenig Störquellen wie nur möglich. Zum Abschluss gibt es Hinweise zur Absicherung deines Windows-Systems. Wir deinstallieren dann am besten auch gleich weiteren unnötigen oder veralteten Krempel. Lade Dir bitte von hier  Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Gib Bescheid wenn das weg ist; wenn wir hier durch sind, kannst du auf einen anderen Virenscanner umsteigen, Infos folgen dann im Abschlussposting. Bitte JETZT nix mehr ohne Absprache installieren!
__________________ |
|
08.09.2018, 21:59
| #3 |
| | Virus? (Neue Startseite etc.) Hallo,
__________________okay. Möchte auch nicht diskutieren, aber zumindest den PDF Reader und Open Office brauche ich? Edit: Danke für die rasche Antwort! ;-) Habe jetzt alles (erst einmal außer Open Office, muß das wirklich sein?) deinstalliert wie vorgegeben. Nachtrag: Mußte nach dem Deinstallieren neu starten, um wirklich alles zu löschen - Danach war meine normale Startseite wieder da. Ich möchte aber natürlich trotzdem sichergehen, daß das System sauber ist. Geändert von Theodomus (08.09.2018 um 22:36 Uhr) |
|
08.09.2018, 23:07
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Virus? (Neue Startseite etc.) Meine Postings bitte richtig lesen, Open Office ist veraltet, AdobeReader ist total unnütz.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
09.09.2018, 08:23
| #5 |
| | Virus? (Neue Startseite etc.) Guten Morgen, sorry, ich hatte es so verstanden, daß es unnütz wäre. Dann werde ich es jetzt deinstallieren und wenn wir hier durch sind die neueste Version downloaden. (Zeigt mir komischerweise nicht - wie sonst - an, daß es ein Update gibt.) Was muss ich anschließend machen? |
|
10.09.2018, 08:24
| #6 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Virus? (Neue Startseite etc.) Schädlinge suchen mit Kaspersky TDSS-Killer Downloade dir bitte  TDSSKiller.exe und speichere diese Datei auf dem Desktop
 Lesestoff:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit. Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
__________________ --> Virus? (Neue Startseite etc.) |
|
10.09.2018, 08:45
| #7 |
| | Virus? (Neue Startseite etc.) Hallo, vielen Dank für die Rückmeldung. Der TDSSKiller hat nichts gefunden - Teil 1: Code:
ATTFilter 09:32:22.0256 0x2db0 TDSS rootkit removing tool 3.1.0.17 Apr 20 2018 12:12:17
09:32:22.0256 0x2db0 UEFI system
09:32:33.0072 0x2db0 ============================================================
09:32:33.0072 0x2db0 Current date / time: 2018/09/10 09:32:33.0072
09:32:33.0072 0x2db0 SystemInfo:
09:32:33.0072 0x2db0
09:32:33.0072 0x2db0 OS Version: 10.0.17134 ServicePack: 0.0
09:32:33.0072 0x2db0 Product type: Workstation
09:32:33.0072 0x2db0 ComputerName: LAPTOP-8ADNS30D
09:32:33.0072 0x2db0 UserName: theod
09:32:33.0072 0x2db0 Windows directory: C:\WINDOWS
09:32:33.0072 0x2db0 System windows directory: C:\WINDOWS
09:32:33.0072 0x2db0 Running under WOW64
09:32:33.0072 0x2db0 Processor architecture: Intel x64
09:32:33.0072 0x2db0 Number of processors: 4
09:32:33.0072 0x2db0 Page size: 0x1000
09:32:33.0072 0x2db0 Boot type: Normal boot
09:32:33.0072 0x2db0 CodeIntegrityOptions = 0x0000C001
09:32:33.0072 0x2db0 ============================================================
09:32:33.0103 0x2db0 KLMD registered as C:\WINDOWS\system32\drivers\02564781.sys
09:32:33.0103 0x2db0 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 17134.1, osProperties = 0x19
09:32:33.0135 0x2db0 System UUID: {189FD738-FAD5-AF20-3BA1-F4E9FD6E939E}
09:32:34.0900 0x2db0 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:32:34.0915 0x2db0 Drive \Device\Harddisk0\DR0 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
09:32:34.0915 0x2db0 ============================================================
09:32:34.0915 0x2db0 \Device\Harddisk1\DR1:
09:32:34.0915 0x2db0 GPT partitions:
09:32:34.0915 0x2db0 \Device\Harddisk1\DR1\Partition1: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F506D6EE-7EBB-406F-85DB-FBB6FEEE507A}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x74706000
09:32:34.0915 0x2db0 MBR partitions:
09:32:34.0915 0x2db0 \Device\Harddisk0\DR0:
09:32:34.0915 0x2db0 GPT partitions:
09:32:34.0915 0x2db0 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {F0A23464-6F84-4B28-8CA8-3365B51006C4}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000
09:32:34.0915 0x2db0 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {57CF44FF-F645-4F8C-A196-BA131EC4E948}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x8000
09:32:34.0915 0x2db0 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {A9542E0F-1D75-4BE1-A659-18C4F6828A31}, Name: Basic data partition, StartLBA 0x3A800, BlocksNum 0x1DAB8800
09:32:34.0915 0x2db0 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {5E5ED73A-65CC-4A77-BE4D-56100EBDF999}, Name: Basic data partition, StartLBA 0x1DAF3000, BlocksNum 0x200000
09:32:34.0915 0x2db0 MBR partitions:
09:32:34.0915 0x2db0 ============================================================
09:32:34.0915 0x2db0 C: <-> \Device\Harddisk0\DR0\Partition3
09:32:34.0947 0x2db0 D: <-> \Device\Harddisk1\DR1\Partition1
09:32:34.0947 0x2db0 ============================================================
09:32:34.0947 0x2db0 Initialize success
09:32:34.0947 0x2db0 ============================================================
09:34:41.0001 0x2c40 ============================================================
09:34:41.0001 0x2c40 Scan started
09:34:41.0001 0x2c40 Mode: Manual; SigCheck; TDLFS;
09:34:41.0001 0x2c40 ============================================================
09:34:41.0001 0x2c40 KSN ping started
09:34:41.0063 0x2c40 KSN ping finished: true
09:34:43.0039 0x2c40 ================ Scan system memory ========================
09:34:43.0039 0x2c40 System memory - ok
09:34:43.0039 0x2c40 ================ Scan services =============================
09:34:43.0086 0x2c40 [ 4B45A2D37CCE3CC0F161B7C7286081A6, DF4EBAA12E083AE45411AABD3EDE916E2CC6963FBA664861AC9B2351B5E042DC ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
09:34:43.0117 0x2c40 1394ohci - ok
09:34:43.0133 0x2c40 [ F5E5BA493B7C497F1F769942E2EA4CE2, 4AD54DA24142BCE49FB64CFF2CB28764FAA93827E7DB02925090B68F8C73B1FB ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
09:34:43.0133 0x2c40 3ware - ok
09:34:43.0148 0x2c40 [ CA51BB1B81F97E896E116C839B92D9D8, 09F73D8FB93EA524D3C9A9C264F62340560DC7042589597A318626A0A198F91F ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
09:34:43.0164 0x2c40 ACPI - ok
09:34:43.0180 0x2c40 [ 75795E4B19BB3ED8D3C25A17CD15DC30, 22A13064E0B472A0A2258D61A889B73EE3F537DA7796CCE39DF973AFA8FA1567 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
09:34:43.0180 0x2c40 AcpiDev - ok
09:34:43.0195 0x2c40 [ DDA0FC1400A24988A7D3E746AEDF2C0F, 3A703A204FDE46C67017C274CA1F50F591D909EE182A82697E89442D4A5569CE ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
09:34:43.0195 0x2c40 acpiex - ok
09:34:43.0211 0x2c40 [ 1F2EC25DA23D1DF3ADA12FE5A26D321C, B165D72949E43F04312C95BF0FF5C25CFE5CA0CDF43415E01AB2B1550D06C737 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
09:34:43.0211 0x2c40 acpipagr - ok
09:34:43.0226 0x2c40 [ 6AFFD57803BBB6FBCB483F983900A5C4, A3A87984E70C8B47F919D2633E6378F3AACCBF3E74DB3B35BB2E15D036DB36E2 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
09:34:43.0226 0x2c40 AcpiPmi - ok
09:34:43.0242 0x2c40 [ 0FC8673FAFC7D78C1CDC000F892CAC64, 33FB109ABD18FBF4DA5047BAA9FAF63E88D5BA1826442DB02F9130DAD11D15F2 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
09:34:43.0242 0x2c40 acpitime - ok
09:34:43.0273 0x2c40 AdobeFlashPlayerUpdateSvc - ok
09:34:43.0289 0x2c40 [ A3D4CF2F3A433BE18CD4AD3E6665DC63, 9D62A7E2DDA15B2E75490CCB9C8E10A41030F496A93631EDED5F1003DF368290 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
09:34:43.0320 0x2c40 ADP80XX - ok
09:34:43.0336 0x2c40 [ 4DCCC3E02A22ED4A4ADB11386F226071, 40BB183049DE3ADCC7A5B1B269620C8534291BB7A956157434C857DE249559EE ] AFD C:\WINDOWS\system32\drivers\afd.sys
09:34:43.0351 0x2c40 AFD - ok
09:34:43.0351 0x2c40 [ F267095A11A461BEF39FB180750BE801, CF90798C46892FF5225155D2C7BCC469A4A631E22919CBEDA2F4FEEF4F05E301 ] afunix C:\WINDOWS\system32\drivers\afunix.sys
09:34:43.0367 0x2c40 afunix - ok
09:34:43.0383 0x2c40 [ 0CD0F0C62414217DE9EA7EC8D425277E, FD211157B85B841D0C94B36776572FADC7425F1B0B49EACC910D3E175208A7EC ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
09:34:43.0398 0x2c40 ahcache - ok
09:34:43.0398 0x2c40 [ 2BF4DA8EC5F1A0D88D2DDE1E6821076B, B9F4D499DB4CB91576ACE4847B96F2FC770B9BCC223B5E2261B2DEC22D7651E7 ] AJRouter C:\WINDOWS\System32\AJRouter.dll
09:34:43.0414 0x2c40 AJRouter - ok
09:34:43.0430 0x2c40 [ 9E9D78D1C179EB2E3E2282A1DC409D93, EA7486B4425A87FDDD60542AAF0812A8DB868F569886B894883702B362A05D2C ] ALG C:\WINDOWS\System32\alg.exe
09:34:43.0445 0x2c40 ALG - ok
09:34:43.0445 0x2c40 [ 6DF48AD26E6285FB137F11328B64A376, 76FF9A753C262065E819E862E7950127472C5E6AB7E97B57977C6DCE6180760A ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
09:34:43.0461 0x2c40 AmdK8 - ok
09:34:43.0461 0x2c40 [ D8804032BCDE4077A6D8D431D12AC6CC, F017A3FEAB2919A9662A9BFEF31AE7B7EC19F1136C9D0DC6C48A415B540A8062 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
09:34:43.0476 0x2c40 AmdPPM - ok
09:34:43.0492 0x2c40 [ A88F5E24B65228FB25F2051B3408A0E4, C124B486839EA15D6806EB51E91EBF99401CD7D226541320A7A4934A8477DCEF ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
09:34:43.0492 0x2c40 amdsata - ok
09:34:43.0508 0x2c40 [ AECD39E51DABC2BF045B2857F02FA2BD, 83E2AC3200B6EA1586E4E0204D81CEAF303D7C9EBE7E5D1273A41A4EC1390E56 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
09:34:43.0508 0x2c40 amdsbs - ok
09:34:43.0508 0x2c40 [ B4CC9943230CAEB05B46CC30C220E141, 013716E6911136EB0916A1D592198DD7953800549DA0C885093D2BA3CC9BA2A7 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
09:34:43.0523 0x2c40 amdxata - ok
09:34:43.0539 0x2c40 [ 682B9997316AE9677F80F9ECF1BAE47C, A58278515A874132EF81BAEEDA1BFA0B0A863ADFBE6B75D4F9AE8318282EAC06 ] AntiVirMailService C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
09:34:43.0570 0x2c40 AntiVirMailService - ok
09:34:43.0570 0x2c40 [ 6107C3F7BB0C2C2083DE13823A8A5A15, 92EAF155FE106BCAACCE304A755A5B0932F31B6A061F419261FB30736C4CEAB6 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\Antivirus\sched.exe
09:34:43.0586 0x2c40 AntiVirSchedulerService - ok
09:34:43.0586 0x2c40 [ 6107C3F7BB0C2C2083DE13823A8A5A15, 92EAF155FE106BCAACCE304A755A5B0932F31B6A061F419261FB30736C4CEAB6 ] AntiVirService C:\Program Files (x86)\Avira\Antivirus\avguard.exe
09:34:43.0586 0x2c40 AntiVirService - ok
09:34:43.0617 0x2c40 [ 529380062E70CC0C77BD83BD0065B8F7, 8D33E63476F1A847B965A32624777F38AD3C57804F083AB67BA7AA9CD980868C ] AntiVirWebService C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
09:34:43.0633 0x2c40 AntiVirWebService - ok
09:34:43.0648 0x2c40 [ C3ECF8840E4EAF09A4F2AE0174D6F36A, F810A2158FAA4C6B086259125691E163696C67698BD447FE403E740131815F0B ] AppID C:\WINDOWS\system32\drivers\appid.sys
09:34:43.0648 0x2c40 AppID - ok
09:34:43.0648 0x2c40 [ F1A04835C7FA75C8215961C1095D5EBF, 45D153404E601C0CE247058B78F328DD9F7F4F6A9480132F7CE6D9A7092F63CF ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
09:34:43.0680 0x2c40 AppIDSvc - ok
09:34:43.0680 0x2c40 [ 48EA4B4CCC920D130529A1EF85388B6A, 31F69543682E70DF0A6B2A70FC7553ECEE643C554E7F8FF18A2DD09359360F8E ] Appinfo C:\WINDOWS\System32\appinfo.dll
09:34:43.0715 0x2c40 Appinfo - ok
09:34:43.0715 0x2c40 [ 769316CA5884FBBD02D45C28FE105922, 117168BFB2D8DBF1258EBA53DCE09E74000B35B7B7460251B4C46BDB9CEA709A ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
09:34:43.0722 0x2c40 applockerfltr - ok
09:34:43.0738 0x2c40 [ 636575088044E7271088BB8CFA382B45, DCD2CAD626E66AF98D31B9339A4A92FD94E99F335B48649529AC327B7AF52B9A ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
09:34:43.0769 0x2c40 AppReadiness - ok
09:34:43.0816 0x2c40 [ D0103AED7E772B792D46BB9A2BFDE555, ECCBB5F2D6352A033B2B0768874275BEFAD4FC5C68BB5F7CC5BD9727FEBAE12F ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
09:34:43.0909 0x2c40 AppXSvc - ok
09:34:43.0909 0x2c40 [ 013E057DF3D13A4462AD912D7732E7E0, 7C89AD5799091D17EAED682058559DBAE882D0E18C347B5AECE7BCCFD0E2D21C ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
09:34:43.0925 0x2c40 arcsas - ok
09:34:43.0925 0x2c40 [ B25ACCD9BE5F5798E9DD8FFB04D7BE4C, 87577AD2E4A47518B8101C67F1025CB3CD2ABBA678774A5926192FCD56EF1350 ] AsyncMac C:\WINDOWS\System32\drivers\asyncmac.sys
09:34:43.0956 0x2c40 AsyncMac - ok
09:34:43.0956 0x2c40 [ 90AB4ED8EBD72A1C096A40CC35404B91, C343466D439552D154BBD1A5F9D391CDD3FA298A712594EA27C3049E3516D1AF ] atapi C:\WINDOWS\system32\drivers\atapi.sys
09:34:43.0956 0x2c40 atapi - ok
09:34:43.0972 0x2c40 [ 9CA35025813BA1EE344185BD74EDC1E7, 7A834632F1CC03DE29B3021A82170377F00BBD3185C59CA2BFCCE68653F6DFAB ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
09:34:43.0991 0x2c40 AtherosSvc - ok
09:34:43.0991 0x2c40 [ 49C40F52EB06F9E9C8A14436F97AAEB8, F98E04CD9674C99BA1D1C63177AA81C628D505AED1DE4110500FC33A5C494864 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
09:34:44.0038 0x2c40 AudioEndpointBuilder - ok
09:34:44.0069 0x2c40 [ 50DE2E82D65B6006360660D085E80B8B, C279E90A975D71E193048BA324C99685CFF977A0D3B171B6BDFBDEF7FF7A084B ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
09:34:44.0116 0x2c40 Audiosrv - ok
09:34:44.0131 0x2c40 [ 13D8FBAED6686EC304FCDDD7CA847D9B, 57683EE89276EB1614344A7E2B68ADEAC7DC040A54F8C084375CA02D9387ABBE ] avdevprot C:\WINDOWS\system32\DRIVERS\avdevprot.sys
09:34:44.0131 0x2c40 avdevprot - ok
09:34:44.0147 0x2c40 [ 8EC344155765389CB6401F5F2DCE6819, DF6CFAC700DFE3B0E50816923DC514E3C6ADE2613D11CB15E047C2C508D3DFF9 ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
09:34:44.0147 0x2c40 avgntflt - ok
09:34:44.0147 0x2c40 [ 42A1A4C4A2EC4241B52794540A03C8C7, 0E6373466DDEF4DB17F7A90D9ADDBD1C2903E6D0C296A89AC635BA3B5DF694A8 ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
09:34:44.0163 0x2c40 avipbb - ok
09:34:44.0178 0x2c40 [ 8E1960ED88843D85E3334BEFB4C50672, FFFF6980F289B3CB06DA80568F627919906DCF6147A3B29E4955FBA10707DCD4 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
09:34:44.0178 0x2c40 Avira.ServiceHost - ok
09:34:44.0194 0x2c40 [ 2CBA09A7983B1D39531B768BCED08C20, B40968DFE1A648CCB9260033E1EA57B5D496274A335B000354156B0DB740EDE0 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
09:34:44.0194 0x2c40 avkmgr - ok
09:34:44.0194 0x2c40 [ 8D18C6406FF8DC39028177E1E5675182, 44985DEE74F235567FB849350256F342BCE26EF66439D761FA3F6EDA22882092 ] avnetflt C:\WINDOWS\system32\DRIVERS\avnetflt.sys
09:34:44.0209 0x2c40 avnetflt - ok
09:34:44.0209 0x2c40 [ 9C71227D9D0A6F929C97294842A988B1, 3C79297A19001902A48BAFEF545CFB70D51509FA704EAE716B1858D1A66386A0 ] avusbflt C:\WINDOWS\system32\Drivers\avusbflt.sys
09:34:44.0209 0x2c40 avusbflt - ok
09:34:44.0225 0x2c40 [ D7BFD86F7A9ABE39351199869D093110, 90BB2C0A8185D3982FEFAC7C1E18783AF949EBECA3B9E44DCF89E2FD5FD6AA0C ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
09:34:44.0241 0x2c40 AxInstSV - ok
09:34:44.0256 0x2c40 [ F10E4C9444A9FC6DCBAB2C42F6999FA1, 4238B6DD49CBADFE2C737AC1B211AE045F458DDF1693EE54608455C1ECE1BCCA ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
09:34:44.0272 0x2c40 b06bdrv - ok
09:34:44.0272 0x2c40 [ 982FAA5686F67BFEF3E6094705C2621F, 02456312B0FD0ABE7B7EEC0FB385268AF34DDB5F13AF934F96FCA7C32EA51447 ] bam C:\WINDOWS\system32\drivers\bam.sys
09:34:44.0272 0x2c40 bam - ok
09:34:44.0288 0x2c40 [ FA4973E379E872C61D0CF4E39F807833, 3320FAB0CF16BB1ABBBA222CC31D20B5AC7A4259DE4323B109A8F2FECC28C8A4 ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
09:34:44.0288 0x2c40 BasicDisplay - ok
09:34:44.0303 0x2c40 [ F024B80EA0076A318598DAB795F9C3D0, 6225A5FCD2B750A0E4FFFCCB1CDF49BAA7809A4B4AD7AB625A585CF4971CDE25 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
09:34:44.0303 0x2c40 BasicRender - ok
09:34:44.0334 0x2c40 [ 79C15322EC1CD5B6AE130D0518BF63C9, C1F365772C1BFBF35E8243548D744D77653ED9E61A8CB8ED02698E5A32AABE22 ] BcastDVRUserService C:\WINDOWS\System32\BcastDVRUserService.dll
09:34:44.0381 0x2c40 BcastDVRUserService - ok
09:34:44.0397 0x2c40 [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
09:34:44.0397 0x2c40 bcmfn2 - ok
09:34:44.0413 0x2c40 [ 255D1EA1F4EDA1B7B28A88581F12A1CE, 5B2D7F2EFA7BB539719890CF2E45568C544DD0EECEC44BBA56CCECB792E8BC44 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
09:34:44.0444 0x2c40 BDESVC - ok
09:34:44.0444 0x2c40 [ 9B068DF7B7B3DDF768D06DFD69B49FD0, DC2CD3A70506AEB1BCEB207A9B06657806E72C5432FA605FF9C6F11516F38132 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:34:44.0475 0x2c40 Beep - ok
09:34:44.0491 0x2c40 [ 0B9B6D7A2F31FBD63301D19B1B08238E, 7EF63C87FB2B9E0971B633BC86F99B12F8BBE188D53E0B105E44766A0657A67E ] BFE C:\WINDOWS\System32\bfe.dll
09:34:44.0527 0x2c40 BFE - ok
09:34:44.0527 0x2c40 [ BC1E5F20251E0AFDB955E7D91093B619, 5642E6B6CA6DBC8585834790A70CFF54252A631A9EA06D28F28EF7430FA42BE5 ] bindflt C:\WINDOWS\system32\drivers\bindflt.sys
09:34:44.0543 0x2c40 bindflt - ok
09:34:44.0558 0x2c40 [ 97F4C0B9741E06BAC6AD2D93ABCEAED8, 25FD58F4BA2F8EC99241A580352D1EC49924829C61D89353B30CCEEE2CEBADE7 ] BITS C:\WINDOWS\System32\qmgr.dll
09:34:44.0637 0x2c40 BITS - ok
09:34:44.0637 0x2c40 [ 30D75769E23CCFBE13DB41FC54243BB1, 4ED018F1DB103D3F354D8EF7DFE797028DBDF22294D355F6D38DF9C6AF61B69E ] BluetoothUserService C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll
09:34:44.0668 0x2c40 BluetoothUserService - ok
09:34:44.0683 0x2c40 [ 00C33AC3096BB64BACD5554A55025F8F, E13669966AA69A9C18E8932491F722F595666163DA2C6695C8F415AD55836B53 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
09:34:44.0683 0x2c40 bowser - ok
09:34:44.0699 0x2c40 [ 0E1A0E81EF4B33FFDE8EDA46EE38F0D4, F92E7FC14264F58EF79A10025D8375B7455A339B556AEE72A32FFE29278FAF23 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
09:34:44.0746 0x2c40 BrokerInfrastructure - ok
09:34:44.0762 0x2c40 [ 85F5808D19879E1803E46405090F29C8, E22E73BCE3B76BFBAC712DF1E5D7D38E189B80D1CE6E9A9AB3C94733CF18F04B ] BTAGService C:\WINDOWS\System32\BTAGService.dll
09:34:44.0793 0x2c40 BTAGService - ok
09:34:44.0793 0x2c40 [ 07740F2FC6470D0E51D19A5E9F8F11C8, AB3AD484EB564D950712E147CE083C5E460FCDE3602EA0F9F97A59D796C82F81 ] BtFilter C:\WINDOWS\system32\DRIVERS\btfilter.sys
09:34:44.0808 0x2c40 BtFilter - ok
09:34:44.0824 0x2c40 [ 063E91CD2CB1C372459FD6FBC02509E7, 29319290F73D8D87323584D938FBC86400AB37455E7E058A543A77F9BBF4579D ] BthAvctpSvc C:\WINDOWS\System32\BthAvctpSvc.dll
09:34:44.0855 0x2c40 BthAvctpSvc - ok
09:34:44.0855 0x2c40 [ E0121734C2492406034FA23E3D394EBD, E855EB12DD35CC47F68C5C6B1622560599C7074E274E510528196D47BDA56960 ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
09:34:44.0871 0x2c40 BthEnum - ok
09:34:44.0871 0x2c40 [ 02FEC31842DD153D966AC227B6DDF8BB, 90EEEA049212E5FE8EFA2ACED45DFB6ABAFEA6D40FB4E1E2681F65A417237163 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
09:34:44.0887 0x2c40 BthHFEnum - ok
09:34:44.0887 0x2c40 [ 8EE632BFE4BABD4E7A299AF54476F9A5, 836675F295A033C0239DCF86D90985443A60D5A1F38B668CA82A30BDFD983352 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
09:34:44.0902 0x2c40 BthLEEnum - ok
09:34:44.0919 0x2c40 [ A0EC1D5C937995A2C5F1179538A8A6B4, CBFBDF2D8305BD72FFF64AAAB31EB5D5B8ADE537C35AC63DC3F6ADCBF96B3659 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
09:34:44.0919 0x2c40 BTHMODEM - ok
09:34:44.0934 0x2c40 [ B10E0CC936462BBA7BC659C0927617A0, B4F2A318384D176D0ACF26372756CE097F34EED59FBB023E7DB8F95D8F73F69A ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys
09:34:44.0950 0x2c40 BthPan - ok
09:34:44.0966 0x2c40 [ 13886C871293423C2DBADA5082C72977, 15B5B1994BDE83C43C02F77B34A921F6C492DFBE653C7189B63B3786796BEE6B ] BTHPORT C:\WINDOWS\System32\drivers\BTHport.sys
09:34:44.0997 0x2c40 BTHPORT - ok
09:34:44.0997 0x2c40 [ 1EB49C9E2716D4924460B2FAA295E313, B96D39479BFD2ABCD3A3BB8897EAD7C5A03DFFD7266E82A1FBA0E7FEAF73E4B8 ] bthserv C:\WINDOWS\system32\bthserv.dll
09:34:45.0028 0x2c40 bthserv - ok
09:34:45.0028 0x2c40 [ 0D5ECDF2601312025811F6AC413F851A, B7E99CF02C6B511BD643E7F8BB59E983D8B65073D9B55ED44457EDC2BBBBC419 ] BTHUSB C:\WINDOWS\System32\drivers\BTHUSB.sys
09:34:45.0044 0x2c40 BTHUSB - ok
09:34:45.0044 0x2c40 [ E3786BEBB7E4003DE324A18069DDA081, 4DDA70CCB011D74811BA51686E6ED9A404EBE549AE6B3CE0DDBCB83D09E8AABA ] bttflt C:\WINDOWS\system32\drivers\bttflt.sys
09:34:45.0059 0x2c40 bttflt - ok
09:34:45.0059 0x2c40 [ 03C13BB635635B9152DBF49AA07B728C, F6141576EB54EFE5E329762EC548C7D256EFB57C42A46BB3426B779413F0C975 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
09:34:45.0075 0x2c40 buttonconverter - ok
09:34:45.0075 0x2c40 [ 9983FF8D9834F2E67787F4BDC42A8E36, 85260F4A657D657ACD394339DFDDE814AD6BCA65712EAD943833BE7AB0937C8D ] CAD C:\WINDOWS\System32\drivers\CAD.sys
09:34:45.0075 0x2c40 CAD - ok
09:34:45.0090 0x2c40 [ B405F59CF690653105600F85C9B576B9, BEB313DF7D343B2A421EF76E908FCDB64C62AB2ABB7A3188F48A6CACA9644D97 ] camsvc C:\WINDOWS\system32\CapabilityAccessManager.dll
09:34:45.0106 0x2c40 camsvc - ok
09:34:45.0122 0x2c40 [ 407B33DE151A3DFCF564AC4270E44B1D, 8B1419FEDDCEF9F9F239B4C1A629F4F2748FC09CF3E38CA01D8D6D1D32252346 ] CapImg C:\WINDOWS\System32\drivers\capimg.sys
09:34:45.0122 0x2c40 CapImg - ok
09:34:45.0169 0x2c40 [ 466A28ED2B5CBAE823A5EAC0CF98F88A, D937D81A53D3F6E34982B126551EEAA626EE8847FBA9374AC8FD6BD3E149A287 ] CCDMonitorService C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
09:34:45.0215 0x2c40 CCDMonitorService - ok
09:34:45.0231 0x2c40 [ D3CBC6DE5955D014407C7BD1FFE80F00, 9D185AED383FCBF16EE63192452DE888D8485D7BD9C0257BF92A68C42120A1B8 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
09:34:45.0247 0x2c40 cdfs - ok
09:34:45.0262 0x2c40 [ 0942C87ED45B1E227032AD154105F79B, A0A40589B9C399061C1C46247609CA514DCD21DDF1E7FCEE19F0CE75D0FC7996 ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
09:34:45.0294 0x2c40 CDPSvc - ok
09:34:45.0294 0x2c40 [ 9FBF5849A6F51E3B3F8AF2A4171648DA, 7422BC5C87075F5008E6364C8AFAA794AB17CA2DC238DC00F377B942B6FCDC11 ] CDPUserSvc C:\WINDOWS\System32\CDPUserSvc.dll
09:34:45.0325 0x2c40 CDPUserSvc - ok
09:34:45.0340 0x2c40 [ 6834DBBA2A1DBA5B9B6360D0B9A3CBB5, 637331058347D94FBDEE0D47E56723C98BDBBE8E044A225CCE7B3592AA562021 ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
09:34:45.0356 0x2c40 cdrom - ok
09:34:45.0356 0x2c40 [ 620E4F2FDD04FFB70702676423F1C2AC, 25A19FFA966605C229F5BFBCBBBEE36695FC673C7814CF13E79EE4A9B3D8CBE2 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
09:34:45.0387 0x2c40 CertPropSvc - ok
09:34:45.0387 0x2c40 [ 4A08B239F92B319AD31E3916D27AD4B9, 948772689F14090E9E096CF7423CE5D994E3F9964775AD5B2F78C37A987EE980 ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
09:34:45.0403 0x2c40 cht4iscsi - ok
09:34:45.0434 0x2c40 [ C8EA9376E4D284F9DF24B27AC6E3AB85, DAD3B00A37797E7C80E0C359BA735B65BBBE5DC25480910737D86D2711A6FF8C ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
09:34:45.0465 0x2c40 cht4vbd - ok
09:34:45.0481 0x2c40 [ 3AA86DA04A561E8162C2DBBF92D12074, 9CB67299BEC25F2B357DDAA5A36B3464193B8BDAB4DCFAE0CD4315911027E409 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
09:34:45.0481 0x2c40 circlass - ok
09:34:45.0497 0x2c40 [ 4C9CDDE070A9A005CC11CF17483720A4, F2F95125A52B13F34A9DC5473CEF777D6D85C4D810FA0102553EBF72560F6CAA ] CldFlt C:\WINDOWS\system32\drivers\cldflt.sys
09:34:45.0529 0x2c40 CldFlt - ok
09:34:45.0529 0x2c40 [ DB26170CF6555B9AFF76CFA067ABCF90, A066E89267783A5E54A36D1CF193916218BE2E1D177F0ACA82E2B86211629806 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
09:34:45.0544 0x2c40 CLFS - ok
09:34:45.0560 0x2c40 [ 5BD85187D6A6A37D2A4563F33D7A76E4, 6FF434BE93259229E0EA64EC1B6E09B1B814C2A467FC2859B94C79549E2F114C ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
09:34:45.0591 0x2c40 ClipSVC - ok
09:34:45.0591 0x2c40 [ 66CBF6F8FE6F436B315D7FEAF5D2BB40, 0F6AE6412EF73C74EF0EB1866E8CD85AACE4373D5C24F3D0121F5A7420E5A03B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
09:34:45.0607 0x2c40 CmBatt - ok
09:34:45.0622 0x2c40 [ A60E64EB0AC03EB1CBB02C30AC01FA40, E9410F11157C761C8BE8B103112C1E88103ECAC0933C325D750B6CF314345487 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
09:34:45.0638 0x2c40 CNG - ok
09:34:45.0638 0x2c40 [ 037DCC7A71938729CB12E8174E03031C, 1BA2F74F639BF8D5BB38AA658A6D847BAE8D85CF72C4AD5F13BBA1D53145789F ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
09:34:45.0654 0x2c40 cnghwassist - ok
09:34:45.0669 0x2c40 [ E40C99A3E0FFF49687F2187BF3E3050D, 30723EC5767C3F6FAA3CF299440B71B5973F890FB54B9737B96FA0359E7D90FA ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_bcb89b3386563bd7\CompositeBus.sys
09:34:45.0669 0x2c40 CompositeBus - ok
09:34:45.0685 0x2c40 COMSysApp - ok
09:34:45.0685 0x2c40 [ 3799A9DFB162D9AAD6AC12CB8185FD19, 942F2777049166EC43F93177F0084EA08B06CE9107AF55337124FE25CCB158C4 ] condrv C:\WINDOWS\system32\drivers\condrv.sys
09:34:45.0685 0x2c40 condrv - ok
09:34:45.0701 0x2c40 [ A38474B61D9EA219FA8708CF33479C58, 1112BADE5CCF7D4D9C7660088A380978DFAC0691301BD48D6516EC398BC72CB5 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
09:34:45.0732 0x2c40 CoreMessagingRegistrar - ok
09:34:45.0747 0x2c40 [ B9A3002DF9590508527448669B7D69D0, DA0689D4521F3189717BFF1CFE3D66DC6CB590B9EC4FED93937AA0175728576D ] cphs C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\IntelCpHeciSvc.exe
09:34:45.0763 0x2c40 cphs - ok
09:34:45.0779 0x2c40 [ DC609BB812E5F9F361815F9328E4A917, 388FCF6EF5D8633263763DE8304CEB7961E7579832675A9EAED12B6CBBC4E0F8 ] cplspcon C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\IntelCpHDCPSvc.exe
09:34:45.0810 0x2c40 cplspcon - ok
09:34:45.0810 0x2c40 [ 6C6073B45D65887A6035F1A8D073274A, F002B25E05D0894CD12BA3D046E11D4AD6F0BCE8796618B0EE54851223A65C15 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
09:34:45.0841 0x2c40 CryptSvc - ok
09:34:45.0841 0x2c40 [ 8711386E9B04357F8F58166760759F3A, 8912CFD220645002C9D3F9E49717D8B0B98704380B45F53D45D5674537B496FF ] dam C:\WINDOWS\system32\drivers\dam.sys
09:34:45.0857 0x2c40 dam - ok
09:34:45.0857 0x2c40 [ 0CA2AA2BF982C659C7FFBFBC312F79C5, C0A8943A4A832E8E020AA14826FA8EF5D9B1CC9907C59E00B8C823F37F814C66 ] Dashlane Upgrade Service C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe
09:34:45.0872 0x2c40 Dashlane Upgrade Service - ok
09:34:45.0888 0x2c40 [ 107661923943E9DC06ED2713AC5F7753, 2B311E9BD635F1CEB222EF798C5523447AAF63E2331377804884572D7512F299 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:34:45.0935 0x2c40 DcomLaunch - ok
09:34:45.0935 0x2c40 [ 94FC38FADA032862E579044C123C0D58, C4A7DF6EE20BE3F2784FE66AF37AC01D0DBBD8A6C15BF03A6AC78CA9D2403F3D ] defragsvc C:\WINDOWS\System32\defragsvc.dll
09:34:45.0966 0x2c40 defragsvc - ok
09:34:45.0982 0x2c40 [ 8DF502E8116C625387DD789936D7A0C2, D42661E068F401199FAEA012C200EEF02C1409A09DACD30E6B08E3FBE4149BFA ] DeviceAssociationService C:\WINDOWS\system32\das.dll
09:34:46.0013 0x2c40 DeviceAssociationService - ok
09:34:46.0013 0x2c40 [ DBD6E8A5C358AAA3B4900EFD5CF94CC8, C8261CBE358562B3F31ADA0567723E0118A8687DFC8939FABC65E61C38BFE20B ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
09:34:46.0048 0x2c40 DeviceInstall - ok
09:34:46.0048 0x2c40 [ 38D6ED38A46F815C24C5656E8A5AB083, 730DD6D85771A60E5C089BF5D810E3AEA335BF7DD14FD72924A1A4FCF021A59D ] DevicePickerUserSvc C:\WINDOWS\System32\Windows.Devices.Picker.dll
09:34:46.0079 0x2c40 DevicePickerUserSvc - ok
09:34:46.0094 0x2c40 [ 372BD821867225F32DE87A6B3FEC8A2E, 20389A1861B5A451EE3383F68FC59B3C9A75D3123B2DF1669CBB5CC37A0128B0 ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
09:34:46.0126 0x2c40 DevicesFlowUserSvc - ok
09:34:46.0141 0x2c40 [ C48C4D6B8D9C53F0399DEDA402A6FAE5, 25FBE2A51DCF7DB95AD2707502F8A9661B94FC61DFC405DA5BF23BED1BA123D2 ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
09:34:46.0157 0x2c40 DevQueryBroker - ok
09:34:46.0157 0x2c40 [ 8A1C10410FDA4287A76EC5A64371E221, 66CE271DDAD9CD82D2DF220247D91CCB906FA4B5508ABE0DC4A56D1C0C008BCA ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
09:34:46.0173 0x2c40 Dfsc - ok
09:34:46.0190 0x2c40 [ A25AA328816454FA5CCD054343CADAFC, BA2524E443213DF65DF923C58D5C6A99681F102917C1AFD94B31196F4838DB8A ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
09:34:46.0206 0x2c40 Dhcp - ok
09:34:46.0222 0x2c40 [ 1A468A999C05ACA23C8F5A52C996AEDA, 84A4FF952516CB2F3A40378D530710E00AF9161A736A8F3877E2F66BDDE32BEE ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
09:34:46.0237 0x2c40 diagnosticshub.standardcollector.service - ok
09:34:46.0237 0x2c40 [ 6EC6BB6EF31C85FD72D14BE4A1BD1B03, E027124AD492ED22F0D604030CB0E2C3778331879FC73A614644FA8C8606ADD3 ] diagsvc C:\WINDOWS\system32\DiagSvc.dll
09:34:46.0268 0x2c40 diagsvc - ok
09:34:46.0315 0x2c40 [ E74FCFD1499A4F816A99D35E297CCE63, 9C6D75200A8D0932CA77F68D78F11B89B0A45441ABB1662BE69567FE13138D19 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
09:34:46.0393 0x2c40 DiagTrack - ok
09:34:46.0409 0x2c40 [ A79FCB89805FA9EA9F48B671A4591D4E, 13CA8B9CB35DF9F8EFFF8E6ECC0F65E4F179FA9BEF4B68F3382CA4A6BF14FA54 ] Disk C:\WINDOWS\system32\drivers\disk.sys
09:34:46.0409 0x2c40 Disk - ok
09:34:46.0425 0x2c40 [ EAA267FAABDBE6194985DC6A0AC96664, 604908384B503AD7E14F15776C1B3DC58A278149145C2811B5B5300EA597A50C ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
09:34:46.0472 0x2c40 DmEnrollmentSvc - ok
09:34:46.0472 0x2c40 [ F69D7A5D7EDEE16B85F08040836FB09C, 944730FA6CA6ED0ECA85848A2F00EE1E647F7DD4CC37E557A812ECE8A92B3999 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
09:34:46.0487 0x2c40 dmvsc - ok
09:34:46.0487 0x2c40 [ 8B3601E34BD1D693598F968D70361C37, 897C5AEB5ED6AC9DAB2E8E638A42FF588AF3A94EE4C731E97DFAB89BD3B658BC ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
09:34:46.0503 0x2c40 dmwappushservice - ok
09:34:46.0503 0x2c40 [ E65844BC31FE3687A745C2E48C845CBC, 826845A9FC00E4D68CDE5FA5C293DF6D41DB0E8D15B43647A1335F0A79AFD4D6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:34:46.0534 0x2c40 Dnscache - ok
09:34:46.0534 0x2c40 [ 91746BC778124FF991074BDE75C32725, 9A6E11F9C3D58B7FFAA89686F7461380A00E492B13905123C7FD64910993636E ] Dolby DAX2 API Service C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
09:34:46.0550 0x2c40 Dolby DAX2 API Service - ok
09:34:46.0565 0x2c40 [ C79E79CD4DE45EC0EC0ECB5C76D6CB11, C1AFCA79A104EDF5C59C3E6A113467C7F73E84AACEDE97A22BCBA5B25563E163 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
09:34:46.0596 0x2c40 dot3svc - ok
09:34:46.0601 0x2c40 [ 5B1EF28DE7302A6BD5DF8459E2C598EF, F2292B8ED8FBFFA681942D5566BF1932D1E9B4F44C2D13329B60E5A8B9386CC9 ] DPS C:\WINDOWS\system32\dps.dll
09:34:46.0617 0x2c40 DPS - ok
09:34:46.0617 0x2c40 [ AD1BEFBF96C0273925EDC9282557D984, E23B1B043E9EE25054DCEFB10C1C69009DCB1E12675DAE60B00A646735B03D99 ] drmkaud C:\WINDOWS\System32\drivers\drmkaud.sys
09:34:46.0617 0x2c40 drmkaud - ok
09:34:46.0633 0x2c40 [ E7D1636EEA6F9A941573CA426F214054, 7730C82E808C80BAFB59A6AD140B11C2269A62F2396783CB063E58D8EA624BDD ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
09:34:46.0648 0x2c40 DsmSvc - ok
09:34:46.0648 0x2c40 [ 4323DDFF8CB51FD74B241810CFA6CDBB, D9CDE22055C6D139DC3E21C3D92112704426D60F5EF83E3E338B68D885BD3D30 ] DsSvc C:\WINDOWS\System32\DsSvc.dll
09:34:46.0679 0x2c40 DsSvc - ok
09:34:46.0679 0x2c40 [ 974BC06C0EC847EA4DC8D9002D394FEB, 4952FEADD7A3EF541FD537EBBCD56ED573D712755798C42428E78267E50BAB34 ] DusmSvc C:\WINDOWS\System32\dusmsvc.dll
09:34:46.0715 0x2c40 DusmSvc - ok
09:34:46.0761 0x2c40 [ 278F425AA106C85794A3F1196F1C556B, CE30C617785FBF71D8890A630F45E3EA4721207763E918A062A545150FA8B41E ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
09:34:46.0824 0x2c40 DXGKrnl - ok
09:34:46.0824 0x2c40 [ 7E9A1608894297B133AF5EE18E404208, 9E2E4B4F6133375DB8E490337594BEFB86BA964223FB272A23ADD02FA8065253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
09:34:46.0840 0x2c40 Eaphost - ok
09:34:46.0888 0x2c40 [ 75CA88887850A74DDAAAF92500B6D9B9, 1C413719D0E659E20C66B0762B2FC708E55536961A1D9F21906ADBE9CF431489 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
09:34:46.0950 0x2c40 ebdrv - ok
09:34:46.0966 0x2c40 [ 317340CD278A374BCEF6A30194557227, 593DA57CDD02F4CC3A5125CE5707C222DD922F2936D16492BA21AC6C345EC6B0 ] EFS C:\WINDOWS\System32\lsass.exe
09:34:46.0982 0x2c40 EFS - ok
09:34:46.0982 0x2c40 [ 7E838D857FC55535710C316441459C38, C4673014D3ED3E68E02DB5BE6DB53E45B1E4A3CE2B04B15BFD507AF703A60134 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
09:34:46.0997 0x2c40 EhStorClass - ok
09:34:46.0997 0x2c40 [ 49023DD6F646B8C70AE1C105415F3E2B, 16EC2920A2CB71C17BFA7A0E22EDAE1C0E7004C986BEBCA9435F6FDB5D8E64CF ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
09:34:47.0013 0x2c40 EhStorTcgDrv - ok
09:34:47.0029 0x2c40 [ 2F47D3915839372D238ACF00FCEBD90E, F1C6CFB63FAC26F85A7D2A38DAC1D7F4D22007A7251755BD7392FF67ECD2F3F7 ] ElfoService C:\Program Files (x86)\ElsterFormular Update Service\bin\elfoService.exe
09:34:47.0060 0x2c40 ElfoService - ok
09:34:47.0075 0x2c40 [ 80D5BD4804C587B21A121566549A63FB, 9BDC1DEB8805E06851F2E2A8B8762265FDC6B12B873D391BFCB8300BDF425B36 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
09:34:47.0091 0x2c40 embeddedmode - ok
09:34:47.0110 0x2c40 [ 8BDB4EB138A93B9C4242D5ADC068899A, 528C0D16CE5D9A69EA75C43DC53D14F7BD2D8BB0B0B0F32BB1F36AC6659C6A27 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
09:34:47.0126 0x2c40 EntAppSvc - ok
09:34:47.0141 0x2c40 [ 1DF19D7A941CB06F8EADF89FA0BF59AD, 0A8891AD73AF277B764FA5CF163E6BC29DFFA0E35388A941AE27E001289C0A4A ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
09:34:47.0141 0x2c40 ErrDev - ok
09:34:47.0172 0x2c40 [ 9B538A1E44E1D61FA80E80EA75A085FA, 6431BBC533895BD466879C407B9BE7EB50345D666FEE69CAB0813283F07DBE82 ] EventSystem C:\WINDOWS\system32\es.dll
09:34:47.0204 0x2c40 EventSystem - ok
09:34:47.0204 0x2c40 [ D31158A3876110ABAC5E479B49661140, 174147E19D04CF08D2CF8250D0F71702E901263BB3CA62F821E8DCCA5D99CC0F ] exfat C:\WINDOWS\system32\drivers\exfat.sys
09:34:47.0235 0x2c40 exfat - ok
