Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Possible leftovers of Win zip.EXE rootkit.


  • Please log in to reply
8 replies to this topic

#1 A Mom

A Mom

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 20 August 2013 - 11:58 AM

Hello,  i consider myself a somewhat capable malware  exterminator and have had success using most of your programs , most recently using malwarebytes regular and anti rootkit,  R.Kill, TDSS, SAS, ESET, but with this particular issue i can't get ANSMBR or whatever Avasts anti rootkit  program is called to work, it keeps showing a networking error. 

 

Avast did find the Winzip.EXE rootkit a while back but it is no longer showing in scan results,  Avasts scan results (bootscan) shows corrupted files but when i run chkdsk and sfc/scannow it shows no integrity violations so i'm baffled.

 

Thank you so much for any assistance and i will happily wait my turn

 

A MOM



BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:42 AM

Posted 20 August 2013 - 02:45 PM

Hello,

I will be helping you with your problems. Please be patient while I assist you.

Some points for you to keep in mind while I am helping you to make things go easier and faster for both of us
 

  • Please do NOT run, install or uninstall any programs,  unless instructed to do so
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
          
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
          
  • Please read every post completely before doing anything.  
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
          
  • Please provide feedback about your experience as we go. 
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.

NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.

NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.
- Do NOT backup any unknown files ending in .exe, .com, .scr, .pif, and .bat since files of these types are more likely to be infected.

NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.

----------------------------------------------

Please do the following:

:step1:

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!


  • Double-click on TDSSKiller.exe on your desktop to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click on change parameters
  • Under Objects to scan, check the boxes next to Verify file digital signatures, Detect TDLFS file system, then click OK.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.



:step2:

Please download AdwCleaner by Xplode onto your desktop.


  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.



:step3:

Please download Farbar Service Scanner and run it on the computer with the issue.


  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.



:step4:

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:


  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points

NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.

Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 A Mom

A Mom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 20 August 2013 - 09:01 PM

No matter what i do no logs will post up,  i have been trying all day to paste them as requested.


Edited by A Mom, 20 August 2013 - 09:02 PM.


#4 A Mom

A Mom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 20 August 2013 - 11:02 PM

