Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Please Install Media Player HD to continue


  • Please log in to reply
16 replies to this topic

#1 danno1840

danno1840

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 06 January 2014 - 05:07 PM

Hello everyone

 

Today when I went to ESPN to check some scores I noticed about a million strange pop up ads all over the page.  I soon realized they showed up on almost every website I visited. Uh oh! I ran a scan with Malware Bytes and it said there were no threats detected so I knew that this would be the best place for answers.  The ads in question all say "Ads not by this site" and the most prominent seems to be one that says "Please install media player HD to continue."  Any idea what this is and how to get rid of it? Please let me know what info you guys may need.  Thanks so much



BC AdBot (Login to Remove)

 


#2 jbiafra

jbiafra

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:09:00 PM

Posted 06 January 2014 - 05:13 PM

I had a similar problem with a program called iLivid a few weeks ago. This program caused annoying ads and text links on sites that don't even use advertisements. I'm not an expert on these things, I would definitely consult people more in the know than me before listening to my advice. but I would check my add and remove programs for likely suspects and do a toolbar clean on all of your browsers. FYI, iLivid was very difficult to find and get rid of, if that's in fact the problem.



#3 danno1840

danno1840
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 06 January 2014 - 05:40 PM

I did check my add and remove programs and the only new thing added in the last month was the Amazon Cloud Player.  This took me off guard for sure!



#4 danno1840

danno1840
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 06 January 2014 - 06:55 PM

If I may ask How did you end up getting rid of the problem?



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 61,949 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:00 PM

Posted 09 January 2014 - 09:42 PM

Hello, please run these next.
 
Which browser(s) are you using?


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#6 danno1840

danno1840
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 09 January 2014 - 10:43 PM

I'm running Firefox.  Just wanted to say that before I get to work with the rest!



#7 danno1840

danno1840
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 09 January 2014 - 10:51 PM

