Robert2016 | 19.10.2016 20:13 | Code:
21:05:33.0976 0x06dc TDSS rootkit removing tool 3.1.0.11 Aug 5 2016 12:13:31
21:05:40.0129 0x06dc ============================================================
21:05:40.0129 0x06dc Current date / time: 2016/10/19 21:05:40.0129
21:05:40.0129 0x06dc SystemInfo:
21:05:40.0129 0x06dc
21:05:40.0129 0x06dc OS Version: 10.0.10586 ServicePack: 0.0
21:05:40.0130 0x06dc Product type: Workstation
21:05:40.0130 0x06dc ComputerName: BÜRO-PC
21:05:40.0130 0x06dc UserName: Robert
21:05:40.0130 0x06dc Windows directory: C:\WINDOWS
21:05:40.0130 0x06dc System windows directory: C:\WINDOWS
21:05:40.0130 0x06dc Running under WOW64
21:05:40.0130 0x06dc Processor architecture: Intel x64
21:05:40.0130 0x06dc Number of processors: 4
21:05:40.0130 0x06dc Page size: 0x1000
21:05:40.0130 0x06dc Boot type: Normal boot
21:05:40.0131 0x06dc CodeIntegrityOptions = 0x00000001
21:05:40.0131 0x06dc ============================================================
21:05:40.0305 0x06dc KLMD registered as C:\WINDOWS\system32\drivers\80272256.sys
21:05:40.0305 0x06dc KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 10586.633, osProperties = 0x19
21:05:40.0572 0x06dc System UUID: {1519BE70-C6E3-F135-DD36-6D02C0F61E10}
21:05:41.0581 0x06dc Drive \Device\Harddisk2\DR2 - Size: 0x1D1C1115E00 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:05:41.0582 0x06dc Drive \Device\Harddisk1\DR1 - Size: 0x6FC86D6000 ( 447.13 Gb ), SectorSize: 0x200, Cylinders: 0xE401, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:05:41.0582 0x06dc Drive \Device\Harddisk0\DR0 - Size: 0x8000000 ( 0.13 Gb ), SectorSize: 0x200, Cylinders: 0x10, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:05:41.0589 0x06dc Drive \Device\Harddisk2\DR2 - Size: 0x1D1C1115E00 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:05:41.0591 0x06dc Drive \Device\Harddisk3\DR3 - Size: 0xE90E8000 ( 3.64 Gb ), SectorSize: 0x200, Cylinders: 0x1DB, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:05:41.0594 0x06dc Drive \Device\Harddisk4\DR4 - Size: 0xE8E0DB5800 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:05:44.0679 0x06dc Drive \Device\Harddisk6\DR6 - Size: 0xE8E0B00000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:05:51.0616 0x06dc ============================================================
21:05:51.0616 0x06dc \Device\Harddisk2\DR2:
21:05:51.0616 0x06dc MBR partitions:
21:05:51.0617 0x06dc \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
21:05:51.0617 0x06dc \Device\Harddisk1\DR1:
21:05:51.0623 0x06dc MBR partitions:
21:05:51.0623 0x06dc \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x12419000
21:05:51.0623 0x06dc \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x124FB000, BlocksNum 0x25946800
21:05:51.0623 0x06dc \Device\Harddisk0\DR0:
21:05:51.0623 0x06dc MBR partitions:
21:05:51.0623 0x06dc \Device\Harddisk0\DR0\Partition1: MBR, Type 0x6, StartLBA 0x1, BlocksNum 0x3FFFF
21:05:51.0623 0x06dc \Device\Harddisk2\DR2:
21:05:51.0624 0x06dc MBR partitions:
21:05:51.0624 0x06dc \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
21:05:51.0624 0x06dc \Device\Harddisk3\DR3:
21:05:51.0625 0x06dc MBR partitions:
21:05:51.0625 0x06dc \Device\Harddisk3\DR3\Partition1: MBR, Type 0xC, StartLBA 0x2680, BlocksNum 0x7460C0
21:05:51.0625 0x06dc \Device\Harddisk4\DR4:
21:05:51.0626 0x06dc MBR partitions:
21:05:51.0626 0x06dc \Device\Harddisk4\DR4\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705DAC
21:05:51.0626 0x06dc \Device\Harddisk6\DR6:
21:05:51.0627 0x06dc MBR partitions:
21:05:51.0627 0x06dc \Device\Harddisk6\DR6\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705000
21:05:51.0627 0x06dc ============================================================
21:05:51.0629 0x06dc C: <-> \Device\Harddisk1\DR1\Partition1
21:05:51.0630 0x06dc F: <-> \Device\Harddisk1\DR1\Partition2
21:05:51.0630 0x06dc H: <-> \Device\Harddisk0\DR0\Partition1
21:05:51.0934 0x06dc I: <-> \Device\Harddisk4\DR4\Partition1
21:05:51.0983 0x06dc G: <-> \Device\Harddisk2\DR2\Partition1
21:05:52.0001 0x06dc K: <-> \Device\Harddisk6\DR6\Partition1
21:05:52.0001 0x06dc ============================================================
21:05:52.0002 0x06dc Initialize success
21:05:52.0002 0x06dc ============================================================
21:08:03.0822 0x1bb8 ============================================================
21:08:03.0822 0x1bb8 Scan started
21:08:03.0822 0x1bb8 Mode: Manual; SigCheck; TDLFS;
21:08:03.0822 0x1bb8 ============================================================
21:08:03.0822 0x1bb8 KSN ping started
21:08:03.0975 0x1bb8 KSN ping finished: true
21:08:05.0563 0x1bb8 ================ Scan system memory ========================
21:08:05.0563 0x1bb8 System memory - ok
21:08:05.0564 0x1bb8 ================ Scan services =============================
21:08:05.0663 0x1bb8 1394ohci - ok
21:08:05.0670 0x1bb8 3ware - ok
21:08:05.0679 0x1bb8 ACPI - ok
21:08:05.0688 0x1bb8 acpiex - ok
21:08:05.0696 0x1bb8 acpipagr - ok
21:08:05.0707 0x1bb8 AcpiPmi - ok
21:08:05.0716 0x1bb8 acpitime - ok
21:08:05.0769 0x1bb8 [ 8EEC0269D86CFADD292C9B05F59F23ED, 779F863563F9F31B102EB7A7C1580281D73F083213B0DD17A82A9EF2886DFD79 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
21:08:05.0911 0x1bb8 AcrSch2Svc - ok
21:08:05.0936 0x1bb8 ADP80XX - ok