18:10:08.0892 0x13e4  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
18:10:09.0711 0x13e4  ============================================================
18:10:09.0711 0x13e4  Current date / time: 2013/08/20 18:10:09.0711
18:10:09.0711 0x13e4  SystemInfo:
18:10:09.0711 0x13e4  
18:10:09.0711 0x13e4  OS Version: 6.1.7601 ServicePack: 1.0
18:10:09.0711 0x13e4  Product type: Workstation
18:10:09.0712 0x13e4  ComputerName: PATRICK-PC
18:10:09.0712 0x13e4  UserName: patrick
18:10:09.0712 0x13e4  Windows directory: C:\Windows
18:10:09.0712 0x13e4  System windows directory: C:\Windows
18:10:09.0712 0x13e4  Running under WOW64
18:10:09.0712 0x13e4  Processor architecture: Intel x64
18:10:09.0712 0x13e4  Number of processors: 4
18:10:09.0712 0x13e4  Page size: 0x1000
18:10:09.0712 0x13e4  Boot type: Normal boot
18:10:09.0712 0x13e4  ============================================================
18:10:11.0045 0x13e4  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 (596.17 Gb), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:10:11.0082 0x13e4  Drive \Device\Harddisk1\DR1 - Size: 0x1D9C00000 (7.40 Gb), SectorSize: 0x200, Cylinders: 0x3C6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:10:11.0087 0x13e4  ============================================================
18:10:11.0087 0x13e4  \Device\Harddisk0\DR0:
18:10:11.0088 0x13e4  MBR partitions:
18:10:11.0088 0x13e4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
18:10:11.0088 0x13e4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4A825000
18:10:11.0088 0x13e4  \Device\Harddisk1\DR1:
18:10:11.0089 0x13e4  MBR partitions:
18:10:11.0089 0x13e4  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0xECC000
18:10:11.0089 0x13e4  ============================================================
18:10:11.0127 0x13e4  C: <-> \Device\Harddisk0\DR0\Partition2
18:10:11.0128 0x13e4  ============================================================
18:10:11.0128 0x13e4  Initialize success
18:10:11.0128 0x13e4  ============================================================
18:10:12.0334 0x056c  ============================================================
18:10:12.0334 0x056c  Scan started
18:10:12.0334 0x056c  Mode: Manual; 
18:10:12.0334 0x056c  ============================================================
18:10:12.0712 0x056c  ================ Scan system memory ========================
18:10:12.0712 0x056c  System memory - ok
18:10:12.0713 0x056c  ================ Scan services =============================
18:10:13.0172 0x056c  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
18:10:13.0179 0x056c  1394ohci - ok
18:10:13.0206 0x056c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:10:13.0211 0x056c  ACPI - ok
18:10:13.0221 0x056c  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
18:10:13.0223 0x056c  AcpiPmi - ok
18:10:13.0258 0x056c  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:10:13.0268 0x056c  adp94xx - ok
18:10:13.0300 0x056c  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:10:13.0309 0x056c  adpahci - ok
18:10:13.0321 0x056c  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:10:13.0328 0x056c  adpu320 - ok
18:10:13.0359 0x056c  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:10:13.0362 0x056c  AeLookupSvc - ok
18:10:13.0451 0x056c  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
18:10:13.0462 0x056c  AFD - ok
18:10:13.0504 0x056c  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:10:13.0507 0x056c  agp440 - ok
18:10:13.0523 0x056c  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
18:10:13.0528 0x056c  ALG - ok
18:10:13.0535 0x056c  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:10:13.0537 0x056c  aliide - ok
18:10:13.0543 0x056c  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
18:10:13.0545 0x056c  amdide - ok
18:10:13.0553 0x056c  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
18:10:13.0556 0x056c  AmdK8 - ok
18:10:13.0562 0x056c  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
18:10:13.0564 0x056c  AmdPPM - ok
18:10:13.0599 0x056c  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:10:13.0601 0x056c  amdsata - ok
18:10:13.0607 0x056c  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
18:10:13.0610 0x056c  amdsbs - ok
18:10:13.0633 0x056c  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:10:13.0635 0x056c  amdxata - ok
18:10:13.0692 0x056c  [ 92A848F962DA91C631147D566414BB7E ] AmUStor         C:\Windows\system32\drivers\AmUStor.SYS
18:10:13.0696 0x056c  AmUStor - ok
18:10:13.0739 0x056c  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
18:10:13.0743 0x056c  AppID - ok
18:10:13.0766 0x056c  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:10:13.0769 0x056c  AppIDSvc - ok
18:10:13.0828 0x056c  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
18:10:13.0831 0x056c  Appinfo - ok
18:10:13.0840 0x056c  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
18:10:13.0844 0x056c  arc - ok
18:10:13.0854 0x056c  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:10:13.0858 0x056c  arcsas - ok
18:10:13.0937 0x056c  [ D6D2BB2F4F5868549DDE75F3146BC84E ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys
18:10:13.0940 0x056c  asmthub3 - ok
18:10:13.0975 0x056c  [ 1E758172367DC2A3653F16586D62A3F0 ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys
18:10:13.0980 0x056c  asmtxhci - ok
18:10:14.0022 0x056c  [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
18:10:14.0025 0x056c  aswFsBlk - ok
18:10:14.0084 0x056c  [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
18:10:14.0088 0x056c  aswMonFlt - ok
18:10:14.0102 0x056c  [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
18:10:14.0106 0x056c  aswRdr - ok
18:10:14.0126 0x056c  [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
18:10:14.0129 0x056c  aswRvrt - ok
18:10:14.0173 0x056c  [ 8C0800CDB501CFC1164B286A0478DC10 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
18:10:14.0212 0x056c  aswSnx - ok
18:10:14.0252 0x056c  [ 3815DB16CDA62190F5C0A65118F3D714 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
18:10:14.0262 0x056c  aswSP - ok
18:10:14.0271 0x056c  [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
18:10:14.0275 0x056c  aswTdi - ok
18:10:14.0284 0x056c  [ 22F521108881DC59837F6FC614E0568F ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
18:10:14.0286 0x056c  aswVmm - ok
18:10:14.0343 0x056c  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:10:14.0344 0x056c  AsyncMac - ok
18:10:14.0369 0x056c  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
18:10:14.0370 0x056c  atapi - ok
18:10:14.0419 0x056c  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:10:14.0429 0x056c  AudioEndpointBuilder - ok
18:10:14.0442 0x056c  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
18:10:14.0449 0x056c  AudioSrv - ok
18:10:14.0595 0x056c  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:10:14.0598 0x056c  avast! Antivirus - ok
18:10:14.0652 0x056c  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:10:14.0657 0x056c  AxInstSV - ok
18:10:14.0731 0x056c  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
18:10:14.0742 0x056c  b06bdrv - ok
18:10:14.0801 0x056c  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
18:10:14.0810 0x056c  b57nd60a - ok
18:10:14.0828 0x056c  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
18:10:14.0834 0x056c  BDESVC - ok
18:10:14.0871 0x056c  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:10:14.0873 0x056c  Beep - ok
18:10:14.0933 0x056c  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
18:10:14.0968 0x056c  BFE - ok
18:10:15.0008 0x056c  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
18:10:15.0043 0x056c  BITS - ok
18:10:15.0062 0x056c  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
18:10:15.0065 0x056c  blbdrive - ok
18:10:15.0105 0x056c  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:10:15.0108 0x056c  bowser - ok
18:10:15.0172 0x056c  [ 3DCB409BCBD02AB0675682F8E42A410F ] bpenum          C:\Windows\system32\DRIVERS\bpenum.sys
18:10:15.0175 0x056c  bpenum - ok
18:10:15.0220 0x056c  [ 6C66EEF6669B14DF4F426990A1CA5112 ] bpmp            C:\Windows\system32\DRIVERS\bpmp.sys
18:10:15.0224 0x056c  bpmp - ok
18:10:15.0251 0x056c  [ 2EE68405BBADE51CBE1C973FF3A1A400 ] bpusb           C:\Windows\system32\Drivers\bpusb.sys
18:10:15.0255 0x056c  bpusb - ok
18:10:15.0266 0x056c  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
18:10:15.0269 0x056c  BrFiltLo - ok
18:10:15.0273 0x056c  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
18:10:15.0275 0x056c  BrFiltUp - ok