09:34:47.0235 0x2c40 [ F1FBBADF0D7F4B6D56E3202C987BA525, 408FB3085A905EA22BE535CE9CFA3E218BC4CB489F8CC496A91E17402034E02F ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
09:34:47.0266 0x2c40 fastfat - ok
09:34:47.0282 0x2c40 [ BBD6407DA3DA4FC718710587E253C7BF, 8C9995A86EF9FC1FB47ADA1367A67A9829E0E3CE191D11E0AFB0F85E325D48DC ] Fax C:\WINDOWS\system32\fxssvc.exe
09:34:47.0313 0x2c40 Fax - ok
09:34:47.0313 0x2c40 [ 6701B9973DE98578A491721B4BDE0926, 48D07092E6B44CAA529559DF620BDAA4DFCC16430DBA8178B461E556AC526DE1 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
09:34:47.0329 0x2c40 fdc - ok
09:34:47.0329 0x2c40 [ A2037943CCC079307A383C5543607CEF, 2FAC5F76526A8E4D7D7FAE80F9A0AF31D37DD12FF597769C87912B973C339BF4 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
09:34:47.0344 0x2c40 fdPHost - ok
09:34:47.0344 0x2c40 [ C11A1A9CF331B7AA2F04974EE262EC07, AA1C79FCCDEC3C7236B7BE73E6888D7DD5642EB16E13B4633C98EE34CB72A644 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
09:34:47.0360 0x2c40 FDResPub - ok
09:34:47.0376 0x2c40 [ 71CECDA2DCF81E0AD8C30440C77966E2, E26313CD895579A9F3380A648E6FC271EFED0E82C0FCFB287049C5C2D0CC35A9 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
09:34:47.0391 0x2c40 fhsvc - ok
09:34:47.0391 0x2c40 [ 9BC7FE262AF52B341048234809AA7D91, DF95BBEB59821357C69797AC659380C9F27C11B8A60A599C9A2C5623B7CBB6DB ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
09:34:47.0407 0x2c40 FileCrypt - ok
09:34:47.0407 0x2c40 [ A0AF205465482EE0FC6261782629566B, E0C0E9EB327F4DEEDF3E32EB5573A74436829078331A8EA1B795438892EE81B8 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
09:34:47.0422 0x2c40 FileInfo - ok
09:34:47.0422 0x2c40 [ 01D83D284E6B37902DB3C4D4DB0649E0, 4376F872575013DE87CA8173FABAD367FFF907086864C106A4C82933EF9DA308 ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
09:34:47.0438 0x2c40 Filetrace - ok
09:34:47.0438 0x2c40 [ CE9CB1DB00B5007ABFFF0717E748E919, 314E1FA6B0CD9416894EED93ADF3DCB273FF37F6E56EF64C9E7B55E174EB3226 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
09:34:47.0454 0x2c40 flpydisk - ok
09:34:47.0454 0x2c40 [ C5374BA2CAE89DE7269EC61A969EF5D5, 520D7A4C50A9FFF308599C6EADDCADD3D9E398718786D82F02F7EE5C30E7D6A2 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:34:47.0469 0x2c40 FltMgr - ok
09:34:47.0516 0x2c40 [ 8F528FD267C55ABE2A156C5F6EA6B867, 540A852F250783553E042FC31D3F2D695DADA4777FF31F1BA8B60E3407333277 ] FontCache C:\WINDOWS\system32\FntCache.dll
09:34:47.0579 0x2c40 FontCache - ok
09:34:47.0579 0x2c40 [ CE9456F925ADA70ED5A4158F103F9A26, 89753CCCB2E8B1553F077B8F13C63FBEC2EABE7093A6B847477542483347C827 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:34:47.0594 0x2c40 FontCache3.0.0.0 - ok
09:34:47.0610 0x2c40 [ B6BC6E6731FB1E02F0B3C73A87E1C35E, D9CA56006C1D995568A557E53DCCD7802D152CADE535BDB5DBBFC66F3F2EE236 ] FrameServer C:\WINDOWS\system32\FrameServer.dll
09:34:47.0641 0x2c40 FrameServer - ok
09:34:47.0641 0x2c40 [ 835F9C7193B6F9A796DE76897DC56968, 62D6CF40CD6B798E79FF3274DB156DAB17724EDEEC85F6602F3C0EDCDD2DBA11 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
09:34:47.0657 0x2c40 FsDepends - ok
09:34:47.0657 0x2c40 [ A01BA0506E07F316483E99D7AD9B6E75, B2CFB3AAE0E49C539C743A7F416CFC0DE2E0CFC2D5AE685F8B1BECBDB95C4308 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:34:47.0657 0x2c40 Fs_Rec - ok
09:34:47.0672 0x2c40 [ F00AA662A862BA1B5B0BB9FBDFAE2DFC, 1DBEA358E58370C1BD8D5797382FD22A19E92BA171AB70868359CF921F324CA7 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
09:34:47.0704 0x2c40 fvevol - ok
09:34:47.0704 0x2c40 [ 71DBED7FB264DB60341BC796EC2E8135, DBD29794A45AEFB16A5765D03962B311CB061D1EB8A281C5F34DABF39C66A3B2 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
09:34:47.0719 0x2c40 gencounter - ok
09:34:47.0719 0x2c40 [ EA5EE5EF9765A9157B346DF671952F18, FD0A8DBA6EA3E47D454B877CEC74B7B6BEC8B7A98BE37E9E1110D867009D9EA1 ] genericusbfn C:\WINDOWS\System32\drivers\genericusbfn.sys
09:34:47.0735 0x2c40 genericusbfn - ok
09:34:47.0735 0x2c40 [ 6BE6550F1A32796A11EBC58BBC72C44D, 99DC4058EC1B3BF316F1470BF1208F0A2FC72A508BCC9E7548D91BB0FF04376A ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
09:34:47.0750 0x2c40 GPIOClx0101 - ok
09:34:47.0766 0x2c40 [ 3FC2377994D9D63FC128B6C48B22B68F, B47D6BE6FF596A23BBDB7261B1CA9CA67CD138CBF89AEA7A68882E62C0087561 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
09:34:47.0797 0x2c40 gpsvc - ok
09:34:47.0813 0x2c40 [ 508614CAC7BF8AEE4FB9002A413919B1, F60DE0236B0453FC99473A09A7FAC1140831E581C08F3F5C440F5EFCD30943AB ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
09:34:47.0813 0x2c40 GpuEnergyDrv - ok
09:34:47.0829 0x2c40 [ 248739BB0F3A1156A2C0AF51F39A9EA2, A94C43658BCCC88C2D229F40F5C03CA5839A2EAFD57CA088E3E85EB9264CCA3E ] GraphicsPerfSvc C:\WINDOWS\System32\GraphicsPerfSvc.dll
09:34:47.0844 0x2c40 GraphicsPerfSvc - ok
09:34:47.0844 0x2c40 [ DED74127C7A2266715C0B8EA2EE75214, 999507BECB4BAAC61317D98311962D446844CAC6271BFFE181F6CD6DFE221465 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
09:34:47.0875 0x2c40 HDAudBus - ok
09:34:47.0875 0x2c40 [ 95888B85956AF97320D1F5C354632957, C0218271A17897D4682192AB431658523EC87CB13551B2BDA40576BF766BB26C ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
09:34:47.0875 0x2c40 HidBatt - ok
09:34:47.0891 0x2c40 [ 33346BD26BB0AE4361DF1ED00D2876CF, 1777169606573646F7E7D54E01E421F62479DF57FAE86005B1EEFDC06F4898B7 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
09:34:47.0907 0x2c40 HidBth - ok
09:34:47.0907 0x2c40 [ 6D767FEB02DF712F783BEEFF09E06431, AB64C61E5729FB27BF9564CA8308D895CFFB992CE8606FDC31EFF01BB1FF8FFE ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
09:34:47.0922 0x2c40 hidi2c - ok
09:34:47.0922 0x2c40 [ 542AB7A14235C5227A9307ACF1636F0B, E54C4C4511727F4E70CB1C9259C56D4AC62E70BAB2F42E9AB402C1DF4AF3FA25 ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
09:34:47.0938 0x2c40 hidinterrupt - ok
09:34:47.0938 0x2c40 [ 1553DF41F4EE4F60B4BEEEC62264BE71, 46AE8357E8038D35ADB82A51ED421293D7AB18C926C713F19149B97400D4C65E ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
09:34:47.0953 0x2c40 HidIr - ok
09:34:47.0953 0x2c40 [ 3030F19C6A73367D6D5EEDD157F5D01A, B1F13C2AE334C8CDF15BD96B70E92A81487308D841196A29AE3D1164CDAF9AA2 ] hidserv C:\WINDOWS\system32\hidserv.dll
09:34:47.0969 0x2c40 hidserv - ok
09:34:47.0986 0x2c40 [ 6E3FB2047B8AE72E1B5F1C00A5F3E475, A5F791BECA43925D410751C114BCF2FC4A46D7A44BE80B02CD3259C6E271FF31 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
09:34:47.0986 0x2c40 HidUsb - ok
09:34:48.0001 0x2c40 [ 621B1FFB2E4E4745484EA01B013BF1D2, 6F6761922EF931DB95D6597A5884DEB3CC127FB9D763A5A27369F7881DE64B8D ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
09:34:48.0001 0x2c40 HpSAMD - ok
09:34:48.0033 0x2c40 [ B96A51E96768A56180EF4934A8613E54, A9F2EA25BF3707A0FD47EA49F9CE6F93DF13EE14F2F20D7BA763A706B0CB6328 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
09:34:48.0064 0x2c40 HTTP - ok
09:34:48.0064 0x2c40 [ 9E1F3BA540DB9F4942A3F50A92E5754F, 3FF53B60DC52886D6F2EC7F9D8C12009A4BECE5A046D827BC8C941E7401ED000 ] hvcrash C:\WINDOWS\System32\drivers\hvcrash.sys
09:34:48.0080 0x2c40 hvcrash - ok
09:34:48.0080 0x2c40 [ EBFCD9B6431859F529CE9BB66E723D37, 2D693E8B44D0A9564CF515A00F6079F4D06B2E2E3C297A048E40B20CFCC0F7B1 ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
09:34:48.0095 0x2c40 HvHost - ok
09:34:48.0095 0x2c40 [ 98F2DD1B89BC5C2BBF5052FA09650D1A, E2FE81D977E9EF5A6619B0439D0D30266CA85CDF86C55832A7ED93A06F46A671 ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
09:34:48.0111 0x2c40 hvservice - ok
09:34:48.0111 0x2c40 [ B149905CD7451160B6BFA2191A3F6182, A706E4F12963A20F9767D8730973282B5830D97A087ADA8CA9B7D219513C127F ] HwNClx0101 C:\WINDOWS\system32\Drivers\mshwnclx.sys
09:34:48.0126 0x2c40 HwNClx0101 - ok
09:34:48.0126 0x2c40 [ FE36689912DEC37D45B7A6C6414046FE, 3AE4E52B4ECD50ABEF67DCD1E30E409908F53624D9854BDD472352E8B280F19D ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
09:34:48.0126 0x2c40 hwpolicy - ok
09:34:48.0142 0x2c40 [ A1133368F47D514D73DD7FB4C4FD2B75, 6019DABCAB9E2941D76EC62F4352FA76DDCD964671C490730BF725CA2234CA3D ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
09:34:48.0142 0x2c40 hyperkbd - ok
09:34:48.0142 0x2c40 [ B68252C53556FFB52CCE18FF30FACA99, 0463FB8661A9EF338EFBBE43EE76C63DE170510D0E9B612D62009D7D85669365 ] HyperVideo C:\WINDOWS\System32\drivers\HyperVideo.sys
09:34:48.0158 0x2c40 HyperVideo - ok
09:34:48.0173 0x2c40 [ DA179667B8CEC22E4ECBBF4210DC0E35, 70CDB592E1775919B9AB1810A7BA18FE4851FBD493E4772741F36FC11A4CA47E ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
09:34:48.0173 0x2c40 i8042prt - ok
09:34:48.0189 0x2c40 [ B5EC43755E62591197DE5CBBDAA9FEB7, 1B4E0EAB677B09A050925879ECDA311404270DCF020AAD390692427198C73C9F ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
09:34:48.0189 0x2c40 iagpio - ok
09:34:48.0204 0x2c40 [ D8CA23F9C5FEF44296FDE1E005C06EC0, 0D7B03EF9E19B9B2A28C3318560488B3F9573CF364A533A9B4A2CD0A7FFA4F84 ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
09:34:48.0204 0x2c40 iai2c - ok
09:34:48.0220 0x2c40 [ 7B769C9D19C013F94874C4B15D59A005, 53A15F0480AEC43B5A01CFB17360188885B6ECBFFF6E566D27E5B6D4C7737243 ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
09:34:48.0220 0x2c40 iaLPSS2i_GPIO2 - ok
09:34:48.0236 0x2c40 [ E0F1B3A2A70FABE3BE1C9140BB55E607, 34E5B055619F3A26B7BB6054EA49D40B7D6DAFE234F57F358FE7C8EE83E10618 ] iaLPSS2i_GPIO2_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
09:34:48.0251 0x2c40 iaLPSS2i_GPIO2_BXT_P - ok
09:34:48.0251 0x2c40 [ 89A869BCC0588A3009ECB875B09ECD39, 5ECC2C6E661B326511682D8EA1C82F942C63835890687285FEF455C5C9DC2476 ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
09:34:48.0267 0x2c40 iaLPSS2i_I2C - ok
09:34:48.0267 0x2c40 [ 2E693DF3C02A0859DB8DE25772751100, 3EFFDA44B247E04258429ADC85E88E23F926FD487A3A85BF879E6E5802197B3F ] iaLPSS2i_I2C_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
09:34:48.0283 0x2c40 iaLPSS2i_I2C_BXT_P - ok
09:34:48.0283 0x2c40 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
09:34:48.0298 0x2c40 iaLPSSi_GPIO - ok
09:34:48.0298 0x2c40 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
09:34:48.0314 0x2c40 iaLPSSi_I2C - ok
09:34:48.0329 0x2c40 [ C1094259CE6F8819F6EEA8A0585F9A1B, A06D2712CB91014259279A843D359C589BAA2DF1EDA220CBE8B0D166FA25EAE7 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
09:34:48.0345 0x2c40 iaStorA - ok
09:34:48.0361 0x2c40 [ 26405FA714257E449581DE5D6E6200E6, 1C3055AF6BB53308B7E6268A11929881263767619FF524674C51C03B7990C0A8 ] iaStorAVC C:\WINDOWS\system32\drivers\iaStorAVC.sys
09:34:48.0392 0x2c40 iaStorAVC - ok
09:34:48.0392 0x2c40 [ 11AC0355FE52CC8813EE6864DE7531E4, 4D77C451C230395E03B3DB592B1BDCDB8B2142961906A25F0FD070D3A8B670EB ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
09:34:48.0408 0x2c40 iaStorV - ok
09:34:48.0423 0x2c40 [ 62CD9FA7394BCDF7784CCEFC9D00C9AA, 2A09A921EBD998EC45470675FC8D803EAE5F9E2E16B9313591987AA574835CFE ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
09:34:48.0439 0x2c40 ibbus - ok
09:34:48.0454 0x2c40 [ F8CFDD8FED56E1261367A81A731BC1C0, 408187B2E7B403B47AF0D4BF089439D9BA3B3090A430983F77A55DEF2AB381DB ] icssvc C:\WINDOWS\System32\tetheringservice.dll
09:34:48.0470 0x2c40 icssvc - ok
09:34:48.0673 0x2c40 [ 08F37CC9D3E69F4ADAAD79234985DEF0, E30881343D9A57CE6BEC2D067B41FDF3B27017A869E48734B29E01902D889378 ] igfx C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igdkmd64.sys
09:34:48.0874 0x2c40 igfx - ok
09:34:48.0889 0x2c40 [ 524FBE10914FB77F5154787653D16129, D4992BA1207BA8FDCCF810875E70CBCFD9BED189B9D8C6C4C5C67D4159F4064E ] igfxCUIService2.0.0.0 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igfxCUIService.exe
09:34:48.0921 0x2c40 igfxCUIService2.0.0.0 - ok
09:34:48.0936 0x2c40 [ 25793D173BD83ACF8B248C97ABC3B860, 0133EEB7C08E02F3C732FA89381920E5C4BB0CD2190E49C19619FAB43C68708A ] IKEEXT C:\WINDOWS\System32\ikeext.dll
09:34:48.0983 0x2c40 IKEEXT - ok
09:34:48.0983 0x2c40 [ AA38C19A3D65E8228D822EB18037E19D, 54943929E398C67A5A9C72EA65F0FD7A06BB43F03A2291CAEA29443CD10C5169 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
09:34:49.0003 0x2c40 IndirectKmd - ok
09:34:49.0019 0x2c40 [ 310C18A371002983E7BF25BEB0333480, 2A251FDD552F2757059B49441BD6AC683FAEB254D828A792EA382B0D4070F1F8 ] InstallService C:\WINDOWS\system32\InstallService.dll
09:34:49.0066 0x2c40 InstallService - ok
09:34:49.0081 0x2c40 [ 6812970274D5A8FB6D58E9E10311D2C1, F5037C13AA81C19074E76EED5C4A3C7A6547F101A44376D3C11CEE74A5D55B76 ] IntcAudioBus C:\WINDOWS\System32\drivers\IntcAudioBus.sys
09:34:49.0097 0x2c40 IntcAudioBus - ok
09:34:49.0175 0x2c40 [ 234B41FA634FA61B888285458E89547C, EA61078D9E6A3752B5962433558A1A3D15E167E5897F0FEA8454046D9B837A30 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
09:34:49.0269 0x2c40 IntcAzAudAddService - ok
09:34:49.0285 0x2c40 [ F48709A2BC8866197F980B230E415FCA, 59ADEB82BCC5ED50FBD448C4538ED82C5A0FF70D002F1CC001BD45AA219D087A ] IntcOED C:\WINDOWS\System32\drivers\IntcOED.sys
09:34:49.0316 0x2c40 IntcOED - ok
09:34:49.0331 0x2c40 [ A0B66872DCF1BD5FDF5E26595D3A4A51, 76243493FB7CEAB10B540B693BB7E887F1F78B060FB339A99D4D5741A834B9D8 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
09:34:49.0347 0x2c40 Intel(R) Capability Licensing Service TCP IP Interface - ok
09:34:49.0363 0x2c40 [ D087B3CE15760ACEE7C09E99052DF197, 0C636DF08D58E319E570DFF961DD7D23985DD6A8E3008F13693A4BAA79B925F7 ] Intel(R) TPM Provisioning Service C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe
09:34:49.0378 0x2c40 Intel(R) TPM Provisioning Service - ok
09:34:49.0378 0x2c40 [ 48E645ECF0889CD8B9A40B66ABF04BAC, E5B6ACE05E7BC12C0C0EE9D4E49D9E213EA15911DA68743CFE54F8BB6FD338AC ] IntelAudioService C:\WINDOWS\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
09:34:49.0394 0x2c40 IntelAudioService - ok
09:34:49.0394 0x2c40 [ F1B552F7ACDF6E3E4DDDB76118CAFDE3, C4047BAAECF6FA3B73EB684F53C7F81A08AA39F42F8DC7C31BF35DFA93B7C647 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
09:34:49.0410 0x2c40 intelide - ok
09:34:49.0410 0x2c40 [ E6CC7C1E7CEDC81D6B15BF2CF4C99109, 1B181F55CD2E500468FE07C9BA6F20B207FA4B601C4971D1551B80A480D42EBD ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
09:34:49.0425 0x2c40 intelpep - ok
09:34:49.0425 0x2c40 [ 2CEF9DEB97B2CA327175EE8AD5F195A1, 1D6A3B47A844A235B73F8DC2BF872A943FE980480480843EDD5935307C115B3E ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
09:34:49.0441 0x2c40 intelppm - ok
09:34:49.0441 0x2c40 [ 917931A6116F03DB3CA56CFCE8634667, 27B661B6143F4AE94BF28DE1133001F95A451C18804F6DFED1D7D1F36B5E5350 ] iorate C:\WINDOWS\system32\drivers\iorate.sys
09:34:49.0456 0x2c40 iorate - ok
09:34:49.0456 0x2c40 [ FB72A49FAD5C343C8C38948F92D87BBF, 3947D9393D6F4F104D2D07D5FBA61041A8D6006BE2497F2A6337462F8B04A124 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:34:49.0472 0x2c40 IpFilterDriver - ok
09:34:49.0488 0x2c40 [ 9064A49C03F1CED42EAC2B4636C87192, CF388E05EA782BC0645FD0B42A41C9334C074BE6D7C193FA4F9819905CBCEA9C ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
09:34:49.0519 0x2c40 iphlpsvc - ok
09:34:49.0534 0x2c40 [ 5C58142E0F1F8AA379748CC123BA7527, 1D6D42F2595DF3C0EE8FEF751F13119951A2D040D2B22A7F0CBD6083B49F8A37 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
09:34:49.0534 0x2c40 IPMIDRV - ok
09:34:49.0550 0x2c40 [ 7408B83959A4B8271EF67FD06A6B366B, C22DDB76AC3351A50B889AD7D2756EF8612450AC8EE72C88A1044691A0071BE5 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
09:34:49.0566 0x2c40 IPNAT - ok
09:34:49.0566 0x2c40 [ 7BEA2228C81FB6E1EADDD54D615B4C7E, 8640865C98F951B1B8D99E841D9A3FDC6E0251AFAC6B02F815DC409627A50112 ] IPT C:\WINDOWS\System32\drivers\ipt.sys
09:34:49.0581 0x2c40 IPT - ok
09:34:49.0581 0x2c40 [ AD0574F12AA812340BD39071FD30AD1E, 765F1EDFEDEA1F2728108D7A1187A468F529A883886006F74DB9EAD0BFE7B1B6 ] IpxlatCfgSvc C:\WINDOWS\System32\IpxlatCfg.dll
09:34:49.0597 0x2c40 IpxlatCfgSvc - ok
09:34:49.0597 0x2c40 [ 030AE3773151CFA728C67E38416FAD8D, 167E698035F2F07E822B430B31F02FABF3997BAC93039786747053344CE6E6D3 ] irda C:\WINDOWS\system32\drivers\irda.sys
09:34:49.0613 0x2c40 irda - ok
09:34:49.0628 0x2c40 [ 79D02DC54AB4F85D2C13A728A0E36193, 3B6BA678ED269195D506D29EBD9E070603F02AC0FAA92364E7C553B8856C3EDB ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
09:34:49.0628 0x2c40 IRENUM - ok
09:34:49.0628 0x2c40 [ 6ADE9DCAF71DCD888320CA47DB8B05EF, 6FA1EBB3D025546AAD14D968DF7CABD3002598F2F561CCC1D4F07A9B0322DE02 ] irmon C:\WINDOWS\System32\irmon.dll
09:34:49.0644 0x2c40 irmon - ok
09:34:49.0659 0x2c40 [ 38A6EC08D0067DECF7B5BA4C871B846C, 0FAB8EACA2BB4A0BF3895B6BB7CA9BCF74447CF640535A57998C6A4A35EAC030 ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
09:34:49.0659 0x2c40 isapnp - ok
09:34:49.0675 0x2c40 [ 5529131AAB75E07D9295B19E20C54DAE, C2F2C7D33945C13DDC5EF540581772CEF73EFB23F19E6BCDBB6A99D8C96A302B ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
09:34:49.0675 0x2c40 iScsiPrt - ok
09:34:49.0691 0x2c40 [ C35FD802C800F3CBB4FD426D5A542A22, B2325956DB68222C5FBB43DFA0BF5EEC073470010E13997F2A5635CC89D66872 ] ItSas35i C:\WINDOWS\system32\drivers\ItSas35i.sys
09:34:49.0691 0x2c40 ItSas35i - ok
09:34:49.0710 0x2c40 [ 19D995676AC341198FE0EEE47DAC75F0, A27511F820B9DC9CC462994E870420CDD40B7D8C3EEA6D1161DB4A1340351ED4 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
09:34:49.0710 0x2c40 jhi_service - ok
09:34:49.0725 0x2c40 [ 17F3B012B28F27E7B813A7B037A3D790, DADE75BB016438B7E0A11A1CF1FFA596C27246EF7F4E04D96366029C9F65F0C5 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
09:34:49.0725 0x2c40 kbdclass - ok
09:34:49.0725 0x2c40 [ 843B4BBD15DD0340C5C293CD419D4A76, F6D17CCE13697669DA4EF1F83E394F5496C437496E0E09307F8B615DE3216CC5 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
09:34:49.0741 0x2c40 kbdhid - ok
09:34:49.0741 0x2c40 [ 5BBB86F3F1700E0ACE1DF10F0EF7B227, 348FE61522F8C24F407F87D2966F62BD816DF27CD824AC103699CA66EE799640 ] kdnic C:\WINDOWS\System32\drivers\kdnic.sys
09:34:49.0756 0x2c40 kdnic - ok
09:34:49.0756 0x2c40 [ 317340CD278A374BCEF6A30194557227, 593DA57CDD02F4CC3A5125CE5707C222DD922F2936D16492BA21AC6C345EC6B0 ] KeyIso C:\WINDOWS\system32\lsass.exe
09:34:49.0772 0x2c40 KeyIso - ok
09:34:49.0772 0x2c40 [ 65EF1DBF0132AE84A71B555E97445D4E, 5B48E8E469EA81B58DA11AF79006752A689089467320E5CC19E9DAFFFB60A6DD ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
09:34:49.0788 0x2c40 KSecDD - ok
09:34:49.0788 0x2c40 [ 9C1736EABACF698A4FAC68E5E6644602, 90B2125A2B9A429F3AE9E9C80DA230DF97B926A762FEBF7850FEB2C75911ECF8 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
09:34:49.0803 0x2c40 KSecPkg - ok
09:34:49.0803 0x2c40 [ 10F2EBC1F1C4549C355781715DE47B66, 9D23CBA56245532D88396DF99C62A26E71A7EEEF7CD8BA98FFF9FD2804DDF946 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
09:34:49.0819 0x2c40 ksthunk - ok
09:34:49.0835 0x2c40 [ C4151271434A490707B4FD4E6AAE9EED, DDB809D002039645CDED08322B9CDCA04C483A119380098FF9EBA998A1A3811D ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
09:34:49.0853 0x2c40 KtmRm - ok
09:34:49.0853 0x2c40 [ 081D030BC669BDEDC68B8FE81A67E6A7, B5C1FA89ACAE1683A524CD14E2D7D6C3C1FAE0ABCD330841D493FC6DB0843798 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
09:34:49.0885 0x2c40 LanmanServer - ok
09:34:49.0901 0x2c40 [ 514E8BD07F42D95667F54777D57403D0, 3D024A18F7AC70A846FAB3255AA1048F8DD1DC4301F1B70B647B71F5E7A1AA24 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
09:34:49.0932 0x2c40 LanmanWorkstation - ok
09:34:49.0932 0x2c40 [ C2A49E8EEE7C3D06ECA80847A42F65D5, E1559EF96E6F2146E4AC0BE46CBFF5FA29829812A64A6F09803C00E3E0AAB1F0 ] lfsvc C:\WINDOWS\System32\lfsvc.dll
09:34:49.0947 0x2c40 lfsvc - ok
09:34:49.0947 0x2c40 [ DB8F10ED986BFE0A5B663A1D067F2CCC, 88EE540F545C8838E9F855094A2A4AAC096BD24F77103E06464CCD77C3FCFFFD ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
09:34:49.0978 0x2c40 LicenseManager - ok
09:34:49.0978 0x2c40 [ 3CF979AFF0196DF3DF5E54DFC049EB1F, FEA82EF2AA4222171E80548EB00A4F0FBD27363B84AA9E6B8F82147C568BADEE ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
09:34:49.0994 0x2c40 lltdio - ok
09:34:49.0994 0x2c40 [ D6DD748EAC3BC540CFE65C73FE20C099, 8A79E1F1834D949D027B4D3471297ADFB539B9282DE5DF5FDBE60AE171F3CFFC ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
09:34:50.0025 0x2c40 lltdsvc - ok
09:34:50.0025 0x2c40 [ BA35694625114B227BF6F84E8B4F4E63, 22AA2806234F47B9E73DC6D1599BDDFCAEB82A4D8371C56EB205BDFB3A2AF8F5 ] LMDriver C:\WINDOWS\System32\drivers\LMDriver.sys
09:34:50.0025 0x2c40 LMDriver - ok
09:34:50.0041 0x2c40 [ BD35F484DA59014D091736F8F10BFB42, 7004408EEE281BA707248369910483928A15F3304F4A8F594EA2E04D43929926 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
09:34:50.0057 0x2c40 lmhosts - ok
09:34:50.0057 0x2c40 [ AA9675BD840046F6D871BB8DB9021054, E484CC528050A74F484C4A505593F6B6B871DCA3ADD6B78A7BF0F86EBDAF6253 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
09:34:50.0072 0x2c40 LMS - ok
09:34:50.0088 0x2c40 [ 48380096385DB46E43D85CD92B9500DB, D93F4FDAA5A665E09004F7676E821AEAD0ED059F0E006FF73F02BB8FF1C0F9FC ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
09:34:50.0088 0x2c40 LSI_SAS - ok
09:34:50.0103 0x2c40 [ F708223E5829510DF0D5AF209D11C8B8, DE82ACC6D04092C22BA4E63CF527814467870A10B93D7E9B061DBA23CEF9424B ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
09:34:50.0103 0x2c40 LSI_SAS2i - ok
09:34:50.0119 0x2c40 [ B91BCC8F670F128A4BB826ACF2C2B9D5, D905232E3E49EA6CACE04CDB241D12CA9E84F106D15340C921B980610C1080FB ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
09:34:50.0119 0x2c40 LSI_SAS3i - ok
09:34:50.0135 0x2c40 [ FA31CDF977CD31AF9AEAAA422966ACC1, 705761786930A2534CD1B797F5F16F56F58647192175F5D19E13642A89462CAA ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
09:34:50.0135 0x2c40 LSI_SSS - ok
09:34:50.0150 0x2c40 [ 52B6D805C60127F0456DF019775F5740, 3005C49349072EDD68DBFC6DBF884FC75E060920EA3FA90A60C39F5A83939595 ] LSM C:\WINDOWS\System32\lsm.dll
09:34:50.0182 0x2c40 LSM - ok
09:34:50.0182 0x2c40 [ E86400D7B6E095E89CF63667D94D3F50, 4E30374B82FB1D8904B9803109C4557C565023FA94C7AE61BB2ADAAACAE0E179 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
09:34:50.0197 0x2c40 luafv - ok
09:34:50.0213 0x2c40 [ 07514F5635999D7DDB5F3A62B5C5AEB3, D3717437D14C36873E2D0C1AA65F29EB9A5DB1DE60A7EE86A093FD126B7EBC05 ] LxpSvc C:\WINDOWS\System32\LanguageOverlayServer.dll
09:34:50.0228 0x2c40 LxpSvc - ok
09:34:50.0228 0x2c40 [ 1CA48E995EE9BDAE7EE3601C792D8DA4, DC4EE789810D3993343F7085DBCFBE1E74B10A31B32C60964582E2F27B5D716B ] MapsBroker C:\WINDOWS\System32\moshost.dll
09:34:50.0260 0x2c40 MapsBroker - ok
09:34:50.0260 0x2c40 [ BD3D311802427608403C5E73A8D6137D, C85DCB557E931E302AF90270731C3F5AA820CDF14D7DBACA95284FD9E4BF5F3D ] mausbhost C:\WINDOWS\System32\drivers\mausbhost.sys
09:34:50.0276 0x2c40 mausbhost - ok
09:34:50.0276 0x2c40 [ 61C2D9790943D8E3AD05AE35E4A313EF, 96BBA5333F4AEEE41FAD28124DD448CFECD8111F931758CAB60FCB1DAA05E239 ] mausbip C:\WINDOWS\System32\drivers\mausbip.sys
09:34:50.0292 0x2c40 mausbip - ok
09:34:50.0292 0x2c40 [ 61BCE12529E96E6F0335A2A8DEB83C61, BFDD1E52736311CF53AE9C778C664D37B5B711B544BC41BDFB137F7A9789AD2A ] megasas C:\WINDOWS\system32\drivers\megasas.sys
09:34:50.0307 0x2c40 megasas - ok
09:34:50.0307 0x2c40 [ CA22763F12783A9C81C512ED747CECDD, 8D2403364D5479D89479FA0C23BB9511A4360F51504F78AA1675220CDCD21398 ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
09:34:50.0323 0x2c40 megasas2i - ok
09:34:50.0323 0x2c40 [ FDB06D857FC43D654547BBB31D039DB4, 4CBE0F0FBDD88A5DB4F333466BB4E1C886E0742D41B4ED418587B40C4F59B307 ] megasas35i C:\WINDOWS\system32\drivers\megasas35i.sys
09:34:50.0323 0x2c40 megasas35i - ok
09:34:50.0338 0x2c40 [ 230361AF74DDB91705284E024A22DF4F, 82F13E3E4A8B3CB6AE65C1C9F878702D16D101B0DCC79B9FF8368F9B87E0F285 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
09:34:50.0354 0x2c40 megasr - ok
09:34:50.0370 0x2c40 [ 3B3B28756F9A8CCF19B3C092A23FBEA2, CCD804BB503B457681209847242B7ADE2BA513982A0B770DBDDCB270428C3A6A ] MEIx64 C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
09:34:50.0370 0x2c40 MEIx64 - ok
09:34:50.0385 0x2c40 [ 69259AFDF347B5F4AF06E900C4A1F62E, 167FF155F3E1B362A5D5FDB010A5F539F5E13CAD7E64E6F105CC770DA3639EEB ] MessagingService C:\WINDOWS\System32\MessagingService.dll
09:34:50.0404 0x2c40 MessagingService - ok
09:34:50.0419 0x2c40 [ A8931C3820D5F392D89176E0628E766E, 0F035833B1CBABDF9E5142F3E5EB6413DC7DDBF3A0562170018A8EBA20992CA4 ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
09:34:50.0435 0x2c40 mlx4_bus - ok
09:34:50.0435 0x2c40 [ EB4D7C9354CB88DE4B085EA3EEA5BC76, DD842967ED5A9232AF34E68548C98F9760487D5626C9628A44598A97B28F24D3 ] MMCSS C:\WINDOWS\system32\drivers\mmcss.sys
09:34:50.0451 0x2c40 MMCSS - ok
09:34:50.0451 0x2c40 [ CA25F2D78FDD0D36E3F3071B4B317BD4, 21B5902EF802FAFA7DC6FD737CE9888C74526983FDCE31CDFAB11630E1476FD1 ] Modem C:\WINDOWS\system32\drivers\modem.sys
09:34:50.0466 0x2c40 Modem - ok
09:34:50.0466 0x2c40 [ 13142B3B30F633F407D5256B2FFCCEF0, 0A8DD229FD752E8B7E1D11E1A066BCF8B3E2023068AD731FF23ACBF4D182D23D ] monitor C:\WINDOWS\System32\drivers\monitor.sys
09:34:50.0482 0x2c40 monitor - ok
09:34:50.0482 0x2c40 [ 66C9CCC6A100ACF7A4514BD3091CE566, 1423EC39D4203D717B79BF2E5F4A89A0541CCEA2162351A670EA46AA69A0859D ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
09:34:50.0497 0x2c40 mouclass - ok
09:34:50.0497 0x2c40 [ 6BE61DAF4CDC0E13940096EAC4A9F490, 954DA0C9FE3881030EC0B9A428C2C2BBC86353EC9421009AC48FDC047315160F ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
09:34:50.0513 0x2c40 mouhid - ok
09:34:50.0529 0x2c40 [ 2CFB54C638F75E39FBB22723401A8A56, 5E4B1107534AF4ADCD031FC4931B6819B8371720A3D68B5C9788C2AB34DA2C21 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
09:34:50.0529 0x2c40 mountmgr - ok
09:34:50.0544 0x2c40 [ 7016D6ED42BECBBF4B598190AD6E3F11, FEC66F566F30C3783203C4DD7A51D0D7DDFC6C55E75E9F597DAD148875EDEEE7 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:34:50.0544 0x2c40 MozillaMaintenance - ok
09:34:50.0544 0x2c40 [ D78D87D9F0F6A0BB96A712DB3CD47440, 38AF07573224472BAEF036959E2A10AAA12980C22EF1F190285108DE498D10BC ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
09:34:50.0560 0x2c40 mpsdrv - ok
09:34:50.0576 0x2c40 [ 9C7CE5CF0CDB6F41FDB96EF03754D283, A9A8B755EAF20C13FA32240FF71134020F21EF1EB7F033F385AA1F7FDB3CEF14 ] mpssvc C:\WINDOWS\system32\mpssvc.dll
09:34:50.0622 0x2c40 mpssvc - ok
09:34:50.0622 0x2c40 [ C12373EC998C6F17C0FE2D6C3CBB9C04, 5F41757D6774B2DCADB340430B26C2C1BA93D7A47948DA92023622B66BB7B482 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
09:34:50.0638 0x2c40 MRxDAV - ok
09:34:50.0654 0x2c40 [ 3C0FA2ED75875481D00F3D77B1A3E336, 031E1A6F826CEDB44D9FAAA1615872087B822F7A4E0731D3023AEF1CFCD10A2F ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:34:50.0669 0x2c40 mrxsmb - ok
09:34:50.0669 0x2c40 [ 42FE3D84EFE835443151DC2A50D05643, 3582EA0CAA2A02AA9A6FDECF9DE0F962BF10FB1C2E7E804A3F0D62C4A4C365B1 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
09:34:50.0685 0x2c40 mrxsmb20 - ok
09:34:50.0685 0x2c40 [ F14DE177087F9E990EDE95ACE1F94662, E0B8C7DAF8C13CAD08B974D681981038E33ED8871717C550477EDCFD05A3B96D ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
09:34:50.0701 0x2c40 MsBridge - ok
09:34:50.0716 0x2c40 [ 9A94F32C1DC90A7E5A35D0F820A8FB1D, 4CAFCE804D9135BE9CBF80307D570F24E4A102890DAB504E3DEFF3B335C9B80E ] MSDTC C:\WINDOWS\System32\msdtc.exe
09:34:50.0735 0x2c40 MSDTC - ok
09:34:50.0735 0x2c40 [ 128E1D8C23F690DF1DD7AFDB214DB6ED, 9A04B77E91956B76B2FA2FE5F192C794E0C1DA708AE99B64B3B3D39902452E39 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:34:50.0750 0x2c40 Msfs - ok
09:34:50.0750 0x2c40 [ 5A5ABA987943317300A4E55A5C5EB8C4, 9AC863F537BBB2D776C3F240B510DEE94BD84A7675C695D1270770609E77F65B ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
09:34:50.0766 0x2c40 msgpiowin32 - ok
09:34:50.0766 0x2c40 [ D727DEA75E316C80793C7098225D3F56, F6E7F01DDDED03E29BE64796873875A4CC7215B3C8152192A465EE2E76FFC8A1 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
09:34:50.0781 0x2c40 mshidkmdf - ok
09:34:50.0781 0x2c40 [ E12A703CE10B068727499276340D5296, 67F513A83D896DBF014D7446D66F1A1F9F0D03ADB23B57FD1A3CCC880ED50299 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
09:34:50.0797 0x2c40 mshidumdf - ok
09:34:50.0797 0x2c40 [ 8E42D6B92CB4567467E29F58F2E31715, F1EEB6811526C079EF8C3702A535B23FA14C5A33CA2B14C9A65BAE136568B724 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
09:34:50.0797 0x2c40 msisadrv - ok
09:34:50.0813 0x2c40 [ C9930B9F2ABF42C732202813951A9A26, FFCE4E4FEC9F8393C75828C1D5CC380A666D4606891789D3A6923CE6701D5D99 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
09:34:50.0844 0x2c40 MSiSCSI - ok
09:34:50.0844 0x2c40 msiserver - ok
09:34:50.0844 0x2c40 [ 2F3B9A23F8DEE9C3AD58CB3D966D83DD, C030A6376B392AA2D9CB8FF16196A4F71F4E7A3E32124B4B30D714D75B6583B2 ] MSKSSRV C:\WINDOWS\System32\drivers\MSKSSRV.sys
09:34:50.0860 0x2c40 MSKSSRV - ok
09:34:50.0875 0x2c40 [ AECFFBE104D428E8A74BCABF5B3B9912, EA94A7FA1F9BE357311E411293F4D3CC8F80ED1523BFE362DA56A3C2AC65DF58 ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
09:34:50.0875 0x2c40 MsLldp - ok
09:34:50.0891 0x2c40 [ 83364A92271339D8042C9DD5FD938A84, 23B9A90411DEF1ABA0A9EBFA6CC39F7EA2BFABD578F3783AD398551816AFEC2A ] MSPCLOCK C:\WINDOWS\System32\drivers\MSPCLOCK.sys
09:34:50.0891 0x2c40 MSPCLOCK - ok
09:34:50.0906 0x2c40 [ AE5A4B89CDFF544B6481970BFD48A056, 6BE9ABE33305387AA61B29AB075C2C72CCFC01A7E86C573B6BE9B4A0FFA9D3EC ] MSPQM C:\WINDOWS\System32\drivers\MSPQM.sys
09:34:50.0906 0x2c40 MSPQM - ok
09:34:50.0922 0x2c40 [ 999433544A4136A9B879C98049821EE6, 757B1EEE1BE010E06140D3F99F755F482782940D829BD7E00877775D9263C534 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
09:34:50.0938 0x2c40 MsRPC - ok
09:34:50.0953 0x2c40 [ 4566CB65F176CE5CD8FCA487D2E3A64B, C058E431ED6D3F83A6C923648A79664A61A25F8797DA83C4AE25B491CC195F30 ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
09:34:50.0953 0x2c40 mssmbios - ok
09:34:50.0953 0x2c40 [ 8A11E03B32840C0B73C14D16794F1A8A, A003C44F5234522454E285D388E506B7880CCE5FCE5622618F97C2DFFC6EA9DB ] MSTEE C:\WINDOWS\System32\drivers\MSTEE.sys
09:34:50.0969 0x2c40 MSTEE - ok
09:34:50.0969 0x2c40 [ 794285C4F166B8108292E63FEA3C41E3, 69BB7DDB7D6F3D21395432384FB06E114B2C343664CD62A5DE1A95FBC0F5AEDD ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
09:34:50.0985 0x2c40 MTConfig - ok
09:34:50.0985 0x2c40 [ EEB9D3E90B83546864211D63C1A0A74A, E67118F7B91A192B50C9C2DC159B4276BBD8BF9CC935ABADA459E4DF4191066A ] Mup C:\WINDOWS\system32\Drivers\mup.sys
09:34:51.0000 0x2c40 Mup - ok
09:34:51.0000 0x2c40 [ 69CECA6726FAD321F5643B16A1FF3934, 8F43BEC668DD0A1D65D3B545B78AF4324AE36DCC3524B7CF3385FE2B19CB6B07 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
09:34:51.0016 0x2c40 mvumis - ok
09:34:51.0031 0x2c40 [ B66E5DDF484DE03D61B83118E45D5E11, ECADFC9178CC957498F54F22758F4944C23CE692653DA1862061C9382AE8FD23 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
09:34:51.0049 0x2c40 NativeWifiP - ok
09:34:51.0064 0x2c40 [ B281FAC1C60FE21ED3F635ECF673A981, 6641CCBD38AEF3FA5D9EDD24F01AAB6509AD6D3927371CD7938C04B3BBC92FD1 ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
09:34:51.0095 0x2c40 NaturalAuthentication - ok
09:34:51.0111 0x2c40 [ 6FEC83EDC4A3D1E99039CA1D96AD720D, F6DB011FBED10EAF8CCDC9EDDCB47F728B6B17A6A3CA5D6DB5DE50EEFE7DDD4D ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
09:34:51.0127 0x2c40 NcaSvc - ok
09:34:51.0142 0x2c40 [ C3D3E2DFBD52C48EA787604F49060A5C, 0F5E3C9E63F6421398154EF942182FE67CCCCE6DE25B1EE2A30A8E6E3C17145A ] NcbService C:\WINDOWS\System32\ncbservice.dll
09:34:51.0173 0x2c40 NcbService - ok
09:34:51.0173 0x2c40 [ 9AB04C4C14B32D127DB6E7D3DF79FF26, DAC84CBDF605C43657CDA1B95A86DC0D55E236A75BFDA3041472C5D6222EB025 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
09:34:51.0189 0x2c40 NcdAutoSetup - ok
09:34:51.0189 0x2c40 [ AB9EB3CADF4D415B598487397476A23A, EA48BC5CCD9814F6CA50485818BA150A1066D462306764C197935A926DF0565E ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
09:34:51.0205 0x2c40 ndfltr - ok
09:34:51.0220 0x2c40 [ B789E690ECC436F61F91BD7160C2115C, A8EE584CEAEF48BA549AC32C5DCB09D459555BCA74FA12C0738B27225EC2BC97 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
09:34:51.0252 0x2c40 NDIS - ok
09:34:51.0267 0x2c40 [ AF73B18F3096B165A6F4417C5ED36B01, B0FA9E52D7208F756103E2E853F1D17F594C9FDD2E76304743C581613E612449 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
09:34:51.0267 0x2c40 NdisCap - ok
09:34:51.0283 0x2c40 [ 1A9B1F5B8B131CE461A01C9424E149D7, 66E3F49308DF111B5D5DBF57F11A05E0B9492530587E37C6729C46AED17647D3 ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
09:34:51.0300 0x2c40 NdisImPlatform - ok
09:34:51.0300 0x2c40 [ 4C8BBD7EE829CE9BFB8E21134AC477E0, ED8E0D603AFFA4BD7C7057B7B10FEB811B89CB8C6D66EC8212AC24062D58CEDB ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:34:51.0316 0x2c40 NdisTapi - ok
09:34:51.0316 0x2c40 [ 76DB7B344F90A29A16CB6B7C67B87CF6, 921E6AF5B22CF3A9E153F6A6F5E3FFE64BE49959AD705F865D2734B0F8A07517 ] Ndisuio C:\WINDOWS\system32\drivers\ndisuio.sys
09:34:51.0332 0x2c40 Ndisuio - ok
09:34:51.0332 0x2c40 [ A76D79B71300EB3FEDD3D12D4C6F1D76, 9B20C3716DDD9EECCDDFA2C4F1A9ACA512B612A8CDFC8C22B2F867280AE51A3B ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
09:34:51.0347 0x2c40 NdisVirtualBus - ok
09:34:51.0347 0x2c40 [ DA9896F6ED9EAFDAC19177ADF99DD932, A89EA83567059A59058C0330951B292C1FD98A829276618703570293C73E2FFE ] NdisWan C:\WINDOWS\System32\drivers\ndiswan.sys
09:34:51.0363 0x2c40 NdisWan - ok
09:34:51.0363 0x2c40 [ DA9896F6ED9EAFDAC19177ADF99DD932, A89EA83567059A59058C0330951B292C1FD98A829276618703570293C73E2FFE ] ndiswanlegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:34:51.0379 0x2c40 ndiswanlegacy - ok
09:34:51.0394 0x2c40 [ 934E4A5CFD9CB891CD338052FA3467C6, 0D7C1709E6C818E2DA969220C888BF3A28D0952E73322EDDFF66AFEEB03A3103 ] ndproxy C:\WINDOWS\system32\DRIVERS\NDProxy.sys
09:34:51.0411 0x2c40 ndproxy - ok
09:34:51.0415 0x2c40 [ 0E3B0F3645D1BAE79397C66FE8AF6402, 6568FD9646FE7C7D61D280C26097583EFA2FB9F59D43340A7283BEAD3A5CC206 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
