Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Haunted audio


  • Please log in to reply
17 replies to this topic

#1 ray5450

ray5450

  • Members
  • 455 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:06 AM

Posted 20 August 2013 - 09:44 AM

I'm not sure what category this should go in as I don't know if it is a Windows problem, a hardware problem, a virus problem, or what.  Here is what is happening:  whenever computer starts up and connects to internet, some audio channel starts playing in the background.  (It stops if there is no internet connection.) There are advertisements, talk shows, etc.  There is no application open.  I have went through and disabled all startup apps and services using msconfig (except ones that are required for audio and internet connection) and it still does not stop.  I have uninstalled all apps that did not come installed.  I have scanned with all the following:

 

spybot

TDSSKiller.exe

http://support.kaspersky.com/viruses/solutions?qid=208280684

https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/

http://www.superantispyware.com/portablescanner.html?tag=SAS_HOMEPAGE

Microsoft Malicious Removal Tool

http://info.prevx.com/downloadcsi.asp?prevx=Y

http://www.surfright.nl/en/hitmanpro

http://www.eset.com/onlinescan/

http://www.microsoft.com/security/scanner/en-us/default.aspx

http://www.kaspersky.com/virusscanner

mcafee

http://housecall.trendmicro.com/

 

...and they all come up empty.

 

It is a Toshiba Satellite with Windows 7.

 

I am requesting help to find out what this is and stop it.  Thank-you.



BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 55,408 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:06 AM

Posted 20 August 2013 - 05:39 PM

Try clearing your browser cache of all files.

 

How to Clear Your Browser's Cache (with screenshots) - wikiHow - http://www.wikihow.com/Clear-Your-Browser's-Cache

I've had this happen to me when visiting a safe site and concluded that the audio file uploaded by the site  remained in my cache.  Dumping the cache eliminated the unwanted audio, in my case.

 

In case that brings no joy...I'm moving this to the Am I Infected forum.

 

Louis



#3 ray5450

ray5450
  • Topic Starter

  • Members
  • 455 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:06 AM

Posted 20 August 2013 - 10:35 PM

I'm sorry, I forgot to include that in the above list.  That is one of the first things I did.  In fact, I went further and uninstalled and manually deleted every folder associated with Firefox, then reinstalled from scratch, and it still plays.



#4 ray5450

ray5450
  • Topic Starter

  • Members
  • 455 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:06 AM

Posted 25 August 2013 - 08:16 AM

I have thought some more, and I do not know what else I could try.


Edited by ray5450, 25 August 2013 - 08:16 AM.


#5 ray5450

ray5450
  • Topic Starter

  • Members
  • 455 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:06 AM

Posted 01 September 2013 - 10:20 PM

I was wondering....am I infected?



#6 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:06 PM

Posted 01 September 2013 - 10:35 PM

Hello -

Download Security Check by Screen317
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If any security program requests permission to access the Internet, allow it to do so.

 

Do not continue past here unless you have had a Reply

We need the Security Check First .........

In reply #1 only have Security Check details -

 

 

Thanks -

 

Text Removed -


Edited by noknojon, 02 September 2013 - 04:40 AM.


#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:06 PM

Posted 02 September 2013 - 04:34 PM

Hello ray -

Have you managed to fix the problem, or do you still want help ??

 

Thank You -



#8 ray5450

ray5450
  • Topic Starter

  • Members
  • 455 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:06 AM

Posted 02 September 2013 - 10:31 PM

I left that computer for someone to look at.  As soon as I have it, I will continue as you suggest.  Thanks.



#9 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:06 PM

Posted 03 September 2013 - 01:13 AM

Thnks for updating -

I will leave it on watch for a week, and wait for your reply -

 

Regards -



#10 ray5450

ray5450
  • Topic Starter

  • Members
  • 455 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:06 AM

Posted 10 September 2013 - 02:40 PM

Here are the results of Security Check:

