Jump to content
MAM

How can I find out that your program, Malwarebytes Anti-Malware, works righ

Recommended Posts

How can I find out that your program, Malwarebytes Anti-Malware, works right for me?

I think that there is a probable "infection" with me, or could give ???

MAM
 

Share this post


Link to post
Share on other sites

***This is an automated reply***

Hi,

Thanks for posting in the Malwarebytes 3 Help forum.

 

If you are having technical issues with our Windows product, please do the following: 

Spoiler

If you haven’t already done so, please run the Malwarebytes Support Tool and then attach the logs in your next reply:

NOTE: The tools and the information obtained is safe and not harmful to your privacy or your computer, please allow the programs to run if blocked by your system.

  1. Download Malwarebytes Support Tool
  2. Once the file is downloaded, open your Downloads folder/location of the downloaded file
  3. Double-click mb-support-X.X.X.XXXX.exe to run the program
    • You may be prompted by User Account Control (UAC) to allow changes to be made to your computer. Click Yes to consent.
  4. Place a checkmark next to Accept License Agreement and click Next
  5. You will be presented with a page stating, "Get Started!"
  6. Click the Advanced tab on the left column
    0. UI.png
  7. Click the Gather Logs button
    17. Advanced.png
  8. A progress bar will appear and the program will proceed with getting logs from your computer
    19. System Repair Progress.png
  9. Upon completion, click a file named mbst-grab-results.zip will be saved to your Desktop. Click OK
  10. Please attach the file in your next reply. Before submitting your reply, be sure to enable "Notify me of replies" like so:
     notify me.jpeg  

Click "Reveal Hidden Contents" below for details on how to attach a file:
 

Spoiler

To save attachments, please click the link as shown below. You can click and drag the files to this bar or you can click the choose files, then browse to where your files are located, select them and click the Open button.

mb_attach.jpg.220985d559e943927cbe3c078b
 

One of our experts will be able to assist you shortly.

 

If you are having licensing issues, please do the following: 

Spoiler

For any of these issues:

  • Renewals
  • Refunds (including double billing)
  • Cancellations
  • Update Billing Info
  • Multiple Transactions
  • Consumer Purchases
  • Transaction Receipt

Please contact our support team at https://support.malwarebytes.com/community/consumer/pages/contact-us to get help

If you need help looking up your license details, please head here: https://support.malwarebytes.com/docs/DOC-1264 

 

Thanks in advance for your patience.

-The Malwarebytes Forum Team

 

Share this post


Link to post
Share on other sites

Hello,

well here are the Log´s.

Or we need more ?

OMG, the mbst-grab-results.zip is bigger than 14 Mb i can´t not uplaod this.

MAM

FRST.txt Addition.txt

Share this post


Link to post
Share on other sites

Hello @MAM:

It would be best if forum management is requested to move your topic to the Windows Malware Removal Help & Support sub-forum for expert analysis and remediation.  In the meantime, please carefully study the locked/pinned topic I'm infected - What do I do now?

To the three (3) files requested, it would be helpful to also ATTACH a Scan Report from Malwarebytes AdwCleaner as the fourth (4) report in a reply to this topic.

Also, please provide a good narrative of the symptoms of the infection experienced.

Thank you.

Share this post


Link to post
Share on other sites

Hello, that does not function by me.

See here:

And i found no solution to start this corectly, sevaral Days ago.

MAM

AC.jpg

Edited by MAM

Share this post


Link to post
Share on other sites

That is olso strange for me, i am not or also a paying custommer, or not.

Shall i post here my statement of account ? Well, that's a different site, but not finished yet.

Back to the Roots.

A Picture say more than tousend words.

 

AC.jpg

MB1.png

Share this post


Link to post
Share on other sites

Hello @MAM:

Since the following applications already seem to be installed on this W7 system, please ATTACH scan reports from as many as is possible:

  1. Malwarebytes 3 for Windows
  2. TDSSKiller
  3. Zemana
  4. G Data Internet Security

Please consider running these, and others, in Windows Safe Mode if failing in Windows Normal Mode.

As previously requested, can you please add any other related infection observations to the narrative in your next reply.  Thank you.

Edited by 1PW

Share this post


Link to post
Share on other sites

If you believe your system is infected then please follow the instructions in this topic and create a new topic in the malware removal area by clicking here and one of our malware removal specialists will help you to check and clean your system of any infections.  We do not work on infected systems in this area of the forums so please follow the instructions to post your logs in a new topic in the malware removal area and you will get the help you need.

Thanks

Share this post


Link to post
Share on other sites

Hello, here are the Log´s:

Malwarebytes
www.malwarebytes.com

-Protokolldetails-
Scan-Datum: 15.09.19
Scan-Zeit: 10:15
Protokolldatei: f8780c16-d790-11e9-990b-00ffa76f4149.json

-Softwaredaten-
Version: 3.8.3.2965
Komponentenversion: 1.0.625
Version des Aktualisierungspakets: 1.0.12481
Lizenz: Kostenlos

-Systemdaten-
Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: XXXXXXXXXXXXXXXXX
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 272375
Erkannte Bedrohungen: 0
In die Quarantäne verschobene Bedrohungen: 0
Abgelaufene Zeit: 18 Min., 16 Sek.

-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung

-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)

Modul: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswert: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Daten-Stream: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Datei: 0
(keine bösartigen Elemente erkannt)

Physischer Sektor: 0
(keine bösartigen Elemente erkannt)

WMI: 0
(keine bösartigen Elemente erkannt)


(end)

 

