TDSSKiller: Code:
20:23:34.0053 0x2d5c TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
20:23:41.0989 0x2d5c ============================================================
20:23:41.0989 0x2d5c Current date / time: 2017/06/27 20:23:41.0989
20:23:41.0989 0x2d5c SystemInfo:
20:23:41.0990 0x2d5c
20:23:41.0990 0x2d5c OS Version: 10.0.14393 ServicePack: 0.0
20:23:41.0990 0x2d5c Product type: Workstation
20:23:41.0990 0x2d5c ComputerName: JAN-NIKLASPC
20:23:41.0990 0x2d5c UserName: Jan-Niklas
20:23:41.0990 0x2d5c Windows directory: C:\WINDOWS
20:23:41.0990 0x2d5c System windows directory: C:\WINDOWS
20:23:41.0990 0x2d5c Running under WOW64
20:23:41.0990 0x2d5c Processor architecture: Intel x64
20:23:41.0990 0x2d5c Number of processors: 4
20:23:41.0990 0x2d5c Page size: 0x1000
20:23:41.0990 0x2d5c Boot type: Normal boot
20:23:41.0990 0x2d5c CodeIntegrityOptions = 0x00000001
20:23:41.0990 0x2d5c ============================================================
20:23:42.0266 0x2d5c KLMD registered as C:\WINDOWS\system32\drivers\48069136.sys
20:23:42.0266 0x2d5c KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.1358, osProperties = 0x19
20:23:42.0625 0x2d5c System UUID: {F73A8BE6-6F8F-DEDE-2FE8-889B69F9C1FB}
20:23:43.0711 0x2d5c Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:23:43.0711 0x2d5c Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:23:43.0715 0x2d5c ============================================================
20:23:43.0715 0x2d5c \Device\Harddisk0\DR0:
20:23:43.0715 0x2d5c MBR partitions:
20:23:43.0715 0x2d5c \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAFFED
20:23:43.0715 0x2d5c \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xB0800, BlocksNum 0xD0801D6
20:23:43.0715 0x2d5c \Device\Harddisk1\DR1:
20:23:43.0715 0x2d5c MBR partitions:
20:23:43.0715 0x2d5c \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
20:23:43.0715 0x2d5c ============================================================
20:23:43.0716 0x2d5c C: <-> \Device\Harddisk0\DR0\Partition2
20:23:43.0760 0x2d5c E: <-> \Device\Harddisk1\DR1\Partition1
20:23:43.0760 0x2d5c ============================================================
20:23:43.0760 0x2d5c Initialize success
20:23:43.0760 0x2d5c ============================================================
20:24:11.0386 0x0698 ============================================================
20:24:11.0386 0x0698 Scan started
20:24:11.0386 0x0698 Mode: Manual; SigCheck; TDLFS;
20:24:11.0386 0x0698 ============================================================
20:24:11.0386 0x0698 KSN ping started
20:24:12.0343 0x0698 KSN ping finished: true
20:24:13.0532 0x0698 ================ Scan system memory ========================
20:24:13.0532 0x0698 System memory - ok
20:24:13.0533 0x0698 ================ Scan services =============================
20:24:13.0631 0x0698 1394ohci - ok
20:24:13.0633 0x0698 3ware - ok
20:24:13.0636 0x0698 ACPI - ok
20:24:13.0639 0x0698 AcpiDev - ok
20:24:13.0641 0x0698 acpiex - ok
20:24:13.0643 0x0698 acpipagr - ok
20:24:13.0646 0x0698 AcpiPmi - ok
20:24:13.0648 0x0698 acpitime - ok
20:24:13.0655 0x0698 [ AAA8E68E685DB1B68747E3DF68F96368, 1A5BE239B2D0C6F727303A98CFFC91070B6A05ECD6B9CD05AB326AC1910ECEBF ] acsock C:\WINDOWS\system32\DRIVERS\acsock64.sys
20:24:13.0908 0x0698 acsock - ok
20:24:14.0059 0x0698 [ 8D6BA8E7676038A27FD4ECF12CC744B0, F5D59B764DCB4A06A51939533DC7B2391FD68E3979C48939C023A60DCE0D2101 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:24:14.0101 0x0698 AdobeARMservice - ok
20:24:14.0124 0x0698 [ 7DE8B8AC559E16AEB388E7D098E7C288, 37F24B6182E3DE39BDE568304E5ED97CDE9CB45B6BF5C7A4096A09138C1D0B89 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:24:14.0243 0x0698 AdobeFlashPlayerUpdateSvc - ok
20:24:14.0247 0x0698 ADP80XX - ok
20:24:14.0252 0x0698 AFD - ok
20:24:14.0260 0x0698 ahcache - ok
20:24:14.0262 0x0698 AJRouter - ok
20:24:14.0264 0x0698 ALG - ok
20:24:14.0267 0x0698 AmdK8 - ok
20:24:14.0270 0x0698 AmdPPM - ok
20:24:14.0272 0x0698 amdsata - ok
20:24:14.0275 0x0698 amdsbs - ok
20:24:14.0278 0x0698 amdxata - ok
20:24:14.0302 0x0698 [ 2C5A37BC42D91CD54FEAFCC51D3E4924, FDF678E91D1FAF789A2E0C8315D65D4BAF7997705D66D0450EFF81631BD79F59 ] AntiVirMailService C:\Program Files (x86)\Avira\AntiVir Desktop\avmailc7.exe
20:24:14.0388 0x0698 AntiVirMailService - ok
20:24:14.0400 0x0698 [ 1CE285653AD840CBC168957C5ACA6DDE, DBF70B3AFBF5287332B27534E94F2917E3960B74ADBEED938AFD16B87065A2A9 ] AntiVirSchedulerService C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
20:24:14.0428 0x0698 AntiVirSchedulerService - ok
20:24:14.0445 0x0698 [ 1CE285653AD840CBC168957C5ACA6DDE, DBF70B3AFBF5287332B27534E94F2917E3960B74ADBEED938AFD16B87065A2A9 ] AntiVirService C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
20:24:14.0481 0x0698 AntiVirService - ok
20:24:14.0654 0x0698 [ B1DEA30E906DC1A90AA9D89FBF3FE490, B37AA43BA8B3C91A657C94D9621C40818BAAFF6C2445D66C4C225E9DB657C2A3 ] AntiVirWebService C:\Program Files (x86)\Avira\AntiVir Desktop\avwebg7.exe
20:24:14.0694 0x0698 AntiVirWebService - ok
20:24:14.0701 0x0698 AppID - ok
20:24:14.0704 0x0698 AppIDSvc - ok
20:24:14.0706 0x0698 Appinfo - ok
20:24:14.0715 0x0698 [ A5E8EB3B4244358F62DADF769DB59567, 76FE364D9A896424E4C2BCA5F66CFF31F22513851B7E4B65EDE206DF159DA67F ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:24:14.0753 0x0698 Apple Mobile Device Service - ok