09:34:51.0415 0x2c40 Ndu - ok
09:34:51.0430 0x2c40 [ A704515CF3038668E9E2CA66E31A0700, 0F5A75AC5FF8E021D15D89ACE4C4D215825D931097E1BB633F46177E36F40157 ] NetAdapterCx C:\WINDOWS\system32\drivers\NetAdapterCx.sys
09:34:51.0446 0x2c40 NetAdapterCx - ok
09:34:51.0446 0x2c40 [ DD09E3115DF2CDB36FED21E67149EB91, F2FAD5091F456E593FB25843026C5F2440D3605E5355F5FEFBFEF5E9E70DDED6 ] NetBIOS C:\WINDOWS\system32\drivers\netbios.sys
09:34:51.0462 0x2c40 NetBIOS - ok
09:34:51.0462 0x2c40 [ A6C01E478CD9ED26F6FB7ABCF9A2C773, 9524D6BC0F3360311A8C887B7987949BC1B24606BCAB92532C59AA61B364F0D7 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:34:51.0477 0x2c40 NetBT - ok
09:34:51.0493 0x2c40 [ 317340CD278A374BCEF6A30194557227, 593DA57CDD02F4CC3A5125CE5707C222DD922F2936D16492BA21AC6C345EC6B0 ] Netlogon C:\WINDOWS\system32\lsass.exe
09:34:51.0493 0x2c40 Netlogon - ok
09:34:51.0509 0x2c40 [ C3D07481FDD607F9B66B2CF1D8E26EF0, 5B20EAE39884B103F83A36E9AA55BA8932432344C7BADB11D8B827C07C7999E4 ] Netman C:\WINDOWS\System32\netman.dll
09:34:51.0531 0x2c40 Netman - ok
09:34:51.0547 0x2c40 [ 9D7149C9E3487CA71036D21FE153CADF, 479E887E067319537331735AB2E29169038F61A4A3E4E58C084897DC78DF9E22 ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
09:34:51.0578 0x2c40 netprofm - ok
09:34:51.0578 0x2c40 [ C8B1AF912319FEF251288BDD27E9576D, 0A8C2CDE353C23F076F6ED8609F3074116179B3C8BF7700324250689FDB2331C ] NetSetupSvc C:\WINDOWS\System32\NetSetupSvc.dll
09:34:51.0610 0x2c40 NetSetupSvc - ok
09:34:51.0610 0x2c40 [ 7EC8B56348F9298BCCA7A745C7F70E2C, F677CBD94ABE25AECF08ECFBBDA063A9C032C678327A0D105CB6B3E587C44C19 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:34:51.0641 0x2c40 NetTcpPortSharing - ok
09:34:51.0641 0x2c40 [ DA8548D75434CE421BF921BAAC0916D9, 3A7E1D5EC02D6D4FD3321A1B8ADB20E99DD556E2D5FE1C98633F06EE6A023A23 ] netvsc C:\WINDOWS\System32\drivers\netvsc.sys
09:34:51.0656 0x2c40 netvsc - ok
09:34:51.0672 0x2c40 [ 162A571ABAF9546339EE0BB482FF6AE7, E6E590B628AA65D161D7A87C9CF360D905FCC858E73EE1C4723FE217E8A91EA2 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
09:34:51.0707 0x2c40 NgcCtnrSvc - ok
09:34:51.0711 0x2c40 [ 6084A17157D6F80EAD0413152DEF6185, 2018FAC7A18DCEEA2095E76832BD38CF884C0E093B8743053B1EE1057612CA92 ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
09:34:51.0743 0x2c40 NgcSvc - ok
09:34:51.0758 0x2c40 [ BF69FF80C3975B1D1E9428A689A16CB1, 670016D59D2169B44E2EF4CBDE281A34C4E868D2465362B09FA2DBFA393A2804 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
09:34:51.0809 0x2c40 NlaSvc - ok
09:34:51.0825 0x2c40 [ 7190932DB00BE83B57C01B5EAC4D746B, A3C7C87874620E042EFCDF64332450ACEDD4FAB7F6C1B2DE97A1C6EDA2DA3055 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:34:51.0840 0x2c40 Npfs - ok
09:34:51.0840 0x2c40 [ 218DB396170D77BB94F69B526CC51B8F, 6AACC3C38E22061A210918771D3B087903CB7024AFBD013827864C02CD75A3F9 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
09:34:51.0856 0x2c40 npsvctrig - ok
09:34:51.0856 0x2c40 [ 457DAC0D0978F5391E0742ADCB4C2E28, AD53F2FC597E90AFF0795655A36192BA803AD1E737C86FD216CD39E2EC4F9C36 ] nsi C:\WINDOWS\system32\nsisvc.dll
09:34:51.0872 0x2c40 nsi - ok
09:34:51.0872 0x2c40 [ A4952889D7C5804F17ABB9F454A371C2, 0FCE2AD4F705805D95993337915607F74CE2AA9EC92919DDE3D2569D6B9B5C13 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
09:34:51.0887 0x2c40 nsiproxy - ok
09:34:51.0934 0x2c40 [ 277F1B33E2D9915169A8155BF63DA5D7, A9B476C4E06349FBDD2DEE2ED327DC65BD5D3F2B93FE33729158EA01DF90C5AF ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:34:51.0981 0x2c40 Ntfs - ok
09:34:51.0981 0x2c40 [ C029E5408EEE26C3B4E5BA5D29738DB8, 8463A19A690304DC757E7698FCB59902B6305A0E9C48BF2FB2DF24C1EFA4A6EC ] Null C:\WINDOWS\system32\drivers\Null.sys
09:34:51.0997 0x2c40 Null - ok
09:34:52.0012 0x2c40 [ CEFDB5A85FF9F1F8E4CA832D41D59BFA, 11226E167A26F30AE970419ACB8A1D9749AF08365E2F88AE053B03EE18D3E163 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
09:34:52.0012 0x2c40 NvContainerLocalSystem - ok
09:34:52.0028 0x2c40 [ CEFDB5A85FF9F1F8E4CA832D41D59BFA, 11226E167A26F30AE970419ACB8A1D9749AF08365E2F88AE053B03EE18D3E163 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
09:34:52.0044 0x2c40 NvContainerNetworkService - ok
09:34:52.0044 0x2c40 [ 189E5FCB96ABFEA84239A16062256EE4, F3233B1B14363CD4CD032F43368FD10A42C0BE665F4B13A7E253C327C2B832DB ] nvdimm C:\WINDOWS\System32\drivers\nvdimm.sys
09:34:52.0059 0x2c40 nvdimm - ok
09:34:52.0309 0x2c40 [ C25F3BC4B180708916D14DD23AB141D3, DB771FC2DFA908F61CA255E40CF0C2D62BFFD28A989D3F9ACB90C9857532E2CE ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nvac.inf_amd64_6d889d26421766e3\nvlddmkm.sys
09:34:52.0575 0x2c40 nvlddmkm - ok
09:34:52.0606 0x2c40 [ 1F50ED95984009BF3634D6BD1A16FA5B, 650A25B2419331D95B1E4C26DE253AC3500374EDEFC5DB55CD5D5884A26783F0 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
09:34:52.0606 0x2c40 nvraid - ok
09:34:52.0622 0x2c40 [ D6C14906B78F235461EEF96A886830D4, 5D0EDE46EB9965C494B994F7071696C91C0C01352D1B000501E7B55F54F11952 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
09:34:52.0622 0x2c40 nvstor - ok
09:34:52.0622 0x2c40 [ 6D0FBFF20D03AD65F361A4F992F4BD9E, 42B60EDAED47D17492271B1FAD83E67FB2AB38605AB0E937DFE6FD2658D69801 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
09:34:52.0637 0x2c40 NvStreamKms - ok
09:34:52.0637 0x2c40 [ 1B221319F0FCFC8B741FE3777DC412D3, E33088E8297C4A1B1FC1BCB20F067140EABEC51D03989EDB583F569937009A72 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
09:34:52.0653 0x2c40 NvTelemetryContainer - ok
09:34:52.0653 0x2c40 [ DAFDDA94A3AD4191071934288B2326DA, ED4E7B3DA58C5AE8D57B3A2A15ACE73FDC59E9D7F7647595BE808570D159703F ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
09:34:52.0668 0x2c40 nvvad_WaveExtensible - ok
09:34:52.0668 0x2c40 [ E922DF7E9767AB997EF82BD8DA37F84A, 15303C8DD36BAAB1007A364F3301A084E487D927B92CA66BEB42488241AF808D ] nvvhci C:\WINDOWS\System32\drivers\nvvhci.sys
09:34:52.0668 0x2c40 nvvhci - ok
09:34:52.0684 0x2c40 [ 9DBC464AB85AA48C9760C6C2E591E2D3, C9D718F8BE838E13F7488F1E8DAA79809340235A5BA5BF206C1C3DBF0A5DDB48 ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
09:34:52.0703 0x2c40 OneSyncSvc - ok
09:34:52.0719 0x2c40 [ CD5ECD6470B6B235B73569A091150299, FAAE20B0F2F15ADA5B3F5F2BBBFEA000A95EC8A64B37C9364145CE04EE204352 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
09:34:52.0735 0x2c40 p2pimsvc - ok
09:34:52.0750 0x2c40 [ CCD10679BA0D9EF549F80C458C2AD1C4, 7B433FEE4BEA69C28A98F4BFBE5FA603DB2CE1DFCF229EBB4D9B7A0FD159FF04 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
09:34:52.0766 0x2c40 p2psvc - ok
09:34:52.0781 0x2c40 [ 13B175715A4391E4E5D2AB2EBC8CDBB5, 12BA91A586C5A31FBECEB2D4842E52F79EDD3E2AD4DB169C902B9A120AEC0201 ] Parport C:\WINDOWS\System32\drivers\parport.sys
09:34:52.0797 0x2c40 Parport - ok
09:34:52.0797 0x2c40 [ 428B9FAFB0EE6EF66EAAB7B49A96487A, 90892AC924B529B86B42D011B2B2F0556E204650C890FDACABD8051AD6EDB631 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
09:34:52.0813 0x2c40 partmgr - ok
09:34:52.0818 0x2c40 [ 646118D521C8131F6940E8BD808246A0, AB43BF7BD1410C344F72F4DFE87094C4B883018C518088D6A244C95235B0A7BD ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
09:34:52.0849 0x2c40 PcaSvc - ok
09:34:52.0865 0x2c40 [ 4B7830F9A04B1650B198CDC44F8B2F16, C6492F2EEA0C48EA6B2BEDCB8AA2EF0DAD83CCEED8490A2C7217B386EE3143AB ] pci C:\WINDOWS\system32\drivers\pci.sys
09:34:52.0880 0x2c40 pci - ok
09:34:52.0880 0x2c40 [ C447CDA030A3415711E4E940D2E9B399, 292888AE9D44013D8B12BB1D8803988EFF64957DE682B64FDC82E100646390DA ] pciide C:\WINDOWS\system32\drivers\pciide.sys
09:34:52.0880 0x2c40 pciide - ok
09:34:52.0896 0x2c40 [ 753174DF234EA8BBF732986D5F78FCE7, 6BE93B24DA2161DAE5ECBE393729BD4661F04CD0CDEBEBF6D92E9E212FA89D71 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
09:34:52.0896 0x2c40 pcmcia - ok
09:34:52.0911 0x2c40 [ 1D05B6DE437515281CD91A16C16529E6, 0FC581E40AF55D916CF428ECF4387C1E909C3361426F1D9F723F9497C9B025D8 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
09:34:52.0911 0x2c40 pcw - ok
09:34:52.0911 0x2c40 [ F5F1A092463D6E46E71CC709A65403D1, 9EEB499D54842667B4ECF1036E28926C8AD20515333373D2965C57BC2C7EAD4C ] pdc C:\WINDOWS\system32\drivers\pdc.sys
09:34:52.0927 0x2c40 pdc - ok
09:34:52.0943 0x2c40 [ 42B12A76D3C98AE69C97727E3BEC7D8A, C878A05A9817F62514432685FAA795737F628EF7258EC5C7846045E1CAB2DF6E ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
09:34:52.0974 0x2c40 PEAUTH - ok
09:34:52.0974 0x2c40 [ CD9BA1C279BE0E92E971C2B45A7F3D9B, EC6546868718771EE45D07E9E856E5F33DD4339C1115E4479D7DEF4394D141D0 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
09:34:52.0974 0x2c40 percsas2i - ok
09:34:52.0990 0x2c40 [ 6D5EA79E82A48B181E18C2C39416E8C8, 4F5EF24FFFABB82B1E9D98DE3275508D458589F729C4976FDB3C2EC51549D414 ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
09:34:52.0990 0x2c40 percsas3i - ok
09:34:53.0005 0x2c40 [ 185100798FBD23C849DC1C00ED43D99D, 10895ADE339744BBABDFB50BE6025217C02C76B1911C2C8740A57912385B38DE ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
09:34:53.0036 0x2c40 PerfHost - ok
09:34:53.0052 0x2c40 [ 1206779B445417A29B33FCC7230CD28C, FCC61CF4F27F0585F267D37324CBCDE2DE20C3EB34E87256F59997F0984C8EDE ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
09:34:53.0083 0x2c40 PhoneSvc - ok
09:34:53.0099 0x2c40 [ 807ED476A62E79935315342BD3FAA046, FF56FC79C6B6043A10C123CF85A8DDA0B8564E03D49AD5811DDCBB99823C4836 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
09:34:53.0115 0x2c40 PimIndexMaintenanceSvc - ok
09:34:53.0146 0x2c40 [ 4E614DBE28B5857F70DEBCC804629E67, B93C42FB96BBA0577CB892274905352AE4A6DE257F676D6A23CE0297F945D7E7 ] pla C:\WINDOWS\system32\pla.dll
09:34:53.0208 0x2c40 pla - ok
09:34:53.0208 0x2c40 [ DBD6E8A5C358AAA3B4900EFD5CF94CC8, C8261CBE358562B3F31ADA0567723E0118A8687DFC8939FABC65E61C38BFE20B ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
09:34:53.0224 0x2c40 PlugPlay - ok
09:34:53.0240 0x2c40 [ E8BE4041A69023B6A4D1096EE8436347, 133BAA21852D077EA600F0A09C112F6511ACB792757472891E71185E94135D5B ] pmem C:\WINDOWS\System32\drivers\pmem.sys
09:34:53.0240 0x2c40 pmem - ok
09:34:53.0255 0x2c40 [ 99ECEDA6B2E1FDB6892FBD5AED1E5D99, C970DDDBDB4AF8C6A1AA92D780B82920B4922304649509075CF14A2AB86C3CCF ] PNPMEM C:\WINDOWS\System32\drivers\pnpmem.sys
09:34:53.0258 0x2c40 PNPMEM - ok
09:34:53.0258 0x2c40 [ 75690F495CEDBEF3D5989828AEEAE832, 3257E7261DF8F39CA4988BBED3060B9E8A5988978F66A4B1409E08F65B262FED ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
09:34:53.0274 0x2c40 PNRPAutoReg - ok
09:34:53.0289 0x2c40 [ CD5ECD6470B6B235B73569A091150299, FAAE20B0F2F15ADA5B3F5F2BBBFEA000A95EC8A64B37C9364145CE04EE204352 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
09:34:53.0305 0x2c40 PNRPsvc - ok
09:34:53.0305 0x2c40 [ 9744ADAF8DD679D64A33D828FABA39E1, AE820E529697A2F308E6A24127B3D4A7F02C406DA46A6CB65243EC3F6B400950 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
09:34:53.0336 0x2c40 PolicyAgent - ok
09:34:53.0353 0x2c40 [ F39D3876C731BB01BFE8F574188837C8, 51CB5E89397D6A150A05BDD53CC9B90B419A040BE1828C2E7BBD6684FE371588 ] Power C:\WINDOWS\system32\umpo.dll
09:34:53.0369 0x2c40 Power - ok
09:34:53.0369 0x2c40 [ 1FB09FD846D5030B82EB345E9970A105, 871D38DD966EDD919B2E0C51125E1834A15A0222E2452605988BFD7E7B37C5C1 ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
09:34:53.0385 0x2c40 PptpMiniport - ok
09:34:53.0447 0x2c40 [ AD62FCEC1CB8ECD7C0E3DFD2FA79FDE4, 6372FC5E78A2DDB8AE6EB73BEB5C0D4056FB6BE9F231A36BAC37AE970F5EB247 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
09:34:53.0541 0x2c40 PrintNotify - ok
09:34:53.0557 0x2c40 [ A60202AE474E2173ED91118DD73ADAAD, 6AE315E1DD9E3B03E48B8848FCB0CDD506080F0012DE478BA99D102F91E968E6 ] PrintWorkflowUserSvc C:\WINDOWS\System32\PrintWorkflowService.dll
09:34:53.0572 0x2c40 PrintWorkflowUserSvc - ok
09:34:53.0588 0x2c40 [ E0E55CDA29C80A9520FCFC78D7F8A73D, 9DE15A73643D71183E568F8F4DD8776D935786BE46F15BFE2DFD607378FC9E58 ] Processor C:\WINDOWS\System32\drivers\processr.sys
09:34:53.0603 0x2c40 Processor - ok
09:34:53.0603 0x2c40 [ F96AA93B40D4670016DAF8C8F0D1BCB5, E8B77B271FDD6036F44EB9F7B7D270E754E69914F91E19512BF038FC3EDAC04F ] ProfSvc C:\WINDOWS\system32\profsvc.dll
09:34:53.0635 0x2c40 ProfSvc - ok
09:34:53.0650 0x2c40 [ E4BF8BE7B3711BCBBC95EE983C0236F4, A71C09D83034C96F7ED4DB58F7388F8A13C7FD1A3F41FE8EEC553C42B65DFFC6 ] Psched C:\WINDOWS\system32\drivers\pacer.sys
09:34:53.0650 0x2c40 Psched - ok
09:34:53.0666 0x2c40 [ 114C1662EBF3C52B0FF52EAB1D9787BB, 6EB1871F69EF4CB1A8FBFA9D73050E5253861D4BF8DC8999B652EAAFB04DD10D ] PushToInstall C:\WINDOWS\system32\PushToInstall.dll
09:34:53.0682 0x2c40 PushToInstall - ok
09:34:53.0728 0x2c40 [ 7326981E1753220BE0AC2D8F3F101C3D, 874676AA91D2E96D604C02A6A79ACFAE76E14CB47CD9818755CBF5101E4085CF ] Qcamain10x64 C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys
09:34:53.0775 0x2c40 Qcamain10x64 - ok
09:34:53.0775 0x2c40 [ 8AB5F41584C98047ABEF490FC1E31F7E, F8480F9D9C1A60901975C529CC0911ED592834AB1068FADD88B15E6497A59221 ] QWAVE C:\WINDOWS\system32\qwave.dll
09:34:53.0806 0x2c40 QWAVE - ok
09:34:53.0806 0x2c40 [ 00F72861538B6C4E925A21BAE397A49D, 6847E2332CC8573850428CC7E3A73B2DA0274977F53BDDF7DBA68D223A501CC4 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
09:34:53.0818 0x2c40 QWAVEdrv - ok
09:34:53.0818 0x2c40 [ 29AA10A60A734CFD91AF0EA18CD022EA, FF089D6261BE7DE6ECC2C106938500CAD35214A952F6206134B0D860F2A31B1A ] RadioShim C:\WINDOWS\System32\drivers\RadioShim.sys
09:34:53.0834 0x2c40 RadioShim - ok
09:34:53.0834 0x2c40 [ 0FFABEB2D06CD74DDE0BCA510EEAEEBC, 8598F39D312754C92A3776104D596F0C0312712D934B9994B2711F95FA6FE0AE ] Ramdisk C:\WINDOWS\system32\DRIVERS\ramdisk.sys
09:34:53.0834 0x2c40 Ramdisk - ok
09:34:53.0850 0x2c40 [ B834761352403111D0113284D8736025, 444D05D5F4CED956AFE48CA29CD59420BDB2B14336D19BE2A28612A851EACF4E ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:34:53.0850 0x2c40 RasAcd - ok
09:34:53.0865 0x2c40 [ FA99CE309B66586A0AA6EF9CFF7BC467, 4684EB05828C2153FE94468E7A9A75D8C81F90E700B437C5990BC9451AD39AC7 ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
09:34:53.0865 0x2c40 RasAgileVpn - ok
09:34:53.0881 0x2c40 [ C7CCE345D0010B3B9AC5067578436BFE, 4473E7D0492B7F0214576861A6AD90363D7F826B5E0DE15A56E93DA94BBF19E7 ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:34:53.0896 0x2c40 RasAuto - ok
09:34:53.0896 0x2c40 [ 775ED7E51B58CF9EB415A1DBA540DACF, A3035A8A299D35B7A24A347FB8A2DB6B5892FD2A181D90F64CCD4806EA154395 ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
09:34:53.0912 0x2c40 Rasl2tp - ok
09:34:53.0928 0x2c40 [ 157D149DB0061CBE44C29D3EAB43A4FF, F2263B448307F9CE33B202D366D3AF40494B579738483C0801EAD04D40C5D90C ] RasMan C:\WINDOWS\System32\rasmans.dll
09:34:53.0975 0x2c40 RasMan - ok
09:34:53.0975 0x2c40 [ E2433A620ABF4083157944E4692C500D, 126CA9F9D38FB4FA312A82FEA24C13D0693407384B1BCD55A0CBEFA8E52E1D8A ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:34:53.0990 0x2c40 RasPppoe - ok
09:34:53.0990 0x2c40 [ EE5D1D51FA74ECCE57CF2DB8F6A417D8, CC295366C60CAECA7CC32903E3A983635B55A5F5FD6E6BC4FEFE997B8154345C ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
09:34:54.0006 0x2c40 RasSstp - ok
09:34:54.0021 0x2c40 [ 5F7027A2F16AFF56DA68D996FAFDAAD8, E1DC1CC818E7ED8B107386CD55EFF38B663FD3F9A2ACDD0919F5AF3591638D1F ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:34:54.0037 0x2c40 rdbss - ok
09:34:54.0037 0x2c40 [ 206AB796793FDBD518B82E2F308A7176, ED0DBDE7106970F217F4FB1FB184B6795A16356C879C17E0910840F64F292809 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
09:34:54.0053 0x2c40 rdpbus - ok
09:34:54.0053 0x2c40 [ 3DE4216324BE32FC3AF7667AE2406EE5, B2E3C47983C58B32E07E251FF729670B5D481249EEDFD3A3EFB0F8734673F1F6 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
09:34:54.0068 0x2c40 RDPDR - ok
09:34:54.0068 0x2c40 [ 0600DF60EF88FD10663EC84709E5E245, 48572DC0C644E13BD1713E29E522763EB4E00337ACA64D1392960D17EAF8923A ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
09:34:54.0084 0x2c40 RdpVideoMiniport - ok
09:34:54.0084 0x2c40 [ 65652EFAAF4A8A59E60A2D7BE15317E8, 83A9A8506EF4769625EF0EF43B93906A6FBD9133E52C12B17A68B89DAC68D026 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
09:34:54.0100 0x2c40 rdyboost - ok
09:34:54.0131 0x2c40 [ 3DCB3FAFE46B9FE41C9065EBBED97724, AEB08C8C1E6AB6181A5F2B540F913B59A1256AF0E6D5355C4AC7DDBA0BF0F20B ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
09:34:54.0178 0x2c40 ReFS - ok
09:34:54.0209 0x2c40 [ B76350D40A46DBA17205F8373528FD83, A599A9B1297B5D70632A9EF23E9771BA646672A1B0E323144EDE906CCA172EB7 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
09:34:54.0240 0x2c40 ReFSv1 - ok
09:34:54.0256 0x2c40 [ 980F60634FAF9C58FC468AF9AA609D68, 7BA03FE851F78D5DC9062ACEADF194ACB4F8F56C9D496B17D846CE1E4373B404 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:34:54.0271 0x2c40 RemoteAccess - ok
09:34:54.0287 0x2c40 [ 106E630F1B2A8BF2BBD4508D9B166406, FAFBE21EC61B97B4B825285EBA0F661382A95119E1740EE4FB9A1F6FB3C0F5F7 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
09:34:54.0303 0x2c40 RemoteRegistry - ok
09:34:54.0318 0x2c40 [ 53BE6D9C36A9CB95A1568C24D44A8A34, DD8245F87B9D4203F56595D6ABF9F1E74EA071D4B7BB0469A293CA9E20BDA246 ] RetailDemo C:\WINDOWS\system32\RDXService.dll
09:34:54.0349 0x2c40 RetailDemo - ok
09:34:54.0365 0x2c40 [ 59F600BDA5B6EE591802945F1D8388D5, A30593A0EC696DE21264969664261E7ADA12C9E1161445BD41E71B7E3232604F ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
09:34:54.0384 0x2c40 RFCOMM - ok
09:34:54.0384 0x2c40 [ 3D4F4CCE0364CD3F1B539D2630686F24, 620EFC53D6F5279AEF4748FAE22F7239E7855D1F5C79B85F6CB54EF51C516408 ] rhproxy C:\WINDOWS\System32\drivers\rhproxy.sys
09:34:54.0400 0x2c40 rhproxy - ok
09:34:54.0400 0x2c40 [ ADA13EBD9C23C51876A5B2EADF7F2E29, D08E6A907DE5DC6F51CA71CBF7886FE7D8C6FB09154B633D86CDBE9C311361A0 ] RmSvc C:\WINDOWS\System32\RMapi.dll
09:34:54.0415 0x2c40 RmSvc - ok
09:34:54.0431 0x2c40 [ 3CD63AE6A9A1DE4CD5831AE15221C861, CB8B5FDA48D9D4E5A9F26F67859105E2769AF82B2CA1B0B35D9BFBA611445CC0 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
09:34:54.0451 0x2c40 RpcEptMapper - ok
09:34:54.0451 0x2c40 [ 19EC4D05E01FE350B3494CEA122D64EB, 09FF60A8F22D66796257E33F4CFD6059D4A11A3173A7691718E9FE841E15ABA2 ] RpcLocator C:\WINDOWS\system32\locator.exe
09:34:54.0466 0x2c40 RpcLocator - ok
|
|
10.09.2018, 08:47
| #8 |
| | Virus? (Neue Startseite etc.) Teil 2: Code:
ATTFilter 09:34:54.0482 0x2c40 [ 107661923943E9DC06ED2713AC5F7753, 2B311E9BD635F1CEB222EF798C5523447AAF63E2331377804884572D7512F299 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:34:54.0529 0x2c40 RpcSs - ok
09:34:54.0529 0x2c40 [ FFFB16EF6E0B8B5F7F19B425923E7D12, 27C2882AC7B27BAC5A4051C2C9326A6D289F297158DE7A3A93E8B09378DC91AA ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
09:34:54.0544 0x2c40 rspndr - ok
09:34:54.0560 0x2c40 [ 7E1E1E54562396926F4A6C7353C02B47, C34D048741EB2A62557FF988DF29CD0FE7F4D7B8F6FCB013483BCEE11CF05889 ] rt640x64 C:\WINDOWS\System32\drivers\rt640x64.sys
09:34:54.0591 0x2c40 rt640x64 - ok
09:34:54.0607 0x2c40 [ FAEE7E2ABA25F975F2A14551DF385609, F6E6E34C14975873FB195450933A1C2DCA12CEA3E7B0FE654230C66B8E454453 ] RTSPER C:\WINDOWS\system32\DRIVERS\RtsPer.sys
09:34:54.0623 0x2c40 RTSPER - ok
09:34:54.0623 0x2c40 [ A2939E69027B97105014434BFBFF7195, 9DC09BE94415564D0E80431223BDA1C59E3555AB5267DD3F64E71D4A18C8553A ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
09:34:54.0638 0x2c40 s3cap - ok
09:34:54.0638 0x2c40 [ 317340CD278A374BCEF6A30194557227, 593DA57CDD02F4CC3A5125CE5707C222DD922F2936D16492BA21AC6C345EC6B0 ] SamSs C:\WINDOWS\system32\lsass.exe
09:34:54.0638 0x2c40 SamSs - ok
09:34:54.0654 0x2c40 [ 04C51BBD8C9F54E5F2C5D831B03B11E3, 15AD9F224CBBCAFB117574F03C6F1C02639928A95BC4533453EBAFB20F7AE671 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
09:34:54.0654 0x2c40 sbp2port - ok
09:34:54.0669 0x2c40 [ D48F36EA4B4E8237B24E33B18D76EB2A, 128E754F15FDB00D218FB23431BF0FBDC65D64EEF294D72535B0C07EB5472136 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
09:34:54.0685 0x2c40 SCardSvr - ok
09:34:54.0703 0x2c40 [ 1B1FB3D8403E621F2B9201EF414E21D9, 5EFBEA5DC09CD5F151EF224BE2FF2C985D19301B17E5C16F5D00CB2852DAF8BF ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
09:34:54.0719 0x2c40 ScDeviceEnum - ok
09:34:54.0719 0x2c40 [ 0070C2DC6563C48EDA63A282748F3FCD, 12C8505DDD05994641B2B19666D7A54E12A21F6894913342A9BA5D148F193BE0 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
09:34:54.0734 0x2c40 scfilter - ok
09:34:54.0766 0x2c40 [ 9D13410D7B4D76AA2EA73EC8CA0E0190, 7C46D202683F34F1C07D9D297E9A239376800DC8C84FE1585FE7FC723B6EBBA0 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:34:54.0816 0x2c40 Schedule - ok
09:34:54.0831 0x2c40 [ A61C34A8B6BA61E61C612CAD636C369F, 9966C5D2B4B60555BE9B9533DA62E0806767226B55EEC31030FB230DEBEC2650 ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
09:34:54.0831 0x2c40 scmbus - ok
09:34:54.0847 0x2c40 [ 620E4F2FDD04FFB70702676423F1C2AC, 25A19FFA966605C229F5BFBCBBBEE36695FC673C7814CF13E79EE4A9B3D8CBE2 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
09:34:54.0862 0x2c40 SCPolicySvc - ok
09:34:54.0862 0x2c40 [ 495273177E87B0C34D7E431E9254FA23, 61116DA77622F5A0E931F5033C1B870A22AD3438C056FD1F320F857908E4124B ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
09:34:54.0885 0x2c40 sdbus - ok
09:34:54.0885 0x2c40 [ 9EF09DE84CE20B787C02395394AC2A7E, 17019B74506D26707EBC342365008A9BB5AACA381FB60ABA85F34D153FB0682C ] SDFRd C:\WINDOWS\System32\drivers\SDFRd.sys
09:34:54.0885 0x2c40 SDFRd - ok
09:34:54.0901 0x2c40 [ 01607A2FAB0068450A06C90AF755D57E, 9615261063475045CBC99F17BD3A4919198D0F77CA9E4EC7B13826E514BC8543 ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
09:34:54.0932 0x2c40 SDRSVC - ok
09:34:54.0932 0x2c40 [ F80D6C03FEA2F7DEE14023B7229DA8C2, B62AFCFCDE9C1BA0A5D80BAAC3D3D95546DB2E532C04C765FF85B27D1CBD5B8D ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
09:34:54.0932 0x2c40 sdstor - ok
09:34:54.0948 0x2c40 [ 44B1F4F200B4D3AE8B53290101148AFC, 34F18FEDE525BB398371329CA9F93BD3D88C30E23FCA576978D94EC67513228C ] seclogon C:\WINDOWS\system32\seclogon.dll
09:34:54.0963 0x2c40 seclogon - ok
09:34:54.0979 0x2c40 [ 0F67F777705C6DC33FFE0FF459762957, 16BE999DCEC6C2C4F799025ACBFDE04CCE66B39160B6186A00F4BCFA2A1E41AA ] SecurityHealthService C:\WINDOWS\system32\SecurityHealthService.exe
09:34:55.0010 0x2c40 SecurityHealthService - ok
09:34:55.0026 0x2c40 [ 7D7ED932B6417D8687D1D972989B310B, A5DF3B6CEE97DD110FD1BC542CC5A5313B2F447E5FCC40DF6EFB9D7D49CD792C ] SEMgrSvc C:\WINDOWS\system32\SEMgrSvc.dll
09:34:55.0073 0x2c40 SEMgrSvc - ok
09:34:55.0088 0x2c40 [ CA614C9FBC8307AB1DC937F3393899E2, 4833CC631FA30E4D4B45BBC2CE41DE72B332B6A1FFD23B7DBFD6EDD6BC1A2ED8 ] SENS C:\WINDOWS\System32\sens.dll
09:34:55.0088 0x2c40 SENS - ok
09:34:55.0120 0x2c40 [ 46AEFFC68BEAF89805B95CC6F9529C2E, 7A6A38A329E82F684191561479604142BBB35121822A5CDD828819C606F2A60A ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
09:34:55.0182 0x2c40 SensorDataService - ok
09:34:55.0198 0x2c40 [ 2B81117E9C3E20BBAA2CB5467D000F77, AC0DF8E635908026EE43EE0444DEF61481E211737A85A473D64EC8BB214D1135 ] SensorService C:\WINDOWS\system32\SensorService.dll
09:34:55.0229 0x2c40 SensorService - ok
09:34:55.0245 0x2c40 [ DF94FAAEC4CDAA3886A0169E660C984B, 54BB09459D59B5DDA24D72821840FA7A71A194EA464E09DFDE021B24CB27FCAD ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
09:34:55.0260 0x2c40 SensrSvc - ok
09:34:55.0260 0x2c40 [ C5CF2941AA9E417B3A224601255C002E, 31E2988E13D9BB3630980E8B71AE5FB244EFB15970623C1FE76B7ACA25A4A2F2 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
09:34:55.0276 0x2c40 SerCx - ok
09:34:55.0276 0x2c40 [ B9C113BD9FCA4F3E23F03708A7DA07CC, 0A070BDDA956B1869D58A173B56ABA011E1F7A3C5D258343D0AEDC1EC87F4B53 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
09:34:55.0291 0x2c40 SerCx2 - ok
09:34:55.0291 0x2c40 [ 1845736FA47A1DFBBB642FE21095B4E0, 057E8750E8695F6B72A33BBF1C5CFCCD6BFC992E6B99A487A07F5A4921004791 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
09:34:55.0309 0x2c40 Serenum - ok
09:34:55.0309 0x2c40 [ F1BABF50469041797ED9928C31318832, 1A8C75F4696D4D2AA47EA33BC96069A394466953EBC3CFB2B3D6B961B8B5875A ] Serial C:\WINDOWS\System32\drivers\serial.sys
09:34:55.0325 0x2c40 Serial - ok
09:34:55.0325 0x2c40 [ 340116988930B07629A2D0C2B380A365, EBAAC3DF2E8DABFB477340E79FC8E3A8B74340C389D73E51D64A97A332664113 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
09:34:55.0340 0x2c40 sermouse - ok
09:34:55.0340 0x2c40 [ 87340BC77470B34F11A9E558B591DB08, FD91561FE5951B4F59FEE23707E1ACE31293E508EF734A5CDB0F34D332EFDDF7 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
09:34:55.0371 0x2c40 SessionEnv - ok
09:34:55.0371 0x2c40 [ 77FF0A5BA023D8E8C82EACCD54EA5C78, A4A88A550419C347E369DDD29D4EB5C1BC4D980FBA9C655DF787A166FCA2497D ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
09:34:55.0387 0x2c40 sfloppy - ok
09:34:55.0387 0x2c40 [ 1941F5CA54C469E16957587FD56ED842, D356547A9702A50AEB5F7765AC44668EEA913563A422ABBD0427EC22833A5B78 ] SgrmAgent C:\WINDOWS\system32\drivers\SgrmAgent.sys
09:34:55.0403 0x2c40 SgrmAgent - ok
09:34:55.0403 0x2c40 [ D3170A3F3A9626597EEE1888686E3EA6, 9321991C441B095DF15D24C8AE58F87EE5A3242532E8C023D0F78B2F96FEE6B7 ] SgrmBroker C:\WINDOWS\system32\SgrmBroker.exe
09:34:55.0418 0x2c40 SgrmBroker - ok
09:34:55.0434 0x2c40 [ AC1D97F89F2EC7E334A406603A686973, D230059C1CB400CCA62438603356F058B40E17DE4C7BD4DADDBB981E4F5E4C9C ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:34:55.0465 0x2c40 SharedAccess - ok
09:34:55.0481 0x2c40 [ 0BE15FDA358837ABD88DC72AA75C75CD, 3990FA051E7C280B446C8A749FCEE04E384230CC5E286B4E7080B1737E5730DD ] SharedRealitySvc C:\WINDOWS\System32\SharedRealitySvc.dll
09:34:55.0512 0x2c40 SharedRealitySvc - ok
09:34:55.0528 0x2c40 [ 63B104867F70F0D81125C37989146960, 468431098DD9B91F1C58551CEB4DBE6E1C456FFE845E302571B970EF05AE03A8 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:34:55.0559 0x2c40 ShellHWDetection - ok
09:34:55.0559 0x2c40 [ F6D90D09D2BCFA2B5E492BFECA40EDE4, 7B427335943C1EFDE482D59F3A23149FCD45BB014643BEF620A708720383C4A8 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
09:34:55.0590 0x2c40 shpamsvc - ok
09:34:55.0590 0x2c40 [ 1443CF919C2A3207CE7724E0A31686A2, 3F0ECC565F67638A57A23BF69C399AD638DA9F81F1660CF3E027DC057E990EA4 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
09:34:55.0606 0x2c40 SiSRaid2 - ok
09:34:55.0606 0x2c40 [ C0B1EAD6CC127CAE4E84EBF54105B3B8, 86F5C937D9DC61F262FF00B45249162F4087B6A1CA0FC24EF7950E4E77FEF26B ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
09:34:55.0621 0x2c40 SiSRaid4 - ok
09:34:55.0621 0x2c40 [ B7C6144293CFAD2DEDCD022C44735DC2, 75F26A8F43EED45764D50B2CCE44C453BFBBD0FA56B6AF1F2B4B8B3665C3961E ] smphost C:\WINDOWS\System32\smphost.dll
09:34:55.0644 0x2c40 smphost - ok
09:34:55.0644 0x2c40 [ A3BEF2736E902B9DCA68554F4E10E08C, 5C7590D8F2D637B6D4A5F68945D8350B1C3D48EBE1B2C36658361900C9425611 ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
09:34:55.0675 0x2c40 SmsRouter - ok
09:34:55.0690 0x2c40 [ 577EC13EB5215325E9B9FC51FB56A974, 1D7A0245A3C474BCD4EC69704040FB50C0E086DB1711C5B7FC4D9C4A7909DAB9 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
09:34:55.0714 0x2c40 SNMPTRAP - ok
09:34:55.0714 0x2c40 [ 5E70A578D27BCC7E37E16055669F2836, 7713A750902E1B9BA70C9F9EE8977E7C591AAE80D155657370E63FA2CEDACCAC ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
09:34:55.0730 0x2c40 spaceport - ok
09:34:55.0745 0x2c40 [ FE1776E587227120DC04EAEC45473245, 9DEBD997D275065481EEEDD2310479F2021D53B64AA6D5CEEA70E9BB8C9856C7 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
09:34:55.0745 0x2c40 SpatialGraphFilter - ok
09:34:55.0745 0x2c40 [ D05EB2BB52EC6B665D1631EC33241B80, 29598FC180020515254A9FAE7BE8077549C656EDB425059691007EEC0F9346F9 ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
09:34:55.0761 0x2c40 SpbCx - ok
09:34:55.0777 0x2c40 [ 52A4B8C04C345434C974B9A949521BAE, 5FAA7E1BECD6FA28E4BA53E9B3301328B6E8516867BD7D76202A73B8CD530BC5 ] spectrum C:\WINDOWS\system32\spectrum.exe
09:34:55.0828 0x2c40 spectrum - ok
09:34:55.0844 0x2c40 [ C05A19A38D7D203B738771FD1854656F, 3A832F3CBA33682EAA18ABB721BF2D5A6FE9AC853038C684C264700DEB52AA65 ] Spooler C:\WINDOWS\System32\spoolsv.exe
09:34:55.0875 0x2c40 Spooler - ok
09:34:55.0949 0x2c40 [ 95EBCA251177AD13238FF0DC15C3202C, A7AAB09BAA42562D3638664FEE899B47BF93AEFC94EC112E9E433A3F093909A8 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
09:34:56.0043 0x2c40 sppsvc - ok
09:34:56.0058 0x2c40 [ 3EB4023AC700182D84CB6761D3727394, 6993C127F4AD8B899E6A285EDB849807F522D9B0A0018E5436114F527EC8B1F1 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
09:34:56.0093 0x2c40 srv2 - ok
09:34:56.0093 0x2c40 [ 93DF24D0C33F2894429D4180145CBDA7, 763F05818AD5F348887C297FA14FB77B6F54B9A5C3C1D70CF2B7B0692961950C ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
09:34:56.0109 0x2c40 srvnet - ok
09:34:56.0109 0x2c40 [ 1AEA66706573E8CCD6038369FE37F237, A62CAFE205D5B4C9F8528EDDA4E20BA4E2D1E231F2B183FE70EFE6458B2D5460 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:34:56.0140 0x2c40 SSDPSRV - ok
09:34:56.0156 0x2c40 [ 5EE518DFADC18573E681BB78833E93FA, E98CCD3E2ADA265D6E3CF48CDBFE5C3067E0546F179F23B77C267F65CEB978EE ] ssh-agent C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
09:34:56.0187 0x2c40 ssh-agent - ok
09:34:56.0187 0x2c40 [ C7DF51E24DD853E7E2D3C0BCDCE57D6C, D1BFDC89F00C5B8388EB233290B6D540C246D0267B1C192C51645004A8CD8C62 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
09:34:56.0218 0x2c40 SstpSvc - ok
09:34:56.0234 0x2c40 [ A72B7C730B1EF1E7764044737E802FAD, D102122D2B938A48F8A6761F1F75D37476D628C1E5D644DFB30262CE50E2D250 ] StarMoney 10 OnlineUpdate C:\Program Files (x86)\StarMoney 10 S-Edition\ouservice\StarMoneyOnlineUpdate.exe
09:34:56.0250 0x2c40 StarMoney 10 OnlineUpdate - ok
09:34:56.0328 0x2c40 [ B9E4174DFBDCA9979A92D17C2E67890E, 1717A6B7CADDDFCA8879B293C29617E194437E049308BCEDF3D07007C41FE39F ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
09:34:56.0432 0x2c40 StateRepository - ok
09:34:56.0432 0x2c40 [ DA82903F26AE12034CC5229F61098948, E7B5CA27C864BE95EC109D0692F44BE9F5F56AB6173AB1811F4E83A3EB5F26CA ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
09:34:56.0432 0x2c40 stexstor - ok
09:34:56.0447 0x2c40 [ EB2C25A3700309F3F67D9334CF33A36C, 9262778566EEEA810AD32CD660DEA841797BD9F874252CC5445D917FF159280B ] stisvc C:\WINDOWS\System32\wiaservc.dll
09:34:56.0479 0x2c40 stisvc - ok
09:34:56.0494 0x2c40 [ F2D1983C7BEF5E3AB8978A7796C59A75, 39B2005F7CCEC95D2F67AE5F69C3768FEFA04AABC0723BAD8A986A036AF0629B ] storahci C:\WINDOWS\system32\drivers\storahci.sys
09:34:56.0494 0x2c40 storahci - ok
09:34:56.0510 0x2c40 [ 76C9E2AA3400C22FC7091AD2F2999F95, 0015CF42CBA603448DFD85909D5047D5F9BE9153972C3832B1CF4B92A6BF0D01 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
09:34:56.0510 0x2c40 storflt - ok
09:34:56.0510 0x2c40 [ 701078F20919BD635EA25F691880F651, 6D56027007EF92A72C20B9B8024FDD96E03E2B8746F39D57BD1F7CAD2FC80DB2 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
09:34:56.0526 0x2c40 stornvme - ok
09:34:56.0526 0x2c40 [ 47CE4211A40C2C023A8138E18757F3D2, D684D2A7DECC23418A685358EA9B4F6EB3A68C690D5ED8E82F4B4639DF022775 ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
09:34:56.0541 0x2c40 storqosflt - ok
09:34:56.0557 0x2c40 [ DEA7BB6D3724F2FD9E61ED085E69DFA7, 5047F184894E79C31739D3C9632E43E8D2ABD70AA674DE82D6D2D0FDA137BF3F ] StorSvc C:\WINDOWS\system32\storsvc.dll
09:34:56.0604 0x2c40 StorSvc - ok
09:34:56.0604 0x2c40 [ 25D7B79F80F3C2CD97D797C14D470165, 5425F98A66741BB2BC7BDC8B21C3AF859A503596D983010883BF5BE4FD999D9D ] storufs C:\WINDOWS\system32\drivers\storufs.sys
09:34:56.0619 0x2c40 storufs - ok
09:34:56.0619 0x2c40 [ 1FC7B7BE58A29DF27F5E6F6C2F061FA3, D8CD6D1BD0ACA4B851DBC85F898CB5DA8715C5AB3D62D7B0D6BBFEADC0382A8E ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
09:34:56.0635 0x2c40 storvsc - ok
09:34:56.0635 0x2c40 [ 0B154B033AD7F9215DED11E0CFC80A25, 383D7BF361D75A3B78E4C8E3F616E487FA6172F860AE364B1AC73F75BE38944F ] svsvc C:\WINDOWS\system32\svsvc.dll
09:34:56.0650 0x2c40 svsvc - ok
09:34:56.0666 0x2c40 [ 54255DF324C621A97220EBFA832237D2, 27BAB2018BE66C67D6C2BBAA8E849E89B4150B8C81E7350DB0A1D14BEEB965D9 ] swenum C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_ea7b19c04e7a8136\swenum.sys
09:34:56.0666 0x2c40 swenum - ok
09:34:56.0682 0x2c40 [ B3C113C9B784A4D296C7A7BA515F74BF, 0D20281B8AA9ED6C89E10122F3A153C2E21464686E5A3D2F907224584E6B5BCF ] swprv C:\WINDOWS\System32\swprv.dll
09:34:56.0713 0x2c40 swprv - ok
09:34:56.0713 0x2c40 [ A2A42A570524C975259E3B81C4D80DCA, 4B2A6295E46DD2042B3C741D9519A0376687B30711F2DA8B9B81A039E46229F9 ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
09:34:56.0730 0x2c40 Synth3dVsc - ok
09:34:56.0745 0x2c40 [ A8D839012996A00F3071116C529FF5D5, 9C2828C8F645F9F44B65FAC50CACD7D2699634059585DDE84D11C7F06F244060 ] SysMain C:\WINDOWS\system32\sysmain.dll
09:34:56.0798 0x2c40 SysMain - ok
09:34:56.0798 0x2c40 [ 607143646829B70F7C60F4CF499AD41D, 00746AA3D0ECE27BC04FCAB4955A199C5E040F850D0129865EC8F03DD202EF7A ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
09:34:56.0830 0x2c40 SystemEventsBroker - ok
09:34:56.0845 0x2c40 [ CE9975A9E0DFBEFECECE218D2674C1CD, 20ABA9B78FF40C89A757ED2B4AE2F8BE5F4C6C257AA00A324849D68ACA59A264 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
09:34:56.0876 0x2c40 TabletInputService - ok
09:34:56.0892 0x2c40 [ E38C7C4D57B1438F70A1B913870E8665, EEBE640E31F3D9126FD2F58EB93051FE4EEA591223DFAB9E918DEBE879718B95 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:34:56.0908 0x2c40 TapiSrv - ok
09:34:56.0955 0x2c40 [ AD15A3D2B165B5CBA09D5A634C9881C1, BAD9310C29B63626680E65E000DEB73B0F4C65F48EC60E8F791F5ADBDB6E53C6 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
09:34:57.0017 0x2c40 Tcpip - ok