11:30:06.0968 7256  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
11:30:08.0624 7256  ============================================================
11:30:08.0624 7256  Current date / time: 2019/09/15 11:30:08.0624
11:30:08.0624 7256  SystemInfo:
11:30:08.0624 7256  
11:30:08.0624 7256  OS Version: 6.1.7601 ServicePack: 1.0
11:30:08.0624 7256  Product type: Workstation
11:30:08.0624 7256  ComputerName: SNOWBIRD
11:30:08.0624 7256  UserName: GHOST
11:30:08.0624 7256  Windows directory: C:\Windows
11:30:08.0624 7256  System windows directory: C:\Windows
11:30:08.0624 7256  Running under WOW64
11:30:08.0624 7256  Processor architecture: Intel x64
11:30:08.0624 7256  Number of processors: 4
11:30:08.0624 7256  Page size: 0x1000
11:30:08.0624 7256  Boot type: Normal boot
11:30:08.0624 7256  ============================================================
11:30:09.0192 7256  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
11:30:09.0208 7256  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:30:12.0339 7256  Drive \Device\Harddisk2\DR2 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:30:12.0674 7256  Drive \Device\Harddisk3\DR3 - Size: 0xE76000000 (57.84 Gb), SectorSize: 0x200, Cylinders: 0x1D7F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:30:12.0677 7256  ============================================================
11:30:12.0677 7256  \Device\Harddisk0\DR0:
11:30:12.0698 7256  MBR partitions:
11:30:12.0699 7256  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
11:30:12.0699 7256  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x3A353000
11:30:12.0699 7256  \Device\Harddisk1\DR1:
11:30:12.0700 7256  MBR partitions:
11:30:12.0700 7256  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
11:30:12.0700 7256  \Device\Harddisk2\DR2:
11:30:12.0706 7256  MBR partitions:
11:30:12.0706 7256  \Device\Harddisk2\DR2\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A384800
11:30:12.0706 7256  \Device\Harddisk3\DR3:
11:30:12.0707 7256  MBR partitions:
11:30:12.0707 7256  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x20, BlocksNum 0x73AFFE0
11:30:12.0707 7256  ============================================================
11:30:12.0729 7256  😄 <-> \Device\Harddisk0\DR0\Partition2
11:30:12.0757 7256  T: <-> \Device\Harddisk1\DR1\Partition1
11:30:12.0773 7256  R: <-> \Device\Harddisk2\DR2\Partition1
11:30:12.0773 7256  ============================================================
11:30:12.0773 7256  Initialize success
11:30:12.0773 7256  ============================================================
11:30:16.0014 6804  ============================================================
11:30:16.0014 6804  Scan started
11:30:16.0014 6804  Mode: Manual;
11:30:16.0014 6804  ============================================================
11:30:17.0764 6804  ================ Scan system memory ========================
11:30:17.0764 6804  System memory - ok
11:30:17.0764 6804  ================ Scan services =============================
11:30:17.0910 6804  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
11:30:17.0913 6804  1394ohci - ok
11:30:17.0974 6804  [ DCA5495CA17AEB2F4FD8AC60812C3999 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
11:30:17.0979 6804  ACPI - ok
11:30:17.0987 6804  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
11:30:17.0989 6804  AcpiPmi - ok
11:30:18.0107 6804  [ 027E4CD9600B177114A1D07D495A1C48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
11:30:18.0108 6804  AdobeARMservice - ok
11:30:18.0208 6804  [ 30E6F6B7CBB98CBE198BD81C95B1C2B9 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
11:30:18.0213 6804  AdobeFlashPlayerUpdateSvc - ok
11:30:18.0260 6804  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
11:30:18.0267 6804  adp94xx - ok
11:30:18.0300 6804  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
11:30:18.0307 6804  adpahci - ok
11:30:18.0327 6804  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
11:30:18.0331 6804  adpu320 - ok
11:30:18.0361 6804  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
11:30:18.0362 6804  AeLookupSvc - ok
11:30:18.0457 6804  [ 0DC2A9882540DEA4A55B08785E09D8FC ] AFD             C:\Windows\system32\drivers\afd.sys
11:30:18.0462 6804  AFD - ok
11:30:18.0504 6804  [ 466BF4170DC41BB939F1F9AB8F97F8F5 ] agp440          C:\Windows\system32\drivers\agp440.sys
11:30:18.0506 6804  agp440 - ok
11:30:18.0532 6804  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
11:30:18.0535 6804  ALG - ok
11:30:18.0547 6804  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
11:30:18.0549 6804  aliide - ok
11:30:18.0561 6804  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
11:30:18.0563 6804  amdide - ok
11:30:18.0579 6804  [ 24BB1011B63B01CDD1CC1780C2C883DC ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
11:30:18.0583 6804  AmdK8 - ok
11:30:18.0592 6804  [ CC76850B771641B1B6237538F69CB4E5 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
11:30:18.0595 6804  AmdPPM - ok
11:30:18.0607 6804  [ 6EC6D772EAE38DC17C14AED9B178D24B ] amdsata         C:\Windows\system32\drivers\amdsata.sys
11:30:18.0609 6804  amdsata - ok
11:30:18.0622 6804  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
11:30:18.0626 6804  amdsbs - ok
11:30:18.0634 6804  [ 1142A21DB581A84EA5597B03A26EBAA0 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
11:30:18.0636 6804  amdxata - ok
11:30:18.0672 6804  [ 88FC69B50011362B4024A83C7ED89B32 ] AppID           C:\Windows\system32\drivers\appid.sys
11:30:18.0674 6804  AppID - ok
11:30:18.0683 6804  [ AE03D4224F13A185B11A2732B345E4BF ] AppIDSvc        C:\Windows\System32\appidsvc.dll
11:30:18.0685 6804  AppIDSvc - ok
11:30:18.0690 6804  [ 672F9F574E34C4E0E671CD8B6D529CC9 ] Appinfo         C:\Windows\System32\appinfo.dll
11:30:18.0691 6804  Appinfo - ok
11:30:18.0735 6804  [ 4ABA3E75A76195A3E38ED2766C962899 ] AppMgmt         C:\Windows\System32\appmgmts.dll
11:30:18.0739 6804  AppMgmt - ok
11:30:18.0750 6804  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
11:30:18.0753 6804  arc - ok
11:30:18.0765 6804  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
11:30:18.0769 6804  arcsas - ok
11:30:18.0864 6804  [ 49C65599344CCADFD085709745761ED4 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
11:30:18.0877 6804  aspnet_state - ok
11:30:18.0945 6804  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
11:30:18.0948 6804  AsyncMac - ok
11:30:18.0991 6804  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
11:30:18.0993 6804  atapi - ok
11:30:19.0031 6804  [ 67C717EC24FCAAE7B518D9E06AD036AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:30:19.0041 6804  AudioEndpointBuilder - ok
11:30:19.0054 6804  [ 67C717EC24FCAAE7B518D9E06AD036AB ] AudioSrv        C:\Windows\System32\Audiosrv.dll
11:30:19.0060 6804  AudioSrv - ok
11:30:19.0252 6804  [ B606F66FAA5B52019027B81F22F51524 ] AVKProxy        C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
11:30:19.0280 6804  AVKProxy - ok
11:30:19.0475 6804  [ C97C24DDCE5AE7023E510EA36222BD50 ] AVKWCtl         C:\Program Files (x86)\G DATA\InternetSecurity\AVK\AVKWCtlx64.exe
11:30:19.0526 6804  AVKWCtl - ok
11:30:19.0552 6804  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
11:30:19.0557 6804  AxInstSV - ok
11:30:19.0591 6804  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
11:30:19.0598 6804  b06bdrv - ok
11:30:19.0641 6804  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
11:30:19.0646 6804  b57nd60a - ok
11:30:19.0726 6804  [ 47480F4260DAE9AA589BCAF924B3767A ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe
11:30:19.0730 6804  BBSvc - ok
11:30:19.0782 6804  [ 6BF743CBF3BCD09DAB79245E60E1AE62 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe
11:30:19.0797 6804  BBUpdate - ok
11:30:19.0914 6804  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
11:30:19.0917 6804  BDESVC - ok
11:30:19.0975 6804  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
11:30:19.0977 6804  Beep - ok
11:30:20.0141 6804  [ E3ED6C06462FDDE33100F7E45E8F5213 ] BFE             C:\Windows\System32\bfe.dll
11:30:20.0150 6804  BFE - ok
11:30:20.0215 6804  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
11:30:20.0227 6804  BITS - ok
11:30:20.0292 6804  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
11:30:20.0296 6804  blbdrive - ok
11:30:20.0372 6804  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
11:30:20.0379 6804  Bonjour Service - ok
11:30:20.0464 6804  [ D7E5C916557268B3DCC9E7DAD58E7727 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
11:30:20.0467 6804  bowser - ok
11:30:20.0494 6804  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
11:30:20.0496 6804  BrFiltLo - ok
11:30:20.0507 6804  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
11:30:20.0510 6804  BrFiltUp - ok
11:30:20.0540 6804  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
11:30:20.0543 6804  Browser - ok
11:30:20.0565 6804  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
11:30:20.0570 6804  Brserid - ok
11:30:20.0586 6804  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
11:30:20.0590 6804  BrSerWdm - ok
11:30:20.0627 6804  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
11:30:20.0630 6804  BrUsbMdm - ok
11:30:20.0635 6804  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
11:30:20.0637 6804  BrUsbSer - ok
11:30:20.0648 6804  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
11:30:20.0651 6804  BTHMODEM - ok
11:30:20.0674 6804  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
11:30:20.0678 6804  bthserv - ok
11:30:20.0768 6804  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
11:30:20.0771 6804  cdfs - ok
11:30:20.0816 6804  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
11:30:20.0820 6804  cdrom - ok
11:30:20.0843 6804  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
11:30:20.0846 6804  CertPropSvc - ok
11:30:20.0855 6804  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
11:30:20.0858 6804  circlass - ok
11:30:20.0914 6804  [ B5D7A0638CA817BA7D8A4DFD3499BA2A ] CLFS            C:\Windows\system32\CLFS.sys
11:30:20.0920 6804  CLFS - ok
11:30:21.0019 6804  [ F13EC8A783E0CB0D6DC26A3CA848B7B8 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:30:21.0021 6804  clr_optimization_v2.0.50727_32 - ok
11:30:21.0064 6804  [ B4D73F04E9BC076F7CDAC4327DF636BB ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
11:30:21.0069 6804  clr_optimization_v2.0.50727_64 - ok
11:30:21.0119 6804  [ BD2AE15EFB47E5215B4D0C59EA00C91A ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:30:21.0122 6804  clr_optimization_v4.0.30319_32 - ok
11:30:21.0154 6804  [ 30EAABE7A3B1081B6F5DDE4A1C0305D2 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
11:30:21.0166 6804  clr_optimization_v4.0.30319_64 - ok
11:30:21.0219 6804  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
11:30:21.0222 6804  CmBatt - ok
11:30:21.0229 6804  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
11:30:21.0232 6804  cmdide - ok
11:30:21.0288 6804  [ 9DE8D00626F01DBD1879A6655D7A752D ] CNG             C:\Windows\system32\Drivers\cng.sys
11:30:21.0295 6804  CNG - ok
11:30:21.0311 6804  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
11:30:21.0314 6804  Compbatt - ok
11:30:21.0347 6804  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
11:30:21.0349 6804  CompositeBus - ok
11:30:21.0374 6804  COMSysApp - ok
11:30:21.0429 6804  [ CE7AD82E4FE19FE49E41A028052214AC ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
11:30:21.0434 6804  cphs - ok
11:30:21.0456 6804  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
11:30:21.0459 6804  crcdisk - ok
11:30:21.0506 6804  [ EC0550300E899BD69BDB5937E684D348 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
11:30:21.0510 6804  CryptSvc - ok
11:30:21.0569 6804  [ 80BC9D418607974E4940EBC42F69BC8D ] CSC             C:\Windows\system32\drivers\csc.sys
11:30:21.0578 6804  CSC - ok
11:30:21.0602 6804  [ C593B028F399934C0A739AD7438B21BF ] CscService      C:\Windows\System32\cscsvc.dll
11:30:21.0611 6804  CscService - ok
11:30:21.0667 6804  [ 43CCB07A71347064695B8852492DA126 ] DcomLaunch      C:\Windows\system32\rpcss.dll
11:30:21.0676 6804  DcomLaunch - ok
11:30:21.0709 6804  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
11:30:21.0715 6804  defragsvc - ok
11:30:21.0773 6804  [ C45083FCD9AC301530C0D7206F3F15E6 ] DESerialPort    C:\Windows\system32\DRIVERS\DimensionSerialPort.sys
11:30:21.0776 6804  DESerialPort - ok
11:30:21.0840 6804  [ 63705A08981F7EDD376241D6E0A9C2AC ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
11:30:21.0844 6804  DfsC - ok
11:30:21.0869 6804  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
11:30:21.0875 6804  Dhcp - ok
11:30:21.0959 6804  [ EE9954237F15BE4DD9304D12E4D305ED ] DiagTrack       C:\Windows\system32\diagtrack.dll
11:30:21.0993 6804  DiagTrack - ok
11:30:22.0053 6804  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
11:30:22.0057 6804  discache - ok
11:30:22.0096 6804  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
11:30:22.0100 6804  Disk - ok
11:30:22.0118 6804  [ 5DB085A8A6600BE6401F2B24EECB5415 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
11:30:22.0121 6804  dmvsc - ok
11:30:22.0158 6804  [ EEEFC204476D5C44E4F6802F55697179 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
11:30:22.0162 6804  Dnscache - ok
11:30:22.0193 6804  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
11:30:22.0199 6804  dot3svc - ok
11:30:22.0215 6804  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
11:30:22.0218 6804  DPS - ok
11:30:22.0244 6804  [ 26FE888505E5A945B0536AF9A2A27A6F ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
11:30:22.0246 6804  drmkaud - ok
11:30:22.0330 6804  [ 5CEF80AE869336376F550ECAE91E424A ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
11:30:22.0343 6804  DXGKrnl - ok
11:30:22.0404 6804  [ 03F4C5C12FC1C69F838DA723475EF650 ] e1cexpress      C:\Windows\system32\DRIVERS\e1c62x64.sys
11:30:22.0411 6804  e1cexpress - ok
11:30:22.0430 6804  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
11:30:22.0433 6804  EapHost - ok
11:30:22.0506 6804  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
11:30:22.0618 6804  ebdrv - ok
11:30:22.0656 6804  [ 72D30CE8351FD3B8E87DDF92365ED7FC ] EFS             C:\Windows\System32\lsass.exe
11:30:22.0660 6804  EFS - ok
11:30:22.0720 6804  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
11:30:22.0730 6804  ehRecvr - ok
11:30:22.0746 6804  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
11:30:22.0749 6804  ehSched - ok
11:30:22.0774 6804  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
11:30:22.0782 6804  elxstor - ok
11:30:22.0804 6804  epp - ok
11:30:22.0839 6804  [ 9002EED07FD7FCFF6B8C5C06B454AC19 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
11:30:22.0842 6804  ErrDev - ok
11:30:22.0876 6804  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
11:30:22.0883 6804  EventSystem - ok
11:30:22.0920 6804  [ 7E45F8B117419ABA3BB26579F6E70324 ] exfat           C:\Windows\system32\drivers\exfat.sys
11:30:22.0925 6804  exfat - ok
11:30:23.0017 6804  [ 6EDFA237D25433C03F42FBFDB16BDD24 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