20:24:14.0755 0x0698 applockerfltr - ok
20:24:14.0758 0x0698 AppReadiness - ok
20:24:14.0761 0x0698 AppXSvc - ok
20:24:14.0764 0x0698 arcsas - ok
20:24:14.0767 0x0698 AsyncMac - ok
20:24:14.0773 0x0698 atapi - ok
20:24:14.0775 0x0698 AudioEndpointBuilder - ok
20:24:14.0778 0x0698 Audiosrv - ok
20:24:14.0782 0x0698 [ 4621EA3385170B087A03F3C90E276B4A, 1513802CF844B1B7A70C820AEF732EDA432D44CD8726560D95F05EB5CA556CD7 ] avdevprot C:\WINDOWS\system32\DRIVERS\avdevprot.sys
20:24:14.0795 0x0698 avdevprot - ok
20:24:14.0811 0x0698 [ 0C6D49FFD4B70F95E24EF5311ED57A28, AB58DC263E3B5DE2E5E76DCBE8061D9B6736B411C2D572E56AD68BB326818FAF ] avgntflt C:\WINDOWS\system32\DRIVERS\avgntflt.sys
20:24:14.0824 0x0698 avgntflt - ok
20:24:14.0830 0x0698 [ DAA6BD143D3AC4274791018FFAD5543A, 2D85818C52FF768579528A81DEB8D106421D986B28837B301F53B600E382E6CF ] avipbb C:\WINDOWS\system32\DRIVERS\avipbb.sys
20:24:14.0840 0x0698 avipbb - ok
20:24:14.0852 0x0698 [ 0BEA4FBBB8AE477B437A8077C48AE5D0, 5B1ABDB03E2B0B99D16E95CDD61802C9D89A98718CF59E783DA1B77EF305C8C5 ] Avira.ServiceHost C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
20:24:14.0865 0x0698 Avira.ServiceHost - ok
20:24:14.0869 0x0698 [ 2CBA09A7983B1D39531B768BCED08C20, B40968DFE1A648CCB9260033E1EA57B5D496274A335B000354156B0DB740EDE0 ] avkmgr C:\WINDOWS\system32\DRIVERS\avkmgr.sys
20:24:14.0883 0x0698 avkmgr - ok
20:24:14.0887 0x0698 [ 8D18C6406FF8DC39028177E1E5675182, 44985DEE74F235567FB849350256F342BCE26EF66439D761FA3F6EDA22882092 ] avnetflt C:\WINDOWS\system32\DRIVERS\avnetflt.sys
20:24:14.0911 0x0698 avnetflt - ok
20:24:14.0914 0x0698 AxInstSV - ok
20:24:14.0916 0x0698 b06bdrv - ok
20:24:14.0919 0x0698 BasicDisplay - ok
20:24:14.0922 0x0698 BasicRender - ok
20:24:14.0926 0x0698 bcmfn - ok
20:24:14.0928 0x0698 bcmfn2 - ok
20:24:14.0931 0x0698 BDESVC - ok
20:24:14.0933 0x0698 Beep - ok
20:24:14.0964 0x0698 [ 34E728ACD12ACC3C8502F437DF4D6601, 025B8A3C463ADEA72FB0A3F70B148547E45091F54A2040E3B07E82EC37430D7E ] BEService C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
20:24:15.0065 0x0698 BEService - ok
20:24:15.0068 0x0698 BFE - ok
20:24:15.0070 0x0698 BITS - ok
20:24:15.0080 0x0698 [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:24:15.0144 0x0698 Bonjour Service - ok
20:24:15.0147 0x0698 bowser - ok
20:24:15.0149 0x0698 BrokerInfrastructure - ok
20:24:15.0154 0x0698 Browser - ok
20:24:15.0156 0x0698 BthAvrcpTg - ok
20:24:15.0158 0x0698 BthHFEnum - ok
20:24:15.0161 0x0698 bthhfhid - ok
20:24:15.0164 0x0698 BthHFSrv - ok
20:24:15.0166 0x0698 BTHMODEM - ok
20:24:15.0171 0x0698 bthserv - ok
20:24:15.0174 0x0698 buttonconverter - ok
20:24:15.0176 0x0698 CapImg - ok
20:24:15.0179 0x0698 cdfs - ok
20:24:15.0181 0x0698 CDPSvc - ok
20:24:15.0184 0x0698 CDPUserSvc - ok
20:24:15.0187 0x0698 cdrom - ok
20:24:15.0190 0x0698 CertPropSvc - ok
20:24:15.0192 0x0698 cht4iscsi - ok
20:24:15.0195 0x0698 cht4vbd - ok
20:24:15.0197 0x0698 circlass - ok
20:24:15.0200 0x0698 CLFS - ok
20:24:15.0202 0x0698 ClipSVC - ok
20:24:15.0204 0x0698 clreg - ok
20:24:15.0211 0x0698 CmBatt - ok
20:24:15.0213 0x0698 [ 84FC81FF9F291A0FC8D10933C1748F66, 46B6C64659A24C1D4917963FECEC2D6AED516C047762F0B4E67651CF8241A7D8 ] CM_VENDER_CMD C:\Program Files\Common Files\Logitech\G430Install\CMVC64.sys
20:24:15.0302 0x0698 CM_VENDER_CMD - ok
20:24:15.0304 0x0698 CNG - ok
20:24:15.0307 0x0698 cnghwassist - ok
20:24:15.0535 0x0698 CompositeBus - ok
20:24:15.0538 0x0698 COMSysApp - ok
20:24:15.0540 0x0698 condrv - ok
20:24:15.0542 0x0698 CoreMessagingRegistrar - ok
20:24:15.0549 0x0698 CryptSvc - ok
20:24:15.0552 0x0698 [ 44BDDEB03C84A1C993C992FFB5700357, 29080E9A434BB2A932783B0B5104BC9E3C514A0FFB387123B75F4F4045E353BC ] CVirtA C:\WINDOWS\system32\DRIVERS\CVirtA64.sys
20:24:15.0562 0x0698 CVirtA - ok
20:24:15.0566 0x0698 dam - ok
20:24:15.0572 0x0698 DcomLaunch - ok
20:24:15.0574 0x0698 DcpSvc - ok
20:24:15.0578 0x0698 defragsvc - ok
20:24:15.0580 0x0698 DeviceAssociationService - ok
20:24:15.0589 0x0698 DeviceInstall - ok
20:24:15.0597 0x0698 DevQueryBroker - ok
20:24:15.0600 0x0698 Dfsc - ok
20:24:15.0607 0x0698 [ 9593475FBC857A05D93BFF4FA7323C2B, D2A958AF5EFDC6136A6ABB7F8D5FE1F84C967E79BEA96C5BE3661A0145DEB907 ] dg_ssudbus C:\WINDOWS\system32\DRIVERS\ssudbus.sys
20:24:15.0620 0x0698 dg_ssudbus - ok
20:24:15.0633 0x0698 Dhcp - ok
20:24:15.0663 0x0698 diagnosticshub.standardcollector.service - ok
20:24:15.0666 0x0698 DiagTrack - ok
20:24:15.0669 0x0698 disk - ok
20:24:15.0680 0x0698 DmEnrollmentSvc - ok
20:24:15.0689 0x0698 dmvsc - ok
20:24:15.0697 0x0698 dmwappushservice - ok
20:24:15.0752 0x0698 Dnscache - ok
20:24:15.0759 0x0698 dot3svc - ok
20:24:15.0767 0x0698 DPS - ok
20:24:15.0841 0x0698 drmkaud - ok
20:24:15.0843 0x0698 DsmSvc - ok
20:24:15.0845 0x0698 DsSvc - ok
20:24:15.0847 0x0698 DXGKrnl - ok
20:24:15.0850 0x0698 EapHost - ok
20:24:15.0852 0x0698 ebdrv - ok
20:24:15.0855 0x0698 EFS - ok
20:24:15.0857 0x0698 EhStorClass - ok
20:24:15.0860 0x0698 EhStorTcgDrv - ok
20:24:15.0862 0x0698 embeddedmode - ok
20:24:15.0867 0x0698 EntAppSvc - ok
20:24:15.0871 0x0698 [ D315FF43E23DF424ECEC2F6C930203E4, 68940EDA34DC4945CDD0D8018D96A0DA8F99F16A930946D14E4FECEE033FCB80 ] EpsonScanSvc C:\WINDOWS\system32\EscSvc64.exe
20:24:15.0905 0x0698 EpsonScanSvc - ok