09:34:57.0064 0x2c40 [ AD15A3D2B165B5CBA09D5A634C9881C1, BAD9310C29B63626680E65E000DEB73B0F4C65F48EC60E8F791F5ADBDB6E53C6 ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
09:34:57.0111 0x2c40 Tcpip6 - ok
09:34:57.0111 0x2c40 [ 085F8A5F09E64CC27309AF160EF4F9BA, DB3DFD3059836A9FB26FE924E9F2B960E454F4B20D8862266DFDA3168D610FD8 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
09:34:57.0126 0x2c40 tcpipreg - ok
09:34:57.0142 0x2c40 [ 16071C42E21CE3378FA449322FB9AB1D, 44CA7FD91275546492EEF0A59261E2B1C924613515D45EFD2EF0442023B2CBE5 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
09:34:57.0142 0x2c40 tdx - ok
09:34:57.0142 0x2c40 [ B2C4D7CB291293CAC636748E695D111E, 5E0AA8147EFDA5D21CEE8AE254F74A974B0ADAF298F569CAA73AC4E3B758438A ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
09:34:57.0158 0x2c40 terminpt - ok
09:34:57.0173 0x2c40 [ 10ADC3589E50B1ED8452C86E0CBE8248, BE82341A12EA83D9EFADC9AC35CF16D327F8499C99107DCDE88DD0F5DF84523C ] TermService C:\WINDOWS\System32\termsrv.dll
09:34:57.0220 0x2c40 TermService - ok
09:34:57.0220 0x2c40 [ 1A0A0F6A139148AFDC4622046D4B3CBD, 8FC2FB99B70A3A5B2F1D757A2F0E3085B1D242B792A35070E1DB3871A275329E ] Themes C:\WINDOWS\system32\themeservice.dll
09:34:57.0251 0x2c40 Themes - ok
09:34:57.0251 0x2c40 [ 811910E891A6DB4A864AE119EB71218C, 2CBB6159E2ACAE4BA73892A4F7F8A3981C159083C29F1A1D548C59FB713B9D74 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
09:34:57.0283 0x2c40 TieringEngineService - ok
09:34:57.0283 0x2c40 [ 8BF5E2FD72E939CF68D617E273034793, EE27D070E1C4EFE902BE173C5561F5601499F835762278CC1E5987886BD8A4D1 ] TimeBrokerSvc C:\WINDOWS\System32\TimeBrokerServer.dll
09:34:57.0318 0x2c40 TimeBrokerSvc - ok
09:34:57.0333 0x2c40 [ 992E10F3A16C90436DFEDD3B787DE729, 4794CE27547E8CAEC1C2E3BDA7E3EAB518FF6CCC0AA3CF55B96A65C915C6D987 ] TokenBroker C:\WINDOWS\System32\TokenBroker.dll
09:34:57.0380 0x2c40 TokenBroker - ok
09:34:57.0396 0x2c40 [ 900F8AD6086A4AA9EFE0C69D93377BC9, B08A36EA7B8B3D4E38B5D4FED7CB3A5E6262FEF07790052BCC831B5044463968 ] TPM C:\WINDOWS\System32\drivers\tpm.sys
09:34:57.0411 0x2c40 TPM - ok
09:34:57.0411 0x2c40 [ A5C0F857C38278A90E953A24E1701196, 1A646E47013946CCE41C798A494C6D266AEFC8A8D6EB65CD8848E72106687E38 ] TrkWks C:\WINDOWS\System32\trkwks.dll
09:34:57.0447 0x2c40 TrkWks - ok
09:34:57.0447 0x2c40 [ 4578046C54A954C917BB393B70BA0AEB, 2DFE9DE656B415CF7D81F583F33A20A74CD54C07DB8C3196AA2102431F42F74F ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
09:34:57.0463 0x2c40 TrustedInstaller - ok
09:34:57.0479 0x2c40 [ 0D721F40C179EC5737C15E551F22C69B, BBA04E11C3D9150C60F74D8B1A3F444BDE0C19857BB7C45D58448F641082DE1A ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
09:34:57.0479 0x2c40 TsUsbFlt - ok
09:34:57.0494 0x2c40 [ DE1296871208D1F13B7AC57C4B1FA46C, D18709F65E372A47AE114ECFD6A45E6736089B4A8E719E2FB5D831D9415E995D ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
09:34:57.0494 0x2c40 TsUsbGD - ok
09:34:57.0510 0x2c40 [ BC938ABBF586272BD4063CA51F09149F, 06EB662948D212ACDF930C3CD01C6381A6FB152AC0F1628C86764F0973ABA1CB ] tunnel C:\WINDOWS\system32\drivers\tunnel.sys
09:34:57.0515 0x2c40 tunnel - ok
09:34:57.0515 0x2c40 [ E94996BB8F323AF02860196C1400AD30, DE605439FC5B59C1064DF05F63C94D7C275482C1C66BEC74FA4A83F61C2051FC ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
09:34:57.0562 0x2c40 tzautoupdate - ok
09:34:57.0562 0x2c40 [ BDFACE024EFF2398214797143AD76C87, EF9B6CB1F6EAE4786BBDE1E0946BECC5BD2AA493FC32A8F779A757BA57238EC9 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
09:34:57.0578 0x2c40 UASPStor - ok
09:34:57.0578 0x2c40 [ 00C4396DE1CD3502884BB2E2B6D6861C, 39F6BF25096ACE29CAF964DCA15078F47986F645DF49FB502A2CDF2C05C89AAB ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
09:34:57.0593 0x2c40 UcmCx0101 - ok
09:34:57.0593 0x2c40 [ ED9CBD1541C8AFDAA9B8255A384E2B53, D970F5E976CEBE0BCDF07B9E155EDB5B3C225812991779748CD04A9C4852DF3D ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
09:34:57.0609 0x2c40 UcmTcpciCx0101 - ok
09:34:57.0609 0x2c40 [ F58F1BC6A6972437CE18516F8ACCEB9F, 2C619D1E2E80662FA463EE48E3D41C8437A81B0F68EE67A0839A93DEDCD2E0B2 ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
09:34:57.0624 0x2c40 UcmUcsi - ok
09:34:57.0640 0x2c40 [ 017FB9532F54B28EFC1E37A91DB9ECC5, B753A114C644E57E3A4754836F29A6974BAADE547D3114D783070E7CDAA7CE1D ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
09:34:57.0656 0x2c40 Ucx01000 - ok
09:34:57.0656 0x2c40 [ 12E2B6B642360E66396502B62B048694, C9AC86BF767ED4ACE0F58BA3720369A2758BA154AFFE10CAAD5A2C4C259BA50A ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
09:34:57.0671 0x2c40 UdeCx - ok
09:34:57.0673 0x2c40 [ 6A442723D4D05D9F15D24C9942CDA00D, 4A60D6CF7214A3891877AC6E5A49AE49D056567162D6355C0D893510F0241DA7 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
09:34:57.0689 0x2c40 udfs - ok
09:34:57.0689 0x2c40 [ D30AF38971B6670C222250AC2CBB6227, 52C1C7AC29D06C701DA0E2772294CED0C1790EC7FCBD5074238B54BEB951E9D0 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
09:34:57.0705 0x2c40 UEFI - ok
09:34:57.0705 0x2c40 [ 588B9212DEE84F5192C09A147AA5C316, 80C70FD489D72015FCF8AFBE649F6C77F40B613882A1F031A2DAE088B9B4F67B ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
09:34:57.0720 0x2c40 Ufx01000 - ok
09:34:57.0720 0x2c40 [ 78B5C069C9AA1463ACC833FD7E2A3BD5, A44BAB6AB5E071537BD37A26DAF6D0D69BBFFFF686C183BFAAB04286DD3B81BB ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
09:34:57.0736 0x2c40 UfxChipidea - ok
09:34:57.0736 0x2c40 [ 533BF4F456A1C6E7581E8C0A4EC59300, E5AE7EB4A8E6CE410F465C48F102797806172B5881C2CF570A9851CCDFE656FD ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
09:34:57.0751 0x2c40 ufxsynopsys - ok
09:34:57.0751 0x2c40 [ 360FEE6F687D98EFFE46A5433FE6182E, 1A35569DC29F45F78D705BCEDE850CAF86FD27D6253977497EB3B000CAAE0B27 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
09:34:57.0767 0x2c40 umbus - ok
09:34:57.0767 0x2c40 [ F6F1A9D91F684AA02951B96EE8127DAE, 351139331041BC123C9FEE3A5CE4965AFC4CDCA488080338D98C5EB85D5843D4 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
09:34:57.0783 0x2c40 UmPass - ok
09:34:57.0783 0x2c40 [ 0D806415E1F86E7C1C192261C247EF0D, 640CB73D9ACC3B6E0F2A2A5A4587375F05A7519081BEC510B926A8A4A496C3B9 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
09:34:57.0814 0x2c40 UmRdpService - ok
09:34:57.0832 0x2c40 [ EAEC69961D9D8B39FEA44D56F7FB259D, 43FEB15A32B353B6F3C8E5F1072FF9507F2FA7799A414F30FEA0B8C47999D969 ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
09:34:57.0879 0x2c40 UnistoreSvc - ok
09:34:57.0894 0x2c40 [ 2362D5C18120FAB9CE5BD1F73EE33758, D9AB5D5BEAF95F62A204CE8A3B8B3B6C9C1E85FB5425CA2AADCBB4770EDCDF30 ] upnphost C:\WINDOWS\System32\upnphost.dll
09:34:57.0926 0x2c40 upnphost - ok
09:34:57.0941 0x2c40 [ 49A5E1B43C59DC0E363AD9C2D7D10BE4, B903C1C24DAF316AF9D8C1770687DE0A24ACDA4EFE47845E13BE99985609B7CE ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
09:34:57.0941 0x2c40 UrsChipidea - ok
09:34:57.0941 0x2c40 [ 53F1DA2D92D1D8CE4BB9D33E58D7DF01, CD3F4B92EDA042FE696C59D67BEB711C7AF0EB5979AD5F4110297C47454EBBFA ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
09:34:57.0957 0x2c40 UrsCx01000 - ok
09:34:57.0957 0x2c40 [ 09518A324B95BBC0B472BD5A472CB916, B3C6BF8C84268C02CC43E5C6B37648F9691B6038D275F4BEBA7B5E9ECA046181 ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
09:34:57.0973 0x2c40 UrsSynopsys - ok
09:34:57.0973 0x2c40 [ B7211393225AB05324C52BA47B31FEB4, 3FFB7F1C1CA5001B95026D30ECD1991747DDAFFBE3B4929CAEDFA90E169A28AE ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
09:34:57.0973 0x2c40 usbccgp - ok
09:34:57.0988 0x2c40 [ 250D21958EE5F45CD13FE6BE3788EE70, C0EF097EE2ED91950BD3A6881AB08698E85C4ABABC4F7520F7E92E70CA454D4E ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
09:34:58.0004 0x2c40 usbcir - ok
09:34:58.0004 0x2c40 [ 4269DE1EB8029D55B3BB3A8A330FCF90, 5D9081A07F91AF704D27EEE60516D6E1E0A106D1656CEF0C5C50E51C23E17F61 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
09:34:58.0004 0x2c40 usbehci - ok
09:34:58.0019 0x2c40 [ D67AABAE0C9EBAC9BBA2E20E0AF52EF1, FE51895BB81E5320F66C433378469092D39F325D310543AFE28A5603FA9B4F08 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
09:34:58.0035 0x2c40 usbhub - ok
09:34:58.0051 0x2c40 [ E9ED46769676537049BAAEC4543C7BA6, FEE591F28648E4D0D78247BC1E8604AA3F426F4EE57ADCCB4C53F3C7A24634EB ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
09:34:58.0066 0x2c40 USBHUB3 - ok
09:34:58.0066 0x2c40 [ A547E7B1B3FB2228259AA85AC7E82698, AB18BBE30A2D149A0E10621DC8497A72DFB841B09F4E4B47FED21843C0F88D92 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
09:34:58.0082 0x2c40 usbohci - ok
09:34:58.0082 0x2c40 [ 692C0BA4109C8F78392A299369F51129, A675E11CD4794693D0B65A06E85F264199506A4C6EDBB68503163EED389B8D1F ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
09:34:58.0098 0x2c40 usbprint - ok
09:34:58.0098 0x2c40 [ 45A9E57185B79420EFEA5A4AED655809, 91D4BDBBAF1D06C404AC926357C3F20D780CF5C858B223930D69CFB17D81F3D3 ] usbser C:\WINDOWS\System32\drivers\usbser.sys
09:34:58.0113 0x2c40 usbser - ok
09:34:58.0113 0x2c40 [ CEF7527514EC49EBE0C760D784643EF0, 2A4E49C5C906339C31F0A646E53773297F4B4CEAFD94CE653C37556AE243E104 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
09:34:58.0129 0x2c40 USBSTOR - ok
09:34:58.0129 0x2c40 [ A4124036C4FD2B94C6157C4588EEB4E3, 595C8BFB5E63AEA2F7DF2745F7C7CE45938B091470C921E3064E766A0E12851F ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
09:34:58.0144 0x2c40 usbuhci - ok
09:34:58.0144 0x2c40 [ 9431F7E997A8750139517709B04D8629, 250DE2A461DD3E6D40BD7A21041BF451D954D5BC14A9BC4D819955A135FC34F4 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
09:34:58.0160 0x2c40 usbvideo - ok
09:34:58.0178 0x2c40 [ 9F4CCFCD4B4C6008C940510E43D54AEC, CD6082E95EBA618490A2A97E258875440B3440E721B21E81608804B90DEF0D20 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
09:34:58.0193 0x2c40 USBXHCI - ok
09:34:58.0209 0x2c40 [ CE0E3BA8FC974BEE5BE20E4F43A1C583, E19DE81559FD92D1F7B0ADB4297926E6971F7FCB642E11758D361FC2A22C33BB ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
09:34:58.0271 0x2c40 UserDataSvc - ok
09:34:58.0287 0x2c40 [ B8D1D74FEF1F190BA4DA7E7A72D5D9CE, F467F39EE09DDC7750BF42C3FF317E0DC324897589268B4C7B63F8E176445820 ] UserManager C:\WINDOWS\System32\usermgr.dll
09:34:58.0334 0x2c40 UserManager - ok
09:34:58.0349 0x2c40 [ C6C17BECA29DB0D6F6FF6D45EB65FF80, EAF77B7A92E1C86E046C1570521F2389B804AADDB52C860DC2124340378FF26B ] UsoSvc C:\WINDOWS\system32\usocore.dll
09:34:58.0412 0x2c40 UsoSvc - ok
09:34:58.0428 0x2c40 [ 3E283D06357616CD4117CC15BDB7C4C3, ACE50702EE61C9F93855720037898F19E509D45982F9173643EDA455F54FB9E7 ] VacSvc C:\WINDOWS\System32\vac.dll
09:34:58.0447 0x2c40 VacSvc - ok
09:34:58.0447 0x2c40 [ 317340CD278A374BCEF6A30194557227, 593DA57CDD02F4CC3A5125CE5707C222DD922F2936D16492BA21AC6C345EC6B0 ] VaultSvc C:\WINDOWS\system32\lsass.exe
09:34:58.0462 0x2c40 VaultSvc - ok
09:34:58.0462 0x2c40 [ 8DCB7E5A9497C030484E5AD9E541B85C, 1170E5C190E2B6F2966076EFF11B8476CC03D924F43144C2936E11314A89ACA6 ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
09:34:58.0462 0x2c40 vdrvroot - ok
09:34:58.0478 0x2c40 [ 4940B49502323905B66039D0D1AB4613, 963BFD563B5A79F0AE81EB9708E85901A545545D4F25FCF37A17295EE9EDA514 ] vds C:\WINDOWS\System32\vds.exe
09:34:58.0509 0x2c40 vds - ok
09:34:58.0525 0x2c40 [ 5C25C1A89650C95D15F7988D71487B08, EC42E586309B46CF51EC5DC00362ABA82A503545292CACE7B3D23BB0F5E687B9 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
09:34:58.0540 0x2c40 VerifierExt - ok
09:34:58.0556 0x2c40 [ E8E5F722A699EF037891D735CB588F8D, 66D0C76C668DBD5BCE2B30B1936486EC21455BE293203C41B8E3B031ED012A22 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
09:34:58.0572 0x2c40 vhdmp - ok
09:34:58.0587 0x2c40 [ 209A34F4BE17B0A56328C86F8CCC5577, 58F8A57233FC7DD220A6EF64FD48C2A5756B21AB30644FF6919847D13FF44F16 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
09:34:58.0587 0x2c40 vhf - ok
09:34:58.0603 0x2c40 [ AD63BC4A11A4FD436ED23208BB8D1A9C, 079718B9B2F57716FC50119E9893AABF2AAC6223764E8C2ACAE1016A53E069E5 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
09:34:58.0603 0x2c40 vmbus - ok
09:34:58.0603 0x2c40 [ E2D57FB1A62F0BB7F70570806A09CE2B, DCF1699488D913C9E94E2C74CD8606BDAFF69B995B2E3B7DE7F2E9C4D2E6ECF2 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
09:34:58.0618 0x2c40 VMBusHID - ok
09:34:58.0618 0x2c40 [ 7D778F1E82EBA9F5A4DD392CFD3C4224, E81D71E88C472B1631758E3C5D22A214450480C2E2DA010FDE21EC1B129C5FAD ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
09:34:58.0635 0x2c40 vmgid - ok
09:34:58.0635 0x2c40 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
09:34:58.0666 0x2c40 vmicguestinterface - ok
09:34:58.0666 0x2c40 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
09:34:58.0697 0x2c40 vmicheartbeat - ok
09:34:58.0697 0x2c40 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
09:34:58.0713 0x2c40 vmickvpexchange - ok
09:34:58.0713 0x2c40 [ DB7FB1DA7E1564EACBADD436191309C5, B567DFB5828D64A2A199C16538F3557696C3381B858420F23EABC757FDC341C2 ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
09:34:58.0744 0x2c40 vmicrdv - ok
09:34:58.0760 0x2c40 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
09:34:58.0775 0x2c40 vmicshutdown - ok
09:34:58.0775 0x2c40 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmictimesync C:\WINDOWS\System32\icsvc.dll
09:34:58.0791 0x2c40 vmictimesync - ok
09:34:58.0807 0x2c40 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
09:34:58.0822 0x2c40 vmicvmsession - ok
09:34:58.0822 0x2c40 [ DB7FB1DA7E1564EACBADD436191309C5, B567DFB5828D64A2A199C16538F3557696C3381B858420F23EABC757FDC341C2 ] vmicvss C:\WINDOWS\System32\icsvcext.dll
09:34:58.0838 0x2c40 vmicvss - ok
09:34:58.0838 0x2c40 [ 708410755721F94FC8939673893C2E2B, C8516DDE667614545DA076A9D034A7941D3E03953CB41576A979199363AB7A99 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
09:34:58.0853 0x2c40 volmgr - ok
09:34:58.0869 0x2c40 [ 1514506CA7462A64DC38C48108DDBB45, DEE5D7B79962D9EB6D92FCF870CA1B06FE68CE6AE25F82A5B449445C99E76D2A ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
09:34:58.0869 0x2c40 volmgrx - ok
09:34:58.0885 0x2c40 [ F0EE4E6028CCA58BEA9A04E7BEAB7DB4, 628D0E3D60256B914E46C26BCE8F512DFE0409C34EA603EB0A20C80EB469A4D2 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
09:34:58.0900 0x2c40 volsnap - ok
09:34:58.0900 0x2c40 [ 77FD1607F2C371ABD241EC7699C58884, A6FE00D76C615DC641A667EB9B6824C992ED752A31A89AE3FE43BAE5462F3EB7 ] volume C:\WINDOWS\system32\drivers\volume.sys
09:34:58.0916 0x2c40 volume - ok
09:34:58.0916 0x2c40 [ A8E3A6BA6A1B4D1DFEC5E8D5CFF786DF, DEAE1C20AF6BBE419FDE432288C7A45B29AADA8D9E416BC428A4C2BF428D2861 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
09:34:58.0916 0x2c40 vpci - ok
09:34:58.0932 0x2c40 [ ED0B3436E1DE601C6C8EB86789AC8BAB, 0CD186B09903A1D3748A3258D8B84557F3674DA04FEB8EFA24AE81FFE376265C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
09:34:58.0932 0x2c40 vsmraid - ok
09:34:58.0978 0x2c40 [ C7053D974A35EAB81F153FF33C883613, 9D89DC644971F93931D0E59D42ADE0A4AB49A5490709B46FCBBC309041C5432D ] VSS C:\WINDOWS\system32\vssvc.exe
09:34:59.0025 0x2c40 VSS - ok
09:34:59.0041 0x2c40 [ 3D706FBED35DF3B17809C6714F31F9B0, BBC337479DEB628721E651FC165EA01D986E31950189F1A81534922667101487 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
09:34:59.0041 0x2c40 VSTXRAID - ok
09:34:59.0056 0x2c40 [ 0B11DBB8173AD374D67893D54EBEE9F3, AB8B6FC81244729157E59D062FCC234FD7E818804D94AA6B7BF81E01B7922395 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
09:34:59.0056 0x2c40 vwifibus - ok
09:34:59.0072 0x2c40 [ 95540F74893235C189409C98643D7A77, 4F041301C95F55C8448C3CC5825ED9E631E770BA35BEC8498A0ABB3563584AAE ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
09:34:59.0072 0x2c40 vwififlt - ok
09:34:59.0088 0x2c40 [ 60A14582772A4DF0D0BE27B3F873BE6B, 93DB43D2F4B985A3FF1A152ADEDBB52567CCC29B899F96F8BA0FA9558EF2DF6D ] vwifimp C:\WINDOWS\System32\drivers\vwifimp.sys
09:34:59.0088 0x2c40 vwifimp - ok
09:34:59.0103 0x2c40 [ 4F904ADE8BECDFB48CBA3F44FC0676A1, 2C3D619E9AD0D0DAEC0D170795FD6E5B7FE3FC667C947660320A9BC671B55736 ] W32Time C:\WINDOWS\system32\w32time.dll
09:34:59.0140 0x2c40 W32Time - ok
09:34:59.0155 0x2c40 [ 1C8447EFBC2B36B1CFE889E519F46A6E, 2601185B01909682FB921400C26BE6391AC93F72E84E70E2F49B4059987E191E ] WaaSMedicSvc C:\WINDOWS\System32\WaaSMedicSvc.dll
09:34:59.0171 0x2c40 WaaSMedicSvc - ok
09:34:59.0171 0x2c40 [ 87A01F65BD16C9FCCDD1B65F56CB93B0, E84B46DB67F2FCB22DB7130570FE7211FC96A806AC9D1D69D187899C93785CB2 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
09:34:59.0189 0x2c40 WacomPen - ok
09:34:59.0204 0x2c40 [ 25FAB8A2CFFA21FDB472AB3AE6C17A57, C97E651111643F32FD5B94BEDA31D62E6FF83CA0644FFE8BA98463EC9EA6EF9B ] WalletService C:\WINDOWS\system32\WalletService.dll
09:34:59.0220 0x2c40 WalletService - ok
09:34:59.0235 0x2c40 [ 85E187443F68F285DB78BD2279AE3701, FAC03A162CF07FCC6BDB4E45F5EDF16D48BE10D95F73A74E9BADA62EC7F24B53 ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:34:59.0251 0x2c40 wanarp - ok
09:34:59.0251 0x2c40 [ 85E187443F68F285DB78BD2279AE3701, FAC03A162CF07FCC6BDB4E45F5EDF16D48BE10D95F73A74E9BADA62EC7F24B53 ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:34:59.0267 0x2c40 wanarpv6 - ok
09:34:59.0267 0x2c40 [ 395447583F42FD840520EE87AE439D74, 984AE1EE8BA3B8926C6FC94BC22DE9061C90C15135EA56D0F16C1D3C4EF8DAF8 ] WarpJITSvc C:\WINDOWS\System32\Windows.WARP.JITService.dll
09:34:59.0282 0x2c40 WarpJITSvc - ok
09:34:59.0314 0x2c40 [ 6E235F75DF84C387388D23D697D6540B, 7113DD02243E9368EF3265CF5A7F991F9B4D69CAB70B1A446062F8DD714AFC8E ] wbengine C:\WINDOWS\system32\wbengine.exe
09:34:59.0363 0x2c40 wbengine - ok
09:34:59.0382 0x2c40 [ 9F5B8D32B72A7D5DA392628EAB09EC53, E3B823A23C716EECF5F86C122D8C49A7DDE8DD24D979A2D626173BF99DF5BCAF ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
09:34:59.0429 0x2c40 WbioSrvc - ok
09:34:59.0429 0x2c40 [ 8A304D6CDC067922448CBA1EBB9FFCA8, DE40DD3A32DFF22C477F38B5E2224D55B8CCF2499EFFE0A8E9923728295BAEC1 ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
09:34:59.0445 0x2c40 wcifs - ok
09:34:59.0460 0x2c40 [ C479E8EC94A23112B7EF14D5F1DF83CE, 0F40594FF9C329090A9980F31795C90850C2D2F819236ABD680D27C98FE9BC97 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
09:34:59.0507 0x2c40 Wcmsvc - ok
09:34:59.0507 0x2c40 [ B797B163EDCA46B5244F4E083BE7A7E7, 18D977A8015380A87EC9962273B90806145186A69F3455B3445A0FE1FE431219 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
09:34:59.0539 0x2c40 wcncsvc - ok
09:34:59.0539 0x2c40 [ FCA1B5465213EF4DE373A1F7E76D260E, 2548A9D11027871AD0290FDADF1E42E828E6120ECE925B12BAB3F09E25172489 ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
09:34:59.0555 0x2c40 wcnfs - ok
09:34:59.0555 0x2c40 [ E6B9D4C5BB2C8B7BA7946EC54392B14E, 3EC126095A98E76E003EE0F8CE71E44B1CD9CA6EF63FF94A84981CB763B4E2A6 ] WdBoot C:\WINDOWS\system32\drivers\wd\WdBoot.sys
09:34:59.0570 0x2c40 WdBoot - ok
09:34:59.0586 0x2c40 [ 152926023B401D1F5F8852929572F5C3, 61D0FDB0E3A4D16FFA6852174B3824F6294502E331BB0831BCF99F049B09C328 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
09:34:59.0602 0x2c40 Wdf01000 - ok
09:34:59.0617 0x2c40 [ C0100756EBE0B8CCC9517949A0809893, 7E510269FE9984CDAB42A6C053F18C9B65A3DAD431D3050F83192995E83FDF7C ] WdFilter C:\WINDOWS\system32\drivers\wd\WdFilter.sys
09:34:59.0633 0x2c40 WdFilter - ok
09:34:59.0633 0x2c40 [ 067D1A81B4708CA97523709FDF57B728, CA331223250B37E7D2D8B04640EDF279F7FD7336017181ECF2D3E4F82E370F97 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
09:34:59.0648 0x2c40 WdiServiceHost - ok
09:34:59.0648 0x2c40 [ 067D1A81B4708CA97523709FDF57B728, CA331223250B37E7D2D8B04640EDF279F7FD7336017181ECF2D3E4F82E370F97 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
09:34:59.0664 0x2c40 WdiSystemHost - ok
09:34:59.0695 0x2c40 [ 5DDA2C4B9AAED51E73DD6D580406F07A, 5C103E442ED4A9CC3C4E81D6C4E6BEE2FD14E4DBE57EC46DA0EF4C539D42756B ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
09:34:59.0726 0x2c40 wdiwifi - ok
09:34:59.0742 0x2c40 [ EAF4FB729E94561EE31BDE5BEF869C65, 73290250B565E0A3F453BC45E69FF16A1D964E372A15401A2D3E2CDEB4670B38 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
09:34:59.0742 0x2c40 WdmCompanionFilter - ok
09:34:59.0742 0x2c40 [ CF07A18380EBA6609F66002B82BE2E84, 1470438EE0996C2614CB879415884DB610B219D965AED45D1DB8B2F84863B20B ] WdNisDrv C:\WINDOWS\system32\drivers\wd\WdNisDrv.sys
09:34:59.0758 0x2c40 WdNisDrv - ok
09:34:59.0820 0x2c40 [ C748A3C5E6222847FAA853465A4FFAFA, 81021BB03E97425B6B5780C76925D906F181DAD3F50F039BD87E8F2A0E775D4B ] WdNisSvc C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe
09:34:59.0914 0x2c40 WdNisSvc - ok
09:34:59.0930 0x2c40 [ BDCC510E85F7AF152E2DFF030A526EA2, 67830B42DE20EBB30DD33093F30FBA166B27D3C1F25B52DABE1BC436671A1882 ] WebClient C:\WINDOWS\System32\webclnt.dll
09:34:59.0961 0x2c40 WebClient - ok
09:34:59.0961 0x2c40 [ 506F0A1CCABF4428733CF854BCBB6832, 859A7E21ABB93A0AD538AAF93D32E31B961EA6012C24567B4C76A9ED8FD4AD46 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
09:34:59.0976 0x2c40 Wecsvc - ok
09:34:59.0992 0x2c40 [ D8D727E8311C86B2A993A9006A453BAC, AD6C93F5ED51C621841DF68A25D5932578FADB83689FB668D056F316A8AA749D ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
09:35:00.0008 0x2c40 WEPHOSTSVC - ok
09:35:00.0008 0x2c40 [ 30B4568D058E17500E7BF88AECEDF3F1, 612597DFAF63E55ACB80789483CBCF0E5AC5FF7607C478C61E5A86D77B169E9E ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
09:35:00.0039 0x2c40 wercplsupport - ok
09:35:00.0039 0x2c40 [ 5DDB06B07A60E7AEA69837931373C159, 4E0A3260058B19F414B5053701C4723C27735818212AB3D297F896BF4C39E536 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
09:35:00.0070 0x2c40 WerSvc - ok
09:35:00.0086 0x2c40 [ 690537B9569F770ED81CE9C19FD7358A, FF780EBCD8C0B91E99BB2451F08D7826130781136E08FCB4571C3DD0C01B616F ] WFDSConMgrSvc C:\WINDOWS\System32\wfdsconmgrsvc.dll
09:35:00.0117 0x2c40 WFDSConMgrSvc - ok
09:35:00.0133 0x2c40 [ EB0B154F12F78DE232F38EF61BCDEEA2, D4BC28969C94F9A3906339B42FC3638E8BFF575C28C709461D48A84821A89A21 ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
09:35:00.0133 0x2c40 WFPLWFS - ok
09:35:00.0148 0x2c40 [ 752F5931696914DF2EC0B27275C38458, 83415E7BE50D9548785FBF6550FA679E425B5990F303E2D74513275A5E1DC828 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
09:35:00.0164 0x2c40 WiaRpc - ok
09:35:00.0164 0x2c40 [ 3AE28A996C9EB8A6F2AC12BC55035126, E54227B97F42800D445241EA638EFE86A7FEC664E96A0FA38BC48DDF7DA182AD ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
09:35:00.0179 0x2c40 WIMMount - ok
09:35:00.0179 0x2c40 [ CEDC4E5155D9D48F2922C21EC02419B7, B147CC9A14B92E224C7755D41E0453506F983E7874573F1DF79F3EBF27BED090 ] WinDefend C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe
09:35:00.0179 0x2c40 WinDefend - ok
09:35:00.0195 0x2c40 [ 2BB82BABE32D41F430D290239ABC0E87, 2D519F0B86F7B87B7028E404821EDE8B7BDA18288EF32CF81C25B9C1E629FFB1 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
09:35:00.0195 0x2c40 WindowsTrustedRT - ok
09:35:00.0211 0x2c40 [ 5F0EDDA201630E132C2251BC9DA85023, 842B5CBA8C33616345EDC2F91B560416AAEAAB15A8CE1F36978B251CE4CBDA16 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
09:35:00.0211 0x2c40 WindowsTrustedRTProxy - ok
09:35:00.0227 0x2c40 [ 939AA47A32AFE2BC17EB39FB2ED1DDC2, 7BBE6FE475FF7971EBB59682872003059AC9B27D51898BA4C094C70534E057B6 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
09:35:00.0258 0x2c40 WinHttpAutoProxySvc - ok
09:35:00.0258 0x2c40 [ 762D8D839C44C5A0BE0449AA84034522, E6602D0FDB501081DF165CE904DA0FEC75F3FE29C3B07B44DED6268612742F9C ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
09:35:00.0273 0x2c40 WinMad - ok
09:35:00.0273 0x2c40 [ 72D83880FEF0C788C5F305F330744208, 3126C2907170BBA47421D61CD6ED04DA3A3FCC66B4DBFCB4E3B56001B3BF6045 ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:35:00.0304 0x2c40 Winmgmt - ok
09:35:00.0304 0x2c40 [ 80086471CD4D8BF61C757E8EDFDB01DD, EDB58B6C634B3189929867DE4D47764CD35E4E0ED6BBDE98DC1372E9058EA99E ] WinNat C:\WINDOWS\system32\drivers\winnat.sys
09:35:00.0320 0x2c40 WinNat - ok
09:35:00.0367 0x2c40 [ C57185CC62AA13E4F5A989D904CC9A16, 993F27F710148335C4244AB74D4B1D232DEDB0E3D82E39093A1E422C72283D31 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
09:35:00.0461 0x2c40 WinRM - ok
09:35:00.0476 0x2c40 [ 6FA3D810FE082001B16ADE19829F1E8E, 64B420FC14AB3194D4D2907EA5BE741456928E7E3CB9CBA50FEB8677A43B1971 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
09:35:00.0476 0x2c40 WINUSB - ok
09:35:00.0492 0x2c40 [ D2D6DB37E06608A5AF5B68D8E677B219, C7AAFEE7AAF76A4DCFF4FD2EE7232501832A57E3EE92CE20FA4A5D22F03FBE45 ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
09:35:00.0492 0x2c40 WinVerbs - ok
09:35:00.0508 0x2c40 [ 08BEB7851B4B8AA07325C23A657233F1, 6D7A4D194D342A5BC3EE9738765B2F5D6B75165954CA6B0D9CD4B40B262C300E ] wisvc C:\WINDOWS\system32\flightsettings.dll
09:35:00.0554 0x2c40 wisvc - ok
09:35:00.0586 0x2c40 [ 2490E373EC18869BA4FE435CFDE3ADEE, 5A3A9D11B426E5F13040758A1BE2284851C3E653E49340C1C75CF9EC3CE418B7 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
09:35:00.0679 0x2c40 WlanSvc - ok
09:35:00.0726 0x2c40 [ 28A32E1F7A46A833DE104EF43E389F5F, 5A88C409DD9CC74ED6CEBEB5DFC8DDADFAB9D1CBDFD4EB78D7CBB6D55749C235 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
09:35:00.0789 0x2c40 wlidsvc - ok
09:35:00.0820 0x2c40 [ 6DF8049EC9A5AEFE99F753162D9681D4, A97FFC784617D0B45ECB7AB86AF363E6E9EC86D6E27EA90C8016DAEA27DD8183 ] wlpasvc C:\WINDOWS\System32\lpasvc.dll
09:35:00.0874 0x2c40 wlpasvc - ok
09:35:00.0874 0x2c40 [ EAEF2A087812BB7110C744446AB731D5, F5571D3C47564DFB6182DC43CC28124892323B60C3F389599DFEC94D227B4A86 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
09:35:00.0874 0x2c40 WmiAcpi - ok
09:35:00.0890 0x2c40 [ ABAC310F5E01CBA9B33AE694F99D0977, 700CDC85479CDBF765FB1A6A389DC991FC4D2A77851A81FF80BEED921250DBF6 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
09:35:00.0905 0x2c40 wmiApSrv - ok
09:35:00.0921 0x2c40 WMPNetworkSvc - ok
09:35:00.0921 0x2c40 [ E122AD60BF4D7E4B28CCBABF33B28C1F, 1ABABE62FCC1B1A837540EE66F3EB0CE062962F05247002D61CFDE6ABB8E7E87 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
09:35:00.0936 0x2c40 Wof - ok
09:35:00.0968 0x2c40 [ 0D3303BDBC591ECF113601D7853A1AA7, 437CF89541696E0B1A8056F4A5189642FC76D762113ED4F71458AF4D72FC3E9A ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
09:35:01.0046 0x2c40 workfolderssvc - ok
09:35:01.0077 0x2c40 [ 58DA02D34C964C00AF9140C07CCFF8F0, 6A02F326251A790F76E59737E20CB6C38190F671766E56CE6C7FB33D1A4588B9 ] WpcMonSvc C:\WINDOWS\System32\WpcDesktopMonSvc.dll
09:35:01.0124 0x2c40 WpcMonSvc - ok
09:35:01.0124 0x2c40 [ 7412ECE8BD5590881FA9780B68BD70C5, 52329B5BF78E2F5792369FE5A72CF4E3E216D4F0670507D10F3DB8383FA5E0BC ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
09:35:01.0155 0x2c40 WPDBusEnum - ok
09:35:01.0155 0x2c40 [ 15C1131EA0216F799C86B03EDAE0BE45, 39F50C084407BC3B498714B74DDA5D63E0539681F324A18ABBED3CD0DE5D52AA ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
09:35:01.0155 0x2c40 WpdUpFltr - ok
09:35:01.0171 0x2c40 [ 096969606BB5C4822AB020081EA07FC5, 522F372834B0497215F45ACBC417DA10DCE45C6D3C7099E47BBA18700C294B22 ] WpnService C:\WINDOWS\system32\WpnService.dll
09:35:01.0186 0x2c40 WpnService - ok
09:35:01.0202 0x2c40 [ 8B694BC50D2D2B98311283CFE5B40EE6, 734F8985CAD99E8635ACF09309D958D2B7FB05C6FF54DBE3623DC071BECE3413 ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
09:35:01.0218 0x2c40 WpnUserService - ok
09:35:01.0233 0x2c40 [ C1C2E769FCD3B00A59FF876FB2AD4336, B4D9065268A8B3C509E9160E6F30C20F80D14876C9F6C1057245F09CEB6B0F36 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
09:35:01.0233 0x2c40 ws2ifsl - ok
09:35:01.0249 0x2c40 [ DCB549367EB94CD8AFAA28E3F77F6493, 9FD2C6E03F398E76403502CFC94EB8EBD2F90ED5E95ABA5E86C1B7F63601C43C ] wscsvc C:\WINDOWS\System32\wscsvc.dll
09:35:01.0282 0x2c40 wscsvc - ok
09:35:01.0282 0x2c40 WSearch - ok
09:35:01.0329 0x2c40 [ B362A15BA8DA57E0FC63A72E65AD62AC, 26CB06F5A4A90C5411F3A5B8211F1E42B8FFA100DF4E32160F5885F5AF31432A ] wuauserv C:\WINDOWS\system32\wuaueng.dll
09:35:01.0407 0x2c40 wuauserv - ok
09:35:01.0424 0x2c40 [ 813DC18CC654CFB1875074139B0FEFD3, 87901841AFD9224BFEC06A712BE3C2371E16D3571210D4792F91034A2B926A06 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
09:35:01.0439 0x2c40 WudfPf - ok
09:35:01.0439 0x2c40 [ FB64BAD6DEDB27EA39B03685AC0A8EB4, CEDCB71F5FC8BAFF69948960F69A46E3A41CDF81304495AFF41088E5B4E9EB1D ] WUDFRd C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
09:35:01.0455 0x2c40 WUDFRd - ok
09:35:01.0470 0x2c40 [ FB64BAD6DEDB27EA39B03685AC0A8EB4, CEDCB71F5FC8BAFF69948960F69A46E3A41CDF81304495AFF41088E5B4E9EB1D ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
09:35:01.0489 0x2c40 WUDFWpdFs - ok
09:35:01.0489 0x2c40 [ FB64BAD6DEDB27EA39B03685AC0A8EB4, CEDCB71F5FC8BAFF69948960F69A46E3A41CDF81304495AFF41088E5B4E9EB1D ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
09:35:01.0504 0x2c40 WUDFWpdMtp - ok
09:35:01.0536 0x2c40 [ FAFE3B08208AA28C82BC42731B4EEBE8, 333D9CBE6B3492BC30A7B64C1F83494B38AD2CE7C832C1D68FEBD2EB8029230D ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
09:35:01.0598 0x2c40 WwanSvc - ok
09:35:01.0598 0x2c40 [ 51D3A1E2285E2E931A553281BBA10E81, 8B371AF5E7717C53780A5C2F68400412C4DB0F01AC6551476FF062B83A7D0AC8 ] xbgm C:\WINDOWS\system32\xbgmsvc.exe
09:35:01.0614 0x2c40 xbgm - ok
09:35:01.0629 0x2c40 [ DB952AD196A9548CF5235A71E5197F3F, 6C51EB14B2808665FCB999F376A97018F6B0A91EE6E63A25C044EA59A5713EE1 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
09:35:01.0676 0x2c40 XblAuthManager - ok
09:35:01.0692 0x2c40 [ 8C0DD7BFFF5A81AEC26AD720057F5451, 4503D4DD540DB9977BBFF3BF7E92BE9778578B769972CF8A54AF0F1FF5C79BF5 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
09:35:01.0754 0x2c40 XblGameSave - ok
09:35:01.0754 0x2c40 [ 93352403D9E6B71C275996690672488F, A012D907679B29988D18C71928BDF528506DC05A2DEF01F472B7F0CC043A0340 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
09:35:01.0770 0x2c40 xboxgip - ok
09:35:01.0786 0x2c40 [ C7FEC5C0377E5598BA919B29731CA45F, C153C62742B6F981905AEF7C464761E5894260F26EE164968B21D93979376378 ] XboxGipSvc C:\WINDOWS\System32\XboxGipSvc.dll
09:35:01.0799 0x2c40 XboxGipSvc - ok
09:35:01.0830 0x2c40 [ 3A94BD93CD2D9C34725D924230B502A5, 87AF2061D348FFFA190D0E50E6860903BED46968CF64B7765D8D80127C702E6A ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
09:35:01.0877 0x2c40 XboxNetApiSvc - ok
09:35:01.0893 0x2c40 [ CE1F78B5C1F14F74242008B2B3153FA2, 682D1F32DD1BBEB031D5129CE40D9C77D3C6CF4FB5979F1918B2482AF617B5BE ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
09:35:01.0893 0x2c40 xinputhid - ok
09:35:01.0893 0x2c40 ================ Scan global ===============================
09:35:01.0908 0x2c40 [ 44D259E3B8F950D123CBE21893CEF1AB, 94FEA350B54D1581FF07D078D25A27FE3C9F815E24D299A0504FB1153E68A903 ] C:\WINDOWS\system32\basesrv.dll
09:35:01.0908 0x2c40 [ 1C346B5D7E5336246604A9FCFCB092BC, BD0C56C943A8F23CA9CD1CE1FE4F9D2183F752B469A72D14B713301A867AE776 ] C:\WINDOWS\system32\winsrv.dll
09:35:01.0924 0x2c40 [ FE8D1AB6D6711BE791A01C17EDEBD0D6, EECE3A16DFA0BE1BB1E7B882D33FB926C90A1DCA89805DD3514FABF7C9F05253 ] C:\WINDOWS\system32\sxssrv.dll
09:35:01.0940 0x2c40 [ 2FC61B2CF84792516D543CA94139A92C, BE42E4A901D6AC8885882D2CD9372A64023794428E0AC8CC87EE3121DD5DC402 ] C:\WINDOWS\system32\services.exe
09:35:01.0955 0x2c40 [ Global ] - ok
09:35:01.0955 0x2c40 ================ Scan MBR ==================================
09:35:02.0233 0x2c40 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
09:35:02.0327 0x2c40 \Device\Harddisk1\DR1 - ok
09:35:02.0342 0x2c40 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
09:35:02.0358 0x2c40 \Device\Harddisk0\DR0 - ok
09:35:02.0358 0x2c40 ================ Scan VBR ==================================
09:35:02.0390 0x2c40 [ 69FD321DAAC38671F85BC6A854E7542B ] \Device\Harddisk1\DR1\Partition1
09:35:02.0405 0x2c40 \Device\Harddisk1\DR1\Partition1 - ok
09:35:02.0405 0x2c40 [ D10CCCE0446891FC1F3830C5B614B61C ] \Device\Harddisk0\DR0\Partition1
09:35:02.0405 0x2c40 \Device\Harddisk0\DR0\Partition1 - ok
09:35:02.0405 0x2c40 [ F1D66598F0BABA2FACEE23A3D43318EA ] \Device\Harddisk0\DR0\Partition2
09:35:02.0405 0x2c40 \Device\Harddisk0\DR0\Partition2 - ok
09:35:02.0405 0x2c40 [ C97E8D91DAB4E1DB6D02D7007F450136 ] \Device\Harddisk0\DR0\Partition3
09:35:02.0405 0x2c40 \Device\Harddisk0\DR0\Partition3 - ok
09:35:02.0405 0x2c40 [ 36E332104C58EA5718D6B367698702CA ] \Device\Harddisk0\DR0\Partition4
09:35:02.0405 0x2c40 \Device\Harddisk0\DR0\Partition4 - ok
09:35:02.0405 0x2c40 ================ Scan generic autorun ======================
09:35:02.0405 0x2c40 SecurityHealth - ok
09:35:02.0718 0x2c40 [ 11C61CE638178A9F61087BB68063C0BC, 2172BDB2F631D9DCA7809B2C2E683C2C3DE3E5CBB98B48CE3F82B7F45A0DF93D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
09:35:02.0984 0x2c40 RTHDVCPL - ok
09:35:03.0031 0x2c40 [ 79289F199B39285339898C7019928D94, 1295AC1EC8F64A4C04EA65F01C6B9F594DD3328A0A1DE2B4FB413B8B44D34A82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
09:35:03.0062 0x2c40 RtHDVBg_ASC - ok
09:35:03.0077 0x2c40 [ 79289F199B39285339898C7019928D94, 1295AC1EC8F64A4C04EA65F01C6B9F594DD3328A0A1DE2B4FB413B8B44D34A82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
09:35:03.0109 0x2c40 RtHDVBg_CTPreset - ok
09:35:03.0140 0x2c40 [ 79289F199B39285339898C7019928D94, 1295AC1EC8F64A4C04EA65F01C6B9F594DD3328A0A1DE2B4FB413B8B44D34A82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
09:35:03.0171 0x2c40 RtHDVBg_Dolby - ok
09:35:03.0187 0x2c40 [ 5B156F68A1034B48268AC33C9BADAE8C, ABC15E0987B380B3181601546B05984F11855196288F213DA998065F401832E5 ] C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
09:35:03.0202 0x2c40 DAX2_APP - ok
09:35:03.0202 0x2c40 [ 810979B7EF6EB9336FE173C1DD7F420E, 6F4028BAE0061CE2D7E223D9248242610C57C6D926AC99A785D4FD7860EF2D99 ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
09:35:03.0218 0x2c40 Avira SystrayStartTrigger - ok