21:08:06.0082 0x1bb8 [ 3B0908381A28DEFD42F42DBA9F06D39B, 3179AC9F26338D684CB806F29CD37EA75BE7F4553834F682E65ECE6D6D797FD4 ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
21:08:06.0283 0x1bb8 afcdpsrv - ok
21:08:06.0298 0x1bb8 AFD - ok
21:08:06.0306 0x1bb8 agp440 - ok
21:08:06.0316 0x1bb8 ahcache - ok
21:08:06.0324 0x1bb8 AJRouter - ok
21:08:06.0334 0x1bb8 ALG - ok
21:08:06.0342 0x1bb8 AmdK8 - ok
21:08:06.0352 0x1bb8 AmdPPM - ok
21:08:06.0361 0x1bb8 amdsata - ok
21:08:06.0370 0x1bb8 amdsbs - ok
21:08:06.0379 0x1bb8 amdxata - ok
21:08:06.0388 0x1bb8 AppID - ok
21:08:06.0396 0x1bb8 AppIDSvc - ok
21:08:06.0405 0x1bb8 Appinfo - ok
21:08:06.0414 0x1bb8 AppMgmt - ok
21:08:06.0423 0x1bb8 AppReadiness - ok
21:08:06.0434 0x1bb8 AppXSvc - ok
21:08:06.0443 0x1bb8 arcsas - ok
21:08:06.0471 0x1bb8 [ 1A234F4643F5658BAB07BFA611282267, F40435488389B4FB3B945CA21A8325A51E1B5F80F045AB019748D0EC66056A8B ] AsrDrv101 C:\Windows\SysWOW64\Drivers\AsrDrv101.sys
21:08:06.0499 0x1bb8 AsrDrv101 - ok
21:08:06.0522 0x1bb8 [ D208B82330EB0CA9E1285520630183F1, 1122E08493BFDF639ECB80A7F3BD640971FF3639154F4130434F98E1831E004A ] ASRockIOMon C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe
21:08:06.0577 0x1bb8 ASRockIOMon - detected UnsignedFile.Multi.Generic ( 1 )
21:08:06.0752 0x1bb8 Detect skipped due to KSN trusted
21:08:06.0752 0x1bb8 ASRockIOMon - ok
21:08:06.0761 0x1bb8 [ A149C93231945A5118C63AEACA6D1E72, 60B28184585B389751FCF71651A139D74018DE04AEBF4A497835AF727B64BD53 ] AsrRamDisk C:\WINDOWS\system32\drivers\AsrRamDisk.sys
21:08:06.0779 0x1bb8 AsrRamDisk - ok
21:08:06.0787 0x1bb8 AsyncMac - ok
21:08:06.0796 0x1bb8 atapi - ok
21:08:06.0805 0x1bb8 AudioEndpointBuilder - ok
21:08:06.0814 0x1bb8 Audiosrv - ok
21:08:06.0834 0x1bb8 [ 50C3C62FFE6337E6E4F2F01CB07DF63C, CC9C7D2827E872F22A2A79D42195530F61DF6EA6A1C8F520E25DB35537574FAB ] AVP16.0.0 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\avp.exe
21:08:06.0861 0x1bb8 AVP16.0.0 - ok
21:08:06.0870 0x1bb8 AxInstSV - ok
21:08:06.0879 0x1bb8 b06bdrv - ok
21:08:06.0888 0x1bb8 BasicDisplay - ok
21:08:06.0896 0x1bb8 BasicRender - ok
21:08:06.0909 0x1bb8 bcmfn - ok
21:08:06.0917 0x1bb8 bcmfn2 - ok
21:08:06.0926 0x1bb8 BDESVC - ok
21:08:06.0935 0x1bb8 Beep - ok
21:08:06.0943 0x1bb8 BFE - ok
21:08:06.0953 0x1bb8 BITS - ok
21:08:06.0961 0x1bb8 bowser - ok
21:08:06.0971 0x1bb8 BrokerInfrastructure - ok
21:08:06.0981 0x1bb8 Browser - ok
21:08:06.0992 0x1bb8 BthAvrcpTg - ok
21:08:07.0001 0x1bb8 BthHFEnum - ok
21:08:07.0011 0x1bb8 bthhfhid - ok
21:08:07.0020 0x1bb8 BthHFSrv - ok
21:08:07.0029 0x1bb8 BTHMODEM - ok
21:08:07.0042 0x1bb8 bthserv - ok
21:08:07.0051 0x1bb8 buttonconverter - ok
21:08:07.0060 0x1bb8 CapImg - ok
21:08:07.0069 0x1bb8 cdfs - ok
21:08:07.0078 0x1bb8 CDPSvc - ok
21:08:07.0087 0x1bb8 cdrom - ok
21:08:07.0096 0x1bb8 CertPropSvc - ok
21:08:07.0168 0x1bb8 [ 1BF0745142C07A6967C6DB7DEBFF6B16, 50C60F59CC1FE6EFF4E79A0A2545B14FF4851881C9262D6CFA6EE0ECF027D1D6 ] cfosspeed C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys
21:08:07.0291 0x1bb8 cfosspeed - ok
21:08:07.0325 0x1bb8 [ 49C58338E9572E2570E2C636A3CDAA42, 9E2271B008EABD1263507A4185FE0CFDE84C65A659DF350EF000325FA0340B66 ] cFosSpeedS C:\Program Files\ASRock\XFast LAN\spd.exe
21:08:07.0371 0x1bb8 cFosSpeedS - ok
21:08:07.0381 0x1bb8 circlass - ok
21:08:07.0390 0x1bb8 CLFS - ok
21:08:07.0398 0x1bb8 ClipSVC - ok
21:08:07.0423 0x1bb8 CmBatt - ok
21:08:07.0446 0x1bb8 [ B2A6D2A30E93B6F215F74AC7E1733C9C, 960299F7BF2501B46296EDEA050BF30313C17A9B785574B56B79C070BD1B6E1A ] cm_km C:\WINDOWS\system32\drivers\cm_km.sys
21:08:07.0483 0x1bb8 cm_km - ok
21:08:07.0492 0x1bb8 CNG - ok
21:08:07.0501 0x1bb8 cnghwassist - ok
21:08:07.0525 0x1bb8 CompositeBus - ok
21:08:07.0533 0x1bb8 COMSysApp - ok
21:08:07.0542 0x1bb8 condrv - ok
21:08:07.0551 0x1bb8 CoreMessagingRegistrar - ok
21:08:07.0594 0x1bb8 [ BB812787B838A74943DEF209350C3883, 2C168F48A68644AA3CB6167BEC2A260E3E9C78D0766A15AA0FAA39CDBD7FA040 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
21:08:07.0708 0x1bb8 cphs - ok
21:08:07.0718 0x1bb8 [ 5212E0957468D3F94D90FA7A0F06B58F, 955DAC77A0148E9F9ED744F5D341CB9C9118261E52FE622AC6213965F2BC4CAD ] cpuz137 C:\Program Files (x86)\CPUID\PC Wizard 2015\pcwiz_x64.sys
21:08:07.0738 0x1bb8 cpuz137 - ok
21:08:07.0751 0x1bb8 CryptSvc - ok
21:08:07.0760 0x1bb8 CSC - ok
21:08:07.0781 0x1bb8 CscService - ok
21:08:07.0788 0x1bb8 dam - ok
21:08:07.0805 0x1bb8 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdate C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
21:08:07.0829 0x1bb8 dbupdate - ok
21:08:07.0840 0x1bb8 [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] dbupdatem C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
21:08:07.0863 0x1bb8 dbupdatem - ok
21:08:07.0871 0x1bb8 dbx - ok
21:08:07.0881 0x1bb8 [ A8352D11F8E2F7E8FA0BD6F8EF599C61, 72B9F8B96433CCFE5CC9FB786BF976068BDDC04D39F9F3BCFA5132E61A97C3FD ] DbxSvc C:\WINDOWS\system32\DbxSvc.exe
21:08:07.0938 0x1bb8 DbxSvc - ok
21:08:07.0950 0x1bb8 [ A4700D1F78539C0ED32FA50E64F9C692, 5CB03B5F36307BA152245BAD29CB2AC703BBE8197ABC0338A7092ADEA1C3221A ] dc3d C:\WINDOWS\System32\drivers\dc3d.sys
21:08:07.0999 0x1bb8 dc3d - ok
21:08:08.0011 0x1bb8 DcomLaunch - ok
21:08:08.0020 0x1bb8 DcpSvc - ok
21:08:08.0028 0x1bb8 defragsvc - ok
21:08:08.0037 0x1bb8 DeviceAssociationService - ok
21:08:08.0046 0x1bb8 DeviceInstall - ok
21:08:08.0055 0x1bb8 DevQueryBroker - ok
21:08:08.0064 0x1bb8 Dfsc - ok