Results of screen317's Security Check version 0.99.73
Windows 7 Service Pack 1 x64 (UAC is disabled!)
Internet Explorer 10
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
WMI entry may not exist for antivirus; attempting automatic update.
`````````Anti-malware/Other Utilities Check:`````````
Spybot - Search & Destroy
Malwarebytes Anti-Malware version 1.75.0.1300
Java™ 6 Update 25
Java version out of Date!
Adobe Flash Player 11.7.700.224
Mozilla Firefox (23.0.1)
````````Process Check: objlist.exe by Laurent````````
Xyvos Antivirus XyvosAVSvc.exe
Xyvos whiteList Antivirus XyvosWListAVSvc.exe
Xyvos whiteList Antivirus XyvosWListAVUI.exe
Kaspersky Lab Kaspersky Security Scan 2.0 kss.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: 13% Defragment your hard drive soon! (Do NOT defrag if SSD!)
````````````````````End of Log``````````````````````


#11 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:06 PM

Posted 10 September 2013 - 04:41 PM

Hello -

If the problem has not altered, please try this -

 

Please download Rkill (courtesy of BleepingComputer.com) to your desktop.
There are 2 different versions. If one of them won't run then download and try to run the other one.
You only need to get one of these to run, not all of them.
NOTE : You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.
rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista or Windows 7 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.
  • If normal mode still doesn't work, run the tool from safe mode.

When the scan is done Notepad will open with rKill log.
Post it in your next reply.
NOTE. rKill.txt log will also be present on your desktop.
NOTE Do NOT wrap your logs in "quote" or "code" brackets.

 

 

 

Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.

 

 

Thanks -



#12 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:06 PM

Posted 10 September 2013 - 07:35 PM

Java™ 6 Update 25
Java version out of Date! Visit - HERE for Java Version7 Update25
Delete all older versions of Java that may be installed.

NOTE > >

Total Fragmentation on Drive C: 13%> Defragment your hard drive soon! (Do NOT defrag if SSD!)



#13 ray5450

ray5450
  • Topic Starter

  • Members
  • 455 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:06 AM

Posted 12 September 2013 - 04:05 PM

This issue has taken another turn.  After doing the Security Check, I went online, and to unmute the audio to check if it was still "talking".  Over the Muted/Sound tray icon, it now says, "No Audio Output Device is installed".  I went into Device Manger, but there is nothing marked as not working.  Under Sound... there is "Intel Display Audio" and it is working...so there is no audio at all now.  (?)

 

Because of this additional occurrence, I have not done the rkill or tdsskiller until I hear from you.  Thanks.


Edited by ray5450, 12 September 2013 - 04:06 PM.


#14 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:09:06 PM

Posted 12 September 2013 - 04:26 PM

Hi -

Please run the listed programs

 

Thank You -



#15 ray5450

ray5450
  • Topic Starter

  • Members
  • 455 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:06 AM

Posted 12 September 2013 - 08:38 PM

rkill log:

Rkill 2.6.1 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 09/12/2013 08:21:17 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * No malware processes found to kill.

Checking Registry for malware related settings:

 * Explorer Policy Removed:  NoActiveDesktopChanges [HKLM]

Backup Registry file created at:
 C:\Users\Caden\Desktop\rkill\rkill-09-12-2013-08-21-25.reg

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * No issues found.

Checking Windows Service Integrity:

 * No issues found.

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 09/12/2013 09:10:22 PM
Execution time: 0 hours(s), 49 minute(s), and 4 seconds(s)
 

******************************************************************************************

tdsskiller produced 2 logs:

21:18:55.0656 0x1a4cec  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
21:18:57.0746 0x1a4cec  ============================================================
21:18:57.0746 0x1a4cec  Current date / time: 2013/09/12 21:18:57.0746
21:18:57.0746 0x1a4cec  SystemInfo:
21:18:57.0746 0x1a4cec  
21:18:57.0746 0x1a4cec  OS Version: 6.1.7601 ServicePack: 1.0
21:18:57.0746 0x1a4cec  Product type: Workstation
21:18:57.0746 0x1a4cec  ComputerName: CADEN-PC
21:18:57.0746 0x1a4cec  UserName: Caden
21:18:57.0746 0x1a4cec  Windows directory: C:\windows
21:18:57.0746 0x1a4cec  System windows directory: C:\windows
21:18:57.0746 0x1a4cec  Running under WOW64
21:18:57.0746 0x1a4cec  Processor architecture: Intel x64
21:18:57.0746 0x1a4cec  Number of processors: 2
21:18:57.0746 0x1a4cec  Page size: 0x1000
21:18:57.0746 0x1a4cec  Boot type: Normal boot
21:18:57.0746 0x1a4cec  ============================================================
21:19:00.0086 0x1a4cec  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:19:00.0320 0x1a4cec  ============================================================
21:19:00.0320 0x1a4cec  \Device\Harddisk0\DR0:
21:19:00.0352 0x1a4cec  MBR partitions:
21:19:00.0352 0x1a4cec  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x48AD5800
21:19:00.0352 0x1a4cec  ============================================================
21:19:00.0586 0x1a4cec  C: <-> \Device\Harddisk0\DR0\Partition1
21:19:01.0178 0x1a4cec  ============================================================
21:19:01.0178 0x1a4cec  Initialize success
21:19:01.0178 0x1a4cec  ============================================================
21:19:26.0840 0x1a566c  ============================================================
21:19:26.0840 0x1a566c  Scan started
21:19:26.0840 0x1a566c  Mode: Manual; TDLFS;
21:19:26.0840 0x1a566c  ============================================================
21:19:30.0257 0x1a566c  ================ Scan system memory ========================
21:19:30.0257 0x1a566c  System memory - ok
21:19:30.0257 0x1a566c  ================ Scan services =============================
21:19:30.0522 0x1a566c  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
21:19:30.0522 0x1a566c  1394ohci - ok
21:19:30.0584 0x1a566c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\windows\system32\drivers\ACPI.sys
21:19:30.0584 0x1a566c  ACPI - ok
21:19:30.0631 0x1a566c  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
21:19:30.0631 0x1a566c  AcpiPmi - ok
21:19:30.0772 0x1a566c  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:19:30.0772 0x1a566c  AdobeFlashPlayerUpdateSvc - ok
21:19:30.0850 0x1a566c  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
21:19:30.0850 0x1a566c  adp94xx - ok
21:19:30.0912 0x1a566c  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\drivers\adpahci.sys
21:19:30.0928 0x1a566c  adpahci - ok
21:19:30.0959 0x1a566c  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\drivers\adpu320.sys
21:19:30.0959 0x1a566c  adpu320 - ok
21:19:30.0990 0x1a566c  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
21:19:30.0990 0x1a566c  AeLookupSvc - ok
21:19:31.0084 0x1a566c  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\windows\system32\drivers\afd.sys
21:19:31.0099 0x1a566c  AFD - ok
21:19:31.0162 0x1a566c  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\drivers\agp440.sys
21:19:31.0162 0x1a566c  agp440 - ok
21:19:31.0240 0x1a566c  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
21:19:31.0240 0x1a566c  ALG - ok
21:19:31.0302 0x1a566c  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\drivers\aliide.sys
21:19:31.0302 0x1a566c  aliide - ok
21:19:31.0318 0x1a566c  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\drivers\amdide.sys
21:19:31.0318 0x1a566c  amdide - ok
21:19:31.0380 0x1a566c  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
21:19:31.0396 0x1a566c  AmdK8 - ok
21:19:31.0411 0x1a566c  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
21:19:31.0411 0x1a566c  AmdPPM - ok
21:19:31.0458 0x1a566c  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\windows\system32\drivers\amdsata.sys
21:19:31.0458 0x1a566c  amdsata - ok
21:19:31.0474 0x1a566c  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
21:19:31.0489 0x1a566c  amdsbs - ok
21:19:31.0505 0x1a566c  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\windows\system32\drivers\amdxata.sys
21:19:31.0505 0x1a566c  amdxata - ok
21:19:31.0552 0x1a566c  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\windows\system32\drivers\appid.sys
21:19:31.0552 0x1a566c  AppID - ok
21:19:31.0583 0x1a566c  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
21:19:31.0583 0x1a566c  AppIDSvc - ok
21:19:31.0661 0x1a566c  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\windows\System32\appinfo.dll
21:19:31.0661 0x1a566c  Appinfo - ok
21:19:31.0786 0x1a566c  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:19:31.0786 0x1a566c  Apple Mobile Device - ok
21:19:31.0848 0x1a566c  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\drivers\arc.sys
21:19:31.0848 0x1a566c  arc - ok
21:19:31.0848 0x1a566c  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\drivers\arcsas.sys
21:19:31.0848 0x1a566c  arcsas - ok
21:19:31.0988 0x1a566c  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:19:32.0004 0x1a566c  aspnet_state - ok