18:10:15.0311 0x056c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
18:10:15.0314 0x056c  Browser - ok
18:10:15.0345 0x056c  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
18:10:15.0351 0x056c  Brserid - ok
18:10:15.0355 0x056c  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
18:10:15.0357 0x056c  BrSerWdm - ok
18:10:15.0362 0x056c  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
18:10:15.0363 0x056c  BrUsbMdm - ok
18:10:15.0367 0x056c  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
18:10:15.0370 0x056c  BrUsbSer - ok
18:10:15.0375 0x056c  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
18:10:15.0377 0x056c  BTHMODEM - ok
18:10:15.0400 0x056c  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
18:10:15.0402 0x056c  bthserv - ok
18:10:15.0450 0x056c  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:10:15.0454 0x056c  cdfs - ok
18:10:15.0484 0x056c  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:10:15.0488 0x056c  cdrom - ok
18:10:15.0528 0x056c  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
18:10:15.0532 0x056c  CertPropSvc - ok
18:10:15.0541 0x056c  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
18:10:15.0545 0x056c  circlass - ok
18:10:15.0565 0x056c  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
18:10:15.0573 0x056c  CLFS - ok
18:10:15.0738 0x056c  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:10:15.0741 0x056c  clr_optimization_v2.0.50727_32 - ok
18:10:15.0860 0x056c  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:10:15.0864 0x056c  clr_optimization_v2.0.50727_64 - ok
18:10:16.0078 0x056c  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:10:16.0081 0x056c  clr_optimization_v4.0.30319_32 - ok
18:10:16.0199 0x056c  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:10:16.0204 0x056c  clr_optimization_v4.0.30319_64 - ok
18:10:16.0278 0x056c  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
18:10:16.0281 0x056c  CmBatt - ok
18:10:16.0289 0x056c  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:10:16.0291 0x056c  cmdide - ok
18:10:16.0345 0x056c  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
18:10:16.0357 0x056c  CNG - ok
18:10:16.0414 0x056c  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
18:10:16.0417 0x056c  Compbatt - ok
18:10:16.0447 0x056c  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
18:10:16.0450 0x056c  CompositeBus - ok
18:10:16.0475 0x056c  COMSysApp - ok
18:10:16.0733 0x056c  [ 815F3180B5117E42E422188E9CCC89C6 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
18:10:16.0743 0x056c  cphs - ok
18:10:16.0759 0x056c  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
18:10:16.0762 0x056c  crcdisk - ok
18:10:16.0834 0x056c  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:10:16.0841 0x056c  CryptSvc - ok
18:10:16.0901 0x056c  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:10:16.0916 0x056c  DcomLaunch - ok
18:10:16.0950 0x056c  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
18:10:16.0956 0x056c  defragsvc - ok
18:10:16.0965 0x056c  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:10:16.0967 0x056c  DfsC - ok
18:10:17.0016 0x056c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:10:17.0024 0x056c  Dhcp - ok
18:10:17.0032 0x056c  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
18:10:17.0034 0x056c  discache - ok
18:10:17.0064 0x056c  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
18:10:17.0065 0x056c  Disk - ok
18:10:17.0158 0x056c  [ EC9D64CC2DD8A4C6D11550F364890DB1 ] DMAgent         C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
18:10:17.0170 0x056c  DMAgent - ok
18:10:17.0227 0x056c  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:10:17.0234 0x056c  Dnscache - ok
18:10:17.0277 0x056c  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:10:17.0285 0x056c  dot3svc - ok
18:10:17.0297 0x056c  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
18:10:17.0304 0x056c  DPS - ok
18:10:17.0665 0x056c  [ 308195495181C8F3D51E6ED5B58D54AC ] DragonUpdater   C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
18:10:17.0681 0x056c  DragonUpdater - ok
18:10:17.0728 0x056c  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:10:17.0729 0x056c  drmkaud - ok
18:10:17.0813 0x056c  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:10:17.0849 0x056c  DXGKrnl - ok
18:10:17.0901 0x056c  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
18:10:17.0907 0x056c  EapHost - ok
18:10:18.0008 0x056c  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
18:10:18.0098 0x056c  ebdrv - ok
18:10:18.0130 0x056c  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
18:10:18.0132 0x056c  EFS - ok
18:10:18.0242 0x056c  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:10:18.0253 0x056c  ehRecvr - ok
18:10:18.0262 0x056c  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
18:10:18.0267 0x056c  ehSched - ok
18:10:18.0337 0x056c  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
18:10:18.0354 0x056c  elxstor - ok
18:10:18.0363 0x056c  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
18:10:18.0365 0x056c  ErrDev - ok
18:10:18.0406 0x056c  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
18:10:18.0411 0x056c  EventSystem - ok
18:10:18.0561 0x056c  [ 54FC81B0162478A72A93DBBEAFB35671 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
18:10:18.0576 0x056c  EvtEng - ok
18:10:18.0597 0x056c  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
18:10:18.0601 0x056c  exfat - ok
18:10:18.0607 0x056c  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:10:18.0611 0x056c  fastfat - ok
18:10:18.0655 0x056c  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
18:10:18.0663 0x056c  Fax - ok
18:10:18.0687 0x056c  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
18:10:18.0688 0x056c  fdc - ok
18:10:18.0705 0x056c  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:10:18.0706 0x056c  fdPHost - ok
18:10:18.0710 0x056c  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:10:18.0711 0x056c  FDResPub - ok
18:10:18.0715 0x056c  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:10:18.0717 0x056c  FileInfo - ok
18:10:18.0719 0x056c  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:10:18.0721 0x056c  Filetrace - ok
18:10:18.0743 0x056c  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
18:10:18.0744 0x056c  flpydisk - ok
18:10:18.0749 0x056c  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:10:18.0752 0x056c  FltMgr - ok
18:10:18.0826 0x056c  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
18:10:18.0841 0x056c  FontCache - ok
18:10:18.0877 0x056c  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:10:18.0877 0x056c  FontCache3.0.0.0 - ok
18:10:18.0890 0x056c  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:10:18.0892 0x056c  FsDepends - ok
18:10:18.0912 0x056c  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:10:18.0914 0x056c  Fs_Rec - ok
18:10:18.0991 0x056c  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:10:18.0996 0x056c  fvevol - ok
18:10:19.0035 0x056c  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:10:19.0037 0x056c  gagp30kx - ok
18:10:19.0075 0x056c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
18:10:19.0085 0x056c  gpsvc - ok
18:10:19.0127 0x056c  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
18:10:19.0129 0x056c  hcw85cir - ok
18:10:19.0179 0x056c  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:10:19.0184 0x056c  HdAudAddService - ok
18:10:19.0201 0x056c  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
18:10:19.0204 0x056c  HDAudBus - ok
18:10:19.0208 0x056c  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
18:10:19.0210 0x056c  HidBatt - ok
18:10:19.0233 0x056c  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
18:10:19.0235 0x056c  HidBth - ok
18:10:19.0239 0x056c  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
18:10:19.0242 0x056c  HidIr - ok
18:10:19.0259 0x056c  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
18:10:19.0262 0x056c  hidserv - ok
18:10:19.0340 0x056c  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:10:19.0342 0x056c  HidUsb - ok
18:10:19.0371 0x056c  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:10:19.0376 0x056c  hkmsvc - ok
18:10:19.0411 0x056c  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:10:19.0421 0x056c  HomeGroupListener - ok
18:10:19.0454 0x056c  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:10:19.0465 0x056c  HomeGroupProvider - ok
18:10:19.0507 0x056c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:10:19.0511 0x056c  HpSAMD - ok