21:49:00.0803 0x3680  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
21:49:00.0803 0x3680  UEFI system
21:49:06.0498 0x3680  ============================================================
21:49:06.0498 0x3680  Current date / time: 2014/01/09 21:49:06.0498
21:49:06.0498 0x3680  SystemInfo:
21:49:06.0498 0x3680  
21:49:06.0498 0x3680  OS Version: 6.3.9600 ServicePack: 0.0
21:49:06.0498 0x3680  Product type: Workstation
21:49:06.0498 0x3680  ComputerName: EARL
21:49:06.0498 0x3680  UserName: danhead322
21:49:06.0498 0x3680  Windows directory: C:\WINDOWS
21:49:06.0498 0x3680  System windows directory: C:\WINDOWS
21:49:06.0498 0x3680  Running under WOW64
21:49:06.0498 0x3680  Processor architecture: Intel x64
21:49:06.0499 0x3680  Number of processors: 4
21:49:06.0499 0x3680  Page size: 0x1000
21:49:06.0499 0x3680  Boot type: Normal boot
21:49:06.0499 0x3680  ============================================================
21:49:08.0118 0x3680  KLMD registered as C:\WINDOWS\system32\drivers\55677375.sys
21:49:08.0527 0x3680  System UUID: {CBCBCAE2-6A05-7A06-3804-7ADF6FB0525A}
21:49:09.0715 0x3680  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:49:09.0748 0x3680  Drive \Device\Harddisk1\DR5 - Size: 0x1D9C00000 (7.40 Gb), SectorSize: 0x200, Cylinders: 0x3C6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:49:09.0763 0x3680  ============================================================
21:49:09.0763 0x3680  \Device\Harddisk0\DR0:
21:49:09.0764 0x3680  GPT partitions:
21:49:09.0765 0x3680  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {8E917C5E-40B0-11E2-88A4-99BCBB13602D}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xE1000
21:49:09.0765 0x3680  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {8E917C64-40B0-11E2-88A4-99BCBB13602D}, Name: Basic data partition, StartLBA 0xE1800, BlocksNum 0x82000
21:49:09.0765 0x3680  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {8E917C66-40B0-11E2-88A4-99BCBB13602D}, Name: Basic data partition, StartLBA 0x163800, BlocksNum 0x40000
21:49:09.0765 0x3680  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {8E917C6E-40B0-11E2-88A4-99BCBB13602D}, Name: Basic data partition, StartLBA 0x1A3800, BlocksNum 0x72FE6800
21:49:09.0765 0x3680  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {2D74AA56-47BC-48C8-8F09-AD35FCC0725A}, Name: , StartLBA 0x7318A000, BlocksNum 0xAF000
21:49:09.0765 0x3680  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {EB886586-F2B7-43EA-B2CC-97D9A5EEEF97}, Name: Basic data partition, StartLBA 0x73239000, BlocksNum 0x14CD800
21:49:09.0765 0x3680  MBR partitions:
21:49:09.0765 0x3680  \Device\Harddisk1\DR5:
21:49:09.0768 0x3680  MBR partitions:
21:49:09.0768 0x3680  \Device\Harddisk1\DR5\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0xECC000
21:49:09.0768 0x3680  ============================================================
21:49:09.0795 0x3680  C: <-> \Device\Harddisk0\DR0\Partition4
21:49:09.0795 0x3680  ============================================================
21:49:09.0795 0x3680  Initialize success
21:49:09.0795 0x3680  ============================================================
21:49:13.0956 0x36c0  ============================================================
21:49:13.0956 0x36c0  Scan started
21:49:13.0956 0x36c0  Mode: Manual;
21:49:13.0956 0x36c0  ============================================================
21:49:13.0956 0x36c0  KSN ping started
21:49:16.0651 0x36c0  KSN ping finished: true
21:49:18.0050 0x36c0  ================ Scan system memory ========================
21:49:18.0050 0x36c0  System memory - ok
21:49:18.0051 0x36c0  ================ Scan services =============================
21:49:18.0424 0x36c0  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
21:49:18.0443 0x36c0  1394ohci - ok
21:49:18.0475 0x36c0  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
21:49:18.0483 0x36c0  3ware - ok
21:49:18.0533 0x36c0  [ 3D30878A269D934100FA5F972E53AF39, 3D2D22D1A9D80DB94D6059C789FBD04DC945722B8644DF6DAA73D5713A10EC52 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
21:49:18.0555 0x36c0  ACPI - ok
21:49:18.0601 0x36c0  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
21:49:18.0612 0x36c0  acpiex - ok
21:49:18.0631 0x36c0  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
21:49:18.0637 0x36c0  acpipagr - ok
21:49:18.0675 0x36c0  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
21:49:18.0681 0x36c0  AcpiPmi - ok
21:49:18.0711 0x36c0  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
21:49:18.0718 0x36c0  acpitime - ok
21:49:18.0808 0x36c0  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:49:18.0812 0x36c0  AdobeARMservice - ok
21:49:18.0948 0x36c0  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:49:18.0962 0x36c0  AdobeFlashPlayerUpdateSvc - ok
21:49:19.0044 0x36c0  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
21:49:19.0071 0x36c0  ADP80XX - ok
21:49:19.0111 0x36c0  [ B19CA8E441D35AA2B1EE51C10B27DA1B, EBEB96EA44E665B2D4FCD1CC58621A20A17F036EA4A695340A2B65F94F69CDDC ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
21:49:19.0118 0x36c0  AeLookupSvc - ok
21:49:19.0157 0x36c0  [ 239268BAB58EAE9A3FF4E08334C00451, 13F927730DF9BAEDB3A7AB6F7238270A20E4CDEB3D5324A1C471DF2209F3D239 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
21:49:19.0176 0x36c0  AFD - ok
21:49:19.0204 0x36c0  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
21:49:19.0209 0x36c0  agp440 - ok
21:49:19.0245 0x36c0  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
21:49:19.0249 0x36c0  ahcache - ok
21:49:19.0299 0x36c0  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\WINDOWS\System32\alg.exe
21:49:19.0321 0x36c0  ALG - ok
21:49:19.0390 0x36c0  [ FED8F396537A5E4FA58E6C8BA8070081, 0A14B143BB8C0AE0AA56A2197DFC5F7BDC43F0693F3A66E69C04043737AD11C1 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
21:49:19.0407 0x36c0  AMD External Events Utility - ok
21:49:19.0423 0x36c0  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
21:49:19.0439 0x36c0  AmdK8 - ok
21:49:19.0970 0x36c0  [ EB3F3FDC7D0EC927A4AB31F9F6235A7C, B10087C9C277065926884FA8D18A300C54B8FFDCE08A31EF4828AF2AC2685791 ] amdkmdag        C:\WINDOWS\system32\DRIVERS\atikmdag.sys
21:49:20.0439 0x36c0  amdkmdag - ok
21:49:20.0532 0x36c0  [ 160159231941801A458FEF8A73D494AC, E014C68232D5FA2216AD36B2BF0D3F51C821B8D0E7513F2F33DD2591F945E5C4 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
21:49:20.0548 0x36c0  amdkmdap - ok
21:49:20.0595 0x36c0  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
21:49:20.0595 0x36c0  AmdPPM - ok
21:49:20.0611 0x36c0  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
21:49:20.0626 0x36c0  amdsata - ok
21:49:20.0673 0x36c0  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
21:49:20.0689 0x36c0  amdsbs - ok
21:49:20.0704 0x36c0  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
21:49:20.0704 0x36c0  amdxata - ok
21:49:20.0736 0x36c0  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
21:49:20.0736 0x36c0  AppID - ok
21:49:20.0769 0x36c0  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
21:49:20.0769 0x36c0  AppIDSvc - ok
21:49:20.0784 0x36c0  [ 7E790DE2487CEDB349D1750B9E47F090, EDA4A87EA2F89ABD174E9590DD46E70B9E7E4B35BDFC3ED90D79CD594F8CB2CD ] Appinfo         C:\WINDOWS\System32\appinfo.dll
21:49:20.0800 0x36c0  Appinfo - ok
21:49:20.0847 0x36c0  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:49:20.0847 0x36c0  Apple Mobile Device - ok
21:49:20.0894 0x36c0  [ 4B964AE0DF433A3BFA7BD24713BC2E9B, DC8933265E67E43CAE96EA64B146CB9067B536A4DA2C90EDCB38302BBFA1CE6B ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
21:49:20.0909 0x36c0  AppReadiness - ok
21:49:20.0987 0x36c0  [ 0B726D9ED75C787D6FFAF1E3873BCC70, DC3822B35FB65D53CC5D0E3982C326C5F47F0911BEB1F66DCC84A79C84621E1E ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
21:49:21.0034 0x36c0  AppXSvc - ok
21:49:21.0066 0x36c0  [ 44695679881DEB85CAD7C249B151066E, A44413ACA911DDB5757DE9F9ECC3968979C47617CF9DF81B24E7ECDE7E0D54BC ] APXACC          C:\WINDOWS\system32\DRIVERS\appexDrv.sys
21:49:21.0081 0x36c0  APXACC - ok
21:49:21.0112 0x36c0  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
21:49:21.0112 0x36c0  arcsas - ok
21:49:21.0144 0x36c0  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
21:49:21.0144 0x36c0  atapi - ok
21:49:21.0175 0x36c0  [ 506907D2E7F3A5B67DBD39C00A788B7C, 618C91FB9F49C69F88A993F164D7E9E4B7CAD0F34DCF77CF0C6F259A28448171 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdW86.sys
21:49:21.0175 0x36c0  AtiHDAudioService - ok
21:49:21.0237 0x36c0  [ 4903CBC14742B5AB4DCF7A92F7DEC483, B8491FDA1D1E767658ECC5C3C3DDFB3EB12A969F0F6ACF116C18300FF54075D5 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
21:49:21.0253 0x36c0  AudioEndpointBuilder - ok
21:49:21.0300 0x36c0  [ 86DD7884124D363A63CCE7A11FDEBBED, E7BAE477D964E395A96342E077774467AA9DE5D8112BFCDE27EEA1CB04A2A480 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
21:49:21.0331 0x36c0  Audiosrv - ok
21:49:21.0378 0x36c0  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
21:49:21.0378 0x36c0  AxInstSV - ok
21:49:21.0425 0x36c0  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
21:49:21.0456 0x36c0  b06bdrv - ok
21:49:21.0472 0x36c0  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
21:49:21.0472 0x36c0  BasicDisplay - ok
21:49:21.0487 0x36c0  [ 2748E116F8621A4DB0D39FCDD7318C01, DA2DEB7FE1D887B1EF5E2B5103270B72268D8ABDDA36C396627305C0BA90FC20 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
21:49:21.0503 0x36c0  BasicRender - ok
21:49:21.0550 0x36c0  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
21:49:21.0550 0x36c0  bcmfn2 - ok
21:49:21.0612 0x36c0  [ BBE61A40665B83488901E41082A6097D, ADF750DB32E1295C57C03D587A60194529C8B83F90F433C3458288FB5E8F475B ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
21:49:21.0612 0x36c0  BDESVC - ok
21:49:21.0659 0x36c0  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:49:21.0675 0x36c0  Beep - ok
21:49:21.0737 0x36c0  [ 6468B696C65775D51A06615830E0E79D, CC4081B3A4895192B4796A745F0BCE8C9C3149B854A7B9BEF84668A2E1D074B5 ] BFE             C:\WINDOWS\System32\bfe.dll
21:49:21.0769 0x36c0  BFE - ok
21:49:21.0987 0x36c0  [ F14F048B4D05FBCE536250EA74BF9FDC, 63E25E916209B6AF7AAC98B665E0128842F1EFDDEF95D50095514A9FDDC522A9 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\BASHDefs\20131218.001\BHDrvx64.sys
21:49:22.0034 0x36c0  BHDrvx64 - ok
21:49:22.0112 0x36c0  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\WINDOWS\System32\qmgr.dll
21:49:22.0253 0x36c0  BITS - ok
21:49:22.0315 0x36c0  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:49:22.0331 0x36c0  Bonjour Service - ok
21:49:22.0362 0x36c0  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
21:49:22.0362 0x36c0  bowser - ok
21:49:22.0409 0x36c0  [ 748141CC03DF40C38F17D3F96BB15C80, 8F1FA850BC6C6497325C0758DEA36C2839BE53C3F8143DFD3A905BEEFF538126 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
21:49:22.0425 0x36c0  BrokerInfrastructure - ok
21:49:22.0440 0x36c0  [ D528D6A92D187777691993DD757AF19A, 2C79978310193431E5FC462368424A172858D5351C92D4815C2A7E35B5DDE50C ] Browser         C:\WINDOWS\System32\browser.dll
21:49:22.0472 0x36c0  Browser - ok
21:49:22.0503 0x36c0  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
21:49:22.0503 0x36c0  BthAvrcpTg - ok
21:49:22.0534 0x36c0  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
21:49:22.0534 0x36c0  BthHFEnum - ok
21:49:22.0581 0x36c0  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
21:49:22.0597 0x36c0  bthhfhid - ok
21:49:22.0628 0x36c0  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
21:49:22.0644 0x36c0  BTHMODEM - ok
21:49:22.0690 0x36c0  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\WINDOWS\system32\bthserv.dll
21:49:22.0690 0x36c0  bthserv - ok
21:49:22.0737 0x36c0  [ E41F70406C34F1CB667B4B27D81AD162, 8869C7EB9CBF68B90640765D15DB5B8DACEF45025C1E580AA94D96E32560274B ] ccSet_NARA      C:\WINDOWS\system32\drivers\NARAx64\0401000.00B\ccSetx64.sys
21:49:22.0753 0x36c0  ccSet_NARA - ok
21:49:22.0800 0x36c0  [ A5C16A0BE89EE409732178BEB62F7EA7, D4B993F63CFD9B487BD53B532AB9435084B4C752F2731E189FA1420D516A4E95 ] ccSet_NAT       C:\WINDOWS\system32\drivers\NATx64\010A000.009\ccSetx64.sys
21:49:22.0816 0x36c0  ccSet_NAT - ok
21:49:22.0863 0x36c0  [ 56685951208AC81CF923B9B08BEDF3B7, F5FF438B9A54AD8D54E82DE60E1771C9685A95D5E590D69EB1E4E78D3B9B7769 ] ccSet_NIS       C:\WINDOWS\system32\drivers\NISx64\1404000.028\ccSetx64.sys
21:49:22.0894 0x36c0  ccSet_NIS - ok
21:49:22.0925 0x36c0  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
21:49:22.0941 0x36c0  cdfs - ok
21:49:22.0956 0x36c0  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
21:49:22.0972 0x36c0  cdrom - ok
21:49:23.0003 0x36c0  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
21:49:23.0019 0x36c0  CertPropSvc - ok
21:49:23.0050 0x36c0  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
21:49:23.0066 0x36c0  circlass - ok
