mariname | 29.10.2016 15:53 | Code:
Malwarebytes Anti-Rootkit BETA 1.9.3.1001
www.malwarebytes.org
Database version:
main: v2016.10.29.05
rootkit: v2016.09.26.02
Windows 10 x64 NTFS
Internet Explorer 11.321.14393.0
Marina :: LAPTOP-AIIG19U2 [administrator]
29.10.2016 16:28:31
mbar-log-2016-10-29 (16-28-31).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Objects scanned: 332829
Time elapsed: 7 minute(s), 19 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end) Code:
16:45:52.0743 0x02e8 TDSS rootkit removing tool 3.1.0.11 Aug 5 2016 12:13:31
16:45:52.0743 0x02e8 UEFI system
16:46:05.0586 0x02e8 ============================================================
16:46:05.0586 0x02e8 Current date / time: 2016/10/29 16:46:05.0586
16:46:05.0586 0x02e8 SystemInfo:
16:46:05.0586 0x02e8
16:46:05.0586 0x02e8 OS Version: 10.0.14393 ServicePack: 0.0
16:46:05.0586 0x02e8 Product type: Workstation
16:46:05.0586 0x02e8 ComputerName: LAPTOP-AIIG19U2
16:46:05.0586 0x02e8 UserName: Marina
16:46:05.0586 0x02e8 Windows directory: C:\WINDOWS
16:46:05.0586 0x02e8 System windows directory: C:\WINDOWS
16:46:05.0586 0x02e8 Running under WOW64
16:46:05.0586 0x02e8 Processor architecture: Intel x64
16:46:05.0586 0x02e8 Number of processors: 4
16:46:05.0586 0x02e8 Page size: 0x1000
16:46:05.0586 0x02e8 Boot type: Normal boot
16:46:05.0586 0x02e8 CodeIntegrityOptions = 0x00000001
16:46:05.0586 0x02e8 ============================================================
16:46:05.0726 0x02e8 KLMD registered as C:\WINDOWS\system32\drivers\65083778.sys
16:46:05.0726 0x02e8 KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 14393.321, osProperties = 0x19
16:46:06.0336 0x02e8 System UUID: {503A0454-6792-7D5F-C74D-09622780AA27}
16:46:06.0961 0x02e8 Drive \Device\Harddisk0\DR0 - Size: 0x3B9E656000 ( 238.47 Gb ), SectorSize: 0x200, Cylinders: 0x799A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:46:06.0961 0x02e8 ============================================================
16:46:06.0961 0x02e8 \Device\Harddisk0\DR0:
16:46:06.0961 0x02e8 GPT partitions:
16:46:06.0961 0x02e8 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {265F6C4E-CDEC-4981-A115-D989872636C0}, Name: EFI system partition, StartLBA 0x800, BlocksNum 0x32000
16:46:06.0961 0x02e8 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {7DD2B033-2334-4609-8659-56E8F62953D1}, Name: Microsoft reserved partition, StartLBA 0x32800, BlocksNum 0x8000
16:46:06.0961 0x02e8 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {438C9363-6AEF-4AFF-A3C9-CCC9CF5BE65F}, Name: Basic data partition, StartLBA 0x3A800, BlocksNum 0x1DBBB800
16:46:06.0961 0x02e8 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {DCBECBA6-50AA-4871-B8E3-5461F86A786E}, Name: Basic data partition, StartLBA 0x1DBF6000, BlocksNum 0xFA000
16:46:06.0961 0x02e8 MBR partitions:
16:46:06.0961 0x02e8 ============================================================
16:46:06.0961 0x02e8 C: <-> \Device\Harddisk0\DR0\Partition3
16:46:06.0961 0x02e8 ============================================================
16:46:06.0961 0x02e8 Initialize success
16:46:06.0961 0x02e8 ============================================================
16:46:26.0978 0x1cd4 ============================================================
16:46:26.0978 0x1cd4 Scan started
16:46:26.0978 0x1cd4 Mode: Manual;
16:46:26.0978 0x1cd4 ============================================================
16:46:26.0978 0x1cd4 KSN ping started
16:46:27.0463 0x1cd4 KSN ping finished: true
16:46:28.0400 0x1cd4 ================ Scan system memory ========================
16:46:28.0400 0x1cd4 System memory - ok
16:46:28.0400 0x1cd4 ================ Scan services =============================
16:46:28.0432 0x1cd4 1394ohci - ok
16:46:28.0432 0x1cd4 3ware - ok
16:46:28.0447 0x1cd4 ACPI - ok
16:46:28.0447 0x1cd4 AcpiDev - ok
16:46:28.0447 0x1cd4 acpiex - ok
16:46:28.0463 0x1cd4 acpipagr - ok
16:46:28.0463 0x1cd4 AcpiPmi - ok
16:46:28.0463 0x1cd4 acpitime - ok
16:46:28.0479 0x1cd4 ADP80XX - ok
16:46:28.0479 0x1cd4 AFD - ok
16:46:28.0479 0x1cd4 ahcache - ok
