Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 24-09-2016 02
durchgeführt von Tommy (25-09-2016 16:00:05)
Gestartet von C:\Users\Tommy\Desktop
Windows 10 Home Version 1511 (X64) (2016-04-02 17:54:36)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3720008615-1552608543-3975612461-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3720008615-1552608543-3975612461-503 - Limited - Disabled)
Gast (S-1-5-21-3720008615-1552608543-3975612461-501 - Limited - Disabled)
postgres (S-1-5-21-3720008615-1552608543-3975612461-1003 - Limited - Enabled) => C:\Users\postgres
Tommy (S-1-5-21-3720008615-1552608543-3975612461-1001 - Administrator - Enabled) => C:\Users\Tommy
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
abDocs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.10.2001 - Acer Incorporated)
abDocs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 3.02.2001 - Acer Incorporated)
abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.03.2003 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 3.08.2003.3 - Acer Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.22.2000.2 - Acer Incorporated)
CCleaner (HKLM\...\CCleaner) (Version: 5.15 - Piriform)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.4609.02 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3011 - Acer Incorporated)
ELAN HIDI2C Filter Driver X64 13.6.3.1_WHQL (HKLM\...\Elantech) (Version: 13.6.3.1 - ELAN Microelectronic Corp.)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Foxit PhantomPDF (HKLM-x32\...\{A4023BDF-82D5-412D-9D58-8C2819EBFE2E}) (Version: 7.0.410.326 - Foxit Software Inc.)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.15.4248 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 1.1.253.0 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.7 - Intel(R) Corporation) Hidden
Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)
Malwarebytes Anti-Exploit version 1.8.1.2572 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.8.1.2572 - Malwarebytes)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50709.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft-Maus- und Tastatur-Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.7.133.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 48.0.2 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 48.0.2 (x86 en-US)) (Version: 48.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 48.0.2.6079 - Mozilla)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NVIDIA GeForce Experience 2.4.5.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.4.5.44 - NVIDIA Corporation)
NVIDIA Grafiktreiber 353.54 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.54 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Qualcomm Atheros QCA9377 Wireless LAN & Bluetooth Installer (HKLM-x32\...\{3241744A-BA36-41F0-B4AA-EF3946D00632}) (Version: 11.0.0.043 - Qualcomm Atheros)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.1.505.2015 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7553 - Realtek Semiconductor Corp.)
Sandboxie 5.12 (64-bit) (HKLM\...\Sandboxie) (Version: 5.12 - Sandboxie Holdings, LLC)
SHIELD Streaming (Version: 4.1.2000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.4.5.44 - NVIDIA Corporation) Hidden
TomTom MyDrive Connect 4.1.0.2658 (HKLM-x32\...\MyDriveConnect) (Version: 4.1.0.2658 - TomTom)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
YTD Video Downloader 5.7.1 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 5.7.1 - GreenTree Applications SRL) <==== ACHTUNG
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3720008615-1552608543-3975612461-1001_Classes\CLSID\{087B3AE3-E237-4467-B8DB-5A38AB959AC9}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3720008615-1552608543-3975612461-1001_Classes\CLSID\{3B092F0C-7696-40E3-A80F-68D74DA84210}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3720008615-1552608543-3975612461-1001_Classes\CLSID\{63542C48-9552-494A-84F7-73AA6A7C99C1}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3720008615-1552608543-3975612461-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Tommy\AppData\Local\Microsoft\OneDrive\17.3.6302.0225_1\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3720008615-1552608543-3975612461-1001_Classes\CLSID\{7BC0E710-5703-45BE-A29D-5D46D8B39262}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\ooofilt_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3720008615-1552608543-3975612461-1001_Classes\CLSID\{AE424E85-F6DF-4910-A6A9-438797986431}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\propertyhdl_x64.dll (Apache Software Foundation)
CustomCLSID: HKU\S-1-5-21-3720008615-1552608543-3975612461-1001_Classes\CLSID\{c31ca596-532d-a36f-e223-ce16b9ac70a56}\InprocServer32 -> 0xD891ACCC2297D1014236B3536597D101020000000C00000000000000 => Keine Datei
CustomCLSID: HKU\S-1-5-21-3720008615-1552608543-3975612461-1001_Classes\CLSID\{C52AF81D-F7A0-4AAB-8E87-F80A60CCD396}\InprocServer32 -> C:\Program Files (x86)\OpenOffice 4\program\shlxthdl\shlxthdl_x64.dll (Apache Software Foundation)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {08238D88-2CF3-401B-802D-E272A51CC0BB} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2015-12-09] (Microsoft)
Task: {090AB924-D6CE-4FBE-A3BC-6475EC7332CC} - System32\Tasks\WpsUpdateTask_Tommy => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsupdate.exe
Task: {20838C8A-AFE3-4D23-AAE4-8B37285C8A9F} - System32\Tasks\{CCCF4854-97D5-4A5F-A7A1-13842D23D438} => pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe -d C:\Windows\ImmersiveControlPanel -c /M{CF6AE90D-05E8-4D0B-AF79-94F9E1CA5601}
Task: {2ECA4704-92E7-4D54-9B8D-D8F69D314439} - System32\Tasks\FUBTrackingByPLD => C:\OEM\Preload\FubTracking\FubTracking.exe [2015-05-14] ()
Task: {3EDA365F-B375-465B-901D-11BA7C16BA88} - System32\Tasks\CreateExplorerShellUnelevatedTask => /NOUACCHECK
Task: {5A42F600-A818-42CB-8E55-061D6959252F} - System32\Tasks\WpsNotifyTask_Tommy => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsnotify.exe
Task: {5CE50178-76DA-47AB-AE73-5FB593E096ED} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-12-09] (Microsoft Corporation)
Task: {5D4B72F7-5D5D-4500-8802-0F37CC51B4FA} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated)
Task: {5F8B5F79-675A-40F1-9CE2-E1C98C68ACFB} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-12-09] (Microsoft Corporation)
Task: {6862F1B0-232D-419F-BDC3-7613AB373439} - System32\Tasks\abDocsDllLoader => C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe [2016-08-15] ()
Task: {7E8F8968-3CFB-44D0-AA2E-94C54D3B92F2} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [2016-08-15] (Acer Incorporated)
Task: {9B54A002-9A5B-4408-8EBD-A054AF64D128} - System32\Tasks\WpsNotifyTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsnotify.exe
Task: {AF3C6FD9-74B5-4EB5-BA73-8F98641B9CEB} - System32\Tasks\WpsUpdateTask_Administrator => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsupdate.exe
Task: {DD6622C1-204D-4131-B26A-4E13DE00A1CB} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-02-12] (Piriform Ltd)
Task: {F2662750-6F32-4ADB-BD51-38264D353549} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-12-09] (Microsoft Corporation)
Task: {FEF11E05-10D0-419D-8850-2882A567A380} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-12-09] (Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\WpsNotifyTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsnotify.exe
Task: C:\WINDOWS\Tasks\WpsNotifyTask_Tommy.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsnotify.exe
Task: C:\WINDOWS\Tasks\WpsUpdateTask_Administrator.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsupdate.exe
Task: C:\WINDOWS\Tasks\WpsUpdateTask_Tommy.job => C:\Program Files (x86)\Kingsoft\WPS Office\9.1.0.5113\wtoolex\wpsupdate.exe
Task: C:\WINDOWS\Tasks\{27CD9240-C0E9-1B2D-D591-71E60CFE7053}.job =>
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-04-02 19:35 - 2015-07-13 19:37 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-09-13 19:44 - 2016-09-07 07:39 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-09-13 19:44 - 2016-09-07 07:39 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-16 05:41 - 2015-05-08 19:41 - 00111872 _____ () C:\Program Files (x86)\Acer\clear.fi plug-in\Clearfishellext_x64.dll
2016-04-02 18:01 - 2016-04-02 18:01 - 00415128 _____ () C:\WINDOWS\system32\igfxTray.exe
2016-02-13 19:02 - 2016-02-13 19:02 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-07-14 22:56 - 2016-07-01 05:48 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-09-13 19:42 - 2016-09-07 06:15 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-09-13 19:42 - 2016-09-07 06:10 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-13 19:42 - 2016-09-07 06:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-09-13 19:42 - 2016-09-07 06:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-02-12 23:13 - 2016-02-12 23:13 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2016-08-15 15:24 - 2016-08-15 15:24 - 01769312 _____ () C:\Program Files (x86)\Acer\abDocs\abDocsDllLoaderMonitor.exe
2016-08-25 21:23 - 2016-08-25 21:24 - 04028608 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7167.40811.0_x64__8wekyb3d8bbwe\gfxim.dll
2016-08-25 21:23 - 2016-08-25 21:24 - 00071872 _____ () C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.7167.40811.0_x64__8wekyb3d8bbwe\icui18n56.dll
2016-08-30 20:56 - 2016-08-30 21:05 - 00017408 _____ () C:\Program Files\WindowsApps\SkyDeutschlandAG.SkyGo_2.0.6.0_x64__5syynrx1xchwe\SkyGo.UWP.exe
2016-08-30 20:56 - 2016-08-30 21:05 - 27019776 _____ () C:\Program Files\WindowsApps\SkyDeutschlandAG.SkyGo_2.0.6.0_x64__5syynrx1xchwe\SkyGo.UWP.dll
2016-08-16 21:34 - 2016-08-16 21:34 - 00017408 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-08-16 21:34 - 2016-08-16 21:34 - 13475840 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-06-04 13:41 - 2016-06-04 13:41 - 00680448 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\Microsoft.DesignCore.dll
2016-04-02 17:43 - 2016-04-02 17:44 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.722.10060.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2015-06-24 01:07 - 2015-06-24 01:07 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2015-08-17 10:31 - 2015-06-03 23:06 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-08-15 18:03 - 2016-08-15 18:03 - 00202456 _____ () C:\Program Files (x86)\Acer\abPhoto\curllib.dll
2016-08-15 18:05 - 2016-08-15 18:05 - 00654000 _____ () C:\Program Files (x86)\Acer\abPhoto\sqlite3.dll
2016-08-15 18:05 - 2016-08-15 18:05 - 00641240 _____ () C:\Program Files (x86)\Acer\abPhoto\tag.dll
2016-08-15 18:04 - 2016-08-15 18:04 - 00119000 _____ () C:\Program Files (x86)\Acer\abPhoto\OpenLDAP.dll
2016-08-18 20:29 - 2016-08-18 20:29 - 00015064 _____ () C:\WINDOWS\assembly\GAC_MSIL\MyService\1.0.0.1__2dfa3f50f0bed57d\MyService.dll
2016-08-15 14:36 - 2016-08-15 14:36 - 00013016 _____ () C:\Program Files (x86)\Acer\AOP Framework\ServiceInterface.dll
2016-08-15 14:33 - 2016-08-15 14:33 - 00277856 _____ () C:\Program Files (x86)\Acer\AOP Framework\libcurl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-07-10 13:04 - 2015-07-10 13:02 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3720008615-1552608543-3975612461-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{D20BCE19-F393-4396-B9BA-B8CBD7422ACF}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{5EA857FC-6EC4-47A0-9276-274919B948B4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{FDCBB46B-AAEB-42F0-B246-ED88690F7166}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{9FB8E1DE-AE8D-4898-8C35-C7099E3591B2}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7C253B26-7015-456A-8890-DA2EFB76951A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CD1AE009-0F76-41D3-89A7-EDAFC2204F75}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{8D938277-FEA9-4E1D-A87B-EEA756AE3A6B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{90F696B4-EE33-4C11-BE89-3830769FED7F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{FE26A380-7E23-49A6-BB34-66EDA1D051B6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{7456B177-F3A4-4680-BA3F-C029A641E7C8}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{EC3208F3-2858-4033-948B-9FC0C05D4036}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe
FirewallRules: [{030AD213-B01A-4478-8883-98ACC90362D1}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{AC4F09D0-A1A1-491B-A6C8-7B850DA5B4AB}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe
FirewallRules: [{8A51B2ED-B3C9-491A-9BE7-0BF196CCC4FB}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{90DCACF2-AD29-4E57-BC3B-9517855EA057}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe
FirewallRules: [{77047FE5-5BE3-46C4-9880-2EDCA9AD130E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{79335C2F-97B2-40AA-8478-EC22FE191C2F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A6BB857F-EC59-443E-A306-1C896078622E}] => (Allow) LPort=5432
FirewallRules: [{7EB84075-0B63-4B16-A8FA-FBE872780AF0}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{B42EB4FE-58B7-4807-BE66-A2B57BCFB7C5}] => (Allow) LPort=2869
FirewallRules: [{4909E75B-F5E3-4261-8F2C-78F4EAD740A2}] => (Allow) LPort=1900
==================== Wiederherstellungspunkte =========================
18-08-2016 20:48:15 Windows Update
03-09-2016 15:43:31 Windows Update
16-09-2016 19:00:10 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (09/24/2016 08:10:34 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: LAPTOP-BF9Q746R)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816
Error: (09/24/2016 08:10:34 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: LAPTOP-BF9Q746R)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816
Error: (09/24/2016 08:10:34 AM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: LAPTOP-BF9Q746R)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816
Error: (09/20/2016 08:04:48 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: LAPTOP-BF9Q746R)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816
Error: (09/20/2016 08:04:48 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: LAPTOP-BF9Q746R)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816
Error: (09/20/2016 08:04:48 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: LAPTOP-BF9Q746R)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816
Error: (09/19/2016 09:59:52 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-BF9Q746R)
Description: Bei der Aktivierung der App „Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (09/18/2016 06:59:48 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: LAPTOP-BF9Q746R)
Description: Bei der Aktivierung der App „Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy!App“ ist folgender Fehler aufgetreten: -2144927141. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.