21:49:23.0097 0x36c0  [ 7F006813C2AFE622C13D7AF94F56CD07, 9F4AEEE19B44F4117BE036F1475CE2E91ED740EB7D8D38364F9724517F777482 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
21:49:23.0113 0x36c0  CLFS - ok
21:49:23.0175 0x36c0  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
21:49:23.0175 0x36c0  CmBatt - ok
21:49:23.0222 0x36c0  [ 825BE21E6395E00698D8A23955A87972, 303F10C3BA72ABB3BA27D08968B10E8EB03FFB6951943B0E9DD35CF48BB72578 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
21:49:23.0253 0x36c0  CNG - ok
21:49:23.0284 0x36c0  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
21:49:23.0284 0x36c0  CompositeBus - ok
21:49:23.0300 0x36c0  COMSysApp - ok
21:49:23.0316 0x36c0  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
21:49:23.0316 0x36c0  condrv - ok
21:49:23.0347 0x36c0  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
21:49:23.0363 0x36c0  CryptSvc - ok
21:49:23.0378 0x36c0  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
21:49:23.0378 0x36c0  dam - ok
21:49:23.0456 0x36c0  [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:49:23.0472 0x36c0  DcomLaunch - ok
21:49:23.0534 0x36c0  [ F4CCAADC2C78F57E4F16B24C9201CE22, B76A5C487A814CB986FE8CC398FB7493C9EAB9ACC933A3C35384FA447092EF00 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
21:49:23.0550 0x36c0  defragsvc - ok
21:49:23.0597 0x36c0  [ 0BC71D4D3B5883903C37BF4E13B0F0C5, C5EC2AD001FB7E72D3D12DBADFE01C308ACCB7426E0B90CCB3ECE2DE49D5E7D4 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
21:49:23.0613 0x36c0  DeviceAssociationService - ok
21:49:23.0691 0x36c0  [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
21:49:23.0706 0x36c0  DeviceInstall - ok
21:49:23.0754 0x36c0  [ 5DB26D7E0216D0BF364A81D3829AD7B9, FD786D530EA9ADBCB48782FE091E926505A83F2BF3B4181A3D4EDFAA991C4E5E ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
21:49:23.0769 0x36c0  Dfsc - ok
21:49:23.0801 0x36c0  [ E428DFFA96FAD07D8CA3C9082563A225, F3D2E94A9FF2CF68CC99A8B42B8DEA5E57D46000D1845DC0908224493480C79F ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
21:49:23.0801 0x36c0  dg_ssudbus - ok
21:49:23.0879 0x36c0  [ 8B107F55FD61654A6C9F1B819AEC5FC4, 773B1B9D3583F17B7C89BDE1EC4487ABB0AE039DF4583F8746460425443DA291 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
21:49:23.0894 0x36c0  Dhcp - ok
21:49:23.0941 0x36c0  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
21:49:23.0941 0x36c0  disk - ok
21:49:23.0988 0x36c0  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
21:49:23.0988 0x36c0  dmvsc - ok
21:49:24.0020 0x36c0  [ 5BAF7714E68F93515A937A3FA8587EF9, DD9296F75341EF96D514139DD8A8680B332E9B9D476368AB897FDA2D5D674E60 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:49:24.0035 0x36c0  Dnscache - ok
21:49:24.0082 0x36c0  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:49:24.0098 0x36c0  dot3svc - ok
21:49:24.0129 0x36c0  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\WINDOWS\system32\dps.dll
21:49:24.0144 0x36c0  DPS - ok
21:49:24.0176 0x36c0  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
21:49:24.0176 0x36c0  drmkaud - ok
21:49:24.0223 0x36c0  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
21:49:24.0223 0x36c0  DsmSvc - ok
21:49:24.0332 0x36c0  [ A3D1CB64DF885ACE126543E6D7067348, AFB5EF73F7B2854669137F586171500E4EB00F12BFCFD6B743FABD165B4AEED3 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
21:49:24.0394 0x36c0  DXGKrnl - ok
21:49:24.0410 0x36c0  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
21:49:24.0426 0x36c0  Eaphost - ok
21:49:24.0582 0x36c0  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
21:49:24.0738 0x36c0  ebdrv - ok
21:49:24.0833 0x36c0  [ 1B7AA375F711F66D5FF2B855F9EC987F, 151E3897A31F0E828D08EBBB9C10A60047B48534BB38349EF1C8D9245524CA58 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:49:24.0880 0x36c0  eeCtrl - ok
21:49:24.0926 0x36c0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\WINDOWS\System32\lsass.exe
21:49:24.0926 0x36c0  EFS - ok
21:49:24.0973 0x36c0  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
21:49:24.0973 0x36c0  EhStorClass - ok
21:49:25.0005 0x36c0  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
21:49:25.0005 0x36c0  EhStorTcgDrv - ok
21:49:25.0051 0x36c0  [ 7230C8B80DDE1F0524C353240B78CC0E, 15F73EBFB9152010E7736AFE518A47C209E17DDB347A40C4CDA0D9BBD26D1176 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
21:49:25.0051 0x36c0  EraserUtilRebootDrv - ok
21:49:25.0067 0x36c0  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
21:49:25.0067 0x36c0  ErrDev - ok
21:49:25.0130 0x36c0  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\WINDOWS\system32\es.dll
21:49:25.0145 0x36c0  EventSystem - ok
21:49:25.0176 0x36c0  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
21:49:25.0176 0x36c0  exfat - ok
21:49:25.0223 0x36c0  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
21:49:25.0239 0x36c0  fastfat - ok
21:49:25.0286 0x36c0  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\WINDOWS\system32\fxssvc.exe
21:49:25.0301 0x36c0  Fax - ok
21:49:25.0333 0x36c0  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
21:49:25.0333 0x36c0  fdc - ok
21:49:25.0364 0x36c0  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
21:49:25.0364 0x36c0  fdPHost - ok
21:49:25.0395 0x36c0  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
21:49:25.0395 0x36c0  FDResPub - ok
21:49:25.0411 0x36c0  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
21:49:25.0426 0x36c0  fhsvc - ok
21:49:25.0458 0x36c0  [ 957A7A8F5ACCAF23DD9DFF6DAA393CE5, 85D1AC25CF8056FF303930A7E18DE5F7C3AEE429272CB791BD6F81F1DAFB7D8A ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
21:49:25.0458 0x36c0  FileInfo - ok
21:49:25.0473 0x36c0  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
21:49:25.0473 0x36c0  Filetrace - ok
21:49:25.0489 0x36c0  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
21:49:25.0489 0x36c0  flpydisk - ok
21:49:25.0520 0x36c0  [ 60D5067FCE6D9433D35E04C01D8538B3, 2D97E9E8FF18CF564DE8E70F68B56F0177DC6C0E9EEB7E1C58BBDF42456CB0D8 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:49:25.0520 0x36c0  FltMgr - ok
21:49:25.0598 0x36c0  [ 183CA7699474FDE235853967D1DA4D9B, 8FBD5997F1E39AFFD8C4322520DF4D2227279B5149017D825C188D7411BA99AF ] FontCache       C:\WINDOWS\system32\FntCache.dll
21:49:25.0645 0x36c0  FontCache - ok
21:49:25.0739 0x36c0  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:49:25.0739 0x36c0  FontCache3.0.0.0 - ok
21:49:25.0786 0x36c0  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
21:49:25.0786 0x36c0  FsDepends - ok
21:49:25.0802 0x36c0  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:49:25.0818 0x36c0  Fs_Rec - ok
21:49:25.0880 0x36c0  [ 83E1F0983B02A6F8EC764D18E24ECF10, B5CA3FCB442697681C513FB37C6BB74D7A72B67DC65E2FCA93A7F9E81B63EAAC ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
21:49:25.0896 0x36c0  fvevol - ok
21:49:25.0927 0x36c0  [ 40A5690A50D003429E6AF655D765AAF4, FAE92750AC7F3E8507D9AAA492253E386F807F254E03F412F035CC46412C0FA5 ] FwLnk           C:\WINDOWS\System32\drivers\FwLnk.sys
21:49:25.0927 0x36c0  FwLnk - ok
21:49:25.0958 0x36c0  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
21:49:25.0958 0x36c0  FxPPM - ok
21:49:25.0990 0x36c0  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
21:49:25.0990 0x36c0  gagp30kx - ok
21:49:26.0068 0x36c0  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
21:49:26.0083 0x36c0  GamesAppService - ok
21:49:26.0115 0x36c0  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:49:26.0115 0x36c0  GEARAspiWDM - ok
21:49:26.0161 0x36c0  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
21:49:26.0161 0x36c0  gencounter - ok
21:49:26.0208 0x36c0  [ FDA72810CA2F8409D9B31E833C448E34, FC24350E875D2AF2A41DB5EF0BFE4F876DADEACCC0B34B9B9C9B2CA185CBAE87 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
21:49:26.0224 0x36c0  GPIOClx0101 - ok
21:49:26.0317 0x36c0  [ 0BDE0FCF597E9B65600121EF54FF8340, DA5C96E84E05AD09251C82B4BFEDE274342409803730CEBF24EEAD0DCD42DA7E ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
21:49:26.0364 0x36c0  gpsvc - ok
21:49:26.0396 0x36c0  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:49:26.0411 0x36c0  gupdate - ok
21:49:26.0427 0x36c0  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:49:26.0427 0x36c0  gupdatem - ok
21:49:26.0474 0x36c0  [ 03909BDBFF0DCACCABF2B2D4ADEE44DC, 42E631B23BB004F5C2128BAD334C21AB20FAD08AFED9E8191AE9373531BC73DD ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
21:49:26.0474 0x36c0  HDAudBus - ok
21:49:26.0489 0x36c0  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
21:49:26.0505 0x36c0  HidBatt - ok
21:49:26.0521 0x36c0  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
21:49:26.0536 0x36c0  HidBth - ok
21:49:26.0552 0x36c0  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
21:49:26.0552 0x36c0  hidi2c - ok
21:49:26.0599 0x36c0  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
21:49:26.0599 0x36c0  HidIr - ok
21:49:26.0646 0x36c0  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\WINDOWS\system32\hidserv.dll
21:49:26.0646 0x36c0  hidserv - ok
21:49:26.0677 0x36c0  [ F31397220D9687E11EB448649AA6E038, 671ACEAA8E00E0D4ED7E33D06A4558121DA4F56EB94F1CBC16FEB2EF3852F7A5 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
21:49:26.0692 0x36c0  HidUsb - ok
21:49:26.0724 0x36c0  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
21:49:26.0739 0x36c0  hkmsvc - ok
21:49:26.0771 0x36c0  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
21:49:26.0786 0x36c0  HomeGroupListener - ok
21:49:26.0833 0x36c0  [ BE5F89BAFBD4272D5A0C0A37B97865ED, 2F80CE6D123FEED9FA7B00ACF7547FF77E0E6FDC5243942E83BE308C46D414C6 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
21:49:26.0864 0x36c0  HomeGroupProvider - ok
21:49:26.0896 0x36c0  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
21:49:26.0896 0x36c0  HpSAMD - ok
21:49:26.0974 0x36c0  [ 3502776E366C913D49C0DA928AE3E6CB, 3FB452F640B78AEDFBC09188F25C566949660163732A180331226A93DB08F26C ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
21:49:27.0005 0x36c0  HTTP - ok
21:49:27.0036 0x36c0  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
21:49:27.0036 0x36c0  hwpolicy - ok
21:49:27.0052 0x36c0  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
21:49:27.0052 0x36c0  hyperkbd - ok
21:49:27.0083 0x36c0  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
21:49:27.0083 0x36c0  HyperVideo - ok
21:49:27.0130 0x36c0  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
21:49:27.0146 0x36c0  i8042prt - ok
21:49:27.0193 0x36c0  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
21:49:27.0208 0x36c0  iaLPSSi_GPIO - ok
21:49:27.0224 0x36c0  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
21:49:27.0239 0x36c0  iaLPSSi_I2C - ok
21:49:27.0286 0x36c0  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
21:49:27.0302 0x36c0  iaStorAV - ok
21:49:27.0333 0x36c0  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
21:49:27.0349 0x36c0  iaStorV - ok
21:49:27.0458 0x36c0  [ D7CB14B41DA52DF2EC143768E02F0E97, 97D6A49CA10508454F487F87F14249AE11646E365E89E3A2854AE05834DE9575 ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\IPSDefs\20140108.001\IDSvia64.sys
21:49:27.0474 0x36c0  IDSVia64 - ok
21:49:27.0489 0x36c0  IEEtwCollectorService - ok
21:49:27.0552 0x36c0  [ B82255670D270B75D2D2F0F8747D1443, C40E151AC3FBF289456A4AD9E5744B314067ADA03FE729970410931904305F51 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
21:49:27.0583 0x36c0  IKEEXT - ok
21:49:27.0772 0x36c0  [ C9BB95910E28F9B41EDFCAE66F216A27, BAD3EB5912A15F5E8B87E5CBF98393D99578062FFBCDE4F4DA0E07E5E1C3C985 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
21:49:27.0944 0x36c0  IntcAzAudAddService - ok
21:49:27.0991 0x36c0  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
21:49:27.0991 0x36c0  intelide - ok
21:49:28.0006 0x36c0  [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
21:49:28.0022 0x36c0  intelpep - ok
21:49:28.0038 0x36c0  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
21:49:28.0038 0x36c0  intelppm - ok
21:49:28.0069 0x36c0  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:49:28.0069 0x36c0  IpFilterDriver - ok
21:49:28.0147 0x36c0  [ DFC4050D58565ADBEE793A8D4AEBDAE6, 89B900408F030CD45753A11D6AE6CBAB87E8B0E3F8401402D2D8713C045BF488 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
21:49:28.0194 0x36c0  iphlpsvc - ok
21:49:28.0225 0x36c0  [ 9949A3C7590B8C536C05312205079A82, 9276A09D5F910AE8358A96505AB3F66C514870944D58B63B71D5E96567D1E6BB ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
21:49:28.0241 0x36c0  IPMIDRV - ok
21:49:28.0272 0x36c0  [ E23D32BAF152FBE35F18C6A2AB8EF271, C244E54E472B724765497731ADC0DF6DA9EBA5E7B0723A4409061F5B928851E9 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
21:49:28.0272 0x36c0  IPNAT - ok
21:49:28.0350 0x36c0  [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:49:28.0381 0x36c0  iPod Service - ok
21:49:28.0413 0x36c0  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
