11:56:20.0737 0x03f4 [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc C:\Windows\system32\p2psvc.dll
11:56:20.0749 0x03f4 p2psvc - ok
11:56:20.0782 0x03f4 [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\Windows\System32\drivers\parport.sys
11:56:20.0785 0x03f4 Parport - ok
11:56:20.0807 0x03f4 [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:56:20.0810 0x03f4 partmgr - ok
11:56:20.0851 0x03f4 [ 38A31075D9630062AD7E26C97033CCC7, 7033642BAF7BD2B1AF6A87525A31683070F99226472F01F44AEBBF6FAA8D8CB2 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:56:20.0860 0x03f4 PcaSvc - ok
11:56:20.0891 0x03f4 [ C0D3F3BC1C84B4BA746D9847314C1164, 66FDF288ACAE021C5F63BCCC68D7534B4DB737E252AB16DFF746355D8BE7502D ] pci C:\Windows\system32\drivers\pci.sys
11:56:20.0896 0x03f4 pci - ok
11:56:20.0903 0x03f4 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\Windows\system32\drivers\pciide.sys
11:56:20.0905 0x03f4 pciide - ok
11:56:20.0921 0x03f4 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
11:56:20.0924 0x03f4 pcmcia - ok
11:56:20.0937 0x03f4 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\Windows\system32\drivers\pcw.sys
11:56:20.0939 0x03f4 pcw - ok
11:56:20.0970 0x03f4 [ 28AAACD3B871305F07188A0DB366B439, AD35F4B9ED7C1D847D1E5688C3EFFCD2285F199672B6520722EDEB0F9AC4A6D5 ] pdc C:\Windows\system32\drivers\pdc.sys
11:56:20.0973 0x03f4 pdc - ok
11:56:21.0010 0x03f4 [ BA50CC0BD19004AAB88BE37338B6FA0D, 34D4720A621CCB4707F2EB929F6F44C317DBC6F055F7F34F3FAC68DFDAA00DEF ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:56:21.0024 0x03f4 PEAUTH - ok
11:56:21.0113 0x03f4 [ 084DE525DFE82AE7453DD527390FA110, 8216AE63AE740D97204CDED6543B66FC1FB55DB86D42FBA0EC629361C40F9EC0 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
11:56:21.0147 0x03f4 PeerDistSvc - ok
11:56:21.0250 0x03f4 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\Windows\SysWow64\perfhost.exe
11:56:21.0252 0x03f4 PerfHost - ok
11:56:21.0340 0x03f4 [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla C:\Windows\system32\pla.dll
11:56:21.0374 0x03f4 pla - ok
11:56:21.0408 0x03f4 [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:56:21.0412 0x03f4 PlugPlay - ok
11:56:21.0415 0x03f4 PnkBstrA - ok
11:56:21.0442 0x03f4 [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:56:21.0445 0x03f4 PNRPAutoReg - ok
11:56:21.0475 0x03f4 [ 3B510F20806B94E389784ED09DBD2111, EF8896C500B3AA3A811FDE97BC322EF3295E9BD0DE236715D4A4C52CF63727E1 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:56:21.0482 0x03f4 PNRPsvc - ok
11:56:21.0523 0x03f4 [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:56:21.0530 0x03f4 PolicyAgent - ok
11:56:21.0561 0x03f4 [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power C:\Windows\system32\umpo.dll
11:56:21.0564 0x03f4 Power - ok
11:56:21.0700 0x03f4 [ B7DB57A000D46D4DE75BC0C563E58072, 8183EB09DC4D44DFF027CA0AAA8C09921A14F088C1BC427B6ACA42340AAF69E6 ] PrintNotify C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
11:56:21.0759 0x03f4 PrintNotify - ok
11:56:21.0783 0x03f4 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\Windows\System32\drivers\processr.sys
11:56:21.0786 0x03f4 Processor - ok
11:56:21.0814 0x03f4 [ 9E5A3A3B702ECB9E88AA07731F0E65EB, 837EF55E367218B07100092BA1E6291FD52766C57A02900B6141B1A360654B84 ] ProfSvc C:\Windows\system32\profsvc.dll
11:56:21.0818 0x03f4 ProfSvc - ok
11:56:21.0833 0x03f4 [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:56:21.0835 0x03f4 Psched - ok
11:56:21.0852 0x03f4 [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE C:\Windows\system32\qwave.dll
11:56:21.0860 0x03f4 QWAVE - ok
11:56:21.0870 0x03f4 [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:56:21.0872 0x03f4 QWAVEdrv - ok
11:56:21.0885 0x03f4 [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:56:21.0886 0x03f4 RasAcd - ok
11:56:21.0904 0x03f4 [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto C:\Windows\System32\rasauto.dll
11:56:21.0908 0x03f4 RasAuto - ok
11:56:21.0939 0x03f4 [ BF3B17016764F20F9D28CF1A8DC210C0, F64B410D444D4A3DFEE356EFC5B758781FA2612771EDCF72DB91D3120385D7DB ] RasMan C:\Windows\System32\rasmans.dll
11:56:21.0952 0x03f4 RasMan - ok
11:56:21.0982 0x03f4 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:56:21.0985 0x03f4 RasPppoe - ok
11:56:22.0010 0x03f4 [ B939A2A0F9D6C6C186721E268EB6FA93, 8AF03945428D8F0E9B6DE1C24627336398320C7C78E5F594E0A57AB2DB6E0A24 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:56:22.0020 0x03f4 rdbss - ok
11:56:22.0043 0x03f4 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\Windows\System32\drivers\rdpbus.sys
11:56:22.0045 0x03f4 rdpbus - ok
11:56:22.0079 0x03f4 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
11:56:22.0085 0x03f4 RDPDR - ok
11:56:22.0098 0x03f4 [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:56:22.0100 0x03f4 RdpVideoMiniport - ok
11:56:22.0112 0x03f4 [ 2C915EFFF23EA65D1E760FA397BCA6AB, ACD0BD776313C206E3F2694B50BE8DF7EF5530220F7F1E126B387F2529262804 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:56:22.0118 0x03f4 rdyboost - ok
11:56:22.0173 0x03f4 [ 036746D54347FD2D0385668E2A4064E4, 7C670176176C86D6C3814367A6282A78F4E950F84DDEDA849829236C891F5BB9 ] ReFS C:\Windows\system32\drivers\ReFS.sys