16:46:28.0494 0x1cd4 AJRouter - ok
16:46:28.0494 0x1cd4 ALG - ok
16:46:28.0494 0x1cd4 AmdK8 - ok
16:46:28.0494 0x1cd4 AmdPPM - ok
16:46:28.0510 0x1cd4 amdsata - ok
16:46:28.0510 0x1cd4 amdsbs - ok
16:46:28.0510 0x1cd4 amdxata - ok
16:46:28.0525 0x1cd4 AppID - ok
16:46:28.0525 0x1cd4 AppIDSvc - ok
16:46:28.0525 0x1cd4 Appinfo - ok
16:46:28.0541 0x1cd4 applockerfltr - ok
16:46:28.0541 0x1cd4 AppReadiness - ok
16:46:28.0541 0x1cd4 AppXSvc - ok
16:46:28.0541 0x1cd4 arcsas - ok
16:46:28.0557 0x1cd4 AsyncMac - ok
16:46:28.0557 0x1cd4 atapi - ok
16:46:28.0572 0x1cd4 AtherosSvc - ok
16:46:28.0572 0x1cd4 AudioEndpointBuilder - ok
16:46:28.0572 0x1cd4 Audiosrv - ok
16:46:28.0572 0x1cd4 AxInstSV - ok
16:46:28.0588 0x1cd4 b06bdrv - ok
16:46:28.0588 0x1cd4 BasicDisplay - ok
16:46:28.0588 0x1cd4 BasicRender - ok
16:46:28.0604 0x1cd4 bcmfn - ok
16:46:28.0604 0x1cd4 bcmfn2 - ok
16:46:28.0604 0x1cd4 BDESVC - ok
16:46:28.0619 0x1cd4 Beep - ok
16:46:28.0619 0x1cd4 BFE - ok
16:46:28.0619 0x1cd4 BITS - ok
16:46:28.0635 0x1cd4 bowser - ok
16:46:28.0635 0x1cd4 BrokerInfrastructure - ok
16:46:28.0635 0x1cd4 Browser - ok
16:46:28.0666 0x1cd4 [ 887E25CD0155235C382395E5E5850791, D6171A09D83EF628FB742A463AB812045B1AE9F748ACC48DF654C52673A1891D ] BtFilter C:\WINDOWS\system32\DRIVERS\btfilter.sys
16:46:28.0682 0x1cd4 BtFilter - ok
16:46:28.0697 0x1cd4 BthAvrcpTg - ok
16:46:28.0697 0x1cd4 BthEnum - ok
16:46:28.0697 0x1cd4 BthHFEnum - ok
16:46:28.0713 0x1cd4 bthhfhid - ok
16:46:28.0713 0x1cd4 BthHFSrv - ok
16:46:28.0713 0x1cd4 BthLEEnum - ok
16:46:28.0713 0x1cd4 BTHMODEM - ok
16:46:28.0713 0x1cd4 BthPan - ok
16:46:28.0713 0x1cd4 BTHPORT - ok
16:46:28.0729 0x1cd4 bthserv - ok
16:46:28.0729 0x1cd4 BTHUSB - ok
16:46:28.0729 0x1cd4 buttonconverter - ok
16:46:28.0729 0x1cd4 CapImg - ok
16:46:28.0775 0x1cd4 [ 4147B5CA0C368FFE0FCE4116F558986A, F466B4556A140321B8F87C486CEBFB223D37526D877343BB6DA8FEFD03E16396 ] CCDMonitorService C:\Program Files (x86)\Acer\AOP Framework\CCDMonitorService.exe
16:46:28.0807 0x1cd4 CCDMonitorService - ok
16:46:28.0822 0x1cd4 cdfs - ok
16:46:28.0822 0x1cd4 CDPSvc - ok
16:46:28.0822 0x1cd4 CDPUserSvc - ok
16:46:28.0822 0x1cd4 cdrom - ok
16:46:28.0838 0x1cd4 CertPropSvc - ok
16:46:28.0838 0x1cd4 cht4iscsi - ok
16:46:28.0838 0x1cd4 cht4vbd - ok
16:46:28.0838 0x1cd4 circlass - ok
16:46:28.0838 0x1cd4 CLFS - ok
16:46:28.0916 0x1cd4 [ 2FFC3A679CF4FF05AA762E2B8D095574, 5CA2B9898E7493AF71B7D3A35FFB5D9F072DD0381AF89B0F47158895FBF58772 ] ClickToRunSvc C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
16:46:28.0963 0x1cd4 ClickToRunSvc - ok
16:46:28.0963 0x1cd4 ClipSVC - ok
16:46:28.0963 0x1cd4 clreg - ok
16:46:28.0979 0x1cd4 CmBatt - ok
16:46:28.0979 0x1cd4 CNG - ok
16:46:28.0979 0x1cd4 cnghwassist - ok
16:46:28.0994 0x1cd4 CompositeBus - ok
16:46:29.0010 0x1cd4 COMSysApp - ok
16:46:29.0010 0x1cd4 condrv - ok
16:46:29.0010 0x1cd4 CoreMessagingRegistrar - ok
16:46:29.0025 0x1cd4 [ BA6F8B0D958A77667C53DB683EF64AC2, E632DACF01C5EABC22985DE21DCCFA592921C5572C6F0E577A357B33F37FC98D ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
16:46:29.0135 0x1cd4 cphs - ok
16:46:29.0150 0x1cd4 [ 42E660F17ED973F19D94164D681B5F8D, 3165D024F1F9FA1A3AB87D5699C4C87069A0703E35F9F68AD6914232648FC8CB ] cplspcon C:\WINDOWS\system32\IntelCpHDCPSvc.exe
16:46:29.0197 0x1cd4 cplspcon - ok
16:46:29.0213 0x1cd4 CryptSvc - ok
16:46:29.0213 0x1cd4 dam - ok
16:46:29.0213 0x1cd4 [ BBB7B78348E84B302BD478F345FF6313, A3DB215B2A465F69A789C2579EC90F9D58E7987F34A69A7D3FE3E7AA790DC048 ] Dashlane Upgrade Service C:\Program Files (x86)\Dashlane\Upgrade\DashlaneUpgradeService.exe
16:46:29.0213 0x1cd4 Dashlane Upgrade Service - ok
16:46:29.0229 0x1cd4 [ E59CAC3C48E862959CBDFD08DF40CD2D, 303CB1C89AD2608BB5837D3860964AA1F88F87B296A5C6AB8C88E2169CE6228B ] DAX2API C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
16:46:29.0229 0x1cd4 DAX2API - ok
16:46:29.0229 0x1cd4 DcomLaunch - ok
16:46:29.0229 0x1cd4 DcpSvc - ok
16:46:29.0244 0x1cd4 defragsvc - ok
16:46:29.0244 0x1cd4 DeviceAssociationService - ok
16:46:29.0244 0x1cd4 DeviceInstall - ok