11:30:23.0021 6804  fastfat - ok
11:30:23.0062 6804  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
11:30:23.0072 6804  Fax - ok
11:30:23.0097 6804  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
11:30:23.0100 6804  fdc - ok
11:30:23.0118 6804  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
11:30:23.0122 6804  fdPHost - ok
11:30:23.0126 6804  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
11:30:23.0129 6804  FDResPub - ok
11:30:23.0195 6804  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
11:30:23.0198 6804  FileInfo - ok
11:30:23.0216 6804  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
11:30:23.0219 6804  Filetrace - ok
11:30:23.0284 6804  [ 322761FBC5D9439EE46FA997B4F88064 ] FlashUSB        C:\Windows\system32\DRIVERS\FlashUSB.sys
11:30:23.0286 6804  FlashUSB - ok
11:30:23.0308 6804  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
11:30:23.0310 6804  flpydisk - ok
11:30:23.0332 6804  [ DC591A7A196E99EFB5A48D708CB989FD ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
11:30:23.0338 6804  FltMgr - ok
11:30:23.0389 6804  [ 785F474FB5E67E448E1931C98E8D0ABC ] FontCache       C:\Windows\system32\FntCache.dll
11:30:23.0424 6804  FontCache - ok
11:30:23.0492 6804  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
11:30:23.0495 6804  FontCache3.0.0.0 - ok
11:30:23.0523 6804  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
11:30:23.0526 6804  FsDepends - ok
11:30:23.0573 6804  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
11:30:23.0575 6804  Fs_Rec - ok
11:30:23.0612 6804  [ 1F7B25B858FA27015169FE95E54108ED ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
11:30:23.0617 6804  fvevol - ok
11:30:23.0643 6804  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
11:30:23.0646 6804  gagp30kx - ok
11:30:23.0866 6804  [ 5E8EA6C42EA8DC318F79396ACC0F8544 ] GDFwSvc         C:\Program Files (x86)\G DATA\InternetSecurity\Firewall\GDFwSvcx64.exe
11:30:23.0895 6804  GDFwSvc - ok
11:30:23.0970 6804  [ D48DAF24329226E8797CE4AF53D90FBC ] GDKBB           C:\Windows\system32\drivers\GDKBB64.sys
11:30:23.0973 6804  GDKBB - ok
11:30:24.0024 6804  [ FC20CC3F6B87E9C26B01D8A6DDE6D847 ] GDKBFlt         C:\Windows\system32\drivers\GDKBFlt64.sys
11:30:24.0027 6804  GDKBFlt - ok
11:30:24.0087 6804  [ 93ED0F9607DBBA2A3DBD1D14E8732646 ] GDMnIcpt        C:\Windows\system32\drivers\MiniIcpt.sys
11:30:24.0095 6804  GDMnIcpt - ok
11:30:24.0155 6804  [ CF8EC2AD09C0D7DD8160ABF65A9EFD9E ] GDPkIcpt        C:\Windows\system32\drivers\PktIcpt.sys
11:30:24.0161 6804  GDPkIcpt - ok
11:30:24.0285 6804  [ 98AF7C6799DA0BEDCAFA71834BA42CBF ] GDScan          C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
11:30:24.0298 6804  GDScan - ok
11:30:24.0328 6804  [ C9DF853400F0F669D0A081C8C631FDE0 ] gdwfpcd         C:\Windows\system32\drivers\gdwfpcd64.sys
11:30:24.0330 6804  gdwfpcd - ok
11:30:24.0389 6804  [ E4AE497857409127ED57562AF913A903 ] gpsvc           C:\Windows\System32\gpsvc.dll
11:30:24.0400 6804  gpsvc - ok
11:30:24.0460 6804  [ 7F2DEAC8C1F91EA86FD0E50A340C3348 ] GRD             C:\Windows\system32\drivers\GRD.sys
11:30:24.0463 6804  GRD - ok
11:30:24.0488 6804  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
11:30:24.0491 6804  hcw85cir - ok
11:30:24.0521 6804  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:30:24.0527 6804  HdAudAddService - ok
11:30:24.0545 6804  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
11:30:24.0547 6804  HDAudBus - ok
11:30:24.0568 6804  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
11:30:24.0570 6804  HidBatt - ok
11:30:24.0584 6804  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
11:30:24.0587 6804  HidBth - ok
11:30:24.0603 6804  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
11:30:24.0607 6804  HidIr - ok
11:30:24.0632 6804  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
11:30:24.0634 6804  hidserv - ok
11:30:24.0673 6804  [ 90D91013D16A15B22A4B4EB6D4140A5B ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
11:30:24.0676 6804  HidUsb - ok
11:30:24.0693 6804  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
11:30:24.0696 6804  hkmsvc - ok
11:30:24.0707 6804  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:30:24.0711 6804  HomeGroupListener - ok
11:30:24.0732 6804  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:30:24.0735 6804  HomeGroupProvider - ok
11:30:24.0799 6804  [ C8743D910412F9F66C7B68577A1B848E ] HookCentre      C:\Windows\system32\drivers\HookCentre.sys
11:30:24.0803 6804  HookCentre - ok
11:30:24.0825 6804  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
11:30:24.0827 6804  HpSAMD - ok
11:30:24.0873 6804  [ 93C367EA831FB39DEE3BA96539A187FB ] HTTP            C:\Windows\system32\drivers\HTTP.sys
11:30:24.0881 6804  HTTP - ok
11:30:24.0936 6804  [ EF558A02D734A1403583E95CCEEC2487 ] HWiNFO32        C:\Windows\system32\drivers\HWiNFO64A.SYS
11:30:24.0939 6804  HWiNFO32 - ok
11:30:24.0968 6804  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
11:30:24.0971 6804  hwpolicy - ok
11:30:25.0019 6804  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
11:30:25.0022 6804  i8042prt - ok
11:30:25.0086 6804  [ D1753C06EE17E29352B065EACF3F10D0 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
11:30:25.0091 6804  iaStor - ok
11:30:25.0182 6804  [ 545462D0DBE24AF379BA869B7C185CCD ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
11:30:25.0184 6804  IAStorDataMgrSvc - ok
11:30:25.0218 6804  [ 3DF4395A7CF8B7A72A5F4606366B8C2D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
11:30:25.0223 6804  iaStorV - ok
11:30:25.0267 6804  [ C98A5B9D932430AD8EEBD3EF73756EF7 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
11:30:25.0276 6804  idsvc - ok
11:30:25.0279 6804  IEEtwCollectorService - ok
11:30:25.0512 6804  [ 9AA61DC7AA32C1D1260C4267FF07E0C1 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
11:30:25.0729 6804  igfx - ok
11:30:25.0746 6804  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
11:30:25.0748 6804  iirsp - ok
11:30:25.0799 6804  [ 25AF7D5C819F19D7C97F4A9607F2609A ] IKEEXT          C:\Windows\System32\ikeext.dll
11:30:25.0809 6804  IKEEXT - ok
11:30:25.0906 6804  [ D830262519DDCDFC8BE34EB7047C22DC ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
11:30:25.0997 6804  IntcAzAudAddService - ok
11:30:26.0029 6804  [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
11:30:26.0034 6804  IntcDAud - ok
11:30:26.0128 6804  [ B63CF22D1AD2ABDC39D85851B2BEAA6D ] Intel(R) Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
11:30:26.0139 6804  Intel(R) Capability Licensing Service TCP IP Interface - ok
11:30:26.0168 6804  [ 4A9EB8AC8959C580ADCADDBDBBEBE033 ] Intel(R) PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
11:30:26.0172 6804  Intel(R) PROSet Monitoring Service - ok
11:30:26.0201 6804  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
11:30:26.0203 6804  intelide - ok
11:30:26.0259 6804  [ FA4475BE23137E680B53C9384F77A85D ] intelppm        C:\Windows\system32\drivers\intelppm.sys
11:30:26.0263 6804  intelppm - ok
11:30:26.0287 6804  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
11:30:26.0291 6804  IPBusEnum - ok
11:30:26.0308 6804  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:30:26.0311 6804  IpFilterDriver - ok
11:30:26.0331 6804  [ A34A587FFFD45FA649FBA6D03784D257 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
11:30:26.0339 6804  iphlpsvc - ok
11:30:26.0362 6804  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
11:30:26.0365 6804  IPMIDRV - ok
11:30:26.0380 6804  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
11:30:26.0384 6804  IPNAT - ok
11:30:26.0400 6804  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
11:30:26.0403 6804  IRENUM - ok
11:30:26.0447 6804  [ 905E9D664F38B93B53FA05422165F5B5 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
11:30:26.0450 6804  isapnp - ok
11:30:26.0470 6804  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
11:30:26.0476 6804  iScsiPrt - ok
11:30:26.0496 6804  [ B2381712638B0B714D0EEAB9A1F7C640 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
11:30:26.0498 6804  iusb3hcs - ok
11:30:26.0532 6804  [ FD2C6457232E95C014DAD21DEBC64867 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
11:30:26.0537 6804  iusb3hub - ok
11:30:26.0563 6804  [ F6A2B5D030BE7EDF8ADC12C9A40825A8 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
11:30:26.0574 6804  iusb3xhc - ok
11:30:26.0650 6804  [ 5F3583770145A00FA1EDCF8089AD5CCA ] jhi_service     C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
11:30:26.0654 6804  jhi_service - ok
11:30:26.0688 6804  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
11:30:26.0691 6804  kbdclass - ok
11:30:26.0747 6804  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
11:30:26.0750 6804  kbdhid - ok
11:30:26.0754 6804  [ 72D30CE8351FD3B8E87DDF92365ED7FC ] KeyIso          C:\Windows\system32\lsass.exe
11:30:26.0756 6804  KeyIso - ok
11:30:26.0793 6804  [ 2A37E1867C1B0187E48D87AD36DB15D2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
11:30:26.0796 6804  KSecDD - ok
11:30:26.0836 6804  [ 5C42CED47415DC06C62B56AABD35B2A2 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
11:30:26.0840 6804  KSecPkg - ok
11:30:26.0897 6804  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
11:30:26.0899 6804  ksthunk - ok
11:30:26.0927 6804  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
11:30:26.0935 6804  KtmRm - ok
11:30:26.0993 6804  [ E65118228501478C4630BC96F2E1C876 ] LanmanServer    C:\Windows\system32\srvsvc.dll
11:30:26.0999 6804  LanmanServer - ok
11:30:27.0036 6804  [ 01C95A8CAE16CCF1EA1181395C872B9F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:30:27.0040 6804  LanmanWorkstation - ok
11:30:27.0083 6804  [ 97786341DF6562235202D7037AF62D2C ] LBAEvent        C:\Program Files (x86)\Lenovo\LBAI\LBAEvent.exe
11:30:27.0085 6804  LBAEvent - ok
11:30:27.0128 6804  [ 3E53EABCE50F6C277DB911A05AFC4848 ] LBAI            C:\Windows\system32\Drivers\LBAI.sys
11:30:27.0131 6804  LBAI - ok
11:30:27.0236 6804  [ 7D8E504162ACED686E7C8B0FA2D01AEA ] ldiagio_uefi    C:\Program Files\Lenovo\Lenovo Solution Center\App\ldiag\x64\ldiagio_uefi.sys
11:30:27.0240 6804  ldiagio_uefi - ok
11:30:27.0280 6804  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
11:30:27.0283 6804  lltdio - ok
11:30:27.0317 6804  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
11:30:27.0325 6804  lltdsvc - ok
11:30:27.0341 6804  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
11:30:27.0344 6804  lmhosts - ok
11:30:27.0389 6804  [ 00B4184D8B269387EE48E42373E35181 ] LMS             C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
11:30:27.0395 6804  LMS - ok
11:30:27.0510 6804  [ FD66828B7E8D085FD0F6009444525636 ] LSC.Services.SystemService C:\Program Files\Lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe
11:30:27.0524 6804  LSC.Services.SystemService - ok
11:30:27.0549 6804  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
11:30:27.0552 6804  LSI_FC - ok
11:30:27.0564 6804  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
11:30:27.0568 6804  LSI_SAS - ok
11:30:27.0588 6804  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
11:30:27.0592 6804  LSI_SAS2 - ok
11:30:27.0603 6804  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
11:30:27.0607 6804  LSI_SCSI - ok
11:30:27.0665 6804  [ 5416CEB2916BBE635288C4D1075B045E ] luafv           C:\Windows\system32\drivers\luafv.sys
11:30:27.0669 6804  luafv - ok
11:30:27.0891 6804  [ 327CB21B41CE523E2FABA8E17AB24404 ] MBAMService     C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe
11:30:27.0923 6804  MBAMService - ok
11:30:28.0004 6804  [ 303F8C619D472C98754B369E582F8E17 ] MBAMSwissArmy   C:\Windows\System32\Drivers\mbamswissarmy.sys
11:30:28.0010 6804  MBAMSwissArmy - ok
11:30:28.0028 6804  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
11:30:28.0033 6804  Mcx2Svc - ok
11:30:28.0067 6804  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
11:30:28.0069 6804  megasas - ok
11:30:28.0086 6804  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
11:30:28.0092 6804  MegaSR - ok
11:30:28.0131 6804  [ F59C2E19189BEB21A57CB2CE32AE1618 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
11:30:28.0135 6804  MEIx64 - ok
11:30:28.0205 6804  [ 99F7BDC6F6476EE79537FD66C76ADF47 ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
11:30:28.0217 6804  mfehidk - ok
11:30:28.0234 6804  [ 11DFAA4C047762AD254CCBF40322A38C ] mferkdet        C:\Windows\system32\drivers\mferkdet.sys
11:30:28.0238 6804  mferkdet - ok
11:30:28.0254 6804  [ 2425DF176F07C50363715B9592D305B8 ] mfevtp          C:\Windows\system32\mfevtps.exe
11:30:28.0260 6804  mfevtp - ok
11:30:28.0286 6804  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
11:30:28.0289 6804  MMCSS - ok
11:30:28.0322 6804  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
11:30:28.0325 6804  Modem - ok
11:30:28.0373 6804  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
11:30:28.0376 6804  monitor - ok
11:30:28.0421 6804  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
11:30:28.0424 6804  mouclass - ok
11:30:28.0461 6804  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
11:30:28.0464 6804  mouhid - ok
11:30:28.0507 6804  [ 072D8646E23ECF8A3F5F0157017B4DB6 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
11:30:28.0510 6804  mountmgr - ok
11:30:28.0577 6804  [ D0EE37C623B38B4B274FA7AC76618092 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
11:30:28.0582 6804  MozillaMaintenance - ok
11:30:28.0608 6804  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
11:30:28.0612 6804  mpio - ok
11:30:28.0655 6804  [ 3F829492638A86A3C4E0BB06778F0C23 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
11:30:28.0658 6804  mpsdrv - ok
11:30:28.0683 6804  [ C7A8706D5536D9BE35396C0116CAA8EE ] MpsSvc          C:\Windows\system32\mpssvc.dll
11:30:28.0694 6804  MpsSvc - ok
11:30:28.0721 6804  [ 98DB1790F0A584E0A2528B92B052417F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
11:30:28.0725 6804  MRxDAV - ok
11:30:28.0789 6804  [ FEBE1FE31AEE1F4D9A71D8EDEE646F1E ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
11:30:28.0793 6804  mrxsmb - ok
11:30:28.0843 6804  [ 1545FC773D6069A3BCD361EA2B3A6FB2 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:30:28.0849 6804  mrxsmb10 - ok
11:30:28.0909 6804  [ BD0394F9F6E98BE4E909424D5DF338C8 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:30:28.0913 6804  mrxsmb20 - ok
11:30:28.0967 6804  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
11:30:28.0969 6804  msahci - ok
11:30:28.0989 6804  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
11:30:28.0993 6804  msdsm - ok
11:30:29.0004 6804  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
11:30:29.0009 6804  MSDTC - ok
11:30:29.0056 6804  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
11:30:29.0059 6804  Msfs - ok
11:30:29.0080 6804  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
11:30:29.0082 6804  mshidkmdf - ok
11:30:29.0124 6804  [ 6FE3DBEEA730A857CA3DF603B7DEADA2 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
11:30:29.0126 6804  msisadrv - ok
11:30:29.0149 6804  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