21:49:28.0413 0x36c0  IRENUM - ok
21:49:28.0460 0x36c0  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
21:49:28.0460 0x36c0  isapnp - ok
21:49:28.0506 0x36c0  [ 034D4BD9DC67C64F3A4C8A049B5173BF, C68AF5A5AD4092AA1C871BD38473AEF84EC3ECF4D06FBEB5F6C09972EF1B8A81 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
21:49:28.0522 0x36c0  iScsiPrt - ok
21:49:28.0553 0x36c0  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
21:49:28.0553 0x36c0  kbdclass - ok
21:49:28.0569 0x36c0  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
21:49:28.0569 0x36c0  kbdhid - ok
21:49:28.0585 0x36c0  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
21:49:28.0585 0x36c0  kdnic - ok
21:49:28.0600 0x36c0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\WINDOWS\system32\lsass.exe
21:49:28.0600 0x36c0  KeyIso - ok
21:49:28.0632 0x36c0  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
21:49:28.0632 0x36c0  KSecDD - ok
21:49:28.0678 0x36c0  [ 7296EA420134EAC390798B3232D066A4, 1F5D51EEFD389706660DFB4DB4BF3EC570BEC7097CEB5CAE70EFFE35C3255346 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
21:49:28.0694 0x36c0  KSecPkg - ok
21:49:28.0709 0x36c0  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
21:49:28.0709 0x36c0  ksthunk - ok
21:49:28.0772 0x36c0  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
21:49:28.0803 0x36c0  KtmRm - ok
21:49:28.0819 0x36c0  [ 50AECF8C21AB2A6428A6E1E10549D8E5, 6BC7C60CF5E8AFB9972619EE1C78357756E9C0A3EC783C3056CEB600DCBB1555 ] L1C             C:\WINDOWS\system32\DRIVERS\L1C63x64.sys
21:49:28.0834 0x36c0  L1C - ok
21:49:28.0881 0x36c0  [ 27B58E16CF895AC1F1A97C04814C2239, D4336155331DDBF91952CDC6C446C68FF524F979099BA8D9B3A578758F97B2BE ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
21:49:28.0897 0x36c0  LanmanServer - ok
21:49:28.0913 0x36c0  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
21:49:28.0928 0x36c0  LanmanWorkstation - ok
21:49:28.0975 0x36c0  [ EE289BD147FDFF95EF1B9BD65D3B974A, EFD9D0F6C73E7D2D52DBE2E2A8D3009BFB6AB24776A100CA528A8365002C6105 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
21:49:29.0006 0x36c0  lfsvc - ok
21:49:29.0022 0x36c0  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
21:49:29.0022 0x36c0  lltdio - ok
21:49:29.0069 0x36c0  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
21:49:29.0085 0x36c0  lltdsvc - ok
21:49:29.0116 0x36c0  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
21:49:29.0116 0x36c0  lmhosts - ok
21:49:29.0147 0x36c0  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
21:49:29.0163 0x36c0  LSI_SAS - ok
21:49:29.0178 0x36c0  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
21:49:29.0178 0x36c0  LSI_SAS2 - ok
21:49:29.0210 0x36c0  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
21:49:29.0210 0x36c0  LSI_SAS3 - ok
21:49:29.0241 0x36c0  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
21:49:29.0241 0x36c0  LSI_SSS - ok
21:49:29.0288 0x36c0  [ B6B69FF200F68888A7FAFDF204D00C91, 4C9BA7B8646C74AE1E49F513EF426930C09969F29F1533D84D020B414BB1609B ] LSM             C:\WINDOWS\System32\lsm.dll
21:49:29.0319 0x36c0  LSM - ok
21:49:29.0366 0x36c0  [ 5EF604B0698F4FA962778285E8C5F1F2, 0465BDAB7EFBE9CC648E7E736B0B8BE152BD2FAB0917F6306675B9039C77F454 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
21:49:29.0366 0x36c0  luafv - ok
21:49:29.0397 0x36c0  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
21:49:29.0397 0x36c0  megasas - ok
21:49:29.0459 0x36c0  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
21:49:29.0475 0x36c0  megasr - ok
21:49:29.0522 0x36c0  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
21:49:29.0522 0x36c0  MMCSS - ok
21:49:29.0553 0x36c0  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
21:49:29.0553 0x36c0  Modem - ok
21:49:29.0585 0x36c0  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
21:49:29.0585 0x36c0  monitor - ok
21:49:29.0632 0x36c0  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
21:49:29.0632 0x36c0  mouclass - ok
21:49:29.0647 0x36c0  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
21:49:29.0647 0x36c0  mouhid - ok
21:49:29.0678 0x36c0  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
21:49:29.0694 0x36c0  mountmgr - ok
21:49:29.0741 0x36c0  [ 3B9398E0146855B1DC0E3D9769C80F01, DF69DB5CA30A5577648635C27DD468AF98515D07DF379B3FFDCC6B40744EDE66 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:49:29.0757 0x36c0  MozillaMaintenance - ok
21:49:29.0773 0x36c0  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
21:49:29.0773 0x36c0  mpsdrv - ok
21:49:29.0867 0x36c0  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
21:49:29.0913 0x36c0  MpsSvc - ok
21:49:29.0929 0x36c0  [ 59DCEC7499095DE5AED741358037AE2D, 60C4CEBCAE27C121E9D63BD2BC3E5863A91ABC77616C56C10618273A8F9B6F61 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
21:49:29.0945 0x36c0  MRxDAV - ok
21:49:29.0992 0x36c0  [ 6129EDB793A4255B1E2FB41773AC9D9A, 3292C64FAB3B83C87790FB35F54D6702987891234AF33FD1D5299C7084795375 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:49:30.0023 0x36c0  mrxsmb - ok
21:49:30.0039 0x36c0  [ 295771B092D4F7FCF2B62F80CCD14320, 53655B5ABA43A6A9114FE545B88F84E52319B905B8393A51BD97678D3F94A178 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
21:49:30.0054 0x36c0  mrxsmb10 - ok
21:49:30.0070 0x36c0  [ AAF56E4E84D35411B4E446C445732DFE, 7AC41CAA0842AE4DA4EEF976202C58D7923DAA367F0D7E800D432323D5E7DE1A ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
21:49:30.0085 0x36c0  mrxsmb20 - ok
21:49:30.0117 0x36c0  [ 4E888019078AC363076A5433E89AA4F8, 3DEBDA290230B3E83F956C902C960E39463B7EFE86439199521356762769FD91 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
21:49:30.0117 0x36c0  MsBridge - ok
21:49:30.0148 0x36c0  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
21:49:30.0163 0x36c0  MSDTC - ok
21:49:30.0195 0x36c0  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:49:30.0210 0x36c0  Msfs - ok
21:49:30.0226 0x36c0  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
21:49:30.0241 0x36c0  msgpiowin32 - ok
21:49:30.0241 0x36c0  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
21:49:30.0241 0x36c0  mshidkmdf - ok
21:49:30.0273 0x36c0  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
21:49:30.0273 0x36c0  mshidumdf - ok
21:49:30.0289 0x36c0  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
21:49:30.0289 0x36c0  msisadrv - ok
21:49:30.0320 0x36c0  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
21:49:30.0335 0x36c0  MSiSCSI - ok
21:49:30.0335 0x36c0  msiserver - ok
21:49:30.0367 0x36c0  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:49:30.0367 0x36c0  MSKSSRV - ok
21:49:30.0382 0x36c0  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
21:49:30.0398 0x36c0  MsLldp - ok
21:49:30.0414 0x36c0  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:49:30.0414 0x36c0  MSPCLOCK - ok
21:49:30.0429 0x36c0  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
21:49:30.0429 0x36c0  MSPQM - ok
21:49:30.0460 0x36c0  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
21:49:30.0476 0x36c0  MsRPC - ok
21:49:30.0507 0x36c0  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
21:49:30.0507 0x36c0  mssmbios - ok
21:49:30.0523 0x36c0  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
21:49:30.0538 0x36c0  MSTEE - ok
21:49:30.0554 0x36c0  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
21:49:30.0570 0x36c0  MTConfig - ok
21:49:30.0585 0x36c0  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
21:49:30.0585 0x36c0  Mup - ok
21:49:30.0617 0x36c0  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
21:49:30.0632 0x36c0  mvumis - ok
21:49:30.0679 0x36c0  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\WINDOWS\system32\qagentRT.dll
21:49:30.0695 0x36c0  napagent - ok
21:49:30.0757 0x36c0  [ 8FA07AF404BC705FDEC03493644970B2, BF3B681AB11D830524607B3C5790B83A886B7CBDE397C3C7C9C96F79E2EC244D ] NAT             C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\NAT.exe
21:49:30.0773 0x36c0  NAT - ok
21:49:30.0820 0x36c0  [ CF8B989D89D6807B887690F2CF24EFD9, 7A3ED124D8D7736F57CD687111C478A206422D117099B2F752B6D933D009BCAC ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
21:49:30.0835 0x36c0  NativeWifiP - ok
21:49:30.0945 0x36c0  [ 702E07EC32F96ACDB873E9A5465D4401, 2C6B1C8BA0BF4791AEA064062DCA3678AE4443DF19DB37D6CB55BA6297D8A238 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20140108.023\ENG64.SYS
21:49:30.0945 0x36c0  NAVENG - ok
21:49:31.0054 0x36c0  [ 302EA314A1AF0D7CEF0A3D0195F79561, 046DBC2D9D028F2D2E8BAE745CA2ADEF42741689BFF743A13B81EA4228DDCDC6 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20140108.023\EX64.SYS
21:49:31.0163 0x36c0  NAVEX15 - ok
21:49:31.0195 0x36c0  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
21:49:31.0210 0x36c0  NcaSvc - ok
21:49:31.0226 0x36c0  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
21:49:31.0242 0x36c0  NcbService - ok
21:49:31.0273 0x36c0  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
21:49:31.0273 0x36c0  NcdAutoSetup - ok
21:49:31.0367 0x36c0  [ AD9086052A5E5153AF43FE74138A4B27, A511F785F8B29CE7CCC923489C9D03B4722E8FDD9853556D4F0F3CA608CFA956 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
21:49:31.0429 0x36c0  NDIS - ok
21:49:31.0460 0x36c0  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
21:49:31.0476 0x36c0  NdisCap - ok
21:49:31.0538 0x36c0  [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37, CCD99962917BBE256F64AE14CCC9FD12433C72B5DB98E0E57CA8F212A11B3C8F ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
21:49:31.0554 0x36c0  NdisImPlatform - ok
21:49:31.0570 0x36c0  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:49:31.0585 0x36c0  NdisTapi - ok
21:49:31.0617 0x36c0  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:49:31.0632 0x36c0  Ndisuio - ok
21:49:31.0648 0x36c0  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
21:49:31.0663 0x36c0  NdisVirtualBus - ok
21:49:31.0695 0x36c0  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:49:31.0710 0x36c0  NdisWan - ok
21:49:31.0726 0x36c0  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:49:31.0742 0x36c0  NdisWanLegacy - ok
21:49:31.0758 0x36c0  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
21:49:31.0774 0x36c0  NDProxy - ok
21:49:31.0789 0x36c0  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
21:49:31.0805 0x36c0  Ndu - ok
21:49:31.0852 0x36c0  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
21:49:31.0867 0x36c0  NetBIOS - ok
21:49:31.0899 0x36c0  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:49:31.0914 0x36c0  NetBT - ok
21:49:31.0930 0x36c0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:49:31.0930 0x36c0  Netlogon - ok
21:49:31.0977 0x36c0  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\WINDOWS\System32\netman.dll
21:49:32.0008 0x36c0  Netman - ok
21:49:32.0055 0x36c0  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
21:49:32.0070 0x36c0  netprofm - ok
21:49:32.0118 0x36c0  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:49:32.0149 0x36c0  NetTcpPortSharing - ok
21:49:32.0180 0x36c0  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\WINDOWS\system32\DRIVERS\netvsc63.sys
21:49:32.0195 0x36c0  netvsc - ok
21:49:32.0274 0x36c0  [ 1BF9D6476061B31CD7FC2BF848529A56, 95B585543240E823D7850ADEEEA7A4738EF9E18A4B07D921F145F6EF466F0271 ] NIS             C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\ccSvcHst.exe
21:49:32.0274 0x36c0  NIS - ok
21:49:32.0336 0x36c0  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
21:49:32.0352 0x36c0  NlaSvc - ok
21:49:32.0539 0x36c0  [ EC6B98656770A0441C14BB86FEFC90AE, 47201FCC207F7AD212E65F4EA6BCDF74D60F6D83EB1C80EA4AAE16CCA36B9235 ] NOBU            C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
21:49:32.0695 0x36c0  NOBU - ok
21:49:32.0774 0x36c0  [ 86392B21E90C3CB2C3436AB73B135701, 989E4D058DBCB92BD57202C43656E7C8A6E900613CE13CF7B6F5CCC94C29FBDE ] Norton PC Checkup Application Launcher C:\Program Files (x86)\PC Checkup\SymcPCCULaunchSvc.exe
21:49:32.0774 0x36c0  Norton PC Checkup Application Launcher - ok
21:49:32.0805 0x36c0  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:49:32.0821 0x36c0  Npfs - ok
21:49:32.0836 0x36c0  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
21:49:32.0852 0x36c0  npsvctrig - ok
21:49:32.0883 0x36c0  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\WINDOWS\system32\nsisvc.dll
21:49:32.0883 0x36c0  nsi - ok
21:49:32.0914 0x36c0  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
21:49:32.0914 0x36c0  nsiproxy - ok
21:49:33.0039 0x36c0  [ 4412D565C0278C401575E11072C7DCE3, 82A0E9AA88750900EA0E9983157345456B418745C8BA62FAF339640E759C0418 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
21:49:33.0102 0x36c0  Ntfs - ok
21:49:33.0133 0x36c0  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:49:33.0133 0x36c0  Null - ok
21:49:33.0149 0x36c0  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
21:49:33.0164 0x36c0  nvraid - ok