21:08:08.0083 0x1bb8 [ D722BC26F7431A4DA9A183E56CA9FEE3, 86AB717431CB3DDAF6213A1CFE8DF3684080BAAD569731A90AA1AA198E97506D ] dg_ssudbus C:\WINDOWS\System32\drivers\ssudbus.sys
21:08:08.0113 0x1bb8 dg_ssudbus - ok
21:08:08.0120 0x1bb8 Dhcp - ok
21:08:08.0132 0x1bb8 diagnosticshub.standardcollector.service - ok
21:08:08.0140 0x1bb8 DiagTrack - ok
21:08:08.0151 0x1bb8 disk - ok
21:08:08.0160 0x1bb8 DisplayLinkUsbIo_x64 - ok
21:08:08.0169 0x1bb8 DmEnrollmentSvc - ok
21:08:08.0178 0x1bb8 dmvsc - ok
21:08:08.0189 0x1bb8 dmwappushservice - ok
21:08:08.0197 0x1bb8 Dnscache - ok
21:08:08.0210 0x1bb8 dot3svc - ok
21:08:08.0218 0x1bb8 DPS - ok
21:08:08.0227 0x1bb8 drmkaud - ok
21:08:08.0236 0x1bb8 DsmSvc - ok
21:08:08.0245 0x1bb8 DsSvc - ok
21:08:08.0254 0x1bb8 DXGKrnl - ok
21:08:08.0263 0x1bb8 Eaphost - ok
21:08:08.0272 0x1bb8 ebdrv - ok
21:08:08.0281 0x1bb8 EFS - ok
21:08:08.0291 0x1bb8 EhStorClass - ok
21:08:08.0300 0x1bb8 EhStorTcgDrv - ok
21:08:08.0308 0x1bb8 embeddedmode - ok
21:08:08.0318 0x1bb8 EntAppSvc - ok
21:08:08.0328 0x1bb8 [ 1B677389760689A11241884C700B48E0, 75EC4D16F3F6004D2697AE25E029B95D8B9611911039777B781C5707DA6048C6 ] epmntdrv C:\Windows\system32\epmntdrv.sys
21:08:08.0361 0x1bb8 epmntdrv - ok
21:08:08.0368 0x1bb8 ErrDev - ok
21:08:08.0382 0x1bb8 [ 08C997734B2CECE882656BB2855E6E76, B3C1DEF26C9C9123D34395717220B450C705B5FA9FC8E321ADC444A4D63E6F36 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys
21:08:08.0402 0x1bb8 EuGdiDrv - ok
21:08:08.0415 0x1bb8 EventSystem - ok
21:08:08.0424 0x1bb8 [ 618B2BC3E72A2FBDF2FA4A7350DE3695, DF18CD5788FFDD08E5F746E5498E1D70799349187B774962BD220EC8C4ECD69A ] EvoMouseDriverFilterHidUsb C:\WINDOWS\System32\drivers\EvoMouseDriverFilterHidUsb.sys
21:08:08.0457 0x1bb8 EvoMouseDriverFilterHidUsb - ok
21:08:08.0466 0x1bb8 [ EC0FE22EB2F3B32E046E01496B88D523, 557EE9466BAB79DA1B9BFA6DC0C72AECE0FB77C74E31299C8860C547FBFE3668 ] EvoMouseDriverMini C:\WINDOWS\system32\drivers\EvoMouseDriverMini.sys
21:08:08.0488 0x1bb8 EvoMouseDriverMini - ok
21:08:08.0495 0x1bb8 exfat - ok
21:08:08.0504 0x1bb8 fastfat - ok
21:08:08.0513 0x1bb8 Fax - ok
21:08:08.0523 0x1bb8 fdc - ok
21:08:08.0532 0x1bb8 fdPHost - ok
21:08:08.0541 0x1bb8 FDResPub - ok
21:08:08.0550 0x1bb8 fhsvc - ok
21:08:08.0558 0x1bb8 FileCrypt - ok
21:08:08.0567 0x1bb8 FileInfo - ok
21:08:08.0577 0x1bb8 Filetrace - ok
21:08:08.0597 0x1bb8 [ 72CC30F0D6DF8D3FBD5CD728259A8F69, F7774D35B38F35E31A8EEE37FF2F203C1CED433FF84EC265CD92B38CBFE3AB8F ] file_tracker C:\WINDOWS\system32\DRIVERS\file_tracker.sys
21:08:08.0627 0x1bb8 file_tracker - ok
21:08:08.0635 0x1bb8 flpydisk - ok
21:08:08.0645 0x1bb8 FltMgr - ok
21:08:08.0659 0x1bb8 [ 9BD0273A5B650CC16E8A54AD9B312BEB, 1AA219C4CC29E8301075537A330CC7FB677CD884AABD8FB3D99CFBEA1AB4CDF2 ] fltsrv C:\WINDOWS\system32\DRIVERS\fltsrv.sys
21:08:08.0703 0x1bb8 fltsrv - ok
21:08:08.0711 0x1bb8 FontCache - ok
21:08:08.0720 0x1bb8 FontCache3.0.0.0 - ok
21:08:08.0729 0x1bb8 FsDepends - ok
21:08:08.0738 0x1bb8 Fs_Rec - ok
21:08:08.0748 0x1bb8 fvevol - ok
21:08:08.0758 0x1bb8 gagp30kx - ok
21:08:08.0768 0x1bb8 gencounter - ok
21:08:08.0777 0x1bb8 genericusbfn - ok
21:08:08.0786 0x1bb8 GPIOClx0101 - ok
21:08:08.0794 0x1bb8 gpsvc - ok
21:08:08.0802 0x1bb8 GpuEnergyDrv - ok
21:08:08.0816 0x1bb8 [ 88FBBB1C601A6BC42054E57C2897FA45, 928C5BAB515035DE659C4255C209D33C407716DA325798951B2E8DA9BB230A9F ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:08:08.0862 0x1bb8 gupdate - ok
21:08:08.0875 0x1bb8 [ 88FBBB1C601A6BC42054E57C2897FA45, 928C5BAB515035DE659C4255C209D33C407716DA325798951B2E8DA9BB230A9F ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:08:08.0897 0x1bb8 gupdatem - ok
21:08:08.0905 0x1bb8 HdAudAddService - ok
21:08:08.0915 0x1bb8 HDAudBus - ok
21:08:08.0924 0x1bb8 HidBatt - ok
21:08:08.0932 0x1bb8 HidBth - ok
21:08:08.0941 0x1bb8 hidi2c - ok
21:08:08.0951 0x1bb8 hidinterrupt - ok
21:08:08.0960 0x1bb8 HidIr - ok
21:08:08.0969 0x1bb8 hidserv - ok
21:08:08.0980 0x1bb8 HidUsb - ok
21:08:08.0990 0x1bb8 HomeGroupListener - ok
21:08:08.0999 0x1bb8 HomeGroupProvider - ok
21:08:09.0009 0x1bb8 HpSAMD - ok
21:08:09.0021 0x1bb8 HTTP - ok
21:08:09.0031 0x1bb8 hwpolicy - ok
21:08:09.0039 0x1bb8 hyperkbd - ok
21:08:09.0049 0x1bb8 i8042prt - ok
21:08:09.0057 0x1bb8 iai2c - ok
21:08:09.0072 0x1bb8 iaLPSS2i_I2C - ok
21:08:09.0080 0x1bb8 iaLPSSi_GPIO - ok
21:08:09.0089 0x1bb8 iaLPSSi_I2C - ok
21:08:09.0098 0x1bb8 iaStorAV - ok
21:08:09.0106 0x1bb8 iaStorV - ok
21:08:09.0116 0x1bb8 ibbus - ok
21:08:09.0125 0x1bb8 icssvc - ok
21:08:09.0133 0x1bb8 IEEtwCollectorService - ok
21:08:09.0277 0x1bb8 [ CEFA6BDB4789F3DA003ACBDCC64F5877, 0FE78AEFA9A75B4A99AD6B73AC3252E4C6DFA9D306FEC02D26C1FD574108BFBA ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
21:08:09.0481 0x1bb8 igfx - ok
21:08:09.0507 0x1bb8 [ 75909533EECD0CD9D5974B59474AA6C0, F81D0F949F1F01D09C91735C79288395B82C27B8FB78804752E5A678D7EF3860 ] igfxCUIService1.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
21:08:09.0562 0x1bb8 igfxCUIService1.0.0.0 - ok
21:08:09.0569 0x1bb8 IKEEXT - ok
21:08:09.0585 0x1bb8 [ B1F193AB8FB72E9FC34B3A39314ED872, 408E98D9C8ABB928090DD9E5D1BB227EFBC997BF168437BAEF0461EB0D1DAE3D ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
21:08:09.0613 0x1bb8 intaud_WaveExtensible - ok
21:08:09.0797 0x1bb8 [ 5455252E556F4BBDA7874F5A9DF88BBD, C81436052E5514FC7616939BEB2C8C15185B9A372C52F0E32EDDB43A5AB22E7D ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