16:46:29.0244 0x1cd4 DevQueryBroker - ok
16:46:29.0244 0x1cd4 Dfsc - ok
16:46:29.0260 0x1cd4 Dhcp - ok
16:46:29.0260 0x1cd4 diagnosticshub.standardcollector.service - ok
16:46:29.0260 0x1cd4 DiagTrack - ok
16:46:29.0260 0x1cd4 disk - ok
16:46:29.0260 0x1cd4 DmEnrollmentSvc - ok
16:46:29.0275 0x1cd4 dmvsc - ok
16:46:29.0275 0x1cd4 dmwappushservice - ok
16:46:29.0275 0x1cd4 Dnscache - ok
16:46:29.0275 0x1cd4 dot3svc - ok
16:46:29.0291 0x1cd4 DPS - ok
16:46:29.0291 0x1cd4 [ 225C4E9280B2AE38DCAA5E2FEFC437C2, DB52CEE6D99478B9858F41C440DE2856CC7A5A7E95F7CA7C2F2EED266DB4BDB1 ] dptf_acpi C:\WINDOWS\System32\drivers\dptf_acpi.sys
16:46:29.0291 0x1cd4 dptf_acpi - ok
16:46:29.0291 0x1cd4 [ 4DD17AA07FA0A75E79B47E5B7F18964D, 157983BEAD4C8F7218E46392F8672E7052C8E81CF842A9E82DAA8AE8CC4020C9 ] dptf_cpu C:\WINDOWS\System32\drivers\dptf_cpu.sys
16:46:29.0291 0x1cd4 dptf_cpu - ok
16:46:29.0291 0x1cd4 drmkaud - ok
16:46:29.0307 0x1cd4 DsmSvc - ok
16:46:29.0307 0x1cd4 DsSvc - ok
16:46:29.0307 0x1cd4 DXGKrnl - ok
16:46:29.0307 0x1cd4 EapHost - ok
16:46:29.0307 0x1cd4 ebdrv - ok
16:46:29.0322 0x1cd4 EFS - ok
16:46:29.0322 0x1cd4 EhStorClass - ok
16:46:29.0322 0x1cd4 EhStorTcgDrv - ok
16:46:29.0322 0x1cd4 embeddedmode - ok
16:46:29.0322 0x1cd4 EntAppSvc - ok
16:46:29.0338 0x1cd4 ErrDev - ok
16:46:29.0369 0x1cd4 [ 49EDBE0603232013F7247413407F713E, D834CD05D759B0A0CCFDACF56819C3A6A51E8B61CF2B355472A43B87E31CD9FD ] esifsvc C:\WINDOWS\SysWoW64\esif_uf.exe
16:46:29.0385 0x1cd4 esifsvc - ok
16:46:29.0401 0x1cd4 [ A63C10A6A6B09FED00046DDD313C2CC1, 7DEC320019698CE8122FD02F39127E003895E2351F7C35F3D73D97030C34CAB2 ] esif_lf C:\WINDOWS\system32\DRIVERS\esif_lf.sys
16:46:29.0401 0x1cd4 esif_lf - ok
16:46:29.0401 0x1cd4 EventSystem - ok
16:46:29.0416 0x1cd4 exfat - ok
16:46:29.0416 0x1cd4 fastfat - ok
16:46:29.0416 0x1cd4 Fax - ok
16:46:29.0416 0x1cd4 fdc - ok
16:46:29.0416 0x1cd4 fdPHost - ok
16:46:29.0432 0x1cd4 FDResPub - ok
16:46:29.0432 0x1cd4 fhsvc - ok
16:46:29.0432 0x1cd4 FileCrypt - ok
16:46:29.0432 0x1cd4 FileInfo - ok
16:46:29.0432 0x1cd4 Filetrace - ok
16:46:29.0447 0x1cd4 flpydisk - ok
16:46:29.0447 0x1cd4 FltMgr - ok
16:46:29.0447 0x1cd4 FontCache - ok
16:46:29.0447 0x1cd4 FontCache3.0.0.0 - ok
16:46:29.0463 0x1cd4 FrameServer - ok
16:46:29.0463 0x1cd4 FsDepends - ok
16:46:29.0463 0x1cd4 Fs_Rec - ok
16:46:29.0463 0x1cd4 fvevol - ok
16:46:29.0463 0x1cd4 GamesAppIntegrationService - ok
16:46:29.0479 0x1cd4 GamesAppService - ok
16:46:29.0479 0x1cd4 gencounter - ok
16:46:29.0479 0x1cd4 genericusbfn - ok
16:46:29.0479 0x1cd4 GPIOClx0101 - ok
16:46:29.0479 0x1cd4 gpsvc - ok
16:46:29.0494 0x1cd4 GpuEnergyDrv - ok
16:46:29.0494 0x1cd4 [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:46:29.0494 0x1cd4 gupdate - ok
16:46:29.0494 0x1cd4 [ A8FD9222E4D72596BB37DA8BE95C0BA4, 52FC3AA9F704300041E486E57FE863218E4CDF4C8EEE05CA6B99A296EFEE5737 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:46:29.0510 0x1cd4 gupdatem - ok
16:46:29.0510 0x1cd4 HDAudBus - ok
16:46:29.0510 0x1cd4 HidBatt - ok
16:46:29.0510 0x1cd4 HidBth - ok
16:46:29.0510 0x1cd4 hidi2c - ok
16:46:29.0526 0x1cd4 hidinterrupt - ok
16:46:29.0526 0x1cd4 HidIr - ok
16:46:29.0526 0x1cd4 hidserv - ok
16:46:29.0526 0x1cd4 HidUsb - ok
16:46:29.0526 0x1cd4 HomeGroupListener - ok
16:46:29.0526 0x1cd4 HomeGroupProvider - ok
16:46:29.0541 0x1cd4 HpSAMD - ok
16:46:29.0541 0x1cd4 HTTP - ok
16:46:29.0541 0x1cd4 HvHost - ok
16:46:29.0541 0x1cd4 hvservice - ok
16:46:29.0541 0x1cd4 hwpolicy - ok
16:46:29.0557 0x1cd4 hyperkbd - ok
16:46:29.0557 0x1cd4 i8042prt - ok
16:46:29.0557 0x1cd4 iagpio - ok
16:46:29.0557 0x1cd4 iai2c - ok
16:46:29.0572 0x1cd4 iaLPSS2i_GPIO2 - ok
16:46:29.0572 0x1cd4 iaLPSS2i_I2C - ok
16:46:29.0572 0x1cd4 iaLPSSi_GPIO - ok
16:46:29.0572 0x1cd4 iaLPSSi_I2C - ok
16:46:29.0604 0x1cd4 [ 62EECD3225EF2B5649780746928F5CF7, 974A5CCAFD0A514D45838F330121095195D57CF9295B5FD790F6E73A95A9C4C0 ] iaStorA C:\WINDOWS\system32\drivers\iaStorA.sys
16:46:29.0635 0x1cd4 iaStorA - ok
16:46:29.0635 0x1cd4 iaStorAV - ok
16:46:29.0635 0x1cd4 iaStorV - ok
16:46:29.0635 0x1cd4 ibbus - ok