21:19:32.0051 0x1a566c  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
21:19:32.0051 0x1a566c  AsyncMac - ok
21:19:32.0082 0x1a566c  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\drivers\atapi.sys
21:19:32.0129 0x1a566c  atapi - ok
21:19:32.0176 0x1a566c  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
21:19:32.0191 0x1a566c  AudioEndpointBuilder - ok
21:19:32.0191 0x1a566c  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\windows\System32\Audiosrv.dll
21:19:32.0207 0x1a566c  AudioSrv - ok
21:19:32.0269 0x1a566c  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\windows\System32\AxInstSV.dll
21:19:32.0269 0x1a566c  AxInstSV - ok
21:19:32.0347 0x1a566c  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
21:19:32.0347 0x1a566c  b06bdrv - ok
21:19:32.0394 0x1a566c  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
21:19:32.0394 0x1a566c  b57nd60a - ok
21:19:32.0456 0x1a566c  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
21:19:32.0456 0x1a566c  BDESVC - ok
21:19:32.0503 0x1a566c  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
21:19:32.0503 0x1a566c  Beep - ok
21:19:32.0566 0x1a566c  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\windows\System32\bfe.dll
21:19:32.0581 0x1a566c  BFE - ok
21:19:32.0612 0x1a566c  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\windows\System32\qmgr.dll
21:19:32.0722 0x1a566c  BITS - ok
21:19:32.0753 0x1a566c  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
21:19:32.0753 0x1a566c  blbdrive - ok
21:19:32.0800 0x1a566c  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
21:19:32.0800 0x1a566c  bowser - ok
21:19:32.0862 0x1a566c  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
21:19:32.0862 0x1a566c  BrFiltLo - ok
21:19:32.0878 0x1a566c  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
21:19:32.0878 0x1a566c  BrFiltUp - ok
21:19:32.0909 0x1a566c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\windows\System32\browser.dll
21:19:32.0940 0x1a566c  Browser - ok
21:19:32.0956 0x1a566c  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
21:19:32.0987 0x1a566c  Brserid - ok
21:19:33.0002 0x1a566c  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
21:19:33.0002 0x1a566c  BrSerWdm - ok
21:19:33.0018 0x1a566c  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
21:19:33.0018 0x1a566c  BrUsbMdm - ok
21:19:33.0034 0x1a566c  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
21:19:33.0034 0x1a566c  BrUsbSer - ok
21:19:33.0049 0x1a566c  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
21:19:33.0112 0x1a566c  BTHMODEM - ok
21:19:33.0205 0x1a566c  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
21:19:33.0205 0x1a566c  bthserv - ok
21:19:33.0252 0x1a566c  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
21:19:33.0252 0x1a566c  cdfs - ok
21:19:33.0377 0x1a566c  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
21:19:33.0377 0x1a566c  cdrom - ok
21:19:33.0470 0x1a566c  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\windows\System32\certprop.dll
21:19:33.0470 0x1a566c  CertPropSvc - ok
21:19:33.0564 0x1a566c  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\drivers\circlass.sys
21:19:33.0580 0x1a566c  circlass - ok
21:19:33.0642 0x1a566c  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
21:19:33.0658 0x1a566c  CLFS - ok
21:19:33.0767 0x1a566c  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:19:33.0767 0x1a566c  clr_optimization_v2.0.50727_32 - ok
21:19:33.0814 0x1a566c  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:19:33.0814 0x1a566c  clr_optimization_v2.0.50727_64 - ok
21:19:34.0016 0x1a566c  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:19:34.0219 0x1a566c  clr_optimization_v4.0.30319_32 - ok
21:19:34.0360 0x1a566c  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:19:34.0406 0x1a566c  clr_optimization_v4.0.30319_64 - ok
21:19:34.0469 0x1a566c  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
21:19:34.0469 0x1a566c  CmBatt - ok
21:19:34.0516 0x1a566c  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\drivers\cmdide.sys
21:19:34.0516 0x1a566c  cmdide - ok
21:19:34.0562 0x1a566c  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\windows\system32\Drivers\cng.sys
21:19:34.0562 0x1a566c  CNG - ok
21:19:34.0640 0x1a566c  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
21:19:34.0640 0x1a566c  Compbatt - ok
21:19:34.0718 0x1a566c  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
21:19:34.0718 0x1a566c  CompositeBus - ok
21:19:34.0750 0x1a566c  COMSysApp - ok
21:19:34.0796 0x1a566c  [ 723E3512D6D1FF75E5398981B38FCEF7 ] cphs            C:\windows\SysWow64\IntelCpHeciSvc.exe
21:19:34.0828 0x1a566c  cphs - ok
21:19:34.0874 0x1a566c  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
21:19:34.0874 0x1a566c  crcdisk - ok
21:19:34.0937 0x1a566c  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\windows\system32\cryptsvc.dll
21:19:34.0937 0x1a566c  CryptSvc - ok
21:19:35.0046 0x1a566c  [ FD557A50A65E44041CD2FCEF4BEB04DB ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
21:19:35.0093 0x1a566c  cvhsvc - ok
21:19:35.0155 0x1a566c  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\windows\system32\rpcss.dll
21:19:35.0155 0x1a566c  DcomLaunch - ok
21:19:35.0186 0x1a566c  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\windows\System32\defragsvc.dll
21:19:35.0202 0x1a566c  defragsvc - ok
21:19:35.0218 0x1a566c  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
21:19:35.0218 0x1a566c  DfsC - ok
21:19:35.0280 0x1a566c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\windows\system32\dhcpcore.dll
21:19:35.0280 0x1a566c  Dhcp - ok
21:19:35.0296 0x1a566c  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
21:19:35.0296 0x1a566c  discache - ok
21:19:35.0358 0x1a566c  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\drivers\disk.sys
21:19:35.0358 0x1a566c  Disk - ok
21:19:35.0405 0x1a566c  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\windows\System32\dnsrslvr.dll
21:19:35.0405 0x1a566c  Dnscache - ok
21:19:35.0436 0x1a566c  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\windows\System32\dot3svc.dll
21:19:35.0436 0x1a566c  dot3svc - ok
21:19:35.0452 0x1a566c  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\windows\system32\dps.dll
21:19:35.0452 0x1a566c  DPS - ok
21:19:35.0576 0x1a566c  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
21:19:35.0576 0x1a566c  drmkaud - ok
21:19:35.0670 0x1a566c  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
21:19:35.0670 0x1a566c  DXGKrnl - ok
21:19:35.0701 0x1a566c  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
21:19:35.0701 0x1a566c  EapHost - ok
21:19:35.0904 0x1a566c  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\drivers\evbda.sys
21:19:35.0966 0x1a566c  ebdrv - ok
21:19:36.0013 0x1a566c  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\windows\System32\lsass.exe
21:19:36.0013 0x1a566c  EFS - ok
21:19:36.0076 0x1a566c  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
21:19:36.0076 0x1a566c  ehRecvr - ok
21:19:36.0107 0x1a566c  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
21:19:36.0107 0x1a566c  ehSched - ok
21:19:36.0154 0x1a566c  [ 551B74D84F9EAE4B03544CE107BC2745 ] ElgatoGC658Y    C:\windows\system32\Drivers\ElgatoGC658.sys
21:19:36.0169 0x1a566c  ElgatoGC658Y - ok
21:19:36.0216 0x1a566c  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\drivers\elxstor.sys
21:19:36.0247 0x1a566c  elxstor - ok
21:19:36.0278 0x1a566c  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\drivers\errdev.sys
21:19:36.0278 0x1a566c  ErrDev - ok
21:19:36.0325 0x1a566c  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
21:19:36.0325 0x1a566c  EventSystem - ok
21:19:36.0356 0x1a566c  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
21:19:36.0356 0x1a566c  exfat - ok
21:19:36.0388 0x1a566c  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
21:19:36.0388 0x1a566c  fastfat - ok
21:19:36.0434 0x1a566c  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\windows\system32\fxssvc.exe
21:19:36.0450 0x1a566c  Fax - ok
21:19:36.0466 0x1a566c  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\drivers\fdc.sys
21:19:36.0466 0x1a566c  fdc - ok
21:19:36.0512 0x1a566c  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
21:19:36.0512 0x1a566c  fdPHost - ok
21:19:36.0528 0x1a566c  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
21:19:36.0528 0x1a566c  FDResPub - ok
21:19:36.0559 0x1a566c  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
21:19:36.0559 0x1a566c  FileInfo - ok
21:19:36.0559 0x1a566c  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
21:19:36.0559 0x1a566c  Filetrace - ok
21:19:36.0590 0x1a566c  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
21:19:36.0590 0x1a566c  flpydisk - ok
21:19:36.0622 0x1a566c  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
21:19:36.0668 0x1a566c  FltMgr - ok
21:19:37.0261 0x1a566c  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\windows\system32\FntCache.dll
21:19:37.0355 0x1a566c  FontCache - ok
21:19:37.0402 0x1a566c  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:19:37.0402 0x1a566c  FontCache3.0.0.0 - ok
21:19:37.0417 0x1a566c  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
21:19:37.0417 0x1a566c  FsDepends - ok