21:08:10.0058 0x1bb8 IntcAzAudAddService - ok
21:08:10.0093 0x1bb8 [ 87871AB7AC797F922A6F3D4C874CED96, 2BCD89911E42827CD294DD7D1486A7845D1F98019E51958E0F488384401B2944 ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
21:08:10.0209 0x1bb8 IntcDAud - ok
21:08:10.0245 0x1bb8 [ 768DD5CB66952BC4A3BD474757AEE34F, 5A1F91FC8028D84FD83591D60CB7E3B24425C3B0FFF5A9BB0F7CE2E17AAB92D4 ] Intel(R) Capability Licensing Service Interface C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
21:08:10.0311 0x1bb8 Intel(R) Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )
21:08:10.0424 0x1bb8 Detect skipped due to KSN trusted
21:08:10.0424 0x1bb8 Intel(R) Capability Licensing Service Interface - ok
21:08:10.0460 0x1bb8 [ 7C9ED65324CF268ACBA8024257F782D8, 1DC43DBA3612E26454D7786DEB0538B44A736B67EC99642B4CC574D8A03E0DC7 ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe
21:08:10.0517 0x1bb8 Intel(R) Capability Licensing Service TCP IP Interface - ok
21:08:10.0526 0x1bb8 intelide - ok
21:08:10.0535 0x1bb8 intelpep - ok
21:08:10.0544 0x1bb8 intelppm - ok
21:08:10.0552 0x1bb8 IoQos - ok
21:08:10.0561 0x1bb8 IpFilterDriver - ok
21:08:10.0570 0x1bb8 iphlpsvc - ok
21:08:10.0579 0x1bb8 IPMIDRV - ok
21:08:10.0588 0x1bb8 IPNAT - ok
21:08:10.0597 0x1bb8 IRENUM - ok
21:08:10.0606 0x1bb8 isapnp - ok
21:08:10.0615 0x1bb8 iScsiPrt - ok
21:08:10.0626 0x1bb8 [ DD1F43B86AD84E53203F92FD3EF3AEB6, 9DE2BA80B315E56DF2E74EAA65F4ECB8324DFC19E30EB56EDDF08340AB100E87 ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys
21:08:10.0648 0x1bb8 iwdbus - ok
21:08:10.0656 0x1bb8 kbdclass - ok
21:08:10.0665 0x1bb8 kbdhid - ok
21:08:10.0674 0x1bb8 kdnic - ok
21:08:10.0683 0x1bb8 KeyIso - ok
21:08:10.0710 0x1bb8 [ BEE1682DA217A4AD46C36896769AA580, 4D853D78E459F7BFE4F4217FCAD47CDACFAC19C2F6CF8261FBAA46BDB387FFDC ] kl1 C:\WINDOWS\system32\DRIVERS\kl1.sys
21:08:10.0764 0x1bb8 kl1 - ok
21:08:10.0774 0x1bb8 [ 86F40D79CE80ACBE6BEBAC8CE89D75A0, 8B800425160D1AF3C32EF7B5CA794658EE09CD3EE782473D8D38E1C7706076B3 ] klbackupdisk C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys
21:08:10.0804 0x1bb8 klbackupdisk - ok
21:08:10.0815 0x1bb8 [ 2B4BC41223326FF440E2DB32B9239138, E95D5BB3388D6B219A4C175D5DA77CEB620A27A13F5AA4E7E2C05694B6E26947 ] klbackupflt C:\WINDOWS\system32\DRIVERS\klbackupflt.sys
21:08:10.0838 0x1bb8 klbackupflt - ok
21:08:10.0848 0x1bb8 [ 80D7529E1CF09261FADF55E69EFDA90B, 2FE5EC38866E12D78AE3F4AD8CF647BDED616E8A36D9D737F9B6564DDA4685E7 ] kldisk C:\WINDOWS\system32\DRIVERS\kldisk.sys
21:08:10.0877 0x1bb8 kldisk - ok
21:08:10.0885 0x1bb8 [ E2097C8F18F1E8E3B7D09F12B51843A3, 0506A99BD0962AAE64692BD7F080DB080F8B678DC59685CF22830A47B486430C ] klelam C:\WINDOWS\system32\DRIVERS\klelam.sys
21:08:10.0917 0x1bb8 klelam - ok
21:08:10.0931 0x1bb8 [ BACE50477C184A3AA0755702C23B8B27, 5708A1B7C22702AD2E5DD4491A911A51D2FB768E46857639C0C5D8736E487D0F ] klflt C:\WINDOWS\system32\DRIVERS\klflt.sys
21:08:10.0960 0x1bb8 klflt - ok
21:08:10.0976 0x1bb8 [ BE1DF4E950FF00A19BB72FA29CAEE32E, 24D8111B8782B4FB8612AB9DCE6A3A5EA63CE4B75DC717D0ECC5C6BCBCCF01AA ] klhk C:\WINDOWS\system32\DRIVERS\klhk.sys
21:08:11.0023 0x1bb8 klhk - ok
21:08:11.0065 0x1bb8 [ B72D1864B3EC6E429DB127A642CFB8BB, 43954F7E04158D79D44D0D6866838043A2B49B49EBF15A57DB120DB7AC3C19CE ] KLIF C:\WINDOWS\system32\DRIVERS\klif.sys
21:08:11.0131 0x1bb8 KLIF - ok
21:08:11.0141 0x1bb8 [ 161573B8BE82D24ED8B5B8EBA01245EA, 3CC124C717C2484A4DE0D415A2564D62D1A4B6E9DED65136B094304FCDE74CE0 ] KLIM6 C:\WINDOWS\system32\DRIVERS\klim6.sys
21:08:11.0164 0x1bb8 KLIM6 - ok
21:08:11.0174 0x1bb8 [ DAE5768E6FD34A36E3B9D1AF1FCA682B, 24DA0B71E3B4AC0FABEE0BF687DF8D35283DBF808CA3AB6F86E72B37471F6B33 ] klkbdflt C:\WINDOWS\system32\DRIVERS\klkbdflt.sys
21:08:11.0194 0x1bb8 klkbdflt - ok
21:08:11.0202 0x1bb8 [ FD47C92A63B6EADEA830BFA96C06EAEE, C15C39B6FA53CBD01A2F95243845C4B706B4229F8FFB75C7128819B9CEE5B2CB ] klmouflt C:\WINDOWS\system32\DRIVERS\klmouflt.sys
21:08:11.0221 0x1bb8 klmouflt - ok
21:08:11.0231 0x1bb8 [ F610F5F17BC87D61EF8954CCD793BAE4, A77FE26B4A474FE799C3D569BDD7858319C57FC14C1BB43ECFAB1FDB19AF5DC6 ] klpd C:\WINDOWS\system32\DRIVERS\klpd.sys
21:08:11.0250 0x1bb8 klpd - ok
21:08:11.0262 0x1bb8 [ 8334692AFEB3289984B40898B6B30C06, 6A337CC33B0EFC3B61BFCABFDFE305BE1D334620FB4D87DDEDBC8214966D6DDE ] klwfp C:\WINDOWS\system32\DRIVERS\klwfp.sys
21:08:11.0285 0x1bb8 klwfp - ok
21:08:11.0296 0x1bb8 [ 91234D71CEED29F2DBA16942CABDCA4F, 5D71BAC86C33BC77EEBF1ECB8F372DFE631991E4C5F36EAF0C8C957150BD6D52 ] Klwtp C:\WINDOWS\system32\DRIVERS\klwtp.sys
21:08:11.0332 0x1bb8 Klwtp - ok
21:08:11.0346 0x1bb8 [ 1686DE8288052316EFDD49EEA8929065, AD43D6ACCD8693BD76F218E1A4EE088BA061C1309A3E7DAA7EC94D875985D895 ] kneps C:\WINDOWS\system32\DRIVERS\kneps.sys
21:08:11.0373 0x1bb8 kneps - ok
21:08:11.0382 0x1bb8 KSecDD - ok
21:08:11.0391 0x1bb8 KSecPkg - ok
21:08:11.0399 0x1bb8 ksthunk - ok
21:08:11.0408 0x1bb8 KtmRm - ok
21:08:11.0417 0x1bb8 LanmanServer - ok
21:08:11.0427 0x1bb8 LanmanWorkstation - ok
21:08:11.0440 0x1bb8 lfsvc - ok
21:08:11.0456 0x1bb8 LicenseManager - ok
21:08:11.0464 0x1bb8 lltdio - ok
21:08:11.0474 0x1bb8 lltdsvc - ok
21:08:11.0483 0x1bb8 lmhosts - ok
21:08:11.0497 0x1bb8 LSI_SAS - ok
21:08:11.0506 0x1bb8 LSI_SAS2i - ok
21:08:11.0517 0x1bb8 LSI_SAS3i - ok
21:08:11.0526 0x1bb8 LSI_SSS - ok
21:08:11.0534 0x1bb8 LSM - ok
21:08:11.0543 0x1bb8 luafv - ok
21:08:11.0552 0x1bb8 MapsBroker - ok