Error: (09/18/2016 04:37:08 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: LAPTOP-BF9Q746R)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816
Error: (09/18/2016 04:37:08 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 12) (User: LAPTOP-BF9Q746R)
Description: SkyDeutschlandAG.SkyGo_5syynrx1xchwe15816
Systemfehler:
=============
Error: (09/22/2016 10:16:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Synchronisierungshost_110ee9c erreicht.
Error: (09/22/2016 10:16:54 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Benutzerdatenspeicher _110ee9c erreicht.
Error: (09/22/2016 10:16:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_110ee9c" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/22/2016 10:16:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _110ee9c" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/22/2016 10:16:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_110ee9c" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/22/2016 10:16:44 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_110ee9c" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/20/2016 10:02:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenzugriff_ceec27" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/20/2016 10:02:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Benutzerdatenspeicher _ceec27" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/20/2016 10:02:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Kontaktdaten_ceec27" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/20/2016 10:02:29 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Synchronisierungshost_ceec27" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 10000 Millisekunden durchgeführt: Neustart des Diensts.
CodeIntegrity:
===================================
Date: 2016-09-25 14:52:58.389
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-18 14:21:40.822
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-17 16:35:57.089
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-09 10:19:59.174
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-03 22:25:26.117
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-09-03 20:09:23.995
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-09-03 15:45:29.169
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-08-28 12:10:58.463
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2016-08-19 18:01:29.559
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.
Date: 2016-08-15 16:44:48.892
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Windows\System32\nvinitx.dll that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Pentium(R) 3556U @ 1.70GHz
Prozentuale Nutzung des RAM: 47%
Installierter physikalischer RAM: 4016.45 MB
Verfügbarer physikalischer RAM: 2089.33 MB
Summe virtueller Speicher: 4720.45 MB
Verfügbarer virtueller Speicher: 2295.51 MB
==================== Laufwerke ================================
Drive c: (Acer) (Fixed) (Total:930.91 GB) (Free:882.06 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 65B06F71)
Partition: GPT.
==================== Ende von Addition.txt ============================ Code:
16:07:01.0829 0x1ba0 netvsc - ok
16:07:01.0876 0x1ba0 [ 0FB83658FBB2C5A18AB98C5C94DB9FAF, 2D15A49F47D8185D7914D26916D1237FCBE2F8351A64877CDDDDE26E766C3D2F ] NgcCtnrSvc C:\WINDOWS\System32\NgcCtnrSvc.dll
16:07:02.0001 0x1ba0 NgcCtnrSvc - ok
16:07:02.0063 0x1ba0 [ FD35B4E83326317C5DAEBE1A8A67F3FC, 23E3C1CCD5EB397F417B40BF6DAFF5BFC160627BEF130A9376BC123D774DE818 ] NgcSvc C:\WINDOWS\system32\ngcsvc.dll
16:07:02.0188 0x1ba0 NgcSvc - ok
16:07:02.0235 0x1ba0 [ 1B8F07B59F7DAE02264FB8A16088C467, 1795DA9F72C34A9F47D9AAF5E95D40C3296948EB89D9600679AB4660671A5C65 ] NlaSvc C:\WINDOWS\System32\nlasvc.dll
16:07:02.0313 0x1ba0 NlaSvc - ok
16:07:02.0344 0x1ba0 [ 465DC580170CD844206D7E3EF1DBF2A1, 5A14001029BE154C708CCA34449B280905DB79978FC7F0BE0CF20B20E47752CF ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
16:07:02.0376 0x1ba0 Npfs - ok
16:07:02.0391 0x1ba0 [ 29395C214D2CD4C81F73166AB988A797, 3631EB2EA17E455ECD151C0BC9A3DF6EC87C75B15DC9B607CFB68D7C463E04B7 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys
16:07:02.0422 0x1ba0 npsvctrig - ok
16:07:02.0438 0x1ba0 [ AF8B7848E102A83AAECCD24B181CEBE5, B2AAE3567EE3A7975CDFCB3FE41D33C74D4486BFF35FF56E0516A01C744BA52B ] nsi C:\WINDOWS\system32\nsisvc.dll
16:07:02.0454 0x1ba0 nsi - ok
16:07:02.0485 0x1ba0 [ 2871225495F832A8C8A7DD1A17EDB3DC, 2F6664C7F5FB2341B2AAF3C5A258FA0D7AEEE447562D7F39FD5A4EE905C18C6D ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys
16:07:02.0516 0x1ba0 nsiproxy - ok
16:07:02.0672 0x1ba0 [ 19BD8A88AAC580592668B070AC0727D9, 60DB84895C40E6412BEB2D0E4D7F05891446B9DE992D70579CC90BA3FB27FC01 ] NTFS C:\WINDOWS\system32\drivers\NTFS.sys
16:07:02.0891 0x1ba0 NTFS - ok
16:07:02.0922 0x1ba0 [ 6DBD703320484C37CEA9E4E2D266A8CE, 85D6F73C0E3FDE16829C9BC0D13DD89E64183EAE02F84607F6B8440CB7F366E6 ] Null C:\WINDOWS\system32\drivers\Null.sys
16:07:02.0954 0x1ba0 Null - ok
16:07:03.0516 0x1ba0 [ AEEA2EC9CEEB8ADE8284583BBB98AB0D, AB629C047EFB8F5CF13FF923C332A05CD3F510A8C07D2EA6D3C493E2533DB1E0 ] nvlddmkm C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
16:07:04.0032 0x1ba0 nvlddmkm - ok
16:07:04.0188 0x1ba0 [ DCAA93D28D6FC75A4D80AE410008BA90, 7EDB69747C95FB68A4DF1932CF45E078DE94364D7A37D83A29952977A41D1FD7 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
16:07:04.0282 0x1ba0 NvNetworkService - ok
16:07:04.0313 0x1ba0 [ 604D27CC38CC23493F218D0BB834B3FF, EF5E5759CCF16DD97271C82DAF47FB2086EBCA5DE7D05177B70CA1197B95F41E ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys
16:07:04.0329 0x1ba0 nvraid - ok
16:07:04.0360 0x1ba0 [ 8B50D897657AB4A15FD9E251BBF7D107, 36036130DD46D9BF105AC7176E219F3BE7D1168A660A0F8DFF76F61FBFA4B417 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys
16:07:04.0376 0x1ba0 nvstor - ok
16:07:04.0438 0x1ba0 [ 9408391358F3B9FD0F59E27151383C51, 777A41DE1D8D71833369D1335A083BA8F197317CB62D0E65EFFCC9760D84F2AB ] NvStreamKms C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
16:07:04.0454 0x1ba0 NvStreamKms - ok
16:07:04.0454 0x1ba0 NvStreamSvc - ok
16:07:04.0516 0x1ba0 [ 1B44B5244EAF26BEC315AE84B0AFFC66, 760F376FFF7665E32718E890387CA2404D70DED2D2694A1647483722287D01B8 ] nvsvc C:\WINDOWS\system32\nvvsvc.exe
16:07:04.0610 0x1ba0 nvsvc - ok
16:07:04.0641 0x1ba0 [ 6AC68DDFCAC19A300D738AF3493E46AA, 4E92215B6E3ED263E89489851C6FEAD08D3155C82A74E880DA460DED0021DF42 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
16:07:04.0657 0x1ba0 nvvad_WaveExtensible - ok
16:07:04.0688 0x1ba0 [ 31F990B2B6B91E9D7A667405CE12FCB1, 907E095D1E83CDAFF34BE789FC41CDD7BB4DEE23261E1D03C1CF0D4D030534AC ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys
16:07:04.0719 0x1ba0 nv_agp - ok
16:07:04.0766 0x1ba0 [ 62C35022062C6C2CE797E74DD4952BD8, Code:
691277A1119F4197FB8157294614C01C69ED27F7CE644CF0A1182F0912C59B29 ] OneSyncSvc C:\WINDOWS\System32\APHostService.dll
16:07:04.0844 0x1ba0 OneSyncSvc - ok
16:07:04.0954 0x1ba0 [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll
16:07:05.0063 0x1ba0 p2pimsvc - ok
16:07:05.0110 0x1ba0 [ 4A5634915AF62C983E08425905D0C04C, 09BC3F7AD9F79C5FF59520933D06FE155AC21CD0ABAFE66B81C9F87D83A2339F ] p2psvc C:\WINDOWS\system32\p2psvc.dll
16:07:05.0219 0x1ba0 p2psvc - ok
16:07:05.0251 0x1ba0 [ 7D0FC96264C0F8F2C1321E33E8EB646C, 82A06437B9B096BCCF5CE31BDF3539696E2E41DFA9870C358566EEE2F7D3B447 ] Parport C:\WINDOWS\System32\drivers\parport.sys
16:07:05.0313 0x1ba0 Parport - ok
16:07:05.0344 0x1ba0 [ D330D74B5F99309B5CCA30AE41C57CDE, AE5186CB4B639A5241BF0D17FE8A73D6DAFA505C31E250EA225CD498C8A4A07E ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys
16:07:05.0376 0x1ba0 partmgr - ok
16:07:05.0438 0x1ba0 [ E44B9B6F5E842C0E4D63E2644CDE2370, FCDB910434CF67E442793636564E6D4250809BEB0CD72DB036B101A583AC5736 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll
16:07:05.0516 0x1ba0 PcaSvc - ok
16:07:05.0547 0x1ba0 [ 3F89E96BDA0A24A3D2DBB7CE1E625589, 63AAF83128B8AE279BC37331D2B27133EB9DE9C61392ADF18278A301697D0307 ] pci C:\WINDOWS\system32\drivers\pci.sys
16:07:05.0610 0x1ba0 pci - ok
16:07:05.0626 0x1ba0 [ 2B4D98DF0CA57FB9536DBC80D2449D1F, AB34FA8585A20854369C0FAEB18BF5C7734D7E3C791F644B0576E40D609FCD09 ] pciide C:\WINDOWS\system32\drivers\pciide.sys
16:07:05.0657 0x1ba0 pciide - ok
16:07:05.0688 0x1ba0 [ F4D5793BF2E58AF15C6CF2FEEF9E73EB, 9B5A40AF8838063F8F0A2B1480B39A2711AAE78BD972CDA60CCA0EB2BA211A87 ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys
16:07:05.0719 0x1ba0 pcmcia - ok
16:07:05.0751 0x1ba0 [ 22A53744CEEADFFFD33BA010FAD95229, 30B775EC9795105B8BF785BD63115C160955E7EFF74B995D3EC288138D1825A3 ] pcw C:\WINDOWS\system32\drivers\pcw.sys
16:07:05.0782 0x1ba0 pcw - ok
16:07:05.0797 0x1ba0 [ 34DDBE73E42A4EDED7BEFF66F270C1A4, 420D6EC5B514423C4583839D4E185F7D71989C7BC8A854B0FCC54EE03A972381 ] pdc C:\WINDOWS\system32\drivers\pdc.sys
16:07:05.0829 0x1ba0 pdc - ok