11:30:29.0154 6804  MSiSCSI - ok
11:30:29.0158 6804  msiserver - ok
11:30:29.0177 6804  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
11:30:29.0180 6804  MSKSSRV - ok
11:30:29.0185 6804  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
11:30:29.0187 6804  MSPCLOCK - ok
11:30:29.0191 6804  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
11:30:29.0194 6804  MSPQM - ok
11:30:29.0228 6804  [ 94275393BB85D1E2B74BFEFEC386B4A0 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
11:30:29.0233 6804  MsRPC - ok
11:30:29.0283 6804  [ 1FC0BF25FFCB9F751BCBC6C6AC577078 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
11:30:29.0287 6804  mssmbios - ok
11:30:29.0291 6804  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
11:30:29.0294 6804  MSTEE - ok
11:30:29.0307 6804  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
11:30:29.0310 6804  MTConfig - ok
11:30:29.0321 6804  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
11:30:29.0325 6804  Mup - ok
11:30:29.0350 6804  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
11:30:29.0358 6804  napagent - ok
11:30:29.0398 6804  [ 9FB2A095B1166CB3C9A06651863B3452 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
11:30:29.0404 6804  NativeWifiP - ok
11:30:29.0457 6804  [ CBE5C2A3353A367734989E335D6AF194 ] NDIS            C:\Windows\system32\drivers\ndis.sys
11:30:29.0470 6804  NDIS - ok
11:30:29.0489 6804  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
11:30:29.0492 6804  NdisCap - ok
11:30:29.0545 6804  [ 3F217F77899654833B650ED6A1372BE4 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
11:30:29.0548 6804  NdisTapi - ok
11:30:29.0565 6804  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
11:30:29.0570 6804  Ndisuio - ok
11:30:29.0593 6804  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
11:30:29.0598 6804  NdisWan - ok
11:30:29.0617 6804  [ E46AF308E96F7730F59B0F250A884CD6 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
11:30:29.0620 6804  NDProxy - ok
11:30:29.0659 6804  [ 2E19EB10185992AB08BC3688AACA4CE2 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
11:30:29.0661 6804  NetBIOS - ok
11:30:29.0710 6804  [ 734837208CAFD6E0959A7A0333C95C9D ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
11:30:29.0715 6804  NetBT - ok
11:30:29.0724 6804  [ 72D30CE8351FD3B8E87DDF92365ED7FC ] Netlogon        C:\Windows\system32\lsass.exe
11:30:29.0726 6804  Netlogon - ok
11:30:29.0756 6804  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
11:30:29.0762 6804  Netman - ok
11:30:29.0841 6804  [ 2635C2A431F5F04DFFE23C2678BBA410 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:30:29.0844 6804  NetMsmqActivator - ok
11:30:29.0862 6804  [ 2635C2A431F5F04DFFE23C2678BBA410 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:30:29.0864 6804  NetPipeActivator - ok
11:30:29.0941 6804  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
11:30:29.0948 6804  netprofm - ok
11:30:29.0953 6804  [ 2635C2A431F5F04DFFE23C2678BBA410 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:30:29.0956 6804  NetTcpActivator - ok
11:30:29.0960 6804  [ 2635C2A431F5F04DFFE23C2678BBA410 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
11:30:29.0963 6804  NetTcpPortSharing - ok
11:30:30.0001 6804  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
11:30:30.0004 6804  nfrd960 - ok
11:30:30.0048 6804  [ 93DEDBE8E24F31962755E6AA4AC2D7B0 ] NlaSvc          C:\Windows\System32\nlasvc.dll
11:30:30.0054 6804  NlaSvc - ok
11:30:30.0090 6804  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
11:30:30.0093 6804  Npfs - ok
11:30:30.0127 6804  [ 668B9EFF5CCA4542F435D2CD9CE3C778 ] nsi             C:\Windows\system32\nsisvc.dll
11:30:30.0130 6804  nsi - ok
11:30:30.0172 6804  [ BE313E566EEA2A4B7F9AAC9782A567D4 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
11:30:30.0175 6804  nsiproxy - ok
11:30:30.0251 6804  [ 8422AFBD1C2D30FFC913309D7F1A366D ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
11:30:30.0286 6804  Ntfs - ok
11:30:30.0314 6804  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
11:30:30.0316 6804  Null - ok
11:30:30.0331 6804  [ 5D9FD91F3D38DC9DA01E3CB5FA89CD48 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
11:30:30.0336 6804  nvraid - ok
11:30:30.0351 6804  [ F7CD50FE7139F07E77DA8AC8033D1832 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
11:30:30.0355 6804  nvstor - ok
11:30:30.0393 6804  [ 7425A6B64F5D37D0565F2581B886E5E3 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
11:30:30.0397 6804  nv_agp - ok
11:30:30.0415 6804  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
11:30:30.0418 6804  ohci1394 - ok
11:30:30.0469 6804  [ 76379BDF8124612029E4D3975FD92EE6 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:30:30.0473 6804  ose64 - ok
11:30:30.0584 6804  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
11:30:30.0683 6804  osppsvc - ok
11:30:30.0725 6804  [ 64FB16C5849444F0CFD403C83D9579A1 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
11:30:30.0730 6804  p2pimsvc - ok
11:30:30.0774 6804  [ 79DB2B358BF0B152F15D1C5A525233BD ] p2psvc          C:\Windows\system32\p2psvc.dll
11:30:30.0783 6804  p2psvc - ok
11:30:30.0804 6804  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
11:30:30.0807 6804  Parport - ok
11:30:30.0830 6804  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
11:30:30.0832 6804  partmgr - ok
11:30:30.0859 6804  [ 3CD83692C43D87088E85E3C916146FFB ] PcaSvc          C:\Windows\System32\pcasvc.dll
11:30:30.0863 6804  PcaSvc - ok
11:30:30.0879 6804  [ 481DADB90C1D4E9F19328079C7A9E63D ] pci             C:\Windows\system32\drivers\pci.sys
11:30:30.0882 6804  pci - ok
11:30:30.0893 6804  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
11:30:30.0895 6804  pciide - ok
11:30:30.0912 6804  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
11:30:30.0916 6804  pcmcia - ok
11:30:30.0973 6804  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
11:30:30.0975 6804  pcw - ok
11:30:31.0072 6804  [ 14BE8FA88B967CDEA139E732690285B4 ] PDF24           C:\Program Files (x86)\PDF24Writer\pdf24.exe
11:30:31.0078 6804  PDF24 - ok
11:30:31.0119 6804  [ EA4D67448BE493D543F1730D6CD04694 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
11:30:31.0126 6804  PEAUTH - ok
11:30:31.0159 6804  [ C59E17D5E30972ECA28A72004795AEA7 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
11:30:31.0197 6804  PeerDistSvc - ok
11:30:31.0259 6804  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
11:30:31.0261 6804  PerfHost - ok
11:30:31.0307 6804  [ BC5F8C5C7ACCD0B884FCB8B67616F537 ] pla             C:\Windows\system32\pla.dll
11:30:31.0342 6804  pla - ok
11:30:31.0413 6804  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
11:30:31.0420 6804  PlugPlay - ok
11:30:31.0435 6804  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
11:30:31.0440 6804  PNRPAutoReg - ok
11:30:31.0458 6804  [ 64FB16C5849444F0CFD403C83D9579A1 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
11:30:31.0462 6804  PNRPsvc - ok
11:30:31.0486 6804  [ 80D6B0563ED2BF10656B1D4748331082 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
11:30:31.0493 6804  PolicyAgent - ok
11:30:31.0511 6804  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
11:30:31.0516 6804  Power - ok
11:30:31.0566 6804  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
11:30:31.0569 6804  PptpMiniport - ok
11:30:31.0612 6804  [ 6EB8C1862FE4AEE0C6D940CBECDCA0A2 ] Processor       C:\Windows\system32\drivers\processr.sys
11:30:31.0615 6804  Processor - ok
11:30:31.0646 6804  [ B6A58491307B4CADA572583D863DC602 ] ProfSvc         C:\Windows\system32\profsvc.dll
11:30:31.0651 6804  ProfSvc - ok
11:30:31.0688 6804  [ 72D30CE8351FD3B8E87DDF92365ED7FC ] ProtectedStorage C:\Windows\system32\lsass.exe
11:30:31.0690 6804  ProtectedStorage - ok
11:30:31.0732 6804  [ 4CE827A5433451551E99C2C1D20E4A43 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
11:30:31.0736 6804  Psched - ok
11:30:31.0785 6804  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
11:30:31.0819 6804  ql2300 - ok
11:30:31.0829 6804  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
11:30:31.0833 6804  ql40xx - ok
11:30:31.0857 6804  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
11:30:31.0864 6804  QWAVE - ok
11:30:31.0878 6804  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
11:30:31.0881 6804  QWAVEdrv - ok
11:30:31.0893 6804  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
11:30:31.0896 6804  RasAcd - ok
11:30:31.0943 6804  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
11:30:31.0947 6804  RasAgileVpn - ok
11:30:31.0966 6804  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
11:30:31.0972 6804  RasAuto - ok
11:30:31.0983 6804  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
11:30:31.0987 6804  Rasl2tp - ok
11:30:32.0004 6804  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
11:30:32.0012 6804  RasMan - ok
11:30:32.0055 6804  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
11:30:32.0059 6804  RasPppoe - ok
11:30:32.0099 6804  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
11:30:32.0102 6804  RasSstp - ok
11:30:32.0157 6804  [ FB45727105E27756B3252572A138FA19 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
11:30:32.0163 6804  rdbss - ok
11:30:32.0193 6804  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
11:30:32.0195 6804  rdpbus - ok
11:30:32.0207 6804  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
11:30:32.0210 6804  RDPCDD - ok
11:30:32.0241 6804  [ 1B6163C503398B23FF8B939C67747683 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
11:30:32.0245 6804  RDPDR - ok
11:30:32.0258 6804  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
11:30:32.0261 6804  RDPENCDD - ok
11:30:32.0274 6804  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
11:30:32.0277 6804  RDPREFMP - ok
11:30:32.0350 6804  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:30:32.0352 6804  RdpVideoMiniport - ok
11:30:32.0377 6804  [ FE571E088C2D83619D2D48D4E961BF41 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
11:30:32.0382 6804  RDPWD - ok
11:30:32.0421 6804  [ F4287A980C0AA41DE3073F053E5EA73C ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
11:30:32.0426 6804  rdyboost - ok
11:30:32.0470 6804  [ 0301EEE83B03229F555C6F8025FB5540 ] RemoteAccess    C:\Windows\System32\mprdim.dll
11:30:32.0475 6804  RemoteAccess - ok
11:30:32.0492 6804  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
11:30:32.0497 6804  RemoteRegistry - ok
11:30:32.0515 6804  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
11:30:32.0518 6804  RpcEptMapper - ok
11:30:32.0549 6804  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
11:30:32.0552 6804  RpcLocator - ok
11:30:32.0607 6804  [ 43CCB07A71347064695B8852492DA126 ] RpcSs           C:\Windows\system32\rpcss.dll
11:30:32.0613 6804  RpcSs - ok
11:30:32.0653 6804  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
11:30:32.0656 6804  rspndr - ok
11:30:32.0688 6804  [ E60C0A09F997826C7627B244195AB581 ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
11:30:32.0691 6804  s3cap - ok
11:30:32.0708 6804  [ 72D30CE8351FD3B8E87DDF92365ED7FC ] SamSs           C:\Windows\system32\lsass.exe
11:30:32.0711 6804  SamSs - ok
11:30:32.0730 6804  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
11:30:32.0733 6804  sbp2port - ok
11:30:32.0749 6804  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
11:30:32.0754 6804  SCardSvr - ok
11:30:32.0782 6804  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
11:30:32.0784 6804  scfilter - ok
11:30:32.0834 6804  [ F4F316BD846A5CDF84FBF487D4B9AFF6 ] Schedule        C:\Windows\system32\schedsvc.dll
11:30:32.0857 6804  Schedule - ok
11:30:32.0881 6804  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
11:30:32.0882 6804  SCPolicySvc - ok
11:30:32.0911 6804  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
11:30:32.0915 6804  SDRSVC - ok
11:30:32.0935 6804  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
11:30:32.0937 6804  secdrv - ok
11:30:32.0961 6804  [ A19623BDD61E66A12AB53992002B4F3A ] seclogon        C:\Windows\system32\seclogon.dll
11:30:32.0964 6804  seclogon - ok
11:30:32.0968 6804  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
11:30:32.0970 6804  SENS - ok
11:30:32.0982 6804  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
11:30:32.0986 6804  SensrSvc - ok
11:30:33.0003 6804  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
11:30:33.0006 6804  Serenum - ok
11:30:33.0020 6804  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
11:30:33.0023 6804  Serial - ok
11:30:33.0053 6804  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
11:30:33.0055 6804  sermouse - ok
11:30:33.0071 6804  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
11:30:33.0074 6804  SessionEnv - ok
11:30:33.0082 6804  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
11:30:33.0084 6804  sffdisk - ok
11:30:33.0095 6804  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
11:30:33.0097 6804  sffp_mmc - ok
11:30:33.0110 6804  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
11:30:33.0112 6804  sffp_sd - ok
11:30:33.0126 6804  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
11:30:33.0129 6804  sfloppy - ok
11:30:33.0192 6804  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
11:30:33.0199 6804  SharedAccess - ok
11:30:33.0223 6804  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:30:33.0229 6804  ShellHWDetection - ok
11:30:33.0262 6804  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
11:30:33.0264 6804  SiSRaid2 - ok
11:30:33.0274 6804  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
11:30:33.0277 6804  SiSRaid4 - ok
11:30:33.0295 6804  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
11:30:33.0299 6804  Smb - ok
11:30:33.0317 6804  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
11:30:33.0320 6804  SNMPTRAP - ok
11:30:33.0354 6804  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
11:30:33.0356 6804  spldr - ok
11:30:33.0373 6804  [ 8003D39B386EDCCFB08DC21AACC0683A ] Spooler         C:\Windows\System32\spoolsv.exe
11:30:33.0381 6804  Spooler - ok
11:30:33.0459 6804  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
11:30:33.0539 6804  sppsvc - ok
11:30:33.0552 6804  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
11:30:33.0556 6804  sppuinotify - ok
11:30:33.0593 6804  [ 1145EC013B72D4E6C60497707BB1A4B6 ] srv             C:\Windows\system32\DRIVERS\srv.sys
11:30:33.0599 6804  srv - ok
11:30:33.0640 6804  [ 2D8FFA3B636368130F909E0CD935B555 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
11:30:33.0645 6804  srv2 - ok
11:30:33.0663 6804  [ 4B1C343E11065819F687EAC68A5E13F3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
11:30:33.0666 6804  srvnet - ok
11:30:33.0683 6804  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
11:30:33.0686 6804  SSDPSRV - ok
11:30:33.0704 6804  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
11:30:33.0707 6804  SstpSvc - ok
11:30:33.0808 6804  [ 46826B02C346D48A62FF11882AF662BB ] ss_conn_service C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
11:30:33.0819 6804  ss_conn_service - ok