21:08:11.0563 0x1bb8 [ 0D3CF8B876F55291B137B972891C1575, 2E7D0A54D5B2211D340EB56F3D5FCB8362E75415A3C75F553643BA55888DC690 ] MBI C:\WINDOWS\system32\drivers\MBI.sys
21:08:11.0584 0x1bb8 MBI - ok
21:08:11.0591 0x1bb8 megasas - ok
21:08:11.0599 0x1bb8 megasr - ok
21:08:11.0610 0x1bb8 MessagingService - ok
21:08:11.0682 0x1bb8 mlx4_bus - ok
21:08:11.0691 0x1bb8 MMCSS - ok
21:08:11.0699 0x1bb8 Modem - ok
21:08:11.0708 0x1bb8 monitor - ok
21:08:11.0717 0x1bb8 mouclass - ok
21:08:11.0727 0x1bb8 mouhid - ok
21:08:11.0736 0x1bb8 mountmgr - ok
21:08:11.0747 0x1bb8 mpsdrv - ok
21:08:11.0756 0x1bb8 MpsSvc - ok
21:08:11.0765 0x1bb8 MRxDAV - ok
21:08:11.0773 0x1bb8 mrxsmb - ok
21:08:11.0783 0x1bb8 mrxsmb10 - ok
21:08:11.0791 0x1bb8 mrxsmb20 - ok
21:08:11.0799 0x1bb8 MsBridge - ok
21:08:11.0808 0x1bb8 MSDTC - ok
21:08:11.0825 0x1bb8 Msfs - ok
21:08:11.0834 0x1bb8 msgpiowin32 - ok
21:08:11.0842 0x1bb8 mshidkmdf - ok
21:08:11.0851 0x1bb8 mshidumdf - ok
21:08:11.0862 0x1bb8 msisadrv - ok
21:08:11.0871 0x1bb8 MSiSCSI - ok
21:08:11.0880 0x1bb8 msiserver - ok
21:08:11.0888 0x1bb8 MSKSSRV - ok
21:08:11.0896 0x1bb8 MsLldp - ok
21:08:11.0905 0x1bb8 MSPCLOCK - ok
21:08:11.0916 0x1bb8 MSPQM - ok
21:08:11.0925 0x1bb8 MsRPC - ok
21:08:11.0938 0x1bb8 mssmbios - ok
21:08:11.0947 0x1bb8 MSTEE - ok
21:08:11.0957 0x1bb8 MTConfig - ok
21:08:11.0966 0x1bb8 Mup - ok
21:08:11.0975 0x1bb8 mvumis - ok
21:08:11.0989 0x1bb8 NativeWifiP - ok
21:08:11.0998 0x1bb8 NcaSvc - ok
21:08:12.0006 0x1bb8 NcbService - ok
21:08:12.0016 0x1bb8 NcdAutoSetup - ok
21:08:12.0026 0x1bb8 ndfltr - ok
21:08:12.0035 0x1bb8 NDIS - ok
21:08:12.0043 0x1bb8 NdisCap - ok
21:08:12.0089 0x1bb8 NdisImPlatform - ok
21:08:12.0096 0x1bb8 NdisTapi - ok
21:08:12.0105 0x1bb8 Ndisuio - ok
21:08:12.0116 0x1bb8 NdisVirtualBus - ok
21:08:12.0124 0x1bb8 NdisWan - ok
21:08:12.0132 0x1bb8 ndiswanlegacy - ok
21:08:12.0141 0x1bb8 ndproxy - ok
21:08:12.0152 0x1bb8 Ndu - ok
21:08:12.0160 0x1bb8 NetBIOS - ok
21:08:12.0173 0x1bb8 NetBT - ok
21:08:12.0182 0x1bb8 Netlogon - ok
21:08:12.0191 0x1bb8 Netman - ok
21:08:12.0199 0x1bb8 netprofm - ok
21:08:12.0208 0x1bb8 NetSetupSvc - ok
21:08:12.0220 0x1bb8 NetTcpPortSharing - ok
21:08:12.0232 0x1bb8 NgcCtnrSvc - ok
21:08:12.0241 0x1bb8 NgcSvc - ok
21:08:12.0250 0x1bb8 NlaSvc - ok
21:08:12.0259 0x1bb8 Npfs - ok
21:08:12.0269 0x1bb8 npsvctrig - ok
21:08:12.0279 0x1bb8 nsi - ok
21:08:12.0287 0x1bb8 nsiproxy - ok
21:08:12.0299 0x1bb8 NTFS - ok
21:08:12.0309 0x1bb8 Null - ok
21:08:12.0318 0x1bb8 nvraid - ok
21:08:12.0326 0x1bb8 nvstor - ok
21:08:12.0335 0x1bb8 nv_agp - ok
21:08:12.0360 0x1bb8 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:08:12.0400 0x1bb8 odserv - ok
21:08:12.0409 0x1bb8 OneSyncSvc - ok
21:08:12.0486 0x1bb8 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:08:12.0525 0x1bb8 ose - ok
21:08:12.0538 0x1bb8 p2pimsvc - ok
21:08:12.0548 0x1bb8 p2psvc - ok
21:08:12.0558 0x1bb8 Parport - ok
21:08:12.0566 0x1bb8 partmgr - ok
21:08:12.0575 0x1bb8 PcaSvc - ok
21:08:12.0584 0x1bb8 pci - ok
21:08:12.0594 0x1bb8 pciide - ok
21:08:12.0601 0x1bb8 pcmcia - ok
21:08:12.0611 0x1bb8 pcw - ok
21:08:12.0622 0x1bb8 pdc - ok
21:08:12.0631 0x1bb8 PEAUTH - ok
21:08:12.0640 0x1bb8 PeerDistSvc - ok
21:08:12.0649 0x1bb8 percsas2i - ok
21:08:12.0658 0x1bb8 percsas3i - ok
21:08:12.0695 0x1bb8 PerfHost - ok
21:08:12.0715 0x1bb8 PhoneSvc - ok
21:08:12.0724 0x1bb8 PimIndexMaintenanceSvc - ok
21:08:12.0794 0x1bb8 pla - ok
21:08:12.0802 0x1bb8 PlugPlay - ok
21:08:12.0810 0x1bb8 PNRPAutoReg - ok
21:08:12.0821 0x1bb8 PNRPsvc - ok
21:08:12.0833 0x1bb8 [ 4C2985DAAF5859A670AE2AF478AF58C6, 3B62D04255FC9C9D46B76B740D9DEFB6F382ADB1C5D27948FABDE71E9F7CA768 ] Point64 C:\WINDOWS\System32\drivers\point64.sys
21:08:12.0861 0x1bb8 Point64 - ok
21:08:12.0870 0x1bb8 PolicyAgent - ok
21:08:12.0883 0x1bb8 Power - ok
21:08:12.0892 0x1bb8 PptpMiniport - ok
21:08:13.0019 0x1bb8 [ 8E284670A19FAB11857D054A738D140E, E654D540C7897367E784F9E910FAC147A15C0E457A5E4D394170B05D0E09E7B4 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
21:08:13.0284 0x1bb8 PrintNotify - ok
21:08:13.0298 0x1bb8 Processor - ok
21:08:13.0307 0x1bb8 ProfSvc - ok
21:08:13.0317 0x1bb8 Psched - ok
21:08:13.0327 0x1bb8 [ C32ECB99AD25E9A04F01C8665DF29EF8, 0489B3DEC6A33E50D8A48A8DAD3F5B923A81F7300E4A71358D90D2879BAC9AA2 ] pwdrvio C:\WINDOWS\system32\pwdrvio.sys
21:08:13.0421 0x1bb8 pwdrvio - ok
21:08:13.0429 0x1bb8 [ D619356B955EEFA642F5FF72755E8B3C, 1FD54978A77ACD6FBF1236E177ED074894743A9141E4169FE9AFE28680FC93C5 ] pwdspio C:\Windows\system32\pwdspio.sys
21:08:13.0460 0x1bb8 pwdspio - ok
21:08:13.0467 0x1bb8 QWAVE - ok
21:08:13.0476 0x1bb8 QWAVEdrv - ok
21:08:13.0485 0x1bb8 RasAcd - ok
21:08:13.0494 0x1bb8 RasAgileVpn - ok
21:08:13.0503 0x1bb8 RasAuto - ok
21:08:13.0512 0x1bb8 Rasl2tp - ok
21:08:13.0522 0x1bb8 RasMan - ok
21:08:13.0531 0x1bb8 RasPppoe - ok
21:08:13.0541 0x1bb8 RasSstp - ok
21:08:13.0550 0x1bb8 rdbss - ok
21:08:13.0563 0x1bb8 rdpbus - ok
21:08:13.0572 0x1bb8 RDPDR - ok
21:08:13.0590 0x1bb8 RdpVideoMiniport - ok
21:08:13.0599 0x1bb8 rdyboost - ok
21:08:13.0609 0x1bb8 ReFSv1 - ok
21:08:13.0623 0x1bb8 RemoteAccess - ok
21:08:13.0633 0x1bb8 RemoteRegistry - ok
21:08:13.0641 0x1bb8 RetailDemo - ok
21:08:13.0650 0x1bb8 RpcEptMapper - ok
21:08:13.0659 0x1bb8 RpcLocator - ok
21:08:13.0668 0x1bb8 RpcSs - ok
21:08:13.0676 0x1bb8 rspndr - ok
21:08:13.0685 0x1bb8 rt640x64 - ok