16:07:05.0907 0x1ba0 [ E2F8376F9731D12A009C522036C6073A, 5B8B68D3C013AAA8ED368C97042984C35E8D023542DBA404E7A03E89F2357E66 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys
16:07:06.0032 0x1ba0 PEAUTH - ok
16:07:06.0079 0x1ba0 [ 1398A85E59698067CBBE1D66A9C13ADF, E3609F183068BFAED756B2F9237181D60A6F6D78691248B8BF5B0AEB6A367E3D ] percsas2i C:\WINDOWS\system32\drivers\percsas2i.sys
16:07:06.0110 0x1ba0 percsas2i - ok
16:07:06.0126 0x1ba0 [ 35F7C7AD709D909D618D9EDF987FC3ED, EE713E33688E74C5A2546CC58EBD8EA8F8116F25E42DCF8DA21DCBC7C7590E0E ] percsas3i C:\WINDOWS\system32\drivers\percsas3i.sys
16:07:06.0157 0x1ba0 percsas3i - ok
16:07:06.0235 0x1ba0 [ 0DAF7B7D85F7AF38E29161460899C63F, F2609F2BD02C714857F5D5E6EF580643429C54E175AA72D38467F8F3A4E7F59F ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe
16:07:06.0266 0x1ba0 PerfHost - ok
16:07:06.0329 0x1ba0 [ 53A15E033D640133CBC60DA29057393B, 5439CE20198C08C14A18E1D2C6FB78CCA6819D28F3E03200C0F892BC84ED9930 ] PhoneSvc C:\WINDOWS\System32\PhoneService.dll
16:07:06.0454 0x1ba0 PhoneSvc - ok
16:07:06.0516 0x1ba0 [ 04F7878E7017105AB782353231561749, FB2811D98216720D4FDF0AC0EDF16C6CD33D7224B4CAFA752B4D2A839E6DD88A ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
16:07:06.0594 0x1ba0 PimIndexMaintenanceSvc - ok
16:07:06.0766 0x1ba0 [ 5D2DF0392FFD0BA4FF27F503999997C2, C4BD5145151AB08403E5B2B30894E6B95E7E4888EB3E89542FC039DD775A27C0 ] pla C:\WINDOWS\system32\pla.dll
16:07:06.0940 0x1ba0 pla - ok
16:07:06.0971 0x1ba0 [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll
16:07:07.0002 0x1ba0 PlugPlay - ok
16:07:07.0033 0x1ba0 [ 6BF7093B27EA90FD9222845D19C1BE5F, CF8A6764BB6B369258F21FD303E4CAE08632195620A0BD66B62F62F5D7B762B8 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll
16:07:07.0049 0x1ba0 PNRPAutoReg - ok
16:07:07.0080 0x1ba0 [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll
16:07:07.0158 0x1ba0 PNRPsvc - ok
16:07:07.0190 0x1ba0 [ 4C2985DAAF5859A670AE2AF478AF58C6, 3B62D04255FC9C9D46B76B740D9DEFB6F382ADB1C5D27948FABDE71E9F7CA768 ] Point64 C:\WINDOWS\System32\drivers\point64.sys
16:07:07.0221 0x1ba0 Point64 - ok
16:07:07.0268 0x1ba0 [ D67052BD0DA9C17BCBBF8AB5B6D354EE, 7FE9B414C74CF69E531B27C506216F7F5CBE00B67E90305A4A4A2ECADAA4F349 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll
16:07:07.0377 0x1ba0 PolicyAgent - ok
16:07:07.0393 0x1ba0 [ AE3B1056FC1795F18D990C4908A6ECBF, 1C41F7714EBF54DF358D9B19D6AFE7281D3EABE20038B568A12031B76E1D50D9 ] Power C:\WINDOWS\system32\umpo.dll
16:07:07.0455 0x1ba0 Power - ok
16:07:07.0486 0x1ba0 [ 5BA6B9AD03B81546BA64E488C4EF9D17, C43442577685FA1A7C32094B2F14FC92BA6B511FD9FDBA6FD82473A1B165FC61 ] PptpMiniport C:\WINDOWS\System32\drivers\raspptp.sys
16:07:07.0533 0x1ba0 PptpMiniport - ok
16:07:07.0799 0x1ba0 [ 8E284670A19FAB11857D054A738D140E, E654D540C7897367E784F9E910FAC147A15C0E457A5E4D394170B05D0E09E7B4 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:07:08.0096 0x1ba0 PrintNotify - ok
16:07:08.0127 0x1ba0 [ 21AECFF3EB5748CBE12538A2500EFDE5, A1679F21363E99E3698B9C6F7E7E3BB2877D47089BC381AF0C51B1DD8B24325B ] Processor C:\WINDOWS\System32\drivers\processr.sys
16:07:08.0158 0x1ba0 Processor - ok
16:07:08.0190 0x1ba0 [ 7E0078F1EFEB6F8F47CF85C1D73C7EBC, 831BC3CE72F29AD259DEE7121D6F785CE0A8462CFB69DD7FB1F3BDAF16CDBF3E ] ProfSvc C:\WINDOWS\system32\profsvc.dll
16:07:08.0221 0x1ba0 ProfSvc - ok
16:07:08.0252 0x1ba0 [ 596FB6C5A72F34B7566930985E543806, 870B43783DB4CF845FA72BC5E40CE76BE6DFC66FE9E9B4B0A52D6B7FE7EA65FC ] Psched C:\WINDOWS\system32\drivers\pacer.sys
16:07:08.0268 0x1ba0 Psched - ok
16:07:08.0440 0x1ba0 [ D76F885983B04E8BE2D1BDEF118A097E, 34D293F7E9D2E4BF43B2BB575D77E6A8D45D54C22F8F0214EA26712BE6CE9A49 ] Qcamain C:\WINDOWS\System32\drivers\Qcamainx64.sys
16:07:08.0690 0x1ba0 Qcamain - detected UnsignedFile.Multi.Generic ( 1 )
16:07:08.0877 0x1ba0 Detect skipped due to KSN trusted
16:07:08.0877 0x1ba0 Qcamain - ok
16:07:09.0033 0x1ba0 [ E67F64AB34C9FF06508BBCA243CEDC28, 9A74A744C2F6CBE76468A540D8E09B2A17A8E8B3C50801A40469780D1B9132AB ] Qcamain10x64 C:\WINDOWS\System32\drivers\Qcamain10x64.sys
16:07:09.0283 0x1ba0 Qcamain10x64 - ok
16:07:09.0330 0x1ba0 [ E84F66BA185934C166F8DF0FA8F88455, 2E0380E98DA29B3F43FB3FE0E1ECA52B3C9AEF54CE982D5514F70FAE81758449 ] QWAVE C:\WINDOWS\system32\qwave.dll
16:07:09.0377 0x1ba0 QWAVE - ok
16:07:09.0393 0x1ba0 [ CFBA9C976CBF6796E5DC39EF59984021, A1C956AD828FC70ED92D702516E0F88A4BDAF8C93C571D7CA20F1695FD8E70C2 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys
16:07:09.0408 0x1ba0 QWAVEdrv - ok
16:07:09.0440 0x1ba0 [ 29EF474475CA406FF5B14D6B434F1ECE, A09ABDCE77FF45E0FEB826E96C9F54A5BC6699BF644C8816BAF4CA5630C9D44E ] RadioShim C:\WINDOWS\System32\drivers\RadioShim.sys
16:07:09.0455 0x1ba0 RadioShim - ok
16:07:09.0486 0x1ba0 [ 7B2AD8C55217B514C14281AB97B4E21D, A1E295897B864B9C0177FF1C502EB060084A1783C0E7E53636291F901C2E2AA8 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:07:09.0502 0x1ba0 RasAcd - ok
16:07:09.0533 0x1ba0 [ E15A9CE1E2E7D1C8DF97A4FC1FFE6289, 44B53418D6BC51ACC567CF6917A0981889B44AE420489C9C03F5A30418B37267 ] RasAgileVpn C:\WINDOWS\System32\drivers\AgileVpn.sys
16:07:09.0580 0x1ba0 RasAgileVpn - ok
16:07:09.0611 0x1ba0 [ D60BA4C76D194472D6602FF3D2D51ADE, 01272663897685C75FFBC3F1C0CFDB8D0E1A58182049E0B607D634536A8F6400 ] RasAuto C:\WINDOWS\System32\rasauto.dll
16:07:09.0658 0x1ba0 RasAuto - ok
16:07:09.0690 0x1ba0 [ E3C82823B22463BC38AA4F8ADA852624, FF601B117F4003E2CC65B6143C2A270331EB257EE82B3BC020247D1AB1CD625F ] Rasl2tp C:\WINDOWS\System32\drivers\rasl2tp.sys
16:07:09.0736 0x1ba0 Rasl2tp - ok
16:07:09.0768 0x1ba0 [ 3655D86C5E2982B131FC0935DE24F98F, 0386B31FECDDED77450609A807097B2307361CB59B236DEC41037BDC95897463 ] RasMan C:\WINDOWS\System32\rasmans.dll
16:07:09.0861 0x1ba0 RasMan - ok
16:07:09.0877 0x1ba0 [ 3369023EB5790A75BA7DABA14B75D922, 36B63D5B74FDC932AAF1A876514024602D2F3EAF2CA33D1247CBA1E52FDB0418 ] RasPppoe C:\WINDOWS\System32\drivers\raspppoe.sys
16:07:09.0893 0x1ba0 RasPppoe - ok
16:07:09.0908 0x1ba0 [ 1E32A8CD65C4AD0A827CFEB13034DA29, 5D9A92E13020D994CCD39F701BACAFE2177A40A9CC89649441B91E3F3DECD911 ] RasSstp C:\WINDOWS\System32\drivers\rassstp.sys
16:07:09.0940 0x1ba0 RasSstp - ok
16:07:09.0986 0x1ba0 [ 1BB74617AE07539EC7C31C93F98644C7, 527F4F7ADA499814A97F68EE449F39D8A897A68B03AA24E2EE39A378D8D1DD27 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:07:10.0049 0x1ba0 rdbss - ok
16:07:10.0080 0x1ba0 [ D0221C13960E274CC539D72D5A842ED0, A5A961506B9D7429D97D0635FD69E74736C0E8405487E1D22BB5CD978A60044C ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys
16:07:10.0111 0x1ba0 rdpbus - ok
16:07:10.0127 0x1ba0 [ 1DC2CC74B51E4DC4CD5A20C1021E4010, 46B7D17EE27439F2191504D1C6F6C70B2540BD4F2261DBB1F4BE783BEA99B04C ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys
16:07:10.0158 0x1ba0 RDPDR - ok
16:07:10.0205 0x1ba0 [ 177DF954D0DEC0465A380C75F6E7F65F, 6B30C78223029BD5DBA586BF961968F85762209BA55CD031460A215B20F93AB2 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
16:07:10.0236 0x1ba0 RdpVideoMiniport - ok
16:07:10.0252 0x1ba0 [ 5D1680871054D2B0B8A971BC8AB3B837, 9CAB0B2E3857829D34A82A78B120D07E292D4D5060168D964295EB23339B7DE7 ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys
16:07:10.0283 0x1ba0 rdyboost - ok
16:07:10.0361 0x1ba0 [ 341E6830DA70F65730300DAB4CB0B490, 341EC8DB5E39963EF89E726F08730AFB2356C3BAD71CCE9EECCAB4D9B31C4863 ] ReFSv1 C:\WINDOWS\system32\drivers\ReFSv1.sys
16:07:10.0440 0x1ba0 ReFSv1 - ok
16:07:10.0486 0x1ba0 [ 23247F380832FB1BCF835587170B3E1F, 6F81F56381906CD4ED46E426EEA516FEF30EB1F4765AA4311116C9AB93A15892 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
16:07:10.0549 0x1ba0 RemoteAccess - ok
16:07:10.0580 0x1ba0 [ 2C82F4DCABAB389CEBB1C9E86C715C9C, 70354621D3D467616A419A818C54D2C89EA013C5050BA9944E3A7A4F25CAD6BA ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
16:07:10.0611 0x1ba0 RemoteRegistry - ok
16:07:10.0658 0x1ba0 [ 704F04824DEF12C5ED051A6CCC0A16A4, E9FD52E015F9BD2C25FB929366E0D38D10FF3F6ED865EA65EB7820DCBE113ECE ] RetailDemo C:\WINDOWS\system32\RDXService.dll
16:07:10.0736 0x1ba0 RetailDemo - ok
16:07:10.0768 0x1ba0 [ 176D8470B15CD9080861594F9A33FA01, CFB66D7FEB9465985C2866D64EA03B7E7BE830DCF6C02B3FE2244D7F7E5343E2 ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll
16:07:10.0815 0x1ba0 RpcEptMapper - ok
16:07:10.0846 0x1ba0 [ 1A563653DAEDFE4CA81936E0D2FD8B56, 308B0DFEBA63333D407093C449A08ABFECE118C9274100809356BDAF7FA32EB6 ] RpcLocator C:\WINDOWS\system32\locator.exe
16:07:10.0877 0x1ba0 RpcLocator - ok
16:07:10.0940 0x1ba0 [ 68E07DF3E6D1DFED440B82D3D33542B1, A80C25C2B884F0A725B8256E985D670FCFBE9C870A0380C22B51BB140820B4A8 ] RpcSs C:\WINDOWS\system32\rpcss.dll
16:07:11.0002 0x1ba0 RpcSs - ok
16:07:11.0033 0x1ba0 [ 0AC5FCDC29ED97ECDEF1276425EE2059, 8A12D1732D4AA18A9ED8416F4D4A49B81CE7C4C86ABCEE8FF28A16EA61993CFE ] rspndr C:\WINDOWS\system32\drivers\rspndr.sys
16:07:11.0049 0x1ba0 rspndr - ok