21:49:33.0180 0x36c0  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
21:49:33.0195 0x36c0  nvstor - ok
21:49:33.0211 0x36c0  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
21:49:33.0227 0x36c0  nv_agp - ok
21:49:33.0352 0x36c0  [ 25FFB1C1E5BD27B9757EACF40B2B0F7B, 41B4236F580B4653C65E3F16DD3FF91E924716FDD2DCBA89A5F416563C5F0076 ] OfficeSvc       C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
21:49:33.0399 0x36c0  OfficeSvc - ok
21:49:33.0461 0x36c0  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:49:33.0477 0x36c0  ose - ok
21:49:33.0524 0x36c0  [ 3B510F20806B94E389784ED09DBD2111, EF8896C500B3AA3A811FDE97BC322EF3295E9BD0DE236715D4A4C52CF63727E1 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
21:49:33.0539 0x36c0  p2pimsvc - ok
21:49:33.0571 0x36c0  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
21:49:33.0586 0x36c0  p2psvc - ok
21:49:33.0602 0x36c0  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
21:49:33.0617 0x36c0  Parport - ok
21:49:33.0633 0x36c0  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
21:49:33.0633 0x36c0  partmgr - ok
21:49:33.0680 0x36c0  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
21:49:33.0695 0x36c0  PcaSvc - ok
21:49:33.0790 0x36c0  [ 2F86BE1818C2D7AC90478E3323EE7FCB, CE721FCFFDC9D24483DEB6BB77DAFEBE79BA143CA2EE68BF28E2A9297AADB2D4 ] PCCUJobMgr      C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe
21:49:33.0806 0x36c0  PCCUJobMgr - ok
21:49:33.0899 0x36c0  [ C0D3F3BC1C84B4BA746D9847314C1164, 66FDF288ACAE021C5F63BCCC68D7534B4DB737E252AB16DFF746355D8BE7502D ] pci             C:\WINDOWS\system32\drivers\pci.sys
21:49:33.0931 0x36c0  pci - ok
21:49:33.0962 0x36c0  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
21:49:33.0977 0x36c0  pciide - ok
21:49:33.0993 0x36c0  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
21:49:34.0009 0x36c0  pcmcia - ok
21:49:34.0040 0x36c0  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
21:49:34.0056 0x36c0  pcw - ok
21:49:34.0087 0x36c0  [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
21:49:34.0087 0x36c0  pdc - ok
21:49:34.0165 0x36c0  [ BA50CC0BD19004AAB88BE37338B6FA0D, 34D4720A621CCB4707F2EB929F6F44C317DBC6F055F7F34F3FAC68DFDAA00DEF ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
21:49:34.0181 0x36c0  PEAUTH - ok
21:49:34.0306 0x36c0  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
21:49:34.0384 0x36c0  PerfHost - ok
21:49:34.0509 0x36c0  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\WINDOWS\system32\pla.dll
21:49:34.0556 0x36c0  pla - ok
21:49:34.0587 0x36c0  [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
21:49:34.0603 0x36c0  PlugPlay - ok
21:49:34.0634 0x36c0  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
21:49:34.0634 0x36c0  PNRPAutoReg - ok
21:49:34.0681 0x36c0  [ 3B510F20806B94E389784ED09DBD2111, EF8896C500B3AA3A811FDE97BC322EF3295E9BD0DE236715D4A4C52CF63727E1 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
21:49:34.0696 0x36c0  PNRPsvc - ok
21:49:34.0759 0x36c0  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
21:49:34.0774 0x36c0  PolicyAgent - ok
21:49:34.0806 0x36c0  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\WINDOWS\system32\umpo.dll
21:49:34.0806 0x36c0  Power - ok
21:49:34.0993 0x36c0  [ B7DB57A000D46D4DE75BC0C563E58072, 8183EB09DC4D44DFF027CA0AAA8C09921A14F088C1BC427B6ACA42340AAF69E6 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
21:49:35.0149 0x36c0  PrintNotify - ok
21:49:35.0196 0x36c0  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
21:49:35.0212 0x36c0  Processor - ok
21:49:35.0243 0x36c0  [ 8513A1E7AE4B9DC82C4B4F432C648A58, C0C629BF79722A12B35BDA6D5EF6FD2D96E013D80D8F17077E9137ED3988B452 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
21:49:35.0243 0x36c0  ProfSvc - ok
21:49:35.0274 0x36c0  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
21:49:35.0290 0x36c0  Psched - ok
21:49:35.0337 0x36c0  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\WINDOWS\system32\qwave.dll
21:49:35.0353 0x36c0  QWAVE - ok
21:49:35.0353 0x36c0  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
21:49:35.0368 0x36c0  QWAVEdrv - ok
21:49:35.0399 0x36c0  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:49:35.0415 0x36c0  RasAcd - ok
21:49:35.0446 0x36c0  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:49:35.0446 0x36c0  RasAuto - ok
21:49:35.0493 0x36c0  [ BF3B17016764F20F9D28CF1A8DC210C0, F64B410D444D4A3DFEE356EFC5B758781FA2612771EDCF72DB91D3120385D7DB ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:49:35.0524 0x36c0  RasMan - ok
21:49:35.0540 0x36c0  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:49:35.0540 0x36c0  RasPppoe - ok
21:49:35.0602 0x36c0  [ B939A2A0F9D6C6C186721E268EB6FA93, 8AF03945428D8F0E9B6DE1C24627336398320C7C78E5F594E0A57AB2DB6E0A24 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:49:35.0618 0x36c0  rdbss - ok
21:49:35.0649 0x36c0  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
21:49:35.0649 0x36c0  rdpbus - ok
21:49:35.0681 0x36c0  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
21:49:35.0696 0x36c0  RDPDR - ok
21:49:35.0743 0x36c0  [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
21:49:35.0759 0x36c0  RdpVideoMiniport - ok
21:49:35.0806 0x36c0  [ 847C6A08912C3515807049C93E526D65, 74AFC58793B43E73614D2F49B19FB360091E208097696D9DF0B0354761E0B30F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
21:49:35.0822 0x36c0  rdyboost - ok
21:49:35.0885 0x36c0  [ 036746D54347FD2D0385668E2A4064E4, 7C670176176C86D6C3814367A6282A78F4E950F84DDEDA849829236C891F5BB9 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
21:49:35.0916 0x36c0  ReFS - ok
21:49:35.0947 0x36c0  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
21:49:35.0963 0x36c0  RemoteAccess - ok
21:49:35.0994 0x36c0  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
21:49:36.0010 0x36c0  RemoteRegistry - ok
21:49:36.0041 0x36c0  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
21:49:36.0041 0x36c0  RpcEptMapper - ok
21:49:36.0088 0x36c0  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:49:36.0103 0x36c0  RpcLocator - ok
21:49:36.0213 0x36c0  [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
21:49:36.0244 0x36c0  RpcSs - ok
21:49:36.0291 0x36c0  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
21:49:36.0291 0x36c0  rspndr - ok
21:49:36.0322 0x36c0  [ 8EB6DCEB7473C232D8BC9A886E3183AC, D81B089443306AD9D89F59DBC5F9C2F5B6A86112B4AB59316B97EE7D8B97D2FA ] RSUSBVSTOR      C:\WINDOWS\System32\Drivers\RtsUVStor.sys
21:49:36.0338 0x36c0  RSUSBVSTOR - ok
21:49:36.0400 0x36c0  [ 3BDBB0CBFB27FEF51B7574676D1C9F6A, 80C1F54A01C4567EF0B8452C0394D82B7F141E60E5BE19778992286B3FD5D466 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
21:49:36.0416 0x36c0  RtkAudioService - ok
21:49:36.0525 0x36c0  [ A307450FE19F99CC8AC750EB13959F94, D74B054B116C8E4295AFE1826D3E560D7F6885980C711F692CCDF4D9A87978AB ] RTWlanE         C:\WINDOWS\system32\DRIVERS\rtwlane.sys
21:49:36.0603 0x36c0  RTWlanE - ok
21:49:36.0650 0x36c0  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
21:49:36.0650 0x36c0  s3cap - ok
21:49:36.0682 0x36c0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\WINDOWS\system32\lsass.exe
21:49:36.0682 0x36c0  SamSs - ok
21:49:36.0713 0x36c0  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
21:49:36.0728 0x36c0  sbp2port - ok
21:49:36.0760 0x36c0  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
21:49:36.0775 0x36c0  SCardSvr - ok
21:49:36.0806 0x36c0  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
21:49:36.0806 0x36c0  ScDeviceEnum - ok
21:49:36.0853 0x36c0  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
21:49:36.0853 0x36c0  scfilter - ok
21:49:36.0947 0x36c0  [ 888A30EAB651502352C18745367FD179, 00CD9FA55F3E896D8BA81368DF1E855E2F64B5AC488EB4F9BF2C4E45ED63FD5F ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:49:36.0994 0x36c0  Schedule - ok
21:49:37.0025 0x36c0  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
21:49:37.0041 0x36c0  SCPolicySvc - ok
21:49:37.0072 0x36c0  [ 2F9A3380B8C0380E5608E29C7AA66899, 56D1908437DD3791E54866819E39CC89586C5CD804F47B556416FA8642D88CBB ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
21:49:37.0103 0x36c0  sdbus - ok
21:49:37.0119 0x36c0  [ 4EAF4DCF9DBD9A56952A58F56D61C005, BCA42FD1553569D3603008CC97D88FD309E87F8A8B1522A4287A0E81CAE6C294 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
21:49:37.0134 0x36c0  sdstor - ok
21:49:37.0166 0x36c0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
21:49:37.0166 0x36c0  secdrv - ok
21:49:37.0197 0x36c0  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\WINDOWS\system32\seclogon.dll
21:49:37.0197 0x36c0  seclogon - ok
21:49:37.0228 0x36c0  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\WINDOWS\System32\sens.dll
21:49:37.0244 0x36c0  SENS - ok
21:49:37.0291 0x36c0  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
21:49:37.0306 0x36c0  SensrSvc - ok
21:49:37.0338 0x36c0  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
21:49:37.0353 0x36c0  SerCx - ok
21:49:37.0385 0x36c0  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
21:49:37.0400 0x36c0  SerCx2 - ok
21:49:37.0416 0x36c0  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
21:49:37.0431 0x36c0  Serenum - ok
21:49:37.0447 0x36c0  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
21:49:37.0447 0x36c0  Serial - ok
21:49:37.0478 0x36c0  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
21:49:37.0478 0x36c0  sermouse - ok
21:49:37.0541 0x36c0  [ 441E6FF1F34D7A942946DB42A15FB519, A16BA505B74C7A2ADD08BD5B50728C2AD55062E0ABABAD7E3EE0EB97F3725523 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
21:49:37.0556 0x36c0  SessionEnv - ok
21:49:37.0588 0x36c0  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
21:49:37.0588 0x36c0  sfloppy - ok
21:49:37.0635 0x36c0  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:49:37.0666 0x36c0  SharedAccess - ok
21:49:37.0728 0x36c0  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:49:37.0767 0x36c0  ShellHWDetection - ok
21:49:37.0783 0x36c0  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
21:49:37.0783 0x36c0  SiSRaid2 - ok
21:49:37.0814 0x36c0  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
21:49:37.0814 0x36c0  SiSRaid4 - ok
21:49:37.0861 0x36c0  [ 875B04A71869D34A415CC8B4D4673EC4, 8FDFD38B1A6302EC7FAFC23A22C332B1E7240231DBE3519AD6F51F6BD668B481 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
21:49:37.0877 0x36c0  SkypeUpdate - ok
21:49:37.0908 0x36c0  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\WINDOWS\System32\smphost.dll
21:49:37.0908 0x36c0  smphost - ok
21:49:37.0955 0x36c0  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
21:49:37.0955 0x36c0  SNMPTRAP - ok
21:49:38.0017 0x36c0  [ F6EBE514D13ECE7EDC23440039CDF9AB, B58072BE7E4E52704C7B1D52DD49F469542B4B015C6D560369EEC1B046AFB254 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
21:49:38.0049 0x36c0  spaceport - ok
21:49:38.0080 0x36c0  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
21:49:38.0080 0x36c0  SpbCx - ok
21:49:38.0158 0x36c0  [ FE0CB40F36D3FCDD3A1B312EF72C38D5, 42EA50869752164764DFE8CE7E1C247BE8342A0C15F39158DC808E8A692C460F ] Spooler         C:\WINDOWS\System32\spoolsv.exe
21:49:38.0189 0x36c0  Spooler - ok
21:49:38.0439 0x36c0  [ E6DEC72A2A23FAA53EB9FEC3C7E29D66, 58BB3B9D50DFFF99E790D5B768FAA387F16385436BA6EB704BE6DB1F63B8E4B2 ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
21:49:38.0673 0x36c0  sppsvc - ok
21:49:38.0814 0x36c0  [ 2FD9346F9D76CB4192D37329CFA47A82, 4CD75B4006147D469116F3CBC10528928A592510DA8037D709CB198D89853CAB ] SRTSP           C:\WINDOWS\System32\Drivers\NISx64\1404000.028\SRTSP64.SYS
21:49:38.0845 0x36c0  SRTSP - ok
21:49:38.0861 0x36c0  [ 0E76CEF892C45734F7AED09FDDF35D4D, C25AF31E411AC3A090859C883132B9AE6A80C8D791168FF219BC0895E35A0359 ] SRTSPX          C:\WINDOWS\system32\drivers\NISx64\1404000.028\SRTSPX64.SYS
21:49:38.0861 0x36c0  SRTSPX - ok
21:49:38.0908 0x36c0  [ 2B78788A1485F9B99A578A299DF42C02, A87183A9B13585C9E850437A45237105D39D7F3212ADB079D6AB430B67A59643 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:49:38.0939 0x36c0  srv - ok
21:49:39.0002 0x36c0  [ C1AE59C0B0817236EC083A91C396005A, 26F05ECB44C300DA8F333B115727C31C5C8252C83F37F0AE7DFF89B267599CDF ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
21:49:39.0033 0x36c0  srv2 - ok
21:49:39.0080 0x36c0  [ 77195C32175FC63D6054EBA5A066D727, 22F5D26809BC9288021620040FC7B7BB76708D434C863B3C0C20F73200C1C6A9 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
21:49:39.0095 0x36c0  srvnet - ok
21:49:39.0142 0x36c0  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:49:39.0142 0x36c0  SSDPSRV - ok
21:49:39.0189 0x36c0  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
21:49:39.0189 0x36c0  SstpSvc - ok
21:49:39.0236 0x36c0  [ AAF6F247F1DC370C593B4430974EAD9C, 232D0D62EC83A5537ADB28B5DC01074BA812FE6C70C54F70CD7A5EF1BC19D3E1 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
21:49:39.0252 0x36c0  ssudmdm - ok