21:08:13.0705 0x1bb8 [ 7DECE141A4FB0450AE310FE47910B75B, 8082D683925B8F6938C6113E728CA2059CC1B2D1B24E0C3536178CD37D7563E0 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
21:08:13.0735 0x1bb8 RtkAudioService - ok
21:08:13.0748 0x1bb8 s3cap - ok
21:08:13.0765 0x1bb8 [ 018EE96468C75853FABE798B652153A2, 007C8D36C0A95BE82E6D5C5D9255CCC366935BD1BAC8DE949616992C44DFC958 ] SAllBDA C:\WINDOWS\System32\Drivers\TeViiS2.sys
21:08:13.0796 0x1bb8 SAllBDA - ok
21:08:13.0804 0x1bb8 SamSs - ok
21:08:13.0813 0x1bb8 [ 5EFBBFCC6ADAC121C8E2FE76641ED329, 0EAB16C7F54B61620277977F8C332737081A46BC6BBDE50742B6904BDD54F502 ] SANDRA C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.RTMa\WNt600x64\Sandra.sys
21:08:13.0833 0x1bb8 SANDRA - ok
21:08:13.0842 0x1bb8 [ 689CAD56FC0BCF940BBB8C27DE03CD6D, 9EFE9A11A5B2A050E274EA550CE1E3BC31747FCC4CC3C9405EBBB02A23655298 ] SandraAgentSrv C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.RTMa\RpcAgentSrv.exe
21:08:13.0867 0x1bb8 SandraAgentSrv - detected UnsignedFile.Multi.Generic ( 1 )
21:08:14.0001 0x1bb8 Detect skipped due to KSN trusted
21:08:14.0002 0x1bb8 SandraAgentSrv - ok
21:08:14.0009 0x1bb8 sbp2port - ok
21:08:14.0018 0x1bb8 SCardSvr - ok
21:08:14.0026 0x1bb8 ScDeviceEnum - ok
21:08:14.0035 0x1bb8 scfilter - ok
21:08:14.0045 0x1bb8 Schedule - ok
21:08:14.0053 0x1bb8 SCPolicySvc - ok
21:08:14.0063 0x1bb8 sdbus - ok
21:08:14.0072 0x1bb8 SDRSVC - ok
21:08:14.0081 0x1bb8 sdstor - ok
21:08:14.0089 0x1bb8 seclogon - ok
21:08:14.0098 0x1bb8 SENS - ok
21:08:14.0107 0x1bb8 SensorDataService - ok
21:08:14.0116 0x1bb8 SensorService - ok
21:08:14.0127 0x1bb8 SensrSvc - ok
21:08:14.0135 0x1bb8 SerCx - ok
21:08:14.0143 0x1bb8 SerCx2 - ok
21:08:14.0153 0x1bb8 Serenum - ok
21:08:14.0164 0x1bb8 Serial - ok
21:08:14.0173 0x1bb8 sermouse - ok
21:08:14.0195 0x1bb8 SessionEnv - ok
21:08:14.0215 0x1bb8 sfloppy - ok
21:08:14.0234 0x1bb8 SharedAccess - ok
21:08:14.0241 0x1bb8 ShellHWDetection - ok
21:08:14.0250 0x1bb8 SiSRaid2 - ok
21:08:14.0259 0x1bb8 SiSRaid4 - ok
21:08:14.0271 0x1bb8 smphost - ok
21:08:14.0279 0x1bb8 SmsRouter - ok
21:08:14.0307 0x1bb8 [ 2F7A6F88A9516EB47B0BF13024434244, 5FC5635D077AAA42853F78306C941995B56E939015CC3F27D376CBD9395C7410 ] snapman C:\WINDOWS\system32\DRIVERS\snapman.sys
21:08:14.0340 0x1bb8 snapman - ok
21:08:14.0349 0x1bb8 SNMPTRAP - ok
21:08:14.0357 0x1bb8 spaceport - ok
21:08:14.0366 0x1bb8 SpbCx - ok
21:08:14.0374 0x1bb8 Spooler - ok
21:08:14.0385 0x1bb8 sppsvc - ok
21:08:14.0393 0x1bb8 srv - ok
21:08:14.0401 0x1bb8 srv2 - ok
21:08:14.0411 0x1bb8 srvnet - ok
21:08:14.0420 0x1bb8 SSDPSRV - ok
21:08:14.0429 0x1bb8 SstpSvc - ok
21:08:14.0447 0x1bb8 [ 36C3697CA09B23C77BDF95A6B0B57310, DAEF9CFBDE444A80FB41DA0BC5C3C4E1E4B535497A5EDA43EC8768A6EC42E4EA ] ssudmdm C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:08:14.0493 0x1bb8 ssudmdm - ok
21:08:14.0502 0x1bb8 [ 3267933B06415A5801FE888B203C2046, 8AB522EBF47294760D7F5F49034175A29E16D61481B414B6E193DB144FCA9A62 ] ssudqcfilter C:\WINDOWS\System32\drivers\ssudqcfilter.sys
21:08:14.0528 0x1bb8 ssudqcfilter - ok
21:08:14.0544 0x1bb8 [ 31A20120B76C8F6D350D4EF6668B0381, 86971AC0963470039D44E8BFA72FEB188E8ED579FCB96AD4492CEBFEF887823E ] Start10 C:\Program Files (x86)\Stardock\Start10\Start10Srv.exe
21:08:14.0586 0x1bb8 Start10 - ok
21:08:14.0594 0x1bb8 StateRepository - ok
21:08:14.0602 0x1bb8 stexstor - ok
21:08:14.0611 0x1bb8 stisvc - ok
21:08:14.0619 0x1bb8 storahci - ok
21:08:14.0629 0x1bb8 storflt - ok
21:08:14.0639 0x1bb8 stornvme - ok
21:08:14.0647 0x1bb8 storqosflt - ok
21:08:14.0656 0x1bb8 StorSvc - ok
21:08:14.0665 0x1bb8 storufs - ok
21:08:14.0674 0x1bb8 storvsc - ok
21:08:14.0683 0x1bb8 svsvc - ok
21:08:14.0693 0x1bb8 swenum - ok
21:08:14.0702 0x1bb8 swprv - ok
21:08:14.0944 0x1bb8 [ 06A5A15C89E5F2C08D0C595C1DA776AF, EEFC5803E3C76115DF24B00A4BD6F3196D6CD87049802EF58BE6CF2CCB758FBF ] syncagentsrv C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
21:08:15.0303 0x1bb8 syncagentsrv - ok
21:08:15.0327 0x1bb8 Synth3dVsc - ok
21:08:15.0336 0x1bb8 SysMain - ok
21:08:15.0345 0x1bb8 SystemEventsBroker - ok
21:08:15.0355 0x1bb8 TabletInputService - ok
21:08:15.0363 0x1bb8 TapiSrv - ok
21:08:15.0372 0x1bb8 Tcpip - ok
21:08:15.0381 0x1bb8 Tcpip6 - ok
21:08:15.0395 0x1bb8 tcpipreg - ok
21:08:15.0408 0x1bb8 tdx - ok
21:08:15.0416 0x1bb8 terminpt - ok
21:08:15.0425 0x1bb8 TermService - ok
21:08:15.0434 0x1bb8 Themes - ok
21:08:15.0481 0x1bb8 [ AEEEB1EE424A8D6F17B3A6461E0FC7E6, 3A5FD27DF6132E84DC03366FB684B31A454C0805A5E4EA0C67B0CE85FF446B93 ] tib C:\WINDOWS\system32\DRIVERS\tib.sys
21:08:15.0549 0x1bb8 tib - ok
21:08:15.0567 0x1bb8 [ 3813F93D8A69EDE68913CC3050640FE3, 4931BC6DA6FD0808C985CD6202FB759F6B8DE8957FB44E6AD8844EA58C891AC1 ] tib_mounter C:\WINDOWS\system32\DRIVERS\tib_mounter.sys
21:08:15.0610 0x1bb8 tib_mounter - ok
21:08:15.0617 0x1bb8 TieringEngineService - ok
21:08:15.0626 0x1bb8 tiledatamodelsvc - ok
21:08:15.0635 0x1bb8 TimeBroker - ok
21:08:15.0645 0x1bb8 TPM - ok
21:08:15.0654 0x1bb8 TrkWks - ok
21:08:15.0663 0x1bb8 TrustedInstaller - ok
21:08:15.0676 0x1bb8 tsusbflt - ok
21:08:15.0685 0x1bb8 TsUsbGD - ok
21:08:15.0700 0x1bb8 [ 59AB67F75AFC224791A1024DB9DA3EA8, 9DC350FAD50F166D75FA9BF6CADA420FB2241DB520AD2C8CF348E1E357AC5FB9 ] ttConnect4600_64 C:\WINDOWS\System32\Drivers\ttConnect4600_64.sys
21:08:15.0743 0x1bb8 ttConnect4600_64 - ok
21:08:15.0751 0x1bb8 tunnel - ok
21:08:15.0763 0x1bb8 [ 72E24CD1662577B38779B5E768C48FEE, 66BFD18CEDEEF358B04B81C65BC12606632FB1B2DAD4EC8405962DE1054D08CA ] TXEIx64 C:\WINDOWS\System32\drivers\TXEIx64.sys