16:07:11.0096 0x1ba0 [ 12A3D1530E3F67B8664EBA923A3981E4, 8670C39EB0A7C37C17D014A8917493B776DE0829B55EFED13D91B6FA7B81CA11 ] rt640x64 C:\WINDOWS\System32\drivers\rt640x64.sys
16:07:11.0143 0x1ba0 rt640x64 - ok
16:07:11.0158 0x1ba0 [ 87CCF37EC2858FCF7689F8FC0B72F39A, 60B71BDC7388887AC7EB2C869DEAF86DD06B7EB9DEE3CF4F4DFE2D1BCE3BDAA8 ] RTSUER C:\WINDOWS\system32\Drivers\RtsUer.sys
16:07:11.0190 0x1ba0 RTSUER - ok
16:07:11.0190 0x1ba0 [ 044890BB0D6CF1E23C1087234D320509, FA6C79D24BE4ACCFAC617D2850B922BFAA7C2766AE625C725F3ACF43C934EFAF ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys
16:07:11.0205 0x1ba0 s3cap - ok
16:07:11.0221 0x1ba0 [ 28F844500ADA77447835BC586F15AAAE, A0368E0928E7AB459F7DF3E9C0ECAFDD33F5DAC6A7122689FA6CF4B55AFB4D15 ] SamSs C:\WINDOWS\system32\lsass.exe
16:07:11.0236 0x1ba0 SamSs - ok
16:07:11.0283 0x1ba0 [ ECADB026023BF6E200A552E4EA700F47, 3BE40D99EF0229EC69E584D2351806F77A523EF362CC5094066DC4B9F7EB002A ] SbieDrv C:\Program Files\Sandboxie\SbieDrv.sys
16:07:11.0299 0x1ba0 SbieDrv - ok
16:07:11.0315 0x1ba0 [ 6E78D6CA33ECE9C7F0A7B0775198BA4D, 81F07C1D64FD66BFC0DC817045175EBA2096EC38D5D57584D114283DFA5899F4 ] SbieSvc C:\Program Files\Sandboxie\SbieSvc.exe
16:07:11.0330 0x1ba0 SbieSvc - ok
16:07:11.0377 0x1ba0 [ 530F797129776AA7E81994783A97E2AD, F131EF036702C6E741E5A6851AE07E81043CE8BAEED0768838C0F31CE14FEC1A ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys
16:07:11.0408 0x1ba0 sbp2port - ok
16:07:11.0440 0x1ba0 [ 0C12493B333B96797AFC5F3C7831C051, BEE786D7ED14221B1A9450060597393AC44116D776B913E045B5F6066D720F74 ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll
16:07:11.0471 0x1ba0 SCardSvr - ok
16:07:11.0486 0x1ba0 [ 40110802D217FE1CB581D9A70B1FD16F, CCB920593CCC6663676039F3F731536DFEF535C3F715F6DB6F34D0D733BEF89B ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll
16:07:11.0518 0x1ba0 ScDeviceEnum - ok
16:07:11.0565 0x1ba0 [ 9B6B1D4DB35A3D9BEAF023BC95E1F49D, CA44124CA3E9958FB77A891CD234A993B63E8AC6632AE801CDEC6666267E7C7E ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys
16:07:11.0580 0x1ba0 scfilter - ok
16:07:11.0643 0x1ba0 [ DE23637D300F44F2ECE9E776FD174617, 90503183A6C353D0DE103771CB2A59CD04976E447B1F676572A3B870A829BBE0 ] Schedule C:\WINDOWS\system32\schedsvc.dll
16:07:11.0721 0x1ba0 Schedule - ok
16:07:11.0752 0x1ba0 [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] SCPolicySvc C:\WINDOWS\System32\certprop.dll
16:07:11.0783 0x1ba0 SCPolicySvc - ok
16:07:11.0815 0x1ba0 [ B32F13993145E815D7280C6F55B9523B, A3269AA65F89F9F0BFD5C98F66DDEA3FB92D1C097FA11959593A2074E7460DE3 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys
16:07:11.0830 0x1ba0 sdbus - ok
16:07:11.0861 0x1ba0 [ 723C6C3DE056D3EB76F7520BEF5947B4, 49FFDAD56BBD652404A587F282867161BAE6D9E61BC2C819DDC75CE10A8E3C63 ] SDRSVC C:\WINDOWS\System32\SDRSVC.dll
16:07:11.0893 0x1ba0 SDRSVC - ok
16:07:11.0908 0x1ba0 [ DE6D7DC78D956928F59F7415A0F41E13, C0F8EEED29BF63A0D8FB5A0286C1C768BFEF598EC52715D910B5BB1A76231805 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys
16:07:11.0940 0x1ba0 sdstor - ok
16:07:11.0955 0x1ba0 [ EBD07BD20B5E0E92A398566EF8720F79, 8A88C861D4113B9938C32CBD28FD3D7F1C3133E700E23E17F5DFD7B26CCDA04A ] seclogon C:\WINDOWS\system32\seclogon.dll
16:07:11.0986 0x1ba0 seclogon - ok
16:07:12.0002 0x1ba0 [ B7B9EEBCB7466338403A75D15AC120D7, B8F79DA71F8CD0F30983F7D92B625A431C212DD543DE2B3DC03EC5A68C41B00D ] SENS C:\WINDOWS\System32\sens.dll
16:07:12.0033 0x1ba0 SENS - ok
16:07:12.0096 0x1ba0 [ F6A6B608881AAEED7A3ACA7806A7E74C, 653782C984E4C6F1A4BC6B4C7EF840C9263166DA9EE324BB072A1E7FFC25BED3 ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
16:07:12.0190 0x1ba0 SensorDataService - ok
16:07:12.0236 0x1ba0 [ 0F940F413D9F88E432C42D0F2ABE2BBB, 201BF2C7FCFF66DDB85F693FFD6C1E3303F8EEF6DC1154D0D99D38E6C5247130 ] SensorService C:\WINDOWS\system32\SensorService.dll
16:07:12.0283 0x1ba0 SensorService - ok
16:07:12.0315 0x1ba0 [ 7363A65C738F5A5292D7BDBE55D8C3C2, C53C10A0AE58613DFCC91E62E004D9B188E4793C2A19B4BE871A705EEE77048E ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll
16:07:12.0330 0x1ba0 SensrSvc - ok
16:07:12.0362 0x1ba0 [ 67585C295FF2D221679E376B68893B35, 4B5E9A8DA8C6F7B1F7129F80A0603503D467E5650306FB4C309977D74037E46B ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys
16:07:12.0393 0x1ba0 SerCx - ok
16:07:12.0440 0x1ba0 [ B8C4852CBCAAC1374C08EC7445443824, DDE577A81B3E11B5B56096317BC47AA6E286573042407B96A9D29BE981F3FA4D ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys
16:07:12.0471 0x1ba0 SerCx2 - ok
16:07:12.0486 0x1ba0 [ D3A103944A8FCD78FD48B2B19092790C, 252DB8395DA8639E748658D3BE7863C1700E27AA5C41BB700CFCE193FE3F04E9 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys
16:07:12.0518 0x1ba0 Serenum - ok
16:07:12.0580 0x1ba0 [ 249A563C48DFD9E42A37587653E003BB, D022FAE2B7AC9D99B9F230A4DF0B045891588162587E1F468B5E05C8DA98AA9A ] Serial C:\WINDOWS\System32\drivers\serial.sys
16:07:12.0627 0x1ba0 Serial - ok
16:07:12.0658 0x1ba0 [ 0F5B43074AE731D2C6F061241C9D84A6, 05CFEB30A4FC11441552D37687608C8C2FD6DC2F2266AE9D6526753E26283DE6 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys
16:07:12.0705 0x1ba0 sermouse - ok
16:07:12.0768 0x1ba0 [ CD90E445F6458512A5BA884D561EFCF1, E792FAB8AFF4126C1977024060842D788A06475139782896AFD7B39C85FCDF3F ] SessionEnv C:\WINDOWS\system32\sessenv.dll
16:07:12.0861 0x1ba0 SessionEnv - ok
16:07:12.0877 0x1ba0 [ D9FE59276BD56A9643C32D5FACE2F251, 591862D868A545F468496DE97DEE42C9DB3AFBFC0881CBA79EB6641A254AF033 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys
16:07:12.0908 0x1ba0 sfloppy - ok
16:07:12.0971 0x1ba0 [ F8083C536BEDE61AFB4069D8A8C16DA7, 13AADAD7B5582911B8ABBE0CF7132CC517F7413A361CCF8ED502F803D061FFA3 ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
16:07:13.0049 0x1ba0 SharedAccess - ok
16:07:13.0112 0x1ba0 [ AE6E4D3172FBF45B944668CB3998B8A8, E7D7F98CB464C236A17069987F7B678D7688D9D577334151EF09DF5C6F22AFFC ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:07:13.0205 0x1ba0 ShellHWDetection - ok
16:07:13.0237 0x1ba0 [ ABBE803FE0BDAE0E5BE74DDEFBE62F23, 5009F489F7A6D66628C23A0FA3D7632399D0AD72BD11A1B70D7E768ED507377D ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys
16:07:13.0252 0x1ba0 SiSRaid2 - ok
16:07:13.0268 0x1ba0 [ 6043DF55CFE3C7ACF477645FA64DEA98, 0E18EF8EC589841BC319C17FBABA7383FD247C9441ABF64A0D830976F3E611AE ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys
16:07:13.0299 0x1ba0 SiSRaid4 - ok
16:07:13.0330 0x1ba0 [ B922D32039A3B5991E64429EC4EE52A9, 5EB7EB1F6D2C25F06044D8CA9F3BA0471FB40C8C96432BDC2C80CC36DC49BA0B ] smphost C:\WINDOWS\System32\smphost.dll
16:07:13.0361 0x1ba0 smphost - ok
16:07:13.0408 0x1ba0 [ 01177453C9F498EABD49CCF1E50437C8, CF8886916A93AB35E164D3F92337A2F7EF0475673CAB533EC56CBF24FB7F5231 ] SmsRouter C:\WINDOWS\system32\SmsRouterSvc.dll
16:07:13.0487 0x1ba0 SmsRouter - ok
16:07:13.0518 0x1ba0 [ 0B6BECB2651EF947249CDC3715E8B9CC, EB7281AF3529DE16FE8CD0C0C0C8877641865A5864D58628DBAB865B510B0D0B ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
16:07:13.0549 0x1ba0 SNMPTRAP - ok
16:07:13.0643 0x1ba0 [ 1A6CB30F0EFC1632E6F1B852CA892583, 0E6BDCEE837AEC3D02C437478143C75550C94A50E36895DDB095F54A2FA18E2A ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys
16:07:13.0690 0x1ba0 spaceport - ok
16:07:13.0705 0x1ba0 [ E1C158F6C00359278727A2CEE5D2ED71, 1591F942C6DD99D3BA7FD4D72D957864117B2263F205468A15F1D1417C6F799D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys
16:07:13.0721 0x1ba0 SpbCx - ok
16:07:13.0752 0x1ba0 [ 199C8C07241F1A14C5B0527647A6D2D7, 7A704F750BDEF21507230EAE437DAB565FDB0909177F05B8FC48DBF925E631A9 ] Spooler C:\WINDOWS\System32\spoolsv.exe
16:07:13.0830 0x1ba0 Spooler - ok
16:07:14.0112 0x1ba0 [ 8D5EBE968C95BDD31F65F74C3236B19E, 7178007B02A0BDC60EA757B9CA1C855436C41946267A4F400A85C8F18C4217D6 ] sppsvc C:\WINDOWS\system32\sppsvc.exe
16:07:14.0596 0x1ba0 sppsvc - ok
16:07:14.0690 0x1ba0 [ B5C5436E7DEA7048822809D16B6E861D, 608641408574CA07A23B2B94A096BC5D2D28828E33B5C2F86CBEA0E49CCE57A5 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys
16:07:14.0783 0x1ba0 srv - ok
16:07:14.0846 0x1ba0 [ ACCFA2FAAF77F5F9D72D3496B36057A8, C874CFB46C732ABEAB5B2A1751E043AA32E5D8DA78C526368986E878A547897A ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys
16:07:14.0971 0x1ba0 srv2 - ok
16:07:15.0002 0x1ba0 [ FEABA2601AD0D819760F84D1A3ECE5AF, 838127FC6C54F643ADFE1BFBBBF5AA66A1C82272DB9AFAA5B3B14731834BC307 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys
16:07:15.0065 0x1ba0 srvnet - ok
16:07:15.0112 0x1ba0 [ 8C1786C073A496B8C0C8A5450A4FFD5B, 13BF3B42A63CE6C461259D4CE767FB0DE1F10433512A11D2B2C033E36E652542 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
16:07:15.0205 0x1ba0 SSDPSRV - ok
16:07:15.0237 0x1ba0 [ 217A982201052EFC8C3C0C88D229791C, 11509E3446ED7B75C9A05CDC4A7AF18926CB463E0D98BAE1CD5DB43E88F94F90 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll
16:07:15.0315 0x1ba0 SstpSvc - ok