16:46:29.0635 0x1cd4 icssvc - ok
16:46:29.0791 0x1cd4 [ 805448621B753724D80AD06E38B768D1, A9466119F5ADAEC93B5B6C748A25E235E0E40726D6AA7E83AB5BE7A49B55AF2B ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
16:46:29.0932 0x1cd4 igfx - ok
16:46:29.0963 0x1cd4 [ 60B3633862AE250C2D303E7DFB87DFC6, 68D0E03879CD2A494A1F63C56CA1935371BCC972E619D87272966BEBA337E358 ] igfxCUIService2.0.0.0 C:\WINDOWS\system32\igfxCUIService.exe
16:46:29.0963 0x1cd4 igfxCUIService2.0.0.0 - ok
16:46:29.0963 0x1cd4 IKEEXT - ok
16:46:29.0979 0x1cd4 IndirectKmd - ok
16:46:30.0072 0x1cd4 [ E28C00A8206BAA4CAB9EB81D66BE2BF7, 1BA55283BD2362C9A096132B32192ED2304F3532A94A98142DA6B36261148F0F ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
16:46:30.0166 0x1cd4 IntcAzAudAddService - ok
16:46:30.0182 0x1cd4 [ 6A0C4532E05CEAC587531AF318BDDCBC, 70F7C0D617E962801DF09BB2FE45E2F2EF5E9D92632A659F0485A16DF03E6882 ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
16:46:30.0197 0x1cd4 IntcDAud - ok
16:46:30.0213 0x1cd4 intelide - ok
16:46:30.0213 0x1cd4 intelpep - ok
16:46:30.0213 0x1cd4 intelppm - ok
16:46:30.0229 0x1cd4 [ F023FFD56A975BB5E432BA3C571BE84C, EA8287B4F15E303F41FE74E20E42EEBD08C672989FDCF215DC6EB36801FE9ADE ] IntelSSTSvc C:\WINDOWS\system32\IntelSSTAPO\ParameterService\ParameterService.exe
16:46:30.0229 0x1cd4 IntelSSTSvc - ok
16:46:30.0229 0x1cd4 iorate - ok
16:46:30.0229 0x1cd4 IpFilterDriver - ok
16:46:30.0229 0x1cd4 iphlpsvc - ok
16:46:30.0244 0x1cd4 IPMIDRV - ok
16:46:30.0244 0x1cd4 IPNAT - ok
16:46:30.0244 0x1cd4 irda - ok
16:46:30.0260 0x1cd4 IRENUM - ok
16:46:30.0260 0x1cd4 irmon - ok
16:46:30.0276 0x1cd4 isapnp - ok
16:46:30.0276 0x1cd4 iScsiPrt - ok
16:46:30.0276 0x1cd4 kbdclass - ok
16:46:30.0291 0x1cd4 kbdhid - ok
16:46:30.0291 0x1cd4 kdnic - ok
16:46:30.0291 0x1cd4 KeyIso - ok
16:46:30.0291 0x1cd4 KSecDD - ok
16:46:30.0307 0x1cd4 KSecPkg - ok
16:46:30.0307 0x1cd4 ksthunk - ok
16:46:30.0307 0x1cd4 KtmRm - ok
16:46:30.0307 0x1cd4 LanmanServer - ok
16:46:30.0307 0x1cd4 LanmanWorkstation - ok
16:46:30.0322 0x1cd4 lfsvc - ok
16:46:30.0322 0x1cd4 LicenseManager - ok
16:46:30.0338 0x1cd4 lltdio - ok
16:46:30.0338 0x1cd4 lltdsvc - ok
16:46:30.0338 0x1cd4 [ 1E4FDDB43BF7E0D8AD5F5EA5B3D1009F, 760A4F0D29725A7A59D253E7733316D0B98252BF433620A50A231D2D941539E4 ] LMDriver C:\WINDOWS\System32\drivers\LMDriver.sys
16:46:30.0338 0x1cd4 LMDriver - ok
16:46:30.0338 0x1cd4 lmhosts - ok
16:46:30.0354 0x1cd4 LSI_SAS - ok
16:46:30.0354 0x1cd4 LSI_SAS2i - ok
16:46:30.0354 0x1cd4 LSI_SAS3i - ok
16:46:30.0354 0x1cd4 LSI_SSS - ok
16:46:30.0369 0x1cd4 LSM - ok
16:46:30.0369 0x1cd4 luafv - ok
16:46:30.0369 0x1cd4 MapsBroker - ok
16:46:30.0369 0x1cd4 [ 78BFF5425E044086E74E78650A359FBB, 294738C10F3ED933D4EC40EA0659372FCF19A3C6D45D356917438CA495F2CB45 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys
16:46:30.0385 0x1cd4 MBAMProtector - ok
16:46:30.0416 0x1cd4 [ 9611577752E293259C7DCE19E9026362, 8CB5DFD63FA15603BB6FA6B501E09ED7F4DE0E8F68CB28B78CECAC3711BEFD24 ] MBAMScheduler C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
16:46:30.0448 0x1cd4 MBAMScheduler - ok
16:46:30.0463 0x1cd4 [ F1A89A34388B5626F1548D393B23ECB1, EA00AC76C4C8C9340753B58A3313C9177A9B98F9F1BDE08F184CD0F53D0C186F ] MBAMService C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:46:30.0479 0x1cd4 MBAMService - ok
16:46:30.0494 0x1cd4 [ 78488AF2AB2111D67B3C4044707A519B, 7AA71B9C4C7949A1A21F60EF7CCEDE0079794990696B60557B5DC86F4D47223A ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
16:46:30.0494 0x1cd4 MBAMSwissArmy - ok
16:46:30.0494 0x1cd4 [ 898415AC0B5F1D2A9A48ABCB68A6DC4B, E1FD9AE5E22E3E5A18288E66A6184E92A4B63A1274DCE147A7728BB09C6A225E ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
16:46:30.0494 0x1cd4 MBAMWebAccessControl - ok
16:46:30.0510 0x1cd4 [ 963E110F8189126FD175EDA853612B42, B4E45D42767E582590B730FBC50E6108362896954B5D3A58FB5201C4206341A0 ] McAfee SiteAdvisor Service c:\PROGRA~2\mcafee\SITEAD~1\McSACore.exe
16:46:30.0510 0x1cd4 McAfee SiteAdvisor Service - ok
16:46:30.0510 0x1cd4 mccspsvc - ok