18:10:19.0532 0x056c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:10:19.0548 0x056c  HTTP - ok
18:10:19.0556 0x056c  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:10:19.0558 0x056c  hwpolicy - ok
18:10:19.0582 0x056c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:10:19.0584 0x056c  i8042prt - ok
18:10:19.0643 0x056c  [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
18:10:19.0649 0x056c  iaStor - ok
18:10:19.0722 0x056c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:10:19.0729 0x056c  iaStorV - ok
18:10:19.0821 0x056c  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:10:19.0867 0x056c  idsvc - ok
18:10:20.0051 0x056c  [ 348214F96642FD4FEF630DE021BA3540 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
18:10:20.0079 0x056c  igfx - ok
18:10:20.0116 0x056c  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:10:20.0117 0x056c  iirsp - ok
18:10:20.0147 0x056c  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
18:10:20.0152 0x056c  IKEEXT - ok
18:10:20.0156 0x056c  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
18:10:20.0157 0x056c  intelide - ok
18:10:20.0177 0x056c  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:10:20.0179 0x056c  intelppm - ok
18:10:20.0219 0x056c  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:10:20.0225 0x056c  IPBusEnum - ok
18:10:20.0252 0x056c  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:10:20.0256 0x056c  IpFilterDriver - ok
18:10:20.0315 0x056c  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:10:20.0348 0x056c  iphlpsvc - ok
18:10:20.0378 0x056c  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
18:10:20.0380 0x056c  IPMIDRV - ok
18:10:20.0385 0x056c  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:10:20.0388 0x056c  IPNAT - ok
18:10:20.0402 0x056c  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:10:20.0404 0x056c  IRENUM - ok
18:10:20.0408 0x056c  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:10:20.0409 0x056c  isapnp - ok
18:10:20.0438 0x056c  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
18:10:20.0443 0x056c  iScsiPrt - ok
18:10:20.0447 0x056c  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:10:20.0449 0x056c  kbdclass - ok
18:10:20.0469 0x056c  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
18:10:20.0470 0x056c  kbdhid - ok
18:10:20.0485 0x056c  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
18:10:20.0488 0x056c  KeyIso - ok
18:10:20.0544 0x056c  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:10:20.0548 0x056c  KSecDD - ok
18:10:20.0598 0x056c  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:10:20.0604 0x056c  KSecPkg - ok
18:10:20.0628 0x056c  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:10:20.0630 0x056c  ksthunk - ok
18:10:20.0663 0x056c  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:10:20.0677 0x056c  KtmRm - ok
18:10:20.0704 0x056c  [ 655A5D8E80869781CCE23760ADA7E695 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
18:10:20.0711 0x056c  L1C - ok
18:10:20.0748 0x056c  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:10:20.0761 0x056c  LanmanServer - ok
18:10:20.0777 0x056c  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:10:20.0789 0x056c  LanmanWorkstation - ok
18:10:20.0840 0x056c  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:10:20.0844 0x056c  lltdio - ok
18:10:20.0894 0x056c  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:10:20.0905 0x056c  lltdsvc - ok
18:10:20.0912 0x056c  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:10:20.0916 0x056c  lmhosts - ok
18:10:20.0999 0x056c  [ 7F32D4C47A50E7223491E8FB9359907D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:10:21.0004 0x056c  LMS - ok
18:10:21.0045 0x056c  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
18:10:21.0048 0x056c  LSI_FC - ok
18:10:21.0054 0x056c  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:10:21.0056 0x056c  LSI_SAS - ok
18:10:21.0069 0x056c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
18:10:21.0072 0x056c  LSI_SAS2 - ok
18:10:21.0078 0x056c  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:10:21.0081 0x056c  LSI_SCSI - ok
18:10:21.0101 0x056c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
18:10:21.0105 0x056c  luafv - ok
18:10:21.0152 0x056c  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
18:10:21.0155 0x056c  MBAMProtector - ok
18:10:21.0198 0x056c  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:10:21.0209 0x056c  MBAMScheduler - ok
18:10:21.0258 0x056c  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:10:21.0290 0x056c  MBAMService - ok
18:10:21.0319 0x056c  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:10:21.0324 0x056c  Mcx2Svc - ok
18:10:21.0329 0x056c  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
18:10:21.0331 0x056c  megasas - ok
18:10:21.0381 0x056c  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
18:10:21.0386 0x056c  MegaSR - ok
18:10:21.0458 0x056c  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
18:10:21.0460 0x056c  MEIx64 - ok
18:10:21.0497 0x056c  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
18:10:21.0503 0x056c  MMCSS - ok
18:10:21.0511 0x056c  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
18:10:21.0513 0x056c  Modem - ok
18:10:21.0561 0x056c  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:10:21.0563 0x056c  monitor - ok
18:10:21.0596 0x056c  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:10:21.0599 0x056c  mouclass - ok
18:10:21.0615 0x056c  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:10:21.0617 0x056c  mouhid - ok
18:10:21.0624 0x056c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:10:21.0627 0x056c  mountmgr - ok
18:10:21.0649 0x056c  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:10:21.0652 0x056c  mpio - ok
18:10:21.0656 0x056c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:10:21.0658 0x056c  mpsdrv - ok
18:10:21.0698 0x056c  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:10:21.0734 0x056c  MpsSvc - ok
18:10:21.0745 0x056c  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:10:21.0750 0x056c  MRxDAV - ok
18:10:21.0783 0x056c  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:10:21.0786 0x056c  mrxsmb - ok
18:10:21.0794 0x056c  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:10:21.0800 0x056c  mrxsmb10 - ok
18:10:21.0848 0x056c  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:10:21.0854 0x056c  mrxsmb20 - ok
18:10:21.0862 0x056c  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:10:21.0866 0x056c  msahci - ok
18:10:21.0875 0x056c  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:10:21.0879 0x056c  msdsm - ok
18:10:21.0901 0x056c  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
18:10:21.0907 0x056c  MSDTC - ok
18:10:21.0919 0x056c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:10:21.0921 0x056c  Msfs - ok
18:10:21.0927 0x056c  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:10:21.0929 0x056c  mshidkmdf - ok
18:10:21.0932 0x056c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:10:21.0934 0x056c  msisadrv - ok
18:10:21.0986 0x056c  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:10:21.0992 0x056c  MSiSCSI - ok
18:10:22.0000 0x056c  msiserver - ok
18:10:22.0020 0x056c  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:10:22.0022 0x056c  MSKSSRV - ok
18:10:22.0030 0x056c  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:10:22.0032 0x056c  MSPCLOCK - ok
18:10:22.0036 0x056c  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:10:22.0038 0x056c  MSPQM - ok
18:10:22.0048 0x056c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:10:22.0053 0x056c  MsRPC - ok
18:10:22.0057 0x056c  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
18:10:22.0059 0x056c  mssmbios - ok
18:10:22.0080 0x056c  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:10:22.0082 0x056c  MSTEE - ok
18:10:22.0084 0x056c  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
18:10:22.0086 0x056c  MTConfig - ok
18:10:22.0089 0x056c  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:10:22.0091 0x056c  Mup - ok
18:10:22.0152 0x056c  [ 4BBB9D9C4DF259FAE2D172C5BB25DDD0 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
18:10:22.0159 0x056c  MyWiFiDHCPDNS - ok
18:10:22.0229 0x056c  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
18:10:22.0252 0x056c  napagent - ok
18:10:22.0297 0x056c  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:10:22.0306 0x056c  NativeWifiP - ok