21:08:15.0788 0x1bb8 TXEIx64 - ok
21:08:15.0795 0x1bb8 tzautoupdate - ok
21:08:15.0804 0x1bb8 uagp35 - ok
21:08:15.0813 0x1bb8 UASPStor - ok
21:08:15.0822 0x1bb8 UcmCx0101 - ok
21:08:15.0831 0x1bb8 UcmUcsi - ok
21:08:15.0840 0x1bb8 Ucx01000 - ok
21:08:15.0848 0x1bb8 UdeCx - ok
21:08:15.0858 0x1bb8 udfs - ok
21:08:15.0869 0x1bb8 UEFI - ok
21:08:15.0878 0x1bb8 Ufx01000 - ok
21:08:15.0887 0x1bb8 UfxChipidea - ok
21:08:15.0896 0x1bb8 ufxsynopsys - ok
21:08:15.0914 0x1bb8 UI0Detect - ok
21:08:15.0923 0x1bb8 uliagpkx - ok
21:08:15.0932 0x1bb8 umbus - ok
21:08:15.0941 0x1bb8 UmPass - ok
21:08:15.0951 0x1bb8 UmRdpService - ok
21:08:15.0959 0x1bb8 UnistoreSvc - ok
21:08:16.0034 0x1bb8 upnphost - ok
21:08:16.0045 0x1bb8 UrsChipidea - ok
21:08:16.0053 0x1bb8 UrsCx01000 - ok
21:08:16.0063 0x1bb8 UrsSynopsys - ok
21:08:16.0072 0x1bb8 usbaudio - ok
21:08:16.0082 0x1bb8 usbccgp - ok
21:08:16.0091 0x1bb8 usbcir - ok
21:08:16.0099 0x1bb8 usbehci - ok
21:08:16.0108 0x1bb8 usbhub - ok
21:08:16.0118 0x1bb8 USBHUB3 - ok
21:08:16.0126 0x1bb8 [ 4E8CBE26FDC1CB0E2BE473B2985324C0, FD2AD423CDAE68F31978263BA29EBE2F8B4EF60698C9D406126DEE2CCA8AB9D6 ] USBLogonService C:\Program Files\USBLogon\usblonsvc.exe
21:08:16.0142 0x1bb8 USBLogonService - detected UnsignedFile.Multi.Generic ( 1 )
21:08:16.0317 0x1bb8 Detect skipped due to KSN trusted
21:08:16.0317 0x1bb8 USBLogonService - ok
21:08:16.0324 0x1bb8 usbohci - ok
21:08:16.0332 0x1bb8 usbprint - ok
21:08:16.0343 0x1bb8 [ D67B6A4A6FB99D29444C2DBA2B636799, 62BC778D60593B2AB0DA13C4DB3EA5971895AE09DA06E8AB2D03973C940C890C ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:08:16.0420 0x1bb8 usbscan - ok
21:08:16.0429 0x1bb8 usbser - ok
21:08:16.0438 0x1bb8 USBSTOR - ok
21:08:16.0446 0x1bb8 usbuhci - ok
21:08:16.0455 0x1bb8 USBXHCI - ok
21:08:16.0464 0x1bb8 UserDataSvc - ok
21:08:16.0535 0x1bb8 UserManager - ok
21:08:16.0546 0x1bb8 UsoSvc - ok
21:08:16.0555 0x1bb8 VaultSvc - ok
21:08:16.0563 0x1bb8 vdrvroot - ok
21:08:16.0572 0x1bb8 vds - ok
21:08:16.0581 0x1bb8 VerifierExt - ok
21:08:16.0590 0x1bb8 vhdmp - ok
21:08:16.0598 0x1bb8 vhf - ok
21:08:16.0607 0x1bb8 vmbus - ok
21:08:16.0616 0x1bb8 VMBusHID - ok
21:08:16.0625 0x1bb8 vmicguestinterface - ok
21:08:16.0634 0x1bb8 vmicheartbeat - ok
21:08:16.0642 0x1bb8 vmickvpexchange - ok
21:08:16.0651 0x1bb8 vmicrdv - ok
21:08:16.0661 0x1bb8 vmicshutdown - ok
21:08:16.0670 0x1bb8 vmictimesync - ok
21:08:16.0679 0x1bb8 vmicvmsession - ok
21:08:16.0687 0x1bb8 vmicvss - ok
21:08:16.0696 0x1bb8 volmgr - ok
21:08:16.0707 0x1bb8 volmgrx - ok
21:08:16.0716 0x1bb8 volsnap - ok
21:08:16.0725 0x1bb8 vpci - ok
21:08:16.0734 0x1bb8 vsmraid - ok
21:08:16.0744 0x1bb8 VSS - ok
21:08:16.0761 0x1bb8 [ 79F4D90FAA0ACC1866F2F3E03E39CA89, EE08BCBF29A7E4AFFF520B8DF067281425F433EC275F8C86CE8F20F000E92E3D ] vssbrigde64 C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\x64\vssbridge64.exe
21:08:16.0785 0x1bb8 vssbrigde64 - ok
21:08:16.0793 0x1bb8 VSTXRAID - ok
21:08:16.0803 0x1bb8 vwifibus - ok
21:08:16.0812 0x1bb8 vwififlt - ok
21:08:16.0821 0x1bb8 W32Time - ok
21:08:16.0831 0x1bb8 WacomPen - ok
21:08:16.0840 0x1bb8 WalletService - ok
21:08:16.0848 0x1bb8 wanarp - ok
21:08:16.0857 0x1bb8 wanarpv6 - ok
21:08:16.0867 0x1bb8 wbengine - ok
21:08:16.0875 0x1bb8 WbioSrvc - ok
21:08:16.0884 0x1bb8 Wcmsvc - ok
21:08:16.0893 0x1bb8 wcncsvc - ok
21:08:16.0903 0x1bb8 WcsPlugInService - ok
21:08:16.0912 0x1bb8 WdBoot - ok
21:08:16.0921 0x1bb8 Wdf01000 - ok
21:08:16.0930 0x1bb8 WdFilter - ok
21:08:16.0939 0x1bb8 WdiServiceHost - ok
21:08:16.0948 0x1bb8 WdiSystemHost - ok
21:08:16.0957 0x1bb8 wdiwifi - ok
21:08:16.0965 0x1bb8 WdNisDrv - ok
21:08:16.0975 0x1bb8 WdNisSvc - ok
21:08:16.0985 0x1bb8 WebClient - ok
21:08:16.0994 0x1bb8 Wecsvc - ok
21:08:17.0003 0x1bb8 WEPHOSTSVC - ok
21:08:17.0014 0x1bb8 wercplsupport - ok
21:08:17.0023 0x1bb8 WerSvc - ok
21:08:17.0034 0x1bb8 WFPLWFS - ok
21:08:17.0044 0x1bb8 WiaRpc - ok
21:08:17.0053 0x1bb8 WIMMount - ok
21:08:17.0060 0x1bb8 WinDefend - ok
21:08:17.0081 0x1bb8 WindowsTrustedRT - ok
21:08:17.0090 0x1bb8 WindowsTrustedRTProxy - ok
21:08:17.0100 0x1bb8 WinHttpAutoProxySvc - ok
21:08:17.0109 0x1bb8 WinMad - ok
21:08:17.0123 0x1bb8 Winmgmt - ok
21:08:17.0131 0x1bb8 WinRM - ok
21:08:17.0148 0x1bb8 WINUSB - ok
21:08:17.0158 0x1bb8 WinVerbs - ok
21:08:17.0167 0x1bb8 WlanSvc - ok
21:08:17.0176 0x1bb8 wlidsvc - ok
21:08:17.0185 0x1bb8 WmiAcpi - ok
21:08:17.0198 0x1bb8 wmiApSrv - ok
21:08:17.0205 0x1bb8 WMPNetworkSvc - ok
21:08:17.0222 0x1bb8 [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof C:\WINDOWS\system32\drivers\Wof.sys
21:08:17.0261 0x1bb8 Wof - ok
21:08:17.0274 0x1bb8 workfolderssvc - ok
21:08:17.0282 0x1bb8 wpcfltr - ok
21:08:17.0291 0x1bb8 WPDBusEnum - ok
21:08:17.0299 0x1bb8 WpdUpFltr - ok
21:08:17.0308 0x1bb8 WpnService - ok
21:08:17.0317 0x1bb8 ws2ifsl - ok
21:08:17.0328 0x1bb8 wscsvc - ok
21:08:17.0336 0x1bb8 WSDPrintDevice - ok
21:08:17.0346 0x1bb8 WSDScan - ok
21:08:17.0357 0x1bb8 WSearch - ok
21:08:17.0369 0x1bb8 WSService - ok
21:08:17.0379 0x1bb8 wuauserv - ok
21:08:17.0389 0x1bb8 WudfPf - ok
21:08:17.0399 0x1bb8 WUDFRd - ok
21:08:17.0409 0x1bb8 wudfsvc - ok
21:08:17.0417 0x1bb8 WUDFWpdFs - ok
21:08:17.0426 0x1bb8 WUDFWpdMtp - ok
21:08:17.0448 0x1bb8 WwanSvc - ok
21:08:17.0467 0x1bb8 XblAuthManager - ok
21:08:17.0474 0x1bb8 XblGameSave - ok