16:46:30.0526 0x1cd4 megasas - ok
16:46:30.0526 0x1cd4 megasas2i - ok
16:46:30.0526 0x1cd4 megasr - ok
16:46:30.0526 0x1cd4 [ 86F565B0D41EBCCE7256B812F3A0442B, BACB5753D4501679B0C3D5D6B2D2D5233EC6B5BF76D0C2BD616EC460D5B9918F ] MEIx64 C:\WINDOWS\System32\drivers\TeeDriverW8x64.sys
16:46:30.0541 0x1cd4 MEIx64 - ok
16:46:30.0541 0x1cd4 MessagingService - ok
16:46:30.0557 0x1cd4 [ DA49A90A69B3284FD11B6F02D0209A99, 759380964E6450FF21FB9A2BD23BA0394B005EC332E714D40D47262FCDC6CFE9 ] mfesapsn C:\Program Files (x86)\McAfee\SiteAdvisor\x64\mfesapsn.sys
16:46:30.0557 0x1cd4 mfesapsn - ok
16:46:30.0557 0x1cd4 mlx4_bus - ok
16:46:30.0557 0x1cd4 MMCSS - ok
16:46:30.0557 0x1cd4 Modem - ok
16:46:30.0557 0x1cd4 monitor - ok
16:46:30.0572 0x1cd4 mouclass - ok
16:46:30.0572 0x1cd4 mouhid - ok
16:46:30.0572 0x1cd4 mountmgr - ok
16:46:30.0572 0x1cd4 [ 573C2D8D2A005D255A101CFC19855410, 8356FF265154503FC64C1D682944E75704120AB69E066930BA2609CA41342F4F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:46:30.0588 0x1cd4 MozillaMaintenance - ok
16:46:30.0588 0x1cd4 mpsdrv - ok
16:46:30.0588 0x1cd4 MpsSvc - ok
16:46:30.0588 0x1cd4 MRxDAV - ok
16:46:30.0588 0x1cd4 mrxsmb - ok
16:46:30.0604 0x1cd4 mrxsmb10 - ok
16:46:30.0604 0x1cd4 mrxsmb20 - ok
16:46:30.0604 0x1cd4 MsBridge - ok
16:46:30.0604 0x1cd4 MSDTC - ok
16:46:30.0619 0x1cd4 Msfs - ok
16:46:30.0619 0x1cd4 msgpiowin32 - ok
16:46:30.0619 0x1cd4 mshidkmdf - ok
16:46:30.0619 0x1cd4 mshidumdf - ok
16:46:30.0619 0x1cd4 msisadrv - ok
16:46:30.0635 0x1cd4 MSiSCSI - ok
16:46:30.0635 0x1cd4 msiserver - ok
16:46:30.0635 0x1cd4 MSKSSRV - ok
16:46:30.0635 0x1cd4 MsLldp - ok
16:46:30.0635 0x1cd4 MSPCLOCK - ok
16:46:30.0635 0x1cd4 MSPQM - ok
16:46:30.0651 0x1cd4 MsRPC - ok
16:46:30.0651 0x1cd4 mssmbios - ok
16:46:30.0651 0x1cd4 MSTEE - ok
16:46:30.0651 0x1cd4 MTConfig - ok
16:46:30.0651 0x1cd4 Mup - ok
16:46:30.0666 0x1cd4 mvumis - ok
16:46:30.0666 0x1cd4 NativeWifiP - ok
16:46:30.0666 0x1cd4 NcaSvc - ok
16:46:30.0666 0x1cd4 NcbService - ok
16:46:30.0682 0x1cd4 NcdAutoSetup - ok
16:46:30.0682 0x1cd4 ndfltr - ok
16:46:30.0682 0x1cd4 NDIS - ok
16:46:30.0682 0x1cd4 NdisCap - ok
16:46:30.0682 0x1cd4 NdisImPlatform - ok
16:46:30.0682 0x1cd4 NdisTapi - ok
16:46:30.0698 0x1cd4 Ndisuio - ok
16:46:30.0698 0x1cd4 NdisVirtualBus - ok
16:46:30.0698 0x1cd4 NdisWan - ok
16:46:30.0698 0x1cd4 ndiswanlegacy - ok
16:46:30.0698 0x1cd4 ndproxy - ok
16:46:30.0713 0x1cd4 Ndu - ok
16:46:30.0713 0x1cd4 NetAdapterCx - ok
16:46:30.0713 0x1cd4 NetBIOS - ok
16:46:30.0713 0x1cd4 NetBT - ok
16:46:30.0713 0x1cd4 Netlogon - ok
16:46:30.0729 0x1cd4 Netman - ok
16:46:30.0729 0x1cd4 netprofm - ok
16:46:30.0729 0x1cd4 NetSetupSvc - ok
16:46:30.0729 0x1cd4 NetTcpPortSharing - ok
16:46:30.0744 0x1cd4 NgcCtnrSvc - ok
16:46:30.0744 0x1cd4 NgcSvc - ok
16:46:30.0744 0x1cd4 NlaSvc - ok
16:46:30.0744 0x1cd4 Npfs - ok
16:46:30.0744 0x1cd4 npsvctrig - ok
16:46:30.0760 0x1cd4 nsi - ok
16:46:30.0760 0x1cd4 nsiproxy - ok
16:46:30.0760 0x1cd4 NTFS - ok
16:46:30.0760 0x1cd4 Null - ok
16:46:30.0760 0x1cd4 nvraid - ok
16:46:30.0776 0x1cd4 nvstor - ok
16:46:30.0776 0x1cd4 OneSyncSvc - ok
16:46:30.0776 0x1cd4 [ 63511820A101C1C5DB95B9ECFFEDA089, AD517FFE1FFD103FF1F371A0406CA8CDCAD762CE4DDC829759BE1914F4DF0675 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:46:30.0791 0x1cd4 ose - ok
16:46:30.0791 0x1cd4 p2pimsvc - ok
16:46:30.0791 0x1cd4 p2psvc - ok
16:46:30.0791 0x1cd4 Parport - ok
16:46:30.0791 0x1cd4 partmgr - ok
16:46:30.0807 0x1cd4 PcaSvc - ok
16:46:30.0807 0x1cd4 pci - ok
16:46:30.0807 0x1cd4 pciide - ok
16:46:30.0807 0x1cd4 pcmcia - ok
16:46:30.0807 0x1cd4 pcw - ok
16:46:30.0823 0x1cd4 pdc - ok
16:46:30.0823 0x1cd4 PEAUTH - ok
16:46:30.0823 0x1cd4 percsas2i - ok
16:46:30.0823 0x1cd4 percsas3i - ok
16:46:30.0838 0x1cd4 PerfHost - ok
16:46:30.0854 0x1cd4 PhoneSvc - ok
16:46:30.0854 0x1cd4 PimIndexMaintenanceSvc - ok
16:46:30.0854 0x1cd4 pla - ok
16:46:30.0854 0x1cd4 PlugPlay - ok
16:46:30.0869 0x1cd4 PNRPAutoReg - ok
16:46:30.0869 0x1cd4 PNRPsvc - ok
16:46:30.0869 0x1cd4 PolicyAgent - ok
16:46:30.0869 0x1cd4 Power - ok