21:49:39.0267 0x36c0  [ 3248B5CC4AA7942EE7BC26F1EB00210B, 9711E9AF7E6D2367F62A02D772073623B896E6DE20C22E1BF27226A57184D63F ] ssudserd        C:\WINDOWS\system32\DRIVERS\ssudserd.sys
21:49:39.0283 0x36c0  ssudserd - ok
21:49:39.0299 0x36c0  Steam Client Service - ok
21:49:39.0330 0x36c0  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
21:49:39.0345 0x36c0  stexstor - ok
21:49:39.0439 0x36c0  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
21:49:39.0486 0x36c0  stisvc - ok
21:49:39.0533 0x36c0  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
21:49:39.0533 0x36c0  storahci - ok
21:49:39.0564 0x36c0  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
21:49:39.0564 0x36c0  storflt - ok
21:49:39.0595 0x36c0  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
21:49:39.0611 0x36c0  stornvme - ok
21:49:39.0642 0x36c0  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
21:49:39.0658 0x36c0  StorSvc - ok
21:49:39.0689 0x36c0  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
21:49:39.0705 0x36c0  storvsc - ok
21:49:39.0736 0x36c0  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\WINDOWS\system32\svsvc.dll
21:49:39.0752 0x36c0  svsvc - ok
21:49:39.0771 0x36c0  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
21:49:39.0771 0x36c0  swenum - ok
21:49:39.0865 0x36c0  [ A5DC2E63F5E5D3C0B843307374998479, B3156296D1750FEAF2354E217735B8D888C50599869233FB1B537167F2CECE0B ] swprv           C:\WINDOWS\System32\swprv.dll
21:49:39.0880 0x36c0  swprv - ok
21:49:39.0958 0x36c0  [ 52DC0048D667757A8A2E4C87182890AC, 7B43DF6DADFDDBBC5402477FE832052ADB6A39B90111CDA89B5E01CE900F55C5 ] SymDS           C:\WINDOWS\system32\drivers\NISx64\1404000.028\SYMDS64.SYS
21:49:39.0974 0x36c0  SymDS - ok
21:49:40.0052 0x36c0  [ 599872BAD7CFB45C7CE47CDED4B726D8, 5B15B1B22C3ACA1BC56CAFCAFFC2E974C75C77C0AB7355FBA91F2147C0911499 ] SymEFA          C:\WINDOWS\system32\drivers\NISx64\1404000.028\SYMEFA64.SYS
21:49:40.0115 0x36c0  SymEFA - ok
21:49:40.0146 0x36c0  [ 42947647F71E9EF2167B42B372F1DDB7, AE825B7DFFAE8BCF5598C512EFAF5645C5A6C4DC90F8B3073A255223DF3AAA4A ] SymELAM         C:\WINDOWS\system32\drivers\NISx64\1404000.028\SymELAM.sys
21:49:40.0146 0x36c0  SymELAM - ok
21:49:40.0177 0x36c0  [ F19E5E37ED8134B9E5F6287F2D3A75D7, 5804D6DF529213CCF7CD2C345483940554CAA5C6EA065A1B09AA54D114C612F8 ] SymEvent        C:\windows\system32\Drivers\SYMEVENT64x86.SYS
21:49:40.0177 0x36c0  SymEvent - ok
21:49:40.0224 0x36c0  [ ADF37F1A715D6C56C8E065FD8569A9A4, 33E895CB326F62D4D22E345563B0641EB88D23B2104A07E8CEBE5ED150882767 ] SymIRON         C:\WINDOWS\system32\drivers\NISx64\1404000.028\Ironx64.SYS
21:49:40.0224 0x36c0  SymIRON - ok
21:49:40.0271 0x36c0  [ 9CDCA70485BD6B9D230365F67C31F132, 137995F1F0124E3A10AAA25551F811602BB5FE8361AE8CBA899C6B98486F4CF3 ] SymNetS         C:\WINDOWS\System32\Drivers\NISx64\1404000.028\SYMNETS.SYS
21:49:40.0287 0x36c0  SymNetS - ok
21:49:40.0349 0x36c0  [ 157DFCD1E83E964A5074742AE2DFA0C1, D6F4567F42402938F54A1E482BAE3B02E1BD5AF3788835A63829A3652E5DDA67 ] SynTP           C:\WINDOWS\system32\DRIVERS\SynTP.sys
21:49:40.0365 0x36c0  SynTP - ok
21:49:40.0474 0x36c0  [ E45DA7CBBA34510C8B9473AD7D4FFD0B, 89C2AED757D86C276D78D29D94DCBF9C1B6A244A2153EC85CCB2E86C5F078387 ] SysMain         C:\WINDOWS\system32\sysmain.dll
21:49:40.0537 0x36c0  SysMain - ok
21:49:40.0599 0x36c0  [ 373382005ACB27CB16ED16722FBE946A, A1F86A014A518B3C2EC22A8DD830111E3B2A71D860ECA65A96BC82560802ACF4 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
21:49:40.0615 0x36c0  SystemEventsBroker - ok
21:49:40.0662 0x36c0  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
21:49:40.0677 0x36c0  TabletInputService - ok
21:49:40.0709 0x36c0  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:49:40.0724 0x36c0  TapiSrv - ok
21:49:40.0880 0x36c0  [ 6617F44D2432C529B2249A0498B6B40A, E108D3949DE29FE3D3302337725B835BD182CD1CD9424A54829251178D0F49D3 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
21:49:40.0974 0x36c0  Tcpip - ok
21:49:41.0068 0x36c0  [ 6617F44D2432C529B2249A0498B6B40A, E108D3949DE29FE3D3302337725B835BD182CD1CD9424A54829251178D0F49D3 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:49:41.0146 0x36c0  TCPIP6 - ok
21:49:41.0193 0x36c0  [ 33A7D83EEB15431773A6E186CFAABA21, AC5100A76CA44BFADF4A54FDB09FF5D2FF13B9F8482DC1AE86C8C27005F77B0F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
21:49:41.0193 0x36c0  tcpipreg - ok
21:49:41.0224 0x36c0  [ 58480A57ACF2671C343FD1D4BA990E34, 24AD9C808D06FABFE8E81242CAC8B5A91829F7D951B245865EF77B79BB795E3D ] TDCMDPST        C:\WINDOWS\system32\DRIVERS\tdcmdpst.sys
21:49:41.0240 0x36c0  TDCMDPST - ok
21:49:41.0271 0x36c0  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
21:49:41.0287 0x36c0  tdx - ok
21:49:41.0302 0x36c0  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
21:49:41.0302 0x36c0  terminpt - ok
21:49:41.0380 0x36c0  [ 2C77831737491F4D684D315B95C62883, 90A2574A281F19646CFCDA5FDF40063220058290D2D5523AD91B7E709EC36D3D ] TermService     C:\WINDOWS\System32\termsrv.dll
21:49:41.0427 0x36c0  TermService - ok
21:49:41.0459 0x36c0  [ C028AE1560FEA74BEAB225D2E27C3E47, 0DBF7A9C1CED4627491F93465AC50BCB6F42298EE5B73C68407790EF6D41FE32 ] THAccel         C:\WINDOWS\system32\DRIVERS\THAccel.sys
21:49:41.0474 0x36c0  THAccel - ok
21:49:41.0552 0x36c0  [ F5FD83FA082E88FE6049B1B9F78AA739, 4576E985FF3BA2D232DA07BC9356C79F8A30DC506CEB40830C25397E5567F84A ] THAccelSvc      C:\Program Files\TOSHIBA\HDD Accelerator\THAccelSvc.exe
21:49:41.0568 0x36c0  THAccelSvc - ok
21:49:41.0599 0x36c0  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\WINDOWS\system32\themeservice.dll
21:49:41.0615 0x36c0  Themes - ok
21:49:41.0646 0x36c0  [ 16E745743BABAF480B7718442F38B076, 4FF6C7CFB976BF24F2215DCAE4DCCA546A6758B1DE1F36C78251AFFE4D9CE249 ] Thotkey         C:\WINDOWS\System32\drivers\Thotkey.sys
21:49:41.0662 0x36c0  Thotkey - ok
21:49:41.0693 0x36c0  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
21:49:41.0709 0x36c0  THREADORDER - ok
21:49:41.0772 0x36c0  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
21:49:41.0787 0x36c0  TimeBroker - ok
21:49:41.0819 0x36c0  [ 6C4F5CD42074DB52AE88FC4BAB2C54F7, B4E3B6A23C99A11186F4EE875871D459A7A03EF4565CA114B41FB3C982841A45 ] TMachInfo       C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
21:49:41.0834 0x36c0  TMachInfo - ok
21:49:41.0866 0x36c0  [ ED32035BDFECED1AD66D459FD9CC1140, B82A15FAB4CBB5A633B9BF722441D5B20D946B63DD10BBE2A89D3A8BA3BE3339 ] TODDSrv         C:\Windows\system32\TODDSrv.exe
21:49:41.0881 0x36c0  TODDSrv - ok
21:49:41.0944 0x36c0  [ CB92B9BD85B54DEECA1B05E5ABCEA1AA, F3FB06DFE9A70613512DB25BEF486271641BFF3D7684C2C0C4B09E1DB6B08F52 ] TOSHIBA eco Utility Service C:\Program Files\Toshiba\Teco\TecoService.exe
21:49:41.0959 0x36c0  TOSHIBA eco Utility Service - ok
21:49:42.0022 0x36c0  [ 36391C3953D191A2AF4556D5D706C641, 5191A35C86B6C98F2CBDDC23B5311ED62310345CEDE084A54BBF70CCF0F84C50 ] tos_sps64       C:\WINDOWS\system32\drivers\tos_sps64.sys
21:49:42.0037 0x36c0  tos_sps64 - ok
21:49:42.0100 0x36c0  [ 8608681DC6E2975815A593209A6432CD, 10DF382AABB97DD70900DD4D6D388A34614A67E762D956861C8D4D036947BFDA ] TPCHSrv         C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
21:49:42.0116 0x36c0  TPCHSrv - ok
21:49:42.0147 0x36c0  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
21:49:42.0162 0x36c0  TPM - ok
21:49:42.0194 0x36c0  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
21:49:42.0209 0x36c0  TrkWks - ok
21:49:42.0256 0x36c0  [ DA56FFA46030E6FEB215E3D5DAA65B11, 36B5EED8F9044475000362DBFC8A2A40B889ED46382CCEFB6BA04BE0442F98C2 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
21:49:42.0256 0x36c0  TrustedInstaller - ok
21:49:42.0287 0x36c0  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
21:49:42.0303 0x36c0  TsUsbFlt - ok
21:49:42.0334 0x36c0  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
21:49:42.0334 0x36c0  TsUsbGD - ok
21:49:42.0366 0x36c0  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
21:49:42.0381 0x36c0  tunnel - ok
21:49:42.0412 0x36c0  [ 54BDBF3D4DED58DA78B702471C68D4CA, D12F9F09FFE7D38A5EE6BF79DB74D775A9861C3C87E06D7C23259E47247B1782 ] TVALZ           C:\WINDOWS\system32\drivers\TVALZ_O.SYS
21:49:42.0412 0x36c0  TVALZ - ok
21:49:42.0459 0x36c0  [ 55A9A23DD64EB7781FCAB565B028CD0E, 44CE0C8244F9AE6CCCDB49C29F6D35FE4CE8C92DE5B5D44D22DBD088DE83AA10 ] TVALZFL         C:\WINDOWS\system32\DRIVERS\TVALZFL.sys
21:49:42.0459 0x36c0  TVALZFL - ok
21:49:42.0491 0x36c0  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
21:49:42.0491 0x36c0  uagp35 - ok
21:49:42.0537 0x36c0  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
21:49:42.0537 0x36c0  UASPStor - ok
21:49:42.0600 0x36c0  [ 5D1B430EA11064C56E7C8F84B90DEB6A, 874D9EE807F16321C4857030F9C18D2B925785FD4BB7ED047AF9535BF3F30D84 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
21:49:42.0600 0x36c0  UCX01000 - ok
21:49:42.0647 0x36c0  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
21:49:42.0662 0x36c0  udfs - ok
21:49:42.0678 0x36c0  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
21:49:42.0678 0x36c0  UEFI - ok
21:49:42.0725 0x36c0  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
21:49:42.0725 0x36c0  UI0Detect - ok
21:49:42.0772 0x36c0  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
21:49:42.0772 0x36c0  uliagpkx - ok
21:49:42.0803 0x36c0  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
21:49:42.0803 0x36c0  umbus - ok
21:49:42.0819 0x36c0  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
21:49:42.0834 0x36c0  UmPass - ok
21:49:42.0897 0x36c0  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
21:49:42.0912 0x36c0  UmRdpService - ok
21:49:42.0991 0x36c0  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:49:43.0022 0x36c0  upnphost - ok
21:49:43.0053 0x36c0  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
21:49:43.0053 0x36c0  USBAAPL64 - ok
21:49:43.0100 0x36c0  [ 755A90F1C949B8260D7670AEF6DB4912, 0408112B3277D00C92BD9265DC9A7C8CA46FB160D0B4BB0318B86DB4A5EA2DA7 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
21:49:43.0100 0x36c0  usbaudio - ok
21:49:43.0131 0x36c0  [ 433ECDE01A52691FA7ACA51C10C09B70, B896296A3F8EF2AF3AC5F0091B9848156608586F1E10A95D70700BAB51E8062A ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
21:49:43.0147 0x36c0  usbccgp - ok
21:49:43.0178 0x36c0  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
21:49:43.0178 0x36c0  usbcir - ok
21:49:43.0225 0x36c0  [ 5477D6E27C7D266EF8C152B9A25ADE5E, FEE81677D284A78A0C0FB60F887A952CFC759AE78B01206D73F59FE33612C519 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
21:49:43.0225 0x36c0  usbehci - ok
21:49:43.0272 0x36c0  [ 504901430B6E03B99EBB6BF26E0868C6, D00C0904B7008305DCA5D1E6FED153DD8875CAD14D80348E59F42A182FA7E832 ] usbfilter       C:\WINDOWS\system32\DRIVERS\usbfilter.sys
21:49:43.0272 0x36c0  usbfilter - ok
21:49:43.0319 0x36c0  [ DF56C2C04EFA328D7A66B69007130266, 719316EB25A8C7B82C7941D1C5B964CC4EDA4A997732F481526DE7356F6FC0D8 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
21:49:43.0334 0x36c0  usbhub - ok
21:49:43.0381 0x36c0  [ C0E33820326199CE3CFD3B9F27F81D99, C67F55E7DD6F7FC4A96256A14A805D39C5CE8725FD86675C6C860B3DE8E4DBC3 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
21:49:43.0397 0x36c0  USBHUB3 - ok
21:49:43.0444 0x36c0  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
21:49:43.0444 0x36c0  usbohci - ok
21:49:43.0459 0x36c0  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
21:49:43.0459 0x36c0  usbprint - ok
21:49:43.0506 0x36c0  [ F04D164C4168701A4E7835607722E5F1, 6F743CF2CF73945B4A4B1C4402744BC2FE1624F1346C194493AD2F7110F9EB35 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
21:49:43.0522 0x36c0  usbscan - ok
21:49:43.0553 0x36c0  [ B1230E9813B5C7E762DF27756AA23917, 985203D267C2BF5FA88FE043785DF3DDFD796CB3CC4007E171AF63F41C413239 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
21:49:43.0553 0x36c0  USBSTOR - ok
21:49:43.0584 0x36c0  [ BA4FA655E0FC577DB7436FC963932CE4, 3336FDECD4AEC6B316D4C0803E22A12719EBEDD1A9427C0DF5D3B263BE600EE6 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
21:49:43.0584 0x36c0  usbuhci - ok
21:49:43.0631 0x36c0  [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
21:49:43.0647 0x36c0  usbvideo - ok
21:49:43.0694 0x36c0  [ 3B44CB989757428208CCFCC028C13110, E71BFA4BB0F4FAEDA79606C44F7DAAB317CD99C9382942E5830F440CF96D9B35 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
21:49:43.0709 0x36c0  USBXHCI - ok
21:49:43.0725 0x36c0  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
21:49:43.0725 0x36c0  VaultSvc - ok
21:49:43.0756 0x36c0  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
21:49:43.0756 0x36c0  vdrvroot - ok
21:49:43.0881 0x36c0  [ CFBAD6B48EDFAA0828A52646B7C4C08D, DDC7D607E784CE6FB5BC62E53E6309EB583D74425E6D3FC8F3D3EC705D69C075 ] vds             C:\WINDOWS\System32\vds.exe
21:49:43.0912 0x36c0  vds - ok
21:49:43.0959 0x36c0  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
21:49:43.0975 0x36c0  VerifierExt - ok