11:56:22.0194 0x03f4 ReFS - ok
11:56:22.0239 0x03f4 [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess C:\Windows\System32\mprdim.dll
11:56:22.0245 0x03f4 RemoteAccess - ok
11:56:22.0281 0x03f4 [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:56:22.0285 0x03f4 RemoteRegistry - ok
11:56:22.0302 0x03f4 [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:56:22.0305 0x03f4 RpcEptMapper - ok
11:56:22.0335 0x03f4 [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator C:\Windows\system32\locator.exe
11:56:22.0337 0x03f4 RpcLocator - ok
11:56:22.0388 0x03f4 [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] RpcSs C:\Windows\system32\rpcss.dll
11:56:22.0401 0x03f4 RpcSs - ok
11:56:22.0424 0x03f4 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:56:22.0426 0x03f4 rspndr - ok
11:56:22.0511 0x03f4 [ DABD4AB3D049ECA6AFFD61B63A997728, 6F89D5AF4A02F7FC455922533D14486D4ED86E005523302A917E4F12B70B3794 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
11:56:22.0518 0x03f4 RtkAudioService - ok
11:56:22.0551 0x03f4 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\Windows\System32\drivers\vms3cap.sys
11:56:22.0552 0x03f4 s3cap - ok
11:56:22.0580 0x03f4 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs C:\Windows\system32\lsass.exe
11:56:22.0582 0x03f4 SamSs - ok
11:56:22.0597 0x03f4 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:56:22.0600 0x03f4 sbp2port - ok
11:56:22.0621 0x03f4 [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:56:22.0628 0x03f4 SCardSvr - ok
11:56:22.0650 0x03f4 [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum C:\Windows\System32\ScDeviceEnum.dll
11:56:22.0655 0x03f4 ScDeviceEnum - ok
11:56:22.0674 0x03f4 [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:56:22.0675 0x03f4 scfilter - ok
11:56:22.0733 0x03f4 [ 888A30EAB651502352C18745367FD179, 00CD9FA55F3E896D8BA81368DF1E855E2F64B5AC488EB4F9BF2C4E45ED63FD5F ] Schedule C:\Windows\system32\schedsvc.dll
11:56:22.0753 0x03f4 Schedule - ok
11:56:22.0793 0x03f4 [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc C:\Windows\System32\certprop.dll
11:56:22.0796 0x03f4 SCPolicySvc - ok
11:56:22.0828 0x03f4 [ C6A6F8921B94BC1673AC9AB485DF9A18, 8A0A7673615D328B0082CCCE98849D7C0313EC34DAB26039C3991E617B97B7B1 ] sdbus C:\Windows\System32\drivers\sdbus.sys
11:56:22.0836 0x03f4 sdbus - ok
11:56:22.0854 0x03f4 [ 4EAF4DCF9DBD9A56952A58F56D61C005, BCA42FD1553569D3603008CC97D88FD309E87F8A8B1522A4287A0E81CAE6C294 ] sdstor C:\Windows\System32\drivers\sdstor.sys
11:56:22.0857 0x03f4 sdstor - ok
11:56:22.0865 0x03f4 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:56:22.0867 0x03f4 secdrv - ok
11:56:22.0882 0x03f4 [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon C:\Windows\system32\seclogon.dll
11:56:22.0885 0x03f4 seclogon - ok
11:56:22.0897 0x03f4 [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS C:\Windows\System32\sens.dll
11:56:22.0900 0x03f4 SENS - ok
11:56:22.0914 0x03f4 [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:56:22.0919 0x03f4 SensrSvc - ok
11:56:22.0951 0x03f4 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\Windows\system32\drivers\SerCx.sys
11:56:22.0953 0x03f4 SerCx - ok
11:56:22.0965 0x03f4 [ 53BDBF04ECAF943CBF6359E3BCB2445E, B7CD4341B34BC44B511A167C21BF2EB907EB9F85D2B0A83577B9D632AD76D614 ] SerCx2 C:\Windows\system32\drivers\SerCx2.sys
11:56:22.0969 0x03f4 SerCx2 - ok
11:56:22.0985 0x03f4 [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\Windows\System32\drivers\serenum.sys
11:56:22.0987 0x03f4 Serenum - ok
11:56:23.0004 0x03f4 [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\Windows\System32\drivers\serial.sys
11:56:23.0007 0x03f4 Serial - ok
11:56:23.0019 0x03f4 [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse C:\Windows\System32\drivers\sermouse.sys
11:56:23.0021 0x03f4 sermouse - ok
11:56:23.0067 0x03f4 [ 438CFF94FC90A571389FE49CDC913E49, BCF8208A64022043CAE5F7042399019CC7A4A281A138AA3B8AD57FEDD007353F ] SessionEnv C:\Windows\system32\sessenv.dll
11:56:23.0076 0x03f4 SessionEnv - ok
11:56:23.0087 0x03f4 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\Windows\System32\drivers\sfloppy.sys
11:56:23.0088 0x03f4 sfloppy - ok
11:56:23.0131 0x03f4 [ 08A08EC17F1874802A8BC6D083BF1C55, 56B6B84E5F1F77712521E6F1F2278D369862DE346EDDC111D7EF03288A6974CE ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:56:23.0140 0x03f4 SharedAccess - ok
11:56:23.0207 0x03f4 [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:56:23.0218 0x03f4 ShellHWDetection - ok
11:56:23.0239 0x03f4 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
11:56:23.0241 0x03f4 SiSRaid2 - ok
11:56:23.0268 0x03f4 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
11:56:23.0271 0x03f4 SiSRaid4 - ok
11:56:23.0355 0x03f4 [ 050A4112B00BCA2E13314CDE48C1DEEE, 86C679CD494DEEB984372BF954EFBB8982AC7995FBF89FCF83BC228991D1B825 ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe
11:56:23.0361 0x03f4 SkypeUpdate - ok
11:56:23.0373 0x03f4 [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost C:\Windows\System32\smphost.dll
11:56:23.0376 0x03f4 smphost - ok
11:56:23.0398 0x03f4 [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:56:23.0400 0x03f4 SNMPTRAP - ok