16:46:30.0869 0x1cd4 PptpMiniport - ok
16:46:30.0948 0x1cd4 [ 7196D3C2E2E3129814C8DAB91F9A7D1E, 6763E4BF8E846B597E78778E520F5BADC95608BAA4EA0AC84971384B5D976DD7 ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:46:31.0057 0x1cd4 PrintNotify - ok
16:46:31.0057 0x1cd4 Processor - ok
16:46:31.0057 0x1cd4 ProfSvc - ok
16:46:31.0073 0x1cd4 Psched - ok
16:46:31.0073 0x1cd4 QALSvc - ok
16:46:31.0073 0x1cd4 QASvc - ok
16:46:31.0073 0x1cd4 Qcamain10x64 - ok
16:46:31.0088 0x1cd4 QWAVE - ok
16:46:31.0088 0x1cd4 QWAVEdrv - ok
16:46:31.0088 0x1cd4 [ 4C5B45CBC7D4F3114B636BC15216AB3F, 553E2128911FD00F3C19F4E8491F3BD889BFC71951CC3D9257DF110C77F7DA00 ] RadioShim C:\WINDOWS\System32\drivers\RadioShim.sys
16:46:31.0088 0x1cd4 RadioShim - ok
16:46:31.0104 0x1cd4 RasAcd - ok
16:46:31.0104 0x1cd4 RasAgileVpn - ok
16:46:31.0104 0x1cd4 RasAuto - ok
16:46:31.0104 0x1cd4 Rasl2tp - ok
16:46:31.0104 0x1cd4 RasMan - ok
16:46:31.0119 0x1cd4 RasPppoe - ok
16:46:31.0119 0x1cd4 RasSstp - ok
16:46:31.0119 0x1cd4 rdbss - ok
16:46:31.0119 0x1cd4 rdpbus - ok
16:46:31.0119 0x1cd4 RDPDR - ok
16:46:31.0135 0x1cd4 RdpVideoMiniport - ok
16:46:31.0135 0x1cd4 rdyboost - ok
16:46:31.0135 0x1cd4 ReFSv1 - ok
16:46:31.0135 0x1cd4 RemoteAccess - ok
16:46:31.0151 0x1cd4 RemoteRegistry - ok
16:46:31.0151 0x1cd4 RetailDemo - ok
16:46:31.0151 0x1cd4 RFCOMM - ok
16:46:31.0151 0x1cd4 RmSvc - ok
16:46:31.0151 0x1cd4 RpcEptMapper - ok
16:46:31.0166 0x1cd4 RpcLocator - ok
16:46:31.0166 0x1cd4 RpcSs - ok
16:46:31.0166 0x1cd4 [ C7AA333FD966286072EDA2F763229716, 8B65DCDE43A11E087EAA605BE640E36800349AF544018B4667865D339A7F43D1 ] RSP2STOR C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys
16:46:31.0182 0x1cd4 RSP2STOR - ok
16:46:31.0182 0x1cd4 rspndr - ok
16:46:31.0182 0x1cd4 s3cap - ok
16:46:31.0182 0x1cd4 SamSs - ok
16:46:31.0198 0x1cd4 sbp2port - ok
16:46:31.0198 0x1cd4 SCardSvr - ok
16:46:31.0198 0x1cd4 ScDeviceEnum - ok
16:46:31.0198 0x1cd4 scfilter - ok
16:46:31.0198 0x1cd4 Schedule - ok
16:46:31.0198 0x1cd4 scmbus - ok
16:46:31.0213 0x1cd4 scmdisk0101 - ok
16:46:31.0213 0x1cd4 SCPolicySvc - ok
16:46:31.0213 0x1cd4 sdbus - ok
16:46:31.0213 0x1cd4 SDRSVC - ok
16:46:31.0213 0x1cd4 sdstor - ok
16:46:31.0229 0x1cd4 seclogon - ok
16:46:31.0229 0x1cd4 SENS - ok
16:46:31.0229 0x1cd4 SensorDataService - ok
16:46:31.0229 0x1cd4 SensorService - ok
16:46:31.0244 0x1cd4 SensrSvc - ok
16:46:31.0244 0x1cd4 SerCx - ok
16:46:31.0244 0x1cd4 SerCx2 - ok
16:46:31.0244 0x1cd4 Serenum - ok
16:46:31.0244 0x1cd4 Serial - ok
16:46:31.0244 0x1cd4 sermouse - ok
16:46:31.0260 0x1cd4 SessionEnv - ok
16:46:31.0260 0x1cd4 sfloppy - ok
16:46:31.0260 0x1cd4 SharedAccess - ok
16:46:31.0260 0x1cd4 ShellHWDetection - ok
16:46:31.0276 0x1cd4 shpamsvc - ok
16:46:31.0276 0x1cd4 SiSRaid2 - ok
16:46:31.0276 0x1cd4 SiSRaid4 - ok
16:46:31.0276 0x1cd4 smphost - ok
16:46:31.0276 0x1cd4 SmsRouter - ok
16:46:31.0291 0x1cd4 SNMPTRAP - ok
16:46:31.0291 0x1cd4 spaceport - ok
16:46:31.0291 0x1cd4 SpbCx - ok
16:46:31.0291 0x1cd4 Spooler - ok
16:46:31.0307 0x1cd4 sppsvc - ok
16:46:31.0307 0x1cd4 srv - ok
16:46:31.0307 0x1cd4 srv2 - ok
16:46:31.0307 0x1cd4 srvnet - ok
16:46:31.0323 0x1cd4 SSDPSRV - ok
16:46:31.0323 0x1cd4 SstpSvc - ok
16:46:31.0323 0x1cd4 StateRepository - ok
16:46:31.0323 0x1cd4 stexstor - ok
16:46:31.0323 0x1cd4 stisvc - ok
16:46:31.0338 0x1cd4 storahci - ok
16:46:31.0338 0x1cd4 storflt - ok
16:46:31.0338 0x1cd4 stornvme - ok
16:46:31.0338 0x1cd4 storqosflt - ok
16:46:31.0338 0x1cd4 StorSvc - ok
16:46:31.0354 0x1cd4 storufs - ok
16:46:31.0354 0x1cd4 storvsc - ok
16:46:31.0354 0x1cd4 svsvc - ok
16:46:31.0354 0x1cd4 swenum - ok
16:46:31.0354 0x1cd4 swprv - ok
16:46:31.0369 0x1cd4 [ 00D060CCEA1A2CC829747D567A820DA8, C5D06C1F7D18BA5BF74D48AD305C87AA7C681D0E8427319D1128694654ED8974 ] SynRMIHID C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys
16:46:31.0369 0x1cd4 SynRMIHID - ok
16:46:31.0369 0x1cd4 Synth3dVsc - ok
16:46:31.0369 0x1cd4 SysMain - ok
16:46:31.0369 0x1cd4 SystemEventsBroker - ok