21:19:37.0448 0x1a566c  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
21:19:37.0448 0x1a566c  Fs_Rec - ok
21:19:37.0511 0x1a566c  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
21:19:37.0511 0x1a566c  fvevol - ok
21:19:37.0573 0x1a566c  [ 60ACB128E64C35C2B4E4AAB1B0A5C293 ] FwLnk           C:\windows\system32\DRIVERS\FwLnk.sys
21:19:37.0573 0x1a566c  FwLnk - ok
21:19:37.0620 0x1a566c  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
21:19:37.0620 0x1a566c  gagp30kx - ok
21:19:37.0667 0x1a566c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\windows\System32\gpsvc.dll
21:19:37.0682 0x1a566c  gpsvc - ok
21:19:37.0698 0x1a566c  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
21:19:37.0714 0x1a566c  hcw85cir - ok
21:19:37.0760 0x1a566c  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
21:19:37.0760 0x1a566c  HdAudAddService - ok
21:19:37.0792 0x1a566c  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
21:19:37.0792 0x1a566c  HDAudBus - ok
21:19:37.0792 0x1a566c  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
21:19:37.0792 0x1a566c  HidBatt - ok
21:19:37.0807 0x1a566c  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\drivers\hidbth.sys
21:19:37.0807 0x1a566c  HidBth - ok
21:19:37.0823 0x1a566c  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\drivers\hidir.sys
21:19:37.0823 0x1a566c  HidIr - ok
21:19:37.0854 0x1a566c  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\system32\hidserv.dll
21:19:37.0854 0x1a566c  hidserv - ok
21:19:37.0916 0x1a566c  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
21:19:37.0916 0x1a566c  HidUsb - ok
21:19:37.0932 0x1a566c  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\windows\system32\kmsvc.dll
21:19:37.0948 0x1a566c  hkmsvc - ok
21:19:38.0010 0x1a566c  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
21:19:38.0010 0x1a566c  HomeGroupListener - ok
21:19:38.0041 0x1a566c  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
21:19:38.0041 0x1a566c  HomeGroupProvider - ok
21:19:38.0072 0x1a566c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
21:19:38.0088 0x1a566c  HpSAMD - ok
21:19:38.0104 0x1a566c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\windows\system32\drivers\HTTP.sys
21:19:38.0119 0x1a566c  HTTP - ok
21:19:38.0135 0x1a566c  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
21:19:38.0150 0x1a566c  hwpolicy - ok
21:19:38.0150 0x1a566c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
21:19:38.0150 0x1a566c  i8042prt - ok
21:19:38.0182 0x1a566c  [ C224331A54571C8C9162F7714400BBBD ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
21:19:38.0182 0x1a566c  iaStor - ok
21:19:38.0228 0x1a566c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
21:19:38.0228 0x1a566c  iaStorV - ok
21:19:38.0291 0x1a566c  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:19:38.0291 0x1a566c  idsvc - ok
21:19:38.0774 0x1a566c  [ 9AA61DC7AA32C1D1260C4267FF07E0C1 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
21:19:39.0040 0x1a566c  igfx - ok
21:19:39.0102 0x1a566c  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\drivers\iirsp.sys
21:19:39.0102 0x1a566c  iirsp - ok
21:19:39.0180 0x1a566c  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\windows\System32\ikeext.dll
21:19:39.0196 0x1a566c  IKEEXT - ok
21:19:39.0336 0x1a566c  [ F242E36CDA231701CFA702641C20FAEC ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
21:19:39.0414 0x1a566c  IntcAzAudAddService - ok
21:19:39.0508 0x1a566c  [ 6C9FFFECA9FED31347D211C5D1FFBD2D ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
21:19:39.0508 0x1a566c  IntcDAud - ok
21:19:39.0601 0x1a566c  [ 7C76466F4E0F76CE259C6005D161E9E8 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:19:39.0617 0x1a566c  Intel® Capability Licensing Service Interface - ok
21:19:39.0726 0x1a566c  [ D7467E57549960468E0CA85C17185B12 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
21:19:39.0726 0x1a566c  Intel® ME Service - ok
21:19:39.0789 0x1a566c  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\drivers\intelide.sys
21:19:39.0789 0x1a566c  intelide - ok
21:19:39.0882 0x1a566c  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
21:19:39.0898 0x1a566c  intelppm - ok
21:19:39.0945 0x1a566c  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
21:19:39.0945 0x1a566c  IPBusEnum - ok
21:19:40.0023 0x1a566c  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
21:19:40.0038 0x1a566c  IpFilterDriver - ok
21:19:40.0101 0x1a566c  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
21:19:40.0101 0x1a566c  iphlpsvc - ok
21:19:40.0101 0x1a566c  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
21:19:40.0116 0x1a566c  IPMIDRV - ok
21:19:40.0147 0x1a566c  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
21:19:40.0147 0x1a566c  IPNAT - ok
21:19:40.0194 0x1a566c  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
21:19:40.0194 0x1a566c  IRENUM - ok
21:19:40.0225 0x1a566c  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\drivers\isapnp.sys
21:19:40.0225 0x1a566c  isapnp - ok
21:19:40.0257 0x1a566c  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
21:19:40.0257 0x1a566c  iScsiPrt - ok
21:19:40.0319 0x1a566c  [ 8E4577C6E0D3114170509159DE658907 ] iusb3hcs        C:\windows\system32\DRIVERS\iusb3hcs.sys
21:19:40.0319 0x1a566c  iusb3hcs - ok
21:19:40.0366 0x1a566c  [ FE76346E9B57DA575BD1B3BD0CCAD7FF ] iusb3hub        C:\windows\system32\DRIVERS\iusb3hub.sys
21:19:40.0366 0x1a566c  iusb3hub - ok
21:19:40.0397 0x1a566c  [ 1008CD90DA2198FFD250298DEB9DF160 ] iusb3xhc        C:\windows\system32\DRIVERS\iusb3xhc.sys
21:19:40.0397 0x1a566c  iusb3xhc - ok
21:19:40.0475 0x1a566c  [ 604A8615BB3D7064197A0563C799B938 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
21:19:40.0475 0x1a566c  jhi_service - ok
21:19:40.0522 0x1a566c  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
21:19:40.0522 0x1a566c  kbdclass - ok
21:19:40.0569 0x1a566c  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys
21:19:40.0569 0x1a566c  kbdhid - ok
21:19:40.0615 0x1a566c  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\windows\system32\lsass.exe
21:19:40.0615 0x1a566c  KeyIso - ok
21:19:40.0647 0x1a566c  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
21:19:40.0647 0x1a566c  KSecDD - ok
21:19:40.0662 0x1a566c  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
21:19:40.0678 0x1a566c  KSecPkg - ok
21:19:40.0693 0x1a566c  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
21:19:40.0693 0x1a566c  ksthunk - ok
21:19:40.0756 0x1a566c  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
21:19:40.0756 0x1a566c  KtmRm - ok
21:19:40.0818 0x1a566c  [ 3CE6A9BEF066BF9488E6BC4D6C62F77E ] L1C             C:\windows\system32\DRIVERS\L1C62x64.sys
21:19:40.0818 0x1a566c  L1C - ok
21:19:40.0865 0x1a566c  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\windows\system32\srvsvc.dll
21:19:40.0881 0x1a566c  LanmanServer - ok
21:19:40.0912 0x1a566c  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
21:19:40.0912 0x1a566c  LanmanWorkstation - ok
21:19:40.0990 0x1a566c  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
21:19:40.0990 0x1a566c  lltdio - ok
21:19:41.0021 0x1a566c  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
21:19:41.0021 0x1a566c  lltdsvc - ok
21:19:41.0068 0x1a566c  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
21:19:41.0068 0x1a566c  lmhosts - ok
21:19:41.0146 0x1a566c  [ AB41542FA180CB3317F597ED7E7D5C5D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:19:41.0161 0x1a566c  LMS - ok
21:19:41.0208 0x1a566c  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
21:19:41.0208 0x1a566c  LSI_FC - ok
21:19:41.0239 0x1a566c  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
21:19:41.0239 0x1a566c  LSI_SAS - ok
21:19:41.0239 0x1a566c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
21:19:41.0239 0x1a566c  LSI_SAS2 - ok
21:19:41.0255 0x1a566c  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
21:19:41.0271 0x1a566c  LSI_SCSI - ok
21:19:41.0286 0x1a566c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
21:19:41.0286 0x1a566c  luafv - ok
21:19:41.0395 0x1a566c  [ DDCC236009C707761D60E5C76D639176 ] McComponentHostService C:\Program Files (x86)\McAfee Security Scan\3.0.318\McCHSvc.exe
21:19:41.0395 0x1a566c  McComponentHostService - ok
21:19:41.0442 0x1a566c  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
21:19:41.0458 0x1a566c  Mcx2Svc - ok
21:19:41.0473 0x1a566c  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\drivers\megasas.sys
21:19:41.0473 0x1a566c  megasas - ok
21:19:41.0489 0x1a566c  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
21:19:41.0505 0x1a566c  MegaSR - ok
21:19:41.0551 0x1a566c  [ 6B01B7414A105B9E51652089A03027CF ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
21:19:41.0551 0x1a566c  MEIx64 - ok
21:19:41.0614 0x1a566c  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
21:19:41.0614 0x1a566c  MMCSS - ok
21:19:41.0645 0x1a566c  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
21:19:41.0645 0x1a566c  Modem - ok
21:19:41.0676 0x1a566c  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
21:19:41.0676 0x1a566c  monitor - ok
21:19:41.0692 0x1a566c  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
21:19:41.0692 0x1a566c  mouclass - ok
21:19:41.0692 0x1a566c  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