21:49:44.0069 0x36c0  [ 041D3EF364E624DBB2703A64A5AADF89, 94A52A35AFDD09EBCC4266BD6D44014AAB4BBDFD3F6E8C997A1CA49DFB48F60D ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
21:49:44.0084 0x36c0  vhdmp - ok
21:49:44.0131 0x36c0  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
21:49:44.0131 0x36c0  viaide - ok
21:49:44.0147 0x36c0  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
21:49:44.0162 0x36c0  vmbus - ok
21:49:44.0162 0x36c0  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
21:49:44.0178 0x36c0  VMBusHID - ok
21:49:44.0241 0x36c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
21:49:44.0272 0x36c0  vmicguestinterface - ok
21:49:44.0287 0x36c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
21:49:44.0303 0x36c0  vmicheartbeat - ok
21:49:44.0319 0x36c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
21:49:44.0334 0x36c0  vmickvpexchange - ok
21:49:44.0365 0x36c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
21:49:44.0381 0x36c0  vmicrdv - ok
21:49:44.0397 0x36c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
21:49:44.0412 0x36c0  vmicshutdown - ok
21:49:44.0444 0x36c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
21:49:44.0459 0x36c0  vmictimesync - ok
21:49:44.0522 0x36c0  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
21:49:44.0553 0x36c0  vmicvss - ok
21:49:44.0584 0x36c0  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
21:49:44.0600 0x36c0  volmgr - ok
21:49:44.0631 0x36c0  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
21:49:44.0647 0x36c0  volmgrx - ok
21:49:44.0678 0x36c0  [ 9F9CE33B50611A1C61A46B8911E0B30B, FE4EDF16CE8FC36BB2125FC7D1CF45C65B06A2C31D426635115D879987DF2159 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
21:49:44.0694 0x36c0  volsnap - ok
21:49:44.0741 0x36c0  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
21:49:44.0741 0x36c0  vpci - ok
21:49:44.0756 0x36c0  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
21:49:44.0773 0x36c0  vsmraid - ok
21:49:44.0851 0x36c0  [ D51D7EF1EA5ED2BB01E9D07E6E0533BC, E31118F42B316C9B6C9072D9628AA2801FC2519F1A46C9ED167843CD67183C19 ] VSS             C:\WINDOWS\system32\vssvc.exe
21:49:44.0898 0x36c0  VSS - ok
21:49:44.0945 0x36c0  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
21:49:44.0961 0x36c0  VSTXRAID - ok
21:49:44.0992 0x36c0  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
21:49:44.0992 0x36c0  vwifibus - ok
21:49:45.0023 0x36c0  [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
21:49:45.0023 0x36c0  vwififlt - ok
21:49:45.0039 0x36c0  [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
21:49:45.0039 0x36c0  vwifimp - ok
21:49:45.0133 0x36c0  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\WINDOWS\system32\w32time.dll
21:49:45.0148 0x36c0  W32Time - ok
21:49:45.0180 0x36c0  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
21:49:45.0195 0x36c0  WacomPen - ok
21:49:45.0320 0x36c0  [ 92BF4B3EBD6F163B94B7A20C65E7B698, 293E6FEFA862690A7B75443D6495144313D759971B98B495A99AAB0D2CF1F350 ] wbengine        C:\WINDOWS\system32\wbengine.exe
21:49:45.0367 0x36c0  wbengine - ok
21:49:45.0430 0x36c0  [ 58F28103889817C93E5B5AFABC87E709, 547381B10DAC8A3CC16FB5DE6DF2FDA3CCD8F45DF581959FFF6E30875419B011 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
21:49:45.0445 0x36c0  WbioSrvc - ok
21:49:45.0492 0x36c0  [ 772365894F14652D376B2E5030179DC9, 3D917CED040456EB269BE2B82315CEAE3589FEC016DAE37FC5BC1C3D66DE3140 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
21:49:45.0508 0x36c0  Wcmsvc - ok
21:49:45.0539 0x36c0  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
21:49:45.0570 0x36c0  wcncsvc - ok
21:49:45.0586 0x36c0  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
21:49:45.0601 0x36c0  WcsPlugInService - ok
21:49:45.0633 0x36c0  [ 694B28DE12AD47031FFB4B052662131A, FF3B1B1A69C82BB123073E10D9F1322ED8587F5BAC36F8AB7DAED22C7DD5C7DB ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
21:49:45.0633 0x36c0  WdBoot - ok
21:49:45.0680 0x36c0  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
21:49:45.0711 0x36c0  Wdf01000 - ok
21:49:45.0742 0x36c0  [ 0B99529A3BECC3528D865DDECB62503B, 28E6B44BDC52E212D2EB269491D3574B45EE9B19821FE15167D7FA05566C89F4 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
21:49:45.0758 0x36c0  WdFilter - ok
21:49:45.0789 0x36c0  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
21:49:45.0789 0x36c0  WdiServiceHost - ok
21:49:45.0805 0x36c0  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
21:49:45.0805 0x36c0  WdiSystemHost - ok
21:49:45.0820 0x36c0  [ 282E7D46310338FF4A6B7680440EB0DA, 04242798DD82F583154AEA3D775C9BFD574FC471D01CDEB9D070872425094D82 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
21:49:45.0836 0x36c0  WdNisDrv - ok
21:49:45.0852 0x36c0  WdNisSvc - ok
21:49:45.0898 0x36c0  [ 6588A957873326361AB1CAC4E76F8394, BE17880CEDCAE5ED3B983443E3777842646A3E48B661422A717656E11F6DBA94 ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:49:45.0914 0x36c0  WebClient - ok
21:49:45.0945 0x36c0  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
21:49:45.0961 0x36c0  Wecsvc - ok
21:49:45.0976 0x36c0  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
21:49:45.0992 0x36c0  WEPHOSTSVC - ok
21:49:46.0023 0x36c0  [ AA1315B87D9B2E39584165318A59F15D, CD19608BE1F6B7AECF802F8D2DD4FCBDAA29450ED37F7D040DC6453924C7B0FE ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
21:49:46.0023 0x36c0  wercplsupport - ok
21:49:46.0055 0x36c0  [ 22B4C24AB921BFF7827FFBCA1F4E1BB3, B634F7018097A8E4EECDD9F032DF6A0FB6817FC3DEB92BCE6A0965B5D71D8DFA ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
21:49:46.0070 0x36c0  WerSvc - ok
21:49:46.0102 0x36c0  [ 2E3E82D7B1076B90F4E228A8EF17B261, 0492F8E0BE09DAD9922E85CCA7BCB1548CB9DC5841F46174A0657FDC59AAC3CE ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
21:49:46.0117 0x36c0  WFPLWFS - ok
21:49:46.0133 0x36c0  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
21:49:46.0148 0x36c0  WiaRpc - ok
21:49:46.0180 0x36c0  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
21:49:46.0180 0x36c0  WIMMount - ok
21:49:46.0195 0x36c0  WinDefend - ok
21:49:46.0320 0x36c0  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
21:49:46.0383 0x36c0  WinHttpAutoProxySvc - ok
21:49:46.0461 0x36c0  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:49:46.0476 0x36c0  Winmgmt - ok
21:49:46.0633 0x36c0  [ 690C3FC5C9DBD6B9AEDF8341EC720E41, 0E4412BB6DEB5761F7A889FD90821FAFD7C6E173F449EAB3A0446BA653D6AD0C ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
21:49:46.0711 0x36c0  WinRM - ok
21:49:46.0758 0x36c0  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUSB          C:\WINDOWS\system32\DRIVERS\WinUSB.sys
21:49:46.0758 0x36c0  WinUSB - ok
21:49:46.0836 0x36c0  [ 9378B4E7E4E3EAE2F05823CFFF2C6EF4, 66BE95F975FAF3825DFA22BD4DA8693D37B15B83DBFDD36C7896F7363A127513 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
21:49:46.0883 0x36c0  WlanSvc - ok
21:49:46.0961 0x36c0  [ C2838466CCC44FAEF2C3D4C1E5971ECB, 4CA5B1632302E59E754CEA5B3CA3977D8CE9DC7B2E8673B450BBF0D646AD7AD8 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
21:49:47.0024 0x36c0  wlidsvc - ok
21:49:47.0039 0x36c0  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
21:49:47.0039 0x36c0  WmiAcpi - ok
21:49:47.0087 0x36c0  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
21:49:47.0102 0x36c0  wmiApSrv - ok
21:49:47.0133 0x36c0  WMPNetworkSvc - ok
21:49:47.0227 0x36c0  [ E178371E493BF17EB90FE71ABA8BE643, E6F96C62D6AD1FE65D54F6799ABC32D34DE8C6EBFF8A297CA3142EF096112FCE ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
21:49:47.0305 0x36c0  workfolderssvc - ok
21:49:47.0337 0x36c0  [ E746BCDBA2E02CF6B8D6B26FB167FBE0, 8875BBE444A33E0C477EF1A3899955501B7E0A9479CA8AA20DD8E6AA0D9A71E6 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
21:49:47.0337 0x36c0  wpcfltr - ok
21:49:47.0383 0x36c0  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
21:49:47.0383 0x36c0  WPCSvc - ok
21:49:47.0415 0x36c0  [ D27491CFCE452C154CECFA155AD0EBC8, 1F3F74C253E3B07DE7EFE27C34DD9AF08617C7B03BB44C2902F69BA9DA3F21F2 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
21:49:47.0415 0x36c0  WPDBusEnum - ok
21:49:47.0430 0x36c0  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
21:49:47.0430 0x36c0  WpdUpFltr - ok
21:49:47.0461 0x36c0  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
21:49:47.0461 0x36c0  ws2ifsl - ok
21:49:47.0493 0x36c0  [ 5CFA46C4ACB2FD70572017052378DAE5, F09134C4433A9E174889A16F29EA6628045B21BE4FA85275ACFD24D5DFB0D937 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
21:49:47.0508 0x36c0  wscsvc - ok
21:49:47.0508 0x36c0  WSearch - ok
21:49:47.0664 0x36c0  [ 3671C668670626DAB0D47B44F65F0489, 0B19244AEF6C819A72724B4DD4C7CD565CE825F0306FB35FC71A1AAB7D1D7FE4 ] WSService       C:\WINDOWS\System32\WSService.dll
21:49:47.0821 0x36c0  WSService - ok
21:49:47.0993 0x36c0  [ 86D0BF4F792053A50D6EE43DFA5837A5, 5705DAB9C5896F10757630439AC8FEAB5754251C6C90E9E8449220A65D1E95D5 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
21:49:48.0133 0x36c0  wuauserv - ok
21:49:48.0180 0x36c0  [ 2FEAE33E9B2B56104596E1BA444405A9, 0A142F50E06F6224B9CB36B3CE62BE0B36DE8B8DB9F9E05D287DFB884CC7826E ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
21:49:48.0180 0x36c0  WudfPf - ok
21:49:48.0211 0x36c0  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
21:49:48.0211 0x36c0  WUDFRd - ok
21:49:48.0227 0x36c0  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFSensorLP    C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:49:48.0227 0x36c0  WUDFSensorLP - ok
21:49:48.0274 0x36c0  [ BB73CBC65AABC4EA0A5C6A1474A0A743, D644B3C6A7202CADDADB3B68FE1B2A7C76B023FE58F667EED4D538C1F4A65D64 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
21:49:48.0274 0x36c0  wudfsvc - ok
21:49:48.0289 0x36c0  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:49:48.0289 0x36c0  WUDFWpdFs - ok
21:49:48.0336 0x36c0  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
21:49:48.0414 0x36c0  WwanSvc - ok
21:49:48.0446 0x36c0  ================ Scan global ===============================
21:49:48.0524 0x36c0  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll
21:49:48.0571 0x36c0  [ 599F1244C60E3D6C28A8DA7FBA7A2C13, 992E5EB5E3ED6172DC986085532224A148A09A4E9A4DED9556F34533EE98E4D0 ] C:\WINDOWS\system32\winsrv.dll
21:49:48.0618 0x36c0  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll
21:49:48.0680 0x36c0  [ B4B610BBCB002EC478C6FD80CF915697, CE22B87A7C7C0D325CE66FB97E7318B4A41EE0BD14D902A410126A1EBBEAA6FB ] C:\WINDOWS\system32\services.exe
21:49:48.0696 0x36c0  [ Global ] - ok
21:49:48.0696 0x36c0  ================ Scan MBR ==================================
21:49:48.0727 0x36c0  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
21:49:48.0743 0x36c0  \Device\Harddisk0\DR0 - ok
21:49:48.0743 0x36c0  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR5
21:49:48.0758 0x36c0  \Device\Harddisk1\DR5 - ok
21:49:48.0758 0x36c0  ================ Scan VBR ==================================
21:49:48.0790 0x36c0  [ 0C4A070B152CFD0FF0F087BE5C4A51A4 ] \Device\Harddisk0\DR0\Partition1
21:49:48.0790 0x36c0  \Device\Harddisk0\DR0\Partition1 - ok
21:49:48.0806 0x36c0  [ 06C837A1C9A68762420FB30223027222 ] \Device\Harddisk0\DR0\Partition2
21:49:48.0806 0x36c0  \Device\Harddisk0\DR0\Partition2 - ok
21:49:48.0821 0x36c0  [ 6BE8C2DDD34DBF02A97169FD90152BAC ] \Device\Harddisk0\DR0\Partition3
21:49:48.0868 0x36c0  \Device\Harddisk0\DR0\Partition3 - ok
21:49:48.0884 0x36c0  [ 69A4551399EBD1AE68EF4CF99E215CAF ] \Device\Harddisk0\DR0\Partition4
21:49:48.0900 0x36c0  \Device\Harddisk0\DR0\Partition4 - ok
21:49:48.0931 0x36c0  [ EB2628EC2E728FBB69F7E84676017212 ] \Device\Harddisk0\DR0\Partition5
21:49:48.0931 0x36c0  \Device\Harddisk0\DR0\Partition5 - ok
21:49:48.0946 0x36c0  [ 66D261830313E59CCF0377019DD8DEF9 ] \Device\Harddisk0\DR0\Partition6
21:49:48.0946 0x36c0  \Device\Harddisk0\DR0\Partition6 - ok
21:49:48.0962 0x36c0  [ 9EEDA146A99D0941E7F01721ACC60E2A ] \Device\Harddisk1\DR5\Partition1
21:49:48.0978 0x36c0  \Device\Harddisk1\DR5\Partition1 - ok
21:49:48.0978 0x36c0  Waiting for KSN requests completion. In queue: 109
21:49:49.0994 0x36c0  Waiting for KSN requests completion. In queue: 109
21:49:50.0995 0x36c0  Waiting for KSN requests completion. In queue: 109
21:49:52.0137 0x36c0  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.3.9600.16384 ), 0x60100 ( disabled : updated )
21:49:52.0153 0x36c0  AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe ( 20.4.0.0 ), 0x51000 ( enabled : updated )
21:49:52.0153 0x36c0  FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\20.4.0.40\WSCStub.exe ( 20.4.0.0 ), 0x51010 ( enabled )
21:49:54.0700 0x36c0  ============================================================
21:49:54.0700 0x36c0  Scan finished
21:49:54.0700 0x36c0  ============================================================
21:49:54.0716 0x2848  Detected object count: 0
21:49:54.0716 0x2848  Actual detected object count: 0
 