11:56:23.0435 0x03f4 [ 349059B0C9EAED5A951D1693132A2EA8, F3E581DF0C46A93CFB83893DF00AAB6761B576663DC7380E94BBD020F733DEDF ] spaceport C:\Windows\system32\drivers\spaceport.sys
11:56:23.0445 0x03f4 spaceport - ok
11:56:23.0463 0x03f4 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\Windows\system32\drivers\SpbCx.sys
11:56:23.0466 0x03f4 SpbCx - ok
11:56:23.0515 0x03f4 [ FE0CB40F36D3FCDD3A1B312EF72C38D5, 42EA50869752164764DFE8CE7E1C247BE8342A0C15F39158DC808E8A692C460F ] Spooler C:\Windows\System32\spoolsv.exe
11:56:23.0533 0x03f4 Spooler - ok
11:56:23.0722 0x03f4 [ 4F68F08D3AF5AAE315800338932AF042, 466244C047467EEE3338FB83D9C8F1BE44BBBABADF4632706699DDA0D7131F07 ] sppsvc C:\Windows\system32\sppsvc.exe
11:56:23.0822 0x03f4 sppsvc - ok
11:56:23.0873 0x03f4 [ CD7534BA5BA92086B1BC10ADF880FC49, 90FC7A083A95CF79A3B7816A5D0B9CE7B9757A685F412931955AB3B88C8F0530 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:56:23.0883 0x03f4 srv - ok
11:56:23.0900 0x03f4 [ 59F15EFD74FDE8A1D9278F2C04F5D0B9, 58A5790E7089C54967916E35AFA832DAF5EB674D1BA03B16B738F63F3CD6BDA8 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:56:23.0914 0x03f4 srv2 - ok
11:56:23.0930 0x03f4 [ 96A7F9E8B3E0DD0355067D894C71A8F7, 291944F7539E61626BCAB02353FF517D9394BA4ABBCE0508B3475151516EF117 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:56:23.0936 0x03f4 srvnet - ok
11:56:23.0969 0x03f4 [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:56:23.0974 0x03f4 SSDPSRV - ok
11:56:23.0994 0x03f4 [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:56:23.0999 0x03f4 SstpSvc - ok
11:56:24.0033 0x03f4 [ 5252D7BC56E5E0ED715AEA8FE173A455, 1408B3E98B35A449434718777EE70595F0D306197A428279C6281D2F1953F259 ] ssudmdm C:\Windows\system32\DRIVERS\ssudmdm.sys
11:56:24.0038 0x03f4 ssudmdm - ok
11:56:24.0088 0x03f4 [ 6E1A473DD2A4714EAF7D11E2315DF794, 4460546191072C7DF8B2E5A00577BA8E4FF5A1B2EA399DDF65EBE1AE4A5A5C84 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
11:56:24.0097 0x03f4 Steam Client Service - ok
11:56:24.0117 0x03f4 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\Windows\system32\drivers\stexstor.sys
11:56:24.0119 0x03f4 stexstor - ok
11:56:24.0170 0x03f4 [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc C:\Windows\System32\wiaservc.dll
11:56:24.0184 0x03f4 stisvc - ok
11:56:24.0210 0x03f4 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\Windows\system32\drivers\storahci.sys
11:56:24.0213 0x03f4 storahci - ok
11:56:24.0227 0x03f4 [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt C:\Windows\system32\DRIVERS\vmstorfl.sys
11:56:24.0230 0x03f4 storflt - ok
11:56:24.0245 0x03f4 [ D57AEE34C7C0DD1DC8B6B54B7A89649C, C649E8670CBEAAAD0A380617B67BAF5A5931289AE599796FA6A9830AAFE5F8B4 ] stornvme C:\Windows\system32\drivers\stornvme.sys
11:56:24.0247 0x03f4 stornvme - ok
11:56:24.0266 0x03f4 [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc C:\Windows\system32\storsvc.dll
11:56:24.0269 0x03f4 StorSvc - ok
11:56:24.0279 0x03f4 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\Windows\system32\drivers\storvsc.sys
11:56:24.0282 0x03f4 storvsc - ok
11:56:24.0294 0x03f4 [ 03618F935379614837F915D04C45FC0E, 9CC0CBA7AFC58E7F921C13FA3F5269714F1F827535A311E11EA48689C4D539DE ] storvsp C:\Windows\System32\drivers\storvsp.sys
11:56:24.0296 0x03f4 storvsp - ok
11:56:24.0323 0x03f4 [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc C:\Windows\system32\svsvc.dll
11:56:24.0325 0x03f4 svsvc - ok
11:56:24.0342 0x03f4 [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum C:\Windows\System32\drivers\swenum.sys
11:56:24.0344 0x03f4 swenum - ok
11:56:24.0376 0x03f4 [ A5DC2E63F5E5D3C0B843307374998479, B3156296D1750FEAF2354E217735B8D888C50599869233FB1B537167F2CECE0B ] swprv C:\Windows\System32\swprv.dll
11:56:24.0388 0x03f4 swprv - ok
11:56:24.0420 0x03f4 [ 126AE059261C9234CD697F441F2C85CA, 23468CF74A40743CC65160D66BFEC354625A4C5E15389BF1B24718F0D8177B79 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
11:56:24.0429 0x03f4 SynTP - ok
11:56:24.0495 0x03f4 [ 3C2B9C8EA210F014563BF6391596D8F7, 5E79A46749D3FB11BF9C0A3D29468CE16DA8A3A187263A2980EB1F4C3AE6E6A3 ] SysMain C:\Windows\system32\sysmain.dll
11:56:24.0516 0x03f4 SysMain - ok
11:56:24.0540 0x03f4 [ 373382005ACB27CB16ED16722FBE946A, A1F86A014A518B3C2EC22A8DD830111E3B2A71D860ECA65A96BC82560802ACF4 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
11:56:24.0546 0x03f4 SystemEventsBroker - ok
11:56:24.0584 0x03f4 [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\Windows\System32\TabSvc.dll
11:56:24.0589 0x03f4 TabletInputService - ok
11:56:24.0614 0x03f4 [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv C:\Windows\System32\tapisrv.dll
11:56:24.0622 0x03f4 TapiSrv - ok
11:56:24.0718 0x03f4 [ C9436791C9DD3B5206DDBB1F75EE3E54, 596BC8E41E18BE201894BB9E84EE5E62A38C3424E1C6A5FF8F84CC2AC6577324 ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:56:24.0758 0x03f4 Tcpip - ok
11:56:24.0816 0x03f4 [ C9436791C9DD3B5206DDBB1F75EE3E54, 596BC8E41E18BE201894BB9E84EE5E62A38C3424E1C6A5FF8F84CC2AC6577324 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:56:24.0855 0x03f4 TCPIP6 - ok
11:56:24.0872 0x03f4 [ 33A7D83EEB15431773A6E186CFAABA21, AC5100A76CA44BFADF4A54FDB09FF5D2FF13B9F8482DC1AE86C8C27005F77B0F ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:56:24.0875 0x03f4 tcpipreg - ok