21:19:41.0692 0x1a566c  mouhid - ok
21:19:41.0723 0x1a566c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
21:19:41.0723 0x1a566c  mountmgr - ok
21:19:41.0832 0x1a566c  [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:19:41.0832 0x1a566c  MozillaMaintenance - ok
21:19:41.0910 0x1a566c  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\windows\system32\drivers\mpio.sys
21:19:41.0910 0x1a566c  mpio - ok
21:19:41.0973 0x1a566c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
21:19:41.0973 0x1a566c  mpsdrv - ok
21:19:42.0035 0x1a566c  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\windows\system32\mpssvc.dll
21:19:42.0035 0x1a566c  MpsSvc - ok
21:19:42.0082 0x1a566c  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
21:19:42.0082 0x1a566c  MRxDAV - ok
21:19:42.0129 0x1a566c  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
21:19:42.0129 0x1a566c  mrxsmb - ok
21:19:42.0175 0x1a566c  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
21:19:42.0175 0x1a566c  mrxsmb10 - ok
21:19:42.0207 0x1a566c  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
21:19:42.0207 0x1a566c  mrxsmb20 - ok
21:19:42.0238 0x1a566c  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\windows\system32\drivers\msahci.sys
21:19:42.0238 0x1a566c  msahci - ok
21:19:42.0269 0x1a566c  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\windows\system32\drivers\msdsm.sys
21:19:42.0269 0x1a566c  msdsm - ok
21:19:42.0300 0x1a566c  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
21:19:42.0300 0x1a566c  MSDTC - ok
21:19:42.0363 0x1a566c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
21:19:42.0363 0x1a566c  Msfs - ok
21:19:42.0409 0x1a566c  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
21:19:42.0409 0x1a566c  mshidkmdf - ok
21:19:42.0409 0x1a566c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
21:19:42.0409 0x1a566c  msisadrv - ok
21:19:42.0472 0x1a566c  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
21:19:42.0472 0x1a566c  MSiSCSI - ok
21:19:42.0487 0x1a566c  msiserver - ok
21:19:42.0550 0x1a566c  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
21:19:42.0550 0x1a566c  MSKSSRV - ok
21:19:42.0565 0x1a566c  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
21:19:42.0565 0x1a566c  MSPCLOCK - ok
21:19:42.0581 0x1a566c  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
21:19:42.0581 0x1a566c  MSPQM - ok
21:19:42.0612 0x1a566c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
21:19:42.0628 0x1a566c  MsRPC - ok
21:19:42.0643 0x1a566c  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
21:19:42.0643 0x1a566c  mssmbios - ok
21:19:42.0690 0x1a566c  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
21:19:42.0690 0x1a566c  MSTEE - ok
21:19:42.0706 0x1a566c  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
21:19:42.0706 0x1a566c  MTConfig - ok
21:19:42.0721 0x1a566c  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
21:19:42.0721 0x1a566c  Mup - ok
21:19:42.0753 0x1a566c  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\windows\system32\qagentRT.dll
21:19:42.0753 0x1a566c  napagent - ok
21:19:42.0815 0x1a566c  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
21:19:42.0831 0x1a566c  NativeWifiP - ok
21:19:42.0909 0x1a566c  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\windows\system32\drivers\ndis.sys
21:19:42.0924 0x1a566c  NDIS - ok
21:19:42.0971 0x1a566c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
21:19:42.0971 0x1a566c  NdisCap - ok
21:19:43.0018 0x1a566c  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
21:19:43.0018 0x1a566c  NdisTapi - ok
21:19:43.0033 0x1a566c  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
21:19:43.0033 0x1a566c  Ndisuio - ok
21:19:43.0049 0x1a566c  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
21:19:43.0065 0x1a566c  NdisWan - ok
21:19:43.0065 0x1a566c  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
21:19:43.0065 0x1a566c  NDProxy - ok
21:19:43.0065 0x1a566c  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
21:19:43.0080 0x1a566c  NetBIOS - ok
21:19:43.0096 0x1a566c  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
21:19:43.0096 0x1a566c  NetBT - ok
21:19:43.0143 0x1a566c  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\windows\system32\lsass.exe
21:19:43.0143 0x1a566c  Netlogon - ok
21:19:43.0205 0x1a566c  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
21:19:43.0205 0x1a566c  Netman - ok
21:19:43.0283 0x1a566c  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:19:43.0299 0x1a566c  NetMsmqActivator - ok
21:19:43.0299 0x1a566c  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:19:43.0299 0x1a566c  NetPipeActivator - ok
21:19:43.0345 0x1a566c  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
21:19:43.0345 0x1a566c  netprofm - ok
21:19:43.0377 0x1a566c  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:19:43.0377 0x1a566c  NetTcpActivator - ok
21:19:43.0377 0x1a566c  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:19:43.0377 0x1a566c  NetTcpPortSharing - ok
21:19:43.0423 0x1a566c  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
21:19:43.0423 0x1a566c  nfrd960 - ok
21:19:43.0486 0x1a566c  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\windows\System32\nlasvc.dll
21:19:43.0501 0x1a566c  NlaSvc - ok
21:19:43.0501 0x1a566c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
21:19:43.0501 0x1a566c  Npfs - ok
21:19:43.0564 0x1a566c  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
21:19:43.0564 0x1a566c  nsi - ok
21:19:43.0595 0x1a566c  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
21:19:43.0595 0x1a566c  nsiproxy - ok
21:19:43.0657 0x1a566c  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
21:19:43.0673 0x1a566c  Ntfs - ok
21:19:43.0735 0x1a566c  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
21:19:43.0735 0x1a566c  Null - ok
21:19:43.0782 0x1a566c  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\windows\system32\drivers\nvraid.sys
21:19:43.0782 0x1a566c  nvraid - ok
21:19:43.0798 0x1a566c  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\windows\system32\drivers\nvstor.sys
21:19:43.0813 0x1a566c  nvstor - ok
21:19:43.0876 0x1a566c  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
21:19:43.0876 0x1a566c  nv_agp - ok
21:19:43.0907 0x1a566c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
21:19:43.0907 0x1a566c  ohci1394 - ok
21:19:44.0001 0x1a566c  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:19:44.0032 0x1a566c  ose - ok
21:19:44.0219 0x1a566c  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:19:44.0359 0x1a566c  osppsvc - ok
21:19:44.0422 0x1a566c  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
21:19:44.0422 0x1a566c  p2pimsvc - ok
21:19:44.0453 0x1a566c  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
21:19:44.0453 0x1a566c  p2psvc - ok
21:19:44.0484 0x1a566c  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\drivers\parport.sys
21:19:44.0484 0x1a566c  Parport - ok
21:19:44.0515 0x1a566c  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\windows\system32\drivers\partmgr.sys
21:19:44.0515 0x1a566c  partmgr - ok
21:19:44.0547 0x1a566c  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
21:19:44.0562 0x1a566c  PcaSvc - ok
21:19:44.0609 0x1a566c  [ 2F86BE1818C2D7AC90478E3323EE7FCB ] PCCUJobMgr      C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.17.38\ccSvcHst.exe
21:19:44.0609 0x1a566c  PCCUJobMgr - ok
21:19:44.0656 0x1a566c  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\windows\system32\drivers\pci.sys
21:19:44.0656 0x1a566c  pci - ok
21:19:44.0687 0x1a566c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\drivers\pciide.sys
21:19:44.0687 0x1a566c  pciide - ok
21:19:44.0703 0x1a566c  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
21:19:44.0703 0x1a566c  pcmcia - ok
21:19:44.0781 0x1a566c  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
21:19:44.0796 0x1a566c  pcw - ok
21:19:44.0890 0x1a566c  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
21:19:44.0890 0x1a566c  PEAUTH - ok
21:19:45.0015 0x1a566c  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
21:19:45.0030 0x1a566c  PerfHost - ok
21:19:45.0139 0x1a566c  [ 91111CEBBDE8015E822C46120ED9537C ] PGEffect        C:\windows\system32\DRIVERS\pgeffect.sys
21:19:45.0139 0x1a566c  PGEffect - ok
21:19:45.0233 0x1a566c  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\windows\system32\pla.dll
21:19:45.0249 0x1a566c  pla - ok
21:19:45.0295 0x1a566c  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
21:19:45.0295 0x1a566c  PlugPlay - ok
21:19:45.0327 0x1a566c  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
21:19:45.0327 0x1a566c  PNRPAutoReg - ok
21:19:45.0389 0x1a566c  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
21:19:45.0389 0x1a566c  PNRPsvc - ok
21:19:45.0420 0x1a566c  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
21:19:45.0436 0x1a566c  PolicyAgent - ok
21:19:45.0467 0x1a566c  [ A2CCA4FB273E6050F17A0A416CFF2FCD ] Power           C:\windows\system32\umpo.dll
21:19:45.0467 0x1a566c  Power - ok
21:19:45.0592 0x1a566c  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
21:19:45.0592 0x1a566c  PptpMiniport - ok
21:19:45.0607 0x1a566c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\drivers\processr.sys