09:35:03.0551 0x2c40 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:35:03.0863 0x2c40 OneDriveSetup - ok
09:35:03.0894 0x2c40 [ FC7536F076D2F1660AC072E54A86B2F1, B36F3E9976F59EC137F8618C7EDF4ED0B35AC65497CA27D69835048E6E277040 ] C:\Program Files (x86)\Windows Mail\wab.exe
09:35:03.0910 0x2c40 WAB Migrate - ok
09:35:04.0223 0x2c40 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:35:04.0520 0x2c40 OneDriveSetup - ok
09:35:04.0536 0x2c40 [ FC7536F076D2F1660AC072E54A86B2F1, B36F3E9976F59EC137F8618C7EDF4ED0B35AC65497CA27D69835048E6E277040 ] C:\Program Files (x86)\Windows Mail\wab.exe
09:35:04.0567 0x2c40 WAB Migrate - ok
09:35:04.0567 0x2c40 Waiting for KSN requests completion. In queue: 276
09:35:05.0582 0x2c40 AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe ( 15.0.40.2 ), 0x41000 ( enabled : updated )
09:35:05.0582 0x2c40 AV detected via SS2: Windows Defender, windowsdefender:// ( ), 0x60100 ( disabled : updated )
09:35:05.0612 0x2c40 Win FW state via NFP2: enabled ( trusted )
09:35:05.0707 0x2c40 ============================================================
09:35:05.0707 0x2c40 Scan finished
09:35:05.0707 0x2c40 ============================================================
09:35:05.0722 0x1290 Detected object count: 0
09:35:05.0722 0x1290 Actual detected object count: 0
09:39:25.0430 0x2594 ============================================================
09:39:25.0430 0x2594 Scan started
09:39:25.0430 0x2594 Mode: Manual; SigCheck; TDLFS;
09:39:25.0430 0x2594 ============================================================
09:39:25.0430 0x2594 KSN ping started
09:39:25.0493 0x2594 KSN ping finished: true
09:39:27.0695 0x2594 ================ Scan system memory ========================
09:39:27.0695 0x2594 System memory - ok
09:39:27.0695 0x2594 ================ Scan services =============================
09:39:27.0742 0x2594 [ 4B45A2D37CCE3CC0F161B7C7286081A6, DF4EBAA12E083AE45411AABD3EDE916E2CC6963FBA664861AC9B2351B5E042DC ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys
09:39:27.0758 0x2594 1394ohci - ok
09:39:27.0758 0x2594 [ F5E5BA493B7C497F1F769942E2EA4CE2, 4AD54DA24142BCE49FB64CFF2CB28764FAA93827E7DB02925090B68F8C73B1FB ] 3ware C:\WINDOWS\system32\drivers\3ware.sys
09:39:27.0773 0x2594 3ware - ok
09:39:27.0789 0x2594 [ CA51BB1B81F97E896E116C839B92D9D8, 09F73D8FB93EA524D3C9A9C264F62340560DC7042589597A318626A0A198F91F ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys
09:39:27.0804 0x2594 ACPI - ok
09:39:27.0804 0x2594 [ 75795E4B19BB3ED8D3C25A17CD15DC30, 22A13064E0B472A0A2258D61A889B73EE3F537DA7796CCE39DF973AFA8FA1567 ] AcpiDev C:\WINDOWS\System32\drivers\AcpiDev.sys
09:39:27.0820 0x2594 AcpiDev - ok
09:39:27.0820 0x2594 [ DDA0FC1400A24988A7D3E746AEDF2C0F, 3A703A204FDE46C67017C274CA1F50F591D909EE182A82697E89442D4A5569CE ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys
09:39:27.0836 0x2594 acpiex - ok
09:39:27.0836 0x2594 [ 1F2EC25DA23D1DF3ADA12FE5A26D321C, B165D72949E43F04312C95BF0FF5C25CFE5CA0CDF43415E01AB2B1550D06C737 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys
09:39:27.0851 0x2594 acpipagr - ok
09:39:27.0851 0x2594 [ 6AFFD57803BBB6FBCB483F983900A5C4, A3A87984E70C8B47F919D2633E6378F3AACCBF3E74DB3B35BB2E15D036DB36E2 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys
09:39:27.0867 0x2594 AcpiPmi - ok
09:39:27.0867 0x2594 [ 0FC8673FAFC7D78C1CDC000F892CAC64, 33FB109ABD18FBF4DA5047BAA9FAF63E88D5BA1826442DB02F9130DAD11D15F2 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys
09:39:27.0883 0x2594 acpitime - ok
09:39:27.0898 0x2594 AdobeFlashPlayerUpdateSvc - ok
09:39:27.0914 0x2594 [ A3D4CF2F3A433BE18CD4AD3E6665DC63, 9D62A7E2DDA15B2E75490CCB9C8E10A41030F496A93631EDED5F1003DF368290 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS
09:39:27.0945 0x2594 ADP80XX - ok
09:39:27.0961 0x2594 [ 4DCCC3E02A22ED4A4ADB11386F226071, 40BB183049DE3ADCC7A5B1B269620C8534291BB7A956157434C857DE249559EE ] AFD C:\WINDOWS\system32\drivers\afd.sys
09:39:27.0976 0x2594 AFD - ok
09:39:27.0976 0x2594 [ F267095A11A461BEF39FB180750BE801, CF90798C46892FF5225155D2C7BCC469A4A631E22919CBEDA2F4FEEF4F05E301 ] afunix C:\WINDOWS\system32\drivers\afunix.sys
09:39:27.0992 0x2594 afunix - ok
09:39:27.0992 0x2594 [ 0CD0F0C62414217DE9EA7EC8D425277E, FD211157B85B841D0C94B36776572FADC7425F1B0B49EACC910D3E175208A7EC ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys
09:39:28.0023 0x2594 ahcache - ok
09:39:28.0023 0x2594 [ 2BF4DA8EC5F1A0D88D2DDE1E6821076B, B9F4D499DB4CB91576ACE4847B96F2FC770B9BCC223B5E2261B2DEC22D7651E7 ] AJRouter C:\WINDOWS\System32\AJRouter.dll
09:39:28.0039 0x2594 AJRouter - ok
09:39:28.0039 0x2594 [ 9E9D78D1C179EB2E3E2282A1DC409D93, EA7486B4425A87FDDD60542AAF0812A8DB868F569886B894883702B362A05D2C ] ALG C:\WINDOWS\System32\alg.exe
09:39:28.0054 0x2594 ALG - ok
09:39:28.0070 0x2594 [ 6DF48AD26E6285FB137F11328B64A376, 76FF9A753C262065E819E862E7950127472C5E6AB7E97B57977C6DCE6180760A ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys
09:39:28.0086 0x2594 AmdK8 - ok
09:39:28.0086 0x2594 [ D8804032BCDE4077A6D8D431D12AC6CC, F017A3FEAB2919A9662A9BFEF31AE7B7EC19F1136C9D0DC6C48A415B540A8062 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys
09:39:28.0101 0x2594 AmdPPM - ok
09:39:28.0101 0x2594 [ A88F5E24B65228FB25F2051B3408A0E4, C124B486839EA15D6806EB51E91EBF99401CD7D226541320A7A4934A8477DCEF ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys
09:39:28.0117 0x2594 amdsata - ok
09:39:28.0117 0x2594 [ AECD39E51DABC2BF045B2857F02FA2BD, 83E2AC3200B6EA1586E4E0204D81CEAF303D7C9EBE7E5D1273A41A4EC1390E56 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys
09:39:28.0133 0x2594 amdsbs - ok
09:39:28.0133 0x2594 [ B4CC9943230CAEB05B46CC30C220E141, 013716E6911136EB0916A1D592198DD7953800549DA0C885093D2BA3CC9BA2A7 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys
09:39:28.0133 0x2594 amdxata - ok
09:39:28.0148 0x2594 [ C3ECF8840E4EAF09A4F2AE0174D6F36A, F810A2158FAA4C6B086259125691E163696C67698BD447FE403E740131815F0B ] AppID C:\WINDOWS\system32\drivers\appid.sys
09:39:28.0164 0x2594 AppID - ok
09:39:28.0164 0x2594 [ F1A04835C7FA75C8215961C1095D5EBF, 45D153404E601C0CE247058B78F328DD9F7F4F6A9480132F7CE6D9A7092F63CF ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll
09:39:28.0179 0x2594 AppIDSvc - ok
09:39:28.0179 0x2594 [ 48EA4B4CCC920D130529A1EF85388B6A, 31F69543682E70DF0A6B2A70FC7553ECEE643C554E7F8FF18A2DD09359360F8E ] Appinfo C:\WINDOWS\System32\appinfo.dll
09:39:28.0211 0x2594 Appinfo - ok
09:39:28.0211 0x2594 [ 769316CA5884FBBD02D45C28FE105922, 117168BFB2D8DBF1258EBA53DCE09E74000B35B7B7460251B4C46BDB9CEA709A ] applockerfltr C:\WINDOWS\system32\drivers\applockerfltr.sys
09:39:28.0226 0x2594 applockerfltr - ok
09:39:28.0226 0x2594 [ 636575088044E7271088BB8CFA382B45, DCD2CAD626E66AF98D31B9339A4A92FD94E99F335B48649529AC327B7AF52B9A ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll
09:39:28.0257 0x2594 AppReadiness - ok
09:39:28.0320 0x2594 [ D0103AED7E772B792D46BB9A2BFDE555, ECCBB5F2D6352A033B2B0768874275BEFAD4FC5C68BB5F7CC5BD9727FEBAE12F ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll
09:39:28.0398 0x2594 AppXSvc - ok
09:39:28.0414 0x2594 [ 013E057DF3D13A4462AD912D7732E7E0, 7C89AD5799091D17EAED682058559DBAE882D0E18C347B5AECE7BCCFD0E2D21C ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys
09:39:28.0414 0x2594 arcsas - ok
09:39:28.0414 0x2594 [ B25ACCD9BE5F5798E9DD8FFB04D7BE4C, 87577AD2E4A47518B8101C67F1025CB3CD2ABBA678774A5926192FCD56EF1350 ] AsyncMac C:\WINDOWS\System32\drivers\asyncmac.sys
09:39:28.0429 0x2594 AsyncMac - ok
09:39:28.0429 0x2594 [ 90AB4ED8EBD72A1C096A40CC35404B91, C343466D439552D154BBD1A5F9D391CDD3FA298A712594EA27C3049E3516D1AF ] atapi C:\WINDOWS\system32\drivers\atapi.sys
09:39:28.0445 0x2594 atapi - ok
09:39:28.0445 0x2594 [ 9CA35025813BA1EE344185BD74EDC1E7, 7A834632F1CC03DE29B3021A82170377F00BBD3185C59CA2BFCCE68653F6DFAB ] AtherosSvc C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
09:39:28.0461 0x2594 AtherosSvc - ok
09:39:28.0476 0x2594 [ 49C40F52EB06F9E9C8A14436F97AAEB8, F98E04CD9674C99BA1D1C63177AA81C628D505AED1DE4110500FC33A5C494864 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
09:39:28.0507 0x2594 AudioEndpointBuilder - ok
09:39:28.0539 0x2594 [ 50DE2E82D65B6006360660D085E80B8B, C279E90A975D71E193048BA324C99685CFF977A0D3B171B6BDFBDEF7FF7A084B ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll
09:39:28.0586 0x2594 Audiosrv - ok
09:39:28.0586 0x2594 [ 2CBA09A7983B1D39531B768BCED08C20, B40968DFE1A648CCB9260033E1EA57B5D496274A335B000354156B0DB740EDE0 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
09:39:28.0601 0x2594 avkmgr - ok
09:39:28.0601 0x2594 [ 9C71227D9D0A6F929C97294842A988B1, 3C79297A19001902A48BAFEF545CFB70D51509FA704EAE716B1858D1A66386A0 ] avusbflt C:\WINDOWS\system32\Drivers\avusbflt.sys
09:39:28.0601 0x2594 avusbflt - ok
09:39:28.0601 0x2594 [ D7BFD86F7A9ABE39351199869D093110, 90BB2C0A8185D3982FEFAC7C1E18783AF949EBECA3B9E44DCF89E2FD5FD6AA0C ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll
09:39:28.0617 0x2594 AxInstSV - ok
09:39:28.0632 0x2594 [ F10E4C9444A9FC6DCBAB2C42F6999FA1, 4238B6DD49CBADFE2C737AC1B211AE045F458DDF1693EE54608455C1ECE1BCCA ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys
09:39:28.0648 0x2594 b06bdrv - ok
09:39:28.0648 0x2594 [ 982FAA5686F67BFEF3E6094705C2621F, 02456312B0FD0ABE7B7EEC0FB385268AF34DDB5F13AF934F96FCA7C32EA51447 ] bam C:\WINDOWS\system32\drivers\bam.sys
09:39:28.0664 0x2594 bam - ok
09:39:28.0664 0x2594 [ FA4973E379E872C61D0CF4E39F807833, 3320FAB0CF16BB1ABBBA222CC31D20B5AC7A4259DE4323B109A8F2FECC28C8A4 ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys
09:39:28.0679 0x2594 BasicDisplay - ok
09:39:28.0679 0x2594 [ F024B80EA0076A318598DAB795F9C3D0, 6225A5FCD2B750A0E4FFFCCB1CDF49BAA7809A4B4AD7AB625A585CF4971CDE25 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys
09:39:28.0695 0x2594 BasicRender - ok
09:39:28.0726 0x2594 [ 79C15322EC1CD5B6AE130D0518BF63C9, C1F365772C1BFBF35E8243548D744D77653ED9E61A8CB8ED02698E5A32AABE22 ] BcastDVRUserService C:\WINDOWS\System32\BcastDVRUserService.dll
09:39:28.0757 0x2594 BcastDVRUserService - ok
09:39:28.0773 0x2594 [ 739D089777D2B66DBE7201E5EA4BA2D7, 9AD12E18A042C5B8EFB19297BC2E7BD1FEF75A138FEFB64C6BF0261FD3E53AB1 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys
09:39:28.0773 0x2594 bcmfn2 - ok
09:39:28.0789 0x2594 [ 255D1EA1F4EDA1B7B28A88581F12A1CE, 5B2D7F2EFA7BB539719890CF2E45568C544DD0EECEC44BBA56CCECB792E8BC44 ] BDESVC C:\WINDOWS\System32\bdesvc.dll
09:39:28.0804 0x2594 BDESVC - ok
|
|
10.09.2018, 08:49
| #9 |
| | Virus? (Neue Startseite etc.) Teil 3: Code:
ATTFilter 09:39:28.0820 0x2594 [ 9B068DF7B7B3DDF768D06DFD69B49FD0, DC2CD3A70506AEB1BCEB207A9B06657806E72C5432FA605FF9C6F11516F38132 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:39:28.0836 0x2594 Beep - ok
09:39:28.0851 0x2594 [ 0B9B6D7A2F31FBD63301D19B1B08238E, 7EF63C87FB2B9E0971B633BC86F99B12F8BBE188D53E0B105E44766A0657A67E ] BFE C:\WINDOWS\System32\bfe.dll
09:39:28.0882 0x2594 BFE - ok
09:39:28.0882 0x2594 [ BC1E5F20251E0AFDB955E7D91093B619, 5642E6B6CA6DBC8585834790A70CFF54252A631A9EA06D28F28EF7430FA42BE5 ] bindflt C:\WINDOWS\system32\drivers\bindflt.sys
09:39:28.0882 0x2594 bindflt - ok
09:39:28.0914 0x2594 [ 97F4C0B9741E06BAC6AD2D93ABCEAED8, 25FD58F4BA2F8EC99241A580352D1EC49924829C61D89353B30CCEEE2CEBADE7 ] BITS C:\WINDOWS\System32\qmgr.dll
09:39:28.0960 0x2594 BITS - ok
09:39:28.0960 0x2594 [ 30D75769E23CCFBE13DB41FC54243BB1, 4ED018F1DB103D3F354D8EF7DFE797028DBDF22294D355F6D38DF9C6AF61B69E ] BluetoothUserService C:\WINDOWS\System32\Microsoft.Bluetooth.UserService.dll
09:39:28.0992 0x2594 BluetoothUserService - ok
09:39:28.0992 0x2594 [ 00C33AC3096BB64BACD5554A55025F8F, E13669966AA69A9C18E8932491F722F595666163DA2C6695C8F415AD55836B53 ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys
09:39:29.0007 0x2594 bowser - ok
09:39:29.0023 0x2594 [ 0E1A0E81EF4B33FFDE8EDA46EE38F0D4, F92E7FC14264F58EF79A10025D8375B7455A339B556AEE72A32FFE29278FAF23 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
09:39:29.0054 0x2594 BrokerInfrastructure - ok
09:39:29.0070 0x2594 [ 85F5808D19879E1803E46405090F29C8, E22E73BCE3B76BFBAC712DF1E5D7D38E189B80D1CE6E9A9AB3C94733CF18F04B ] BTAGService C:\WINDOWS\System32\BTAGService.dll
09:39:29.0085 0x2594 BTAGService - ok
09:39:29.0101 0x2594 [ 07740F2FC6470D0E51D19A5E9F8F11C8, AB3AD484EB564D950712E147CE083C5E460FCDE3602EA0F9F97A59D796C82F81 ] BtFilter C:\WINDOWS\system32\DRIVERS\btfilter.sys
09:39:29.0132 0x2594 BtFilter - ok
09:39:29.0148 0x2594 [ 063E91CD2CB1C372459FD6FBC02509E7, 29319290F73D8D87323584D938FBC86400AB37455E7E058A543A77F9BBF4579D ] BthAvctpSvc C:\WINDOWS\System32\BthAvctpSvc.dll
09:39:29.0164 0x2594 BthAvctpSvc - ok
09:39:29.0164 0x2594 [ E0121734C2492406034FA23E3D394EBD, E855EB12DD35CC47F68C5C6B1622560599C7074E274E510528196D47BDA56960 ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys
09:39:29.0179 0x2594 BthEnum - ok
09:39:29.0179 0x2594 [ 02FEC31842DD153D966AC227B6DDF8BB, 90EEEA049212E5FE8EFA2ACED45DFB6ABAFEA6D40FB4E1E2681F65A417237163 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys
09:39:29.0195 0x2594 BthHFEnum - ok
09:39:29.0195 0x2594 [ 8EE632BFE4BABD4E7A299AF54476F9A5, 836675F295A033C0239DCF86D90985443A60D5A1F38B668CA82A30BDFD983352 ] BthLEEnum C:\WINDOWS\system32\DRIVERS\Microsoft.Bluetooth.Legacy.LEEnumerator.sys
09:39:29.0210 0x2594 BthLEEnum - ok
09:39:29.0226 0x2594 [ A0EC1D5C937995A2C5F1179538A8A6B4, CBFBDF2D8305BD72FFF64AAAB31EB5D5B8ADE537C35AC63DC3F6ADCBF96B3659 ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys
09:39:29.0226 0x2594 BTHMODEM - ok
09:39:29.0242 0x2594 [ B10E0CC936462BBA7BC659C0927617A0, B4F2A318384D176D0ACF26372756CE097F34EED59FBB023E7DB8F95D8F73F69A ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys
09:39:29.0257 0x2594 BthPan - ok
09:39:29.0273 0x2594 [ 13886C871293423C2DBADA5082C72977, 15B5B1994BDE83C43C02F77B34A921F6C492DFBE653C7189B63B3786796BEE6B ] BTHPORT C:\WINDOWS\System32\drivers\BTHport.sys
09:39:29.0320 0x2594 BTHPORT - ok
09:39:29.0320 0x2594 [ 1EB49C9E2716D4924460B2FAA295E313, B96D39479BFD2ABCD3A3BB8897EAD7C5A03DFFD7266E82A1FBA0E7FEAF73E4B8 ] bthserv C:\WINDOWS\system32\bthserv.dll
09:39:29.0335 0x2594 bthserv - ok
09:39:29.0335 0x2594 [ 0D5ECDF2601312025811F6AC413F851A, B7E99CF02C6B511BD643E7F8BB59E983D8B65073D9B55ED44457EDC2BBBBC419 ] BTHUSB C:\WINDOWS\System32\drivers\BTHUSB.sys
09:39:29.0351 0x2594 BTHUSB - ok
09:39:29.0351 0x2594 [ E3786BEBB7E4003DE324A18069DDA081, 4DDA70CCB011D74811BA51686E6ED9A404EBE549AE6B3CE0DDBCB83D09E8AABA ] bttflt C:\WINDOWS\system32\drivers\bttflt.sys
09:39:29.0367 0x2594 bttflt - ok
09:39:29.0367 0x2594 [ 03C13BB635635B9152DBF49AA07B728C, F6141576EB54EFE5E329762EC548C7D256EFB57C42A46BB3426B779413F0C975 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
09:39:29.0382 0x2594 buttonconverter - ok
09:39:29.0382 0x2594 [ 9983FF8D9834F2E67787F4BDC42A8E36, 85260F4A657D657ACD394339DFDDE814AD6BCA65712EAD943833BE7AB0937C8D ] CAD C:\WINDOWS\System32\drivers\CAD.sys
09:39:29.0382 0x2594 CAD - ok
09:39:29.0398 0x2594 [ B405F59CF690653105600F85C9B576B9, BEB313DF7D343B2A421EF76E908FCDB64C62AB2ABB7A3188F48A6CACA9644D97 ] camsvc C:\WINDOWS\system32\CapabilityAccessManager.dll
09:39:29.0413 0x2594 camsvc - ok
09:39:29.0413 0x2594 [ 407B33DE151A3DFCF564AC4270E44B1D, 8B1419FEDDCEF9F9F239B4C1A629F4F2748FC09CF3E38CA01D8D6D1D32252346 ] CapImg C:\WINDOWS\System32\drivers\capimg.sys
09:39:29.0429 0x2594 CapImg - ok
09:39:29.0476 0x2594 [ 466A28ED2B5CBAE823A5EAC0CF98F88A, D937D81A53D3F6E34982B126551EEAA626EE8847FBA9374AC8FD6BD3E149A287 ] CCDMonitorService C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
09:39:29.0523 0x2594 CCDMonitorService - ok
09:39:29.0538 0x2594 [ D3CBC6DE5955D014407C7BD1FFE80F00, 9D185AED383FCBF16EE63192452DE888D8485D7BD9C0257BF92A68C42120A1B8 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys
09:39:29.0554 0x2594 cdfs - ok
09:39:29.0570 0x2594 [ 0942C87ED45B1E227032AD154105F79B, A0A40589B9C399061C1C46247609CA514DCD21DDF1E7FCEE19F0CE75D0FC7996 ] CDPSvc C:\WINDOWS\System32\CDPSvc.dll
09:39:29.0585 0x2594 CDPSvc - ok
09:39:29.0601 0x2594 [ 9FBF5849A6F51E3B3F8AF2A4171648DA, 7422BC5C87075F5008E6364C8AFAA794AB17CA2DC238DC00F377B942B6FCDC11 ] CDPUserSvc C:\WINDOWS\System32\CDPUserSvc.dll
09:39:29.0617 0x2594 CDPUserSvc - ok
09:39:29.0632 0x2594 [ 6834DBBA2A1DBA5B9B6360D0B9A3CBB5, 637331058347D94FBDEE0D47E56723C98BDBBE8E044A225CCE7B3592AA562021 ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys
09:39:29.0663 0x2594 cdrom - ok
09:39:29.0663 0x2594 [ 620E4F2FDD04FFB70702676423F1C2AC, 25A19FFA966605C229F5BFBCBBBEE36695FC673C7814CF13E79EE4A9B3D8CBE2 ] CertPropSvc C:\WINDOWS\System32\certprop.dll
09:39:29.0679 0x2594 CertPropSvc - ok
09:39:29.0695 0x2594 [ 4A08B239F92B319AD31E3916D27AD4B9, 948772689F14090E9E096CF7423CE5D994E3F9964775AD5B2F78C37A987EE980 ] cht4iscsi C:\WINDOWS\system32\drivers\cht4sx64.sys
09:39:29.0695 0x2594 cht4iscsi - ok
09:39:29.0726 0x2594 [ C8EA9376E4D284F9DF24B27AC6E3AB85, DAD3B00A37797E7C80E0C359BA735B65BBBE5DC25480910737D86D2711A6FF8C ] cht4vbd C:\WINDOWS\System32\drivers\cht4vx64.sys
09:39:29.0773 0x2594 cht4vbd - ok
09:39:29.0773 0x2594 [ 3AA86DA04A561E8162C2DBBF92D12074, 9CB67299BEC25F2B357DDAA5A36B3464193B8BDAB4DCFAE0CD4315911027E409 ] circlass C:\WINDOWS\System32\drivers\circlass.sys
09:39:29.0788 0x2594 circlass - ok
09:39:29.0788 0x2594 [ 4C9CDDE070A9A005CC11CF17483720A4, F2F95125A52B13F34A9DC5473CEF777D6D85C4D810FA0102553EBF72560F6CAA ] CldFlt C:\WINDOWS\system32\drivers\cldflt.sys
09:39:29.0820 0x2594 CldFlt - ok
09:39:29.0835 0x2594 [ DB26170CF6555B9AFF76CFA067ABCF90, A066E89267783A5E54A36D1CF193916218BE2E1D177F0ACA82E2B86211629806 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys
09:39:29.0851 0x2594 CLFS - ok
09:39:29.0867 0x2594 [ 5BD85187D6A6A37D2A4563F33D7A76E4, 6FF434BE93259229E0EA64EC1B6E09B1B814C2A467FC2859B94C79549E2F114C ] ClipSVC C:\WINDOWS\System32\ClipSVC.dll
09:39:29.0882 0x2594 ClipSVC - ok
09:39:29.0898 0x2594 [ 66CBF6F8FE6F436B315D7FEAF5D2BB40, 0F6AE6412EF73C74EF0EB1866E8CD85AACE4373D5C24F3D0121F5A7420E5A03B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys
09:39:29.0913 0x2594 CmBatt - ok
09:39:29.0929 0x2594 [ A60E64EB0AC03EB1CBB02C30AC01FA40, E9410F11157C761C8BE8B103112C1E88103ECAC0933C325D750B6CF314345487 ] CNG C:\WINDOWS\system32\Drivers\cng.sys
09:39:29.0945 0x2594 CNG - ok
09:39:29.0960 0x2594 [ 037DCC7A71938729CB12E8174E03031C, 1BA2F74F639BF8D5BB38AA658A6D847BAE8D85CF72C4AD5F13BBA1D53145789F ] cnghwassist C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
09:39:29.0960 0x2594 cnghwassist - ok
09:39:29.0976 0x2594 [ E40C99A3E0FFF49687F2187BF3E3050D, 30723EC5767C3F6FAA3CF299440B71B5973F890FB54B9737B96FA0359E7D90FA ] CompositeBus C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_bcb89b3386563bd7\CompositeBus.sys
09:39:29.0991 0x2594 CompositeBus - ok
09:39:29.0991 0x2594 COMSysApp - ok
09:39:29.0991 0x2594 [ 3799A9DFB162D9AAD6AC12CB8185FD19, 942F2777049166EC43F93177F0084EA08B06CE9107AF55337124FE25CCB158C4 ] condrv C:\WINDOWS\system32\drivers\condrv.sys
09:39:30.0007 0x2594 condrv - ok
09:39:30.0023 0x2594 [ A38474B61D9EA219FA8708CF33479C58, 1112BADE5CCF7D4D9C7660088A380978DFAC0691301BD48D6516EC398BC72CB5 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
09:39:30.0038 0x2594 CoreMessagingRegistrar - ok
09:39:30.0054 0x2594 [ B9A3002DF9590508527448669B7D69D0, DA0689D4521F3189717BFF1CFE3D66DC6CB590B9EC4FED93937AA0175728576D ] cphs C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\IntelCpHeciSvc.exe
09:39:30.0085 0x2594 cphs - ok
09:39:30.0101 0x2594 [ DC609BB812E5F9F361815F9328E4A917, 388FCF6EF5D8633263763DE8304CEB7961E7579832675A9EAED12B6CBBC4E0F8 ] cplspcon C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\IntelCpHDCPSvc.exe
09:39:30.0132 0x2594 cplspcon - ok
09:39:30.0132 0x2594 [ 6C6073B45D65887A6035F1A8D073274A, F002B25E05D0894CD12BA3D046E11D4AD6F0BCE8796618B0EE54851223A65C15 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll
09:39:30.0163 0x2594 CryptSvc - ok
09:39:30.0163 0x2594 [ 8711386E9B04357F8F58166760759F3A, 8912CFD220645002C9D3F9E49717D8B0B98704380B45F53D45D5674537B496FF ] dam C:\WINDOWS\system32\drivers\dam.sys
09:39:30.0179 0x2594 dam - ok
09:39:30.0179 0x2594 [ 0CA2AA2BF982C659C7FFBFBC312F79C5, C0A8943A4A832E8E020AA14826FA8EF5D9B1CC9907C59E00B8C823F37F814C66 ] Dashlane Upgrade Service C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe
09:39:30.0179 0x2594 Dashlane Upgrade Service - ok
09:39:30.0210 0x2594 [ 107661923943E9DC06ED2713AC5F7753, 2B311E9BD635F1CEB222EF798C5523447AAF63E2331377804884572D7512F299 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:39:30.0241 0x2594 DcomLaunch - ok
09:39:30.0257 0x2594 [ 94FC38FADA032862E579044C123C0D58, C4A7DF6EE20BE3F2784FE66AF37AC01D0DBBD8A6C15BF03A6AC78CA9D2403F3D ] defragsvc C:\WINDOWS\System32\defragsvc.dll
09:39:30.0273 0x2594 defragsvc - ok
09:39:30.0288 0x2594 [ 8DF502E8116C625387DD789936D7A0C2, D42661E068F401199FAEA012C200EEF02C1409A09DACD30E6B08E3FBE4149BFA ] DeviceAssociationService C:\WINDOWS\system32\das.dll
09:39:30.0304 0x2594 DeviceAssociationService - ok
09:39:30.0320 0x2594 [ DBD6E8A5C358AAA3B4900EFD5CF94CC8, C8261CBE358562B3F31ADA0567723E0118A8687DFC8939FABC65E61C38BFE20B ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll
09:39:30.0335 0x2594 DeviceInstall - ok
09:39:30.0335 0x2594 [ 38D6ED38A46F815C24C5656E8A5AB083, 730DD6D85771A60E5C089BF5D810E3AEA335BF7DD14FD72924A1A4FCF021A59D ] DevicePickerUserSvc C:\WINDOWS\System32\Windows.Devices.Picker.dll
09:39:30.0366 0x2594 DevicePickerUserSvc - ok
09:39:30.0382 0x2594 [ 372BD821867225F32DE87A6B3FEC8A2E, 20389A1861B5A451EE3383F68FC59B3C9A75D3123B2DF1669CBB5CC37A0128B0 ] DevicesFlowUserSvc C:\WINDOWS\System32\DevicesFlowBroker.dll
09:39:30.0413 0x2594 DevicesFlowUserSvc - ok
09:39:30.0413 0x2594 [ C48C4D6B8D9C53F0399DEDA402A6FAE5, 25FBE2A51DCF7DB95AD2707502F8A9661B94FC61DFC405DA5BF23BED1BA123D2 ] DevQueryBroker C:\WINDOWS\system32\DevQueryBroker.dll
09:39:30.0429 0x2594 DevQueryBroker - ok
09:39:30.0444 0x2594 [ 8A1C10410FDA4287A76EC5A64371E221, 66CE271DDAD9CD82D2DF220247D91CCB906FA4B5508ABE0DC4A56D1C0C008BCA ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys
09:39:30.0460 0x2594 Dfsc - ok
09:39:30.0476 0x2594 [ A25AA328816454FA5CCD054343CADAFC, BA2524E443213DF65DF923C58D5C6A99681F102917C1AFD94B31196F4838DB8A ] Dhcp C:\WINDOWS\system32\dhcpcore.dll
09:39:30.0491 0x2594 Dhcp - ok
09:39:30.0491 0x2594 [ 1A468A999C05ACA23C8F5A52C996AEDA, 84A4FF952516CB2F3A40378D530710E00AF9161A736A8F3877E2F66BDDE32BEE ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
09:39:30.0507 0x2594 diagnosticshub.standardcollector.service - ok
09:39:30.0523 0x2594 [ 6EC6BB6EF31C85FD72D14BE4A1BD1B03, E027124AD492ED22F0D604030CB0E2C3778331879FC73A614644FA8C8606ADD3 ] diagsvc C:\WINDOWS\system32\DiagSvc.dll
09:39:30.0538 0x2594 diagsvc - ok
09:39:30.0585 0x2594 [ E74FCFD1499A4F816A99D35E297CCE63, 9C6D75200A8D0932CA77F68D78F11B89B0A45441ABB1662BE69567FE13138D19 ] DiagTrack C:\WINDOWS\system32\diagtrack.dll
09:39:30.0663 0x2594 DiagTrack - ok
09:39:30.0663 0x2594 [ A79FCB89805FA9EA9F48B671A4591D4E, 13CA8B9CB35DF9F8EFFF8E6ECC0F65E4F179FA9BEF4B68F3382CA4A6BF14FA54 ] Disk C:\WINDOWS\system32\drivers\disk.sys
09:39:30.0679 0x2594 Disk - ok
09:39:30.0694 0x2594 [ EAA267FAABDBE6194985DC6A0AC96664, 604908384B503AD7E14F15776C1B3DC58A278149145C2811B5B5300EA597A50C ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
09:39:30.0726 0x2594 DmEnrollmentSvc - ok
09:39:30.0726 0x2594 [ F69D7A5D7EDEE16B85F08040836FB09C, 944730FA6CA6ED0ECA85848A2F00EE1E647F7DD4CC37E557A812ECE8A92B3999 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys
09:39:30.0741 0x2594 dmvsc - ok
09:39:30.0741 0x2594 [ 8B3601E34BD1D693598F968D70361C37, 897C5AEB5ED6AC9DAB2E8E638A42FF588AF3A94EE4C731E97DFAB89BD3B658BC ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
09:39:30.0757 0x2594 dmwappushservice - ok
09:39:30.0757 0x2594 [ E65844BC31FE3687A745C2E48C845CBC, 826845A9FC00E4D68CDE5FA5C293DF6D41DB0E8D15B43647A1335F0A79AFD4D6 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:39:30.0773 0x2594 Dnscache - ok
09:39:30.0788 0x2594 [ 91746BC778124FF991074BDE75C32725, 9A6E11F9C3D58B7FFAA89686F7461380A00E492B13905123C7FD64910993636E ] Dolby DAX2 API Service C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
09:39:30.0788 0x2594 Dolby DAX2 API Service - ok
09:39:30.0804 0x2594 [ C79E79CD4DE45EC0EC0ECB5C76D6CB11, C1AFCA79A104EDF5C59C3E6A113467C7F73E84AACEDE97A22BCBA5B25563E163 ] dot3svc C:\WINDOWS\System32\dot3svc.dll
09:39:30.0819 0x2594 dot3svc - ok
09:39:30.0835 0x2594 [ 5B1EF28DE7302A6BD5DF8459E2C598EF, F2292B8ED8FBFFA681942D5566BF1932D1E9B4F44C2D13329B60E5A8B9386CC9 ] DPS C:\WINDOWS\system32\dps.dll
09:39:30.0835 0x2594 DPS - ok
09:39:30.0851 0x2594 [ AD1BEFBF96C0273925EDC9282557D984, E23B1B043E9EE25054DCEFB10C1C69009DCB1E12675DAE60B00A646735B03D99 ] drmkaud C:\WINDOWS\System32\drivers\drmkaud.sys
09:39:30.0851 0x2594 drmkaud - ok
09:39:30.0866 0x2594 [ E7D1636EEA6F9A941573CA426F214054, 7730C82E808C80BAFB59A6AD140B11C2269A62F2396783CB063E58D8EA624BDD ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll
09:39:30.0882 0x2594 DsmSvc - ok
09:39:30.0882 0x2594 [ 4323DDFF8CB51FD74B241810CFA6CDBB, D9CDE22055C6D139DC3E21C3D92112704426D60F5EF83E3E338B68D885BD3D30 ] DsSvc C:\WINDOWS\System32\DsSvc.dll
09:39:30.0897 0x2594 DsSvc - ok
09:39:30.0897 0x2594 [ 974BC06C0EC847EA4DC8D9002D394FEB, 4952FEADD7A3EF541FD537EBBCD56ED573D712755798C42428E78267E50BAB34 ] DusmSvc C:\WINDOWS\System32\dusmsvc.dll
09:39:30.0929 0x2594 DusmSvc - ok
09:39:30.0960 0x2594 [ 278F425AA106C85794A3F1196F1C556B, CE30C617785FBF71D8890A630F45E3EA4721207763E918A062A545150FA8B41E ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys
09:39:31.0038 0x2594 DXGKrnl - ok
09:39:31.0038 0x2594 [ 7E9A1608894297B133AF5EE18E404208, 9E2E4B4F6133375DB8E490337594BEFB86BA964223FB272A23ADD02FA8065253 ] Eaphost C:\WINDOWS\System32\eapsvc.dll
09:39:31.0054 0x2594 Eaphost - ok
09:39:31.0116 0x2594 [ 75CA88887850A74DDAAAF92500B6D9B9, 1C413719D0E659E20C66B0762B2FC708E55536961A1D9F21906ADBE9CF431489 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys
09:39:31.0179 0x2594 ebdrv - ok
09:39:31.0179 0x2594 [ 317340CD278A374BCEF6A30194557227, 593DA57CDD02F4CC3A5125CE5707C222DD922F2936D16492BA21AC6C345EC6B0 ] EFS C:\WINDOWS\System32\lsass.exe
09:39:31.0194 0x2594 EFS - ok
09:39:31.0194 0x2594 [ 7E838D857FC55535710C316441459C38, C4673014D3ED3E68E02DB5BE6DB53E45B1E4A3CE2B04B15BFD507AF703A60134 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys
09:39:31.0210 0x2594 EhStorClass - ok
09:39:31.0210 0x2594 [ 49023DD6F646B8C70AE1C105415F3E2B, 16EC2920A2CB71C17BFA7A0E22EDAE1C0E7004C986BEBCA9435F6FDB5D8E64CF ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
09:39:31.0226 0x2594 EhStorTcgDrv - ok
09:39:31.0241 0x2594 [ 2F47D3915839372D238ACF00FCEBD90E, F1C6CFB63FAC26F85A7D2A38DAC1D7F4D22007A7251755BD7392FF67ECD2F3F7 ] ElfoService C:\Program Files (x86)\ElsterFormular Update Service\bin\elfoService.exe
09:39:31.0304 0x2594 ElfoService - ok
09:39:31.0319 0x2594 [ 80D5BD4804C587B21A121566549A63FB, 9BDC1DEB8805E06851F2E2A8B8762265FDC6B12B873D391BFCB8300BDF425B36 ] embeddedmode C:\WINDOWS\System32\embeddedmodesvc.dll
09:39:31.0335 0x2594 embeddedmode - ok
09:39:31.0351 0x2594 [ 8BDB4EB138A93B9C4242D5ADC068899A, 528C0D16CE5D9A69EA75C43DC53D14F7BD2D8BB0B0B0F32BB1F36AC6659C6A27 ] EntAppSvc C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
09:39:31.0366 0x2594 EntAppSvc - ok
09:39:31.0366 0x2594 [ 1DF19D7A941CB06F8EADF89FA0BF59AD, 0A8891AD73AF277B764FA5CF163E6BC29DFFA0E35388A941AE27E001289C0A4A ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys
09:39:31.0382 0x2594 ErrDev - ok
09:39:31.0397 0x2594 [ 9B538A1E44E1D61FA80E80EA75A085FA, 6431BBC533895BD466879C407B9BE7EB50345D666FEE69CAB0813283F07DBE82 ] EventSystem C:\WINDOWS\system32\es.dll
09:39:31.0413 0x2594 EventSystem - ok
09:39:31.0413 0x2594 [ D31158A3876110ABAC5E479B49661140, 174147E19D04CF08D2CF8250D0F71702E901263BB3CA62F821E8DCCA5D99CC0F ] exfat C:\WINDOWS\system32\drivers\exfat.sys
09:39:31.0444 0x2594 exfat - ok
09:39:31.0460 0x2594 [ F1FBBADF0D7F4B6D56E3202C987BA525, 408FB3085A905EA22BE535CE9CFA3E218BC4CB489F8CC496A91E17402034E02F ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys
09:39:31.0475 0x2594 fastfat - ok
09:39:31.0475 0x2594 [ BBD6407DA3DA4FC718710587E253C7BF, 8C9995A86EF9FC1FB47ADA1367A67A9829E0E3CE191D11E0AFB0F85E325D48DC ] Fax C:\WINDOWS\system32\fxssvc.exe
09:39:31.0507 0x2594 Fax - ok
09:39:31.0522 0x2594 [ 6701B9973DE98578A491721B4BDE0926, 48D07092E6B44CAA529559DF620BDAA4DFCC16430DBA8178B461E556AC526DE1 ] fdc C:\WINDOWS\System32\drivers\fdc.sys
09:39:31.0522 0x2594 fdc - ok
09:39:31.0538 0x2594 [ A2037943CCC079307A383C5543607CEF, 2FAC5F76526A8E4D7D7FAE80F9A0AF31D37DD12FF597769C87912B973C339BF4 ] fdPHost C:\WINDOWS\system32\fdPHost.dll
09:39:31.0554 0x2594 fdPHost - ok
09:39:31.0554 0x2594 [ C11A1A9CF331B7AA2F04974EE262EC07, AA1C79FCCDEC3C7236B7BE73E6888D7DD5642EB16E13B4633C98EE34CB72A644 ] FDResPub C:\WINDOWS\system32\fdrespub.dll
09:39:31.0569 0x2594 FDResPub - ok
09:39:31.0569 0x2594 [ 71CECDA2DCF81E0AD8C30440C77966E2, E26313CD895579A9F3380A648E6FC271EFED0E82C0FCFB287049C5C2D0CC35A9 ] fhsvc C:\WINDOWS\system32\fhsvc.dll
09:39:31.0585 0x2594 fhsvc - ok
09:39:31.0585 0x2594 [ 9BC7FE262AF52B341048234809AA7D91, DF95BBEB59821357C69797AC659380C9F27C11B8A60A599C9A2C5623B7CBB6DB ] FileCrypt C:\WINDOWS\system32\drivers\filecrypt.sys
09:39:31.0600 0x2594 FileCrypt - ok
09:39:31.0600 0x2594 [ A0AF205465482EE0FC6261782629566B, E0C0E9EB327F4DEEDF3E32EB5573A74436829078331A8EA1B795438892EE81B8 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys
09:39:31.0616 0x2594 FileInfo - ok
09:39:31.0616 0x2594 [ 01D83D284E6B37902DB3C4D4DB0649E0, 4376F872575013DE87CA8173FABAD367FFF907086864C106A4C82933EF9DA308 ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys
09:39:31.0632 0x2594 Filetrace - ok
09:39:31.0632 0x2594 [ CE9CB1DB00B5007ABFFF0717E748E919, 314E1FA6B0CD9416894EED93ADF3DCB273FF37F6E56EF64C9E7B55E174EB3226 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys
09:39:31.0632 0x2594 flpydisk - ok
09:39:31.0647 0x2594 [ C5374BA2CAE89DE7269EC61A969EF5D5, 520D7A4C50A9FFF308599C6EADDCADD3D9E398718786D82F02F7EE5C30E7D6A2 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:39:31.0663 0x2594 FltMgr - ok
09:39:31.0694 0x2594 [ 8F528FD267C55ABE2A156C5F6EA6B867, 540A852F250783553E042FC31D3F2D695DADA4777FF31F1BA8B60E3407333277 ] FontCache C:\WINDOWS\system32\FntCache.dll
09:39:31.0741 0x2594 FontCache - ok
09:39:31.0741 0x2594 [ CE9456F925ADA70ED5A4158F103F9A26, 89753CCCB2E8B1553F077B8F13C63FBEC2EABE7093A6B847477542483347C827 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
09:39:31.0757 0x2594 FontCache3.0.0.0 - ok
09:39:31.0772 0x2594 [ B6BC6E6731FB1E02F0B3C73A87E1C35E, D9CA56006C1D995568A557E53DCCD7802D152CADE535BDB5DBBFC66F3F2EE236 ] FrameServer C:\WINDOWS\system32\FrameServer.dll
09:39:31.0804 0x2594 FrameServer - ok
09:39:31.0804 0x2594 [ 835F9C7193B6F9A796DE76897DC56968, 62D6CF40CD6B798E79FF3274DB156DAB17724EDEEC85F6602F3C0EDCDD2DBA11 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys
09:39:31.0819 0x2594 FsDepends - ok
09:39:31.0819 0x2594 [ A01BA0506E07F316483E99D7AD9B6E75, B2CFB3AAE0E49C539C743A7F416CFC0DE2E0CFC2D5AE685F8B1BECBDB95C4308 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:39:31.0819 0x2594 Fs_Rec - ok
09:39:31.0835 0x2594 [ F00AA662A862BA1B5B0BB9FBDFAE2DFC, 1DBEA358E58370C1BD8D5797382FD22A19E92BA171AB70868359CF921F324CA7 ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys
09:39:31.0850 0x2594 fvevol - ok
09:39:31.0866 0x2594 [ 71DBED7FB264DB60341BC796EC2E8135, DBD29794A45AEFB16A5765D03962B311CB061D1EB8A281C5F34DABF39C66A3B2 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys
09:39:31.0866 0x2594 gencounter - ok
09:39:31.0882 0x2594 [ EA5EE5EF9765A9157B346DF671952F18, FD0A8DBA6EA3E47D454B877CEC74B7B6BEC8B7A98BE37E9E1110D867009D9EA1 ] genericusbfn C:\WINDOWS\System32\drivers\genericusbfn.sys
09:39:31.0882 0x2594 genericusbfn - ok
09:39:31.0897 0x2594 [ 6BE6550F1A32796A11EBC58BBC72C44D, 99DC4058EC1B3BF316F1470BF1208F0A2FC72A508BCC9E7548D91BB0FF04376A ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys
09:39:31.0897 0x2594 GPIOClx0101 - ok
09:39:31.0929 0x2594 [ 3FC2377994D9D63FC128B6C48B22B68F, B47D6BE6FF596A23BBDB7261B1CA9CA67CD138CBF89AEA7A68882E62C0087561 ] gpsvc C:\WINDOWS\System32\gpsvc.dll
09:39:31.0960 0x2594 gpsvc - ok
09:39:31.0960 0x2594 [ 508614CAC7BF8AEE4FB9002A413919B1, F60DE0236B0453FC99473A09A7FAC1140831E581C08F3F5C440F5EFCD30943AB ] GpuEnergyDrv C:\WINDOWS\system32\drivers\gpuenergydrv.sys
09:39:31.0975 0x2594 GpuEnergyDrv - ok
09:39:31.0975 0x2594 [ 248739BB0F3A1156A2C0AF51F39A9EA2, A94C43658BCCC88C2D229F40F5C03CA5839A2EAFD57CA088E3E85EB9264CCA3E ] GraphicsPerfSvc C:\WINDOWS\System32\GraphicsPerfSvc.dll
09:39:31.0991 0x2594 GraphicsPerfSvc - ok
09:39:32.0007 0x2594 [ DED74127C7A2266715C0B8EA2EE75214, 999507BECB4BAAC61317D98311962D446844CAC6271BFFE181F6CD6DFE221465 ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys
09:39:32.0007 0x2594 HDAudBus - ok
09:39:32.0007 0x2594 [ 95888B85956AF97320D1F5C354632957, C0218271A17897D4682192AB431658523EC87CB13551B2BDA40576BF766BB26C ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys
09:39:32.0022 0x2594 HidBatt - ok
09:39:32.0022 0x2594 [ 33346BD26BB0AE4361DF1ED00D2876CF, 1777169606573646F7E7D54E01E421F62479DF57FAE86005B1EEFDC06F4898B7 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys
09:39:32.0038 0x2594 HidBth - ok
09:39:32.0038 0x2594 [ 6D767FEB02DF712F783BEEFF09E06431, AB64C61E5729FB27BF9564CA8308D895CFFB992CE8606FDC31EFF01BB1FF8FFE ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys
09:39:32.0053 0x2594 hidi2c - ok
09:39:32.0053 0x2594 [ 542AB7A14235C5227A9307ACF1636F0B, E54C4C4511727F4E70CB1C9259C56D4AC62E70BAB2F42E9AB402C1DF4AF3FA25 ] hidinterrupt C:\WINDOWS\System32\drivers\hidinterrupt.sys