11:56:24.0907 0x03f4 [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:56:24.0911 0x03f4 tdx - ok
11:56:24.0928 0x03f4 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\Windows\System32\drivers\terminpt.sys
11:56:24.0930 0x03f4 terminpt - ok
11:56:24.0986 0x03f4 [ 2C77831737491F4D684D315B95C62883, 90A2574A281F19646CFCDA5FDF40063220058290D2D5523AD91B7E709EC36D3D ] TermService C:\Windows\System32\termsrv.dll
11:56:25.0008 0x03f4 TermService - ok
11:56:25.0021 0x03f4 [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes C:\Windows\system32\themeservice.dll
11:56:25.0024 0x03f4 Themes - ok
11:56:25.0040 0x03f4 [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER C:\Windows\system32\mmcss.dll
11:56:25.0043 0x03f4 THREADORDER - ok
11:56:25.0073 0x03f4 [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker C:\Windows\System32\TimeBrokerServer.dll
11:56:25.0079 0x03f4 TimeBroker - ok
11:56:25.0109 0x03f4 [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM C:\Windows\system32\drivers\tpm.sys
11:56:25.0113 0x03f4 TPM - ok
11:56:25.0141 0x03f4 [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks C:\Windows\System32\trkwks.dll
11:56:25.0145 0x03f4 TrkWks - ok
11:56:25.0183 0x03f4 [ DA56FFA46030E6FEB215E3D5DAA65B11, 36B5EED8F9044475000362DBFC8A2A40B889ED46382CCEFB6BA04BE0442F98C2 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:56:25.0185 0x03f4 TrustedInstaller - ok
11:56:25.0202 0x03f4 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:56:25.0204 0x03f4 TsUsbFlt - ok
11:56:25.0218 0x03f4 [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD C:\Windows\System32\drivers\TsUsbGD.sys
11:56:25.0220 0x03f4 TsUsbGD - ok
11:56:25.0254 0x03f4 [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:56:25.0258 0x03f4 tunnel - ok
11:56:25.0272 0x03f4 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\Windows\system32\drivers\uagp35.sys
11:56:25.0274 0x03f4 uagp35 - ok
11:56:25.0287 0x03f4 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\Windows\System32\drivers\uaspstor.sys
11:56:25.0290 0x03f4 UASPStor - ok
11:56:25.0320 0x03f4 [ 5D1B430EA11064C56E7C8F84B90DEB6A, 874D9EE807F16321C4857030F9C18D2B925785FD4BB7ED047AF9535BF3F30D84 ] UCX01000 C:\Windows\System32\drivers\ucx01000.sys
11:56:25.0326 0x03f4 UCX01000 - ok
11:56:25.0359 0x03f4 [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:56:25.0367 0x03f4 udfs - ok
11:56:25.0385 0x03f4 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\Windows\System32\drivers\UEFI.sys
11:56:25.0386 0x03f4 UEFI - ok
11:56:25.0408 0x03f4 [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:56:25.0427 0x03f4 UI0Detect - ok
11:56:25.0449 0x03f4 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:56:25.0451 0x03f4 uliagpkx - ok
11:56:25.0461 0x03f4 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\Windows\System32\drivers\umbus.sys
11:56:25.0463 0x03f4 umbus - ok
11:56:25.0470 0x03f4 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\Windows\System32\drivers\umpass.sys
11:56:25.0471 0x03f4 UmPass - ok
11:56:25.0496 0x03f4 [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService C:\Windows\System32\umrdp.dll
11:56:25.0503 0x03f4 UmRdpService - ok
11:56:25.0532 0x03f4 [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost C:\Windows\System32\upnphost.dll
11:56:25.0545 0x03f4 upnphost - ok
11:56:25.0568 0x03f4 [ 3432E857B8EC1C1316AB098F2BCCDFB6, D83B40E50C92B896855DE28BFEDE53F8DA9F705ED8484B898C04F381F3C85F65 ] usbccgp C:\Windows\System32\drivers\usbccgp.sys
11:56:25.0573 0x03f4 usbccgp - ok
11:56:25.0591 0x03f4 [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir C:\Windows\System32\drivers\usbcir.sys
11:56:25.0595 0x03f4 usbcir - ok
11:56:25.0618 0x03f4 [ 5477D6E27C7D266EF8C152B9A25ADE5E, FEE81677D284A78A0C0FB60F887A952CFC759AE78B01206D73F59FE33612C519 ] usbehci C:\Windows\System32\drivers\usbehci.sys
11:56:25.0622 0x03f4 usbehci - ok
11:56:25.0647 0x03f4 [ DF56C2C04EFA328D7A66B69007130266, 719316EB25A8C7B82C7941D1C5B964CC4EDA4A997732F481526DE7356F6FC0D8 ] usbhub C:\Windows\System32\drivers\usbhub.sys
11:56:25.0658 0x03f4 usbhub - ok
11:56:25.0685 0x03f4 [ 4475096DAB15E613A95D6A53F800B377, 51485E4C7C7F221470EC8431E7FD4FEE9630775C90163E7944AE4A3793EFDFD1 ] USBHUB3 C:\Windows\System32\drivers\UsbHub3.sys
11:56:25.0698 0x03f4 USBHUB3 - ok
11:56:25.0709 0x03f4 [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci C:\Windows\System32\drivers\usbohci.sys
11:56:25.0711 0x03f4 usbohci - ok
11:56:25.0728 0x03f4 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\Windows\System32\drivers\usbprint.sys
11:56:25.0730 0x03f4 usbprint - ok
11:56:25.0746 0x03f4 [ B1230E9813B5C7E762DF27756AA23917, 985203D267C2BF5FA88FE043785DF3DDFD796CB3CC4007E171AF63F41C413239 ] USBSTOR C:\Windows\System32\drivers\USBSTOR.SYS
11:56:25.0750 0x03f4 USBSTOR - ok
11:56:25.0762 0x03f4 [ BA4FA655E0FC577DB7436FC963932CE4, 3336FDECD4AEC6B316D4C0803E22A12719EBEDD1A9427C0DF5D3B263BE600EE6 ] usbuhci C:\Windows\System32\drivers\usbuhci.sys
11:56:25.0764 0x03f4 usbuhci - ok
11:56:25.0787 0x03f4 [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:56:25.0794 0x03f4 usbvideo - ok
11:56:25.0810 0x03f4 [ BCD8FC0A47AA31889C94168A4E56BB26, A7BB029DFED52EC8E9965C63A23CE946E3BD474F4111563492E76E5713025460 ] USBXHCI C:\Windows\System32\drivers\USBXHCI.SYS