20:24:15.0910 0x0698 [ 86032A47AD0105130FE7808C903E2086, ACCCA35483B7E8F9FC72A65031E024C469DF94FCCF2C5CC37C9B3BED4F1C676E ] EPSON_PM_RPCV4_06 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S60RPB.EXE
20:24:15.0928 0x0698 EPSON_PM_RPCV4_06 - ok
20:24:15.0954 0x0698 ErrDev - ok
20:24:15.0959 0x0698 [ 5C9CA030C451CB3553DB9094C68EE6E9, 0C2E6C874F4B19CA4A603B7767077378ABBDA325D9D73DB971D5DDF52C827745 ] ESProtectionDriver C:\WINDOWS\system32\drivers\mbae64.sys
20:24:15.0992 0x0698 ESProtectionDriver - ok
20:24:15.0996 0x0698 EventSystem - ok
20:24:15.0998 0x0698 exfat - ok
20:24:16.0000 0x0698 fastfat - ok
20:24:16.0003 0x0698 Fax - ok
20:24:16.0005 0x0698 fdc - ok
20:24:16.0007 0x0698 fdPHost - ok
20:24:16.0010 0x0698 FDResPub - ok
20:24:16.0012 0x0698 fhsvc - ok
20:24:16.0015 0x0698 FileCrypt - ok
20:24:16.0017 0x0698 FileInfo - ok
20:24:16.0019 0x0698 Filetrace - ok
20:24:16.0021 0x0698 flpydisk - ok
20:24:16.0023 0x0698 FltMgr - ok
20:24:16.0026 0x0698 FontCache - ok
20:24:16.0029 0x0698 FontCache3.0.0.0 - ok
20:24:16.0031 0x0698 FrameServer - ok
20:24:16.0034 0x0698 FsDepends - ok
20:24:16.0036 0x0698 Fs_Rec - ok
20:24:16.0039 0x0698 fvevol - ok
20:24:16.0104 0x0698 [ 11DD69E94F3B3F2614E88C5657011583, C87D588C3F6517F5ED42BB2512653E0D9860D98E043161686F3A4750F6ECBD40 ] GalaxyClientService E:\Spiele\The Witcher\GalaxyClient\GalaxyClientService.exe
20:24:16.0143 0x0698 GalaxyClientService - ok
20:24:16.0310 0x0698 [ CB8157B535DA674CA6CBEBE7E3BD5268, 1028FDA5207E9CF412BB0B1F0B984FEFEE511EBF8BD353F392F7052B0021F531 ] GalaxyCommunication C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe
20:24:16.0512 0x0698 GalaxyCommunication - ok
20:24:16.0548 0x0698 [ 7907E14F9BCF3A4689C9A74A1A873CB6, 17927B93B2D6AB4271C158F039CAE2D60591D6A14458F5A5690AEC86F5D54229 ] gdrv C:\Windows\gdrv.sys
20:24:16.0563 0x0698 gdrv - ok
20:24:16.0566 0x0698 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
20:24:16.0618 0x0698 GEARAspiWDM - ok
20:24:16.0621 0x0698 gencounter - ok
20:24:16.0624 0x0698 genericusbfn - ok
20:24:16.0686 0x0698 GPIOClx0101 - ok
20:24:16.0690 0x0698 gpsvc - ok
20:24:16.0693 0x0698 GpuEnergyDrv - ok
20:24:16.0703 0x0698 [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:24:16.0771 0x0698 gupdate - ok
20:24:16.0815 0x0698 [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
20:24:16.0889 0x0698 gupdatem - ok
20:24:16.0893 0x0698 [ 7797D1580D933056023B822BB5CD0FE2, 24585AAFB43862AE4B9228B513658D906550EC8A475C67182933FB233621A85D ] hamachi C:\WINDOWS\system32\DRIVERS\Hamdrv.sys
20:24:16.0960 0x0698 hamachi - ok
20:24:16.0964 0x0698 HDAudBus - ok
20:24:16.0971 0x0698 HidBatt - ok
20:24:16.0976 0x0698 HidBth - ok
20:24:16.0978 0x0698 hidi2c - ok
20:24:16.0981 0x0698 hidinterrupt - ok
20:24:16.0983 0x0698 HidIr - ok
20:24:16.0988 0x0698 hidserv - ok
20:24:16.0990 0x0698 HidUsb - ok
20:24:16.0993 0x0698 HomeGroupListener - ok
20:24:16.0995 0x0698 HomeGroupProvider - ok
20:24:16.0998 0x0698 HpSAMD - ok
20:24:17.0000 0x0698 HTTP - ok
20:24:17.0003 0x0698 HvHost - ok
20:24:17.0006 0x0698 hvservice - ok
20:24:17.0008 0x0698 hwpolicy - ok
20:24:17.0011 0x0698 hyperkbd - ok
20:24:17.0013 0x0698 i8042prt - ok
20:24:17.0016 0x0698 iagpio - ok
20:24:17.0018 0x0698 iai2c - ok
20:24:17.0022 0x0698 iaLPSS2i_GPIO2 - ok
20:24:17.0024 0x0698 iaLPSS2i_I2C - ok
20:24:17.0027 0x0698 iaLPSSi_GPIO - ok
20:24:17.0029 0x0698 iaLPSSi_I2C - ok
20:24:17.0042 0x0698 [ 6C024B3AE192D72B216166802AF345DD, 67AEDBEF4A1C1EE1DA9B684BDEB3DB07715E12B766AA72B6684CC6C583A8DCC5 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
20:24:17.0100 0x0698 iaStorA - ok
20:24:17.0109 0x0698 iaStorAV - ok
20:24:17.0111 0x0698 [ 7F7A03D03FA18A0DB2DAC37A8D620E7F, B867A6B38EB81B6FE2501441D4CB69A2488A1F13BA558AB2B728A7507AB1BAC3 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
20:24:17.0386 0x0698 IAStorDataMgrSvc - detected UnsignedFile.Multi.Generic ( 1 )
20:24:17.0927 0x0698 Detect skipped due to KSN trusted
20:24:17.0927 0x0698 IAStorDataMgrSvc - ok
20:24:17.0929 0x0698 iaStorV - ok
20:24:17.0932 0x0698 ibbus - ok
20:24:17.0934 0x0698 icssvc - ok
20:24:17.0937 0x0698 IKEEXT - ok
20:24:17.0939 0x0698 IndirectKmd - ok
20:24:17.0996 0x0698 [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
20:24:18.0136 0x0698 IntcAzAudAddService - ok
20:24:18.0153 0x0698 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
20:24:18.0241 0x0698 Intel(R) Capability Licensing Service Interface - ok
20:24:18.0244 0x0698 intelide - ok
20:24:18.0247 0x0698 intelpep - ok
20:24:18.0249 0x0698 intelppm - ok
20:24:18.0252 0x0698 iorate - ok
20:24:18.0254 0x0698 IpFilterDriver - ok
20:24:18.0256 0x0698 iphlpsvc - ok
20:24:18.0258 0x0698 IPMIDRV - ok
20:24:18.0261 0x0698 IPNAT - ok
20:24:18.0274 0x0698 [ 6F836118C67812A6CC3F8FC9EAF0E65D, 0E8F977B304890CC9D2FE07C713B2B3F1106A79D97CECDE105AD7FC084638F1F ] iPod Service C:\Program Files\iPod\bin\iPodService.exe
20:24:18.0331 0x0698 iPod Service - ok
20:24:18.0334 0x0698 irda - ok
20:24:18.0337 0x0698 IRENUM - ok
20:24:18.0339 0x0698 irmon - ok
20:24:18.0341 0x0698 isapnp - ok
20:24:18.0344 0x0698 iScsiPrt - ok
20:24:18.0349 0x0698 [ 78ABBE558F57144047F10A0F50FE4B2F, 6BE608F7697D83FD6C7E6EA422AC5637933BDC96B1044C12DE9A419CE7D6F6CE ] jhi_service C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
20:24:18.0418 0x0698 jhi_service - ok
20:24:18.0421 0x0698 kbdclass - ok