21:19:45.0607 0x1a566c  Processor - ok
21:19:45.0701 0x1a566c  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\windows\system32\profsvc.dll
21:19:45.0701 0x1a566c  ProfSvc - ok
21:19:45.0717 0x1a566c  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\windows\system32\lsass.exe
21:19:45.0717 0x1a566c  ProtectedStorage - ok
21:19:45.0763 0x1a566c  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\windows\system32\DRIVERS\pacer.sys
21:19:45.0763 0x1a566c  Psched - ok
21:19:45.0841 0x1a566c  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\drivers\ql2300.sys
21:19:45.0857 0x1a566c  ql2300 - ok
21:19:45.0888 0x1a566c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
21:19:45.0888 0x1a566c  ql40xx - ok
21:19:45.0951 0x1a566c  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
21:19:45.0951 0x1a566c  QWAVE - ok
21:19:45.0982 0x1a566c  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
21:19:45.0982 0x1a566c  QWAVEdrv - ok
21:19:46.0013 0x1a566c  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
21:19:46.0013 0x1a566c  RasAcd - ok
21:19:46.0075 0x1a566c  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
21:19:46.0075 0x1a566c  RasAgileVpn - ok
21:19:46.0122 0x1a566c  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
21:19:46.0122 0x1a566c  RasAuto - ok
21:19:46.0138 0x1a566c  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
21:19:46.0138 0x1a566c  Rasl2tp - ok
21:19:46.0153 0x1a566c  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\windows\System32\rasmans.dll
21:19:46.0169 0x1a566c  RasMan - ok
21:19:46.0200 0x1a566c  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
21:19:46.0216 0x1a566c  RasPppoe - ok
21:19:46.0231 0x1a566c  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
21:19:46.0231 0x1a566c  RasSstp - ok
21:19:46.0247 0x1a566c  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
21:19:46.0247 0x1a566c  rdbss - ok
21:19:46.0263 0x1a566c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
21:19:46.0263 0x1a566c  rdpbus - ok
21:19:46.0309 0x1a566c  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
21:19:46.0309 0x1a566c  RDPCDD - ok
21:19:46.0309 0x1a566c  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
21:19:46.0309 0x1a566c  RDPENCDD - ok
21:19:46.0356 0x1a566c  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
21:19:46.0356 0x1a566c  RDPREFMP - ok
21:19:46.0387 0x1a566c  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
21:19:46.0387 0x1a566c  RDPWD - ok
21:19:46.0450 0x1a566c  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
21:19:46.0450 0x1a566c  rdyboost - ok
21:19:46.0512 0x1a566c  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
21:19:46.0512 0x1a566c  RemoteAccess - ok
21:19:46.0543 0x1a566c  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
21:19:46.0543 0x1a566c  RemoteRegistry - ok
21:19:46.0543 0x1a566c  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
21:19:46.0559 0x1a566c  RpcEptMapper - ok
21:19:46.0590 0x1a566c  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
21:19:46.0590 0x1a566c  RpcLocator - ok
21:19:46.0684 0x1a566c  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\windows\system32\rpcss.dll
21:19:46.0684 0x1a566c  RpcSs - ok
21:19:46.0746 0x1a566c  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
21:19:46.0746 0x1a566c  rspndr - ok
21:19:46.0809 0x1a566c  [ 36FCA0C67BCDC0DA047F5F36743B5CB9 ] RSUSBVSTOR      C:\windows\system32\Drivers\RtsUVStor.sys
21:19:46.0809 0x1a566c  RSUSBVSTOR - ok
21:19:46.0840 0x1a566c  [ F33E70E48A54A7A1BFBEEB4F3B273E4A ] RTL8192Ce       C:\windows\system32\DRIVERS\rtl8192Ce.sys
21:19:46.0855 0x1a566c  RTL8192Ce - ok
21:19:46.0871 0x1a566c  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\windows\system32\lsass.exe
21:19:46.0871 0x1a566c  SamSs - ok
21:19:46.0902 0x1a566c  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
21:19:46.0902 0x1a566c  sbp2port - ok
21:19:46.0933 0x1a566c  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
21:19:46.0949 0x1a566c  SCardSvr - ok
21:19:46.0965 0x1a566c  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
21:19:46.0965 0x1a566c  scfilter - ok
21:19:46.0996 0x1a566c  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\windows\system32\schedsvc.dll
21:19:46.0996 0x1a566c  Schedule - ok
21:19:47.0027 0x1a566c  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\windows\System32\certprop.dll
21:19:47.0043 0x1a566c  SCPolicySvc - ok
21:19:47.0058 0x1a566c  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\windows\System32\SDRSVC.dll
21:19:47.0058 0x1a566c  SDRSVC - ok
21:19:47.0121 0x1a566c  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
21:19:47.0121 0x1a566c  secdrv - ok
21:19:47.0136 0x1a566c  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\windows\system32\seclogon.dll
21:19:47.0136 0x1a566c  seclogon - ok
21:19:47.0152 0x1a566c  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\System32\sens.dll
21:19:47.0152 0x1a566c  SENS - ok
21:19:47.0199 0x1a566c  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
21:19:47.0199 0x1a566c  SensrSvc - ok
21:19:47.0245 0x1a566c  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\drivers\serenum.sys
21:19:47.0245 0x1a566c  Serenum - ok
21:19:47.0292 0x1a566c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\drivers\serial.sys
21:19:47.0292 0x1a566c  Serial - ok
21:19:47.0323 0x1a566c  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\drivers\sermouse.sys
21:19:47.0323 0x1a566c  sermouse - ok
21:19:47.0339 0x1a566c  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\windows\system32\sessenv.dll
21:19:47.0370 0x1a566c  SessionEnv - ok
21:19:47.0386 0x1a566c  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
21:19:47.0386 0x1a566c  sffdisk - ok
21:19:47.0401 0x1a566c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
21:19:47.0401 0x1a566c  sffp_mmc - ok
21:19:47.0417 0x1a566c  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
21:19:47.0417 0x1a566c  sffp_sd - ok
21:19:47.0417 0x1a566c  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
21:19:47.0417 0x1a566c  sfloppy - ok
21:19:47.0464 0x1a566c  [ 2046AA7491DE7EFA4D70E615D9BC9D09 ] Sftfs           C:\windows\system32\DRIVERS\Sftfslh.sys
21:19:47.0479 0x1a566c  Sftfs - ok
21:19:47.0542 0x1a566c  [ 77C5A741A7452812F278EF2C18478862 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
21:19:47.0542 0x1a566c  sftlist - ok
21:19:47.0604 0x1a566c  [ 0E0446BC4D51BE4263ACB7E33491191C ] Sftplay         C:\windows\system32\DRIVERS\Sftplaylh.sys
21:19:47.0604 0x1a566c  Sftplay - ok
21:19:47.0635 0x1a566c  [ C5FB982CD266E604ED3142102C26D62C ] Sftredir        C:\windows\system32\DRIVERS\Sftredirlh.sys
21:19:47.0635 0x1a566c  Sftredir - ok
21:19:47.0651 0x1a566c  [ 2575511AF67AA1FA068CCC4918E2C2A3 ] Sftvol          C:\windows\system32\DRIVERS\Sftvollh.sys
21:19:47.0651 0x1a566c  Sftvol - ok
21:19:47.0667 0x1a566c  [ 39B1D0A636A400304565D4521FAD6D77 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
21:19:47.0682 0x1a566c  sftvsa - ok
21:19:47.0729 0x1a566c  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\windows\System32\ipnathlp.dll
21:19:47.0729 0x1a566c  SharedAccess - ok
21:19:47.0776 0x1a566c  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
21:19:47.0776 0x1a566c  ShellHWDetection - ok
21:19:47.0838 0x1a566c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
21:19:47.0838 0x1a566c  SiSRaid2 - ok
21:19:47.0885 0x1a566c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
21:19:47.0901 0x1a566c  SiSRaid4 - ok
21:19:48.0119 0x1a566c  [ D0776778A9FC5E37F2E9EB21FC8A9709 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
21:19:48.0181 0x1a566c  Skype C2C Service - ok
21:19:48.0291 0x1a566c  [ CA355B308AA537C6B9D67CD3A5485AF9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
21:19:48.0322 0x1a566c  SkypeUpdate - ok
21:19:48.0384 0x1a566c  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
21:19:48.0384 0x1a566c  Smb - ok
21:19:48.0447 0x1a566c  [ E922286ED6677104AEBB210B9F0BF6F3 ] SmbDrv          C:\windows\system32\DRIVERS\Smb_driver.sys
21:19:48.0462 0x1a566c  SmbDrv - ok
21:19:48.0525 0x1a566c  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
21:19:48.0525 0x1a566c  SNMPTRAP - ok
21:19:48.0618 0x1a566c  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
21:19:48.0618 0x1a566c  spldr - ok
21:19:48.0665 0x1a566c  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\windows\System32\spoolsv.exe
21:19:48.0665 0x1a566c  Spooler - ok
21:19:48.0915 0x1a566c  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\windows\system32\sppsvc.exe
21:19:49.0039 0x1a566c  sppsvc - ok
21:19:49.0055 0x1a566c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
21:19:49.0055 0x1a566c  sppuinotify - ok
21:19:49.0086 0x1a566c  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\windows\system32\DRIVERS\srv.sys
21:19:49.0086 0x1a566c  srv - ok
21:19:49.0117 0x1a566c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
21:19:49.0117 0x1a566c  srv2 - ok
21:19:49.0133 0x1a566c  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
21:19:49.0133 0x1a566c  srvnet - ok
21:19:49.0180 0x1a566c  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
21:19:49.0180 0x1a566c  SSDPSRV - ok
21:19:49.0195 0x1a566c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
21:19:49.0211 0x1a566c  SstpSvc - ok