11:56:25.0815 0x03f4 USBXHCI - ok
11:56:25.0824 0x03f4 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc C:\Windows\system32\lsass.exe
11:56:25.0826 0x03f4 VaultSvc - ok
11:56:25.0848 0x03f4 [ 3C8E2C591345F38149C69FE8E5DF8C90, 9F4BB9BDA09CB2E99A6A888B288F322AE5C460B5D124CD714C6F00FF5029144B ] VClone C:\Windows\System32\drivers\VClone.sys
11:56:25.0850 0x03f4 VClone - ok
11:56:25.0872 0x03f4 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:56:25.0874 0x03f4 vdrvroot - ok
11:56:25.0930 0x03f4 [ CFBAD6B48EDFAA0828A52646B7C4C08D, DDC7D607E784CE6FB5BC62E53E6309EB583D74425E6D3FC8F3D3EC705D69C075 ] vds C:\Windows\System32\vds.exe
11:56:25.0958 0x03f4 vds - ok
11:56:26.0004 0x03f4 [ 2582B87082A935ACB76F949F760AF236, 322F5BB3C769E697CE80B36D9DE5B9C889A8132853330C829124789B130932CC ] VerifierExt C:\Windows\system32\drivers\VerifierExt.sys
11:56:26.0008 0x03f4 VerifierExt - ok
11:56:26.0146 0x03f4 [ 041D3EF364E624DBB2703A64A5AADF89, 94A52A35AFDD09EBCC4266BD6D44014AAB4BBDFD3F6E8C997A1CA49DFB48F60D ] vhdmp C:\Windows\System32\drivers\vhdmp.sys
11:56:26.0161 0x03f4 vhdmp - ok
11:56:26.0176 0x03f4 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\Windows\system32\drivers\viaide.sys
11:56:26.0178 0x03f4 viaide - ok
11:56:26.0193 0x03f4 [ 3CE922E34DB12D9F3C0EA856BC09687C, E50A1885FBC775E49614989ECFEA4ACBBDDA16AF459CC5361EED9E23CC7CD42C ] Vid C:\Windows\System32\drivers\Vid.sys
11:56:26.0198 0x03f4 Vid - ok
11:56:26.0215 0x03f4 [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus C:\Windows\system32\drivers\vmbus.sys
11:56:26.0219 0x03f4 vmbus - ok
11:56:26.0242 0x03f4 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\Windows\System32\drivers\VMBusHID.sys
11:56:26.0244 0x03f4 VMBusHID - ok
11:56:26.0259 0x03f4 [ 68F8C26DEA2D42E8DEC0778943433C80, 81E8F9D62815F94952CEEABD0689473CC330F7890F66872DCD35A43C06ED33CD ] vmbusr C:\Windows\System32\drivers\vmbusr.sys
11:56:26.0262 0x03f4 vmbusr - ok
11:56:26.0300 0x03f4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
11:56:26.0313 0x03f4 vmicguestinterface - ok
11:56:26.0326 0x03f4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat C:\Windows\System32\ICSvc.dll
11:56:26.0335 0x03f4 vmicheartbeat - ok
11:56:26.0348 0x03f4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
11:56:26.0357 0x03f4 vmickvpexchange - ok
11:56:26.0370 0x03f4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv C:\Windows\System32\ICSvc.dll
11:56:26.0379 0x03f4 vmicrdv - ok
11:56:26.0391 0x03f4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown C:\Windows\System32\ICSvc.dll
11:56:26.0399 0x03f4 vmicshutdown - ok
11:56:26.0412 0x03f4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync C:\Windows\System32\ICSvc.dll
11:56:26.0421 0x03f4 vmictimesync - ok
11:56:26.0433 0x03f4 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss C:\Windows\System32\ICSvc.dll
11:56:26.0442 0x03f4 vmicvss - ok
11:56:26.0461 0x03f4 [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:56:26.0464 0x03f4 volmgr - ok
11:56:26.0494 0x03f4 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:56:26.0502 0x03f4 volmgrx - ok
11:56:26.0532 0x03f4 [ 9F9CE33B50611A1C61A46B8911E0B30B, FE4EDF16CE8FC36BB2125FC7D1CF45C65B06A2C31D426635115D879987DF2159 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:56:26.0540 0x03f4 volsnap - ok
11:56:26.0564 0x03f4 [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci C:\Windows\System32\drivers\vpci.sys
11:56:26.0566 0x03f4 vpci - ok
11:56:26.0586 0x03f4 [ ADBE96C33D1A5BB1BBAF90B4BC84F523, 6E9C9ED3D51E4B6E494D42ECA6F824AD86D676C12C39BBE6B8BD96366BCB02DA ] vpcivsp C:\Windows\System32\drivers\vpcivsp.sys
11:56:26.0588 0x03f4 vpcivsp - ok
11:56:26.0606 0x03f4 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
11:56:26.0610 0x03f4 vsmraid - ok
11:56:26.0663 0x03f4 [ D51D7EF1EA5ED2BB01E9D07E6E0533BC, E31118F42B316C9B6C9072D9628AA2801FC2519F1A46C9ED167843CD67183C19 ] VSS C:\Windows\system32\vssvc.exe
11:56:26.0699 0x03f4 VSS - ok
11:56:26.0728 0x03f4 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\Windows\system32\drivers\vstxraid.sys
11:56:26.0734 0x03f4 VSTXRAID - ok
11:56:26.0746 0x03f4 [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
11:56:26.0748 0x03f4 vwifibus - ok
11:56:26.0764 0x03f4 [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
11:56:26.0767 0x03f4 vwififlt - ok
11:56:26.0782 0x03f4 [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys
11:56:26.0784 0x03f4 vwifimp - ok
11:56:26.0824 0x03f4 [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time C:\Windows\system32\w32time.dll
11:56:26.0833 0x03f4 W32Time - ok
11:56:26.0848 0x03f4 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\Windows\System32\drivers\wacompen.sys
11:56:26.0850 0x03f4 WacomPen - ok
11:56:26.0917 0x03f4 [ 92BF4B3EBD6F163B94B7A20C65E7B698, 293E6FEFA862690A7B75443D6495144313D759971B98B495A99AAB0D2CF1F350 ] wbengine C:\Windows\system32\wbengine.exe
11:56:26.0949 0x03f4 wbengine - ok
11:56:26.0996 0x03f4 [ CE9E5A541CB4203B4930CE89766D4E5C, A4C123E09000DDACC73BFB609AAFB839449DE73E8C20C78899C287F856A5F5AF ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:56:27.0006 0x03f4 WbioSrvc - ok