20:24:18.0424 0x0698 kbdhid - ok
20:24:18.0426 0x0698 kdnic - ok
20:24:18.0428 0x0698 KeyIso - ok
20:24:18.0430 0x0698 KSecDD - ok
20:24:18.0433 0x0698 KSecPkg - ok
20:24:18.0435 0x0698 ksthunk - ok
20:24:18.0438 0x0698 KtmRm - ok
20:24:18.0440 0x0698 L1C - ok
20:24:18.0444 0x0698 [ 35675894CDECE9175C82A15C1481C3D8, 2DDD7B41ECECB4F3388E58A0E84AB3E2143EB408CD51E1F447F6D778B0E1EE2B ] ladfGSS C:\WINDOWS\system32\drivers\ladfGSS.sys
20:24:18.0549 0x0698 ladfGSS - ok
20:24:18.0559 0x0698 [ 305BB2AC00D46542E0A653AB63F4ABB1, E3BE57A0EBB1194656D20C11688863A7864B06223419F688D82881F9F49604B6 ] LADF_CaptureOnly C:\WINDOWS\system32\DRIVERS\ladfGSCamd64.sys
20:24:18.0616 0x0698 LADF_CaptureOnly - ok
20:24:18.0664 0x0698 [ 28CDDC7D478A6313F55077416DCBD0DE, EE4174FC9444856DF0693D1A5F16EB88352A3B012AA82D49C462980703981A7A ] LADF_RenderOnly C:\WINDOWS\system32\DRIVERS\ladfGSRamd64.sys
20:24:18.0711 0x0698 LADF_RenderOnly - ok
20:24:18.0713 0x0698 LanmanServer - ok
20:24:18.0716 0x0698 LanmanWorkstation - ok
20:24:18.0728 0x0698 [ 20EE2F2ADCF8DBD091E931593F5AC268, 5F053F8B7C8B340A0364CE37B25D68B6755C2CCDB050C02E9B4E0929DF587E0F ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
20:24:18.0751 0x0698 LBTServ - ok
20:24:18.0790 0x0698 lfsvc - ok
20:24:18.0836 0x0698 [ A6F294B38F3DFB67D6B6E1D1E60A402A, 11C51B35DB2A3510258F3B722C12326BF068360CFA1E81FF552BA0BD19DE38E8 ] LGBusEnum C:\WINDOWS\system32\drivers\LGBusEnum.sys
20:24:18.0880 0x0698 LGBusEnum - ok
20:24:18.0883 0x0698 [ 2D7F1C02B94D6F0F3E10107E5EA8E141, 93B266F38C3C3EAAB475D81597ABBD7CC07943035068BB6FD670DBBE15DE0131 ] LGCoreTemp C:\Program Files\Logitech Gaming Software\Drivers\LgCoreTemp\lgcoretemp.sys
20:24:18.0919 0x0698 LGCoreTemp - ok
20:24:19.0002 0x0698 [ 2A9F60E6531F42B31874618743037719, BFD61AD03ADEF69421ECB07820EDB79D425048EC01A65A0D1E8A4527699196DC ] LGJoyXlCore C:\WINDOWS\system32\drivers\LGJoyXlCore.sys
20:24:19.0048 0x0698 LGJoyXlCore - ok
20:24:19.0062 0x0698 [ FA59A7421049F5852C1182345A4B8C4F, 6E7DFBF8382187E01CA0AE9CB7A175B563DA6807909A8A7E67779C045F290A06 ] LGVirHid C:\WINDOWS\system32\drivers\LGVirHid.sys
20:24:19.0136 0x0698 LGVirHid - ok
20:24:19.0138 0x0698 LicenseManager - ok
20:24:19.0140 0x0698 lltdio - ok
20:24:19.0143 0x0698 lltdsvc - ok
20:24:19.0146 0x0698 lmhosts - ok
20:24:19.0153 0x0698 [ 2C24DC448DBE8DB9BE1441B824C57E79, DA2257EEC964A47D03C2BB13317FD788E51D4685E2395B303ED7B2575FEF3B19 ] LMS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
20:24:19.0170 0x0698 LMS - ok
20:24:19.0176 0x0698 [ 102E0AA783836F31D44212D2F2BCC0AB, 95E948EDD4EBC5ABB42481FD3A98BBE9797AAB1753AF88EAD213FC6526BDC58A ] LogiRegistryService C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
20:24:19.0186 0x0698 LogiRegistryService - ok
20:24:19.0190 0x0698 LSI_SAS - ok
20:24:19.0192 0x0698 LSI_SAS2i - ok
20:24:19.0194 0x0698 LSI_SAS3i - ok
20:24:19.0197 0x0698 LSI_SSS - ok
20:24:19.0199 0x0698 LSM - ok
20:24:19.0202 0x0698 luafv - ok
20:24:19.0204 0x0698 MapsBroker - ok
20:24:19.0312 0x0698 [ F53C8F96F750CC8ECAE9A2AEC4881EB9, 7978C2785185B436BEA2FA77FFC0258A00C1CA4E8F68889FCEB3F5323531ACE4 ] MATLAB License Server E:\Matlab\etc\win64\lmgrd.exe
20:24:19.0366 0x0698 MATLAB License Server - ok
20:24:19.0471 0x0698 [ E095FFE590241C1765D093E91E325147, 1D1B05A441249F41BFF410DA8A9A32A60D604B002B98E945B9909E5C7E8F0C79 ] MBAMChameleon C:\WINDOWS\system32\drivers\MBAMChameleon.sys
20:24:19.0660 0x0698 MBAMChameleon - ok
20:24:19.0664 0x0698 [ C51267EE2726707D38C489C06DDF01ED, BFA9BFB8D2E1581CBF4833DC3D86A88C94B64B3B17D440894AEB111E749E4497 ] MBAMFarflt C:\WINDOWS\system32\drivers\farflt.sys
20:24:19.0687 0x0698 MBAMFarflt - ok
20:24:19.0713 0x0698 [ 68B3141EEFEA3AF9C244945B52247241, D1FADE0D02E3F3518057BC730018B749813B4A4930796D26908080B43675E3DA ] MBAMProtection C:\WINDOWS\system32\drivers\mbam.sys
20:24:19.0731 0x0698 MBAMProtection - ok
20:24:19.0891 0x0698 [ D76E56108E6482905D3FAEA0649919E4, E10285889570A01E544B027F4A17BA7242E5E3EF93D20A19B05091DB237C6DD1 ] MBAMService C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
20:24:20.0010 0x0698 MBAMService - ok
20:24:20.0095 0x0698 [ 913F4230E29E312D1B4B02E2BAC67C87, 5C772DA7F2454CAFEA981E18ABCE717FE0D065EE996FB758817F3EF775B0AC14 ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
20:24:20.0110 0x0698 MBAMSwissArmy - ok
20:24:20.0114 0x0698 [ 80F6C490D2966D0135DF5999E6DE1A0B, B866CC2806A25108281B6530FC9D8D72CB30E3B2B505D18E0401BA63275D3B50 ] MBAMWebProtection C:\WINDOWS\system32\drivers\mwac.sys
20:24:20.0128 0x0698 MBAMWebProtection - ok
20:24:20.0140 0x0698 megasas - ok
20:24:20.0143 0x0698 megasas2i - ok
20:24:20.0152 0x0698 megasr - ok
20:24:20.0155 0x0698 [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys
20:24:20.0173 0x0698 MEIx64 - ok
20:24:20.0180 0x0698 MessagingService - ok
20:24:20.0452 0x0698 Microsoft SharePoint Workspace Audit Service - ok
20:24:20.0454 0x0698 mlx4_bus - ok
20:24:20.0456 0x0698 MMCSS - ok
20:24:20.0459 0x0698 Modem - ok
20:24:20.0461 0x0698 monitor - ok
20:24:20.0463 0x0698 mouclass - ok
20:24:20.0466 0x0698 mouhid - ok
20:24:20.0468 0x0698 mountmgr - ok
20:24:20.0475 0x0698 [ 210E9F5AA212E9E669A1B4131ED01AFA, FB2FF1C32497697F4ABE9F6A4754F5C4B1324318546E7274C0F05022C637AE33 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:24:20.0498 0x0698 MozillaMaintenance - ok