16:07:15.0502 0x1ba0 [ A443DC17F146CDC8A39CDAB989A49CC2, A4F4371FE536F2DB8A76B04544B7364C1E9663C323D4B33858C8B9B33573AEFC ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
16:07:15.0705 0x1ba0 StateRepository - ok
16:07:15.0737 0x1ba0 [ CCDA497C880AD16D87EDFAEFCFB2EDF5, 622599AA35ACFF0375DA252210BE42E7E90F30EDFEFF2F62FDB14AE6E45B5F88 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys
16:07:15.0752 0x1ba0 stexstor - ok
16:07:15.0799 0x1ba0 [ 031E6ABABF940133B92613E7BDF3A169, E47F1FCAA399BB4D0BDC37A1D124E63B26B17C1333073A3FD2E680AE3B5A0068 ] stisvc C:\WINDOWS\System32\wiaservc.dll
16:07:15.0893 0x1ba0 stisvc - ok
16:07:15.0908 0x1ba0 [ BF8EA6FC3358C2F69678E3E94F764F84, D274DAD7B5756DD49CA44277C73497F1EC465C8E365CC730CD194932C3825920 ] storahci C:\WINDOWS\system32\drivers\storahci.sys
16:07:15.0924 0x1ba0 storahci - ok
16:07:15.0955 0x1ba0 [ 32FF460DA8C1F370F5C08B7654899B73, 0C9D5D38D033109BA672ABAFEF0F0CD295E9FFA108ACFCA9044429D9B2CA9057 ] storflt C:\WINDOWS\system32\drivers\vmstorfl.sys
16:07:15.0971 0x1ba0 storflt - ok
16:07:15.0987 0x1ba0 [ CC21DB3EF619B9480FE31A4EFE92CBEB, 256EFCA2F231F41D34250E1460BF88894D943EAE83A0B153FCADE700AB4DE11E ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys
16:07:16.0002 0x1ba0 stornvme - ok
16:07:16.0033 0x1ba0 [ 390B8A75768E2689586539C224520895, D72F52E6D7AC5DC318FF9C1DF1F4E8A435D65B6BB59D7F1642222EC026BC54DB ] storqosflt C:\WINDOWS\system32\drivers\storqosflt.sys
16:07:16.0049 0x1ba0 storqosflt - ok
16:07:16.0096 0x1ba0 [ 0C3826B2DB8D45A6B577007EFA0D24C2, 0DBF01031597C33E85BABF1491CF903222C06175CBC39B4056D170F90674592F ] StorSvc C:\WINDOWS\system32\storsvc.dll
16:07:16.0158 0x1ba0 StorSvc - ok
16:07:16.0174 0x1ba0 [ 770A92D9D3A0BF61C97C3AFCB36847D9, 21A8CC3F8E63B971C4FF8DDED5C7032E093A7B0F16E2128A9BD2E890BA76A1D9 ] storufs C:\WINDOWS\system32\drivers\storufs.sys
16:07:16.0190 0x1ba0 storufs - ok
16:07:16.0205 0x1ba0 [ 736A2418E3E7F3DB3CF6EB0A55D1D581, 2D3BBC4E0C7B51EDE7479A978E4BCD5F47A7257745179F01D2D9ECFD83CCCC82 ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys
16:07:16.0221 0x1ba0 storvsc - ok
16:07:16.0237 0x1ba0 [ FA8F6E3AD3F92B35D2673CC9FD20429C, 62F81CBACF7E16FEF9DE3BE95FA5C9BDB51BAE4667AE5AE71399864A390FF6D5 ] svsvc C:\WINDOWS\system32\svsvc.dll
16:07:16.0268 0x1ba0 svsvc - ok
16:07:16.0299 0x1ba0 [ BD98B0225BCD49E8A62F4F8EE1D1F613, CDAD11969B2DA417079547724BECC3DB4FC4711B3C01590EB0D02774B69B6D90 ] swenum C:\WINDOWS\System32\drivers\swenum.sys
16:07:16.0315 0x1ba0 swenum - ok
16:07:16.0362 0x1ba0 [ 2EAC7BF69DC104F9AC913D5E00550334, 0698A48B45EF23D39370797D567326596687A3A5FA5D757374DE5BB93E9E4ACC ] swprv C:\WINDOWS\System32\swprv.dll
16:07:16.0408 0x1ba0 swprv - ok
16:07:16.0440 0x1ba0 [ CAE4B27B469C583131EA5AAE622F5D76, 3979006EB22489D1AAD2EC2E9F32C286EEDCDB83B37B97E58BA831263EC33B84 ] Synth3dVsc C:\WINDOWS\System32\drivers\Synth3dVsc.sys
16:07:16.0455 0x1ba0 Synth3dVsc - ok
16:07:16.0549 0x1ba0 [ 34A3EB84B2A830E6F450B8F885AE4E6E, E61AC6D17B815CB71F26D71CA3CCAFD9E66A170E3ED2E64A4F20D097A0C683B5 ] SysMain C:\WINDOWS\system32\sysmain.dll
16:07:16.0721 0x1ba0 SysMain - ok
16:07:16.0783 0x1ba0 [ FA8E0A9C648035CA1B47C9DA77EDB7EA, 4097AB89D2DB4741B138F3939AED4C5DB00BA124BF66E5DC2218ACF3A37513A3 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
16:07:16.0862 0x1ba0 SystemEventsBroker - ok
16:07:16.0893 0x1ba0 [ 6979A147C0D5C5CAB621ADC394D32B80, C30B8E3D271A1591D965559EA4A11A1BE63A34D832ED53B26CE91799C888DF77 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
16:07:16.0924 0x1ba0 TabletInputService - ok
16:07:16.0955 0x1ba0 [ 86B62FC8CB89946446F9B24FE49A66FD, 7B095310D1C78B82E5ACAC4713E101DD1323A3CF6FB39218C2E78ABE2B0385B5 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
16:07:17.0018 0x1ba0 TapiSrv - ok
16:07:17.0127 0x1ba0 [ CF63BF6AAEDF721E37F9E216FD321B8E, 73FF268E5DBCEFA9C5322420729E0EAA4F74A7C51E6ED3C988134AC5E875A74C ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys
16:07:17.0346 0x1ba0 Tcpip - ok
16:07:17.0533 0x1ba0 [ CF63BF6AAEDF721E37F9E216FD321B8E, 73FF268E5DBCEFA9C5322420729E0EAA4F74A7C51E6ED3C988134AC5E875A74C ] Tcpip6 C:\WINDOWS\system32\drivers\tcpip.sys
16:07:17.0627 0x1ba0 Tcpip6 - ok
16:07:17.0643 0x1ba0 [ 17F37EC9042D84561C550620643D9A85, B01620BA319A1383D403E6E50C7724879520F3267654556D975CAFFF91A82C78 ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys
16:07:17.0674 0x1ba0 tcpipreg - ok
16:07:17.0705 0x1ba0 [ 91D3F2A6253EF83EFBD7903028F58C4D, C15768CCCF734093B0F8A5E76882B35927B716E4F14D91ACEE897E1C078D43D1 ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys
16:07:17.0721 0x1ba0 tdx - ok
16:07:17.0737 0x1ba0 [ E730D0EB1B84EBC98423FC8D285EDBC0, 442DD433F9D22304E64EC7ACFC4E04892D4D92D8AC545A3530FC932A2EEC4767 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys
16:07:17.0752 0x1ba0 terminpt - ok
16:07:17.0815 0x1ba0 [ 410EC733547D7FE5709D108015088460, CA12E46D6DB2897223C2113AE01D805E3E6CDE9ACAE17A1749DFB40CDE7A8736 ] TermService C:\WINDOWS\System32\termsrv.dll
16:07:17.0908 0x1ba0 TermService - ok
16:07:17.0940 0x1ba0 [ D009D1BC14FD5F2AC93D1878735F6C39, D8BCE505B66E05BC00075E46B38359CA4D0FA484EB7981A74221885E8A1FFB87 ] Themes C:\WINDOWS\system32\themeservice.dll
16:07:17.0971 0x1ba0 Themes - ok
16:07:18.0002 0x1ba0 [ 5F27DE2082E16D4C1D6C627C8ECBD341, 08DA3EB3EF2B2006B6F9F2C8C149DF55DE6738975D556206A814096CAB5C1411 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
16:07:18.0033 0x1ba0 TieringEngineService - ok
16:07:18.0080 0x1ba0 [ 004E2395FE15814BD8250430F5EEC523, 2649AA073FAF0F72835BD834465231C6A44BF5BB31DE0E18A3844BC967AE1C92 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
16:07:18.0143 0x1ba0 tiledatamodelsvc - ok
16:07:18.0174 0x1ba0 [ 7E81E3E0D7F83BFE3C3975020B6C7F12, 316F9415646CC7A4E9A5F1E07310D433457E623B3E589543E4A6C73C4F77712C ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll
16:07:18.0205 0x1ba0 TimeBroker - ok
16:07:18.0252 0x1ba0 [ 87B9ABB965F7AF987D52791F0DD1663D, 6E42F764D47ACAD644E5F547E503B7AEA8D700C335674D1B0EB5493914F747E7 ] TPM C:\WINDOWS\System32\drivers\tpm.sys
16:07:18.0299 0x1ba0 TPM - ok
16:07:18.0330 0x1ba0 [ AA84AF93CE5AF1F05838B51D20295419, 85B3EE773C691EEDFA080CD9C59D31CB58A5BC577AEE91A929F5DFBE1368AB6D ] TrkWks C:\WINDOWS\System32\trkwks.dll
16:07:18.0377 0x1ba0 TrkWks - ok
16:07:18.0440 0x1ba0 [ E50DD57F496CED8873FA3E7D38BCCD42, 36B95F6F2CF48078C6B19FB452C87BB07E95C8804A5C6B526D349AC6227CAB26 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
16:07:18.0487 0x1ba0 TrustedInstaller - ok
16:07:18.0518 0x1ba0 [ 48E828C66AB016E48F2CB4DD585315FD, 063809B610F6B177B65D62D12605FB94F108DB26A9FD3067E6D6C51F0D92E774 ] tsusbflt C:\WINDOWS\system32\drivers\TsUsbFlt.sys
16:07:18.0565 0x1ba0 tsusbflt - ok
16:07:18.0596 0x1ba0 [ 267C76EE60736EA5A1811A53FA02AABE, 28D4C4CB972534204B8336D0403B70E4EFE4F8369ABDE7401FFCCF7D4E3EA165 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys
16:07:18.0627 0x1ba0 TsUsbGD - ok
16:07:18.0658 0x1ba0 [ 8CE72F094B822AD5EE9C3A3AFC0C16B6, 827CCD849544E1DA364B03DBC82A848D2F93AD32BA14ED52709C609BC70CE5CA ] tunnel C:\WINDOWS\System32\drivers\tunnel.sys
16:07:18.0721 0x1ba0 tunnel - ok
16:07:18.0752 0x1ba0 [ 127925766866C52F147A2FFC0C0358A5, DCDF38A456E0BAAEE1E54FD67C3DEB4A036F116036FBD28073201B6C27C2C2DD ] tzautoupdate C:\WINDOWS\system32\tzautoupdate.dll
16:07:18.0799 0x1ba0 tzautoupdate - ok
16:07:18.0830 0x1ba0 [ 42C546414F80BD6C0137FC3A106F8A69, 067FFCAF0059935851888BD984E848E4E1A6CC1941A8F4534067CCF0B2A3B2E6 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys
16:07:18.0846 0x1ba0 uagp35 - ok
16:07:18.0862 0x1ba0 [ 1686DBC81748B096232B15F16C302985, 63D72D1838C42A95599AF3C0B19A069E310ADB091208011D7D6FBAC968D1A59A ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys
16:07:18.0877 0x1ba0 UASPStor - ok
16:07:18.0924 0x1ba0 [ 82D3B1F4D80057826AA649D78147DE36, 344A738F6866BFD3095BB802206DDB2F9E9AD89DC39CAA7DE96455F410683829 ] UcmCx0101 C:\WINDOWS\system32\Drivers\UcmCx.sys
16:07:18.0955 0x1ba0 UcmCx0101 - ok
16:07:18.0987 0x1ba0 [ 1C95F7CE37D9EFB90EBE987A9712356C, B9EE7743ADA50276F05D735C5C29E44039D630A7DC93766A0EAF400DA037E4AF ] UcmUcsi C:\WINDOWS\System32\drivers\UcmUcsi.sys
16:07:19.0002 0x1ba0 UcmUcsi - ok
16:07:19.0018 0x1ba0 [ AED081772091C98173905E2DF28C223B, 08541CF3354EBB634BD590E0019128F70A6FCA9075B7E785A9E9BD82EC234DD3 ] Ucx01000 C:\WINDOWS\system32\drivers\ucx01000.sys
16:07:19.0049 0x1ba0 Ucx01000 - ok
16:07:19.0049 0x1ba0 [ DCA34A111C29E4578DF2B8CEA3C7CDBD, 86BCE4C8EC228724D5896067A85A4768B6069D10A482ECC51A8F828DBD3880C9 ] UdeCx C:\WINDOWS\system32\drivers\udecx.sys
16:07:19.0096 0x1ba0 UdeCx - ok
16:07:19.0112 0x1ba0 [ 718A956AE00CE086F381044AB66CC29C, E4EED1600C72CECE1D4507827C329A93D356BBA027470FCF6C4B5C1651DED643 ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys
16:07:19.0143 0x1ba0 udfs - ok
16:07:19.0174 0x1ba0 [ BA760F8E66428BA9FF1E8BFBC6248136, BE7DCBB293B12672CB3653E640C46F669BD738D320F34F4FA4A26F6B248561F0 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys
16:07:19.0190 0x1ba0 UEFI - ok