21:19:49.0258 0x1a566c  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\drivers\stexstor.sys
21:19:49.0258 0x1a566c  stexstor - ok
21:19:49.0305 0x1a566c  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\windows\System32\wiaservc.dll
21:19:49.0320 0x1a566c  stisvc - ok
21:19:49.0336 0x1a566c  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
21:19:49.0351 0x1a566c  swenum - ok
21:19:49.0383 0x1a566c  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
21:19:49.0383 0x1a566c  swprv - ok
21:19:49.0461 0x1a566c  [ 92F4AFC1FDE7A4CA0C88F9143F4DD323 ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
21:19:49.0461 0x1a566c  SynTP - ok
21:19:49.0523 0x1a566c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\windows\system32\sysmain.dll
21:19:49.0539 0x1a566c  SysMain - ok
21:19:49.0570 0x1a566c  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
21:19:49.0570 0x1a566c  TabletInputService - ok
21:19:49.0601 0x1a566c  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\windows\System32\tapisrv.dll
21:19:49.0601 0x1a566c  TapiSrv - ok
21:19:49.0632 0x1a566c  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
21:19:49.0632 0x1a566c  TBS - ok
21:19:49.0757 0x1a566c  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
21:19:49.0788 0x1a566c  Tcpip - ok
21:19:49.0819 0x1a566c  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
21:19:49.0835 0x1a566c  TCPIP6 - ok
21:19:49.0960 0x1a566c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
21:19:49.0975 0x1a566c  tcpipreg - ok
21:19:50.0022 0x1a566c  [ FD542B661BD22FA69CA789AD0AC58C29 ] tdcmdpst        C:\windows\system32\DRIVERS\tdcmdpst.sys
21:19:50.0022 0x1a566c  tdcmdpst - ok
21:19:50.0053 0x1a566c  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
21:19:50.0053 0x1a566c  TDPIPE - ok
21:19:50.0069 0x1a566c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
21:19:50.0069 0x1a566c  TDTCP - ok
21:19:50.0100 0x1a566c  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
21:19:50.0100 0x1a566c  tdx - ok
21:19:50.0116 0x1a566c  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
21:19:50.0131 0x1a566c  TermDD - ok
21:19:50.0163 0x1a566c  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\windows\System32\termsrv.dll
21:19:50.0178 0x1a566c  TermService - ok
21:19:50.0209 0x1a566c  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
21:19:50.0209 0x1a566c  Themes - ok
21:19:50.0241 0x1a566c  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
21:19:50.0241 0x1a566c  THREADORDER - ok
21:19:50.0334 0x1a566c  [ 71C321649B28638EE80A2EEB164C1DC8 ] TMachInfo       C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
21:19:50.0365 0x1a566c  TMachInfo - ok
21:19:50.0475 0x1a566c  [ 4AE80C5F7772C4FB2A762F70AD4A111E ] TosCoSrv        C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
21:19:50.0506 0x1a566c  TosCoSrv - ok
21:19:50.0568 0x1a566c  [ 6E2330FB032ED3EBEFC1349AD7081A98 ] TOSHIBA eco Utility Service C:\Program Files\TOSHIBA\TECO\TecoService.exe
21:19:50.0568 0x1a566c  TOSHIBA eco Utility Service - ok
21:19:50.0631 0x1a566c  [ 9338C2DEB14CA2804BCB3276CB7EB4FD ] TOSHIBA HDD SSD Alert Service C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
21:19:50.0631 0x1a566c  TOSHIBA HDD SSD Alert Service - ok
21:19:50.0709 0x1a566c  [ 09FF7B0B1B5C3D225495CB6F5A9B39F8 ] tos_sps64       C:\windows\system32\DRIVERS\tos_sps64.sys
21:19:50.0709 0x1a566c  tos_sps64 - ok
21:19:50.0755 0x1a566c  [ 36CDD894395BEC46EFB14F49D77D3D82 ] TPCHSrv         C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
21:19:50.0755 0x1a566c  TPCHSrv - ok
21:19:50.0833 0x1a566c  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
21:19:50.0833 0x1a566c  TrkWks - ok
21:19:50.0896 0x1a566c  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
21:19:50.0911 0x1a566c  TrustedInstaller - ok
21:19:50.0927 0x1a566c  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
21:19:50.0943 0x1a566c  tssecsrv - ok
21:19:50.0989 0x1a566c  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
21:19:51.0005 0x1a566c  TsUsbFlt - ok
21:19:51.0021 0x1a566c  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
21:19:51.0021 0x1a566c  TsUsbGD - ok
21:19:51.0114 0x1a566c  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
21:19:51.0114 0x1a566c  tunnel - ok
21:19:51.0177 0x1a566c  [ 550B567F9364D8F7684C3FB3EA665A72 ] TVALZ           C:\windows\system32\DRIVERS\TVALZ_O.SYS
21:19:51.0192 0x1a566c  TVALZ - ok
21:19:51.0239 0x1a566c  [ 9C7191F4B2E49BFF47A6C1144B5923FA ] TVALZFL         C:\windows\system32\DRIVERS\TVALZFL.sys
21:19:51.0239 0x1a566c  TVALZFL - ok
21:19:51.0270 0x1a566c  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\drivers\uagp35.sys
21:19:51.0270 0x1a566c  uagp35 - ok
21:19:51.0301 0x1a566c  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
21:19:51.0301 0x1a566c  udfs - ok
21:19:51.0333 0x1a566c  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
21:19:51.0333 0x1a566c  UI0Detect - ok
21:19:51.0395 0x1a566c  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
21:19:51.0395 0x1a566c  uliagpkx - ok
21:19:51.0442 0x1a566c  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
21:19:51.0442 0x1a566c  umbus - ok
21:19:51.0457 0x1a566c  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\drivers\umpass.sys
21:19:51.0457 0x1a566c  UmPass - ok
21:19:51.0535 0x1a566c  [ 182BBA1B43898D5DA0938D2E9A526B31 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:19:51.0535 0x1a566c  UNS - ok
21:19:51.0567 0x1a566c  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
21:19:51.0567 0x1a566c  upnphost - ok
21:19:51.0660 0x1a566c  [ 27B8B55B1F19AD8C8757620C444D36CA ] USB28xxBGA      C:\windows\system32\DRIVERS\emBDA64.sys
21:19:51.0660 0x1a566c  USB28xxBGA - ok
21:19:51.0691 0x1a566c  [ FF63409B4F1D67A04CB4728A5DC68389 ] USB28xxOEM      C:\windows\system32\DRIVERS\emOEM64.sys
21:19:51.0707 0x1a566c  USB28xxOEM - ok
21:19:51.0769 0x1a566c  [ AF1B9474D67897D0C2CFF58E0ACEACCC ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
21:19:51.0769 0x1a566c  USBAAPL64 - ok
21:19:51.0816 0x1a566c  [ 82E8F44688E6FAC57B5B7C6FC7ADBC2A ] usbaudio        C:\windows\system32\drivers\usbaudio.sys
21:19:51.0816 0x1a566c  usbaudio - ok
21:19:51.0847 0x1a566c  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
21:19:51.0863 0x1a566c  usbccgp - ok
21:19:51.0925 0x1a566c  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\windows\system32\drivers\usbcir.sys
21:19:51.0941 0x1a566c  usbcir - ok
21:19:51.0957 0x1a566c  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\windows\system32\DRIVERS\usbehci.sys
21:19:51.0957 0x1a566c  usbehci - ok
21:19:52.0003 0x1a566c  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
21:19:52.0003 0x1a566c  usbhub - ok
21:19:52.0035 0x1a566c  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\windows\system32\drivers\usbohci.sys
21:19:52.0035 0x1a566c  usbohci - ok
21:19:52.0050 0x1a566c  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\drivers\usbprint.sys
21:19:52.0050 0x1a566c  usbprint - ok
21:19:52.0066 0x1a566c  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
21:19:52.0066 0x1a566c  USBSTOR - ok
21:19:52.0066 0x1a566c  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
21:19:52.0066 0x1a566c  usbuhci - ok
21:19:52.0113 0x1a566c  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\windows\system32\Drivers\usbvideo.sys
21:19:52.0113 0x1a566c  usbvideo - ok
21:19:52.0159 0x1a566c  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
21:19:52.0159 0x1a566c  UxSms - ok
21:19:52.0191 0x1a566c  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\windows\system32\lsass.exe
21:19:52.0191 0x1a566c  VaultSvc - ok
21:19:52.0253 0x1a566c  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
21:19:52.0253 0x1a566c  vdrvroot - ok
21:19:52.0284 0x1a566c  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\windows\System32\vds.exe
21:19:52.0300 0x1a566c  vds - ok
21:19:52.0300 0x1a566c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
21:19:52.0300 0x1a566c  vga - ok
21:19:52.0315 0x1a566c  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
21:19:52.0315 0x1a566c  VgaSave - ok
21:19:52.0331 0x1a566c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
21:19:52.0331 0x1a566c  vhdmp - ok
21:19:52.0378 0x1a566c  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\drivers\viaide.sys
21:19:52.0378 0x1a566c  viaide - ok
21:19:52.0393 0x1a566c  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\windows\system32\drivers\volmgr.sys
21:19:52.0409 0x1a566c  volmgr - ok
21:19:52.0425 0x1a566c  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
21:19:52.0440 0x1a566c  volmgrx - ok
21:19:52.0503 0x1a566c  [ DF8126BD41180351A093A3AD2FC8903B ] volsnap         C:\windows\system32\drivers\volsnap.sys
21:19:52.0503 0x1a566c  volsnap - ok
21:19:52.0565 0x1a566c  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
21:19:52.0581 0x1a566c  vsmraid - ok
21:19:52.0643 0x1a566c  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\windows\system32\vssvc.exe
21:19:52.0659 0x1a566c  VSS - ok
21:19:52.0674 0x1a566c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
21:19:52.0674 0x1a566c  vwifibus - ok
21:19:52.0705 0x1a566c  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
21:19:52.0721 0x1a566c  vwififlt - ok