16:46:31.0401 0x1cd4 [ 00068CD7BD0A2BFA6ACC1F75671394FF, BE2235923006B300910404020D8FA3E4B6F4798778E03D1AFD3A04D995411C72 ] SystemExplorerHelpService C:\Program Files (x86)\System Explorer\service\SystemExplorerService64.exe
16:46:31.0401 0x1cd4 SystemExplorerHelpService - ok
16:46:31.0416 0x1cd4 TabletInputService - ok
16:46:31.0416 0x1cd4 TapiSrv - ok
16:46:31.0416 0x1cd4 Tcpip - ok
16:46:31.0416 0x1cd4 Tcpip6 - ok
16:46:31.0416 0x1cd4 tcpipreg - ok
16:46:31.0432 0x1cd4 tdx - ok
16:46:31.0432 0x1cd4 terminpt - ok
16:46:31.0432 0x1cd4 TermService - ok
16:46:31.0432 0x1cd4 Themes - ok
16:46:31.0432 0x1cd4 TieringEngineService - ok
16:46:31.0448 0x1cd4 tiledatamodelsvc - ok
16:46:31.0448 0x1cd4 TimeBrokerSvc - ok
16:46:31.0448 0x1cd4 TPM - ok
16:46:31.0448 0x1cd4 TrkWks - ok
16:46:31.0448 0x1cd4 TrustedInstaller - ok
16:46:31.0463 0x1cd4 tsusbflt - ok
16:46:31.0463 0x1cd4 TsUsbGD - ok
16:46:31.0463 0x1cd4 tunnel - ok
16:46:31.0463 0x1cd4 tzautoupdate - ok
16:46:31.0479 0x1cd4 UASPStor - ok
16:46:31.0479 0x1cd4 UcmCx0101 - ok
16:46:31.0479 0x1cd4 UcmTcpciCx0101 - ok
16:46:31.0479 0x1cd4 UcmUcsi - ok
16:46:31.0479 0x1cd4 Ucx01000 - ok
16:46:31.0479 0x1cd4 UdeCx - ok
16:46:31.0494 0x1cd4 udfs - ok
16:46:31.0494 0x1cd4 UEFI - ok
16:46:31.0494 0x1cd4 UEIPSvc - ok
16:46:31.0494 0x1cd4 Ufx01000 - ok
16:46:31.0494 0x1cd4 UfxChipidea - ok
16:46:31.0510 0x1cd4 ufxsynopsys - ok
16:46:31.0510 0x1cd4 UI0Detect - ok
16:46:31.0510 0x1cd4 umbus - ok
16:46:31.0510 0x1cd4 UmPass - ok
16:46:31.0526 0x1cd4 UmRdpService - ok
16:46:31.0526 0x1cd4 UnistoreSvc - ok
16:46:31.0526 0x1cd4 upnphost - ok
16:46:31.0526 0x1cd4 UrsChipidea - ok
16:46:31.0541 0x1cd4 UrsCx01000 - ok
16:46:31.0541 0x1cd4 UrsSynopsys - ok
16:46:31.0541 0x1cd4 usbccgp - ok
16:46:31.0541 0x1cd4 usbcir - ok
16:46:31.0541 0x1cd4 usbehci - ok
16:46:31.0557 0x1cd4 usbhub - ok
16:46:31.0557 0x1cd4 USBHUB3 - ok
16:46:31.0557 0x1cd4 usbohci - ok
16:46:31.0557 0x1cd4 usbprint - ok
16:46:31.0557 0x1cd4 usbser - ok
16:46:31.0573 0x1cd4 USBSTOR - ok
16:46:31.0573 0x1cd4 usbuhci - ok
16:46:31.0573 0x1cd4 usbvideo - ok
16:46:31.0573 0x1cd4 USBXHCI - ok
16:46:31.0573 0x1cd4 UserDataSvc - ok
16:46:31.0588 0x1cd4 UserManager - ok
16:46:31.0588 0x1cd4 UsoSvc - ok
16:46:31.0588 0x1cd4 VaultSvc - ok
16:46:31.0588 0x1cd4 vdrvroot - ok
16:46:31.0604 0x1cd4 vds - ok
16:46:31.0604 0x1cd4 VerifierExt - ok
16:46:31.0604 0x1cd4 vhdmp - ok
16:46:31.0604 0x1cd4 vhf - ok
16:46:31.0604 0x1cd4 vmbus - ok
16:46:31.0619 0x1cd4 VMBusHID - ok
16:46:31.0619 0x1cd4 vmgid - ok
16:46:31.0619 0x1cd4 vmicguestinterface - ok
16:46:31.0619 0x1cd4 vmicheartbeat - ok
16:46:31.0619 0x1cd4 vmickvpexchange - ok
16:46:31.0619 0x1cd4 vmicrdv - ok
16:46:31.0635 0x1cd4 vmicshutdown - ok
16:46:31.0635 0x1cd4 vmictimesync - ok
16:46:31.0635 0x1cd4 vmicvmsession - ok
16:46:31.0635 0x1cd4 vmicvss - ok
16:46:31.0651 0x1cd4 volmgr - ok
16:46:31.0651 0x1cd4 volmgrx - ok
16:46:31.0651 0x1cd4 volsnap - ok
16:46:31.0651 0x1cd4 volume - ok
16:46:31.0651 0x1cd4 vpci - ok
16:46:31.0666 0x1cd4 vsmraid - ok
16:46:31.0666 0x1cd4 VSS - ok
16:46:31.0666 0x1cd4 VSTXRAID - ok
16:46:31.0666 0x1cd4 vwifibus - ok
16:46:31.0666 0x1cd4 vwififlt - ok
16:46:31.0682 0x1cd4 vwifimp - ok
16:46:31.0682 0x1cd4 W32Time - ok
16:46:31.0682 0x1cd4 WacomPen - ok
16:46:31.0682 0x1cd4 WalletService - ok
16:46:31.0682 0x1cd4 wanarp - ok
16:46:31.0698 0x1cd4 wanarpv6 - ok
16:46:31.0698 0x1cd4 wbengine - ok
16:46:31.0698 0x1cd4 WbioSrvc - ok
16:46:31.0698 0x1cd4 wcifs - ok
16:46:31.0698 0x1cd4 Wcmsvc - ok
16:46:31.0713 0x1cd4 wcncsvc - ok
16:46:31.0713 0x1cd4 wcnfs - ok
16:46:31.0713 0x1cd4 WdBoot - ok
16:46:31.0713 0x1cd4 Wdf01000 - ok
16:46:31.0713 0x1cd4 WdFilter - ok
16:46:31.0729 0x1cd4 WdiServiceHost - ok
16:46:31.0729 0x1cd4 WdiSystemHost - ok
16:46:31.0729 0x1cd4 wdiwifi - ok
16:46:31.0729 0x1cd4 WdNisDrv - ok
16:46:31.0729 0x1cd4 WdNisSvc - ok
16:46:31.0744 0x1cd4 WebClient - ok
16:46:31.0744 0x1cd4 Wecsvc - ok
16:46:31.0744 0x1cd4 WEPHOSTSVC - ok
16:46:31.0744 0x1cd4 wercplsupport - ok
16:46:31.0760 0x1cd4 WerSvc - ok
16:46:31.0760 0x1cd4 WFPLWFS - ok
16:46:31.0760 0x1cd4 WiaRpc - ok