18:10:22.0396 0x056c  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:10:22.0430 0x056c  NDIS - ok
18:10:22.0460 0x056c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:10:22.0462 0x056c  NdisCap - ok
18:10:22.0485 0x056c  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:10:22.0487 0x056c  NdisTapi - ok
18:10:22.0496 0x056c  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:10:22.0498 0x056c  Ndisuio - ok
18:10:22.0523 0x056c  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:10:22.0527 0x056c  NdisWan - ok
18:10:22.0550 0x056c  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:10:22.0552 0x056c  NDProxy - ok
18:10:22.0557 0x056c  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:10:22.0560 0x056c  NetBIOS - ok
18:10:22.0587 0x056c  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:10:22.0592 0x056c  NetBT - ok
18:10:22.0619 0x056c  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
18:10:22.0622 0x056c  Netlogon - ok
18:10:22.0669 0x056c  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
18:10:22.0678 0x056c  Netman - ok
18:10:22.0694 0x056c  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
18:10:22.0704 0x056c  netprofm - ok
18:10:22.0734 0x056c  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:10:22.0736 0x056c  NetTcpPortSharing - ok
18:10:22.0992 0x056c  [ AC69618DE5BCCE8747C9AB0AAE1003C1 ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
18:10:23.0028 0x056c  NETwNs64 - ok
18:10:23.0073 0x056c  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:10:23.0076 0x056c  nfrd960 - ok
18:10:23.0137 0x056c  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:10:23.0147 0x056c  NlaSvc - ok
18:10:23.0154 0x056c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:10:23.0157 0x056c  Npfs - ok
18:10:23.0177 0x056c  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
18:10:23.0180 0x056c  nsi - ok
18:10:23.0184 0x056c  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:10:23.0185 0x056c  nsiproxy - ok
18:10:23.0254 0x056c  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:10:23.0300 0x056c  Ntfs - ok
18:10:23.0323 0x056c  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
18:10:23.0325 0x056c  Null - ok
18:10:23.0376 0x056c  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:10:23.0380 0x056c  nvraid - ok
18:10:23.0408 0x056c  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:10:23.0412 0x056c  nvstor - ok
18:10:23.0458 0x056c  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:10:23.0463 0x056c  nv_agp - ok
18:10:23.0471 0x056c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
18:10:23.0475 0x056c  ohci1394 - ok
18:10:23.0511 0x056c  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:10:23.0517 0x056c  p2pimsvc - ok
18:10:23.0553 0x056c  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:10:23.0567 0x056c  p2psvc - ok
18:10:23.0575 0x056c  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
18:10:23.0579 0x056c  Parport - ok
18:10:23.0620 0x056c  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:10:23.0625 0x056c  partmgr - ok
18:10:23.0636 0x056c  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:10:23.0647 0x056c  PcaSvc - ok
18:10:23.0675 0x056c  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
18:10:23.0679 0x056c  pci - ok
18:10:23.0688 0x056c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
18:10:23.0691 0x056c  pciide - ok
18:10:23.0701 0x056c  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
18:10:23.0706 0x056c  pcmcia - ok
18:10:23.0711 0x056c  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:10:23.0713 0x056c  pcw - ok
18:10:23.0726 0x056c  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:10:23.0736 0x056c  PEAUTH - ok
18:10:23.0790 0x056c  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:10:23.0796 0x056c  PerfHost - ok
18:10:23.0866 0x056c  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
18:10:23.0908 0x056c  pla - ok
18:10:23.0980 0x056c  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:10:24.0001 0x056c  PlugPlay - ok
18:10:24.0024 0x056c  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:10:24.0029 0x056c  PNRPAutoReg - ok
18:10:24.0038 0x056c  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:10:24.0045 0x056c  PNRPsvc - ok
18:10:24.0082 0x056c  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:10:24.0090 0x056c  PolicyAgent - ok
18:10:24.0114 0x056c  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
18:10:24.0119 0x056c  Power - ok
18:10:24.0171 0x056c  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:10:24.0175 0x056c  PptpMiniport - ok
18:10:24.0191 0x056c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
18:10:24.0194 0x056c  Processor - ok
18:10:24.0240 0x056c  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:10:24.0251 0x056c  ProfSvc - ok
18:10:24.0274 0x056c  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:10:24.0277 0x056c  ProtectedStorage - ok
18:10:24.0311 0x056c  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:10:24.0314 0x056c  Psched - ok
18:10:24.0379 0x056c  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
18:10:24.0443 0x056c  ql2300 - ok
18:10:24.0452 0x056c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
18:10:24.0455 0x056c  ql40xx - ok
18:10:24.0483 0x056c  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
18:10:24.0489 0x056c  QWAVE - ok
18:10:24.0493 0x056c  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:10:24.0496 0x056c  QWAVEdrv - ok
18:10:24.0500 0x056c  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:10:24.0502 0x056c  RasAcd - ok
18:10:24.0557 0x056c  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:10:24.0561 0x056c  RasAgileVpn - ok
18:10:24.0603 0x056c  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
18:10:24.0613 0x056c  RasAuto - ok
18:10:24.0623 0x056c  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:10:24.0628 0x056c  Rasl2tp - ok
18:10:24.0672 0x056c  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
18:10:24.0681 0x056c  RasMan - ok
18:10:24.0686 0x056c  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:10:24.0688 0x056c  RasPppoe - ok
18:10:24.0739 0x056c  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:10:24.0742 0x056c  RasSstp - ok
18:10:24.0750 0x056c  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:10:24.0755 0x056c  rdbss - ok
18:10:24.0760 0x056c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
18:10:24.0762 0x056c  rdpbus - ok
18:10:24.0766 0x056c  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:10:24.0767 0x056c  RDPCDD - ok
18:10:24.0791 0x056c  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:10:24.0792 0x056c  RDPENCDD - ok
18:10:24.0798 0x056c  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
18:10:24.0799 0x056c  RDPREFMP - ok
18:10:24.0851 0x056c  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:10:24.0855 0x056c  RdpVideoMiniport - ok
18:10:24.0899 0x056c  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:10:24.0906 0x056c  RDPWD - ok
18:10:24.0918 0x056c  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:10:24.0925 0x056c  rdyboost - ok
18:10:25.0025 0x056c  [ A436F5E7D80BBDBB0826D0F176D5BEA8 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
18:10:25.0039 0x056c  RegSrvc - ok
18:10:25.0098 0x056c  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:10:25.0106 0x056c  RemoteAccess - ok
18:10:25.0143 0x056c  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:10:25.0154 0x056c  RemoteRegistry - ok
18:10:25.0171 0x056c  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:10:25.0176 0x056c  RpcEptMapper - ok
18:10:25.0192 0x056c  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
18:10:25.0195 0x056c  RpcLocator - ok
18:10:25.0219 0x056c  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
18:10:25.0227 0x056c  RpcSs - ok
18:10:25.0269 0x056c  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:10:25.0273 0x056c  rspndr - ok
18:10:25.0296 0x056c  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
18:10:25.0302 0x056c  SamSs - ok
18:10:25.0314 0x056c  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:10:25.0319 0x056c  sbp2port - ok
18:10:25.0343 0x056c  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:10:25.0350 0x056c  SCardSvr - ok
18:10:25.0355 0x056c  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:10:25.0357 0x056c  scfilter - ok
18:10:25.0387 0x056c  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
18:10:25.0422 0x056c  Schedule - ok
18:10:25.0449 0x056c  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:10:25.0450 0x056c  SCPolicySvc - ok