16:07:19.0205 0x1ba0 [ 05DD22294A4F3F89E52351C7721E6D2C, 300A7D4BD5F26814CF73400E01DEB810CA3F91BD190B3D37B74ADF080F582829 ] Ufx01000 C:\WINDOWS\system32\drivers\ufx01000.sys
16:07:19.0221 0x1ba0 Ufx01000 - ok
16:07:19.0237 0x1ba0 [ 2B1DABA97DDF5365FC66EE7DEDD86A13, 2FF3355862938B37EE63FCA149415CE5032BF54747B07517BB21460733B65AD8 ] UfxChipidea C:\WINDOWS\System32\drivers\UfxChipidea.sys
16:07:19.0252 0x1ba0 UfxChipidea - ok
16:07:19.0283 0x1ba0 [ 0B1013A5204A6B9EEB38F4EE1E430CE6, 9E04DB9BCAB951F87D1D142818BDDE1526BA9FEBD5C8C6351E47EC7F00BEE036 ] ufxsynopsys C:\WINDOWS\System32\drivers\ufxsynopsys.sys
16:07:19.0299 0x1ba0 ufxsynopsys - ok
16:07:19.0346 0x1ba0 [ 63451BD694651307254B8DD37A3D79C7, C781E2D876AF42D5972CCDCF86B7A59F6AF8AF0C6350647F3FA1B209119B5EF9 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe
16:07:19.0377 0x1ba0 UI0Detect - ok
16:07:19.0393 0x1ba0 [ 6DE78C04BF32ECA7AF3064F53687C9A5, 164D3BB24EBA3EAF613799928063FE75220A4E583D985F53A895017782C18600 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys
16:07:19.0408 0x1ba0 uliagpkx - ok
16:07:19.0424 0x1ba0 [ 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4, BA2E6F16B6B3B54C943F1E7B9F79A6D1332A7ED228D754CC5AE70E3CD78B1F37 ] umbus C:\WINDOWS\System32\drivers\umbus.sys
16:07:19.0440 0x1ba0 umbus - ok
16:07:19.0471 0x1ba0 [ 11680607944A719EF20E0E740785712A, 1567C2B3AAD702DCC2DC9C6B7B92EE5B681C06701A39DAC3AA7E2BE9E1E04F47 ] UmPass C:\WINDOWS\System32\drivers\umpass.sys
16:07:19.0487 0x1ba0 UmPass - ok
16:07:19.0533 0x1ba0 [ FD949725D9EB52C0B87435CDE1134668, 96E2B3D3379E9AE225E5A4C5251207F1E7DA573901F4F026758EDE9FAEF4F2C5 ] UmRdpService C:\WINDOWS\System32\umrdp.dll
16:07:19.0580 0x1ba0 UmRdpService - ok
16:07:19.0643 0x1ba0 [ CB902A15DD21B363FECA5DCCF34F5C57, 6A0836A12A410EBD5C667982852B58CA9E9EDB11EA666C413CC0F811E01A549D ] UnistoreSvc C:\WINDOWS\System32\unistore.dll
16:07:19.0721 0x1ba0 UnistoreSvc - ok
16:07:19.0783 0x1ba0 [ ADF8DBE1212418207F6D5F6F4E8A9E07, 8999DA19B3C6BC5475AD1F55366DBA547B856FB2833552A708A223DF720CDC15 ] upnphost C:\WINDOWS\System32\upnphost.dll
16:07:19.0862 0x1ba0 upnphost - ok
16:07:19.0893 0x1ba0 [ 2410A0C20D21A25E6C01979FA886BE90, DD3F92D8CF110D47B9E36BA0EB10EB34C0FDD28FE0D57E4B60F9326703388F75 ] UrsChipidea C:\WINDOWS\System32\drivers\urschipidea.sys
16:07:19.0908 0x1ba0 UrsChipidea - ok
16:07:19.0924 0x1ba0 [ 6E59CE43B6BA5AA1ADCF36A4DBBB92BB, 647D66775A90F67D803043DE8C8AE8BC2F7A042A8DCF9C95BF5458C79609481B ] UrsCx01000 C:\WINDOWS\system32\drivers\urscx01000.sys
16:07:19.0940 0x1ba0 UrsCx01000 - ok
16:07:19.0940 0x1ba0 [ E8A59FA109A22FC07E44BDFCC9727DBD, 0DC5928C0FF7E5B38917660D6EFECCC22172DB0BB9B23216F33E750790529C16 ] UrsSynopsys C:\WINDOWS\System32\drivers\urssynopsys.sys
16:07:19.0955 0x1ba0 UrsSynopsys - ok
16:07:19.0987 0x1ba0 [ D8A44550ECE102B6443F5D54DCE7DAB3, 97F5AE7B17DAC4A4F3186C77116BC8E49874FB0018C99D8E2CDA29D89E8B0912 ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys
16:07:20.0002 0x1ba0 usbccgp - ok
16:07:20.0033 0x1ba0 [ 66B3D22DAB5312FF238ABF5C6D9F8FAB, 4A644AFC1C27D692D352BEB8801398A00EA5B4055476063AF905A0A46DDBF8BB ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys
16:07:20.0065 0x1ba0 usbcir - ok
16:07:20.0080 0x1ba0 [ 3E4F20DB902D2E2914F3FF3DB9772200, F3D32BE06A26164B5F6E8DB67160D1DBBDC6D14666EEF84EA43C78CB7706E31C ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys
16:07:20.0096 0x1ba0 usbehci - ok
16:07:20.0112 0x1ba0 [ 41F7F00D76904416EF1F9EFA1A4C37A2, 7A4250EB2E2E0037B3AE1480C13B229ECFF5C575E68E4F934EE011DB1833B46A ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys
16:07:20.0143 0x1ba0 usbhub - ok
16:07:20.0190 0x1ba0 [ E7463CE8579A0418A98BE9BE42C647D7, 923CD51C82FCF9DC4E9EEA99E53634EE07EBF62FB5DFC337F01309D7D5C7622C ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys
16:07:20.0221 0x1ba0 USBHUB3 - ok
16:07:20.0252 0x1ba0 [ DAB35CCA86F5FBE77D870A40089BC4A1, 4A47D59D882D0F2B93F2EE7F10995E7D68B58009434E2CBD04C659E0D1F059D8 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys
16:07:20.0268 0x1ba0 usbohci - ok
16:07:20.0283 0x1ba0 [ 21162F65C7756AAECAEBED9E67D0A5FE, DE3B43964171DB5B0464DA5E7A674A5D200A8695E6EF1AE2030681066ABA2688 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys
16:07:20.0315 0x1ba0 usbprint - ok
16:07:20.0346 0x1ba0 [ 4AAD6547953D373A1EB5B2DF583D868B, 4E3DCEC9644550996C314FCC39F885DDE4AA7AD821B8596D96C5BEA5D60795F7 ] usbser C:\WINDOWS\System32\drivers\usbser.sys
16:07:20.0377 0x1ba0 usbser - ok
16:07:20.0408 0x1ba0 [ 8949F77132A4F8F3BA17C6727099F002, 86AD4A2263B34983335180FDAE775D1744E042D2A11300D27DF546F15F285A25 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS
16:07:20.0424 0x1ba0 USBSTOR - ok
16:07:20.0455 0x1ba0 [ 8B3E458A8851F9A3B2109B1680EE1159, 753AC8F82F65564F00EA2F60B43E4B815FEAABE0DA35B6356210A5F4B1CA3EFC ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys
16:07:20.0471 0x1ba0 usbuhci - ok
16:07:20.0518 0x1ba0 [ 4B13B61CBB9CC3CB373C60B930D648F5, C79D10A1BF2B6BF141DD37A90BCCA0E1F2AF31B5028BB21537A8EE6EED630F5B ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys
16:07:20.0549 0x1ba0 usbvideo - ok
16:07:20.0596 0x1ba0 [ 9E9D58F5E1702955B2F4D62996F80E8E, 6C21C250B9D98346D0D5CB7D6C11AB120A1D195C28313BDB0CE532663F0114E2 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS
16:07:20.0627 0x1ba0 USBXHCI - ok
16:07:20.0643 0x1ba0 [ FECB9A2BDE6DB505C346490C3746FEEA, F2CFAC58DE3F467B74B660F68F44EE72AEDAE33499DCF92C7AACD108803C62A9 ] usb_rndisx C:\WINDOWS\System32\drivers\usb8023x.sys
16:07:20.0658 0x1ba0 usb_rndisx - ok
16:07:20.0737 0x1ba0 [ 612E13635C9DCFD6F3C926A8C393F20E, 6A4FCEA17B9E36C46AAEB14DF92AFFA372E719BC5B292CB8BC1E791A456A0587 ] UserDataSvc C:\WINDOWS\System32\userdataservice.dll
16:07:20.0877 0x1ba0 UserDataSvc - ok
16:07:20.0940 0x1ba0 [ 4500C83EE55F99487FBF0C03280B0628, F9CFB057CEE9AC562A8665CB2E56E686F0C34EFADF29ED058461456F129D1E00 ] UserManager C:\WINDOWS\System32\usermgr.dll
16:07:21.0033 0x1ba0 UserManager - ok
16:07:21.0049 0x1ba0 [ 6ACE7489410ED99F68F1C13D307C6E1A, B5533735ED3F34719D5B83E032511102555499D5F00A92831A190D7156B36124 ] UsoSvc C:\WINDOWS\system32\usocore.dll
16:07:21.0112 0x1ba0 UsoSvc - ok
16:07:21.0112 0x1ba0 [ 28F844500ADA77447835BC586F15AAAE, A0368E0928E7AB459F7DF3E9C0ECAFDD33F5DAC6A7122689FA6CF4B55AFB4D15 ] VaultSvc C:\WINDOWS\system32\lsass.exe
16:07:21.0127 0x1ba0 VaultSvc - ok
16:07:21.0159 0x1ba0 [ E1BE37312785A71862516F66B3FD24CE, D248C513DBEACB192653C6E46809209F341771B146544BBF43B86369280B4F8B ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys
16:07:21.0174 0x1ba0 vdrvroot - ok
16:07:21.0221 0x1ba0 [ EAD55A7EC50B0E93B73ABDA29E387548, E69625AA34F6A002C612376DDB756ACE161C23DEAC79A7811F862B1B8A670C78 ] vds C:\WINDOWS\System32\vds.exe
16:07:21.0283 0x1ba0 vds - ok
16:07:21.0299 0x1ba0 [ E42C0F2850735FF9D908B9DB581E6314, E2204A56BF37FC57CD2ED96E3F908882D72B4BFF1BFB97C5172C851F1E4F9650 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys
16:07:21.0330 0x1ba0 VerifierExt - ok
16:07:21.0362 0x1ba0 [ EC15FD6A28757793E2DA394CD94ABD52, DC758BBEE9C6952D7B3F7171EF67B037B4068E88189A2C4A894122D1D1209468 ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys
16:07:21.0424 0x1ba0 vhdmp - ok
16:07:21.0424 0x1ba0 [ D0C9632C350F46786643A069251BC249, CF65BA0D3F3D2B821C10E2D4F53F5B6BF6236CA9767419392A561CFA79254C3B ] vhf C:\WINDOWS\System32\drivers\vhf.sys
16:07:21.0455 0x1ba0 vhf - ok
16:07:21.0471 0x1ba0 [ E886CB75DA2B6EB35469EF10135624C7, 3AFC59A0709B984F517A918D5BBEBEB1C80001BEC87C133447DCEAEDE00E516D ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys
16:07:21.0502 0x1ba0 vmbus - ok
16:07:21.0534 0x1ba0 [ 46D2EC27820EC0F798F85821E53C2942, D298A7D6AC16F76A069F843C8DD323ECB340D361733CB9B076BCDE8FC5F1FEFC ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys
16:07:21.0549 0x1ba0 VMBusHID - ok
16:07:21.0580 0x1ba0 [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
16:07:21.0643 0x1ba0 vmicguestinterface - ok
16:07:21.0658 0x1ba0 [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll
16:07:21.0705 0x1ba0 vmicheartbeat - ok
16:07:21.0721 0x1ba0 [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
16:07:21.0752 0x1ba0 vmickvpexchange - ok
16:07:21.0768 0x1ba0 [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicrdv C:\WINDOWS\System32\ICSvc.dll
16:07:21.0815 0x1ba0 vmicrdv - ok
16:07:21.0830 0x1ba0 [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll
16:07:21.0877 0x1ba0 vmicshutdown - ok
16:07:21.0893 0x1ba0 [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmictimesync C:\WINDOWS\System32\ICSvc.dll
16:07:21.0924 0x1ba0 vmictimesync - ok
16:07:21.0940 0x1ba0 [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicvmsession C:\WINDOWS\System32\ICSvc.dll
16:07:21.0987 0x1ba0 vmicvmsession - ok
16:07:22.0002 0x1ba0 [ 31EFC43DA99BB96A35CE091F2FCAE58A, 925E7B7F5DC72EFFD1D6EF530BA9F088AF7B6A56486FB79BFBEECD9E428230AE ] vmicvss C:\WINDOWS\System32\ICSvc.dll
16:07:22.0049 0x1ba0 vmicvss - ok