11:30:33.0849 6804  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
11:30:33.0852 6804  stexstor - ok
11:30:33.0905 6804  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
11:30:33.0915 6804  stisvc - ok
11:30:33.0938 6804  [ 7785DC213270D2FC066538DAF94087E7 ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
11:30:33.0941 6804  storflt - ok
11:30:33.0984 6804  [ C40841817EF57D491F22EB103DA587CC ] StorSvc         C:\Windows\system32\storsvc.dll
11:30:33.0989 6804  StorSvc - ok
11:30:34.0005 6804  [ D34E4943D5AC096C8EDEEBFD80D76E23 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
11:30:34.0008 6804  storvsc - ok
11:30:34.0108 6804  [ 7A56E42DA5B2984EB88F0A1D07151645 ] SUService       C:\Program Files (x86)\Lenovo\System Update\SUService.exe
11:30:34.0113 6804  SUService - ok
11:30:34.0150 6804  [ 10DCD3BDFA785E1482EC02304A7E9B96 ] swenum          C:\Windows\system32\drivers\swenum.sys
11:30:34.0153 6804  swenum - ok
11:30:34.0220 6804  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
11:30:34.0229 6804  swprv - ok
11:30:34.0268 6804  [ 15CF7B24AA64FE958CAEA00274838B1C ] SysMain         C:\Windows\system32\sysmain.dll
11:30:34.0303 6804  SysMain - ok
11:30:34.0335 6804  [ AD359C53941A6AC57FB935E7E9F1D16E ] TabletInputService C:\Windows\System32\TabSvc.dll
11:30:34.0340 6804  TabletInputService - ok
11:30:34.0369 6804  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
11:30:34.0375 6804  TapiSrv - ok
11:30:34.0390 6804  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
11:30:34.0396 6804  TBS - ok
11:30:34.0475 6804  [ F9EE4B0C1783FB393B28CC93121117FE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
11:30:34.0521 6804  Tcpip - ok
11:30:34.0564 6804  [ F9EE4B0C1783FB393B28CC93121117FE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
11:30:34.0578 6804  TCPIP6 - ok
11:30:34.0643 6804  [ DF687E3D8836BFB04FCC0615BF15A519 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
11:30:34.0646 6804  tcpipreg - ok
11:30:34.0657 6804  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
11:30:34.0661 6804  TDPIPE - ok
11:30:34.0675 6804  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
11:30:34.0679 6804  TDTCP - ok
11:30:34.0740 6804  [ 4DD986720F7CB7A8A5D1226793097B9A ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
11:30:34.0743 6804  tdx - ok
11:30:35.0000 6804  [ A8D574A86F67D52C5DE894F23699B70F ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
11:30:35.0173 6804  TeamViewer - ok
11:30:35.0214 6804  [ F5520DBB47C60EE83024B38720ABDA24 ] teamviewervpn   C:\Windows\system32\DRIVERS\teamviewervpn.sys
11:30:35.0217 6804  teamviewervpn - ok
11:30:35.0249 6804  [ AC24D7A7D9EEDE11E2926F9001BEAFB5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
11:30:35.0252 6804  TermDD - ok
11:30:35.0300 6804  [ 008CD4EBFABCF78D0F19B3778492648C ] TermService     C:\Windows\System32\termsrv.dll
11:30:35.0310 6804  TermService - ok
11:30:35.0333 6804  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
11:30:35.0336 6804  Themes - ok
11:30:35.0365 6804  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
11:30:35.0367 6804  THREADORDER - ok
11:30:35.0390 6804  [ DBCC20C02E8A3E43B03C304A4E40A84F ] TPM             C:\Windows\system32\drivers\tpm.sys
11:30:35.0392 6804  TPM - ok
11:30:35.0407 6804  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
11:30:35.0412 6804  TrkWks - ok
11:30:35.0460 6804  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:30:35.0465 6804  TrustedInstaller - ok
11:30:35.0497 6804  [ 2CF58216424757ED29605B4F18EC443C ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
11:30:35.0499 6804  tssecsrv - ok
11:30:35.0524 6804  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
11:30:35.0527 6804  TsUsbFlt - ok
11:30:35.0582 6804  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
11:30:35.0585 6804  TsUsbGD - ok
11:30:35.0639 6804  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
11:30:35.0643 6804  tunnel - ok
11:30:35.0654 6804  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
11:30:35.0657 6804  uagp35 - ok
11:30:35.0671 6804  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
11:30:35.0676 6804  udfs - ok
11:30:35.0705 6804  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
11:30:35.0709 6804  UI0Detect - ok
11:30:35.0749 6804  [ CA204117E5DD16DBF45D1513E169039E ] UimBus          C:\Windows\system32\DRIVERS\UimBus.sys
11:30:35.0752 6804  UimBus - ok
11:30:35.0789 6804  [ 8593690D302AE73AAC8BBA9B19757352 ] Uim_DEVIM       C:\Windows\system32\DRIVERS\uim_devim.sys
11:30:35.0791 6804  Uim_DEVIM - ok
11:30:35.0859 6804  [ 889788C1B850D1ED4027B675B9B8E5E2 ] Uim_IM          C:\Windows\system32\DRIVERS\uim_im.sys
11:30:35.0869 6804  Uim_IM - ok
11:30:35.0885 6804  [ B70E26A57F35ECA5199E6D6B9592A67C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
11:30:35.0889 6804  uliagpkx - ok
11:30:35.0909 6804  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
11:30:35.0912 6804  umbus - ok
11:30:35.0920 6804  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
11:30:35.0923 6804  UmPass - ok
11:30:35.0944 6804  [ A293DCD756D04D8492A750D03B9A297C ] UmRdpService    C:\Windows\System32\umrdp.dll
11:30:35.0949 6804  UmRdpService - ok
11:30:35.0982 6804  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
11:30:35.0988 6804  upnphost - ok
11:30:36.0036 6804  [ E6DFE1F33B1250A6E26EA6F6CE10B09C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
11:30:36.0039 6804  usbccgp - ok
11:30:36.0067 6804  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
11:30:36.0070 6804  usbcir - ok
11:30:36.0107 6804  [ 234F9E56606CE5D1549DE7D4CCA4DE0C ] usbehci         C:\Windows\system32\drivers\usbehci.sys
11:30:36.0110 6804  usbehci - ok
11:30:36.0153 6804  [ 0A33C9EC6822B24E26687F1EC6346922 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
11:30:36.0159 6804  usbhub - ok
11:30:36.0197 6804  [ 9C456BFD0FF50CB5B7ECDA7B7529F63B ] usbohci         C:\Windows\system32\drivers\usbohci.sys
11:30:36.0199 6804  usbohci - ok
11:30:36.0219 6804  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
11:30:36.0221 6804  usbprint - ok
11:30:36.0242 6804  [ 9661DA76B4531B2DA272ECCE25A8AF24 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
11:30:36.0245 6804  usbscan - ok
11:30:36.0267 6804  [ D029DD09E22EB24318A8FC3D8138BA43 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:30:36.0270 6804  USBSTOR - ok
11:30:36.0310 6804  [ 3C1D50EBDC6F531C0AA905D71956E106 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
11:30:36.0313 6804  usbuhci - ok
11:30:36.0387 6804  [ AA6EBA9C7424968403D6135224F47546 ] uSHAREitSvc     C:\Program Files (x86)\SHAREit Technologies\SHAREit\SHAREit.Service.exe
11:30:36.0391 6804  uSHAREitSvc - ok
11:30:36.0421 6804  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
11:30:36.0424 6804  UxSms - ok
11:30:36.0437 6804  [ 72D30CE8351FD3B8E87DDF92365ED7FC ] VaultSvc        C:\Windows\system32\lsass.exe
11:30:36.0439 6804  VaultSvc - ok
11:30:36.0451 6804  [ 7BDCE021786C3DCCFD2C22EBF643EE36 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
11:30:36.0455 6804  vdrvroot - ok
11:30:36.0478 6804  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
11:30:36.0488 6804  vds - ok
11:30:36.0525 6804  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
11:30:36.0528 6804  vga - ok
11:30:36.0552 6804  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
11:30:36.0555 6804  VgaSave - ok
11:30:36.0571 6804  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
11:30:36.0575 6804  vhdmp - ok
11:30:36.0590 6804  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
11:30:36.0593 6804  viaide - ok
11:30:36.0615 6804  [ 86EA3E79AE350FEA5331A1303054005F ] vmbus           C:\Windows\system32\drivers\vmbus.sys
11:30:36.0620 6804  vmbus - ok
11:30:36.0631 6804  [ 7DE90B48F210D29649380545DB45A187 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
11:30:36.0634 6804  VMBusHID - ok
11:30:36.0674 6804  [ 8EDE91FBAC7BF7605323C517C717A253 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
11:30:36.0677 6804  volmgr - ok
11:30:36.0732 6804  [ 85C5468BC395819AE2A0C747334BA14C ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
11:30:36.0739 6804  volmgrx - ok
11:30:36.0795 6804  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
11:30:36.0801 6804  volsnap - ok
11:30:36.0820 6804  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
11:30:36.0825 6804  vsmraid - ok
11:30:36.0882 6804  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
11:30:36.0917 6804  VSS - ok
11:30:36.0939 6804  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
11:30:36.0942 6804  vwifibus - ok
11:30:36.0959 6804  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
11:30:36.0966 6804  W32Time - ok
11:30:36.0980 6804  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
11:30:36.0983 6804  WacomPen - ok
11:30:37.0026 6804  [ DC4CB3626E7423B9D83CF1B4857FDF15 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
11:30:37.0029 6804  WANARP - ok
11:30:37.0034 6804  [ DC4CB3626E7423B9D83CF1B4857FDF15 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
11:30:37.0036 6804  Wanarpv6 - ok
11:30:37.0089 6804  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
11:30:37.0124 6804  wbengine - ok
11:30:37.0141 6804  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
11:30:37.0153 6804  WbioSrvc - ok
11:30:37.0193 6804  [ 79E3903FD75A22386326B542F17A2563 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
11:30:37.0199 6804  wcncsvc - ok
11:30:37.0216 6804  [ 35050F01D00E7E72A2449EB6F9ABF8B4 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:30:37.0219 6804  WcsPlugInService - ok
11:30:37.0244 6804  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
11:30:37.0246 6804  Wd - ok
11:30:37.0296 6804  [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
11:30:37.0305 6804  Wdf01000 - ok
11:30:37.0331 6804  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
11:30:37.0334 6804  WdiServiceHost - ok
11:30:37.0337 6804  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
11:30:37.0339 6804  WdiSystemHost - ok
11:30:37.0365 6804  [ EE841B6D1F2B9508D3ABAE52AC05A94F ] WebClient       C:\Windows\System32\webclnt.dll
11:30:37.0371 6804  WebClient - ok
11:30:37.0387 6804  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
11:30:37.0392 6804  Wecsvc - ok
11:30:37.0404 6804  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
11:30:37.0407 6804  wercplsupport - ok
11:30:37.0417 6804  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
11:30:37.0420 6804  WerSvc - ok
11:30:37.0469 6804  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
11:30:37.0472 6804  WfpLwf - ok
11:30:37.0479 6804  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
11:30:37.0482 6804  WIMMount - ok
11:30:37.0510 6804  WinDefend - ok
11:30:37.0600 6804  [ E19DF560CBD43D2ED0164C10E65DE5E1 ] WindowBlinds    C:\Program Files (x86)\Stardock\WindowBlinds\wbsrv.exe
11:30:37.0603 6804  WindowBlinds - ok
11:30:37.0622 6804  WinHttpAutoProxySvc - ok
11:30:37.0683 6804  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
11:30:37.0688 6804  Winmgmt - ok
11:30:37.0745 6804  [ EBDA1B0F15CB9B2CBCC6C94824E4E054 ] WinRM           C:\Windows\system32\WsmSvc.dll
11:30:37.0792 6804  WinRM - ok
11:30:37.0842 6804  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
11:30:37.0844 6804  WinUsb - ok
11:30:37.0903 6804  [ 4B7912EB80820EAC543EE54806EFCAF0 ] Wlansvc         C:\Windows\System32\wlansvc.dll
11:30:37.0917 6804  Wlansvc - ok
11:30:37.0961 6804  [ 43471A750D4F3918AC92F5131AE252D3 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
11:30:37.0964 6804  WmiAcpi - ok
11:30:37.0983 6804  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
11:30:37.0988 6804  wmiApSrv - ok
11:30:38.0004 6804  WMPNetworkSvc - ok
11:30:38.0033 6804  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
11:30:38.0038 6804  WPCSvc - ok
11:30:38.0049 6804  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
11:30:38.0053 6804  WPDBusEnum - ok
11:30:38.0070 6804  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
11:30:38.0073 6804  ws2ifsl - ok
11:30:38.0089 6804  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
11:30:38.0093 6804  wscsvc - ok
11:30:38.0097 6804  WSearch - ok
11:30:38.0179 6804  [ 0A2E5059B5775E7DBBE05B8156ECE0C6 ] wuauserv        C:\Windows\system32\wuaueng.dll
11:30:38.0236 6804  wuauserv - ok
11:30:38.0276 6804  [ D3381DC54C34D79B22CEE0D65BA91B7C ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
11:30:38.0280 6804  WudfPf - ok
11:30:38.0313 6804  [ CF8D590BE3373029D57AF80914190682 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
11:30:38.0318 6804  WUDFRd - ok
11:30:38.0339 6804  [ 7A95C95B6C4CF292D689106BCAE49543 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
11:30:38.0343 6804  wudfsvc - ok
11:30:38.0359 6804  [ 9A3452B3C2A46C073166C5CF49FAD1AE ] WwanSvc         C:\Windows\System32\wwansvc.dll
11:30:38.0365 6804  WwanSvc - ok
11:30:38.0389 6804  ================ Scan global ===============================
11:30:38.0425 6804  [ 168EA9CD9BD6056BB6F60B57D5304BBE ] C:\Windows\system32\basesrv.dll
11:30:38.0460 6804  [ C1DEC79F6C4DDA2F4697F21D2EAAE383 ] C:\Windows\system32\winsrv.dll
11:30:38.0470 6804  [ C1DEC79F6C4DDA2F4697F21D2EAAE383 ] C:\Windows\system32\winsrv.dll
11:30:38.0488 6804  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
11:30:38.0509 6804  [ 71C85477DF9347FE8E7BC55768473FCA ] C:\Windows\system32\services.exe
11:30:38.0515 6804  [Global] - ok
11:30:38.0516 6804  ================ Scan MBR ==================================
11:30:38.0534 6804  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:30:38.0701 6804  \Device\Harddisk0\DR0 - ok
11:30:38.0706 6804  [ 508F4A6A6A6B3DADC6D881D9948389D2 ] \Device\Harddisk1\DR1
11:30:38.0997 6804  \Device\Harddisk1\DR1 - ok
11:30:39.0003 6804  [ F05261C246CE4B3C544521FFFF7AEF5D ] \Device\Harddisk2\DR2
11:30:41.0049 6804  \Device\Harddisk2\DR2 - ok
11:30:41.0054 6804  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk3\DR3
11:30:41.0060 6804  \Device\Harddisk3\DR3 - ok
11:30:41.0060 6804  ================ Scan VBR ==================================
11:30:41.0078 6804  [ F5A4F64FCD2F2C1AF58AC609AA1233AD ] \Device\Harddisk0\DR0\Partition1
11:30:41.0080 6804  \Device\Harddisk0\DR0\Partition1 - ok
11:30:41.0093 6804  [ FCB8808733ABCA7914AA4BA808C8E6FA ] \Device\Harddisk0\DR0\Partition2
11:30:41.0096 6804  \Device\Harddisk0\DR0\Partition2 - ok
11:30:41.0099 6804  [ 84BE018DECB3FF4300DD3F4FAE7125B1 ] \Device\Harddisk1\DR1\Partition1
11:30:41.0104 6804  \Device\Harddisk1\DR1\Partition1 - ok
11:30:41.0110 6804  [ 008C223D945675696D4DEAEDB109E429 ] \Device\Harddisk2\DR2\Partition1
11:30:41.0199 6804  \Device\Harddisk2\DR2\Partition1 - ok
11:30:41.0203 6804  [ 31C95D3FE09F4B58664DE99D0F3D27D0 ] \Device\Harddisk3\DR3\Partition1
11:30:41.0206 6804  \Device\Harddisk3\DR3\Partition1 - ok
11:30:41.0207 6804  ============================================================
11:30:41.0207 6804  Scan finished
11:30:41.0207 6804  ============================================================
11:30:41.0218 7108  Detected object count: 0
11:30:41.0218 7108  Actual detected object count: 0