#8 danno1840

danno1840
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 09 January 2014 - 10:58 PM

# AdwCleaner v3.016 - Report created 09/01/2014 at 21:55:30
# Updated 23/12/2013 by Xplode
# Operating System : Windows 8.1  (64 bits)
# Username : danhead322 - EARL
# Running from : C:\Users\danhead322\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Conduit
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Mobogenie
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Users\danhead322\AppData\Local\Conduit
Folder Deleted : C:\Users\danhead322\AppData\Local\Mobogenie
Folder Deleted : C:\Users\danhead322\AppData\Local\NativeMessaging
Folder Deleted : C:\Users\danhead322\AppData\Local\webplayer
Folder Deleted : C:\Users\DANHEA~1\AppData\Local\Temp\NativeMessaging
Folder Deleted : C:\Users\danhead322\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\danhead322\AppData\Roaming\pccustubinstaller
Folder Deleted : C:\Users\danhead322\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PutLockerDownloader.com
Folder Deleted : C:\Users\danhead322\Documents\Mobogenie
File Deleted : C:\END
File Deleted : C:\Users\DANHEA~1\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\danhead322\AppData\Roaming\Mozilla\Firefox\Profiles\i2e9xp8k.default\searchplugins\Conduit.xml
File Deleted : C:\Users\danhead322\AppData\Roaming\Mozilla\Firefox\Profiles\i2e9xp8k.default\searchplugins\MyStart Search.xml
File Deleted : C:\Users\danhead322\AppData\Roaming\Mozilla\Firefox\Profiles\i2e9xp8k.default\searchplugins\safeguard-secure-search.xml
File Deleted : C:\Users\danhead322\AppData\Roaming\Mozilla\Firefox\Profiles\i2e9xp8k.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [mobilegeni daemon]
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3316071
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\installedbrowserextensions
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\Conduit

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16384

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Secondary Start Pages]
Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Secondary Start Pages]

-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\danhead322\AppData\Roaming\Mozilla\Firefox\Profiles\i2e9xp8k.default\prefs.js ]

Line Deleted : user_pref("CT3316071.FF19Solved", "true");
Line Deleted : user_pref("CT3316071.UserID", "UN81650646218248267");
Line Deleted : user_pref("CT3316071.browser.search.defaultthis.engineName", "true");
Line Deleted : user_pref("CT3316071.fullUserID", "UN81650646218248267.IN.20131205221536");
Line Deleted : user_pref("CT3316071.installDate", "05/12/2013 22:15:37");
Line Deleted : user_pref("CT3316071.installSessionId", "{DB0F53F2-D551-445B-801A-300983CC55C2}");
Line Deleted : user_pref("CT3316071.installSp", "TRUE");
Line Deleted : user_pref("CT3316071.installerVersion", "1.8.1.4");
Line Deleted : user_pref("CT3316071.keyword", "true");
Line Deleted : user_pref("CT3316071.originalHomepage", "hxxp://mysearch.avg.com?cid={B7AFEDD5-91DE-4639-B2D1-8014744C6C5C}&mid=f8bb6370240446b09f615fdb3804e6c7-fc255c540e05df9c7fcbb183009969251f8d5798&lang=en&ds=hk0[...]
Line Deleted : user_pref("CT3316071.originalSearchAddressUrl", "");
Line Deleted : user_pref("CT3316071.originalSearchEngine", "");
Line Deleted : user_pref("CT3316071.originalSearchEngineName", "");
Line Deleted : user_pref("CT3316071.searchRevert", "false");
Line Deleted : user_pref("CT3316071.searchUninstallUserMode", "2");
Line Deleted : user_pref("CT3316071.searchUserMode", "2");
Line Deleted : user_pref("CT3316071.smartbar.homepage", "true");
Line Deleted : user_pref("CT3316071.toolbarInstallDate", "05-12-2013 22:15:36");
Line Deleted : user_pref("CT3316071.versionFromInstaller", "10.22.5.10");
Line Deleted : user_pref("CT3316071.xpeMode", "0");
Line Deleted : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3316071&octid=CT3316071&SearchSource=61&CUI=UN81650646218248267&UM=2&UP=SPAA6DF616-1B6F-4CDE-A59D-F77EDBB8659A");
Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Line Deleted : user_pref("browser.search.defaultthis.engineName", "SweetPacks A11 Customized Web Search");
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3316071&CUI=UN81650646218248267&UM=2&SearchSource=3&q={searchTerms}");
Line Deleted : user_pref("extensions.crossrider.bic", "142c61ceb472fbaa4a6c238dc0693497");
Line Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT3316071");
Line Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3316071&CUI=UN81650646218248267&UM=2&SearchSource=13,hxxp://search.conduit.com/?ctid=CT3316071&octid=CT3316071&SearchSource[...]
Line Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3316071&SearchSource=2&CUI=UN81650646218248267&UM=2&q=");
Line Deleted : user_pref("smartbar.defaultSearchOwnerCTID", "CT3316071");
Line Deleted : user_pref("smartbar.homePageOwnerCTID", "CT3316071");
Line Deleted : user_pref("smartbar.machineId", "YQLKN3AJFBP5V2N7CAUGNI2OUG+HG+C3Z1KDUD4UR6YQMIUXKIWLU066F08KAAWSYB1WLYFCP0UEKI5BUQZ6EW");
Line Deleted : user_pref("smartbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3316071&CUI=UN81650646218248267&UM=2&SearchSource=13");

-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\danhead322\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : homepage
Deleted : urls_to_restore_on_startup

*************************

AdwCleaner[R0].txt - [8042 octets] - [09/01/2014 21:53:47]
AdwCleaner[S0].txt - [7624 octets] - [09/01/2014 21:55:30]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [7684 octets] ##########
 



#9 danno1840

danno1840
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 09 January 2014 - 11:11 PM

Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.0 (01.07.2014:1)
OS: Windows 8.1 x64
Ran by danhead322 on Thu 01/09/2014 at 22:00:31.07
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{63DDDC27-C7B3-44EC-9F44-870AAB9D0D5F}



~~~ Files

Successfully deleted: [File] "C:\Users\danhead322\appdata\locallow\SkwConfig.bin"



~~~ Folders

Failed to delete: [Folder] "C:\ProgramData\boost_interprocess"
Successfully deleted: [Folder] "C:\Users\danhead322\appdata\local\cre"



~~~ FireFox

Successfully deleted: [Folder] C:\Users\danhead322\AppData\Roaming\mozilla\firefox\profiles\i2e9xp8k.default\extensions\[email protected]5a86b7d9.com
Emptied folder: C:\Users\danhead322\AppData\Roaming\mozilla\firefox\profiles\i2e9xp8k.default\minidumps [69 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 01/09/2014 at 22:10:10.73
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#10 danno1840

danno1840
  • Topic Starter

  • Members
  • 39 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 10 January 2014 - 09:46 AM

The last scan is still running but it appears that one of them caught and eliminated the problem! I love this site so much.  Thanks



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 61,949 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:00 PM

Posted 10 January 2014 - 10:17 AM

Ok, let us know.
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#12 pdoyle

pdoyle

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:00 PM

Posted 03 March 2014 - 08:59 PM

Hello, please run these next.
 
Which browser(s) are you using?


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

 

I'm totally overwhelmed scrolling through these instructions...is there no simple way to remove this?  malwarebytes, superantispyware, rkill, norton 360 don't seem to detect or remove it...



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 61,949 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:00 PM

Posted 03 March 2014 - 11:07 PM

Unfortunately the Criminals that put this together did it to put many forms of adware and malicious programs on your machine. Therefore it is best to run a salvo of tool. As you see above in the logs there are different infections some with the same names detected and removed by different tools. There are no shortcuts in malware removal.

It is not really much to do.

Edited by boopme, 03 March 2014 - 11:07 PM.

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#14 pdoyle

pdoyle

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:04:00 PM

Posted 07 March 2014 - 08:00 PM

After running all the scans (see below)  the install media player still pops up ...always when I'm on Facebook, sometimes when i'm on other sites as well.  Please advise?

thanks!

pdoyle

 

asctually, I cannot figure out how to attach my scanlogs; pls advise?



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 61,949 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:00 PM

Posted 07 March 2014 - 08:44 PM

You cannot attach in "Am I infected" only copy/paste.
Nothing was removed in the scans?.... toolbars (Babylon Toolbar, Delta Toolbar), adware (Yontoo, DealPly, CouponBuddy) or other forms of malware.

Look in Control Panel, Uninstall and remove these if there...

WebCake 3.00, DownloadTerms 1.0, LessTabs, TidyNetwork.com, BrowserDefender, Selection Links, SimpleLyrics and any other unwanted App.



Check for and disable or remove any unwanted add-ons ( or any ones that were listed above from your browser:There are also more suggestion in these articles:
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users