09:39:32.0069 0x2594 hidinterrupt - ok
09:39:32.0069 0x2594 [ 1553DF41F4EE4F60B4BEEEC62264BE71, 46AE8357E8038D35ADB82A51ED421293D7AB18C926C713F19149B97400D4C65E ] HidIr C:\WINDOWS\System32\drivers\hidir.sys
09:39:32.0085 0x2594 HidIr - ok
09:39:32.0085 0x2594 [ 3030F19C6A73367D6D5EEDD157F5D01A, B1F13C2AE334C8CDF15BD96B70E92A81487308D841196A29AE3D1164CDAF9AA2 ] hidserv C:\WINDOWS\system32\hidserv.dll
09:39:32.0100 0x2594 hidserv - ok
09:39:32.0100 0x2594 [ 6E3FB2047B8AE72E1B5F1C00A5F3E475, A5F791BECA43925D410751C114BCF2FC4A46D7A44BE80B02CD3259C6E271FF31 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys
09:39:32.0116 0x2594 HidUsb - ok
09:39:32.0116 0x2594 [ 621B1FFB2E4E4745484EA01B013BF1D2, 6F6761922EF931DB95D6597A5884DEB3CC127FB9D763A5A27369F7881DE64B8D ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys
09:39:32.0132 0x2594 HpSAMD - ok
09:39:32.0147 0x2594 [ B96A51E96768A56180EF4934A8613E54, A9F2EA25BF3707A0FD47EA49F9CE6F93DF13EE14F2F20D7BA763A706B0CB6328 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys
09:39:32.0178 0x2594 HTTP - ok
09:39:32.0178 0x2594 [ 9E1F3BA540DB9F4942A3F50A92E5754F, 3FF53B60DC52886D6F2EC7F9D8C12009A4BECE5A046D827BC8C941E7401ED000 ] hvcrash C:\WINDOWS\System32\drivers\hvcrash.sys
09:39:32.0178 0x2594 hvcrash - ok
09:39:32.0194 0x2594 [ EBFCD9B6431859F529CE9BB66E723D37, 2D693E8B44D0A9564CF515A00F6079F4D06B2E2E3C297A048E40B20CFCC0F7B1 ] HvHost C:\WINDOWS\System32\hvhostsvc.dll
09:39:32.0194 0x2594 HvHost - ok
09:39:32.0194 0x2594 [ 98F2DD1B89BC5C2BBF5052FA09650D1A, E2FE81D977E9EF5A6619B0439D0D30266CA85CDF86C55832A7ED93A06F46A671 ] hvservice C:\WINDOWS\system32\drivers\hvservice.sys
09:39:32.0210 0x2594 hvservice - ok
09:39:32.0225 0x2594 [ B149905CD7451160B6BFA2191A3F6182, A706E4F12963A20F9767D8730973282B5830D97A087ADA8CA9B7D219513C127F ] HwNClx0101 C:\WINDOWS\system32\Drivers\mshwnclx.sys
09:39:32.0225 0x2594 HwNClx0101 - ok
09:39:32.0241 0x2594 [ FE36689912DEC37D45B7A6C6414046FE, 3AE4E52B4ECD50ABEF67DCD1E30E409908F53624D9854BDD472352E8B280F19D ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys
09:39:32.0241 0x2594 hwpolicy - ok
09:39:32.0241 0x2594 [ A1133368F47D514D73DD7FB4C4FD2B75, 6019DABCAB9E2941D76EC62F4352FA76DDCD964671C490730BF725CA2234CA3D ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys
09:39:32.0257 0x2594 hyperkbd - ok
09:39:32.0257 0x2594 [ B68252C53556FFB52CCE18FF30FACA99, 0463FB8661A9EF338EFBBE43EE76C63DE170510D0E9B612D62009D7D85669365 ] HyperVideo C:\WINDOWS\System32\drivers\HyperVideo.sys
09:39:32.0272 0x2594 HyperVideo - ok
09:39:32.0272 0x2594 [ DA179667B8CEC22E4ECBBF4210DC0E35, 70CDB592E1775919B9AB1810A7BA18FE4851FBD493E4772741F36FC11A4CA47E ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys
09:39:32.0288 0x2594 i8042prt - ok
09:39:32.0288 0x2594 [ B5EC43755E62591197DE5CBBDAA9FEB7, 1B4E0EAB677B09A050925879ECDA311404270DCF020AAD390692427198C73C9F ] iagpio C:\WINDOWS\System32\drivers\iagpio.sys
09:39:32.0303 0x2594 iagpio - ok
09:39:32.0319 0x2594 [ D8CA23F9C5FEF44296FDE1E005C06EC0, 0D7B03EF9E19B9B2A28C3318560488B3F9573CF364A533A9B4A2CD0A7FFA4F84 ] iai2c C:\WINDOWS\System32\drivers\iai2c.sys
09:39:32.0335 0x2594 iai2c - ok
09:39:32.0335 0x2594 [ 7B769C9D19C013F94874C4B15D59A005, 53A15F0480AEC43B5A01CFB17360188885B6ECBFFF6E566D27E5B6D4C7737243 ] iaLPSS2i_GPIO2 C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys
09:39:32.0350 0x2594 iaLPSS2i_GPIO2 - ok
09:39:32.0350 0x2594 [ E0F1B3A2A70FABE3BE1C9140BB55E607, 34E5B055619F3A26B7BB6054EA49D40B7D6DAFE234F57F358FE7C8EE83E10618 ] iaLPSS2i_GPIO2_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2_BXT_P.sys
09:39:32.0366 0x2594 iaLPSS2i_GPIO2_BXT_P - ok
09:39:32.0366 0x2594 [ 89A869BCC0588A3009ECB875B09ECD39, 5ECC2C6E661B326511682D8EA1C82F942C63835890687285FEF455C5C9DC2476 ] iaLPSS2i_I2C C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
09:39:32.0382 0x2594 iaLPSS2i_I2C - ok
09:39:32.0382 0x2594 [ 2E693DF3C02A0859DB8DE25772751100, 3EFFDA44B247E04258429ADC85E88E23F926FD487A3A85BF879E6E5802197B3F ] iaLPSS2i_I2C_BXT_P C:\WINDOWS\System32\drivers\iaLPSS2i_I2C_BXT_P.sys
09:39:32.0397 0x2594 iaLPSS2i_I2C_BXT_P - ok
09:39:32.0413 0x2594 [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
09:39:32.0413 0x2594 iaLPSSi_GPIO - ok
09:39:32.0413 0x2594 [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
09:39:32.0428 0x2594 iaLPSSi_I2C - ok
09:39:32.0444 0x2594 [ C1094259CE6F8819F6EEA8A0585F9A1B, A06D2712CB91014259279A843D359C589BAA2DF1EDA220CBE8B0D166FA25EAE7 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
09:39:32.0460 0x2594 iaStorA - ok
09:39:32.0475 0x2594 [ 26405FA714257E449581DE5D6E6200E6, 1C3055AF6BB53308B7E6268A11929881263767619FF524674C51C03B7990C0A8 ] iaStorAVC C:\WINDOWS\system32\drivers\iaStorAVC.sys
09:39:32.0506 0x2594 iaStorAVC - ok
09:39:32.0506 0x2594 [ 11AC0355FE52CC8813EE6864DE7531E4, 4D77C451C230395E03B3DB592B1BDCDB8B2142961906A25F0FD070D3A8B670EB ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys
09:39:32.0522 0x2594 iaStorV - ok
09:39:32.0538 0x2594 [ 62CD9FA7394BCDF7784CCEFC9D00C9AA, 2A09A921EBD998EC45470675FC8D803EAE5F9E2E16B9313591987AA574835CFE ] ibbus C:\WINDOWS\System32\drivers\ibbus.sys
09:39:32.0553 0x2594 ibbus - ok
09:39:32.0569 0x2594 [ F8CFDD8FED56E1261367A81A731BC1C0, 408187B2E7B403B47AF0D4BF089439D9BA3B3090A430983F77A55DEF2AB381DB ] icssvc C:\WINDOWS\System32\tetheringservice.dll
09:39:32.0585 0x2594 icssvc - ok
09:39:32.0788 0x2594 [ 08F37CC9D3E69F4ADAAD79234985DEF0, E30881343D9A57CE6BEC2D067B41FDF3B27017A869E48734B29E01902D889378 ] igfx C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igdkmd64.sys
09:39:32.0975 0x2594 igfx - ok
09:39:32.0991 0x2594 [ 524FBE10914FB77F5154787653D16129, D4992BA1207BA8FDCCF810875E70CBCFD9BED189B9D8C6C4C5C67D4159F4064E ] igfxCUIService2.0.0.0 C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_420c659363620fe7\igfxCUIService.exe
09:39:33.0006 0x2594 igfxCUIService2.0.0.0 - ok
09:39:33.0022 0x2594 [ 25793D173BD83ACF8B248C97ABC3B860, 0133EEB7C08E02F3C732FA89381920E5C4BB0CD2190E49C19619FAB43C68708A ] IKEEXT C:\WINDOWS\System32\ikeext.dll
09:39:33.0053 0x2594 IKEEXT - ok
09:39:33.0053 0x2594 [ AA38C19A3D65E8228D822EB18037E19D, 54943929E398C67A5A9C72EA65F0FD7A06BB43F03A2291CAEA29443CD10C5169 ] IndirectKmd C:\WINDOWS\System32\drivers\IndirectKmd.sys
09:39:33.0069 0x2594 IndirectKmd - ok
09:39:33.0100 0x2594 [ 310C18A371002983E7BF25BEB0333480, 2A251FDD552F2757059B49441BD6AC683FAEB254D828A792EA382B0D4070F1F8 ] InstallService C:\WINDOWS\system32\InstallService.dll
09:39:33.0131 0x2594 InstallService - ok
09:39:33.0147 0x2594 [ 6812970274D5A8FB6D58E9E10311D2C1, F5037C13AA81C19074E76EED5C4A3C7A6547F101A44376D3C11CEE74A5D55B76 ] IntcAudioBus C:\WINDOWS\System32\drivers\IntcAudioBus.sys
09:39:33.0163 0x2594 IntcAudioBus - ok
09:39:33.0272 0x2594 [ 234B41FA634FA61B888285458E89547C, EA61078D9E6A3752B5962433558A1A3D15E167E5897F0FEA8454046D9B837A30 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
09:39:33.0428 0x2594 IntcAzAudAddService - ok
09:39:33.0459 0x2594 [ F48709A2BC8866197F980B230E415FCA, 59ADEB82BCC5ED50FBD448C4538ED82C5A0FF70D002F1CC001BD45AA219D087A ] IntcOED C:\WINDOWS\System32\drivers\IntcOED.sys
09:39:33.0491 0x2594 IntcOED - ok
09:39:33.0506 0x2594 [ A0B66872DCF1BD5FDF5E26595D3A4A51, 76243493FB7CEAB10B540B693BB7E887F1F78B060FB339A99D4D5741A834B9D8 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
09:39:33.0522 0x2594 Intel(R) Capability Licensing Service TCP IP Interface - ok
09:39:33.0538 0x2594 [ D087B3CE15760ACEE7C09E99052DF197, 0C636DF08D58E319E570DFF961DD7D23985DD6A8E3008F13693A4BAA79B925F7 ] Intel(R) TPM Provisioning Service C:\Program Files\Intel\iCLS Client\TPMProvisioningService.exe
09:39:33.0553 0x2594 Intel(R) TPM Provisioning Service - ok
09:39:33.0553 0x2594 [ 48E645ECF0889CD8B9A40B66ABF04BAC, E5B6ACE05E7BC12C0C0EE9D4E49D9E213EA15911DA68743CFE54F8BB6FD338AC ] IntelAudioService C:\WINDOWS\system32\cAVS\Intel(R) Audio Service\IntelAudioService.exe
09:39:33.0569 0x2594 IntelAudioService - ok
09:39:33.0569 0x2594 [ F1B552F7ACDF6E3E4DDDB76118CAFDE3, C4047BAAECF6FA3B73EB684F53C7F81A08AA39F42F8DC7C31BF35DFA93B7C647 ] intelide C:\WINDOWS\system32\drivers\intelide.sys
09:39:33.0569 0x2594 intelide - ok
09:39:33.0584 0x2594 [ E6CC7C1E7CEDC81D6B15BF2CF4C99109, 1B181F55CD2E500468FE07C9BA6F20B207FA4B601C4971D1551B80A480D42EBD ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys
09:39:33.0584 0x2594 intelpep - ok
09:39:33.0600 0x2594 [ 2CEF9DEB97B2CA327175EE8AD5F195A1, 1D6A3B47A844A235B73F8DC2BF872A943FE980480480843EDD5935307C115B3E ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys
09:39:33.0600 0x2594 intelppm - ok
09:39:33.0616 0x2594 [ 917931A6116F03DB3CA56CFCE8634667, 27B661B6143F4AE94BF28DE1133001F95A451C18804F6DFED1D7D1F36B5E5350 ] iorate C:\WINDOWS\system32\drivers\iorate.sys
09:39:33.0616 0x2594 iorate - ok
09:39:33.0616 0x2594 [ FB72A49FAD5C343C8C38948F92D87BBF, 3947D9393D6F4F104D2D07D5FBA61041A8D6006BE2497F2A6337462F8B04A124 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:39:33.0631 0x2594 IpFilterDriver - ok
09:39:33.0647 0x2594 [ 9064A49C03F1CED42EAC2B4636C87192, CF388E05EA782BC0645FD0B42A41C9334C074BE6D7C193FA4F9819905CBCEA9C ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll
09:39:33.0678 0x2594 iphlpsvc - ok
09:39:33.0694 0x2594 [ 5C58142E0F1F8AA379748CC123BA7527, 1D6D42F2595DF3C0EE8FEF751F13119951A2D040D2B22A7F0CBD6083B49F8A37 ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys
09:39:33.0694 0x2594 IPMIDRV - ok
09:39:33.0694 0x2594 [ 7408B83959A4B8271EF67FD06A6B366B, C22DDB76AC3351A50B889AD7D2756EF8612450AC8EE72C88A1044691A0071BE5 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys
09:39:33.0709 0x2594 IPNAT - ok
09:39:33.0725 0x2594 [ 7BEA2228C81FB6E1EADDD54D615B4C7E, 8640865C98F951B1B8D99E841D9A3FDC6E0251AFAC6B02F815DC409627A50112 ] IPT C:\WINDOWS\System32\drivers\ipt.sys
09:39:33.0725 0x2594 IPT - ok
09:39:33.0741 0x2594 [ AD0574F12AA812340BD39071FD30AD1E, 765F1EDFEDEA1F2728108D7A1187A468F529A883886006F74DB9EAD0BFE7B1B6 ] IpxlatCfgSvc C:\WINDOWS\System32\IpxlatCfg.dll
09:39:33.0756 0x2594 IpxlatCfgSvc - ok
09:39:33.0756 0x2594 [ 030AE3773151CFA728C67E38416FAD8D, 167E698035F2F07E822B430B31F02FABF3997BAC93039786747053344CE6E6D3 ] irda C:\WINDOWS\system32\drivers\irda.sys
09:39:33.0772 0x2594 irda - ok
09:39:33.0772 0x2594 [ 79D02DC54AB4F85D2C13A728A0E36193, 3B6BA678ED269195D506D29EBD9E070603F02AC0FAA92364E7C553B8856C3EDB ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys
09:39:33.0787 0x2594 IRENUM - ok
09:39:33.0787 0x2594 [ 6ADE9DCAF71DCD888320CA47DB8B05EF, 6FA1EBB3D025546AAD14D968DF7CABD3002598F2F561CCC1D4F07A9B0322DE02 ] irmon C:\WINDOWS\System32\irmon.dll
09:39:33.0803 0x2594 irmon - ok
09:39:33.0803 0x2594 [ 38A6EC08D0067DECF7B5BA4C871B846C, 0FAB8EACA2BB4A0BF3895B6BB7CA9BCF74447CF640535A57998C6A4A35EAC030 ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys
09:39:33.0803 0x2594 isapnp - ok
09:39:33.0819 0x2594 [ 5529131AAB75E07D9295B19E20C54DAE, C2F2C7D33945C13DDC5EF540581772CEF73EFB23F19E6BCDBB6A99D8C96A302B ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys
09:39:33.0819 0x2594 iScsiPrt - ok
09:39:33.0834 0x2594 [ C35FD802C800F3CBB4FD426D5A542A22, B2325956DB68222C5FBB43DFA0BF5EEC073470010E13997F2A5635CC89D66872 ] ItSas35i C:\WINDOWS\system32\drivers\ItSas35i.sys
09:39:33.0834 0x2594 ItSas35i - ok
09:39:33.0850 0x2594 [ 19D995676AC341198FE0EEE47DAC75F0, A27511F820B9DC9CC462994E870420CDD40B7D8C3EEA6D1161DB4A1340351ED4 ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
09:39:33.0850 0x2594 jhi_service - ok
09:39:33.0866 0x2594 [ 17F3B012B28F27E7B813A7B037A3D790, DADE75BB016438B7E0A11A1CF1FFA596C27246EF7F4E04D96366029C9F65F0C5 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys
09:39:33.0866 0x2594 kbdclass - ok
09:39:33.0866 0x2594 [ 843B4BBD15DD0340C5C293CD419D4A76, F6D17CCE13697669DA4EF1F83E394F5496C437496E0E09307F8B615DE3216CC5 ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys
09:39:33.0881 0x2594 kbdhid - ok
09:39:33.0881 0x2594 [ 5BBB86F3F1700E0ACE1DF10F0EF7B227, 348FE61522F8C24F407F87D2966F62BD816DF27CD824AC103699CA66EE799640 ] kdnic C:\WINDOWS\System32\drivers\kdnic.sys
09:39:33.0897 0x2594 kdnic - ok
09:39:33.0912 0x2594 [ 317340CD278A374BCEF6A30194557227, 593DA57CDD02F4CC3A5125CE5707C222DD922F2936D16492BA21AC6C345EC6B0 ] KeyIso C:\WINDOWS\system32\lsass.exe
09:39:33.0912 0x2594 KeyIso - ok
09:39:33.0912 0x2594 [ 65EF1DBF0132AE84A71B555E97445D4E, 5B48E8E469EA81B58DA11AF79006752A689089467320E5CC19E9DAFFFB60A6DD ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys
09:39:33.0928 0x2594 KSecDD - ok
09:39:33.0928 0x2594 [ 9C1736EABACF698A4FAC68E5E6644602, 90B2125A2B9A429F3AE9E9C80DA230DF97B926A762FEBF7850FEB2C75911ECF8 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys
09:39:33.0944 0x2594 KSecPkg - ok
09:39:33.0959 0x2594 [ 10F2EBC1F1C4549C355781715DE47B66, 9D23CBA56245532D88396DF99C62A26E71A7EEEF7CD8BA98FFF9FD2804DDF946 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys
09:39:33.0959 0x2594 ksthunk - ok
09:39:33.0975 0x2594 [ C4151271434A490707B4FD4E6AAE9EED, DDB809D002039645CDED08322B9CDCA04C483A119380098FF9EBA998A1A3811D ] KtmRm C:\WINDOWS\system32\msdtckrm.dll
09:39:33.0991 0x2594 KtmRm - ok
09:39:34.0006 0x2594 [ 081D030BC669BDEDC68B8FE81A67E6A7, B5C1FA89ACAE1683A524CD14E2D7D6C3C1FAE0ABCD330841D493FC6DB0843798 ] LanmanServer C:\WINDOWS\system32\srvsvc.dll
09:39:34.0022 0x2594 LanmanServer - ok
09:39:34.0022 0x2594 [ 514E8BD07F42D95667F54777D57403D0, 3D024A18F7AC70A846FAB3255AA1048F8DD1DC4301F1B70B647B71F5E7A1AA24 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
09:39:34.0037 0x2594 LanmanWorkstation - ok
09:39:34.0053 0x2594 [ C2A49E8EEE7C3D06ECA80847A42F65D5, E1559EF96E6F2146E4AC0BE46CBFF5FA29829812A64A6F09803C00E3E0AAB1F0 ] lfsvc C:\WINDOWS\System32\lfsvc.dll
09:39:34.0069 0x2594 lfsvc - ok
09:39:34.0069 0x2594 [ DB8F10ED986BFE0A5B663A1D067F2CCC, 88EE540F545C8838E9F855094A2A4AAC096BD24F77103E06464CCD77C3FCFFFD ] LicenseManager C:\WINDOWS\system32\LicenseManagerSvc.dll
09:39:34.0084 0x2594 LicenseManager - ok
09:39:34.0084 0x2594 [ 3CF979AFF0196DF3DF5E54DFC049EB1F, FEA82EF2AA4222171E80548EB00A4F0FBD27363B84AA9E6B8F82147C568BADEE ] lltdio C:\WINDOWS\system32\drivers\lltdio.sys
09:39:34.0100 0x2594 lltdio - ok
09:39:34.0100 0x2594 [ D6DD748EAC3BC540CFE65C73FE20C099, 8A79E1F1834D949D027B4D3471297ADFB539B9282DE5DF5FDBE60AE171F3CFFC ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll
09:39:34.0115 0x2594 lltdsvc - ok
09:39:34.0115 0x2594 [ BA35694625114B227BF6F84E8B4F4E63, 22AA2806234F47B9E73DC6D1599BDDFCAEB82A4D8371C56EB205BDFB3A2AF8F5 ] LMDriver C:\WINDOWS\System32\drivers\LMDriver.sys
09:39:34.0131 0x2594 LMDriver - ok
09:39:34.0147 0x2594 [ BD35F484DA59014D091736F8F10BFB42, 7004408EEE281BA707248369910483928A15F3304F4A8F594EA2E04D43929926 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll
09:39:34.0147 0x2594 lmhosts - ok
09:39:34.0162 0x2594 [ AA9675BD840046F6D871BB8DB9021054, E484CC528050A74F484C4A505593F6B6B871DCA3ADD6B78A7BF0F86EBDAF6253 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
09:39:34.0178 0x2594 LMS - ok
09:39:34.0178 0x2594 [ 48380096385DB46E43D85CD92B9500DB, D93F4FDAA5A665E09004F7676E821AEAD0ED059F0E006FF73F02BB8FF1C0F9FC ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys
09:39:34.0194 0x2594 LSI_SAS - ok
09:39:34.0194 0x2594 [ F708223E5829510DF0D5AF209D11C8B8, DE82ACC6D04092C22BA4E63CF527814467870A10B93D7E9B061DBA23CEF9424B ] LSI_SAS2i C:\WINDOWS\system32\drivers\lsi_sas2i.sys
09:39:34.0209 0x2594 LSI_SAS2i - ok
09:39:34.0209 0x2594 [ B91BCC8F670F128A4BB826ACF2C2B9D5, D905232E3E49EA6CACE04CDB241D12CA9E84F106D15340C921B980610C1080FB ] LSI_SAS3i C:\WINDOWS\system32\drivers\lsi_sas3i.sys
09:39:34.0209 0x2594 LSI_SAS3i - ok
09:39:34.0225 0x2594 [ FA31CDF977CD31AF9AEAAA422966ACC1, 705761786930A2534CD1B797F5F16F56F58647192175F5D19E13642A89462CAA ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys
09:39:34.0225 0x2594 LSI_SSS - ok
09:39:34.0240 0x2594 [ 52B6D805C60127F0456DF019775F5740, 3005C49349072EDD68DBFC6DBF884FC75E060920EA3FA90A60C39F5A83939595 ] LSM C:\WINDOWS\System32\lsm.dll
09:39:34.0272 0x2594 LSM - ok
09:39:34.0272 0x2594 [ E86400D7B6E095E89CF63667D94D3F50, 4E30374B82FB1D8904B9803109C4557C565023FA94C7AE61BB2ADAAACAE0E179 ] luafv C:\WINDOWS\system32\drivers\luafv.sys
09:39:34.0287 0x2594 luafv - ok
09:39:34.0287 0x2594 [ 07514F5635999D7DDB5F3A62B5C5AEB3, D3717437D14C36873E2D0C1AA65F29EB9A5DB1DE60A7EE86A093FD126B7EBC05 ] LxpSvc C:\WINDOWS\System32\LanguageOverlayServer.dll
09:39:34.0303 0x2594 LxpSvc - ok
09:39:34.0319 0x2594 [ 1CA48E995EE9BDAE7EE3601C792D8DA4, DC4EE789810D3993343F7085DBCFBE1E74B10A31B32C60964582E2F27B5D716B ] MapsBroker C:\WINDOWS\System32\moshost.dll
09:39:34.0319 0x2594 MapsBroker - ok
09:39:34.0334 0x2594 [ BD3D311802427608403C5E73A8D6137D, C85DCB557E931E302AF90270731C3F5AA820CDF14D7DBACA95284FD9E4BF5F3D ] mausbhost C:\WINDOWS\System32\drivers\mausbhost.sys
09:39:34.0350 0x2594 mausbhost - ok
09:39:34.0350 0x2594 [ 61C2D9790943D8E3AD05AE35E4A313EF, 96BBA5333F4AEEE41FAD28124DD448CFECD8111F931758CAB60FCB1DAA05E239 ] mausbip C:\WINDOWS\System32\drivers\mausbip.sys
09:39:34.0365 0x2594 mausbip - ok
09:39:34.0365 0x2594 [ 61BCE12529E96E6F0335A2A8DEB83C61, BFDD1E52736311CF53AE9C778C664D37B5B711B544BC41BDFB137F7A9789AD2A ] megasas C:\WINDOWS\system32\drivers\megasas.sys
09:39:34.0365 0x2594 megasas - ok
09:39:34.0381 0x2594 [ CA22763F12783A9C81C512ED747CECDD, 8D2403364D5479D89479FA0C23BB9511A4360F51504F78AA1675220CDCD21398 ] megasas2i C:\WINDOWS\system32\drivers\MegaSas2i.sys
09:39:34.0381 0x2594 megasas2i - ok
09:39:34.0381 0x2594 [ FDB06D857FC43D654547BBB31D039DB4, 4CBE0F0FBDD88A5DB4F333466BB4E1C886E0742D41B4ED418587B40C4F59B307 ] megasas35i C:\WINDOWS\system32\drivers\megasas35i.sys
09:39:34.0397 0x2594 megasas35i - ok
09:39:34.0412 0x2594 [ 230361AF74DDB91705284E024A22DF4F, 82F13E3E4A8B3CB6AE65C1C9F878702D16D101B0DCC79B9FF8368F9B87E0F285 ] megasr C:\WINDOWS\system32\drivers\megasr.sys
09:39:34.0428 0x2594 megasr - ok
09:39:34.0428 0x2594 [ 3B3B28756F9A8CCF19B3C092A23FBEA2, CCD804BB503B457681209847242B7ADE2BA513982A0B770DBDDCB270428C3A6A ] MEIx64 C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
09:39:34.0444 0x2594 MEIx64 - ok
09:39:34.0444 0x2594 [ 69259AFDF347B5F4AF06E900C4A1F62E, 167FF155F3E1B362A5D5FDB010A5F539F5E13CAD7E64E6F105CC770DA3639EEB ] MessagingService C:\WINDOWS\System32\MessagingService.dll
09:39:34.0459 0x2594 MessagingService - ok
09:39:34.0475 0x2594 [ A8931C3820D5F392D89176E0628E766E, 0F035833B1CBABDF9E5142F3E5EB6413DC7DDBF3A0562170018A8EBA20992CA4 ] mlx4_bus C:\WINDOWS\System32\drivers\mlx4_bus.sys
09:39:34.0490 0x2594 mlx4_bus - ok
09:39:34.0490 0x2594 [ EB4D7C9354CB88DE4B085EA3EEA5BC76, DD842967ED5A9232AF34E68548C98F9760487D5626C9628A44598A97B28F24D3 ] MMCSS C:\WINDOWS\system32\drivers\mmcss.sys
09:39:34.0506 0x2594 MMCSS - ok
09:39:34.0506 0x2594 [ CA25F2D78FDD0D36E3F3071B4B317BD4, 21B5902EF802FAFA7DC6FD737CE9888C74526983FDCE31CDFAB11630E1476FD1 ] Modem C:\WINDOWS\system32\drivers\modem.sys
09:39:34.0522 0x2594 Modem - ok
09:39:34.0522 0x2594 [ 13142B3B30F633F407D5256B2FFCCEF0, 0A8DD229FD752E8B7E1D11E1A066BCF8B3E2023068AD731FF23ACBF4D182D23D ] monitor C:\WINDOWS\System32\drivers\monitor.sys
09:39:34.0537 0x2594 monitor - ok
09:39:34.0537 0x2594 [ 66C9CCC6A100ACF7A4514BD3091CE566, 1423EC39D4203D717B79BF2E5F4A89A0541CCEA2162351A670EA46AA69A0859D ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys
09:39:34.0553 0x2594 mouclass - ok
09:39:34.0553 0x2594 [ 6BE61DAF4CDC0E13940096EAC4A9F490, 954DA0C9FE3881030EC0B9A428C2C2BBC86353EC9421009AC48FDC047315160F ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys
09:39:34.0568 0x2594 mouhid - ok
09:39:34.0568 0x2594 [ 2CFB54C638F75E39FBB22723401A8A56, 5E4B1107534AF4ADCD031FC4931B6819B8371720A3D68B5C9788C2AB34DA2C21 ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys
09:39:34.0584 0x2594 mountmgr - ok
09:39:34.0584 0x2594 [ 7016D6ED42BECBBF4B598190AD6E3F11, FEC66F566F30C3783203C4DD7A51D0D7DDFC6C55E75E9F597DAD148875EDEEE7 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
09:39:34.0600 0x2594 MozillaMaintenance - ok
09:39:34.0615 0x2594 [ D78D87D9F0F6A0BB96A712DB3CD47440, 38AF07573224472BAEF036959E2A10AAA12980C22EF1F190285108DE498D10BC ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys
09:39:34.0631 0x2594 mpsdrv - ok
09:39:34.0647 0x2594 [ 9C7CE5CF0CDB6F41FDB96EF03754D283, A9A8B755EAF20C13FA32240FF71134020F21EF1EB7F033F385AA1F7FDB3CEF14 ] mpssvc C:\WINDOWS\system32\mpssvc.dll
09:39:34.0678 0x2594 mpssvc - ok
09:39:34.0693 0x2594 [ C12373EC998C6F17C0FE2D6C3CBB9C04, 5F41757D6774B2DCADB340430B26C2C1BA93D7A47948DA92023622B66BB7B482 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys
09:39:34.0709 0x2594 MRxDAV - ok
09:39:34.0725 0x2594 [ 3C0FA2ED75875481D00F3D77B1A3E336, 031E1A6F826CEDB44D9FAAA1615872087B822F7A4E0731D3023AEF1CFCD10A2F ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:39:34.0740 0x2594 mrxsmb - ok
09:39:34.0740 0x2594 [ 42FE3D84EFE835443151DC2A50D05643, 3582EA0CAA2A02AA9A6FDECF9DE0F962BF10FB1C2E7E804A3F0D62C4A4C365B1 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
09:39:34.0756 0x2594 mrxsmb20 - ok
09:39:34.0756 0x2594 [ F14DE177087F9E990EDE95ACE1F94662, E0B8C7DAF8C13CAD08B974D681981038E33ED8871717C550477EDCFD05A3B96D ] MsBridge C:\WINDOWS\system32\drivers\bridge.sys
09:39:34.0772 0x2594 MsBridge - ok
09:39:34.0772 0x2594 [ 9A94F32C1DC90A7E5A35D0F820A8FB1D, 4CAFCE804D9135BE9CBF80307D570F24E4A102890DAB504E3DEFF3B335C9B80E ] MSDTC C:\WINDOWS\System32\msdtc.exe
09:39:34.0787 0x2594 MSDTC - ok
09:39:34.0803 0x2594 [ 128E1D8C23F690DF1DD7AFDB214DB6ED, 9A04B77E91956B76B2FA2FE5F192C794E0C1DA708AE99B64B3B3D39902452E39 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:39:34.0803 0x2594 Msfs - ok
09:39:34.0803 0x2594 [ 5A5ABA987943317300A4E55A5C5EB8C4, 9AC863F537BBB2D776C3F240B510DEE94BD84A7675C695D1270770609E77F65B ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys
09:39:34.0818 0x2594 msgpiowin32 - ok
09:39:34.0818 0x2594 [ D727DEA75E316C80793C7098225D3F56, F6E7F01DDDED03E29BE64796873875A4CC7215B3C8152192A465EE2E76FFC8A1 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys
09:39:34.0834 0x2594 mshidkmdf - ok
09:39:34.0834 0x2594 [ E12A703CE10B068727499276340D5296, 67F513A83D896DBF014D7446D66F1A1F9F0D03ADB23B57FD1A3CCC880ED50299 ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys
09:39:34.0850 0x2594 mshidumdf - ok
09:39:34.0850 0x2594 [ 8E42D6B92CB4567467E29F58F2E31715, F1EEB6811526C079EF8C3702A535B23FA14C5A33CA2B14C9A65BAE136568B724 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys
09:39:34.0865 0x2594 msisadrv - ok
09:39:34.0865 0x2594 [ C9930B9F2ABF42C732202813951A9A26, FFCE4E4FEC9F8393C75828C1D5CC380A666D4606891789D3A6923CE6701D5D99 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll
09:39:34.0881 0x2594 MSiSCSI - ok
09:39:34.0881 0x2594 msiserver - ok
09:39:34.0881 0x2594 [ 2F3B9A23F8DEE9C3AD58CB3D966D83DD, C030A6376B392AA2D9CB8FF16196A4F71F4E7A3E32124B4B30D714D75B6583B2 ] MSKSSRV C:\WINDOWS\System32\drivers\MSKSSRV.sys
09:39:34.0897 0x2594 MSKSSRV - ok
09:39:34.0912 0x2594 [ AECFFBE104D428E8A74BCABF5B3B9912, EA94A7FA1F9BE357311E411293F4D3CC8F80ED1523BFE362DA56A3C2AC65DF58 ] MsLldp C:\WINDOWS\system32\drivers\mslldp.sys
09:39:34.0928 0x2594 MsLldp - ok
09:39:34.0928 0x2594 [ 83364A92271339D8042C9DD5FD938A84, 23B9A90411DEF1ABA0A9EBFA6CC39F7EA2BFABD578F3783AD398551816AFEC2A ] MSPCLOCK C:\WINDOWS\System32\drivers\MSPCLOCK.sys
09:39:34.0928 0x2594 MSPCLOCK - ok
09:39:34.0943 0x2594 [ AE5A4B89CDFF544B6481970BFD48A056, 6BE9ABE33305387AA61B29AB075C2C72CCFC01A7E86C573B6BE9B4A0FFA9D3EC ] MSPQM C:\WINDOWS\System32\drivers\MSPQM.sys
09:39:34.0943 0x2594 MSPQM - ok
09:39:34.0959 0x2594 [ 999433544A4136A9B879C98049821EE6, 757B1EEE1BE010E06140D3F99F755F482782940D829BD7E00877775D9263C534 ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys
09:39:34.0975 0x2594 MsRPC - ok
09:39:34.0975 0x2594 [ 4566CB65F176CE5CD8FCA487D2E3A64B, C058E431ED6D3F83A6C923648A79664A61A25F8797DA83C4AE25B491CC195F30 ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys
09:39:34.0990 0x2594 mssmbios - ok
09:39:34.0990 0x2594 [ 8A11E03B32840C0B73C14D16794F1A8A, A003C44F5234522454E285D388E506B7880CCE5FCE5622618F97C2DFFC6EA9DB ] MSTEE C:\WINDOWS\System32\drivers\MSTEE.sys
09:39:34.0990 0x2594 MSTEE - ok
09:39:35.0006 0x2594 [ 794285C4F166B8108292E63FEA3C41E3, 69BB7DDB7D6F3D21395432384FB06E114B2C343664CD62A5DE1A95FBC0F5AEDD ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys
09:39:35.0006 0x2594 MTConfig - ok
09:39:35.0022 0x2594 [ EEB9D3E90B83546864211D63C1A0A74A, E67118F7B91A192B50C9C2DC159B4276BBD8BF9CC935ABADA459E4DF4191066A ] Mup C:\WINDOWS\system32\Drivers\mup.sys
09:39:35.0022 0x2594 Mup - ok
09:39:35.0022 0x2594 [ 69CECA6726FAD321F5643B16A1FF3934, 8F43BEC668DD0A1D65D3B545B78AF4324AE36DCC3524B7CF3385FE2B19CB6B07 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys
09:39:35.0037 0x2594 mvumis - ok
09:39:35.0053 0x2594 [ B66E5DDF484DE03D61B83118E45D5E11, ECADFC9178CC957498F54F22758F4944C23CE692653DA1862061C9382AE8FD23 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys
09:39:35.0068 0x2594 NativeWifiP - ok
09:39:35.0084 0x2594 [ B281FAC1C60FE21ED3F635ECF673A981, 6641CCBD38AEF3FA5D9EDD24F01AAB6509AD6D3927371CD7938C04B3BBC92FD1 ] NaturalAuthentication C:\WINDOWS\System32\NaturalAuth.dll
09:39:35.0115 0x2594 NaturalAuthentication - ok
09:39:35.0115 0x2594 [ 6FEC83EDC4A3D1E99039CA1D96AD720D, F6DB011FBED10EAF8CCDC9EDDCB47F728B6B17A6A3CA5D6DB5DE50EEFE7DDD4D ] NcaSvc C:\WINDOWS\System32\ncasvc.dll
09:39:35.0131 0x2594 NcaSvc - ok
09:39:35.0147 0x2594 [ C3D3E2DFBD52C48EA787604F49060A5C, 0F5E3C9E63F6421398154EF942182FE67CCCCE6DE25B1EE2A30A8E6E3C17145A ] NcbService C:\WINDOWS\System32\ncbservice.dll
09:39:35.0162 0x2594 NcbService - ok
09:39:35.0178 0x2594 [ 9AB04C4C14B32D127DB6E7D3DF79FF26, DAC84CBDF605C43657CDA1B95A86DC0D55E236A75BFDA3041472C5D6222EB025 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll
09:39:35.0178 0x2594 NcdAutoSetup - ok
09:39:35.0193 0x2594 [ AB9EB3CADF4D415B598487397476A23A, EA48BC5CCD9814F6CA50485818BA150A1066D462306764C197935A926DF0565E ] ndfltr C:\WINDOWS\System32\drivers\ndfltr.sys
09:39:35.0193 0x2594 ndfltr - ok
09:39:35.0225 0x2594 [ B789E690ECC436F61F91BD7160C2115C, A8EE584CEAEF48BA549AC32C5DCB09D459555BCA74FA12C0738B27225EC2BC97 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys
09:39:35.0256 0x2594 NDIS - ok
09:39:35.0271 0x2594 [ AF73B18F3096B165A6F4417C5ED36B01, B0FA9E52D7208F756103E2E853F1D17F594C9FDD2E76304743C581613E612449 ] NdisCap C:\WINDOWS\system32\drivers\ndiscap.sys
09:39:35.0271 0x2594 NdisCap - ok
09:39:35.0287 0x2594 [ 1A9B1F5B8B131CE461A01C9424E149D7, 66E3F49308DF111B5D5DBF57F11A05E0B9492530587E37C6729C46AED17647D3 ] NdisImPlatform C:\WINDOWS\system32\drivers\NdisImPlatform.sys
09:39:35.0287 0x2594 NdisImPlatform - ok
09:39:35.0303 0x2594 [ 4C8BBD7EE829CE9BFB8E21134AC477E0, ED8E0D603AFFA4BD7C7057B7B10FEB811B89CB8C6D66EC8212AC24062D58CEDB ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:39:35.0303 0x2594 NdisTapi - ok
09:39:35.0318 0x2594 [ 76DB7B344F90A29A16CB6B7C67B87CF6, 921E6AF5B22CF3A9E153F6A6F5E3FFE64BE49959AD705F865D2734B0F8A07517 ] Ndisuio C:\WINDOWS\system32\drivers\ndisuio.sys
09:39:35.0318 0x2594 Ndisuio - ok
09:39:35.0334 0x2594 [ A76D79B71300EB3FEDD3D12D4C6F1D76, 9B20C3716DDD9EECCDDFA2C4F1A9ACA512B612A8CDFC8C22B2F867280AE51A3B ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
09:39:35.0334 0x2594 NdisVirtualBus - ok
09:39:35.0350 0x2594 [ DA9896F6ED9EAFDAC19177ADF99DD932, A89EA83567059A59058C0330951B292C1FD98A829276618703570293C73E2FFE ] NdisWan C:\WINDOWS\System32\drivers\ndiswan.sys
09:39:35.0365 0x2594 NdisWan - ok
09:39:35.0365 0x2594 [ DA9896F6ED9EAFDAC19177ADF99DD932, A89EA83567059A59058C0330951B292C1FD98A829276618703570293C73E2FFE ] ndiswanlegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:39:35.0381 0x2594 ndiswanlegacy - ok
09:39:35.0381 0x2594 [ 934E4A5CFD9CB891CD338052FA3467C6, 0D7C1709E6C818E2DA969220C888BF3A28D0952E73322EDDFF66AFEEB03A3103 ] ndproxy C:\WINDOWS\system32\DRIVERS\NDProxy.sys
09:39:35.0396 0x2594 ndproxy - ok
09:39:35.0396 0x2594 [ 0E3B0F3645D1BAE79397C66FE8AF6402, 6568FD9646FE7C7D61D280C26097583EFA2FB9F59D43340A7283BEAD3A5CC206 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys
09:39:35.0412 0x2594 Ndu - ok
09:39:35.0428 0x2594 [ A704515CF3038668E9E2CA66E31A0700, 0F5A75AC5FF8E021D15D89ACE4C4D215825D931097E1BB633F46177E36F40157 ] NetAdapterCx C:\WINDOWS\system32\drivers\NetAdapterCx.sys
09:39:35.0443 0x2594 NetAdapterCx - ok
09:39:35.0443 0x2594 [ DD09E3115DF2CDB36FED21E67149EB91, F2FAD5091F456E593FB25843026C5F2440D3605E5355F5FEFBFEF5E9E70DDED6 ] NetBIOS C:\WINDOWS\system32\drivers\netbios.sys
09:39:35.0443 0x2594 NetBIOS - ok
09:39:35.0459 0x2594 [ A6C01E478CD9ED26F6FB7ABCF9A2C773, 9524D6BC0F3360311A8C887B7987949BC1B24606BCAB92532C59AA61B364F0D7 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:39:35.0490 0x2594 NetBT - ok
09:39:35.0490 0x2594 [ 317340CD278A374BCEF6A30194557227, 593DA57CDD02F4CC3A5125CE5707C222DD922F2936D16492BA21AC6C345EC6B0 ] Netlogon C:\WINDOWS\system32\lsass.exe
09:39:35.0490 0x2594 Netlogon - ok
09:39:35.0506 0x2594 [ C3D07481FDD607F9B66B2CF1D8E26EF0, 5B20EAE39884B103F83A36E9AA55BA8932432344C7BADB11D8B827C07C7999E4 ] Netman C:\WINDOWS\System32\netman.dll
09:39:35.0521 0x2594 Netman - ok
09:39:35.0537 0x2594 [ 9D7149C9E3487CA71036D21FE153CADF, 479E887E067319537331735AB2E29169038F61A4A3E4E58C084897DC78DF9E22 ] netprofm C:\WINDOWS\System32\netprofmsvc.dll
09:39:35.0553 0x2594 netprofm - ok
09:39:35.0568 0x2594 [ C8B1AF912319FEF251288BDD27E9576D, 0A8C2CDE353C23F076F6ED8609F3074116179B3C8BF7700324250689FDB2331C ] NetSetupSvc C:\WINDOWS\System32\NetSetupSvc.dll
09:39:35.0584 0x2594 NetSetupSvc - ok
09:39:35.0584 0x2594 [ 7EC8B56348F9298BCCA7A745C7F70E2C, F677CBD94ABE25AECF08ECFBBDA063A9C032C678327A0D105CB6B3E587C44C19 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
09:39:35.0600 0x2594 NetTcpPortSharing - ok
09:39:35.0600 0x2594 [ DA8548D75434CE421BF921BAAC0916D9, 3A7E1D5EC02D6D4FD3321A1B8ADB20E99DD556E2D5FE1C98633F06EE6A023A23 ] netvsc C:\WINDOWS\System32\drivers\netvsc.sys
09:39:35.0615 0x2594 netvsc - ok
09:39:35.0631 0x2594 [ 162A571ABAF9546339EE0BB482FF6AE7, E6E590B628AA65D161D7A87C9CF360D905FCC858E73EE1C4723FE217E8A91EA2 ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
09:39:35.0662 0x2594 NgcCtnrSvc - ok
09:39:35.0678 0x2594 [ 6084A17157D6F80EAD0413152DEF6185, 2018FAC7A18DCEEA2095E76832BD38CF884C0E093B8743053B1EE1057612CA92 ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
09:39:35.0693 0x2594 NgcSvc - ok
09:39:35.0709 0x2594 [ BF69FF80C3975B1D1E9428A689A16CB1, 670016D59D2169B44E2EF4CBDE281A34C4E868D2465362B09FA2DBFA393A2804 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
09:39:35.0724 0x2594 NlaSvc - ok
09:39:35.0724 0x2594 [ 7190932DB00BE83B57C01B5EAC4D746B, A3C7C87874620E042EFCDF64332450ACEDD4FAB7F6C1B2DE97A1C6EDA2DA3055 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:39:35.0740 0x2594 Npfs - ok
09:39:35.0740 0x2594 [ 218DB396170D77BB94F69B526CC51B8F, 6AACC3C38E22061A210918771D3B087903CB7024AFBD013827864C02CD75A3F9 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
09:39:35.0756 0x2594 npsvctrig - ok
09:39:35.0756 0x2594 [ 457DAC0D0978F5391E0742ADCB4C2E28, AD53F2FC597E90AFF0795655A36192BA803AD1E737C86FD216CD39E2EC4F9C36 ] nsi C:\WINDOWS\system32\nsisvc.dll
09:39:35.0771 0x2594 nsi - ok
09:39:35.0787 0x2594 [ A4952889D7C5804F17ABB9F454A371C2, 0FCE2AD4F705805D95993337915607F74CE2AA9EC92919DDE3D2569D6B9B5C13 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
09:39:35.0787 0x2594 nsiproxy - ok
09:39:35.0834 0x2594 [ 277F1B33E2D9915169A8155BF63DA5D7, A9B476C4E06349FBDD2DEE2ED327DC65BD5D3F2B93FE33729158EA01DF90C5AF ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:39:35.0881 0x2594 Ntfs - ok
09:39:35.0881 0x2594 [ C029E5408EEE26C3B4E5BA5D29738DB8, 8463A19A690304DC757E7698FCB59902B6305A0E9C48BF2FB2DF24C1EFA4A6EC ] Null C:\WINDOWS\system32\drivers\Null.sys
09:39:35.0896 0x2594 Null - ok
09:39:35.0912 0x2594 [ CEFDB5A85FF9F1F8E4CA832D41D59BFA, 11226E167A26F30AE970419ACB8A1D9749AF08365E2F88AE053B03EE18D3E163 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
09:39:35.0912 0x2594 NvContainerLocalSystem - ok
09:39:35.0928 0x2594 [ CEFDB5A85FF9F1F8E4CA832D41D59BFA, 11226E167A26F30AE970419ACB8A1D9749AF08365E2F88AE053B03EE18D3E163 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
09:39:35.0943 0x2594 NvContainerNetworkService - ok
09:39:35.0943 0x2594 [ 189E5FCB96ABFEA84239A16062256EE4, F3233B1B14363CD4CD032F43368FD10A42C0BE665F4B13A7E253C327C2B832DB ] nvdimm C:\WINDOWS\System32\drivers\nvdimm.sys
09:39:35.0959 0x2594 nvdimm - ok
09:39:36.0224 0x2594 [ C25F3BC4B180708916D14DD23AB141D3, DB771FC2DFA908F61CA255E40CF0C2D62BFFD28A989D3F9ACB90C9857532E2CE ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nvac.inf_amd64_6d889d26421766e3\nvlddmkm.sys
09:39:36.0677 0x2594 nvlddmkm - ok
09:39:36.0709 0x2594 [ 1F50ED95984009BF3634D6BD1A16FA5B, 650A25B2419331D95B1E4C26DE253AC3500374EDEFC5DB55CD5D5884A26783F0 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
09:39:36.0709 0x2594 nvraid - ok
09:39:36.0709 0x2594 [ D6C14906B78F235461EEF96A886830D4, 5D0EDE46EB9965C494B994F7071696C91C0C01352D1B000501E7B55F54F11952 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
09:39:36.0724 0x2594 nvstor - ok
09:39:36.0724 0x2594 [ 6D0FBFF20D03AD65F361A4F992F4BD9E, 42B60EDAED47D17492271B1FAD83E67FB2AB38605AB0E937DFE6FD2658D69801 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
09:39:36.0740 0x2594 NvStreamKms - ok
09:39:36.0740 0x2594 [ 1B221319F0FCFC8B741FE3777DC412D3, E33088E8297C4A1B1FC1BCB20F067140EABEC51D03989EDB583F569937009A72 ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
09:39:36.0756 0x2594 NvTelemetryContainer - ok
09:39:36.0756 0x2594 [ DAFDDA94A3AD4191071934288B2326DA, ED4E7B3DA58C5AE8D57B3A2A15ACE73FDC59E9D7F7647595BE808570D159703F ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