MAM

Share this post


Link to post
Share on other sites

Hi,  @MAM

My name is Maurice. I will be helping and guiding you, going forward on this case.

The Malwarebytes for Windows scan report found no malware / no P U P.

The TDSSKiller indicated nothing detected by it.

 

I would suggest a free scan with the ESET Online Scanner
Go to https://www.eset.com/us/home/online-scanner/

Look on the right side of the page.  Click Scan Now
It will start a download of "esetonlinescanner_enu.exe"
Save the file to your system, such as the Downloads folder, or else to the Desktop.

Go to the saved file, and double click it to get it started.
When presented with the initial ESET options, click on "Computer Scan".

Next, when prompted by Windows, allow it to start by clicking Yes

When prompted for scan type, Click on Full scan
Click on the radio selection "Enable ESET to detect and quarantine potentially unwanted applications"   and click on Start scan button.

Have patience.  The entire process may take an hour or more. There is an initial update download.
There is a progress window display.
You should ignore all prompts to get the ESET antivirus software program.   ( e.g.  their standard program).   You do not need to buy or get or install anything else.

When the scan is completed, if something was found, it will show a screen with the number of detected items.  If so, click the button marked “View detected results”.

Click The blue “Save scan log” to save the log.

If something was removed and you know it is a false finding, you may click on the blue ”Restore cleaned files”  ( in blue, at bottom).

Press Continue when all done.  You should click to off the offer for “periodic scanning”.