18:10:25.0464 0x056c  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:10:25.0471 0x056c  SDRSVC - ok
18:10:25.0492 0x056c  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:10:25.0494 0x056c  secdrv - ok
18:10:25.0520 0x056c  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
18:10:25.0526 0x056c  seclogon - ok
18:10:25.0571 0x056c  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
18:10:25.0575 0x056c  SENS - ok
18:10:25.0588 0x056c  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:10:25.0594 0x056c  SensrSvc - ok
18:10:25.0611 0x056c  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
18:10:25.0613 0x056c  Serenum - ok
18:10:25.0619 0x056c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
18:10:25.0622 0x056c  Serial - ok
18:10:25.0627 0x056c  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
18:10:25.0630 0x056c  sermouse - ok
18:10:25.0657 0x056c  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:10:25.0662 0x056c  SessionEnv - ok
18:10:25.0665 0x056c  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:10:25.0667 0x056c  sffdisk - ok
18:10:25.0670 0x056c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:10:25.0672 0x056c  sffp_mmc - ok
18:10:25.0675 0x056c  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:10:25.0676 0x056c  sffp_sd - ok
18:10:25.0679 0x056c  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
18:10:25.0681 0x056c  sfloppy - ok
18:10:25.0708 0x056c  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:10:25.0714 0x056c  SharedAccess - ok
18:10:25.0738 0x056c  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:10:25.0745 0x056c  ShellHWDetection - ok
18:10:25.0781 0x056c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
18:10:25.0783 0x056c  SiSRaid2 - ok
18:10:25.0788 0x056c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:10:25.0790 0x056c  SiSRaid4 - ok
18:10:25.0815 0x056c  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:10:25.0817 0x056c  Smb - ok
18:10:25.0837 0x056c  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:10:25.0841 0x056c  SNMPTRAP - ok
18:10:25.0844 0x056c  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:10:25.0846 0x056c  spldr - ok
18:10:25.0884 0x056c  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
18:10:25.0892 0x056c  Spooler - ok
18:10:25.0987 0x056c  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
18:10:26.0073 0x056c  sppsvc - ok
18:10:26.0077 0x056c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
18:10:26.0080 0x056c  sppuinotify - ok
18:10:26.0119 0x056c  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:10:26.0125 0x056c  srv - ok
18:10:26.0183 0x056c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:10:26.0194 0x056c  srv2 - ok
18:10:26.0236 0x056c  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:10:26.0243 0x056c  srvnet - ok
18:10:26.0283 0x056c  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:10:26.0295 0x056c  SSDPSRV - ok
18:10:26.0304 0x056c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:10:26.0312 0x056c  SstpSvc - ok
18:10:26.0331 0x056c  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
18:10:26.0332 0x056c  stexstor - ok
18:10:26.0404 0x056c  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
18:10:26.0440 0x056c  stisvc - ok
18:10:26.0448 0x056c  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
18:10:26.0452 0x056c  swenum - ok
18:10:26.0543 0x056c  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
18:10:26.0578 0x056c  swprv - ok
18:10:26.0652 0x056c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
18:10:26.0710 0x056c  SysMain - ok
18:10:26.0733 0x056c  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:10:26.0739 0x056c  TabletInputService - ok
18:10:26.0777 0x056c  [ 3C23BE0DAD748BAE77E87F18F34EBA0E ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
18:10:26.0779 0x056c  tap0901 - ok
18:10:26.0797 0x056c  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:10:26.0806 0x056c  TapiSrv - ok
18:10:26.0816 0x056c  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
18:10:26.0821 0x056c  TBS - ok
18:10:26.0919 0x056c  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:10:26.0939 0x056c  Tcpip - ok
18:10:27.0025 0x056c  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:10:27.0039 0x056c  TCPIP6 - ok
18:10:27.0089 0x056c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:10:27.0093 0x056c  tcpipreg - ok
18:10:27.0136 0x056c  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:10:27.0141 0x056c  TDPIPE - ok
18:10:27.0171 0x056c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:10:27.0174 0x056c  TDTCP - ok
18:10:27.0183 0x056c  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:10:27.0187 0x056c  tdx - ok
18:10:27.0192 0x056c  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
18:10:27.0196 0x056c  TermDD - ok
18:10:27.0229 0x056c  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
18:10:27.0240 0x056c  TermService - ok
18:10:27.0255 0x056c  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
18:10:27.0259 0x056c  Themes - ok
18:10:27.0274 0x056c  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
18:10:27.0277 0x056c  THREADORDER - ok
18:10:27.0294 0x056c  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
18:10:27.0300 0x056c  TrkWks - ok
18:10:27.0405 0x056c  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:10:27.0411 0x056c  TrustedInstaller - ok
18:10:27.0442 0x056c  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:10:27.0445 0x056c  tssecsrv - ok
18:10:27.0492 0x056c  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:10:27.0496 0x056c  TsUsbFlt - ok
18:10:27.0532 0x056c  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
18:10:27.0536 0x056c  TsUsbGD - ok
18:10:27.0603 0x056c  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:10:27.0608 0x056c  tunnel - ok
18:10:27.0617 0x056c  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:10:27.0621 0x056c  uagp35 - ok
18:10:27.0632 0x056c  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:10:27.0638 0x056c  udfs - ok
18:10:27.0660 0x056c  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:10:27.0665 0x056c  UI0Detect - ok
18:10:27.0688 0x056c  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:10:27.0690 0x056c  uliagpkx - ok
18:10:27.0708 0x056c  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:10:27.0710 0x056c  umbus - ok
18:10:27.0712 0x056c  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
18:10:27.0713 0x056c  UmPass - ok
18:10:27.0852 0x056c  [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:10:27.0873 0x056c  UNS - ok
18:10:27.0905 0x056c  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
18:10:27.0912 0x056c  upnphost - ok
18:10:27.0930 0x056c  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:10:27.0931 0x056c  usbccgp - ok
18:10:27.0952 0x056c  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:10:27.0955 0x056c  usbcir - ok
18:10:27.0972 0x056c  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
18:10:27.0973 0x056c  usbehci - ok
18:10:28.0015 0x056c  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:10:28.0019 0x056c  usbhub - ok
18:10:28.0053 0x056c  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
18:10:28.0056 0x056c  usbohci - ok
18:10:28.0097 0x056c  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
18:10:28.0100 0x056c  usbprint - ok
18:10:28.0131 0x056c  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\drivers\USBSTOR.SYS
18:10:28.0133 0x056c  USBSTOR - ok
18:10:28.0148 0x056c  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
18:10:28.0151 0x056c  usbuhci - ok
18:10:28.0194 0x056c  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
18:10:28.0197 0x056c  usbvideo - ok
18:10:28.0221 0x056c  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
18:10:28.0228 0x056c  UxSms - ok
18:10:28.0251 0x056c  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
18:10:28.0255 0x056c  VaultSvc - ok
18:10:28.0276 0x056c  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:10:28.0279 0x056c  vdrvroot - ok
18:10:28.0315 0x056c  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
18:10:28.0334 0x056c  vds - ok
18:10:28.0341 0x056c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:10:28.0343 0x056c  vga - ok
18:10:28.0348 0x056c  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:10:28.0351 0x056c  VgaSave - ok
18:10:28.0375 0x056c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
18:10:28.0379 0x056c  vhdmp - ok