20:24:20.0501 0x0698 mpsdrv - ok
20:24:20.0648 0x0698 MpsSvc - ok
20:24:20.0655 0x0698 MRxDAV - ok
20:24:20.0660 0x0698 mrxsmb - ok
20:24:20.0663 0x0698 mrxsmb10 - ok
20:24:20.0696 0x0698 mrxsmb20 - ok
20:24:20.0740 0x0698 MsBridge - ok
20:24:20.0768 0x0698 MSDTC - ok
20:24:20.0772 0x0698 Msfs - ok
20:24:20.0775 0x0698 msgpiowin32 - ok
20:24:20.0782 0x0698 mshidkmdf - ok
20:24:20.0784 0x0698 mshidumdf - ok
20:24:20.0788 0x0698 msisadrv - ok
20:24:20.0791 0x0698 MSiSCSI - ok
20:24:20.0794 0x0698 msiserver - ok
20:24:20.0796 0x0698 MSKSSRV - ok
20:24:20.0798 0x0698 MsLldp - ok
20:24:20.0801 0x0698 MSPCLOCK - ok
20:24:20.0803 0x0698 MSPQM - ok
20:24:20.0805 0x0698 MsRPC - ok
20:24:20.0809 0x0698 mssmbios - ok
20:24:20.0893 0x0698 MSTEE - ok
20:24:20.0897 0x0698 MTConfig - ok
20:24:20.0899 0x0698 Mup - ok
20:24:20.0919 0x0698 mvumis - ok
20:24:20.0923 0x0698 NativeWifiP - ok
20:24:20.0927 0x0698 NcaSvc - ok
20:24:20.0934 0x0698 NcbService - ok
20:24:20.0936 0x0698 NcdAutoSetup - ok
20:24:20.0938 0x0698 ndfltr - ok
20:24:20.0943 0x0698 NDIS - ok
20:24:20.0954 0x0698 NdisCap - ok
20:24:20.0978 0x0698 NdisImPlatform - ok
20:24:20.0980 0x0698 NdisTapi - ok
20:24:20.0982 0x0698 Ndisuio - ok
20:24:20.0989 0x0698 NdisVirtualBus - ok
20:24:20.0991 0x0698 NdisWan - ok
20:24:20.0993 0x0698 ndiswanlegacy - ok
20:24:21.0002 0x0698 ndproxy - ok
20:24:21.0004 0x0698 Ndu - ok
20:24:21.0010 0x0698 [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\WINDOWS\system32\DRIVERS\netaapl64.sys
20:24:21.0100 0x0698 Netaapl - ok
20:24:21.0102 0x0698 NetAdapterCx - ok
20:24:21.0105 0x0698 NetBIOS - ok
20:24:21.0108 0x0698 NetBT - ok
20:24:21.0111 0x0698 Netlogon - ok
20:24:21.0138 0x0698 Netman - ok
20:24:21.0143 0x0698 netprofm - ok
20:24:21.0146 0x0698 NetSetupSvc - ok
20:24:21.0154 0x0698 NetTcpPortSharing - ok
20:24:21.0172 0x0698 NgcCtnrSvc - ok
20:24:21.0175 0x0698 NgcSvc - ok
20:24:21.0178 0x0698 NlaSvc - ok
20:24:21.0180 0x0698 Npfs - ok
20:24:21.0182 0x0698 npggsvc - ok
20:24:21.0185 0x0698 npsvctrig - ok
20:24:21.0188 0x0698 nsi - ok
20:24:21.0190 0x0698 nsiproxy - ok
20:24:21.0194 0x0698 NTFS - ok
20:24:21.0196 0x0698 Null - ok
20:24:21.0206 0x0698 [ C93013BBB38330C73285547174F8FEE1, 2CCC8B1A868098EBEACF4D4E178002D382E9BB28CC0D57D76E0813C56DB1BC98 ] NvContainerLocalSystem C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
20:24:21.0242 0x0698 NvContainerLocalSystem - ok
20:24:21.0259 0x0698 [ C93013BBB38330C73285547174F8FEE1, 2CCC8B1A868098EBEACF4D4E178002D382E9BB28CC0D57D76E0813C56DB1BC98 ] NvContainerNetworkService C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
20:24:21.0287 0x0698 NvContainerNetworkService - ok
20:24:21.0377 0x0698 [ 302A57479E9A2A95CE723521A7ED1BD0, CEF8E26DBCA2E840ED32378193127FDC321828D28941AE42C5AA800613A85E91 ] NVHDA C:\WINDOWS\system32\drivers\nvhda64v.sys
20:24:21.0416 0x0698 NVHDA - ok
20:24:22.0511 0x0698 [ E0854DA823FBC14F750BFD46E690F60F, BAACD13006B7EA377BC57CA502D342097E327486957F905DD720C870C1B4C67C ] nvlddmkm C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_b67dc924fff8de6d\nvlddmkm.sys
20:24:22.0768 0x0698 nvlddmkm - ok
20:24:22.0799 0x0698 nvraid - ok
20:24:22.0802 0x0698 nvstor - ok
20:24:22.0805 0x0698 [ 4F75E1292E95EBFAD3A0CABB0972F7B8, E4E3AC25AFA4949765F75777769310CB6200A5F537F56205960B40775282FEC0 ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
20:24:22.0828 0x0698 NvStreamKms - ok
20:24:22.0841 0x0698 [ 4D205C0A3C0118D41361F945F337977E, DBEF90119B68EEC7FECBF73D64A0AD63401237048B104B4570E7CEC5D2F38E3A ] NvTelemetryContainer C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
20:24:22.0865 0x0698 NvTelemetryContainer - ok
20:24:22.0956 0x0698 [ 54ABC4EA39DDE92977DCE644D325213A, D754E5D0418B3C48AD9988D1A2705975C78C8B87990E211651C388A76FB17E51 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
20:24:22.0965 0x0698 nvvad_WaveExtensible - ok
20:24:22.0980 0x0698 [ B6704EE5A17116F0723014F0C3DA1954, 2319837173981DCC818E433AAE87A2BA7C90EAE43C6C218C18AD8353C4162114 ] nvvhci C:\WINDOWS\System32\drivers\nvvhci.sys
20:24:22.0989 0x0698 nvvhci - ok
20:24:23.0032 0x0698 OneSyncSvc - ok
20:24:23.0110 0x0698 [ 42467D28DCFAEDBA6DC0EE30017DDECE, C77430D4AE994E526B293957303AB725E09C3D3712562E3FA1B0EA68CFEE6C34 ] Origin Client Service E:\Spiele\Origin\OriginClientService.exe
20:24:23.0165 0x0698 Origin Client Service - ok
20:24:23.0234 0x0698 [ CD8AC370189D6B4A899D9E9C011D58AC, 158757A34AC35BCFDA6ECE5D2C8E695A26DA864E15D855938FE6B6EB7416CEE9 ] Origin Web Helper Service E:\Spiele\Origin\OriginWebHelperService.exe
20:24:23.0298 0x0698 Origin Web Helper Service - ok
20:24:23.0429 0x0698 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:24:23.0455 0x0698 ose - ok
20:24:23.0621 0x0698 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:24:23.0711 0x0698 osppsvc - ok
20:24:23.0825 0x0698 [ FB225D5F63524DC7B9EC0E126AB2E95F, D5DEE9256A5378AA9E92E55FDBCED5B2457F90DC4385AD5A2E7B6DDBC63F0FE3 ] OverwolfUpdater C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe
20:24:23.0874 0x0698 OverwolfUpdater - ok
20:24:23.0885 0x0698 p2pimsvc - ok
20:24:23.0888 0x0698 p2psvc - ok
20:24:23.0891 0x0698 Parport - ok
20:24:23.0894 0x0698 partmgr - ok
20:24:23.0897 0x0698 PcaSvc - ok
20:24:23.0899 0x0698 pci - ok
20:24:23.0903 0x0698 pciide - ok
20:24:23.0906 0x0698 pcmcia - ok
20:24:23.0908 0x0698 pcw - ok