 

 

Share this post


Link to post
Share on other sites

Hello,

well, well well, the exaiming with Esset Online Scanner found nothing by me.

I think my system is infected with malware, boot time lasts up to 10 or even 15 minutes or less, up to 20 minutes, or even more.

I think the Malwarebytes anti-malware, and adwcleaner_7.4, with me an infection, do not work properly with me.
 

Please see also meinen Faden /Tread #6.

MAM

Share this post


Link to post
Share on other sites

Hello.

I am glad to read that the ESET scan reported no virus, no malware, no P U P.   You report it found nothing.

I have reason to believe the Malwarebytes for Windows is working .... witness the last scan with it.   It reported no malware.

The long ( seemingly long boot up of Windows)  can  ( and likely is ) be due to some sort of conflict or glitch-up on Windows  that likely is NOT a infection.

 

As to Malwarebytes Adwcleaner, I would like for you to see where you saved Adwcleaner.exe   and then delete that copy.

The copy you had is an old version.

 

We are going to resume checking this system by getting the latest Adwcleaner  and going thru a new scan.

I  would suggest to download, Save, and then run Malwarebytes ADWCLEANER.

Please close Chrome and all other open web browsers after you have saved the Adwcleaner and before you start Adwcleaner scan.

Version 7.4 of Adwcleaner  detects factory Preinstalled applications too!

I  encourage you to take a look at the announcement blogpost to learn more this new detection category: https://blog.malwarebytes.com/malwarebytes-news/2019/07/your-device,-your-choice:-adwcleaner-now-detects-preinstalled-software/.

 

Please download  Malwarebytes AdwCleaner  https://downloads.malwarebytes.com/file/adwcleaner
 

Be sure to Save the file first, to your system.  Saving to the Downloads folder should be the default on your system.

 

Go to the folder where you saved Adwcleaner. Double click Adwcleaner  to start it.

At the prompt for license agreement, review and then click on I agree.

 

You will then see a main screen for Adwcleaner. ( if you do not see it right away, minimized the other open windows, so you can see Adwcleaner).

Then click on Dashboard button.

Click the blue button "Scan Now".

 

allow it a few minutes to finish the Scan.   Let it remove what it finds.

NOTE:  When it comes to the section "

Pre-installed applications

 

You can skip that.

Please find and send the Adwcleaner "C" clean report.

In Adwcleaner, click the "Reports" button.  Look at the list of reports for the latest date & type "Clean".

Double Click that line & it will open in Notepad.   Save the file to your system and then Attach that with your reply.

Thanks.  Keep me advised.    We will do much more later on.

 

Share this post


Link to post
Share on other sites

Helo,

here are the reulut´s :

Report:

# -------------------------------
# Malwarebytes AdwCleaner 7.4.1.0
# -------------------------------
# Build:    09-05-2019
# Database: 2019-09-18.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start:    09-20-2019
# Duration: 00:00:21
# OS:       Windows 7 Professional
# Scanned:  35634
# Detected: 21


***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries found.

***** [ Firefox URLs ] *****

No malicious Firefox URLs found.

***** [ Preinstalled Software ] *****

Preinstalled.LenovoLBAI   Folder   C:\Program Files (x86)\LENOVO\LBAI
Preinstalled.LenovoLBAI   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{C5C91B7B-38A6-40B7-84D6-E44885E44B13}
Preinstalled.LenovoPowerManager   Folder   C:\Program Files (x86)\LENOVO\POWERMGR
Preinstalled.LenovoPowerManager   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{016CA70E-71C5-4111-A5A7-69C8C239E659}
Preinstalled.LenovoPowerManager   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Run|Power Manager Startup Utility
Preinstalled.LenovoPowerManager   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{DAC01CEE-5BAE-42D5-81FC-B687E84E8405}_is1
Preinstalled.LenovoSHAREit   File   C:\Users\Public\Desktop\SHAREit.lnk
Preinstalled.LenovoSolutionCenter   Folder   C:\Program Files\LENOVO\LENOVO SOLUTION CENTER
Preinstalled.LenovoSolutionCenter   Folder   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LENOVO\LENOVO SOLUTION CENTER
Preinstalled.LenovoSolutionCenter   Registry   HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{C1FC707B-AE6B-4DC4-89A5-6628A01F8103}
Preinstalled.LenovoUpdate   Folder   C:\Program Files (x86)\LENOVO\SYSTEM UPDATE
Preinstalled.LenovoUpdate   Registry   HKLM\Software\Classes\CLSID\{25C64847-B900-48AD-A164-1B4F9B774650}
Preinstalled.LenovoUpdate   Registry   HKLM\Software\Wow6432Node\\Classes\CLSID\{03C6CC92-68F2-4961-9A73-CAECA350BD08}
Preinstalled.LenovoUpdate   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\TVSU_is1
Preinstalled.SamsungSmartSwitch   File   C:\Users\GHOST\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Smart Switch.lnk
Preinstalled.SamsungSmartSwitch   File   C:\Users\Public\Desktop\Smart Switch.lnk
Preinstalled.SamsungSmartSwitch   Folder   C:\Program Files (x86)\SAMSUNG\SMART SWITCH PC
Preinstalled.SamsungSmartSwitch   Folder   C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SAMSUNG\SMART SWITCH PC
Preinstalled.SamsungSmartSwitch   Folder   C:\Users\GHOST\AppData\Roaming\SAMSUNG\SMART SWITCH PC
Preinstalled.SamsungSmartSwitch   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}
Preinstalled.SamsungSmartSwitch   Registry   HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}


AdwCleaner[S00].txt - [1257 octets] - [16/02/2019 22:22:01]
AdwCleaner[C00].txt - [1443 octets] - [16/02/2019 22:22:19]
AdwCleaner[S01].txt - [1379 octets] - [17/02/2019 00:53:11]
AdwCleaner[S02].txt - [1440 octets] - [19/02/2019 15:48:34]
AdwCleaner[C02].txt - [1626 octets] - [19/02/2019 15:48:56]
AdwCleaner[S03].txt - [1562 octets] - [19/02/2019 21:09:46]
AdwCleaner[C03].txt - [1748 octets] - [19/02/2019 21:10:10]
AdwCleaner[S04].txt - [1684 octets] - [20/02/2019 16:09:58]
AdwCleaner[S05].txt - [1745 octets] - [20/02/2019 16:11:34]
AdwCleaner[C05].txt - [1931 octets] - [20/02/2019 16:12:09]
AdwCleaner[S06].txt - [1867 octets] - [26/02/2019 16:03:12]
AdwCleaner[C06].txt - [2053 octets] - [26/02/2019 16:03:41]
AdwCleaner[S07].txt - [1989 octets] - [27/02/2019 22:30:15]
AdwCleaner[C07].txt - [2175 octets] - [27/02/2019 22:30:28]
AdwCleaner[S08].txt - [2111 octets] - [01/03/2019 08:24:17]
AdwCleaner[C08].txt - [2297 octets] - [01/03/2019 08:24:34]
AdwCleaner[S09].txt - [2233 octets] - [01/03/2019 19:15:32]
AdwCleaner[S10].txt - [2294 octets] - [06/03/2019 22:48:46]
AdwCleaner[C10].txt - [2480 octets] - [06/03/2019 22:49:17]
AdwCleaner[S11].txt - [2416 octets] - [07/03/2019 21:34:55]
AdwCleaner[C11].txt - [2602 octets] - [07/03/2019 21:35:18]
AdwCleaner[S12].txt - [2538 octets] - [10/03/2019 23:00:37]
AdwCleaner[S13].txt - [2599 octets] - [12/03/2019 11:45:02]
AdwCleaner[C13].txt - [2785 octets] - [12/03/2019 11:45:18]
AdwCleaner[S14].txt - [2721 octets] - [14/03/2019 10:03:16]
AdwCleaner[C14].txt - [2907 octets] - [14/03/2019 10:03:33]
AdwCleaner[S15].txt - [2843 octets] - [14/03/2019 21:22:15]
AdwCleaner[C15].txt - [3029 octets] - [14/03/2019 21:22:31]
AdwCleaner[S16].txt - [2965 octets] - [15/03/2019 15:35:31]
AdwCleaner[S17].txt - [3026 octets] - [16/03/2019 15:50:50]
AdwCleaner[C17].txt - [3212 octets] - [16/03/2019 15:51:19]
AdwCleaner[S18].txt - [3148 octets] - [16/03/2019 22:07:48]
AdwCleaner[C18].txt - [3334 octets] - [16/03/2019 22:08:08]
AdwCleaner[S19].txt - [3270 octets] - [18/03/2019 19:24:53]
AdwCleaner[C19].txt - [3456 octets] - [18/03/2019 19:25:14]
AdwCleaner[S20].txt - [3392 octets] - [19/03/2019 22:20:51]
AdwCleaner[S21].txt - [3453 octets] - [20/03/2019 16:17:58]
AdwCleaner[C21].txt - [3639 octets] - [20/03/2019 16:18:12]
AdwCleaner[S22].txt - [3575 octets] - [23/03/2019 17:09:16]
AdwCleaner[S23].txt - [3636 octets] - [27/03/2019 09:23:13]
AdwCleaner[C23].txt - [3822 octets] - [27/03/2019 09:23:40]
AdwCleaner[S24].txt - [3758 octets] - [28/03/2019 09:50:48]
AdwCleaner[C24].txt - [3944 octets] - [28/03/2019 09:51:01]
AdwCleaner[S25].txt - [3880 octets] - [29/03/2019 19:39:32]
AdwCleaner[S26].txt - [3941 octets] - [30/03/2019 09:25:08]
AdwCleaner[C26].txt - [4127 octets] - [30/03/2019 09:25:23]
AdwCleaner[S27].txt - [4063 octets] - [31/03/2019 16:49:10]
AdwCleaner[C27].txt - [4249 octets] - [31/03/2019 16:49:26]
AdwCleaner[S28].txt - [4185 octets] - [03/04/2019 08:36:38]
AdwCleaner[C28].txt - [4371 octets] - [03/04/2019 08:36:51]
AdwCleaner[S29].txt - [4307 octets] - [04/04/2019 10:06:51]
AdwCleaner[C29].txt - [4493 octets] - [04/04/2019 10:07:06]
AdwCleaner_Debug.log - [1061531 octets] - [04/04/2019 11:55:13]
AdwCleaner[S30].txt - [4491 octets] - [04/04/2019 11:55:29]
AdwCleaner[C30].txt - [4677 octets] - [04/04/2019 11:55:44]
AdwCleaner[S31].txt - [4614 octets] - [05/04/2019 20:41:36]
AdwCleaner[C31].txt - [4800 octets] - [05/04/2019 20:41:53]
AdwCleaner[S32].txt - [4736 octets] - [07/04/2019 10:22:33]
AdwCleaner[C32].txt - [4922 octets] - [07/04/2019 10:22:45]
AdwCleaner[S33].txt - [4858 octets] - [07/04/2019 15:58:21]
AdwCleaner[C33].txt - [5044 octets] - [07/04/2019 15:58:42]
AdwCleaner[S34].txt - [4980 octets] - [08/04/2019 17:59:36]
AdwCleaner[C34].txt - [5166 octets] - [08/04/2019 17:59:49]
AdwCleaner[S35].txt - [5102 octets] - [09/04/2019 16:15:46]
AdwCleaner[C35].txt - [5288 octets] - [09/04/2019 16:16:01]
AdwCleaner[S36].txt - [5224 octets] - [10/04/2019 15:45:51]
AdwCleaner[C36].txt - [5410 octets] - [10/04/2019 15:46:17]
AdwCleaner[S37].txt - [5347 octets] - [16/04/2019 16:26:15]
AdwCleaner[S38].txt - [5408 octets] - [16/04/2019 16:26:43]
AdwCleaner[C38].txt - [5594 octets] - [16/04/2019 16:26:53]
AdwCleaner[S39].txt - [5530 octets] - [17/04/2019 21:05:06]
AdwCleaner[S40].txt - [5591 octets] - [18/04/2019 21:43:33]
AdwCleaner[C40].txt - [5777 octets] - [18/04/2019 21:43:47]
AdwCleaner[S41].txt - [5713 octets] - [21/04/2019 10:55:33]
AdwCleaner[S42].txt - [5774 octets] - [21/04/2019 10:58:22]
AdwCleaner[C42].txt - [5960 octets] - [21/04/2019 10:58:36]
AdwCleaner[S43].txt - [5896 octets] - [25/04/2019 21:26:20]
AdwCleaner[C43].txt - [6082 octets] - [25/04/2019 21:26:39]
AdwCleaner[S44].txt - [6018 octets] - [28/04/2019 19:42:38]
AdwCleaner[C44].txt - [6204 octets] - [28/04/2019 19:42:49]
AdwCleaner[S45].txt - [6140 octets] - [29/04/2019 10:14:20]
AdwCleaner[S46].txt - [6201 octets] - [08/05/2019 21:49:03]
AdwCleaner[S47].txt - [6262 octets] - [14/05/2019 17:20:40]
AdwCleaner[C47].txt - [6448 octets] - [14/05/2019 17:20:55]
AdwCleaner[S48].txt - [6384 octets] - [19/05/2019 10:53:16]
AdwCleaner[C48].txt - [6570 octets] - [19/05/2019 10:53:30]
AdwCleaner[S49].txt - [6506 octets] - [24/05/2019 08:33:45]
AdwCleaner[C49].txt - [6692 octets] - [24/05/2019 08:33:59]
AdwCleaner[S50].txt - [6628 octets] - [25/05/2019 09:43:36]
AdwCleaner[C50].txt - [6814 octets] - [25/05/2019 09:43:51]
AdwCleaner[S51].txt - [7185 octets] - [05/06/2019 07:35:21]
AdwCleaner[C51].txt - [7277 octets] - [05/06/2019 07:36:12]
AdwCleaner[S52].txt - [6872 octets] - [06/06/2019 16:11:18]
AdwCleaner[C52].txt - [7058 octets] - [06/06/2019 16:11:44]
AdwCleaner[S53].txt - [6994 octets] - [08/06/2019 16:28:32]
AdwCleaner[S54].txt - [7055 octets] - [13/06/2019 16:17:00]
AdwCleaner[C54].txt - [7241 octets] - [13/06/2019 16:17:16]
AdwCleaner[S55].txt - [7177 octets] - [18/06/2019 13:25:35]
AdwCleaner[C55].txt - [7363 octets] - [18/06/2019 13:25:54]
AdwCleaner[S56].txt - [7299 octets] - [22/06/2019 16:12:41]
AdwCleaner[C56].txt - [7485 octets] - [22/06/2019 16:13:09]
AdwCleaner[S57].txt - [7421 octets] - [23/06/2019 20:26:55]
AdwCleaner[C57].txt - [7607 octets] - [23/06/2019 20:27:15]
AdwCleaner[S58].txt - [7543 octets] - [26/06/2019 09:59:56]
AdwCleaner[C58].txt - [7729 octets] - [26/06/2019 10:00:28]
AdwCleaner[S59].txt - [7665 octets] - [29/06/2019 11:17:17]
AdwCleaner[C59].txt - [7851 octets] - [29/06/2019 11:17:36]
AdwCleaner[S60].txt - [7787 octets] - [04/07/2019 10:14:07]
AdwCleaner[C60].txt - [7973 octets] - [04/07/2019 10:14:25]
AdwCleaner[S61].txt - [7909 octets] - [06/07/2019 20:52:40]
AdwCleaner[C61].txt - [8095 octets] - [06/07/2019 20:53:07]
AdwCleaner[S62].txt - [8031 octets] - [10/07/2019 20:25:59]
AdwCleaner[C62].txt - [8217 octets] - [10/07/2019 20:26:23]
AdwCleaner[S63].txt - [8153 octets] - [10/07/2019 20:36:20]
AdwCleaner[C63].txt - [8501 octets] - [10/07/2019 20:36:35]
AdwCleaner[S64].txt - [8275 octets] - [15/07/2019 09:48:26]
AdwCleaner[C64].txt - [8623 octets] - [15/07/2019 09:49:18]
AdwCleaner[S65].txt - [8397 octets] - [19/07/2019 12:17:02]
AdwCleaner[C65].txt - [8745 octets] - [19/07/2019 12:17:30]
AdwCleaner[S66].txt - [8519 octets] - [21/07/2019 15:38:26]
AdwCleaner[C66].txt - [8867 octets] - [21/07/2019 15:39:21]
AdwCleaner[S67].txt - [8891 octets] - [24/07/2019 16:12:16]
AdwCleaner[S68].txt - [8952 octets] - [24/07/2019 16:14:09]
AdwCleaner[S69].txt - [9013 octets] - [24/07/2019 22:53:02]
AdwCleaner[S70].txt - [9074 octets] - [25/07/2019 10:45:36]
AdwCleaner[S71].txt - [9135 octets] - [27/07/2019 14:33:23]
AdwCleaner[S72].txt - [9196 octets] - [28/07/2019 15:14:18]
AdwCleaner[S73].txt - [9257 octets] - [05/08/2019 20:56:49]
AdwCleaner[S74].txt - [9318 octets] - [17/08/2019 15:26:53]
AdwCleaner[S75].txt - [9379 octets] - [23/08/2019 16:16:46]
AdwCleaner[S76].txt - [9441 octets] - [28/08/2019 10:13:24]
AdwCleaner[S77].txt - [10210 octets] - [01/09/2019 10:26:38]
AdwCleaner[S78].txt - [9564 octets] - [17/09/2019 20:21:56]
AdwCleaner[S79].txt - [11882 octets] - [20/09/2019 22:12:01]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S80].txt ##########