16:46:31.0760 0x1cd4 WIMMount - ok
16:46:31.0760 0x1cd4 WinDefend - ok
16:46:31.0776 0x1cd4 WindowsTrustedRT - ok
16:46:31.0776 0x1cd4 WindowsTrustedRTProxy - ok
16:46:31.0776 0x1cd4 WinHttpAutoProxySvc - ok
16:46:31.0776 0x1cd4 WinMad - ok
16:46:31.0791 0x1cd4 Winmgmt - ok
16:46:31.0791 0x1cd4 WinRM - ok
16:46:31.0791 0x1cd4 WINUSB - ok
16:46:31.0807 0x1cd4 WinVerbs - ok
16:46:31.0807 0x1cd4 wisvc - ok
16:46:31.0807 0x1cd4 WlanSvc - ok
16:46:31.0807 0x1cd4 wlidsvc - ok
16:46:31.0807 0x1cd4 WmiAcpi - ok
16:46:31.0823 0x1cd4 wmiApSrv - ok
16:46:31.0823 0x1cd4 WMPNetworkSvc - ok
16:46:31.0823 0x1cd4 Wof - ok
16:46:31.0838 0x1cd4 workfolderssvc - ok
16:46:31.0838 0x1cd4 WPDBusEnum - ok
16:46:31.0838 0x1cd4 WpdUpFltr - ok
16:46:31.0838 0x1cd4 WpnService - ok
16:46:31.0838 0x1cd4 WpnUserService - ok
16:46:31.0854 0x1cd4 ws2ifsl - ok
16:46:31.0854 0x1cd4 wscsvc - ok
16:46:31.0854 0x1cd4 WSearch - ok
16:46:31.0870 0x1cd4 wuauserv - ok
16:46:31.0870 0x1cd4 WudfPf - ok
16:46:31.0870 0x1cd4 WUDFRd - ok
16:46:31.0870 0x1cd4 wudfsvc - ok
16:46:31.0870 0x1cd4 WUDFWpdFs - ok
16:46:31.0885 0x1cd4 WUDFWpdMtp - ok
16:46:31.0885 0x1cd4 WwanSvc - ok
16:46:31.0885 0x1cd4 XblAuthManager - ok
16:46:31.0885 0x1cd4 XblGameSave - ok
16:46:31.0885 0x1cd4 xboxgip - ok
16:46:31.0901 0x1cd4 XboxNetApiSvc - ok
16:46:31.0901 0x1cd4 xinputhid - ok
16:46:31.0901 0x1cd4 ================ Scan global ===============================
16:46:31.0916 0x1cd4 [ Global ] - ok
16:46:31.0916 0x1cd4 ================ Scan MBR ==================================
16:46:31.0916 0x1cd4 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
16:46:31.0916 0x1cd4 \Device\Harddisk0\DR0 - ok
16:46:31.0916 0x1cd4 ================ Scan VBR ==================================
16:46:31.0916 0x1cd4 [ 53B6B1631A4164CBB8FBC7ED95B2CF1B ] \Device\Harddisk0\DR0\Partition1
16:46:31.0932 0x1cd4 \Device\Harddisk0\DR0\Partition1 - ok
16:46:31.0932 0x1cd4 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition2
16:46:31.0932 0x1cd4 \Device\Harddisk0\DR0\Partition2 - ok
16:46:31.0932 0x1cd4 [ 5B6D0F58C04C80DC005E350571A093BB ] \Device\Harddisk0\DR0\Partition3
16:46:31.0932 0x1cd4 \Device\Harddisk0\DR0\Partition3 - ok
16:46:31.0932 0x1cd4 [ 6F927DFDBF6CBC79E402A6E1C707BA34 ] \Device\Harddisk0\DR0\Partition4
16:46:31.0932 0x1cd4 \Device\Harddisk0\DR0\Partition4 - ok
16:46:31.0932 0x1cd4 ================ Scan generic autorun ======================
16:46:32.0229 0x1cd4 [ AB961BCEB5D9F2B8F9AB4D1414390204, 3486DC2757602AA869AC3C93484A5A22ECB91F5F8A9EDB13D8676611E7174CD1 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:46:32.0495 0x1cd4 RTHDVCPL - ok
16:46:32.0526 0x1cd4 [ 051DAC72A2A7DD64BA68353AFCD4842D, F36A1D54D146CFF5E89B1766EDE045312EE5C532FE81E5FC0D7E69A79F89BE71 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
16:46:32.0573 0x1cd4 RtHDVBg_Dolby - ok
16:46:32.0573 0x1cd4 DAX2_APP - ok
16:46:32.0573 0x1cd4 WindowsDefender - ok
16:46:32.0651 0x1cd4 [ E6563F7F05CB9664542B7D9035515ECD, 16177C3A3BBF5BFB65B0A5AE948757E1886B45321FFD16B8F2328ECA34BAEC53 ] C:\Program Files (x86)\System Explorer\SystemExplorer.exe
16:46:32.0698 0x1cd4 SystemExplorerAutoStart - ok
16:46:32.0713 0x1cd4 OneDriveSetup - ok
16:46:32.0729 0x1cd4 OneDriveSetup - ok
16:46:32.0745 0x1cd4 [ 1D7DD340E13DF9585EABB849CFC3E11B, 31CCD9753402DC030C641214B4ECB48A757BCD9F427A143A88745C62EFF87766 ] C:\Users\Marina\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:46:32.0745 0x1cd4 OneDrive - ok
16:46:32.0745 0x1cd4 Waiting for KSN requests completion. In queue: 11
16:46:33.0792 0x1cd4 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.10.14393.187 ), 0x61100 ( enabled : updated )
16:46:33.0807 0x1cd4 Win FW state via NFP2: enabled ( trusted )
16:46:34.0934 0x1cd4 ============================================================
16:46:34.0934 0x1cd4 Scan finished
16:46:34.0934 0x1cd4 ============================================================
16:46:34.0950 0x0e2c Detected object count: 0
16:46:34.0950 0x0e2c Actual detected object count: 0
16:48:13.0410 0x1eec Deinitialize success |