20:24:23.0915 0x0698 pdc - ok
20:24:23.0918 0x0698 PEAUTH - ok
20:24:23.0920 0x0698 percsas2i - ok
20:24:23.0924 0x0698 percsas3i - ok
20:24:23.0994 0x0698 PerfHost - ok
20:24:24.0000 0x0698 PhoneSvc - ok
20:24:24.0003 0x0698 PimIndexMaintenanceSvc - ok
20:24:24.0007 0x0698 pla - ok
20:24:24.0010 0x0698 PlugPlay - ok
20:24:24.0012 0x0698 PnkBstrA - ok
20:24:24.0016 0x0698 PNRPAutoReg - ok
20:24:24.0019 0x0698 PNRPsvc - ok
20:24:24.0022 0x0698 PolicyAgent - ok
20:24:24.0026 0x0698 Power - ok
20:24:24.0029 0x0698 PptpMiniport - ok
20:24:24.0130 0x0698 [ 30AA256A85C1A7B17A590B1C5244D28E, 2C1FB30DEF53C37CA0D0CA54B65CB8572C53DDFB430DE57F964253F1082ACEA0 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
20:24:24.0375 0x0698 PrintNotify - ok
20:24:24.0381 0x0698 Processor - ok
20:24:24.0384 0x0698 ProfSvc - ok
20:24:24.0387 0x0698 Psched - ok
20:24:24.0390 0x0698 QWAVE - ok
20:24:24.0392 0x0698 QWAVEdrv - ok
20:24:24.0395 0x0698 RasAcd - ok
20:24:24.0423 0x0698 RasAgileVpn - ok
20:24:24.0426 0x0698 RasAuto - ok
20:24:24.0429 0x0698 Rasl2tp - ok
20:24:24.0431 0x0698 RasMan - ok
20:24:24.0436 0x0698 RasPppoe - ok
20:24:24.0440 0x0698 RasSstp - ok
20:24:24.0442 0x0698 rdbss - ok
20:24:24.0446 0x0698 rdpbus - ok
20:24:24.0502 0x0698 RDPDR - ok
20:24:24.0510 0x0698 RdpVideoMiniport - ok
20:24:24.0512 0x0698 rdyboost - ok
20:24:24.0515 0x0698 ReFSv1 - ok
20:24:24.0522 0x0698 RemoteAccess - ok
20:24:24.0542 0x0698 RemoteRegistry - ok
20:24:24.0545 0x0698 RetailDemo - ok
20:24:24.0548 0x0698 RmSvc - ok
20:24:24.0551 0x0698 RpcEptMapper - ok
20:24:24.0553 0x0698 RpcLocator - ok
20:24:24.0556 0x0698 RpcSs - ok
20:24:24.0559 0x0698 rspndr - ok
20:24:24.0562 0x0698 s3cap - ok
20:24:24.0564 0x0698 SamSs - ok
20:24:24.0568 0x0698 sbp2port - ok
20:24:24.0572 0x0698 SCardSvr - ok
20:24:24.0576 0x0698 ScDeviceEnum - ok
20:24:24.0580 0x0698 scfilter - ok
20:24:24.0583 0x0698 Schedule - ok
20:24:24.0586 0x0698 scmbus - ok
20:24:24.0589 0x0698 scmdisk0101 - ok
20:24:24.0593 0x0698 SCPolicySvc - ok
20:24:24.0596 0x0698 sdbus - ok
20:24:24.0599 0x0698 SDRSVC - ok
20:24:24.0603 0x0698 sdstor - ok
20:24:24.0606 0x0698 seclogon - ok
20:24:24.0609 0x0698 SENS - ok
20:24:24.0613 0x0698 SensorDataService - ok
20:24:24.0615 0x0698 SensorService - ok
20:24:24.0618 0x0698 SensrSvc - ok
20:24:24.0621 0x0698 SerCx - ok
20:24:24.0624 0x0698 SerCx2 - ok
20:24:24.0627 0x0698 Serenum - ok
20:24:24.0630 0x0698 Serial - ok
20:24:24.0632 0x0698 sermouse - ok
20:24:24.0641 0x0698 SessionEnv - ok
20:24:24.0644 0x0698 sfloppy - ok
20:24:24.0647 0x0698 SharedAccess - ok
20:24:24.0650 0x0698 ShellHWDetection - ok
20:24:24.0655 0x0698 shpamsvc - ok
20:24:24.0706 0x0698 SiSRaid2 - ok
20:24:24.0709 0x0698 SiSRaid4 - ok
20:24:24.0731 0x0698 [ B72B80E6FF423C5011E745CB76DA9A08, 18A6B9D46E91AD4D463EB5CB832702392D2E162577F90C328B515FCE69FABD15 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
20:24:24.0751 0x0698 SkypeUpdate - ok
20:24:24.0829 0x0698 smphost - ok
20:24:24.0847 0x0698 SmsRouter - ok
20:24:24.0856 0x0698 SNMPTRAP - ok
20:24:24.0928 0x0698 spaceport - ok
20:24:24.0932 0x0698 SpbCx - ok
20:24:24.0943 0x0698 Spooler - ok
20:24:24.0948 0x0698 sppsvc - ok
20:24:24.0952 0x0698 srv - ok
20:24:24.0959 0x0698 srv2 - ok
20:24:24.0997 0x0698 srvnet - ok
20:24:25.0001 0x0698 SSDPSRV - ok
20:24:25.0020 0x0698 SstpSvc - ok
20:24:25.0029 0x0698 [ 592FF34A2FD6C6351B8A3AA76B2C0A9E, 152B7472DE531AC45492F562DD470B2CE33F1EEF13BC78F26046AE5ABF54E32F ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
20:24:25.0042 0x0698 ssudmdm - ok
20:24:25.0046 0x0698 StateRepository - ok
20:24:25.0082 0x0698 [ C8DC0C34715627ABF7A265ED27D1F75A, 5B8B9AC65D7458A8C6C868107E0BE3F9B1A1A5117FC69FDC260BAA9F1BDD0008 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
20:24:25.0193 0x0698 Steam Client Service - ok
20:24:25.0256 0x0698 stexstor - ok
20:24:25.0259 0x0698 stisvc - ok
20:24:25.0262 0x0698 storahci - ok
20:24:25.0265 0x0698 storflt - ok
20:24:25.0267 0x0698 stornvme - ok
20:24:25.0270 0x0698 storqosflt - ok
20:24:25.0273 0x0698 StorSvc - ok
20:24:25.0276 0x0698 storufs - ok
20:24:25.0278 0x0698 storvsc - ok
20:24:25.0282 0x0698 svsvc - ok
20:24:25.0286 0x0698 swenum - ok
20:24:25.0289 0x0698 swprv - ok
20:24:25.0292 0x0698 Synth3dVsc - ok
20:24:25.0295 0x0698 SysMain - ok
20:24:25.0334 0x0698 SystemEventsBroker - ok
20:24:25.0337 0x0698 TabletInputService - ok
20:24:25.0340 0x0698 TapiSrv - ok
20:24:25.0343 0x0698 Tcpip - ok
20:24:25.0346 0x0698 Tcpip6 - ok
20:24:25.0351 0x0698 tcpipreg - ok
20:24:25.0355 0x0698 tdx - ok
20:24:25.0358 0x0698 terminpt - ok
20:24:25.0361 0x0698 TermService - ok
20:24:25.0364 0x0698 Themes - ok
20:24:25.0367 0x0698 TieringEngineService - ok
20:24:25.0370 0x0698 tiledatamodelsvc - ok
20:24:25.0373 0x0698 TimeBrokerSvc - ok
20:24:25.0376 0x0698 TPM - ok
20:24:25.0379 0x0698 TrkWks - ok
20:24:25.0382 0x0698 TrustedInstaller - ok
20:24:25.0401 0x0698 tsusbflt - ok
20:24:25.0404 0x0698 TsUsbGD - ok
20:24:25.0407 0x0698 tunnel - ok
20:24:25.0410 0x0698 tzautoupdate - ok
20:24:25.0413 0x0698 UASPStor - ok
20:24:25.0416 0x0698 UcmCx0101 - ok
20:24:25.0419 0x0698 UcmTcpciCx0101 - ok
20:24:25.0422 0x0698 UcmUcsi - ok
20:24:25.0425 0x0698 Ucx01000 - ok
20:24:25.0428 0x0698 UdeCx - ok
20:24:25.0431 0x0698 udfs - ok
20:24:25.0434 0x0698 UEFI - ok
20:24:25.0437 0x0698 Ufx01000 - ok