09:39:36.0771 0x2594 nvvad_WaveExtensible - ok
09:39:36.0771 0x2594 [ E922DF7E9767AB997EF82BD8DA37F84A, 15303C8DD36BAAB1007A364F3301A084E487D927B92CA66BEB42488241AF808D ] nvvhci C:\WINDOWS\System32\drivers\nvvhci.sys
09:39:36.0787 0x2594 nvvhci - ok
09:39:36.0787 0x2594 [ 9DBC464AB85AA48C9760C6C2E591E2D3, C9D718F8BE838E13F7488F1E8DAA79809340235A5BA5BF206C1C3DBF0A5DDB48 ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
09:39:36.0802 0x2594 OneSyncSvc - ok
09:39:36.0818 0x2594 [ CD5ECD6470B6B235B73569A091150299, FAAE20B0F2F15ADA5B3F5F2BBBFEA000A95EC8A64B37C9364145CE04EE204352 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
09:39:36.0849 0x2594 p2pimsvc - ok
09:39:36.0849 0x2594 [ CCD10679BA0D9EF549F80C458C2AD1C4, 7B433FEE4BEA69C28A98F4BFBE5FA603DB2CE1DFCF229EBB4D9B7A0FD159FF04 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
09:39:36.0865 0x2594 p2psvc - ok
09:39:36.0880 0x2594 [ 13B175715A4391E4E5D2AB2EBC8CDBB5, 12BA91A586C5A31FBECEB2D4842E52F79EDD3E2AD4DB169C902B9A120AEC0201 ] Parport C:\WINDOWS\System32\drivers\parport.sys
09:39:36.0880 0x2594 Parport - ok
09:39:36.0896 0x2594 [ 428B9FAFB0EE6EF66EAAB7B49A96487A, 90892AC924B529B86B42D011B2B2F0556E204650C890FDACABD8051AD6EDB631 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
09:39:36.0896 0x2594 partmgr - ok
09:39:36.0912 0x2594 [ 646118D521C8131F6940E8BD808246A0, AB43BF7BD1410C344F72F4DFE87094C4B883018C518088D6A244C95235B0A7BD ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
09:39:36.0927 0x2594 PcaSvc - ok
09:39:36.0943 0x2594 [ 4B7830F9A04B1650B198CDC44F8B2F16, C6492F2EEA0C48EA6B2BEDCB8AA2EF0DAD83CCEED8490A2C7217B386EE3143AB ] pci C:\WINDOWS\system32\drivers\pci.sys
09:39:36.0959 0x2594 pci - ok
09:39:36.0959 0x2594 [ C447CDA030A3415711E4E940D2E9B399, 292888AE9D44013D8B12BB1D8803988EFF64957DE682B64FDC82E100646390DA ] pciide C:\WINDOWS\system32\drivers\pciide.sys
09:39:36.0959 0x2594 pciide - ok
09:39:36.0974 0x2594 [ 753174DF234EA8BBF732986D5F78FCE7, 6BE93B24DA2161DAE5ECBE393729BD4661F04CD0CDEBEBF6D92E9E212FA89D71 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
09:39:36.0974 0x2594 pcmcia - ok
09:39:36.0974 0x2594 [ 1D05B6DE437515281CD91A16C16529E6, 0FC581E40AF55D916CF428ECF4387C1E909C3361426F1D9F723F9497C9B025D8 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
09:39:36.0990 0x2594 pcw - ok
09:39:36.0990 0x2594 [ F5F1A092463D6E46E71CC709A65403D1, 9EEB499D54842667B4ECF1036E28926C8AD20515333373D2965C57BC2C7EAD4C ] pdc C:\WINDOWS\system32\drivers\pdc.sys
09:39:37.0005 0x2594 pdc - ok
09:39:37.0021 0x2594 [ 42B12A76D3C98AE69C97727E3BEC7D8A, C878A05A9817F62514432685FAA795737F628EF7258EC5C7846045E1CAB2DF6E ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
09:39:37.0037 0x2594 PEAUTH - ok
09:39:37.0037 0x2594 [ CD9BA1C279BE0E92E971C2B45A7F3D9B, EC6546868718771EE45D07E9E856E5F33DD4339C1115E4479D7DEF4394D141D0 ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
09:39:37.0052 0x2594 percsas2i - ok
09:39:37.0052 0x2594 [ 6D5EA79E82A48B181E18C2C39416E8C8, 4F5EF24FFFABB82B1E9D98DE3275508D458589F729C4976FDB3C2EC51549D414 ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
09:39:37.0068 0x2594 percsas3i - ok
09:39:37.0084 0x2594 [ 185100798FBD23C849DC1C00ED43D99D, 10895ADE339744BBABDFB50BE6025217C02C76B1911C2C8740A57912385B38DE ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
09:39:37.0099 0x2594 PerfHost - ok
09:39:37.0115 0x2594 [ 1206779B445417A29B33FCC7230CD28C, FCC61CF4F27F0585F267D37324CBCDE2DE20C3EB34E87256F59997F0984C8EDE ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
09:39:37.0146 0x2594 PhoneSvc - ok
09:39:37.0162 0x2594 [ 807ED476A62E79935315342BD3FAA046, FF56FC79C6B6043A10C123CF85A8DDA0B8564E03D49AD5811DDCBB99823C4836 ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
09:39:37.0177 0x2594 PimIndexMaintenanceSvc - ok
09:39:37.0209 0x2594 [ 4E614DBE28B5857F70DEBCC804629E67, B93C42FB96BBA0577CB892274905352AE4A6DE257F676D6A23CE0297F945D7E7 ] pla C:\WINDOWS\system32\pla.dll
09:39:37.0240 0x2594 pla - ok
09:39:37.0255 0x2594 [ DBD6E8A5C358AAA3B4900EFD5CF94CC8, C8261CBE358562B3F31ADA0567723E0118A8687DFC8939FABC65E61C38BFE20B ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
09:39:37.0271 0x2594 PlugPlay - ok
09:39:37.0271 0x2594 [ E8BE4041A69023B6A4D1096EE8436347, 133BAA21852D077EA600F0A09C112F6511ACB792757472891E71185E94135D5B ] pmem C:\WINDOWS\System32\drivers\pmem.sys
09:39:37.0287 0x2594 pmem - ok
09:39:37.0287 0x2594 [ 99ECEDA6B2E1FDB6892FBD5AED1E5D99, C970DDDBDB4AF8C6A1AA92D780B82920B4922304649509075CF14A2AB86C3CCF ] PNPMEM C:\WINDOWS\System32\drivers\pnpmem.sys
09:39:37.0302 0x2594 PNPMEM - ok
09:39:37.0302 0x2594 [ 75690F495CEDBEF3D5989828AEEAE832, 3257E7261DF8F39CA4988BBED3060B9E8A5988978F66A4B1409E08F65B262FED ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
09:39:37.0302 0x2594 PNRPAutoReg - ok
09:39:37.0318 0x2594 [ CD5ECD6470B6B235B73569A091150299, FAAE20B0F2F15ADA5B3F5F2BBBFEA000A95EC8A64B37C9364145CE04EE204352 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
09:39:37.0334 0x2594 PNRPsvc - ok
09:39:37.0349 0x2594 [ 9744ADAF8DD679D64A33D828FABA39E1, AE820E529697A2F308E6A24127B3D4A7F02C406DA46A6CB65243EC3F6B400950 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
09:39:37.0365 0x2594 PolicyAgent - ok
09:39:37.0365 0x2594 [ F39D3876C731BB01BFE8F574188837C8, 51CB5E89397D6A150A05BDD53CC9B90B419A040BE1828C2E7BBD6684FE371588 ] Power C:\WINDOWS\system32\umpo.dll
09:39:37.0380 0x2594 Power - ok
09:39:37.0396 0x2594 [ 1FB09FD846D5030B82EB345E9970A105, 871D38DD966EDD919B2E0C51125E1834A15A0222E2452605988BFD7E7B37C5C1 ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
09:39:37.0412 0x2594 PptpMiniport - ok
09:39:37.0458 0x2594 [ AD62FCEC1CB8ECD7C0E3DFD2FA79FDE4, 6372FC5E78A2DDB8AE6EB73BEB5C0D4056FB6BE9F231A36BAC37AE970F5EB247 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
09:39:37.0568 0x2594 PrintNotify - ok
09:39:37.0568 0x2594 [ A60202AE474E2173ED91118DD73ADAAD, 6AE315E1DD9E3B03E48B8848FCB0CDD506080F0012DE478BA99D102F91E968E6 ] PrintWorkflowUserSvc C:\WINDOWS\System32\PrintWorkflowService.dll
09:39:37.0583 0x2594 PrintWorkflowUserSvc - ok
09:39:37.0599 0x2594 [ E0E55CDA29C80A9520FCFC78D7F8A73D, 9DE15A73643D71183E568F8F4DD8776D935786BE46F15BFE2DFD607378FC9E58 ] Processor C:\WINDOWS\System32\drivers\processr.sys
09:39:37.0599 0x2594 Processor - ok
09:39:37.0615 0x2594 [ F96AA93B40D4670016DAF8C8F0D1BCB5, E8B77B271FDD6036F44EB9F7B7D270E754E69914F91E19512BF038FC3EDAC04F ] ProfSvc C:\WINDOWS\system32\profsvc.dll
09:39:37.0630 0x2594 ProfSvc - ok
09:39:37.0646 0x2594 [ E4BF8BE7B3711BCBBC95EE983C0236F4, A71C09D83034C96F7ED4DB58F7388F8A13C7FD1A3F41FE8EEC553C42B65DFFC6 ] Psched C:\WINDOWS\system32\drivers\pacer.sys
09:39:37.0646 0x2594 Psched - ok
09:39:37.0662 0x2594 [ 114C1662EBF3C52B0FF52EAB1D9787BB, 6EB1871F69EF4CB1A8FBFA9D73050E5253861D4BF8DC8999B652EAAFB04DD10D ] PushToInstall C:\WINDOWS\system32\PushToInstall.dll
09:39:37.0677 0x2594 PushToInstall - ok
09:39:37.0708 0x2594 [ 7326981E1753220BE0AC2D8F3F101C3D, 874676AA91D2E96D604C02A6A79ACFAE76E14CB47CD9818755CBF5101E4085CF ] Qcamain10x64 C:\WINDOWS\system32\DRIVERS\Qcamain10x64.sys
09:39:37.0755 0x2594 Qcamain10x64 - ok
09:39:37.0771 0x2594 [ 8AB5F41584C98047ABEF490FC1E31F7E, F8480F9D9C1A60901975C529CC0911ED592834AB1068FADD88B15E6497A59221 ] QWAVE C:\WINDOWS\system32\qwave.dll
09:39:37.0786 0x2594 QWAVE - ok
09:39:37.0786 0x2594 [ 00F72861538B6C4E925A21BAE397A49D, 6847E2332CC8573850428CC7E3A73B2DA0274977F53BDDF7DBA68D223A501CC4 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
09:39:37.0802 0x2594 QWAVEdrv - ok
09:39:37.0802 0x2594 [ 29AA10A60A734CFD91AF0EA18CD022EA, FF089D6261BE7DE6ECC2C106938500CAD35214A952F6206134B0D860F2A31B1A ] RadioShim C:\WINDOWS\System32\drivers\RadioShim.sys
09:39:37.0818 0x2594 RadioShim - ok
09:39:37.0818 0x2594 [ 0FFABEB2D06CD74DDE0BCA510EEAEEBC, 8598F39D312754C92A3776104D596F0C0312712D934B9994B2711F95FA6FE0AE ] Ramdisk C:\WINDOWS\system32\DRIVERS\ramdisk.sys
09:39:37.0833 0x2594 Ramdisk - ok
09:39:37.0833 0x2594 [ B834761352403111D0113284D8736025, 444D05D5F4CED956AFE48CA29CD59420BDB2B14336D19BE2A28612A851EACF4E ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:39:37.0833 0x2594 RasAcd - ok
09:39:37.0849 0x2594 [ FA99CE309B66586A0AA6EF9CFF7BC467, 4684EB05828C2153FE94468E7A9A75D8C81F90E700B437C5990BC9451AD39AC7 ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
09:39:37.0865 0x2594 RasAgileVpn - ok
09:39:37.0865 0x2594 [ C7CCE345D0010B3B9AC5067578436BFE, 4473E7D0492B7F0214576861A6AD90363D7F826B5E0DE15A56E93DA94BBF19E7 ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:39:37.0880 0x2594 RasAuto - ok
09:39:37.0880 0x2594 [ 775ED7E51B58CF9EB415A1DBA540DACF, A3035A8A299D35B7A24A347FB8A2DB6B5892FD2A181D90F64CCD4806EA154395 ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
09:39:37.0896 0x2594 Rasl2tp - ok
09:39:37.0911 0x2594 [ 157D149DB0061CBE44C29D3EAB43A4FF, F2263B448307F9CE33B202D366D3AF40494B579738483C0801EAD04D40C5D90C ] RasMan C:\WINDOWS\System32\rasmans.dll
09:39:37.0943 0x2594 RasMan - ok
09:39:37.0943 0x2594 [ E2433A620ABF4083157944E4692C500D, 126CA9F9D38FB4FA312A82FEA24C13D0693407384B1BCD55A0CBEFA8E52E1D8A ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:39:37.0958 0x2594 RasPppoe - ok
09:39:37.0958 0x2594 [ EE5D1D51FA74ECCE57CF2DB8F6A417D8, CC295366C60CAECA7CC32903E3A983635B55A5F5FD6E6BC4FEFE997B8154345C ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
09:39:37.0974 0x2594 RasSstp - ok
|
|
10.09.2018, 08:50
| #10 |
| | Virus? (Neue Startseite etc.) Teil 4: Code:
ATTFilter 09:39:37.0990 0x2594 [ 5F7027A2F16AFF56DA68D996FAFDAAD8, E1DC1CC818E7ED8B107386CD55EFF38B663FD3F9A2ACDD0919F5AF3591638D1F ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:39:38.0005 0x2594 rdbss - ok
09:39:38.0005 0x2594 [ 206AB796793FDBD518B82E2F308A7176, ED0DBDE7106970F217F4FB1FB184B6795A16356C879C17E0910840F64F292809 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
09:39:38.0021 0x2594 rdpbus - ok
09:39:38.0021 0x2594 [ 3DE4216324BE32FC3AF7667AE2406EE5, B2E3C47983C58B32E07E251FF729670B5D481249EEDFD3A3EFB0F8734673F1F6 ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
09:39:38.0052 0x2594 RDPDR - ok
09:39:38.0052 0x2594 [ 0600DF60EF88FD10663EC84709E5E245, 48572DC0C644E13BD1713E29E522763EB4E00337ACA64D1392960D17EAF8923A ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
09:39:38.0068 0x2594 RdpVideoMiniport - ok
09:39:38.0068 0x2594 [ 65652EFAAF4A8A59E60A2D7BE15317E8, 83A9A8506EF4769625EF0EF43B93906A6FBD9133E52C12B17A68B89DAC68D026 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
09:39:38.0083 0x2594 rdyboost - ok
09:39:38.0115 0x2594 [ 3DCB3FAFE46B9FE41C9065EBBED97724, AEB08C8C1E6AB6181A5F2B540F913B59A1256AF0E6D5355C4AC7DDBA0BF0F20B ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys
09:39:38.0146 0x2594 ReFS - ok
09:39:38.0161 0x2594 [ B76350D40A46DBA17205F8373528FD83, A599A9B1297B5D70632A9EF23E9771BA646672A1B0E323144EDE906CCA172EB7 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
09:39:38.0208 0x2594 ReFSv1 - ok
09:39:38.0224 0x2594 [ 980F60634FAF9C58FC468AF9AA609D68, 7BA03FE851F78D5DC9062ACEADF194ACB4F8F56C9D496B17D846CE1E4373B404 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:39:38.0240 0x2594 RemoteAccess - ok
09:39:38.0255 0x2594 [ 106E630F1B2A8BF2BBD4508D9B166406, FAFBE21EC61B97B4B825285EBA0F661382A95119E1740EE4FB9A1F6FB3C0F5F7 ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
09:39:38.0255 0x2594 RemoteRegistry - ok
09:39:38.0271 0x2594 [ 53BE6D9C36A9CB95A1568C24D44A8A34, DD8245F87B9D4203F56595D6ABF9F1E74EA071D4B7BB0469A293CA9E20BDA246 ] RetailDemo C:\WINDOWS\system32\RDXService.dll
09:39:38.0302 0x2594 RetailDemo - ok
09:39:38.0302 0x2594 [ 59F600BDA5B6EE591802945F1D8388D5, A30593A0EC696DE21264969664261E7ADA12C9E1161445BD41E71B7E3232604F ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys
09:39:38.0318 0x2594 RFCOMM - ok
09:39:38.0333 0x2594 [ 3D4F4CCE0364CD3F1B539D2630686F24, 620EFC53D6F5279AEF4748FAE22F7239E7855D1F5C79B85F6CB54EF51C516408 ] rhproxy C:\WINDOWS\System32\drivers\rhproxy.sys
09:39:38.0333 0x2594 rhproxy - ok
09:39:38.0349 0x2594 [ ADA13EBD9C23C51876A5B2EADF7F2E29, D08E6A907DE5DC6F51CA71CBF7886FE7D8C6FB09154B633D86CDBE9C311361A0 ] RmSvc C:\WINDOWS\System32\RMapi.dll
09:39:38.0365 0x2594 RmSvc - ok
09:39:38.0365 0x2594 [ 3CD63AE6A9A1DE4CD5831AE15221C861, CB8B5FDA48D9D4E5A9F26F67859105E2769AF82B2CA1B0B35D9BFBA611445CC0 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
09:39:38.0380 0x2594 RpcEptMapper - ok
09:39:38.0380 0x2594 [ 19EC4D05E01FE350B3494CEA122D64EB, 09FF60A8F22D66796257E33F4CFD6059D4A11A3173A7691718E9FE841E15ABA2 ] RpcLocator C:\WINDOWS\system32\locator.exe
09:39:38.0396 0x2594 RpcLocator - ok
09:39:38.0411 0x2594 [ 107661923943E9DC06ED2713AC5F7753, 2B311E9BD635F1CEB222EF798C5523447AAF63E2331377804884572D7512F299 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:39:38.0443 0x2594 RpcSs - ok
09:39:38.0458 0x2594 [ FFFB16EF6E0B8B5F7F19B425923E7D12, 27C2882AC7B27BAC5A4051C2C9326A6D289F297158DE7A3A93E8B09378DC91AA ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
09:39:38.0458 0x2594 rspndr - ok
09:39:38.0489 0x2594 [ 7E1E1E54562396926F4A6C7353C02B47, C34D048741EB2A62557FF988DF29CD0FE7F4D7B8F6FCB013483BCEE11CF05889 ] rt640x64 C:\WINDOWS\System32\drivers\rt640x64.sys
09:39:38.0521 0x2594 rt640x64 - ok
09:39:38.0537 0x2594 [ FAEE7E2ABA25F975F2A14551DF385609, F6E6E34C14975873FB195450933A1C2DCA12CEA3E7B0FE654230C66B8E454453 ] RTSPER C:\WINDOWS\system32\DRIVERS\RtsPer.sys
09:39:38.0568 0x2594 RTSPER - ok
09:39:38.0568 0x2594 [ A2939E69027B97105014434BFBFF7195, 9DC09BE94415564D0E80431223BDA1C59E3555AB5267DD3F64E71D4A18C8553A ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
09:39:38.0583 0x2594 s3cap - ok
09:39:38.0583 0x2594 [ 317340CD278A374BCEF6A30194557227, 593DA57CDD02F4CC3A5125CE5707C222DD922F2936D16492BA21AC6C345EC6B0 ] SamSs C:\WINDOWS\system32\lsass.exe
09:39:38.0599 0x2594 SamSs - ok
09:39:38.0599 0x2594 [ 04C51BBD8C9F54E5F2C5D831B03B11E3, 15AD9F224CBBCAFB117574F03C6F1C02639928A95BC4533453EBAFB20F7AE671 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
09:39:38.0614 0x2594 sbp2port - ok
09:39:38.0614 0x2594 [ D48F36EA4B4E8237B24E33B18D76EB2A, 128E754F15FDB00D218FB23431BF0FBDC65D64EEF294D72535B0C07EB5472136 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
09:39:38.0630 0x2594 SCardSvr - ok
09:39:38.0646 0x2594 [ 1B1FB3D8403E621F2B9201EF414E21D9, 5EFBEA5DC09CD5F151EF224BE2FF2C985D19301B17E5C16F5D00CB2852DAF8BF ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
09:39:38.0661 0x2594 ScDeviceEnum - ok
09:39:38.0661 0x2594 [ 0070C2DC6563C48EDA63A282748F3FCD, 12C8505DDD05994641B2B19666D7A54E12A21F6894913342A9BA5D148F193BE0 ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
09:39:38.0677 0x2594 scfilter - ok
09:39:38.0693 0x2594 [ 9D13410D7B4D76AA2EA73EC8CA0E0190, 7C46D202683F34F1C07D9D297E9A239376800DC8C84FE1585FE7FC723B6EBBA0 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:39:38.0724 0x2594 Schedule - ok
09:39:38.0739 0x2594 [ A61C34A8B6BA61E61C612CAD636C369F, 9966C5D2B4B60555BE9B9533DA62E0806767226B55EEC31030FB230DEBEC2650 ] scmbus C:\WINDOWS\system32\drivers\scmbus.sys
09:39:38.0755 0x2594 scmbus - ok
09:39:38.0755 0x2594 [ 620E4F2FDD04FFB70702676423F1C2AC, 25A19FFA966605C229F5BFBCBBBEE36695FC673C7814CF13E79EE4A9B3D8CBE2 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
09:39:38.0771 0x2594 SCPolicySvc - ok
09:39:38.0771 0x2594 [ 495273177E87B0C34D7E431E9254FA23, 61116DA77622F5A0E931F5033C1B870A22AD3438C056FD1F320F857908E4124B ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
09:39:38.0786 0x2594 sdbus - ok
09:39:38.0786 0x2594 [ 9EF09DE84CE20B787C02395394AC2A7E, 17019B74506D26707EBC342365008A9BB5AACA381FB60ABA85F34D153FB0682C ] SDFRd C:\WINDOWS\System32\drivers\SDFRd.sys
09:39:38.0802 0x2594 SDFRd - ok
09:39:38.0802 0x2594 [ 01607A2FAB0068450A06C90AF755D57E, 9615261063475045CBC99F17BD3A4919198D0F77CA9E4EC7B13826E514BC8543 ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
09:39:38.0818 0x2594 SDRSVC - ok
09:39:38.0833 0x2594 [ F80D6C03FEA2F7DEE14023B7229DA8C2, B62AFCFCDE9C1BA0A5D80BAAC3D3D95546DB2E532C04C765FF85B27D1CBD5B8D ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
09:39:38.0833 0x2594 sdstor - ok
09:39:38.0833 0x2594 [ 44B1F4F200B4D3AE8B53290101148AFC, 34F18FEDE525BB398371329CA9F93BD3D88C30E23FCA576978D94EC67513228C ] seclogon C:\WINDOWS\system32\seclogon.dll
09:39:38.0849 0x2594 seclogon - ok
09:39:38.0864 0x2594 [ 0F67F777705C6DC33FFE0FF459762957, 16BE999DCEC6C2C4F799025ACBFDE04CCE66B39160B6186A00F4BCFA2A1E41AA ] SecurityHealthService C:\WINDOWS\system32\SecurityHealthService.exe
09:39:38.0880 0x2594 SecurityHealthService - ok
09:39:38.0911 0x2594 [ 7D7ED932B6417D8687D1D972989B310B, A5DF3B6CEE97DD110FD1BC542CC5A5313B2F447E5FCC40DF6EFB9D7D49CD792C ] SEMgrSvc C:\WINDOWS\system32\SEMgrSvc.dll
09:39:38.0958 0x2594 SEMgrSvc - ok
09:39:38.0958 0x2594 [ CA614C9FBC8307AB1DC937F3393899E2, 4833CC631FA30E4D4B45BBC2CE41DE72B332B6A1FFD23B7DBFD6EDD6BC1A2ED8 ] SENS C:\WINDOWS\System32\sens.dll
09:39:38.0974 0x2594 SENS - ok
09:39:38.0989 0x2594 [ 46AEFFC68BEAF89805B95CC6F9529C2E, 7A6A38A329E82F684191561479604142BBB35121822A5CDD828819C606F2A60A ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
09:39:39.0036 0x2594 SensorDataService - ok
09:39:39.0036 0x2594 [ 2B81117E9C3E20BBAA2CB5467D000F77, AC0DF8E635908026EE43EE0444DEF61481E211737A85A473D64EC8BB214D1135 ] SensorService C:\WINDOWS\system32\SensorService.dll
09:39:39.0067 0x2594 SensorService - ok
09:39:39.0083 0x2594 [ DF94FAAEC4CDAA3886A0169E660C984B, 54BB09459D59B5DDA24D72821840FA7A71A194EA464E09DFDE021B24CB27FCAD ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
09:39:39.0099 0x2594 SensrSvc - ok
09:39:39.0099 0x2594 [ C5CF2941AA9E417B3A224601255C002E, 31E2988E13D9BB3630980E8B71AE5FB244EFB15970623C1FE76B7ACA25A4A2F2 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
09:39:39.0114 0x2594 SerCx - ok
09:39:39.0114 0x2594 [ B9C113BD9FCA4F3E23F03708A7DA07CC, 0A070BDDA956B1869D58A173B56ABA011E1F7A3C5D258343D0AEDC1EC87F4B53 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
09:39:39.0130 0x2594 SerCx2 - ok
09:39:39.0130 0x2594 [ 1845736FA47A1DFBBB642FE21095B4E0, 057E8750E8695F6B72A33BBF1C5CFCCD6BFC992E6B99A487A07F5A4921004791 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
09:39:39.0130 0x2594 Serenum - ok
09:39:39.0146 0x2594 [ F1BABF50469041797ED9928C31318832, 1A8C75F4696D4D2AA47EA33BC96069A394466953EBC3CFB2B3D6B961B8B5875A ] Serial C:\WINDOWS\System32\drivers\serial.sys
09:39:39.0146 0x2594 Serial - ok
09:39:39.0161 0x2594 [ 340116988930B07629A2D0C2B380A365, EBAAC3DF2E8DABFB477340E79FC8E3A8B74340C389D73E51D64A97A332664113 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
09:39:39.0161 0x2594 sermouse - ok
09:39:39.0177 0x2594 [ 87340BC77470B34F11A9E558B591DB08, FD91561FE5951B4F59FEE23707E1ACE31293E508EF734A5CDB0F34D332EFDDF7 ] SessionEnv C:\WINDOWS\system32\sessenv.dll
09:39:39.0192 0x2594 SessionEnv - ok
09:39:39.0208 0x2594 [ 77FF0A5BA023D8E8C82EACCD54EA5C78, A4A88A550419C347E369DDD29D4EB5C1BC4D980FBA9C655DF787A166FCA2497D ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
09:39:39.0208 0x2594 sfloppy - ok
09:39:39.0224 0x2594 [ 1941F5CA54C469E16957587FD56ED842, D356547A9702A50AEB5F7765AC44668EEA913563A422ABBD0427EC22833A5B78 ] SgrmAgent C:\WINDOWS\system32\drivers\SgrmAgent.sys
09:39:39.0224 0x2594 SgrmAgent - ok
09:39:39.0224 0x2594 [ D3170A3F3A9626597EEE1888686E3EA6, 9321991C441B095DF15D24C8AE58F87EE5A3242532E8C023D0F78B2F96FEE6B7 ] SgrmBroker C:\WINDOWS\system32\SgrmBroker.exe
09:39:39.0239 0x2594 SgrmBroker - ok
09:39:39.0255 0x2594 [ AC1D97F89F2EC7E334A406603A686973, D230059C1CB400CCA62438603356F058B40E17DE4C7BD4DADDBB981E4F5E4C9C ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:39:39.0271 0x2594 SharedAccess - ok
09:39:39.0286 0x2594 [ 0BE15FDA358837ABD88DC72AA75C75CD, 3990FA051E7C280B446C8A749FCEE04E384230CC5E286B4E7080B1737E5730DD ] SharedRealitySvc C:\WINDOWS\System32\SharedRealitySvc.dll
09:39:39.0317 0x2594 SharedRealitySvc - ok
09:39:39.0333 0x2594 [ 63B104867F70F0D81125C37989146960, 468431098DD9B91F1C58551CEB4DBE6E1C456FFE845E302571B970EF05AE03A8 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:39:39.0364 0x2594 ShellHWDetection - ok
09:39:39.0364 0x2594 [ F6D90D09D2BCFA2B5E492BFECA40EDE4, 7B427335943C1EFDE482D59F3A23149FCD45BB014643BEF620A708720383C4A8 ] shpamsvc C:\WINDOWS\system32\Windows.SharedPC.AccountManager.dll
09:39:39.0380 0x2594 shpamsvc - ok
09:39:39.0380 0x2594 [ 1443CF919C2A3207CE7724E0A31686A2, 3F0ECC565F67638A57A23BF69C399AD638DA9F81F1660CF3E027DC057E990EA4 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
09:39:39.0396 0x2594 SiSRaid2 - ok
09:39:39.0396 0x2594 [ C0B1EAD6CC127CAE4E84EBF54105B3B8, 86F5C937D9DC61F262FF00B45249162F4087B6A1CA0FC24EF7950E4E77FEF26B ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
09:39:39.0411 0x2594 SiSRaid4 - ok
09:39:39.0411 0x2594 [ B7C6144293CFAD2DEDCD022C44735DC2, 75F26A8F43EED45764D50B2CCE44C453BFBBD0FA56B6AF1F2B4B8B3665C3961E ] smphost C:\WINDOWS\System32\smphost.dll
09:39:39.0427 0x2594 smphost - ok
09:39:39.0427 0x2594 [ A3BEF2736E902B9DCA68554F4E10E08C, 5C7590D8F2D637B6D4A5F68945D8350B1C3D48EBE1B2C36658361900C9425611 ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
09:39:39.0458 0x2594 SmsRouter - ok
09:39:39.0458 0x2594 [ 577EC13EB5215325E9B9FC51FB56A974, 1D7A0245A3C474BCD4EC69704040FB50C0E086DB1711C5B7FC4D9C4A7909DAB9 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
09:39:39.0474 0x2594 SNMPTRAP - ok
09:39:39.0489 0x2594 [ 5E70A578D27BCC7E37E16055669F2836, 7713A750902E1B9BA70C9F9EE8977E7C591AAE80D155657370E63FA2CEDACCAC ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
09:39:39.0505 0x2594 spaceport - ok
09:39:39.0505 0x2594 [ FE1776E587227120DC04EAEC45473245, 9DEBD997D275065481EEEDD2310479F2021D53B64AA6D5CEEA70E9BB8C9856C7 ] SpatialGraphFilter C:\WINDOWS\system32\drivers\SpatialGraphFilter.sys
09:39:39.0520 0x2594 SpatialGraphFilter - ok
09:39:39.0520 0x2594 [ D05EB2BB52EC6B665D1631EC33241B80, 29598FC180020515254A9FAE7BE8077549C656EDB425059691007EEC0F9346F9 ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
09:39:39.0536 0x2594 SpbCx - ok
09:39:39.0552 0x2594 [ 52A4B8C04C345434C974B9A949521BAE, 5FAA7E1BECD6FA28E4BA53E9B3301328B6E8516867BD7D76202A73B8CD530BC5 ] spectrum C:\WINDOWS\system32\spectrum.exe
09:39:39.0614 0x2594 spectrum - ok
09:39:39.0630 0x2594 [ C05A19A38D7D203B738771FD1854656F, 3A832F3CBA33682EAA18ABB721BF2D5A6FE9AC853038C684C264700DEB52AA65 ] Spooler C:\WINDOWS\System32\spoolsv.exe
09:39:39.0645 0x2594 Spooler - ok
09:39:39.0724 0x2594 [ 95EBCA251177AD13238FF0DC15C3202C, A7AAB09BAA42562D3638664FEE899B47BF93AEFC94EC112E9E433A3F093909A8 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
09:39:39.0802 0x2594 sppsvc - ok
09:39:39.0817 0x2594 [ 3EB4023AC700182D84CB6761D3727394, 6993C127F4AD8B899E6A285EDB849807F522D9B0A0018E5436114F527EC8B1F1 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
09:39:39.0849 0x2594 srv2 - ok
09:39:39.0864 0x2594 [ 93DF24D0C33F2894429D4180145CBDA7, 763F05818AD5F348887C297FA14FB77B6F54B9A5C3C1D70CF2B7B0692961950C ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
09:39:39.0880 0x2594 srvnet - ok
09:39:39.0895 0x2594 [ 1AEA66706573E8CCD6038369FE37F237, A62CAFE205D5B4C9F8528EDDA4E20BA4E2D1E231F2B183FE70EFE6458B2D5460 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:39:39.0911 0x2594 SSDPSRV - ok
09:39:39.0911 0x2594 [ 5EE518DFADC18573E681BB78833E93FA, E98CCD3E2ADA265D6E3CF48CDBFE5C3067E0546F179F23B77C267F65CEB978EE ] ssh-agent C:\WINDOWS\System32\OpenSSH\ssh-agent.exe
09:39:39.0942 0x2594 ssh-agent - ok
09:39:39.0942 0x2594 [ C7DF51E24DD853E7E2D3C0BCDCE57D6C, D1BFDC89F00C5B8388EB233290B6D540C246D0267B1C192C51645004A8CD8C62 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
09:39:39.0958 0x2594 SstpSvc - ok
09:39:39.0973 0x2594 [ A72B7C730B1EF1E7764044737E802FAD, D102122D2B938A48F8A6761F1F75D37476D628C1E5D644DFB30262CE50E2D250 ] StarMoney 10 OnlineUpdate C:\Program Files (x86)\StarMoney 10 S-Edition\ouservice\StarMoneyOnlineUpdate.exe
09:39:40.0020 0x2594 StarMoney 10 OnlineUpdate - ok
09:39:40.0083 0x2594 [ B9E4174DFBDCA9979A92D17C2E67890E, 1717A6B7CADDDFCA8879B293C29617E194437E049308BCEDF3D07007C41FE39F ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
09:39:40.0177 0x2594 StateRepository - ok
09:39:40.0192 0x2594 [ DA82903F26AE12034CC5229F61098948, E7B5CA27C864BE95EC109D0692F44BE9F5F56AB6173AB1811F4E83A3EB5F26CA ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
09:39:40.0192 0x2594 stexstor - ok
09:39:40.0208 0x2594 [ EB2C25A3700309F3F67D9334CF33A36C, 9262778566EEEA810AD32CD660DEA841797BD9F874252CC5445D917FF159280B ] stisvc C:\WINDOWS\System32\wiaservc.dll
09:39:40.0239 0x2594 stisvc - ok
09:39:40.0239 0x2594 [ F2D1983C7BEF5E3AB8978A7796C59A75, 39B2005F7CCEC95D2F67AE5F69C3768FEFA04AABC0723BAD8A986A036AF0629B ] storahci C:\WINDOWS\system32\drivers\storahci.sys
09:39:40.0255 0x2594 storahci - ok
09:39:40.0255 0x2594 [ 76C9E2AA3400C22FC7091AD2F2999F95, 0015CF42CBA603448DFD85909D5047D5F9BE9153972C3832B1CF4B92A6BF0D01 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
09:39:40.0255 0x2594 storflt - ok
09:39:40.0270 0x2594 [ 701078F20919BD635EA25F691880F651, 6D56027007EF92A72C20B9B8024FDD96E03E2B8746F39D57BD1F7CAD2FC80DB2 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
09:39:40.0270 0x2594 stornvme - ok
09:39:40.0286 0x2594 [ 47CE4211A40C2C023A8138E18757F3D2, D684D2A7DECC23418A685358EA9B4F6EB3A68C690D5ED8E82F4B4639DF022775 ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
09:39:40.0286 0x2594 storqosflt - ok
09:39:40.0317 0x2594 [ DEA7BB6D3724F2FD9E61ED085E69DFA7, 5047F184894E79C31739D3C9632E43E8D2ABD70AA674DE82D6D2D0FDA137BF3F ] StorSvc C:\WINDOWS\system32\storsvc.dll
09:39:40.0348 0x2594 StorSvc - ok
09:39:40.0348 0x2594 [ 25D7B79F80F3C2CD97D797C14D470165, 5425F98A66741BB2BC7BDC8B21C3AF859A503596D983010883BF5BE4FD999D9D ] storufs C:\WINDOWS\system32\drivers\storufs.sys
09:39:40.0364 0x2594 storufs - ok
09:39:40.0364 0x2594 [ 1FC7B7BE58A29DF27F5E6F6C2F061FA3, D8CD6D1BD0ACA4B851DBC85F898CB5DA8715C5AB3D62D7B0D6BBFEADC0382A8E ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
09:39:40.0380 0x2594 storvsc - ok
09:39:40.0380 0x2594 [ 0B154B033AD7F9215DED11E0CFC80A25, 383D7BF361D75A3B78E4C8E3F616E487FA6172F860AE364B1AC73F75BE38944F ] svsvc C:\WINDOWS\system32\svsvc.dll
09:39:40.0395 0x2594 svsvc - ok
09:39:40.0411 0x2594 [ 54255DF324C621A97220EBFA832237D2, 27BAB2018BE66C67D6C2BBAA8E849E89B4150B8C81E7350DB0A1D14BEEB965D9 ] swenum C:\WINDOWS\System32\DriverStore\FileRepository\swenum.inf_amd64_ea7b19c04e7a8136\swenum.sys
09:39:40.0411 0x2594 swenum - ok
09:39:40.0426 0x2594 [ B3C113C9B784A4D296C7A7BA515F74BF, 0D20281B8AA9ED6C89E10122F3A153C2E21464686E5A3D2F907224584E6B5BCF ] swprv C:\WINDOWS\System32\swprv.dll
09:39:40.0442 0x2594 swprv - ok
09:39:40.0458 0x2594 [ A2A42A570524C975259E3B81C4D80DCA, 4B2A6295E46DD2042B3C741D9519A0376687B30711F2DA8B9B81A039E46229F9 ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
09:39:40.0473 0x2594 Synth3dVsc - ok
09:39:40.0489 0x2594 [ A8D839012996A00F3071116C529FF5D5, 9C2828C8F645F9F44B65FAC50CACD7D2699634059585DDE84D11C7F06F244060 ] SysMain C:\WINDOWS\system32\sysmain.dll
09:39:40.0520 0x2594 SysMain - ok
09:39:40.0520 0x2594 [ 607143646829B70F7C60F4CF499AD41D, 00746AA3D0ECE27BC04FCAB4955A199C5E040F850D0129865EC8F03DD202EF7A ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
09:39:40.0551 0x2594 SystemEventsBroker - ok
09:39:40.0551 0x2594 [ CE9975A9E0DFBEFECECE218D2674C1CD, 20ABA9B78FF40C89A757ED2B4AE2F8BE5F4C6C257AA00A324849D68ACA59A264 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
09:39:40.0567 0x2594 TabletInputService - ok
09:39:40.0583 0x2594 [ E38C7C4D57B1438F70A1B913870E8665, EEBE640E31F3D9126FD2F58EB93051FE4EEA591223DFAB9E918DEBE879718B95 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:39:40.0598 0x2594 TapiSrv - ok
09:39:40.0645 0x2594 [ AD15A3D2B165B5CBA09D5A634C9881C1, BAD9310C29B63626680E65E000DEB73B0F4C65F48EC60E8F791F5ADBDB6E53C6 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
09:39:40.0692 0x2594 Tcpip - ok
09:39:40.0739 0x2594 [ AD15A3D2B165B5CBA09D5A634C9881C1, BAD9310C29B63626680E65E000DEB73B0F4C65F48EC60E8F791F5ADBDB6E53C6 ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
09:39:40.0786 0x2594 Tcpip6 - ok
09:39:40.0786 0x2594 [ 085F8A5F09E64CC27309AF160EF4F9BA, DB3DFD3059836A9FB26FE924E9F2B960E454F4B20D8862266DFDA3168D610FD8 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
09:39:40.0801 0x2594 tcpipreg - ok
09:39:40.0817 0x2594 [ 16071C42E21CE3378FA449322FB9AB1D, 44CA7FD91275546492EEF0A59261E2B1C924613515D45EFD2EF0442023B2CBE5 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
09:39:40.0817 0x2594 tdx - ok
09:39:40.0817 0x2594 [ B2C4D7CB291293CAC636748E695D111E, 5E0AA8147EFDA5D21CEE8AE254F74A974B0ADAF298F569CAA73AC4E3B758438A ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
09:39:40.0833 0x2594 terminpt - ok
09:39:40.0848 0x2594 [ 10ADC3589E50B1ED8452C86E0CBE8248, BE82341A12EA83D9EFADC9AC35CF16D327F8499C99107DCDE88DD0F5DF84523C ] TermService C:\WINDOWS\System32\termsrv.dll
09:39:40.0880 0x2594 TermService - ok
09:39:40.0895 0x2594 [ 1A0A0F6A139148AFDC4622046D4B3CBD, 8FC2FB99B70A3A5B2F1D757A2F0E3085B1D242B792A35070E1DB3871A275329E ] Themes C:\WINDOWS\system32\themeservice.dll
09:39:40.0895 0x2594 Themes - ok
09:39:40.0911 0x2594 [ 811910E891A6DB4A864AE119EB71218C, 2CBB6159E2ACAE4BA73892A4F7F8A3981C159083C29F1A1D548C59FB713B9D74 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
09:39:40.0926 0x2594 TieringEngineService - ok
09:39:40.0942 0x2594 [ 8BF5E2FD72E939CF68D617E273034793, EE27D070E1C4EFE902BE173C5561F5601499F835762278CC1E5987886BD8A4D1 ] TimeBrokerSvc C:\WINDOWS\System32\TimeBrokerServer.dll
09:39:40.0958 0x2594 TimeBrokerSvc - ok
09:39:40.0989 0x2594 [ 992E10F3A16C90436DFEDD3B787DE729, 4794CE27547E8CAEC1C2E3BDA7E3EAB518FF6CCC0AA3CF55B96A65C915C6D987 ] TokenBroker C:\WINDOWS\System32\TokenBroker.dll
09:39:41.0036 0x2594 TokenBroker - ok
09:39:41.0036 0x2594 [ 900F8AD6086A4AA9EFE0C69D93377BC9, B08A36EA7B8B3D4E38B5D4FED7CB3A5E6262FEF07790052BCC831B5044463968 ] TPM C:\WINDOWS\System32\drivers\tpm.sys
09:39:41.0051 0x2594 TPM - ok
09:39:41.0051 0x2594 [ A5C0F857C38278A90E953A24E1701196, 1A646E47013946CCE41C798A494C6D266AEFC8A8D6EB65CD8848E72106687E38 ] TrkWks C:\WINDOWS\System32\trkwks.dll
09:39:41.0067 0x2594 TrkWks - ok
09:39:41.0067 0x2594 [ 4578046C54A954C917BB393B70BA0AEB, 2DFE9DE656B415CF7D81F583F33A20A74CD54C07DB8C3196AA2102431F42F74F ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
09:39:41.0098 0x2594 TrustedInstaller - ok
09:39:41.0098 0x2594 [ 0D721F40C179EC5737C15E551F22C69B, BBA04E11C3D9150C60F74D8B1A3F444BDE0C19857BB7C45D58448F641082DE1A ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys
09:39:41.0114 0x2594 TsUsbFlt - ok
09:39:41.0129 0x2594 [ DE1296871208D1F13B7AC57C4B1FA46C, D18709F65E372A47AE114ECFD6A45E6736089B4A8E719E2FB5D831D9415E995D ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
09:39:41.0129 0x2594 TsUsbGD - ok
09:39:41.0129 0x2594 [ BC938ABBF586272BD4063CA51F09149F, 06EB662948D212ACDF930C3CD01C6381A6FB152AC0F1628C86764F0973ABA1CB ] tunnel C:\WINDOWS\system32\drivers\tunnel.sys
09:39:41.0145 0x2594 tunnel - ok
09:39:41.0161 0x2594 [ E94996BB8F323AF02860196C1400AD30, DE605439FC5B59C1064DF05F63C94D7C275482C1C66BEC74FA4A83F61C2051FC ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
09:39:41.0176 0x2594 tzautoupdate - ok
09:39:41.0176 0x2594 [ BDFACE024EFF2398214797143AD76C87, EF9B6CB1F6EAE4786BBDE1E0946BECC5BD2AA493FC32A8F779A757BA57238EC9 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
09:39:41.0176 0x2594 UASPStor - ok
09:39:41.0192 0x2594 [ 00C4396DE1CD3502884BB2E2B6D6861C, 39F6BF25096ACE29CAF964DCA15078F47986F645DF49FB502A2CDF2C05C89AAB ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
09:39:41.0192 0x2594 UcmCx0101 - ok
09:39:41.0208 0x2594 [ ED9CBD1541C8AFDAA9B8255A384E2B53, D970F5E976CEBE0BCDF07B9E155EDB5B3C225812991779748CD04A9C4852DF3D ] UcmTcpciCx0101 C:\WINDOWS\system32\Drivers\UcmTcpciCx.sys
09:39:41.0223 0x2594 UcmTcpciCx0101 - ok
09:39:41.0223 0x2594 [ F58F1BC6A6972437CE18516F8ACCEB9F, 2C619D1E2E80662FA463EE48E3D41C8437A81B0F68EE67A0839A93DEDCD2E0B2 ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
09:39:41.0239 0x2594 UcmUcsi - ok
09:39:41.0239 0x2594 [ 017FB9532F54B28EFC1E37A91DB9ECC5, B753A114C644E57E3A4754836F29A6974BAADE547D3114D783070E7CDAA7CE1D ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
09:39:41.0254 0x2594 Ucx01000 - ok
09:39:41.0270 0x2594 [ 12E2B6B642360E66396502B62B048694, C9AC86BF767ED4ACE0F58BA3720369A2758BA154AFFE10CAAD5A2C4C259BA50A ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
09:39:41.0270 0x2594 UdeCx - ok
09:39:41.0286 0x2594 [ 6A442723D4D05D9F15D24C9942CDA00D, 4A60D6CF7214A3891877AC6E5A49AE49D056567162D6355C0D893510F0241DA7 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
09:39:41.0301 0x2594 udfs - ok
09:39:41.0301 0x2594 [ D30AF38971B6670C222250AC2CBB6227, 52C1C7AC29D06C701DA0E2772294CED0C1790EC7FCBD5074238B54BEB951E9D0 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
09:39:41.0317 0x2594 UEFI - ok
09:39:41.0333 0x2594 [ 588B9212DEE84F5192C09A147AA5C316, 80C70FD489D72015FCF8AFBE649F6C77F40B613882A1F031A2DAE088B9B4F67B ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
09:39:41.0333 0x2594 Ufx01000 - ok
09:39:41.0348 0x2594 [ 78B5C069C9AA1463ACC833FD7E2A3BD5, A44BAB6AB5E071537BD37A26DAF6D0D69BBFFFF686C183BFAAB04286DD3B81BB ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
09:39:41.0348 0x2594 UfxChipidea - ok
09:39:41.0348 0x2594 [ 533BF4F456A1C6E7581E8C0A4EC59300, E5AE7EB4A8E6CE410F465C48F102797806172B5881C2CF570A9851CCDFE656FD ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
09:39:41.0364 0x2594 ufxsynopsys - ok
09:39:41.0379 0x2594 [ 360FEE6F687D98EFFE46A5433FE6182E, 1A35569DC29F45F78D705BCEDE850CAF86FD27D6253977497EB3B000CAAE0B27 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