I need help in this isue.

MAM

.

Share this post


Link to post
Share on other sites

Bravo.  This Adwcleaner run did finish  AND it found nothing malicious.  No adware, no P U P.

This is a Lenovo machine.   The lines about the preinstalled Lenovo I would disregard.

 

BY the way, going forward from here, I would prefer for you to NOT copy and paste reports inline   ....  but instead to ATTACH the files I ask for, Please,

  • Please attach both logs to your reply if possible.
  • To save attachments please click the link as shown below. Then browse to where your file is located and select it and click the Open button.

_mb_attach.jpg

 

 

The next thing I suggest, is a special check, with a special tool.

Download ComboFix from here and save it to your desktop.

http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Be real sure you SAVE it first. Save it to the DESKTOP.

Double click on ComboFix.exe & follow the prompts.

Your desktop may go blank. This is normal. It will return when ComboFix is done. ComboFix may reboot your machine. This is normal.

When finished, it shall produce a log for you, C:\ComboFix.txt . Attach that log in your next reply.

NOTE: If you encounter a message "illegal operation attempted on registry key that has been marked for deletion" and no programs will run - please just reboot and that will resolve that error.

Thank you.

Share this post


Link to post
Share on other sites

Hello,

well that Massage came from my Antivirus programm, than i run combofix.

MAM

BEAST.jpg

Share this post


Link to post
Share on other sites

Hello.

Combofix is a known & widely used security tool.  Please turn off the antivirus program.

Then run the Combofix procedure.

Thank you.

Share this post


Link to post
Share on other sites

Hello, well i belive you, but that dosen´r works by me. GData sends this program to quarantine .

What am I supposed to do now ?

MAM

Share this post


Link to post
Share on other sites

Antivirus apps , like yours, will falsely flag Combofix.  Some like this GData will quarantine.

What I tried to convey to you, is to first TURN OFF  the antivirus before doing my suggestions.   You will have to re-download the Combofix

Go to Settings > AntiVirus > Real-time protection.
Under Virus monitor, Behavior monitor and Exploit Protection, uncheck Enabled (recommended).

Now do what I suggested before.

 

When you are fully finished with the Combofix run  ....then to turn the antivirus back ON.

To reactivate real-time protection, repeat step 1 and re-check all Enabled (recommended) checkboxes

 

Share this post


Link to post
Share on other sites

Hello, i can start Combofix, but i must rename the Name, to start this.

My quastion is now,

Where can I find the report, or log if Combofix has checked my calculator?
 
Is this a TXT File ?
 
MAM
 
 

+

Share this post


Link to post
Share on other sites

The report log will be a text files.  It will be at the root of C drive.  look for C:\ComboFix.txt .

Share this post


Link to post
Share on other sites

Hello,

sorry i can´t find not the Log by me.

I have only the combofix.exe,  No a file this the name Colobox ( i hve renamned it) and a folder, this the Name combofix, but the folder is empty, on C:.

MAM

Edited by MAM

Share this post


Link to post
Share on other sites

Hello.

I hope to get you to run a fresh report with FRST64  so I can review.

First thing, I want to be sure that your Windows Explorer is set to show all folders, all system folders,  and all file-name extensions.

Displaying the File Extension  & ALL Folders    in  Windows 7

  1. Click the Start menu. This is the round icon that is on the bottom left corner of your screen.

  2. Type "folder options" (without the quotes). Click the line "Folder Options" that appears at the top of the Start menu.

  3. A dialog box with the title "Folder Options" will appear. Click the "View" tab at the top of the window.

  4. Click to uncheck the box for "Hide extensions for known file types".

  5. Under Advanced settings, select Show hidden files, folders, and drives, and then select OK.

  6. Click the "OK" button at the bottom of the dialog box.

 

.

The report tool FRST64 is on the DESKTOP  on this machine.

First Close other program-windows you have open so that  we reduce the screen clutter  and to have only needed ones.

 

Use Windows Explorer to look at the Desktop folder contents   ......  OR press and hold the Windows-key & tap the D key   ....to look on the DESKTOP.

Find FRST64

 

Run report with FRST64

Right-click on FRST icon and select Run as Administrator to start the tool , and reply YES to allow it to proceed and run.

Click YES when prompted by Windows U A C prompt to allow it to run.
Note: If you are prompted by Windows SmartScreen, click More info & followup & choose Run anyway.


Approve the Windows UAC prompt on Windows Vista and newer operating systems by clicking on Continue or Yes. 

Click Yes when the* disclaimer* appears in FRST.
The tool may want to update itself - in that case you'll be prompted when the update is completed and ready to use.

Make sure that Addition options is *checked* - the configuration should look exactly like on the screen below (do not mark additional things unless asked).
Press Scan button and wait.





The tool will produce 2  logfiles on your desktop: FRST.txt , Addition.txt 
Click OK button when it shows up. Close the Notepad windows when they show on screen. The tool saves the files.

Please attach these 2 files to your next reply.

Thank you.

Share this post


Link to post
Share on other sites

Hello, i hace a look on this.

Her are two Pcture of this.

Folderoption1, and Folderoption2.

By the Picture Folderoption1, Alle Ordener Anzeigen, means in your languages, display all folders. That was default by me.

Did you mean this ?

MAM

Folderoption1.jpg

Folderoption2.jpg

Share this post


Link to post
Share on other sites

Just so you know,  I am not able to read your language.      Deutsch

I do not know what these are - -  Folderoption1, and Folderoption2.

Thank you for the new FRST reports.

 

Go to the folder C:\ComboFix

in there, look for COMBOFIX.txt

If there, please attach that with your next Reply.

 

[ 2 ]

Please try uninstalling and reinstalling Malwarebytes for Windows using the Malwarebytes Support tool.

Uninstall and reinstall using the Malwarebytes Support Tool
https://support.malwarebytes.com/docs/DOC-2674

 

Keep me advised.

Sincerely.

Share this post


Link to post
Share on other sites
Guest
This topic is now closed to further replies.

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.