20:24:25.0440 0x0698 UfxChipidea - ok
20:24:25.0443 0x0698 ufxsynopsys - ok
20:24:25.0449 0x0698 [ E5DA87DAB3A32FA03F13FCFAE4255084, B2155BD7A87F5A07FF4E30A9BA6650489519B0BD58B26367856D29C7DDC31981 ] UHSfiltv C:\WINDOWS\system32\drivers\UHSfiltv.sys
20:24:25.0584 0x0698 UHSfiltv - ok
20:24:25.0587 0x0698 UI0Detect - ok
20:24:25.0590 0x0698 umbus - ok
20:24:25.0593 0x0698 UmPass - ok
20:24:25.0596 0x0698 UmRdpService - ok
20:24:25.0602 0x0698 UnistoreSvc - ok
20:24:25.0638 0x0698 [ E1A119AD21F5AFE22EB516C549306D3D, 48769D5E7A78B7A2C00F1F6798AC133CF3E0B2C76F71D3719BD741DDD8F2D229 ] UNS C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
20:24:25.0657 0x0698 UNS - ok
20:24:25.0663 0x0698 upnphost - ok
20:24:25.0667 0x0698 UrsChipidea - ok
20:24:25.0670 0x0698 UrsCx01000 - ok
20:24:25.0672 0x0698 UrsSynopsys - ok
20:24:25.0676 0x0698 [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys
20:24:25.0743 0x0698 USBAAPL64 - ok
20:24:25.0746 0x0698 usbaudio - ok
20:24:25.0749 0x0698 usbccgp - ok
20:24:25.0753 0x0698 usbcir - ok
20:24:25.0756 0x0698 usbehci - ok
20:24:25.0759 0x0698 usbhub - ok
20:24:25.0762 0x0698 USBHUB3 - ok
20:24:25.0765 0x0698 usbohci - ok
20:24:25.0768 0x0698 usbprint - ok
20:24:25.0772 0x0698 [ 2EC7B2C8123236B1233A77281D378DF7, D97DB59C9CAE2B8B33C707E8CEA7A65BF88712842CC715D270F7432A99D21BB6 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:24:25.0817 0x0698 usbscan - ok
20:24:25.0866 0x0698 usbser - ok
20:24:25.0870 0x0698 USBSTOR - ok
20:24:25.0873 0x0698 usbuhci - ok
20:24:25.0878 0x0698 USBXHCI - ok
20:24:25.0881 0x0698 UserDataSvc - ok
20:24:25.0886 0x0698 UserManager - ok
20:24:25.0892 0x0698 UsoSvc - ok
20:24:25.0895 0x0698 VaultSvc - ok
20:24:25.0900 0x0698 vdrvroot - ok
20:24:25.0903 0x0698 vds - ok
20:24:25.0907 0x0698 VerifierExt - ok
20:24:25.0910 0x0698 vhdmp - ok
20:24:25.0913 0x0698 vhf - ok
20:24:25.0963 0x0698 vmbus - ok
20:24:25.0966 0x0698 VMBusHID - ok
20:24:25.0972 0x0698 vmgid - ok
20:24:25.0979 0x0698 vmicguestinterface - ok
20:24:25.0982 0x0698 vmicheartbeat - ok
20:24:25.0986 0x0698 vmickvpexchange - ok
20:24:25.0994 0x0698 vmicrdv - ok
20:24:25.0997 0x0698 vmicshutdown - ok
20:24:26.0000 0x0698 vmictimesync - ok
20:24:26.0004 0x0698 vmicvmsession - ok
20:24:26.0007 0x0698 vmicvss - ok
20:24:26.0010 0x0698 volmgr - ok
20:24:26.0016 0x0698 volmgrx - ok
20:24:26.0019 0x0698 volsnap - ok
20:24:26.0029 0x0698 volume - ok
20:24:26.0032 0x0698 vpci - ok
20:24:26.0110 0x0698 [ 05F1897706AA0C9F7336C0DC20E46B5B, 6F567997EC2C97922DB69F3A02F7A5443614312C37BC9F689FAB5B4661A9A29C ] vpnagent C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
20:24:26.0131 0x0698 vpnagent - ok
20:24:26.0240 0x0698 [ 0F42C39016F82F345C0F2DB2D5B90EB4, 2E957E72BB8D0293F61FA7385BA9400DF7759E1E3D35FE24F3877A6460988F4D ] vpnva C:\WINDOWS\System32\drivers\vpnva64-6.sys
20:24:26.0261 0x0698 vpnva - ok
20:24:26.0264 0x0698 vsmraid - ok
20:24:26.0267 0x0698 VSS - ok
20:24:26.0270 0x0698 VSTXRAID - ok
20:24:26.0273 0x0698 vwifibus - ok
20:24:26.0276 0x0698 vwififlt - ok
20:24:26.0279 0x0698 W32Time - ok
20:24:26.0282 0x0698 WacomPen - ok
20:24:26.0286 0x0698 WalletService - ok
20:24:26.0289 0x0698 wanarp - ok
20:24:26.0291 0x0698 wanarpv6 - ok
20:24:26.0323 0x0698 wbengine - ok
20:24:26.0327 0x0698 WbioSrvc - ok
20:24:26.0330 0x0698 wcifs - ok
20:24:26.0333 0x0698 Wcmsvc - ok
20:24:26.0336 0x0698 wcncsvc - ok
20:24:26.0339 0x0698 wcnfs - ok
20:24:26.0342 0x0698 WdBoot - ok
20:24:26.0345 0x0698 Wdf01000 - ok
20:24:26.0348 0x0698 WdFilter - ok
20:24:26.0351 0x0698 WdiServiceHost - ok
20:24:26.0355 0x0698 WdiSystemHost - ok
20:24:26.0358 0x0698 wdiwifi - ok
20:24:26.0361 0x0698 WdNisDrv - ok
20:24:26.0364 0x0698 WdNisSvc - ok
20:24:26.0369 0x0698 WebClient - ok
20:24:26.0373 0x0698 Wecsvc - ok
20:24:26.0376 0x0698 WEPHOSTSVC - ok
20:24:26.0379 0x0698 wercplsupport - ok
20:24:26.0382 0x0698 WerSvc - ok
20:24:26.0385 0x0698 WFPLWFS - ok
20:24:26.0389 0x0698 WiaRpc - ok
20:24:26.0394 0x0698 WIMMount - ok
20:24:26.0396 0x0698 WinDefend - ok
20:24:26.0445 0x0698 WindowsTrustedRT - ok
20:24:26.0451 0x0698 WindowsTrustedRTProxy - ok
20:24:26.0454 0x0698 WinHttpAutoProxySvc - ok
20:24:26.0458 0x0698 WinMad - ok
20:24:26.0467 0x0698 Winmgmt - ok
20:24:26.0470 0x0698 WinRM - ok
20:24:26.0476 0x0698 WINUSB - ok
20:24:26.0479 0x0698 WinVerbs - ok
20:24:26.0484 0x0698 wisvc - ok
20:24:26.0490 0x0698 WlanSvc - ok
20:24:26.0493 0x0698 wlidsvc - ok
20:24:26.0497 0x0698 WmiAcpi - ok
20:24:26.0502 0x0698 wmiApSrv - ok
20:24:26.0506 0x0698 WMPNetworkSvc - ok
20:24:26.0510 0x0698 Wof - ok
20:24:26.0530 0x0698 workfolderssvc - ok
20:24:26.0534 0x0698 WPDBusEnum - ok
20:24:26.0539 0x0698 WpdUpFltr - ok
20:24:26.0542 0x0698 WpnService - ok
20:24:26.0545 0x0698 WpnUserService - ok
20:24:26.0550 0x0698 ws2ifsl - ok
20:24:26.0607 0x0698 wscsvc - ok
20:24:26.0610 0x0698 WSearch - ok
20:24:26.0617 0x0698 wuauserv - ok
20:24:26.0620 0x0698 WudfPf - ok
20:24:26.0628 0x0698 WUDFRd - ok
20:24:26.0721 0x0698 wudfsvc - ok
20:24:26.0724 0x0698 WUDFWpdFs - ok
20:24:26.0727 0x0698 WUDFWpdMtp - ok
20:24:26.0731 0x0698 WwanSvc - ok
20:24:26.0734 0x0698 XblAuthManager - ok
20:24:26.0738 0x0698 XblGameSave - ok
20:24:26.0741 0x0698 xboxgip - ok
20:24:26.0744 0x0698 XboxNetApiSvc - ok