18:10:28.0383 0x056c  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:10:28.0385 0x056c  viaide - ok
18:10:28.0389 0x056c  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:10:28.0392 0x056c  volmgr - ok
18:10:28.0399 0x056c  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:10:28.0405 0x056c  volmgrx - ok
18:10:28.0411 0x056c  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:10:28.0413 0x056c  volsnap - ok
18:10:28.0430 0x056c  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:10:28.0433 0x056c  vsmraid - ok
18:10:28.0494 0x056c  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
18:10:28.0532 0x056c  VSS - ok
18:10:28.0536 0x056c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
18:10:28.0537 0x056c  vwifibus - ok
18:10:28.0580 0x056c  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
18:10:28.0583 0x056c  vwififlt - ok
18:10:28.0587 0x056c  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
18:10:28.0589 0x056c  vwifimp - ok
18:10:28.0597 0x056c  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
18:10:28.0605 0x056c  W32Time - ok
18:10:28.0610 0x056c  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
18:10:28.0612 0x056c  WacomPen - ok
18:10:28.0637 0x056c  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
18:10:28.0639 0x056c  WANARP - ok
18:10:28.0652 0x056c  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:10:28.0653 0x056c  Wanarpv6 - ok
18:10:28.0727 0x056c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
18:10:28.0766 0x056c  WatAdminSvc - ok
18:10:28.0823 0x056c  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
18:10:28.0881 0x056c  wbengine - ok
18:10:28.0892 0x056c  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:10:28.0898 0x056c  WbioSrvc - ok
18:10:28.0922 0x056c  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:10:28.0928 0x056c  wcncsvc - ok
18:10:28.0938 0x056c  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:10:28.0941 0x056c  WcsPlugInService - ok
18:10:28.0962 0x056c  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
18:10:28.0963 0x056c  Wd - ok
18:10:29.0009 0x056c  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:10:29.0044 0x056c  Wdf01000 - ok
18:10:29.0067 0x056c  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:10:29.0074 0x056c  WdiServiceHost - ok
18:10:29.0078 0x056c  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:10:29.0082 0x056c  WdiSystemHost - ok
18:10:29.0095 0x056c  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
18:10:29.0103 0x056c  WebClient - ok
18:10:29.0118 0x056c  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:10:29.0125 0x056c  Wecsvc - ok
18:10:29.0145 0x056c  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:10:29.0150 0x056c  wercplsupport - ok
18:10:29.0186 0x056c  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:10:29.0194 0x056c  WerSvc - ok
18:10:29.0248 0x056c  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
18:10:29.0250 0x056c  WfpLwf - ok
18:10:29.0346 0x056c  [ 64DE79BF805724F0606FE7B3B2F13784 ] WiMAXAppSrv     C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
18:10:29.0365 0x056c  WiMAXAppSrv - ok
18:10:29.0375 0x056c  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:10:29.0376 0x056c  WIMMount - ok
18:10:29.0407 0x056c  WinDefend - ok
18:10:29.0412 0x056c  WinHttpAutoProxySvc - ok
18:10:29.0537 0x056c  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:10:29.0544 0x056c  Winmgmt - ok
18:10:29.0622 0x056c  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
18:10:29.0665 0x056c  WinRM - ok
18:10:29.0734 0x056c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:10:29.0767 0x056c  Wlansvc - ok
18:10:29.0782 0x056c  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
18:10:29.0784 0x056c  WmiAcpi - ok
18:10:29.0802 0x056c  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:10:29.0806 0x056c  wmiApSrv - ok
18:10:29.0839 0x056c  WMPNetworkSvc - ok
18:10:29.0865 0x056c  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:10:29.0875 0x056c  WPCSvc - ok
18:10:29.0885 0x056c  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:10:29.0897 0x056c  WPDBusEnum - ok
18:10:29.0912 0x056c  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:10:29.0914 0x056c  ws2ifsl - ok
18:10:29.0927 0x056c  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
18:10:29.0933 0x056c  wscsvc - ok
18:10:29.0937 0x056c  WSearch - ok
18:10:30.0038 0x056c  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:10:30.0120 0x056c  wuauserv - ok
18:10:30.0198 0x056c  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:10:30.0203 0x056c  WudfPf - ok
18:10:30.0232 0x056c  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:10:30.0240 0x056c  WUDFRd - ok
18:10:30.0277 0x056c  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:10:30.0283 0x056c  wudfsvc - ok
18:10:30.0334 0x056c  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:10:30.0357 0x056c  WwanSvc - ok
18:10:30.0402 0x056c  ================ Scan global ===============================
18:10:30.0429 0x056c  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:10:30.0464 0x056c  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:10:30.0473 0x056c  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:10:30.0502 0x056c  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:10:30.0532 0x056c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:10:30.0544 0x056c  [Global] - ok
18:10:30.0545 0x056c  ================ Scan MBR ==================================
18:10:30.0556 0x056c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:10:30.0831 0x056c  \Device\Harddisk0\DR0 - ok
18:10:31.0581 0x056c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
18:10:31.0597 0x056c  \Device\Harddisk1\DR1 - ok
18:10:31.0598 0x056c  ================ Scan VBR ==================================
18:10:31.0603 0x056c  [ DA7470AE9061701E40889C2195831F95 ] \Device\Harddisk0\DR0\Partition1
18:10:31.0607 0x056c  \Device\Harddisk0\DR0\Partition1 - ok
18:10:31.0619 0x056c  [ 696E8A485FDABBF04F09F37E5475F8D0 ] \Device\Harddisk0\DR0\Partition2
18:10:31.0622 0x056c  \Device\Harddisk0\DR0\Partition2 - ok
18:10:31.0634 0x056c  [ B41706071D99D6E7E5F6838E0BAE2258 ] \Device\Harddisk1\DR1\Partition1
18:10:31.0636 0x056c  \Device\Harddisk1\DR1\Partition1 - ok
18:10:31.0637 0x056c  ============================================================
18:10:31.0637 0x056c  Scan finished
18:10:31.0637 0x056c  ============================================================
18:10:31.0649 0x0524  Detected object count: 0
18:10:31.0649 0x0524  Actual detected object count: 0
18:10:50.0801 0x0fac  ============================================================
18:10:50.0801 0x0fac  Scan started
18:10:50.0801 0x0fac  Mode: Manual; SigCheck; TDLFS; 
18:10:50.0801 0x0fac  ============================================================
18:10:51.0100 0x0fac  ================ Scan system memory ========================
18:10:51.0100 0x0fac  System memory - ok
18:10:51.0100 0x0fac  ================ Scan services =============================
18:10:51.0570 0x0fac  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
18:10:51.0721 0x0fac  1394ohci - ok
18:10:51.0728 0x0fac  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
18:10:51.0740 0x0fac  ACPI - ok
18:10:51.0743 0x0fac  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
18:10:51.0771 0x0fac  AcpiPmi - ok
18:10:51.0789 0x0fac  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
18:10:51.0804 0x0fac  adp94xx - ok
18:10:51.0817 0x0fac  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
18:10:51.0832 0x0fac  adpahci - ok
18:10:51.0844 0x0fac  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
18:10:51.0855 0x0fac  adpu320 - ok
18:10:51.0880 0x0fac  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
18:10:51.0909 0x0fac  AeLookupSvc - ok
18:10:51.0956 0x0fac  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
18:10:51.0985 0x0fac  AFD - ok
18:10:51.0989 0x0fac  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
18:10:51.0999 0x0fac  agp440 - ok
18:10:52.0003 0x0fac  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
18:10:52.0015 0x0fac  ALG - ok
18:10:52.0018 0x0fac  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
18:10:52.0027 0x0fac  aliide - ok
18:10:52.0030 0x0fac  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
18:10:52.0039 0x0fac  amdide - ok
18:10:52.0042 0x0fac  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
18:10:52.0055 0x0fac  AmdK8 - ok
18:10:52.0058 0x0fac  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
18:10:52.0069 0x0fac  AmdPPM - ok