21:08:17.0484 0x1bb8 xboxgip - ok
21:08:17.0493 0x1bb8 XboxNetApiSvc - ok
21:08:17.0501 0x1bb8 xinputhid - ok
21:08:17.0509 0x1bb8 ================ Scan global ===============================
21:08:17.0532 0x1bb8 [ Global ] - ok
21:08:17.0533 0x1bb8 ================ Scan MBR ==================================
21:08:17.0538 0x1bb8 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
21:08:17.0595 0x1bb8 \Device\Harddisk2\DR2 - ok
21:08:17.0600 0x1bb8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
21:08:17.0953 0x1bb8 \Device\Harddisk1\DR1 - ok
21:08:17.0958 0x1bb8 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
21:08:18.0018 0x1bb8 \Device\Harddisk0\DR0 - ok
21:08:18.0023 0x1bb8 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
21:08:18.0057 0x1bb8 \Device\Harddisk2\DR2 - ok
21:08:18.0064 0x1bb8 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk3\DR3
21:08:18.0119 0x1bb8 \Device\Harddisk3\DR3 - ok
21:08:18.0125 0x1bb8 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk4\DR4
21:08:18.0315 0x1bb8 \Device\Harddisk4\DR4 - ok
21:08:18.0534 0x1bb8 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk6\DR6
21:08:19.0010 0x1bb8 \Device\Harddisk6\DR6 - ok
21:08:19.0012 0x1bb8 ================ Scan VBR ==================================
21:08:19.0017 0x1bb8 [ 3C5FE26C6F08E15E8D8130FA29F3F039 ] \Device\Harddisk2\DR2\Partition1
21:08:19.0020 0x1bb8 \Device\Harddisk2\DR2\Partition1 - ok
21:08:19.0033 0x1bb8 [ 0EBD8D3B06C7AECA2C3CB740FA18060C ] \Device\Harddisk1\DR1\Partition1
21:08:19.0036 0x1bb8 \Device\Harddisk1\DR1\Partition1 - ok
21:08:19.0043 0x1bb8 [ D5A3D25F20456F273617BC98C570404A ] \Device\Harddisk1\DR1\Partition2
21:08:19.0046 0x1bb8 \Device\Harddisk1\DR1\Partition2 - ok
21:08:19.0051 0x1bb8 [ DF8C0FB111DB3B13840A30DF050366FD ] \Device\Harddisk0\DR0\Partition1
21:08:19.0052 0x1bb8 \Device\Harddisk0\DR0\Partition1 - ok
21:08:19.0060 0x1bb8 [ 3C5FE26C6F08E15E8D8130FA29F3F039 ] \Device\Harddisk2\DR2\Partition1
21:08:19.0062 0x1bb8 \Device\Harddisk2\DR2\Partition1 - ok
21:08:19.0069 0x1bb8 [ 7ABBCDBCF8B7325495E531B39E9C328E ] \Device\Harddisk3\DR3\Partition1
21:08:19.0071 0x1bb8 \Device\Harddisk3\DR3\Partition1 - ok
21:08:19.0079 0x1bb8 [ 0D24187A9D2DF2E21BDFA3860A07619F ] \Device\Harddisk4\DR4\Partition1
21:08:19.0086 0x1bb8 \Device\Harddisk4\DR4\Partition1 - ok
21:08:19.0092 0x1bb8 [ AC81228C0E30D08C99FDBFECD73E7B0F ] \Device\Harddisk6\DR6\Partition1
21:08:19.0094 0x1bb8 \Device\Harddisk6\DR6\Partition1 - ok
21:08:19.0096 0x1bb8 ================ Scan generic autorun ======================
21:08:19.0113 0x1bb8 [ 5B11913603C6DCFD61896E3455B2BFE1, AECFBBA7D240E60EE617DA19D0B61BE5280B024B95C6AADE756DAC01AB58CD5C ] C:\WINDOWS\TeViiRC.exe
21:08:19.0143 0x1bb8 TeViiRC - ok
21:08:19.0219 0x1bb8 [ 9DFE8B0B6C982C31144CED1795304A60, DFE0253CD9DEE63D94F7538833048F48BFBDAC39B18A17F1CAE7413B94A8DE4D ] C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe
21:08:19.0330 0x1bb8 XFast LAN - ok
21:08:19.0339 0x1bb8 [ 7483FB537B3399CB4646025872DC8658, 3C8995A64B9D3001F3C93DCBE271B955C1303ABEEF65E37D7D98947AD021B60B ] C:\Program Files\USBLogon\usblondetect.exe
21:08:19.0355 0x1bb8 USBLogon - detected UnsignedFile.Multi.Generic ( 1 )
21:08:19.0467 0x1bb8 Detect skipped due to KSN trusted
21:08:19.0467 0x1bb8 USBLogon - ok
21:08:19.0496 0x1bb8 [ 84F122BFFA0638CE735E891620EF7754, 5A3227301212C4F767258F8207268055B8EA672E82F64CD9CBDCD96858476D7F ] C:\Program Files (x86)\Hotkey Utility\HotkeyUtility.exe
21:08:19.0549 0x1bb8 CD_Key - ok
21:08:20.0143 0x1bb8 [ CC742C52B5F06E834B4C742C80548CC1, 44E00601470BBF6FB3C14F0BE53F32181F79543C60A5D14731E828C160E7169E ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
21:08:20.0983 0x1bb8 RtHDVCpl - ok
21:08:21.0037 0x1bb8 [ 560CDB1150BB331C4571F45E51E2EADC, 3141E92460330C645A910DC9A020E79F3E64E523814905B6E586524B439BE33C ] C:\Program Files (x86)\DocFetcher\docfetcher-daemon-windows.exe
21:08:21.0093 0x1bb8 DocFetcher-Daemon - detected UnsignedFile.Multi.Generic ( 1 )
21:08:21.0223 0x1bb8 Detect skipped due to KSN trusted
21:08:21.0224 0x1bb8 DocFetcher-Daemon - ok
21:08:21.0231 0x1bb8 Dropbox - ok
21:08:21.0266 0x1bb8 OneDriveSetup - ok
21:08:21.0270 0x1bb8 OneDriveSetup - ok
21:08:21.0335 0x1bb8 [ 795579AEE31744DC18E475AAC06561EF, FFCFA47F29AB0DF4D23AA6490DEC8B6E6E1B10CB88133C3A138044E8116819D5 ] C:\Program Files (x86)\Copernic Desktop Search - Home\DesktopSearchService.exe
21:08:21.0440 0x1bb8 Copernic Desktop Search - Home - ok
21:08:21.0445 0x1bb8 update_er - ok
21:08:21.0451 0x1bb8 Waiting for KSN requests completion. In queue: 72
21:08:22.0500 0x1bb8 AV detected via SS2: Kaspersky Anti-Virus, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\wmiav.exe ( 16.0.0.614 ), 0x41000 ( enabled : updated )
21:08:22.0502 0x1bb8 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.589 ), 0x60100 ( disabled : updated )
21:08:22.0506 0x1bb8 FW detected via SS2: Kaspersky Anti-Virus, C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 16.0.0\wmiav.exe ( 16.0.0.614 ), 0x40010 ( disabled )
21:08:22.0517 0x1bb8 Win FW state via NFP2: enabled ( trusted )
21:08:22.0653 0x1bb8 ============================================================
21:08:22.0653 0x1bb8 Scan finished
21:08:22.0653 0x1bb8 ============================================================
21:08:22.0669 0x03e8 Detected object count: 0
21:08:22.0669 0x03e8 Actual detected object count: 0 |