20:24:26.0749 0x0698 [ BD546B3E73971E53D76E63F3888B9D93, D9F906B707DD1C8D5B5D2EFF488921CDE99E06D35C2A16BCCBF41A74D3314482 ] xhunter1 C:\WINDOWS\xhunter1.sys
20:24:26.0755 0x0698 xhunter1 - ok
20:24:26.0832 0x0698 xinputhid - ok
20:24:26.0838 0x0698 xusb22 - ok
20:24:26.0839 0x0698 ================ Scan global ===============================
20:24:26.0860 0x0698 [ Global ] - ok
20:24:26.0860 0x0698 ================ Scan MBR ==================================
20:24:26.0865 0x0698 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:24:27.0987 0x0698 \Device\Harddisk0\DR0 - ok
20:24:28.0003 0x0698 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
20:24:28.0068 0x0698 \Device\Harddisk1\DR1 - ok
20:24:28.0068 0x0698 ================ Scan VBR ==================================
20:24:28.0069 0x0698 [ 6AE2B4478CCFBE5EF4ED97CD8300A63E ] \Device\Harddisk0\DR0\Partition1
20:24:28.0071 0x0698 \Device\Harddisk0\DR0\Partition1 - ok
20:24:28.0072 0x0698 [ 89FFCD70E136EE0BC5E3410F55F82363 ] \Device\Harddisk0\DR0\Partition2
20:24:28.0075 0x0698 \Device\Harddisk0\DR0\Partition2 - ok
20:24:28.0076 0x0698 [ D0124074A568228B9B07FDFE7C355E45 ] \Device\Harddisk1\DR1\Partition1
20:24:28.0077 0x0698 \Device\Harddisk1\DR1\Partition1 - ok
20:24:28.0077 0x0698 ================ Scan generic autorun ======================
20:24:28.0333 0x0698 [ 834A309C2FDF52FC09353F348CFE1235, FF8D5B0C4D8DEF3B313E11B01D6A2A29758E8721EF2EC0AAC2DB3C9AAF399276 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
20:24:28.0743 0x0698 RtHDVCpl - ok
20:24:28.0808 0x0698 [ 948EB9C552C05DF39F79587E6979D9F5, 402B155395C32005A8D78C8B0F00F2391542CB41188AF944FF17ADE6BE97A62D ] C:\Program Files\Logitech\SetPointP\SetPoint.exe
20:24:28.0900 0x0698 EvtMgr6 - ok
20:24:29.0440 0x0698 [ 23D6372CDF9D045BA22F50EF6889E025, 3F41E7CF5019ABEAF917FA86A0E182AAF1A3F18890767A82EFE3BFCEBA229CA1 ] C:\Program Files\Logitech Gaming Software\LCore.exe
20:24:29.0758 0x0698 Launch LCore - ok
20:24:29.0777 0x0698 [ 782A31DB311AAC5F9CB50DDD9228867A, E200DFE8E1F8F8EEA26EDD76A3A3843EFDAE0A2284808D65C9DA6C4F76970E29 ] C:\Program Files\iTunes\iTunesHelper.exe
20:24:29.0838 0x0698 iTunesHelper - ok
20:24:29.0895 0x0698 [ 5602FF42444B4991E69C62E493BDAEC4, 7AE46CA0CD1E1C091B31EE4A691C26823E0F1AB1CA6B1C29E6C662BF7E28A996 ] C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\mbamtray.exe
20:24:29.0964 0x0698 Malwarebytes TrayApp - ok
20:24:29.0970 0x0698 [ D1931AB351D1F3935BDE2BEFD427F925, 680F9597B313EEDB5524975348BBB5F5F3114FE23D5FC2061CD3C00E5F6ED034 ] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
20:24:29.0981 0x0698 IAStorIcon - ok
20:24:29.0985 0x0698 [ 187F4C75A89E3F412322C94526320074, D78FA7EF93C8C7B4326A5B6DB04A92ADD091DF00658FA8731D07C5D3BE29ED04 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
20:24:30.0002 0x0698 BCSSync - ok
20:24:30.0021 0x0698 [ 323B5D30CEA1179661F03E87B95B79D8, 1F3A11B908FF01D850DA71EF8FD4CD4D60C3EA76DDF308DA090C4EBF752599CE ] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
20:24:30.0048 0x0698 avgnt - ok
20:24:30.0054 0x0698 [ 2CFE20EA0DB2174B564E6A1E4D378213, E2919B1ABC7F5D2269E6DE9A9B32BD3CD8DA4689A19C1594A02E1F7B2A67EEEC ] C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe
20:24:30.0078 0x0698 Avira SystrayStartTrigger - ok
20:24:30.0101 0x0698 [ 68F1419721354EC1F78A71E10B54FCA8, 5BB4814BD28EE8ABB15BE6B8E723F6960F37EC17A619F5D93EFBCC6FC59502F6 ] C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
20:24:30.0137 0x0698 Cisco AnyConnect Secure Mobility Agent for Windows - ok
20:24:30.0153 0x0698 OneDriveSetup - ok
20:24:30.0154 0x0698 OneDriveSetup - ok
20:24:30.0167 0x0698 [ 06F6DB72ADABC5E858F38EF69014CE52, B4AEABF3EA6FCABBED879D642BA070DF9C244E28DB5BDC3211205C7B8DB97BFB ] C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
20:24:30.0201 0x0698 OfficeSyncProcess - ok
20:24:30.0235 0x0698 [ C5D30E88C97825CF0652B60C42F103AD, D605DC9021021714BDA36EF48C335F85C77F85474A21B6E5258270E1703B8DC8 ] C:\Users\Jan-Niklas\AppData\Local\Microsoft\OneDrive\OneDrive.exe
20:24:30.0278 0x0698 OneDrive - ok
20:24:30.0440 0x0698 [ 8D3D5BA1638778DE87503E5FEA68DC9F, D54C2B375A6F8A49BC53CAA3ED8A0EEBF53FD113BB47622F4AE6DA762D194FE7 ] C:\Program Files\CCleaner\CCleaner64.exe
20:24:30.0608 0x0698 CCleaner Monitoring - ok
20:24:30.0828 0x0698 [ 764BE29C9F78D949191C995B9BA4492A, A42EADC8546859A717F149C044235410B5908837B471889B281195C860AC558D ] C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATINDE.EXE
20:24:30.0839 0x0698 EPLTarget\P0000000000000000 - ok
20:24:30.0840 0x0698 Waiting for KSN requests completion. In queue: 63
20:24:31.0888 0x0698 AV detected via SS2: Avira Antivirus, C:\Program Files (x86)\Avira\AntiVir Desktop\WindowsSecurityCenter.exe ( 15.0.27.34 ), 0x41000 ( enabled : updated )
20:24:31.0890 0x0698 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.1198 ), 0x60100 ( disabled : updated )
20:24:32.0015 0x0698 AV detected via SS2: Malwarebytes, C:\Program Files\Malwarebytes\Anti-Malware\MBAMWsc.exe ( 3.0.0.143 ), 0x61000 ( enabled : updated )
20:24:32.0076 0x0698 Win FW state via NFP2: enabled ( trusted )
20:24:32.0326 0x0698 ============================================================
20:24:32.0326 0x0698 Scan finished
20:24:32.0326 0x0698 ============================================================
20:24:32.0334 0x14fc Detected object count: 0
20:24:32.0334 0x14fc Actual detected object count: 0 |