11:56:27.0029 0x03f4 [ 5A619483E21DAAF186DF23270D226A7D, 4031B97C016BA96A135B1B5A975940841013757524463BA72EB9905E2E7CEE2A ] Wcmsvc C:\Windows\System32\wcmsvc.dll
11:56:27.0036 0x03f4 Wcmsvc - ok
11:56:27.0080 0x03f4 [ 8AF411E94155BF44DD4E878B42AA455B, 5BC4C23E9ACBF1F15F835AB4B8915D8FD7E53DB45A584A2FD0AFABC8375EA500 ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:56:27.0089 0x03f4 wcncsvc - ok
11:56:27.0103 0x03f4 [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:56:27.0106 0x03f4 WcsPlugInService - ok
11:56:27.0116 0x03f4 [ 694B28DE12AD47031FFB4B052662131A, FF3B1B1A69C82BB123073E10D9F1322ED8587F5BAC36F8AB7DAED22C7DD5C7DB ] WdBoot C:\Windows\system32\drivers\WdBoot.sys
11:56:27.0118 0x03f4 WdBoot - ok
11:56:27.0177 0x03f4 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:56:27.0194 0x03f4 Wdf01000 - ok
11:56:27.0209 0x03f4 [ 0B99529A3BECC3528D865DDECB62503B, 28E6B44BDC52E212D2EB269491D3574B45EE9B19821FE15167D7FA05566C89F4 ] WdFilter C:\Windows\system32\drivers\WdFilter.sys
11:56:27.0215 0x03f4 WdFilter - ok
11:56:27.0235 0x03f4 [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:56:27.0238 0x03f4 WdiServiceHost - ok
11:56:27.0242 0x03f4 [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:56:27.0245 0x03f4 WdiSystemHost - ok
11:56:27.0270 0x03f4 [ 282E7D46310338FF4A6B7680440EB0DA, 04242798DD82F583154AEA3D775C9BFD574FC471D01CDEB9D070872425094D82 ] WdNisDrv C:\Windows\system32\Drivers\WdNisDrv.sys
11:56:27.0273 0x03f4 WdNisDrv - ok
11:56:27.0298 0x03f4 WdNisSvc - ok
11:56:27.0319 0x03f4 [ 6588A957873326361AB1CAC4E76F8394, BE17880CEDCAE5ED3B983443E3777842646A3E48B661422A717656E11F6DBA94 ] WebClient C:\Windows\System32\webclnt.dll
11:56:27.0326 0x03f4 WebClient - ok
11:56:27.0353 0x03f4 [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc C:\Windows\system32\wecsvc.dll
11:56:27.0359 0x03f4 Wecsvc - ok
11:56:27.0380 0x03f4 [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC C:\Windows\system32\wephostsvc.dll
11:56:27.0383 0x03f4 WEPHOSTSVC - ok
11:56:27.0401 0x03f4 [ AA1315B87D9B2E39584165318A59F15D, CD19608BE1F6B7AECF802F8D2DD4FCBDAA29450ED37F7D040DC6453924C7B0FE ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:56:27.0404 0x03f4 wercplsupport - ok
11:56:27.0414 0x03f4 [ 22B4C24AB921BFF7827FFBCA1F4E1BB3, B634F7018097A8E4EECDD9F032DF6A0FB6817FC3DEB92BCE6A0965B5D71D8DFA ] WerSvc C:\Windows\System32\WerSvc.dll
11:56:27.0417 0x03f4 WerSvc - ok
11:56:27.0429 0x03f4 [ 011F431624366917180C904CE17FEA1A, E4D10DD81BA35C7AA89E97AB186CB5453357E3B4B804C7BBC648A9B5B8F764AD ] WFPLWFS C:\Windows\system32\DRIVERS\wfplwfs.sys
11:56:27.0432 0x03f4 WFPLWFS - ok
11:56:27.0448 0x03f4 [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc C:\Windows\System32\wiarpc.dll
11:56:27.0452 0x03f4 WiaRpc - ok
11:56:27.0482 0x03f4 [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:56:27.0484 0x03f4 WIMMount - ok
11:56:27.0486 0x03f4 WinDefend - ok
11:56:27.0534 0x03f4 [ A0D15D8727D0780C51628DF46B7268B3, 5E23F3ED1D6620C39A644F9879404A22DED86B3B076EC4A898B4B6BE244AFD64 ] WinDivert1.1 C:\Program Files\KMSpico\WinDivert.sys
11:56:27.0536 0x03f4 WinDivert1.1 - ok
11:56:27.0588 0x03f4 [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
11:56:27.0602 0x03f4 WinHttpAutoProxySvc - ok
11:56:27.0646 0x03f4 [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:56:27.0650 0x03f4 Winmgmt - ok
11:56:27.0758 0x03f4 [ 690C3FC5C9DBD6B9AEDF8341EC720E41, 0E4412BB6DEB5761F7A889FD90821FAFD7C6E173F449EAB3A0446BA653D6AD0C ] WinRM C:\Windows\system32\WsmSvc.dll
11:56:27.0829 0x03f4 WinRM - ok
11:56:27.0873 0x03f4 [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys
11:56:27.0876 0x03f4 WinUsb - ok
11:56:27.0942 0x03f4 [ 191294664E1397B5B0C95218A545250F, 430A7C4EA1CFB1258A561DCE34DBA3B1BA378BFD2C10949BDA5848AC236753E7 ] WlanSvc C:\Windows\System32\wlansvc.dll
11:56:27.0967 0x03f4 WlanSvc - ok
11:56:28.0023 0x03f4 [ 02A13DB2D44B17A1C37769246694C7CD, E7867239607F714D3099EA00D6217EE24BF82ABEE089690220F9B2E1F5AAF387 ] wlidsvc C:\Windows\system32\wlidsvc.dll
11:56:28.0049 0x03f4 wlidsvc - ok
11:56:28.0070 0x03f4 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\Windows\System32\drivers\wmiacpi.sys
11:56:28.0071 0x03f4 WmiAcpi - ok
11:56:28.0106 0x03f4 [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:56:28.0111 0x03f4 wmiApSrv - ok
11:56:28.0144 0x03f4 WMPNetworkSvc - ok
11:56:28.0223 0x03f4 [ A1314F0CD51E8F7CF613A17D8B0724F7, 90DBE87ADAE253B1392CFB04F21EBD0C324001B83731E8B634164C0E6924DA49 ] workfolderssvc C:\Windows\system32\workfolderssvc.dll
11:56:28.0269 0x03f4 workfolderssvc - ok
11:56:28.0285 0x03f4 [ E746BCDBA2E02CF6B8D6B26FB167FBE0, 8875BBE444A33E0C477EF1A3899955501B7E0A9479CA8AA20DD8E6AA0D9A71E6 ] wpcfltr C:\Windows\system32\DRIVERS\wpcfltr.sys
11:56:28.0287 0x03f4 wpcfltr - ok
11:56:28.0315 0x03f4 [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:56:28.0318 0x03f4 WPCSvc - ok
11:56:28.0335 0x03f4 [ D27491CFCE452C154CECFA155AD0EBC8, 1F3F74C253E3B07DE7EFE27C34DD9AF08617C7B03BB44C2902F69BA9DA3F21F2 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:56:28.0339 0x03f4 WPDBusEnum - ok
11:56:28.0371 0x03f4 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\Windows\system32\drivers\WpdUpFltr.sys
11:56:28.0373 0x03f4 WpdUpFltr - ok