21:19:52.0768 0x1a566c  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
21:19:52.0768 0x1a566c  vwifimp - ok
21:19:52.0877 0x1a566c  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\windows\system32\w32time.dll
21:19:52.0877 0x1a566c  W32Time - ok
21:19:53.0017 0x1a566c  w4shwdrv - ok
21:19:53.0049 0x1a566c  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\drivers\wacompen.sys
21:19:53.0049 0x1a566c  WacomPen - ok
21:19:53.0127 0x1a566c  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
21:19:53.0142 0x1a566c  WANARP - ok
21:19:53.0236 0x1a566c  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
21:19:53.0236 0x1a566c  Wanarpv6 - ok
21:19:53.0423 0x1a566c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
21:19:53.0501 0x1a566c  WatAdminSvc - ok
21:19:53.0797 0x1a566c  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\windows\system32\wbengine.exe
21:19:53.0844 0x1a566c  wbengine - ok
21:19:53.0876 0x1a566c  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
21:19:53.0892 0x1a566c  WbioSrvc - ok
21:19:53.0986 0x1a566c  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\windows\System32\wcncsvc.dll
21:19:53.0986 0x1a566c  wcncsvc - ok
21:19:54.0017 0x1a566c  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
21:19:54.0017 0x1a566c  WcsPlugInService - ok
21:19:54.0079 0x1a566c  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\drivers\wd.sys
21:19:54.0095 0x1a566c  Wd - ok
21:19:54.0173 0x1a566c  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
21:19:54.0188 0x1a566c  Wdf01000 - ok
21:19:54.0220 0x1a566c  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
21:19:54.0251 0x1a566c  WdiServiceHost - ok
21:19:54.0251 0x1a566c  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
21:19:54.0266 0x1a566c  WdiSystemHost - ok
21:19:54.0329 0x1a566c  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\windows\System32\webclnt.dll
21:19:54.0360 0x1a566c  WebClient - ok
21:19:54.0438 0x1a566c  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
21:19:54.0454 0x1a566c  Wecsvc - ok
21:19:54.0485 0x1a566c  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
21:19:54.0500 0x1a566c  wercplsupport - ok
21:19:54.0563 0x1a566c  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
21:19:54.0578 0x1a566c  WerSvc - ok
21:19:54.0750 0x1a566c  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
21:19:54.0766 0x1a566c  WfpLwf - ok
21:19:54.0781 0x1a566c  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
21:19:54.0781 0x1a566c  WIMMount - ok
21:19:54.0906 0x1a566c  WinDefend - ok
21:19:54.0968 0x1a566c  WinHttpAutoProxySvc - ok
21:19:55.0062 0x1a566c  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
21:19:55.0078 0x1a566c  Winmgmt - ok
21:19:55.0265 0x1a566c  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\windows\system32\WsmSvc.dll
21:19:55.0343 0x1a566c  WinRM - ok
21:19:55.0483 0x1a566c  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
21:19:55.0499 0x1a566c  WinUsb - ok
21:19:55.0546 0x1a566c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
21:19:55.0577 0x1a566c  Wlansvc - ok
21:19:55.0748 0x1a566c  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
21:19:55.0764 0x1a566c  wlcrasvc - ok
21:19:56.0107 0x1a566c  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:19:56.0185 0x1a566c  wlidsvc - ok
21:19:56.0232 0x1a566c  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\drivers\wmiacpi.sys
21:19:56.0232 0x1a566c  WmiAcpi - ok
21:19:56.0326 0x1a566c  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
21:19:56.0341 0x1a566c  wmiApSrv - ok
21:19:56.0513 0x1a566c  WMPNetworkSvc - ok
21:19:56.0560 0x1a566c  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
21:19:56.0560 0x1a566c  WPCSvc - ok
21:19:56.0638 0x1a566c  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
21:19:56.0669 0x1a566c  WPDBusEnum - ok
21:19:56.0716 0x1a566c  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
21:19:56.0716 0x1a566c  ws2ifsl - ok
21:19:56.0778 0x1a566c  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\windows\System32\wscsvc.dll
21:19:56.0809 0x1a566c  wscsvc - ok
21:19:56.0825 0x1a566c  WSearch - ok
21:19:57.0059 0x1a566c  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
21:19:57.0121 0x1a566c  wuauserv - ok
21:19:57.0168 0x1a566c  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
21:19:57.0168 0x1a566c  WudfPf - ok
21:19:57.0246 0x1a566c  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
21:19:57.0246 0x1a566c  WUDFRd - ok
21:19:57.0324 0x1a566c  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
21:19:57.0340 0x1a566c  wudfsvc - ok
21:19:57.0386 0x1a566c  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\windows\System32\wwansvc.dll
21:19:57.0433 0x1a566c  WwanSvc - ok
21:19:57.0730 0x1a566c  [ 23154B78246BF0073E20BF3D4CD91449 ] XyvosAVDrv      C:\Program Files (x86)\Xyvos Antivirus\XyvosAVDrv.sys
21:19:57.0745 0x1a566c  XyvosAVDrv - ok
21:19:58.0042 0x1a566c  [ D950334EE720443820431692E33932B7 ] XyvosAVSvc      C:\Program Files (x86)\Xyvos Antivirus\XyvosAVSvc.exe
21:19:58.0088 0x1a566c  XyvosAVSvc - ok
21:19:58.0229 0x1a566c  [ EC86BC351568C9A51E2ED2480CFD61FC ] XyvosWhiteListAV C:\Program Files (x86)\Xyvos whiteList Antivirus\XyvosWListAVSvc.exe
21:19:58.0229 0x1a566c  XyvosWhiteListAV - ok
21:19:58.0354 0x1a566c  [ 4AAF71F8022D55AD4C9CA6FAF74070C6 ] XyvosWhiteListAVDrv C:\Program Files (x86)\Xyvos whiteList Antivirus\XyvosWListAVDrv.sys
21:19:58.0354 0x1a566c  XyvosWhiteListAVDrv - ok
21:19:58.0510 0x1a566c  ================ Scan global ===============================
21:19:58.0541 0x1a566c  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
21:19:58.0588 0x1a566c  [ 88EDD0B34EED542745931E581AD21A32 ] C:\windows\system32\winsrv.dll
21:19:58.0603 0x1a566c  [ 88EDD0B34EED542745931E581AD21A32 ] C:\windows\system32\winsrv.dll
21:19:58.0666 0x1a566c  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
21:19:58.0712 0x1a566c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
21:19:58.0728 0x1a566c  [Global] - ok
21:19:58.0728 0x1a566c  ================ Scan MBR ==================================
21:19:58.0759 0x1a566c  [ 7C073E8BB11E8EE0F384E939542EC0E2 ] \Device\Harddisk0\DR0
21:19:58.0759 0x1a566c  Suspicious mbr (Forged): \Device\Harddisk0\DR0
21:19:59.0024 0x1a566c  \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - infected
21:19:59.0024 0x1a566c  \Device\Harddisk0\DR0 - detected Rootkit.Boot.Harbinger.a (0)
21:19:59.0399 0x1a566c  ================ Scan VBR ==================================
21:19:59.0430 0x1a566c  [ C49DC14E4097517961D5F1D492321971 ] \Device\Harddisk0\DR0\Partition1
21:19:59.0446 0x1a566c  \Device\Harddisk0\DR0\Partition1 - ok
21:19:59.0446 0x1a566c  ============================================================
21:19:59.0446 0x1a566c  Scan finished
21:19:59.0446 0x1a566c  ============================================================
21:19:59.0508 0x1a5664  Detected object count: 1
21:19:59.0508 0x1a5664  Actual detected object count: 1
21:20:20.0365 0x1a5664  \Device\Harddisk0\DR0\# - copied to quarantine
21:20:20.0396 0x1a5664  \Device\Harddisk0\DR0 - copied to quarantine
21:20:21.0145 0x1a5664  \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - will be cured on reboot
21:20:21.0145 0x1a5664  \Device\Harddisk0\DR0 - ok
21:20:22.0223 0x1a5664  \Device\Harddisk0\DR0 ( Rootkit.Boot.Harbinger.a ) - User select action: Cure
21:21:06.0905 0x1a4868  Deinitialize success

*********************************************************************************

tdsskiller log 2:

21:25:31.0273 0x0edc  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
21:25:33.0285 0x0edc  ============================================================
21:25:33.0285 0x0edc  Current date / time: 2013/09/12 21:25:33.0285
21:25:33.0285 0x0edc  SystemInfo:
21:25:33.0285 0x0edc  
21:25:33.0285 0x0edc  OS Version: 6.1.7601 ServicePack: 1.0
21:25:33.0285 0x0edc  Product type: Workstation
21:25:33.0285 0x0edc  ComputerName: CADEN-PC
21:25:33.0285 0x0edc  UserName: Caden
21:25:33.0285 0x0edc  Windows directory: C:\windows
21:25:33.0285 0x0edc  System windows directory: C:\windows
21:25:33.0285 0x0edc  Running under WOW64
21:25:33.0285 0x0edc  Processor architecture: Intel x64
21:25:33.0285 0x0edc  Number of processors: 2
21:25:33.0285 0x0edc  Page size: 0x1000
21:25:33.0285 0x0edc  Boot type: Normal boot
21:25:33.0285 0x0edc  ============================================================
21:25:33.0285 0x0edc  BG loaded
21:25:35.0298 0x0edc  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:25:35.0298 0x0edc  ============================================================
21:25:35.0298 0x0edc  \Device\Harddisk0\DR0:
21:25:35.0298 0x0edc  MBR partitions:
21:25:35.0298 0x0edc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x48AD5800
21:25:35.0298 0x0edc  ============================================================
21:25:35.0360 0x0edc  C: <-> \Device\Harddisk0\DR0\Partition1
21:25:35.0360 0x0edc  ============================================================
21:25:35.0360 0x0edc  Initialize success
21:25:35.0360 0x0edc  ============================================================
 

******************************************************

Stil says "No Audio Output Device is installed"






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users