16:07:22.0049 0x1ba0 [ B9265F47E7A354BAAA0AF5CBA3F8F7CE, F836E7BEDC7CAB1C01225164D171A0210D8F909F52992E4C0BF3C92B365BCD52 ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys
16:07:22.0065 0x1ba0 volmgr - ok
16:07:22.0096 0x1ba0 [ BEE9C8B72AB752B794F69C2B9B3678AA, 49A5093C26F3CDCD60577F7F2D7F936C7B2BD010B27F2C49A7B6AA41E42DF98D ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys
16:07:22.0112 0x1ba0 volmgrx - ok
16:07:22.0127 0x1ba0 [ E1F91A727A04C9F8199D04FF3BBBF63C, 076CAEE621DBF7DE24ED92BA239C440879FDB674CF3213DF3E35AEC03D0D2031 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys
16:07:22.0158 0x1ba0 volsnap - ok
16:07:22.0190 0x1ba0 [ F7B1B1101271E31F43CC76E890704F51, 2282D82B220C3D13FF980ED8E40443C83816D3DA9557EACEA137873F92BB9CF4 ] vpci C:\WINDOWS\System32\drivers\vpci.sys
16:07:22.0205 0x1ba0 vpci - ok
16:07:22.0221 0x1ba0 [ D48ED0A08BD2FD25A833E6AC99623091, 6CA7580878D3893E14B4938023A00CDFC9BE215A0CE4ED59A94F95DFD9FDF4D8 ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys
16:07:22.0237 0x1ba0 vsmraid - ok
16:07:22.0315 0x1ba0 [ 47721869B78A3B2B347419541A87046C, C0B1BF63393F1B777D29AE589273A585713E0672B3FD1EF37021DDC727733E99 ] VSS C:\WINDOWS\system32\vssvc.exe
16:07:22.0424 0x1ba0 VSS - ok
16:07:22.0455 0x1ba0 [ 6990D4AFDF545669D4E6C232F26DE1FB, 9B8F99A035188FD96BA79E935E8EF387BEA2223ECA0B74CF64AB993DABAA5722 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys
16:07:22.0471 0x1ba0 VSTXRAID - ok
16:07:22.0502 0x1ba0 [ 1EE11F0508C58EF081F4176E66D6970B, 9069B3FC8850C7CF617909C6DBFC3753FEB59A9E708379CC57190F4097FB374E ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys
16:07:22.0518 0x1ba0 vwifibus - ok
16:07:22.0534 0x1ba0 [ 938E4EF58E42D252B742B0E243011B90, AC0C21FBAF15924CB271CA43ACB7A86287936C78B4852BCFC59EC7EC703E036C ] vwififlt C:\WINDOWS\system32\drivers\vwififlt.sys
16:07:22.0565 0x1ba0 vwififlt - ok
16:07:22.0580 0x1ba0 [ 3BE5AAC930447FD18D4A8255A2FEC95C, A517357188FE4A5BD98A3CDB2165ACCE96CCE4BE2B90DDBEAF70B6DDF393F506 ] vwifimp C:\WINDOWS\System32\drivers\vwifimp.sys
16:07:22.0612 0x1ba0 vwifimp - ok
16:07:22.0643 0x1ba0 [ 22CF3668BA7C3B037B3918678293B2BD, D24E33229EE86F5D371890C166F89FFCE1AA7DD3DE9F75101088A2A404AD485B ] W32Time C:\WINDOWS\system32\w32time.dll
16:07:22.0705 0x1ba0 W32Time - ok
16:07:22.0737 0x1ba0 [ 00C27B64C758C111E5D78A70DE6CA2B6, C99761B9B671B3A1FF1C52796CCA3F4F825BF50D9657D13B551E849CDD82055D ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys
16:07:22.0752 0x1ba0 WacomPen - ok
16:07:22.0799 0x1ba0 [ 6B705C7A38A3C8152789D48A9B3ACBFF, 1CFFC535F6CDF87553DA1F3A5E2E34660973E7F39338CE271F050170331189D3 ] WalletService C:\WINDOWS\system32\WalletService.dll
16:07:22.0877 0x1ba0 WalletService - ok
16:07:22.0893 0x1ba0 [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:07:22.0909 0x1ba0 wanarp - ok
16:07:22.0924 0x1ba0 [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:07:22.0940 0x1ba0 wanarpv6 - ok
16:07:23.0033 0x1ba0 [ 4E32080374906CE25329F784F43FE7BB, CC3545A399279DB433BB104E7084B51AD4D339F121BEA51351776B0C3D39BE51 ] wbengine C:\WINDOWS\system32\wbengine.exe
16:07:23.0268 0x1ba0 wbengine - ok
16:07:23.0330 0x1ba0 [ 642EFABF900374FA85639D83B5533AFD, 292692D6AAC2A785D237ADFBC7CA3D379E8FC79FA366A8CE7D06F5CA5CE6866B ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll
16:07:23.0440 0x1ba0 WbioSrvc - ok
16:07:23.0502 0x1ba0 [ DA9765B81341D7BBDAA68528768E6EDA, AB9497850D5666D67CD5EE58B7A121D59A9C5AC54F93315DD6A07D9ECB2E2DC2 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll
16:07:23.0580 0x1ba0 Wcmsvc - ok
16:07:23.0627 0x1ba0 [ DD510082B0D2FBA111689EB8274BA336, EAD9824DA28EFB0440D0D4D5CF88F6AE802AD8BA7A915CED814161901C179998 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll
16:07:23.0690 0x1ba0 wcncsvc - ok
16:07:23.0721 0x1ba0 [ 965B6197A659782B6A0F68411A180AAD, 5541AB78B71E4FA655BCBF2D80D574B2A3B4AA8871F65D26620BDE549FA5459A ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
16:07:23.0752 0x1ba0 WcsPlugInService - ok
16:07:23.0784 0x1ba0 [ 069D3D6E20AD753B34FCE856F0436869, CF8C12295DDAA56E7350019AADBA533D7857CFB3F20DEE14E557963645A9331B ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys
16:07:23.0799 0x1ba0 WdBoot - ok
16:07:23.0830 0x1ba0 [ 6CC727E94CD84E9720FDCDA8089CABCC, BCF66056B06DED6BC2D329E910FCD3E685D627BAD3B5D7F4B0E970B45CD9CEF4 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys
16:07:23.0893 0x1ba0 Wdf01000 - ok
16:07:23.0909 0x1ba0 [ E3E97151A1D1E87BB2D5371F66C5F169, 0ED0B9852FE0533816F5EE2F06045B3964A00FD749A7011DB3C663AB6FA369E2 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys
16:07:23.0924 0x1ba0 WdFilter - ok
16:07:23.0955 0x1ba0 [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiServiceHost C:\WINDOWS\system32\wdi.dll
16:07:23.0987 0x1ba0 WdiServiceHost - ok
16:07:23.0987 0x1ba0 [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiSystemHost C:\WINDOWS\system32\wdi.dll
16:07:24.0018 0x1ba0 WdiSystemHost - ok
16:07:24.0065 0x1ba0 [ 2BC2E99623119521EEF7910A11D0FDE0, 3F3E48A79534F0F65F961D9B170D534562E04901B630127B16DF02E6D42F2BBF ] wdiwifi C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
16:07:24.0143 0x1ba0 wdiwifi - ok
16:07:24.0174 0x1ba0 [ 07B043160399AF4009054E2EA3464BF4, 8D652D7CD75F8FB2B5414155355F0C970015914E1AC6522DBB8387BB8662F542 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys
16:07:24.0190 0x1ba0 WdNisDrv - ok
16:07:24.0221 0x1ba0 WdNisSvc - ok
16:07:24.0252 0x1ba0 [ 9972D395DBD05D91DA5EDADEB9325680, 9382D846793F285721A1A0FED42F914035A53D856B902FADB0B7144C471BDA91 ] WebClient C:\WINDOWS\System32\webclnt.dll
16:07:24.0346 0x1ba0 WebClient - ok
16:07:24.0377 0x1ba0 [ B6BF579761489720BCE787F723F596E5, 879B17F6A4F23F5E85A09126B7B407955DDCEB1BA4A8FFC0A418B7F47311C056 ] Wecsvc C:\WINDOWS\system32\wecsvc.dll
16:07:24.0455 0x1ba0 Wecsvc - ok
16:07:24.0487 0x1ba0 [ 10C9CF8771A2A87F575F9FB56821474E, 15E3DFFE9CF6777F67E426ECF797D2DF743EA152DEE336DCC9C2F92A0E6EB9A3 ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll
16:07:24.0534 0x1ba0 WEPHOSTSVC - ok
16:07:24.0565 0x1ba0 [ 357C083FE35D030D991D163AAF622A06, F301852D49DBDEF0D28F56CD74CBDC71CA003EBD07D3F46EA5C870DC1BD07896 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll
16:07:24.0627 0x1ba0 wercplsupport - ok
16:07:24.0643 0x1ba0 [ 2235AF716D15D9DFE4C59DC2AC0C440C, 2DCFCEBEA77E7E40CEF9A785BE1A794B390B36E40FBCF49B494F9CEA3F6A28C4 ] WerSvc C:\WINDOWS\System32\WerSvc.dll
16:07:24.0737 0x1ba0 WerSvc - ok
16:07:24.0752 0x1ba0 [ C11272713719922DE5711094333BD166, 61D4F07E02AECF04964FF51EEA31069A2B0EAA549AD2B29B5FD3E1E6BB543593 ] WFPLWFS C:\WINDOWS\system32\drivers\wfplwfs.sys
16:07:24.0799 0x1ba0 WFPLWFS - ok
16:07:24.0830 0x1ba0 [ 71DAE1FD62444A54301EA132FF737564, 9646AEE1F0CE2DC9B04C4F612019C02C7A7143A898EE3A834986ECD8B0FB1F93 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll
16:07:24.0877 0x1ba0 WiaRpc - ok
16:07:24.0909 0x1ba0 [ EF536C54AB9281FDC4E83B07279FCFC4, 22E4F133170682EE14413CA8FDC2DBE73AB31960D6ACB728A6B398229FDDFD3B ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys
16:07:24.0940 0x1ba0 WIMMount - ok
16:07:24.0940 0x1ba0 WinDefend - ok
16:07:24.0987 0x1ba0 [ D8966A76408107224C6013993135DD78, 6159F69BC26FF817078E68C70E6DFC9075FEBF9EF9F4F046C7A65BC377544AE6 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
16:07:25.0002 0x1ba0 WindowsTrustedRT - ok
16:07:25.0018 0x1ba0 [ 8B102A7B6CE326FD4208CC7C2D183343, E47C1D76CBFD2A382C3A7BB048D752FB6DD4616FADDEB1C3ADD5DDAE149742AF ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
16:07:25.0034 0x1ba0 WindowsTrustedRTProxy - ok
16:07:25.0096 0x1ba0 [ F47621DCAE21E1D94BC7F29F0FB3E9F2, A5AEF6337C93EEECF27F195A641EC940614091555D5F9F1168868A9BA22C9191 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
16:07:25.0237 0x1ba0 WinHttpAutoProxySvc - ok
16:07:25.0268 0x1ba0 [ 4A53441C1C4D2878BEF27E381138BB2D, C221E74491E6FD2AF472B53876B46788D5CF62F4E645457F3B3816FD0ED2BAA1 ] WinMad C:\WINDOWS\System32\drivers\winmad.sys
16:07:25.0299 0x1ba0 WinMad - ok
16:07:25.0362 0x1ba0 [ 1033C37122C7404C3B926ADF84874832, 163B3A7112F13AE7BB2655A28C6B19AF9B263F2AD2FF1B75314BE3E2B9118903 ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
16:07:25.0440 0x1ba0 Winmgmt - ok
16:07:25.0612 0x1ba0 [ CF0CDB6987DA95350D43721758455B40, 97699778961ACA19E3F1811E571C814EDB6228CB8EF8B05CAFED3559DD2A0A9C ] WinRM C:\WINDOWS\system32\WsmSvc.dll
16:07:25.0877 0x1ba0 WinRM - ok
16:07:25.0924 0x1ba0 [ 260907CE034FE327AC99BDA4153AB22F, B96501F43248713C2E153B9D22B78D51412A3C6989A2FB5F53A406C6CDC98D30 ] WINUSB C:\WINDOWS\System32\drivers\WinUSB.SYS
16:07:25.0940 0x1ba0 WINUSB - ok
16:07:25.0971 0x1ba0 [ 40A3E8D729F458B2C9A8BD9380FF83D5, CD42FFC138969EF8C9588FD113F0B9A98FBA282D46A5B6BCFA765F55ED6E97A1 ] WinVerbs C:\WINDOWS\System32\drivers\winverbs.sys
16:07:25.0987 0x1ba0 WinVerbs - ok
16:07:26.0018 0x1ba0 [ 0CE1584F302C28FC38565B3822A94513, 51DFD80B749A1786AF7712A4FE7BB2368C72767C26A8EC2B56BF2A96E8D11A05 ] WirelessKeyboardFilter C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys
16:07:26.0018 0x1ba0 WirelessKeyboardFilter - ok
16:07:26.0112 0x1ba0 [ AC8197386BEF74AA844FFAE75C3A4DCC, 6985615B74CF660712A62E0AA1558379AEDBC5106E160002A1B0F9CB69D18B3C ] WlanSvc C:\WINDOWS\System32\wlansvc.dll
16:07:26.0268 0x1ba0 WlanSvc - ok
16:07:26.0346 0x1ba0 [ 8D344C87273C429F373F8E17965401D8, B9A515E8E968485B95CE14BC07F5D57467B8C7CB148F52ED5DE486C48A3FB80B ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll
16:07:26.0471 0x1ba0 wlidsvc - ok
16:07:26.0487 0x1ba0 [ 8F010BF65238F3F822D22BA12831796E, 2CA830F259B742D2F5CDD0437960BF512D40FB4A4C2342E3BABB38D468F79694 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys
16:07:26.0502 0x1ba0 WmiAcpi - ok
16:07:26.0534 0x1ba0 [ 74ACA5A7880C1F0BB9D60E32E1705A70, A89817BCCBFF94D7394614DA81D1C6C4F53AF47A539E674EEF6DC3FC496BF702 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe
16:07:26.0565 0x1ba0 wmiApSrv - ok
16:07:26.0580 0x1ba0 WMPNetworkSvc - ok
16:07:26.0596 0x1ba0 [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof C:\WINDOWS\system32\drivers\Wof.sys
16:07:26.0627 0x1ba0 Wof - ok
16:07:26.0752 0x1ba0 [ 174061E5CCDB9427C995D9E2C8936221, 34FAA82B774229DBC65279DF0385A2C56792EA7AF1C55DE539B46B455C14F6D8 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll
16:07:27.0018 0x1ba0 workfolderssvc - ok
16:07:27.0065 0x1ba0 [ 22C52D7EE7C7D0E02C8EFD8CAE8E3A71, 126605A12CEC9CC07DE3050F12E43CECABEAF0D00DF12300AF70F34700F7FE8E ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
16:07:27.0096 0x1ba0 wpcfltr - ok
16:07:27.0127 0x1ba0 [ 45FA01F8B7971ACB65202038E34D04A3, 9B2C2ABC7DB716295B0BD0AF04DA08E6B4200D7CF1C7DB59DD8FD8FEBD56D94C ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll
16:07:27.0190 0x1ba0 WPDBusEnum - ok
16:07:27.0205 0x1ba0 [ 1C08E424CBDD5065BB7266F8C048C1B1, 0452C85EDA6CBAB75C2617886C5D8117ED25D91F1BE0F8377B08D55B6629B028 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys
16:07:27.0237 0x1ba0 WpdUpFltr - ok
16:07:27.0268 0x1ba0 [ 2C6EEFFBB7FB1C51CCD3737C77AB9109, 8C2ED309FAF4312512E7BCCBBC51B1353603A3499077A1DE21991F0692AF1620 ] WpnService C:\WINDOWS\system32\WpnService.dll
16:07:27.0315 0x1ba0 WpnService - ok
16:07:27.0362 0x1ba0 [ 638B43D39A3D0B47024555CF1095E6F1, C7EA0A6ED227A5256EB02CA76FEC538DF196B8DC38DA2A567757D2B221C9473E ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys
16:07:27.0393 0x1ba0 ws2ifsl - ok
16:07:27.0440 0x1ba0 [ 5B813FADEA5BE9195F01C83287F823F7, B186175B12AF444F987FE9F0F9D329A0F9186C06E3D228824E0929BB0084853F ] wscsvc C:\WINDOWS\System32\wscsvc.dll
16:07:27.0518 0x1ba0 wscsvc - ok
16:07:27.0518 0x1ba0 WSearch - ok
16:07:27.0752 0x1ba0 [ BAC89DCD30C53AE213F7EA1A6719F401, 8A240A1303A7133D7A01D749D865671E78886A7DA63EEF00A33C2AD3328BE870 ] WSService C:\WINDOWS\System32\WSService.dll
16:07:28.0002 0x1ba0 WSService - ok
16:07:28.0096 0x1ba0 [ 4D0E671755DB778A1F3687778008B6E2, 09AE7485DC9060AF5283D4F5FFD2121AE2885F957733412DE3DA39D397891F0B ] wuauserv C:\WINDOWS\system32\wuaueng.dll
16:07:28.0284 0x1ba0 wuauserv - ok
16:07:28.0299 0x1ba0 [ A928F25CB62232F413EE655352856E10, 1D2B278A24DDDE8792ADE7649FF90A98E186B79F13AA296C30E4180293BE906A ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys
16:07:28.0330 0x1ba0 WudfPf - ok
16:07:28.0362 0x1ba0 [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys
16:07:28.0393 0x1ba0 WUDFRd - ok
16:07:28.0424 0x1ba0 [ 1336DA39FE006EAB2733CA4DE5B3560C, F0D6C71ADCB66D4D14EC6D09FD43F5521A3A8CA53F248DFD01696FB4F033BE77 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll
16:07:28.0471 0x1ba0 wudfsvc - ok
16:07:28.0502 0x1ba0 [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
16:07:28.0549 0x1ba0 WUDFWpdFs - ok
16:07:28.0659 0x1ba0 [ 0E844C711760A680528B9E2727A1C385, E40E599B2202922EA023CB511ADBE4B1C31D86286996392C2194CBFFF39EDAF9 ] WwanSvc C:\WINDOWS\System32\wwansvc.dll
16:07:28.0830 0x1ba0 WwanSvc - ok
16:07:28.0909 0x1ba0 [ 130AA463B4C1E0DAABF0A3A20E3ECE7C, 97CBD02ACE346308682230595E305BA7844C31550E6D8C2212418D6FA1CC67BE ] XblAuthManager C:\WINDOWS\System32\XblAuthManager.dll
16:07:29.0049 0x1ba0 XblAuthManager - ok
16:07:29.0159 0x1ba0 [ 7118498F6E48758A2EF5A7D1982E2B62, 1FF75AE64CB6DB263E8B35515E092B325AA71A6B2210F8F2B0AD087B3BA33345 ] XblGameSave C:\WINDOWS\System32\XblGameSave.dll
16:07:29.0315 0x1ba0 XblGameSave - ok
16:07:29.0330 0x1ba0 [ F279536122B83FD0D8E158AA753E1B7C, 6A542F28E24B30DBDC2EEE24DA33C2F4ADB3596AEDDD71DC1495DD40577CE4BB ] xboxgip C:\WINDOWS\System32\drivers\xboxgip.sys
16:07:29.0377 0x1ba0 xboxgip - ok
16:07:29.0440 0x1ba0 [ 6284743AFD613A1DAF20FA5FE3FBF9BB, 0010DA848A470613C2F70B6815E608B23E1AEABCAE3FF966F0957890D8F20F8E ] XboxNetApiSvc C:\WINDOWS\system32\XboxNetApiSvc.dll
16:07:29.0549 0x1ba0 XboxNetApiSvc - ok
16:07:29.0580 0x1ba0 [ DA0807D87A62D076C29C4E30F1E84F46, CA3079350038091AEE04D4DA7C06865E9DB3095120AE61AAB575AA77E86A6223 ] xinputhid C:\WINDOWS\System32\drivers\xinputhid.sys
16:07:29.0612 0x1ba0 xinputhid - ok
16:07:29.0612 0x1ba0 ================ Scan global ===============================
16:07:29.0643 0x1ba0 [ 82E25186617BA6C15010F0D47C705705, 5BF9E38918E6EAE86448137E2D120B80318AA1143CDDF539A2BFBEE227646816 ] C:\WINDOWS\system32\basesrv.dll
16:07:29.0674 0x1ba0 [ 6CA8B7E935286A3D3794E14DDE069C4E, BB2E4525759FA6193BBFCC7DAEB59998980BF3A211A91263195938F63ADB602A ] C:\WINDOWS\system32\winsrv.dll
16:07:29.0705 0x1ba0 [ 09E92888FFF86F3334E59778724DCA6F, 2344763B52395EF565A9DE5F55BEDCA026AD2E8072FFD06F826BF366B3BA2AB4 ] C:\WINDOWS\system32\sxssrv.dll
16:07:29.0752 0x1ba0 [ 6FF8248F3A9D69A095C7F3F42BC29CB2, 9077B1AA0AFB8DB329FDED0E51085DE1C51B22A986162F29037FCA404A80D512 ] C:\WINDOWS\system32\services.exe
16:07:29.0768 0x1ba0 [ Global ] - ok
16:07:29.0768 0x1ba0 ================ Scan MBR ==================================
16:07:29.0784 0x1ba0 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:07:29.0924 0x1ba0 \Device\Harddisk0\DR0 - ok
16:07:29.0924 0x1ba0 ================ Scan VBR ==================================
16:07:29.0924 0x1ba0 [ 4CE54FCCF6D4E1199AFD7ABEE4C96DE5 ] \Device\Harddisk0\DR0\Partition1
16:07:29.0924 0x1ba0 \Device\Harddisk0\DR0\Partition1 - ok
16:07:29.0955 0x1ba0 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition2
16:07:29.0955 0x1ba0 \Device\Harddisk0\DR0\Partition2 - ok
16:07:29.0971 0x1ba0 [ D292A580C2C7CF4DA84052143D79C31D ] \Device\Harddisk0\DR0\Partition3
16:07:29.0971 0x1ba0 \Device\Harddisk0\DR0\Partition3 - ok
16:07:30.0002 0x1ba0 [ 6DCEA713B7D9D7BC022AEA1069EBAAF0 ] \Device\Harddisk0\DR0\Partition4
16:07:30.0018 0x1ba0 \Device\Harddisk0\DR0\Partition4 - ok
16:07:30.0018 0x1ba0 ================ Scan generic autorun ======================
16:07:30.0893 0x1ba0 [ BF225BCD0EC2D85719C382019B5B4250, 7FE5A85209BD930FC1622600AB74E59854488986AA052A0D03D5FC7B361F247D ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:07:31.0754 0x1ba0 RTHDVCPL - ok
16:07:32.0019 0x1ba0 [ D9133D4157664B1E2ACFC2CD56CCB599, 0B2B8EE7D45962026A30833D3D7F59FB1FB07085904C2E77A10714F38910E462 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
16:07:32.0269 0x1ba0 NvBackend - ok
16:07:32.0285 0x1ba0 [ 0DCB89B1F3689BC6262FF30BBD603171, 594E6E07BC6B161469848A477F28211B70E759A8D369276810F622EE00D97783 ] C:\Windows\system32\rundll32.exe
16:07:32.0363 0x1ba0 ShadowPlay - ok
16:07:32.0488 0x1ba0 [ 1A774CBE54318A3411539BA10D47BEF5, 99CDBD90429FCAFA1C814E49EFF1160E8DC7D43B8F82E8AC33116BE7D42DBA9B ] C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
16:07:32.0598 0x1ba0 Malwarebytes Anti-Exploit - ok
16:07:32.0910 0x1ba0 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
16:07:33.0488 0x1ba0 OneDriveSetup - ok
16:07:33.0832 0x1ba0 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
16:07:34.0410 0x1ba0 OneDriveSetup - ok
16:07:34.0894 0x1ba0 [ E93D62A6DB736AA82A3EEDDFDFE73311, 96EC57F66EE1A36580536518A814299DE6D5DACC0026F5A659B41918434ED8FA ] C:\Program Files\CCleaner\CCleaner64.exe
16:07:35.0488 0x1ba0 CCleaner Monitoring - ok
16:07:35.0613 0x1ba0 [ E97E971FB9FE4C0A72CB89B8063A4468, 5F45822818D90D3CDD97F6E705C309FD9161F7C55AAA6EFC44976F129D6B0D38 ] C:\Program Files\Sandboxie\SbieCtrl.exe
16:07:35.0707 0x1ba0 SandboxieControl - ok
16:07:36.0019 0x1ba0 [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
16:07:36.0363 0x1ba0 OneDriveSetup - ok
16:07:36.0379 0x1ba0 Waiting for KSN requests completion. In queue: 199
16:07:37.0410 0x1ba0 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.589 ), 0x61100 ( enabled : updated )
16:07:37.0504 0x1ba0 Win FW state via NFP2: enabled ( trusted )
16:07:37.0629 0x1ba0 ============================================================
16:07:37.0629 0x1ba0 Scan finished
16:07:37.0629 0x1ba0 ============================================================
16:07:37.0645 0x1248 Detected object count: 0
16:07:37.0645 0x1248 Actual detected object count: 0 Hallo Matthias, bei FRST hat WindowsSmartScan eine Warnung abgegeben, sicher dass da keine Schadsoftware enthalten ist? Danke für deine Hilfe.
Gruß
kokett |