09:39:41.0379 0x2594 umbus - ok
09:39:41.0379 0x2594 [ F6F1A9D91F684AA02951B96EE8127DAE, 351139331041BC123C9FEE3A5CE4965AFC4CDCA488080338D98C5EB85D5843D4 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
09:39:41.0395 0x2594 UmPass - ok
09:39:41.0411 0x2594 [ 0D806415E1F86E7C1C192261C247EF0D, 640CB73D9ACC3B6E0F2A2A5A4587375F05A7519081BEC510B926A8A4A496C3B9 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
09:39:41.0426 0x2594 UmRdpService - ok
09:39:41.0442 0x2594 [ EAEC69961D9D8B39FEA44D56F7FB259D, 43FEB15A32B353B6F3C8E5F1072FF9507F2FA7799A414F30FEA0B8C47999D969 ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
09:39:41.0489 0x2594 UnistoreSvc - ok
09:39:41.0504 0x2594 [ 2362D5C18120FAB9CE5BD1F73EE33758, D9AB5D5BEAF95F62A204CE8A3B8B3B6C9C1E85FB5425CA2AADCBB4770EDCDF30 ] upnphost C:\WINDOWS\System32\upnphost.dll
09:39:41.0520 0x2594 upnphost - ok
09:39:41.0520 0x2594 [ 49A5E1B43C59DC0E363AD9C2D7D10BE4, B903C1C24DAF316AF9D8C1770687DE0A24ACDA4EFE47845E13BE99985609B7CE ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
09:39:41.0536 0x2594 UrsChipidea - ok
09:39:41.0536 0x2594 [ 53F1DA2D92D1D8CE4BB9D33E58D7DF01, CD3F4B92EDA042FE696C59D67BEB711C7AF0EB5979AD5F4110297C47454EBBFA ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
09:39:41.0536 0x2594 UrsCx01000 - ok
09:39:41.0551 0x2594 [ 09518A324B95BBC0B472BD5A472CB916, B3C6BF8C84268C02CC43E5C6B37648F9691B6038D275F4BEBA7B5E9ECA046181 ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
09:39:41.0551 0x2594 UrsSynopsys - ok
09:39:41.0551 0x2594 [ B7211393225AB05324C52BA47B31FEB4, 3FFB7F1C1CA5001B95026D30ECD1991747DDAFFBE3B4929CAEDFA90E169A28AE ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
09:39:41.0567 0x2594 usbccgp - ok
09:39:41.0567 0x2594 [ 250D21958EE5F45CD13FE6BE3788EE70, C0EF097EE2ED91950BD3A6881AB08698E85C4ABABC4F7520F7E92E70CA454D4E ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
09:39:41.0583 0x2594 usbcir - ok
09:39:41.0583 0x2594 [ 4269DE1EB8029D55B3BB3A8A330FCF90, 5D9081A07F91AF704D27EEE60516D6E1E0A106D1656CEF0C5C50E51C23E17F61 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
09:39:41.0598 0x2594 usbehci - ok
09:39:41.0598 0x2594 [ D67AABAE0C9EBAC9BBA2E20E0AF52EF1, FE51895BB81E5320F66C433378469092D39F325D310543AFE28A5603FA9B4F08 ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
09:39:41.0614 0x2594 usbhub - ok
09:39:41.0629 0x2594 [ E9ED46769676537049BAAEC4543C7BA6, FEE591F28648E4D0D78247BC1E8604AA3F426F4EE57ADCCB4C53F3C7A24634EB ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
09:39:41.0661 0x2594 USBHUB3 - ok
09:39:41.0661 0x2594 [ A547E7B1B3FB2228259AA85AC7E82698, AB18BBE30A2D149A0E10621DC8497A72DFB841B09F4E4B47FED21843C0F88D92 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
09:39:41.0676 0x2594 usbohci - ok
09:39:41.0676 0x2594 [ 692C0BA4109C8F78392A299369F51129, A675E11CD4794693D0B65A06E85F264199506A4C6EDBB68503163EED389B8D1F ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
09:39:41.0692 0x2594 usbprint - ok
09:39:41.0692 0x2594 [ 45A9E57185B79420EFEA5A4AED655809, 91D4BDBBAF1D06C404AC926357C3F20D780CF5C858B223930D69CFB17D81F3D3 ] usbser C:\WINDOWS\System32\drivers\usbser.sys
09:39:41.0707 0x2594 usbser - ok
09:39:41.0707 0x2594 [ CEF7527514EC49EBE0C760D784643EF0, 2A4E49C5C906339C31F0A646E53773297F4B4CEAFD94CE653C37556AE243E104 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
09:39:41.0723 0x2594 USBSTOR - ok
09:39:41.0723 0x2594 [ A4124036C4FD2B94C6157C4588EEB4E3, 595C8BFB5E63AEA2F7DF2745F7C7CE45938B091470C921E3064E766A0E12851F ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
09:39:41.0739 0x2594 usbuhci - ok
09:39:41.0739 0x2594 [ 9431F7E997A8750139517709B04D8629, 250DE2A461DD3E6D40BD7A21041BF451D954D5BC14A9BC4D819955A135FC34F4 ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
09:39:41.0754 0x2594 usbvideo - ok
09:39:41.0754 0x2594 [ 9F4CCFCD4B4C6008C940510E43D54AEC, CD6082E95EBA618490A2A97E258875440B3440E721B21E81608804B90DEF0D20 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
09:39:41.0770 0x2594 USBXHCI - ok
09:39:41.0801 0x2594 [ CE0E3BA8FC974BEE5BE20E4F43A1C583, E19DE81559FD92D1F7B0ADB4297926E6971F7FCB642E11758D361FC2A22C33BB ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
09:39:41.0848 0x2594 UserDataSvc - ok
09:39:41.0864 0x2594 [ B8D1D74FEF1F190BA4DA7E7A72D5D9CE, F467F39EE09DDC7750BF42C3FF317E0DC324897589268B4C7B63F8E176445820 ] UserManager C:\WINDOWS\System32\usermgr.dll
09:39:41.0895 0x2594 UserManager - ok
09:39:41.0926 0x2594 [ C6C17BECA29DB0D6F6FF6D45EB65FF80, EAF77B7A92E1C86E046C1570521F2389B804AADDB52C860DC2124340378FF26B ] UsoSvc C:\WINDOWS\system32\usocore.dll
09:39:41.0973 0x2594 UsoSvc - ok
09:39:41.0989 0x2594 [ 3E283D06357616CD4117CC15BDB7C4C3, ACE50702EE61C9F93855720037898F19E509D45982F9173643EDA455F54FB9E7 ] VacSvc C:\WINDOWS\System32\vac.dll
09:39:41.0989 0x2594 VacSvc - ok
09:39:42.0004 0x2594 [ 317340CD278A374BCEF6A30194557227, 593DA57CDD02F4CC3A5125CE5707C222DD922F2936D16492BA21AC6C345EC6B0 ] VaultSvc C:\WINDOWS\system32\lsass.exe
09:39:42.0004 0x2594 VaultSvc - ok
09:39:42.0004 0x2594 [ 8DCB7E5A9497C030484E5AD9E541B85C, 1170E5C190E2B6F2966076EFF11B8476CC03D924F43144C2936E11314A89ACA6 ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
09:39:42.0020 0x2594 vdrvroot - ok
09:39:42.0036 0x2594 [ 4940B49502323905B66039D0D1AB4613, 963BFD563B5A79F0AE81EB9708E85901A545545D4F25FCF37A17295EE9EDA514 ] vds C:\WINDOWS\System32\vds.exe
09:39:42.0051 0x2594 vds - ok
09:39:42.0067 0x2594 [ 5C25C1A89650C95D15F7988D71487B08, EC42E586309B46CF51EC5DC00362ABA82A503545292CACE7B3D23BB0F5E687B9 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
09:39:42.0082 0x2594 VerifierExt - ok
09:39:42.0098 0x2594 [ E8E5F722A699EF037891D735CB588F8D, 66D0C76C668DBD5BCE2B30B1936486EC21455BE293203C41B8E3B031ED012A22 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
09:39:42.0129 0x2594 vhdmp - ok
09:39:42.0129 0x2594 [ 209A34F4BE17B0A56328C86F8CCC5577, 58F8A57233FC7DD220A6EF64FD48C2A5756B21AB30644FF6919847D13FF44F16 ] vhf C:\WINDOWS\System32\drivers\vhf.sys
09:39:42.0145 0x2594 vhf - ok
09:39:42.0145 0x2594 [ AD63BC4A11A4FD436ED23208BB8D1A9C, 079718B9B2F57716FC50119E9893AABF2AAC6223764E8C2ACAE1016A53E069E5 ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
09:39:42.0176 0x2594 vmbus - ok
09:39:42.0176 0x2594 [ E2D57FB1A62F0BB7F70570806A09CE2B, DCF1699488D913C9E94E2C74CD8606BDAFF69B995B2E3B7DE7F2E9C4D2E6ECF2 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
09:39:42.0176 0x2594 VMBusHID - ok
09:39:42.0192 0x2594 [ 7D778F1E82EBA9F5A4DD392CFD3C4224, E81D71E88C472B1631758E3C5D22A214450480C2E2DA010FDE21EC1B129C5FAD ] vmgid C:\WINDOWS\System32\drivers\vmgid.sys
09:39:42.0207 0x2594 vmgid - ok
09:39:42.0207 0x2594 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicguestinterface C:\WINDOWS\System32\icsvc.dll
09:39:42.0239 0x2594 vmicguestinterface - ok
09:39:42.0239 0x2594 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicheartbeat C:\WINDOWS\System32\icsvc.dll
09:39:42.0254 0x2594 vmicheartbeat - ok
09:39:42.0270 0x2594 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmickvpexchange C:\WINDOWS\System32\icsvc.dll
09:39:42.0285 0x2594 vmickvpexchange - ok
09:39:42.0285 0x2594 [ DB7FB1DA7E1564EACBADD436191309C5, B567DFB5828D64A2A199C16538F3557696C3381B858420F23EABC757FDC341C2 ] vmicrdv C:\WINDOWS\System32\icsvcext.dll
09:39:42.0301 0x2594 vmicrdv - ok
09:39:42.0317 0x2594 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicshutdown C:\WINDOWS\System32\icsvc.dll
09:39:42.0332 0x2594 vmicshutdown - ok
09:39:42.0332 0x2594 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmictimesync C:\WINDOWS\System32\icsvc.dll
09:39:42.0348 0x2594 vmictimesync - ok
09:39:42.0364 0x2594 [ E4F5E83951810583FE8C2423772171DF, B2C7D44AA3F578C8E5B0A6FD8002BA554BAA4492FDFCFAED9D581C3ACD05D620 ] vmicvmsession C:\WINDOWS\System32\icsvc.dll
09:39:42.0379 0x2594 vmicvmsession - ok
09:39:42.0379 0x2594 [ DB7FB1DA7E1564EACBADD436191309C5, B567DFB5828D64A2A199C16538F3557696C3381B858420F23EABC757FDC341C2 ] vmicvss C:\WINDOWS\System32\icsvcext.dll
09:39:42.0395 0x2594 vmicvss - ok
09:39:42.0395 0x2594 [ 708410755721F94FC8939673893C2E2B, C8516DDE667614545DA076A9D034A7941D3E03953CB41576A979199363AB7A99 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
09:39:42.0410 0x2594 volmgr - ok
09:39:42.0426 0x2594 [ 1514506CA7462A64DC38C48108DDBB45, DEE5D7B79962D9EB6D92FCF870CA1B06FE68CE6AE25F82A5B449445C99E76D2A ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
09:39:42.0426 0x2594 volmgrx - ok
09:39:42.0442 0x2594 [ F0EE4E6028CCA58BEA9A04E7BEAB7DB4, 628D0E3D60256B914E46C26BCE8F512DFE0409C34EA603EB0A20C80EB469A4D2 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
09:39:42.0457 0x2594 volsnap - ok
09:39:42.0457 0x2594 [ 77FD1607F2C371ABD241EC7699C58884, A6FE00D76C615DC641A667EB9B6824C992ED752A31A89AE3FE43BAE5462F3EB7 ] volume C:\WINDOWS\system32\drivers\volume.sys
09:39:42.0457 0x2594 volume - ok
09:39:42.0473 0x2594 [ A8E3A6BA6A1B4D1DFEC5E8D5CFF786DF, DEAE1C20AF6BBE419FDE432288C7A45B29AADA8D9E416BC428A4C2BF428D2861 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
09:39:42.0489 0x2594 vpci - ok
09:39:42.0489 0x2594 [ ED0B3436E1DE601C6C8EB86789AC8BAB, 0CD186B09903A1D3748A3258D8B84557F3674DA04FEB8EFA24AE81FFE376265C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
09:39:42.0504 0x2594 vsmraid - ok
09:39:42.0535 0x2594 [ C7053D974A35EAB81F153FF33C883613, 9D89DC644971F93931D0E59D42ADE0A4AB49A5490709B46FCBBC309041C5432D ] VSS C:\WINDOWS\system32\vssvc.exe
09:39:42.0582 0x2594 VSS - ok
09:39:42.0582 0x2594 [ 3D706FBED35DF3B17809C6714F31F9B0, BBC337479DEB628721E651FC165EA01D986E31950189F1A81534922667101487 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
09:39:42.0598 0x2594 VSTXRAID - ok
09:39:42.0598 0x2594 [ 0B11DBB8173AD374D67893D54EBEE9F3, AB8B6FC81244729157E59D062FCC234FD7E818804D94AA6B7BF81E01B7922395 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
09:39:42.0614 0x2594 vwifibus - ok
09:39:42.0614 0x2594 [ 95540F74893235C189409C98643D7A77, 4F041301C95F55C8448C3CC5825ED9E631E770BA35BEC8498A0ABB3563584AAE ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
09:39:42.0629 0x2594 vwififlt - ok
09:39:42.0629 0x2594 [ 60A14582772A4DF0D0BE27B3F873BE6B, 93DB43D2F4B985A3FF1A152ADEDBB52567CCC29B899F96F8BA0FA9558EF2DF6D ] vwifimp C:\WINDOWS\System32\drivers\vwifimp.sys
09:39:42.0645 0x2594 vwifimp - ok
09:39:42.0660 0x2594 [ 4F904ADE8BECDFB48CBA3F44FC0676A1, 2C3D619E9AD0D0DAEC0D170795FD6E5B7FE3FC667C947660320A9BC671B55736 ] W32Time C:\WINDOWS\system32\w32time.dll
09:39:42.0676 0x2594 W32Time - ok
09:39:42.0692 0x2594 [ 1C8447EFBC2B36B1CFE889E519F46A6E, 2601185B01909682FB921400C26BE6391AC93F72E84E70E2F49B4059987E191E ] WaaSMedicSvc C:\WINDOWS\System32\WaaSMedicSvc.dll
09:39:42.0707 0x2594 WaaSMedicSvc - ok
09:39:42.0723 0x2594 [ 87A01F65BD16C9FCCDD1B65F56CB93B0, E84B46DB67F2FCB22DB7130570FE7211FC96A806AC9D1D69D187899C93785CB2 ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
09:39:42.0723 0x2594 WacomPen - ok
09:39:42.0738 0x2594 [ 25FAB8A2CFFA21FDB472AB3AE6C17A57, C97E651111643F32FD5B94BEDA31D62E6FF83CA0644FFE8BA98463EC9EA6EF9B ] WalletService C:\WINDOWS\system32\WalletService.dll
09:39:42.0754 0x2594 WalletService - ok
09:39:42.0770 0x2594 [ 85E187443F68F285DB78BD2279AE3701, FAC03A162CF07FCC6BDB4E45F5EDF16D48BE10D95F73A74E9BADA62EC7F24B53 ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:39:42.0770 0x2594 wanarp - ok
09:39:42.0785 0x2594 [ 85E187443F68F285DB78BD2279AE3701, FAC03A162CF07FCC6BDB4E45F5EDF16D48BE10D95F73A74E9BADA62EC7F24B53 ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:39:42.0785 0x2594 wanarpv6 - ok
09:39:42.0801 0x2594 [ 395447583F42FD840520EE87AE439D74, 984AE1EE8BA3B8926C6FC94BC22DE9061C90C15135EA56D0F16C1D3C4EF8DAF8 ] WarpJITSvc C:\WINDOWS\System32\Windows.WARP.JITService.dll
09:39:42.0801 0x2594 WarpJITSvc - ok
09:39:42.0832 0x2594 [ 6E235F75DF84C387388D23D697D6540B, 7113DD02243E9368EF3265CF5A7F991F9B4D69CAB70B1A446062F8DD714AFC8E ] wbengine C:\WINDOWS\system32\wbengine.exe
09:39:42.0879 0x2594 wbengine - ok
09:39:42.0895 0x2594 [ 9F5B8D32B72A7D5DA392628EAB09EC53, E3B823A23C716EECF5F86C122D8C49A7DDE8DD24D979A2D626173BF99DF5BCAF ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
09:39:42.0926 0x2594 WbioSrvc - ok
09:39:42.0942 0x2594 [ 8A304D6CDC067922448CBA1EBB9FFCA8, DE40DD3A32DFF22C477F38B5E2224D55B8CCF2499EFFE0A8E9923728295BAEC1 ] wcifs C:\WINDOWS\system32\drivers\wcifs.sys
09:39:42.0942 0x2594 wcifs - ok
09:39:42.0957 0x2594 [ C479E8EC94A23112B7EF14D5F1DF83CE, 0F40594FF9C329090A9980F31795C90850C2D2F819236ABD680D27C98FE9BC97 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
09:39:43.0004 0x2594 Wcmsvc - ok
09:39:43.0004 0x2594 [ B797B163EDCA46B5244F4E083BE7A7E7, 18D977A8015380A87EC9962273B90806145186A69F3455B3445A0FE1FE431219 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
09:39:43.0035 0x2594 wcncsvc - ok
09:39:43.0035 0x2594 [ FCA1B5465213EF4DE373A1F7E76D260E, 2548A9D11027871AD0290FDADF1E42E828E6120ECE925B12BAB3F09E25172489 ] wcnfs C:\WINDOWS\system32\drivers\wcnfs.sys
09:39:43.0051 0x2594 wcnfs - ok
09:39:43.0051 0x2594 [ E6B9D4C5BB2C8B7BA7946EC54392B14E, 3EC126095A98E76E003EE0F8CE71E44B1CD9CA6EF63FF94A84981CB763B4E2A6 ] WdBoot C:\WINDOWS\system32\drivers\wd\WdBoot.sys
09:39:43.0066 0x2594 WdBoot - ok
09:39:43.0082 0x2594 [ 152926023B401D1F5F8852929572F5C3, 61D0FDB0E3A4D16FFA6852174B3824F6294502E331BB0831BCF99F049B09C328 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
09:39:43.0113 0x2594 Wdf01000 - ok
09:39:43.0113 0x2594 [ C0100756EBE0B8CCC9517949A0809893, 7E510269FE9984CDAB42A6C053F18C9B65A3DAD431D3050F83192995E83FDF7C ] WdFilter C:\WINDOWS\system32\drivers\wd\WdFilter.sys
09:39:43.0145 0x2594 WdFilter - ok
09:39:43.0145 0x2594 [ 067D1A81B4708CA97523709FDF57B728, CA331223250B37E7D2D8B04640EDF279F7FD7336017181ECF2D3E4F82E370F97 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
09:39:43.0160 0x2594 WdiServiceHost - ok
09:39:43.0160 0x2594 [ 067D1A81B4708CA97523709FDF57B728, CA331223250B37E7D2D8B04640EDF279F7FD7336017181ECF2D3E4F82E370F97 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
09:39:43.0176 0x2594 WdiSystemHost - ok
09:39:43.0191 0x2594 [ 5DDA2C4B9AAED51E73DD6D580406F07A, 5C103E442ED4A9CC3C4E81D6C4E6BEE2FD14E4DBE57EC46DA0EF4C539D42756B ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
09:39:43.0238 0x2594 wdiwifi - ok
09:39:43.0238 0x2594 [ EAF4FB729E94561EE31BDE5BEF869C65, 73290250B565E0A3F453BC45E69FF16A1D964E372A15401A2D3E2CDEB4670B38 ] WdmCompanionFilter C:\WINDOWS\system32\drivers\WdmCompanionFilter.sys
09:39:43.0238 0x2594 WdmCompanionFilter - ok
09:39:43.0254 0x2594 [ CF07A18380EBA6609F66002B82BE2E84, 1470438EE0996C2614CB879415884DB610B219D965AED45D1DB8B2F84863B20B ] WdNisDrv C:\WINDOWS\system32\drivers\wd\WdNisDrv.sys
09:39:43.0254 0x2594 WdNisDrv - ok
09:39:43.0316 0x2594 [ C748A3C5E6222847FAA853465A4FFAFA, 81021BB03E97425B6B5780C76925D906F181DAD3F50F039BD87E8F2A0E775D4B ] WdNisSvc C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\NisSrv.exe
09:39:43.0379 0x2594 WdNisSvc - ok
09:39:43.0395 0x2594 [ BDCC510E85F7AF152E2DFF030A526EA2, 67830B42DE20EBB30DD33093F30FBA166B27D3C1F25B52DABE1BC436671A1882 ] WebClient C:\WINDOWS\System32\webclnt.dll
09:39:43.0410 0x2594 WebClient - ok
09:39:43.0410 0x2594 [ 506F0A1CCABF4428733CF854BCBB6832, 859A7E21ABB93A0AD538AAF93D32E31B961EA6012C24567B4C76A9ED8FD4AD46 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
09:39:43.0426 0x2594 Wecsvc - ok
09:39:43.0426 0x2594 [ D8D727E8311C86B2A993A9006A453BAC, AD6C93F5ED51C621841DF68A25D5932578FADB83689FB668D056F316A8AA749D ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
09:39:43.0441 0x2594 WEPHOSTSVC - ok
09:39:43.0441 0x2594 [ 30B4568D058E17500E7BF88AECEDF3F1, 612597DFAF63E55ACB80789483CBCF0E5AC5FF7607C478C61E5A86D77B169E9E ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
09:39:43.0457 0x2594 wercplsupport - ok
09:39:43.0473 0x2594 [ 5DDB06B07A60E7AEA69837931373C159, 4E0A3260058B19F414B5053701C4723C27735818212AB3D297F896BF4C39E536 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
09:39:43.0488 0x2594 WerSvc - ok
09:39:43.0504 0x2594 [ 690537B9569F770ED81CE9C19FD7358A, FF780EBCD8C0B91E99BB2451F08D7826130781136E08FCB4571C3DD0C01B616F ] WFDSConMgrSvc C:\WINDOWS\System32\wfdsconmgrsvc.dll
09:39:43.0520 0x2594 WFDSConMgrSvc - ok
09:39:43.0535 0x2594 [ EB0B154F12F78DE232F38EF61BCDEEA2, D4BC28969C94F9A3906339B42FC3638E8BFF575C28C709461D48A84821A89A21 ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
09:39:43.0535 0x2594 WFPLWFS - ok
09:39:43.0551 0x2594 [ 752F5931696914DF2EC0B27275C38458, 83415E7BE50D9548785FBF6550FA679E425B5990F303E2D74513275A5E1DC828 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
09:39:43.0566 0x2594 WiaRpc - ok
09:39:43.0566 0x2594 [ 3AE28A996C9EB8A6F2AC12BC55035126, E54227B97F42800D445241EA638EFE86A7FEC664E96A0FA38BC48DDF7DA182AD ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
09:39:43.0566 0x2594 WIMMount - ok
09:39:43.0582 0x2594 [ CEDC4E5155D9D48F2922C21EC02419B7, B147CC9A14B92E224C7755D41E0453506F983E7874573F1DF79F3EBF27BED090 ] WinDefend C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1807.18075-0\MsMpEng.exe
09:39:43.0582 0x2594 WinDefend - ok
09:39:43.0598 0x2594 [ 2BB82BABE32D41F430D290239ABC0E87, 2D519F0B86F7B87B7028E404821EDE8B7BDA18288EF32CF81C25B9C1E629FFB1 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
09:39:43.0613 0x2594 WindowsTrustedRT - ok
09:39:43.0613 0x2594 [ 5F0EDDA201630E132C2251BC9DA85023, 842B5CBA8C33616345EDC2F91B560416AAEAAB15A8CE1F36978B251CE4CBDA16 ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
09:39:43.0613 0x2594 WindowsTrustedRTProxy - ok
09:39:43.0629 0x2594 [ 939AA47A32AFE2BC17EB39FB2ED1DDC2, 7BBE6FE475FF7971EBB59682872003059AC9B27D51898BA4C094C70534E057B6 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
09:39:43.0660 0x2594 WinHttpAutoProxySvc - ok
09:39:43.0660 0x2594 [ 762D8D839C44C5A0BE0449AA84034522, E6602D0FDB501081DF165CE904DA0FEC75F3FE29C3B07B44DED6268612742F9C ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
09:39:43.0676 0x2594 WinMad - ok
09:39:43.0676 0x2594 [ 72D83880FEF0C788C5F305F330744208, 3126C2907170BBA47421D61CD6ED04DA3A3FCC66B4DBFCB4E3B56001B3BF6045 ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:39:43.0691 0x2594 Winmgmt - ok
09:39:43.0707 0x2594 [ 80086471CD4D8BF61C757E8EDFDB01DD, EDB58B6C634B3189929867DE4D47764CD35E4E0ED6BBDE98DC1372E9058EA99E ] WinNat C:\WINDOWS\system32\drivers\winnat.sys
09:39:43.0723 0x2594 WinNat - ok
09:39:43.0769 0x2594 [ C57185CC62AA13E4F5A989D904CC9A16, 993F27F710148335C4244AB74D4B1D232DEDB0E3D82E39093A1E422C72283D31 ] WinRM C:\WINDOWS\system32\WsmSvc.dll
09:39:43.0848 0x2594 WinRM - ok
09:39:43.0848 0x2594 [ 6FA3D810FE082001B16ADE19829F1E8E, 64B420FC14AB3194D4D2907EA5BE741456928E7E3CB9CBA50FEB8677A43B1971 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
09:39:43.0863 0x2594 WINUSB - ok
09:39:43.0863 0x2594 [ D2D6DB37E06608A5AF5B68D8E677B219, C7AAFEE7AAF76A4DCFF4FD2EE7232501832A57E3EE92CE20FA4A5D22F03FBE45 ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
09:39:43.0879 0x2594 WinVerbs - ok
09:39:43.0894 0x2594 [ 08BEB7851B4B8AA07325C23A657233F1, 6D7A4D194D342A5BC3EE9738765B2F5D6B75165954CA6B0D9CD4B40B262C300E ] wisvc C:\WINDOWS\system32\flightsettings.dll
09:39:43.0926 0x2594 wisvc - ok
09:39:43.0957 0x2594 [ 2490E373EC18869BA4FE435CFDE3ADEE, 5A3A9D11B426E5F13040758A1BE2284851C3E653E49340C1C75CF9EC3CE418B7 ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
09:39:44.0035 0x2594 WlanSvc - ok
09:39:44.0082 0x2594 [ 28A32E1F7A46A833DE104EF43E389F5F, 5A88C409DD9CC74ED6CEBEB5DFC8DDADFAB9D1CBDFD4EB78D7CBB6D55749C235 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
09:39:44.0129 0x2594 wlidsvc - ok
09:39:44.0160 0x2594 [ 6DF8049EC9A5AEFE99F753162D9681D4, A97FFC784617D0B45ECB7AB86AF363E6E9EC86D6E27EA90C8016DAEA27DD8183 ] wlpasvc C:\WINDOWS\System32\lpasvc.dll
09:39:44.0191 0x2594 wlpasvc - ok
09:39:44.0207 0x2594 [ EAEF2A087812BB7110C744446AB731D5, F5571D3C47564DFB6182DC43CC28124892323B60C3F389599DFEC94D227B4A86 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
09:39:44.0207 0x2594 WmiAcpi - ok
09:39:44.0222 0x2594 [ ABAC310F5E01CBA9B33AE694F99D0977, 700CDC85479CDBF765FB1A6A389DC991FC4D2A77851A81FF80BEED921250DBF6 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
09:39:44.0238 0x2594 wmiApSrv - ok
09:39:44.0238 0x2594 WMPNetworkSvc - ok
09:39:44.0238 0x2594 [ E122AD60BF4D7E4B28CCBABF33B28C1F, 1ABABE62FCC1B1A837540EE66F3EB0CE062962F05247002D61CFDE6ABB8E7E87 ] Wof C:\WINDOWS\system32\drivers\Wof.sys
09:39:44.0254 0x2594 Wof - ok
09:39:44.0285 0x2594 [ 0D3303BDBC591ECF113601D7853A1AA7, 437CF89541696E0B1A8056F4A5189642FC76D762113ED4F71458AF4D72FC3E9A ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
09:39:44.0332 0x2594 workfolderssvc - ok
09:39:44.0363 0x2594 [ 58DA02D34C964C00AF9140C07CCFF8F0, 6A02F326251A790F76E59737E20CB6C38190F671766E56CE6C7FB33D1A4588B9 ] WpcMonSvc C:\WINDOWS\System32\WpcDesktopMonSvc.dll
09:39:44.0426 0x2594 WpcMonSvc - ok
09:39:44.0426 0x2594 [ 7412ECE8BD5590881FA9780B68BD70C5, 52329B5BF78E2F5792369FE5A72CF4E3E216D4F0670507D10F3DB8383FA5E0BC ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
09:39:44.0441 0x2594 WPDBusEnum - ok
09:39:44.0441 0x2594 [ 15C1131EA0216F799C86B03EDAE0BE45, 39F50C084407BC3B498714B74DDA5D63E0539681F324A18ABBED3CD0DE5D52AA ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
09:39:44.0457 0x2594 WpdUpFltr - ok
09:39:44.0457 0x2594 [ 096969606BB5C4822AB020081EA07FC5, 522F372834B0497215F45ACBC417DA10DCE45C6D3C7099E47BBA18700C294B22 ] WpnService C:\WINDOWS\system32\WpnService.dll
09:39:44.0472 0x2594 WpnService - ok
09:39:44.0488 0x2594 [ 8B694BC50D2D2B98311283CFE5B40EE6, 734F8985CAD99E8635ACF09309D958D2B7FB05C6FF54DBE3623DC071BECE3413 ] WpnUserService C:\WINDOWS\System32\WpnUserService.dll
09:39:44.0504 0x2594 WpnUserService - ok
09:39:44.0504 0x2594 [ C1C2E769FCD3B00A59FF876FB2AD4336, B4D9065268A8B3C509E9160E6F30C20F80D14876C9F6C1057245F09CEB6B0F36 ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
09:39:44.0519 0x2594 ws2ifsl - ok
09:39:44.0519 0x2594 [ DCB549367EB94CD8AFAA28E3F77F6493, 9FD2C6E03F398E76403502CFC94EB8EBD2F90ED5E95ABA5E86C1B7F63601C43C ] wscsvc C:\WINDOWS\System32\wscsvc.dll
09:39:44.0535 0x2594 wscsvc - ok
09:39:44.0551 0x2594 WSearch - ok
09:39:44.0597 0x2594 [ B362A15BA8DA57E0FC63A72E65AD62AC, 26CB06F5A4A90C5411F3A5B8211F1E42B8FFA100DF4E32160F5885F5AF31432A ] wuauserv C:\WINDOWS\system32\wuaueng.dll
09:39:44.0675 0x2594 wuauserv - ok
09:39:44.0675 0x2594 [ 813DC18CC654CFB1875074139B0FEFD3, 87901841AFD9224BFEC06A712BE3C2371E16D3571210D4792F91034A2B926A06 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
09:39:44.0691 0x2594 WudfPf - ok
09:39:44.0707 0x2594 [ FB64BAD6DEDB27EA39B03685AC0A8EB4, CEDCB71F5FC8BAFF69948960F69A46E3A41CDF81304495AFF41088E5B4E9EB1D ] WUDFRd C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
09:39:44.0722 0x2594 WUDFRd - ok
09:39:44.0722 0x2594 [ FB64BAD6DEDB27EA39B03685AC0A8EB4, CEDCB71F5FC8BAFF69948960F69A46E3A41CDF81304495AFF41088E5B4E9EB1D ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
09:39:44.0738 0x2594 WUDFWpdFs - ok
09:39:44.0738 0x2594 [ FB64BAD6DEDB27EA39B03685AC0A8EB4, CEDCB71F5FC8BAFF69948960F69A46E3A41CDF81304495AFF41088E5B4E9EB1D ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
09:39:44.0754 0x2594 WUDFWpdMtp - ok
09:39:44.0785 0x2594 [ FAFE3B08208AA28C82BC42731B4EEBE8, 333D9CBE6B3492BC30A7B64C1F83494B38AD2CE7C832C1D68FEBD2EB8029230D ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
09:39:44.0832 0x2594 WwanSvc - ok
09:39:44.0847 0x2594 [ 51D3A1E2285E2E931A553281BBA10E81, 8B371AF5E7717C53780A5C2F68400412C4DB0F01AC6551476FF062B83A7D0AC8 ] xbgm C:\WINDOWS\system32\xbgmsvc.exe
09:39:44.0847 0x2594 xbgm - ok
09:39:44.0879 0x2594 [ DB952AD196A9548CF5235A71E5197F3F, 6C51EB14B2808665FCB999F376A97018F6B0A91EE6E63A25C044EA59A5713EE1 ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
09:39:44.0910 0x2594 XblAuthManager - ok
09:39:44.0925 0x2594 [ 8C0DD7BFFF5A81AEC26AD720057F5451, 4503D4DD540DB9977BBFF3BF7E92BE9778578B769972CF8A54AF0F1FF5C79BF5 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
09:39:44.0972 0x2594 XblGameSave - ok
09:39:44.0972 0x2594 [ 93352403D9E6B71C275996690672488F, A012D907679B29988D18C71928BDF528506DC05A2DEF01F472B7F0CC043A0340 ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
09:39:45.0004 0x2594 xboxgip - ok
09:39:45.0004 0x2594 [ C7FEC5C0377E5598BA919B29731CA45F, C153C62742B6F981905AEF7C464761E5894260F26EE164968B21D93979376378 ] XboxGipSvc C:\WINDOWS\System32\XboxGipSvc.dll
09:39:45.0019 0x2594 XboxGipSvc - ok
09:39:45.0035 0x2594 [ 3A94BD93CD2D9C34725D924230B502A5, 87AF2061D348FFFA190D0E50E6860903BED46968CF64B7765D8D80127C702E6A ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
09:39:45.0082 0x2594 XboxNetApiSvc - ok
09:39:45.0082 0x2594 [ CE1F78B5C1F14F74242008B2B3153FA2, 682D1F32DD1BBEB031D5129CE40D9C77D3C6CF4FB5979F1918B2482AF617B5BE ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
09:39:45.0097 0x2594 xinputhid - ok
09:39:45.0097 0x2594 ================ Scan global ===============================
09:39:45.0097 0x2594 [ 44D259E3B8F950D123CBE21893CEF1AB, 94FEA350B54D1581FF07D078D25A27FE3C9F815E24D299A0504FB1153E68A903 ] C:\WINDOWS\system32\basesrv.dll
09:39:45.0113 0x2594 [ 1C346B5D7E5336246604A9FCFCB092BC, BD0C56C943A8F23CA9CD1CE1FE4F9D2183F752B469A72D14B713301A867AE776 ] C:\WINDOWS\system32\winsrv.dll
09:39:45.0113 0x2594 [ FE8D1AB6D6711BE791A01C17EDEBD0D6, EECE3A16DFA0BE1BB1E7B882D33FB926C90A1DCA89805DD3514FABF7C9F05253 ] C:\WINDOWS\system32\sxssrv.dll
09:39:45.0129 0x2594 [ 2FC61B2CF84792516D543CA94139A92C, BE42E4A901D6AC8885882D2CD9372A64023794428E0AC8CC87EE3121DD5DC402 ] C:\WINDOWS\system32\services.exe
09:39:45.0129 0x2594 [ Global ] - ok
09:39:45.0144 0x2594 ================ Scan MBR ==================================
09:39:45.0426 0x2594 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
09:39:45.0519 0x2594 \Device\Harddisk1\DR1 - ok
09:39:45.0519 0x2594 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
09:39:45.0535 0x2594 \Device\Harddisk0\DR0 - ok
09:39:45.0535 0x2594 ================ Scan VBR ==================================
09:39:45.0566 0x2594 [ 69FD321DAAC38671F85BC6A854E7542B ] \Device\Harddisk1\DR1\Partition1
09:39:45.0566 0x2594 \Device\Harddisk1\DR1\Partition1 - ok
09:39:45.0566 0x2594 [ 1D2925878D727A01E0226509D28B9E49 ] \Device\Harddisk0\DR0\Partition1
09:39:45.0566 0x2594 \Device\Harddisk0\DR0\Partition1 - ok
09:39:45.0566 0x2594 [ F1D66598F0BABA2FACEE23A3D43318EA ] \Device\Harddisk0\DR0\Partition2
09:39:45.0566 0x2594 \Device\Harddisk0\DR0\Partition2 - ok
09:39:45.0566 0x2594 [ C97E8D91DAB4E1DB6D02D7007F450136 ] \Device\Harddisk0\DR0\Partition3
09:39:45.0582 0x2594 \Device\Harddisk0\DR0\Partition3 - ok
09:39:45.0582 0x2594 [ 36E332104C58EA5718D6B367698702CA ] \Device\Harddisk0\DR0\Partition4
09:39:45.0582 0x2594 \Device\Harddisk0\DR0\Partition4 - ok
09:39:45.0582 0x2594 ================ Scan generic autorun ======================
09:39:45.0582 0x2594 SecurityHealth - ok
09:39:45.0878 0x2594 [ 11C61CE638178A9F61087BB68063C0BC, 2172BDB2F631D9DCA7809B2C2E683C2C3DE3E5CBB98B48CE3F82B7F45A0DF93D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
09:39:46.0128 0x2594 RTHDVCPL - ok
09:39:46.0175 0x2594 [ 79289F199B39285339898C7019928D94, 1295AC1EC8F64A4C04EA65F01C6B9F594DD3328A0A1DE2B4FB413B8B44D34A82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
09:39:46.0191 0x2594 RtHDVBg_ASC - ok
09:39:46.0222 0x2594 [ 79289F199B39285339898C7019928D94, 1295AC1EC8F64A4C04EA65F01C6B9F594DD3328A0A1DE2B4FB413B8B44D34A82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
09:39:46.0253 0x2594 RtHDVBg_CTPreset - ok
09:39:46.0269 0x2594 [ 79289F199B39285339898C7019928D94, 1295AC1EC8F64A4C04EA65F01C6B9F594DD3328A0A1DE2B4FB413B8B44D34A82 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
09:39:46.0300 0x2594 RtHDVBg_Dolby - ok
09:39:46.0316 0x2594 [ 5B156F68A1034B48268AC33C9BADAE8C, ABC15E0987B380B3181601546B05984F11855196288F213DA998065F401832E5 ] C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
09:39:46.0331 0x2594 DAX2_APP - ok
09:39:46.0331 0x2594 WindowsDefender - ok
09:39:46.0659 0x2594 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:39:46.0941 0x2594 OneDriveSetup - ok
09:39:46.0972 0x2594 [ FC7536F076D2F1660AC072E54A86B2F1, B36F3E9976F59EC137F8618C7EDF4ED0B35AC65497CA27D69835048E6E277040 ] C:\Program Files (x86)\Windows Mail\wab.exe
09:39:47.0003 0x2594 WAB Migrate - ok
09:39:47.0316 0x2594 [ 450FDD861FD582026BDCE55FCB2162C4, 91166DBAEE6A0D97ABA5EED352D06078870A265E736ED491C666CB6A8559BEB2 ] C:\Windows\SysWOW64\OneDriveSetup.exe
09:39:47.0612 0x2594 OneDriveSetup - ok
09:39:47.0644 0x2594 [ FC7536F076D2F1660AC072E54A86B2F1, B36F3E9976F59EC137F8618C7EDF4ED0B35AC65497CA27D69835048E6E277040 ] C:\Program Files (x86)\Windows Mail\wab.exe
09:39:47.0675 0x2594 WAB Migrate - ok
09:39:47.0675 0x2594 AV detected via SS2: Windows Defender, windowsdefender:// ( ), 0x61100 ( enabled : updated )
09:39:47.0675 0x2594 Win FW state via NFP2: enabled ( trusted )
09:39:47.0785 0x2594 ============================================================
09:39:47.0785 0x2594 Scan finished
09:39:47.0785 0x2594 ============================================================
09:39:47.0785 0x26ac Detected object count: 0
09:39:47.0785 0x26ac Actual detected object count: 0
|
|
10.09.2018, 08:58
| #11 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Virus? (Neue Startseite etc.) Adware/Junkware/Toolbars entfernen Alte Versionen von adwCleaner vorher löschen, danach neu runterladen auf den Desktop! Virenscanner jetzt vor dem Einsatz dieser Tools bitte komplett deaktivieren! adwCleaner v7.x Downloade Dir bitte AdwCleaner auf deinen Desktop (Bebilderte Anleitung).
|
|
10.09.2018, 09:03
| #12 |
| | Virus? (Neue Startseite etc.) Antivir habe ich ja gelöscht - Muß ich da auch in Windows 10 noch etwas deaktivieren? (Defender oder so?) Es zeigt mir auch ein Windows Update an - Sollte ich das jetzt installieren oder im Anschluss, wenn wir hier fertig sind? |
|
10.09.2018, 09:19
| #13 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Virus? (Neue Startseite etc.) Windows Defender anlassen und einfach adwcleaner ausführen. |
|
10.09.2018, 09:30
| #14 |
| | Virus? (Neue Startseite etc.) Bereinigen: Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 7.2.3.1
# -------------------------------
# Build: 09-03-2018
# Database: 2018-09-06.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 09-10-2018
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 14
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
Deleted C:\Windows\System32\Tasks_Migrated\App Explorer
Deleted C:\Users\theod\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Qweb Symbol.lnk
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Deleted HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Deleted HKU\S-1-5-20\Software\Host App Service
Deleted HKU\S-1-5-19\Software\Host App Service
Deleted HKLM\Software\Wow6432Node\Classes\AppID\OverlayIcon.DLL
Deleted HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL
Deleted HKLM\Software\Wow6432Node\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
Deleted HKLM\Software\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
Deleted HKLM\Software\Wow6432Node\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
Deleted HKLM\Software\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
Deleted HKCU\Software\AM|Qweb Symbol
Deleted HKCU\SOFTWARE\AM|Startfenster-Replace
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Prefetch
[+] Delete Tracing Keys
[+] Reset Chromium Policies
[+] Reset IE Policies
[+] Reset Proxy Settings
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2517 octets] - [10/09/2018 10:27:47]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Suchlauf: Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 7.2.3.1
# -------------------------------
# Build: 09-03-2018
# Database: 2018-09-06.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 09-10-2018
# Duration: 00:00:11
# OS: Windows 10 Home
# Scanned: 41889
# Detected: 14
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
Adware.pokki C:\Windows\System32\Tasks_Migrated\App Explorer
PUP.Optional.Qweb C:\Users\theod\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Qweb Symbol.lnk
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
Adware.pokki HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Adware.pokki HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Uninstall\Host App Service
Adware.pokki HKU\S-1-5-20\Software\Host App Service
Adware.pokki HKU\S-1-5-19\Software\Host App Service
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\AppID\OverlayIcon.DLL
PUP.Optional.Legacy HKLM\SOFTWARE\Classes\AppID\OverlayIcon.DLL
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
PUP.Optional.Legacy HKLM\Software\Classes\TypeLib\{ADF1FA2A-6EAA-4A97-A55F-3C8B92843EF5}
PUP.Optional.Legacy HKLM\Software\Wow6432Node\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
PUP.Optional.Legacy HKLM\Software\Classes\Interface\{7BCA6879-A9F8-47DE-AE05-F5CE7EA3A474}
PUP.Optional.QwebDE HKCU\Software\AM|Qweb Symbol
PUP.Optional.StartFenster HKCU\SOFTWARE\AM|Startfenster-Replace
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
|
|
10.09.2018, 10:04
| #15 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Virus? (Neue Startseite etc.) adwcleaner bitte zwecks Kontrolle wiederholen
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Virus? (Neue Startseite etc.) |
| antivir, antivirus, askbar, avg, avira, bildschirm, browser, cpu, fehler, firefox, flash player, ftp, google, home, internet, internet explorer, malware, monitor, nvcontainer, nvcontainer.exe, problem, registry, scan, system, tcp, udp, virus, werbung, windowsapps |
dann auf 
und dann auf 
. 
Linear-Darstellung