11:56:28.0390 0x03f4 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:56:28.0392 0x03f4 ws2ifsl - ok
11:56:28.0423 0x03f4 [ 5CFA46C4ACB2FD70572017052378DAE5, F09134C4433A9E174889A16F29EA6628045B21BE4FA85275ACFD24D5DFB0D937 ] wscsvc C:\Windows\System32\wscsvc.dll
11:56:28.0427 0x03f4 wscsvc - ok
11:56:28.0429 0x03f4 WSearch - ok
11:56:28.0557 0x03f4 [ DD988D37D33574D02642E528C8CD8808, CBB38E06A85F87EAB93F5777B556C999D4282410B1394BED008F2354447F2A1E ] WSService C:\Windows\System32\WSService.dll
11:56:28.0618 0x03f4 WSService - ok
11:56:28.0744 0x03f4 [ B957B92C79A4CD138D5CFF1D20A9CF7B, B505D496A0F62FA1ADD444A3868B46C30DF4087D9660F0D1662EBC30616D7D1E ] wuauserv C:\Windows\system32\wuaueng.dll
11:56:28.0800 0x03f4 wuauserv - ok
11:56:28.0825 0x03f4 [ 2FEAE33E9B2B56104596E1BA444405A9, 0A142F50E06F6224B9CB36B3CE62BE0B36DE8B8DB9F9E05D287DFB884CC7826E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:56:28.0828 0x03f4 WudfPf - ok
11:56:28.0851 0x03f4 [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFRd C:\Windows\System32\drivers\WUDFRd.sys
11:56:28.0857 0x03f4 WUDFRd - ok
11:56:28.0894 0x03f4 [ BB73CBC65AABC4EA0A5C6A1474A0A743, D644B3C6A7202CADDADB3B68FE1B2A7C76B023FE58F667EED4D538C1F4A65D64 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:56:28.0897 0x03f4 wudfsvc - ok
11:56:28.0918 0x03f4 [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdFs C:\Windows\system32\DRIVERS\WUDFRd.sys
11:56:28.0922 0x03f4 WUDFWpdFs - ok
11:56:28.0929 0x03f4 [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdMtp C:\Windows\system32\DRIVERS\WUDFRd.sys
11:56:28.0933 0x03f4 WUDFWpdMtp - ok
11:56:28.0957 0x03f4 [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc C:\Windows\System32\wwansvc.dll
11:56:28.0969 0x03f4 WwanSvc - ok
11:56:28.0977 0x03f4 ================ Scan global ===============================
11:56:29.0014 0x03f4 [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\Windows\system32\basesrv.dll
11:56:29.0046 0x03f4 [ 599F1244C60E3D6C28A8DA7FBA7A2C13, 992E5EB5E3ED6172DC986085532224A148A09A4E9A4DED9556F34533EE98E4D0 ] C:\Windows\system32\winsrv.dll
11:56:29.0081 0x03f4 [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\Windows\system32\sxssrv.dll
11:56:29.0106 0x03f4 [ B4B610BBCB002EC478C6FD80CF915697, CE22B87A7C7C0D325CE66FB97E7318B4A41EE0BD14D902A410126A1EBBEAA6FB ] C:\Windows\system32\services.exe
11:56:29.0116 0x03f4 [ Global ] - ok
11:56:29.0116 0x03f4 ================ Scan MBR ==================================
11:56:29.0120 0x03f4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:56:29.0249 0x03f4 \Device\Harddisk0\DR0 - ok
11:56:29.0265 0x03f4 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
11:56:29.0294 0x03f4 \Device\Harddisk1\DR1 - ok
11:56:29.0295 0x03f4 ================ Scan VBR ==================================
11:56:29.0297 0x03f4 [ 2F324EA172F75CEAB66CD8A5311349C6 ] \Device\Harddisk0\DR0\Partition1
11:56:29.0298 0x03f4 \Device\Harddisk0\DR0\Partition1 - ok
11:56:29.0300 0x03f4 [ 984BE44B54807600665A0A4BC3C1C585 ] \Device\Harddisk1\DR1\Partition1
11:56:29.0309 0x03f4 \Device\Harddisk1\DR1\Partition1 - ok
11:56:29.0310 0x03f4 ================ Scan generic autorun ======================
11:56:29.0341 0x03f4 [ 2C78CB3320998F23C1E70A7453AF86A9, C0072F360B3E5F7DE6DD8ECC07C4DD346F51BC0CC509622BD2E84856B3D57002 ] C:\Windows\system32\igfxtray.exe
11:56:29.0345 0x03f4 IgfxTray - ok
11:56:29.0369 0x03f4 [ 4F64EEC70495C61E76785236A3EA3BF3, 55BA14932F0BAF1CD028279EDB6EED8399FDF8C3EF582D6BC83F92D74EACC24F ] C:\Windows\system32\hkcmd.exe
11:56:29.0375 0x03f4 HotKeysCmds - ok
11:56:29.0399 0x03f4 [ 66A1188246DF4DD7DA97C7EBDF40D0A2, ACDA32659122F526464F95852522B53613A5884668740CCFCDC231A90B7FCFB6 ] C:\Windows\system32\igfxpers.exe
11:56:29.0406 0x03f4 Persistence - ok
11:56:29.0597 0x03f4 [ 34674D5EF79577BF23A1D3DA2AD68F46, 1E0744EA7143480ED951F3AE91E3868D2AE35127681292789C65BB3BF7BC5ECA ] C:\Program Files\Lenovo\Onekey Theater\OnekeyStudio.exe
11:56:29.0666 0x03f4 OnekeyStudio - ok
11:56:29.0781 0x03f4 [ 436A83E5555A8449B9BFBE1AAB314654, DE956310B2EF80B43399E63E309E659018879942EBBA5063B9A366C2314E8158 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
11:56:29.0817 0x03f4 NvBackend - ok
11:56:29.0842 0x03f4 [ 6E0BDFBEEED65B017F2E4C2C910B0520, 54D798C2E2804DCDB84E9650EA4A032C669B10C586B396D5505F16235D83882C ] C:\Windows\system32\rundll32.exe
11:56:29.0844 0x03f4 ShadowPlay - ok
11:56:30.0230 0x03f4 [ 16438B000BF56F2CD7FDB5E6C3B38C7E, 32D6E69E6367D3ADB2189DA89103CB9910CE791EFB0879515DDD380A96D85BAE ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
11:56:30.0436 0x03f4 RtHDVCpl - ok
11:56:30.0525 0x03f4 [ BAF91E0F5CDE5300D4957859B8893D03, 18F3C697A7B790ABB8CC026AC6A7D8ED7F9B9DE6F86884DDCA70C819BE603302 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
11:56:30.0546 0x03f4 RtHDVBg_LENOVO_MICPKEY - ok
11:56:30.0846 0x03f4 [ 5464183DE5B496390DE92C1D92009FB1, 50A10707461D2BF5067CCE9E0AED2F34F7A96B4AD1CFA25CA1B19A9C7CA2ECB6 ] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
11:56:30.0993 0x03f4 Energy Management - ok
11:56:31.0636 0x03f4 [ F43AB67D41349AD8BB1FE045C5C49832, E79C50F6EA022AA41A502D780CB72232AC094FD008C31EDC51A1F58EF00B1F08 ] C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe
11:56:31.0733 0x03f4 EnergyUtility - ok
11:56:31.0737 0x03f4 SynTPEnh - ok
11:56:32.0880 0x03f4 [ 4D97DB3508FA1742B5F2C9F89E45A4B1, 98894115842EA89D81C90857967C93CE953DE8408D940EA8763BF02146325FE4 ] C:\Program Files\ESET\ESET Smart Security\egui.exe
11:56:32.0965 0x03f4 egui - ok
11:56:33.0072 0x03f4 [ 28BBBFCC1AD839D1EED3AB392353590F, 9273EF234AC64DBC50EC25DE2DB5B99AAB42F340D9F7327F2AD88CAAC887EDDC ] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe
11:56:33.0074 0x03f4 IAStorIcon - ok
11:56:33.0190 0x03f4 [ 3BD79A1F6D2EA0FDDEA3F8914B2A6A0C, 332E6806EFF846A2E6D0DC04A70D3503855DABFA83E6EC27F37E2D9103E80E51 ] C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
11:56:33.0192 0x03f4 VirtualCloneDrive - ok
11:56:33.0440 0x03f4 [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
11:56:33.0455 0x03f4 Adobe ARM - ok
11:56:33.0552 0x03f4 [ EDAD4A8A1D46AFCF9E76B996D55116EB, 937549E6FBF5D7282E56866C705539646F2CB6839FD74BF7AA8FB2BA5CCEE940 ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
11:56:33.0556 0x03f4 SunJavaUpdateSched - ok
11:56:33.0944 0x03f4 [ FD1AAB63DA3A91A04F34E64CF047309E, 2E17BC863C57BA02180F5DEE8D5D93D096DC9D868AF5402EF842E16B89794377 ] C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
11:56:33.0963 0x03f4 uTorrent - ok
11:56:34.0836 0x03f4 [ C45F039D216F214978E6CB6627E94834, 50127C7A449ABBE7031D602669E52CBBDF2C109393E2E8CC7D00A5F9D30B7D7A ] C:\Program Files (x86)\Origin\Origin.exe
11:56:34.0890 0x03f4 EADM - ok
11:56:35.0032 0x03f4 [ E37274EFCD42A5EB45C65615F2C1130D, 644D444796D008667A57FA7C0D83DB2CE5423187522A5F2525FBC0FE6E4A6D59 ] C:\Users\Public\Windows\downloadll.vbs
11:56:35.0032 0x03f4 Windows - ok
11:56:35.0034 0x03f4 Waiting for KSN requests completion. In queue: 91
11:56:36.0034 0x03f4 Waiting for KSN requests completion. In queue: 91
11:56:37.0035 0x03f4 Waiting for KSN requests completion. In queue: 91
11:56:38.0049 0x03f4 AV detected via SS2: ESET Smart Security 7.0, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 7.0.317.0 ), 0x41000 ( enabled : updated )
11:56:38.0082 0x03f4 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.3.9600.16384 ), 0x60110 ( disabled : outofdate )
11:56:38.0083 0x03f4 FW detected via SS2: ESET Personální firewall, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 7.0.317.0 ), 0x41010 ( enabled )
11:56:40.0439 0x03f4 ============================================================
11:56:40.0439 0x03f4 Scan finished
11:56:40.0439 0x03f4 ============================================================
11:56:40.0446 0x11ec Detected object count: 0
11:56:40.0446 0x11ec Actual detected object count: 0
11:56:47.0216 0x0b0c Deinitialize success
bitcoin miner 100% cpu Vyřešeno
Re: bitcoin miner 100% cpu
NTB : Lenovo Y570
Intel Core i5-2450M (Sandy Bridge, 2.5GHz, TB až 3.2GHz)
Nvidia GeForce GT555M 2GB
HDD: 750GB / SSD 32GB
RAM : 8GB 1333 MHZ
Windows 7 Ultimate 64-bit OEM :(
Intel Core i5-2450M (Sandy Bridge, 2.5GHz, TB až 3.2GHz)
Nvidia GeForce GT555M 2GB
HDD: 750GB / SSD 32GB
RAM : 8GB 1333 MHZ
Windows 7 Ultimate 64-bit OEM :(
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: bitcoin miner 100% cpu
Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.
Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: bitcoin miner 100% cpu
Combofix nepodporuje Win 8.1 :/
NTB : Lenovo Y570
Intel Core i5-2450M (Sandy Bridge, 2.5GHz, TB až 3.2GHz)
Nvidia GeForce GT555M 2GB
HDD: 750GB / SSD 32GB
RAM : 8GB 1333 MHZ
Windows 7 Ultimate 64-bit OEM :(
Intel Core i5-2450M (Sandy Bridge, 2.5GHz, TB až 3.2GHz)
Nvidia GeForce GT555M 2GB
HDD: 750GB / SSD 32GB
RAM : 8GB 1333 MHZ
Windows 7 Ultimate 64-bit OEM :(
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: bitcoin miner 100% cpu
Co problémy?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: bitcoin miner 100% cpu
Je to v pohodě, ale ten poslední log neudělám.
Díky za pomoc.. časem se odvděčím finančním příspěvkem na pc-help :)
Díky za pomoc.. časem se odvděčím finančním příspěvkem na pc-help :)
NTB : Lenovo Y570
Intel Core i5-2450M (Sandy Bridge, 2.5GHz, TB až 3.2GHz)
Nvidia GeForce GT555M 2GB
HDD: 750GB / SSD 32GB
RAM : 8GB 1333 MHZ
Windows 7 Ultimate 64-bit OEM :(
Intel Core i5-2450M (Sandy Bridge, 2.5GHz, TB až 3.2GHz)
Nvidia GeForce GT555M 2GB
HDD: 750GB / SSD 32GB
RAM : 8GB 1333 MHZ
Windows 7 Ultimate 64-bit OEM :(
-
jaro3
- člen Security týmu
-
Guru Level 15
- Příspěvky: 43298
- Registrován: červen 07
- Bydliště: Jižní Čechy
- Pohlaví:
- Stav:
Offline
Re: bitcoin miner 100% cpu
Děkujem..
ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall
Vyčisti systém CCleanerem
Stáhni si OTC
na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall
Vyčisti systém CCleanerem
Stáhni si OTC
na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.
Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Re: bitcoin miner 100% cpu Vyřešeno
Vše v pořádku.. díky za váš čas :)
NTB : Lenovo Y570
Intel Core i5-2450M (Sandy Bridge, 2.5GHz, TB až 3.2GHz)
Nvidia GeForce GT555M 2GB
HDD: 750GB / SSD 32GB
RAM : 8GB 1333 MHZ
Windows 7 Ultimate 64-bit OEM :(
Intel Core i5-2450M (Sandy Bridge, 2.5GHz, TB až 3.2GHz)
Nvidia GeForce GT555M 2GB
HDD: 750GB / SSD 32GB
RAM : 8GB 1333 MHZ
Windows 7 Ultimate 64-bit OEM :(
Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 92 hostů