18:10:52.0108 0x0fac  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
18:10:52.0141 0x0fac  amdsata - ok
18:10:52.0191 0x0fac  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
18:10:52.0210 0x0fac  amdsbs - ok
18:10:52.0243 0x0fac  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
18:10:52.0259 0x0fac  amdxata - ok
18:10:52.0289 0x0fac  [ 92A848F962DA91C631147D566414BB7E ] AmUStor         C:\Windows\system32\drivers\AmUStor.SYS
18:10:52.0336 0x0fac  AmUStor - ok
18:10:52.0340 0x0fac  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
18:10:52.0382 0x0fac  AppID - ok
18:10:52.0397 0x0fac  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
18:10:52.0425 0x0fac  AppIDSvc - ok
18:10:52.0458 0x0fac  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
18:10:52.0490 0x0fac  Appinfo - ok
18:10:52.0497 0x0fac  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
18:10:52.0510 0x0fac  arc - ok
18:10:52.0514 0x0fac  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
18:10:52.0525 0x0fac  arcsas - ok
18:10:52.0556 0x0fac  [ D6D2BB2F4F5868549DDE75F3146BC84E ] asmthub3        C:\Windows\system32\DRIVERS\asmthub3.sys
18:10:52.0611 0x0fac  asmthub3 - ok
18:10:52.0649 0x0fac  [ 1E758172367DC2A3653F16586D62A3F0 ] asmtxhci        C:\Windows\system32\DRIVERS\asmtxhci.sys
18:10:52.0720 0x0fac  asmtxhci - ok
18:10:52.0754 0x0fac  [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
18:10:52.0785 0x0fac  aswFsBlk - ok
18:10:52.0815 0x0fac  [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
18:10:52.0833 0x0fac  aswMonFlt - ok
18:10:52.0845 0x0fac  [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
18:10:52.0861 0x0fac  aswRdr - ok
18:10:52.0879 0x0fac  [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
18:10:52.0891 0x0fac  aswRvrt - ok
18:10:52.0921 0x0fac  [ 8C0800CDB501CFC1164B286A0478DC10 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
18:10:52.0952 0x0fac  aswSnx - ok
18:10:52.0969 0x0fac  [ 3815DB16CDA62190F5C0A65118F3D714 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
18:10:52.0994 0x0fac  aswSP - ok
18:10:52.0998 0x0fac  [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
18:10:53.0007 0x0fac  aswTdi - ok
18:10:53.0011 0x0fac  [ 22F521108881DC59837F6FC614E0568F ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
18:10:53.0021 0x0fac  aswVmm - ok
18:10:53.0052 0x0fac  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
18:10:53.0081 0x0fac  AsyncMac - ok
18:10:53.0084 0x0fac  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
18:10:53.0093 0x0fac  atapi - ok
18:10:53.0114 0x0fac  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
18:10:53.0152 0x0fac  AudioEndpointBuilder - ok
18:10:53.0161 0x0fac  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
18:10:53.0196 0x0fac  AudioSrv - ok
18:10:53.0337 0x0fac  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:10:53.0365 0x0fac  avast! Antivirus - ok
18:10:53.0383 0x0fac  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
18:10:53.0420 0x0fac  AxInstSV - ok
18:10:53.0447 0x0fac  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
18:10:53.0477 0x0fac  b06bdrv - ok
18:10:53.0497 0x0fac  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
18:10:53.0513 0x0fac  b57nd60a - ok
18:10:53.0526 0x0fac  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
18:10:53.0549 0x0fac  BDESVC - ok
18:10:53.0553 0x0fac  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
18:10:53.0581 0x0fac  Beep - ok
18:10:53.0602 0x0fac  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
18:10:53.0640 0x0fac  BFE - ok
18:10:53.0684 0x0fac  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
18:10:53.0754 0x0fac  BITS - ok
18:10:53.0758 0x0fac  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
18:10:53.0769 0x0fac  blbdrive - ok
18:10:53.0803 0x0fac  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
18:10:53.0830 0x0fac  bowser - ok
18:10:53.0870 0x0fac  [ 3DCB409BCBD02AB0675682F8E42A410F ] bpenum          C:\Windows\system32\DRIVERS\bpenum.sys
18:10:53.0898 0x0fac  bpenum - ok
18:10:53.0939 0x0fac  [ 6C66EEF6669B14DF4F426990A1CA5112 ] bpmp            C:\Windows\system32\DRIVERS\bpmp.sys
18:10:53.0988 0x0fac  bpmp - ok
18:10:54.0016 0x0fac  [ 2EE68405BBADE51CBE1C973FF3A1A400 ] bpusb           C:\Windows\system32\Drivers\bpusb.sys
18:10:54.0053 0x0fac  bpusb - ok
18:10:54.0058 0x0fac  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
18:10:54.0100 0x0fac  BrFiltLo - ok
18:10:54.0117 0x0fac  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
18:10:54.0131 0x0fac  BrFiltUp - ok
18:10:54.0164 0x0fac  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
18:10:54.0184 0x0fac  Browser - ok
18:10:54.0209 0x0fac  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
18:10:54.0237 0x0fac  Brserid - ok
18:10:54.0241 0x0fac  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
18:10:54.0254 0x0fac  BrSerWdm - ok
18:10:54.0257 0x0fac  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
18:10:54.0270 0x0fac  BrUsbMdm - ok
18:10:54.0273 0x0fac  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
18:10:54.0284 0x0fac  BrUsbSer - ok
18:10:54.0287 0x0fac  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
18:10:54.0301 0x0fac  BTHMODEM - ok
18:10:54.0321 0x0fac  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
18:10:54.0350 0x0fac  bthserv - ok
18:10:54.0358 0x0fac  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
18:10:54.0388 0x0fac  cdfs - ok
18:10:54.0392 0x0fac  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
18:10:54.0404 0x0fac  cdrom - ok
18:10:54.0414 0x0fac  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
18:10:54.0442 0x0fac  CertPropSvc - ok
18:10:54.0445 0x0fac  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
18:10:54.0458 0x0fac  circlass - ok
18:10:54.0471 0x0fac  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
18:10:54.0482 0x0fac  CLFS - ok
18:10:54.0647 0x0fac  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
18:10:54.0674 0x0fac  clr_optimization_v2.0.50727_32 - ok
18:10:54.0792 0x0fac  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
18:10:54.0822 0x0fac  clr_optimization_v2.0.50727_64 - ok
18:10:54.0998 0x0fac  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
18:10:55.0023 0x0fac  clr_optimization_v4.0.30319_32 - ok
18:10:55.0175 0x0fac  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
18:10:55.0201 0x0fac  clr_optimization_v4.0.30319_64 - ok
18:10:55.0232 0x0fac  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
18:10:55.0269 0x0fac  CmBatt - ok
18:10:55.0277 0x0fac  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
18:10:55.0298 0x0fac  cmdide - ok
18:10:55.0341 0x0fac  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
18:10:55.0371 0x0fac  CNG - ok
18:10:55.0375 0x0fac  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
18:10:55.0385 0x0fac  Compbatt - ok
18:10:55.0412 0x0fac  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
18:10:55.0425 0x0fac  CompositeBus - ok
18:10:55.0428 0x0fac  COMSysApp - ok
18:10:55.0665 0x0fac  [ 815F3180B5117E42E422188E9CCC89C6 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
18:10:55.0705 0x0fac  cphs - ok
18:10:55.0724 0x0fac  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
18:10:55.0738 0x0fac  crcdisk - ok
18:10:55.0777 0x0fac  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
18:10:55.0864 0x0fac  CryptSvc - ok
18:10:55.0909 0x0fac  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
18:10:55.0989 0x0fac  DcomLaunch - ok
18:10:56.0014 0x0fac  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
18:10:56.0048 0x0fac  defragsvc - ok
18:10:56.0062 0x0fac  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
18:10:56.0092 0x0fac  DfsC - ok
18:10:56.0111 0x0fac  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
18:10:56.0126 0x0fac  Dhcp - ok
18:10:56.0129 0x0fac  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
18:10:56.0157 0x0fac  discache - ok
18:10:56.0160 0x0fac  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
18:10:56.0169 0x0fac  Disk - ok
18:10:56.0256 0x0fac  [ EC9D64CC2DD8A4C6D11550F364890DB1 ] DMAgent         C:\Program Files\Intel\WiMAX\Bin\DMAgent.exe
18:10:56.0286 0x0fac  DMAgent ( UnsignedFile.Multi.Generic ) - warning
18:10:56.0286 0x0fac  DMAgent - detected UnsignedFile.Multi.Generic (1)
18:10:56.0335 0x0fac  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
18:10:56.0373 0x0fac  Dnscache - ok
18:10:56.0397 0x0fac  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
18:10:56.0442 0x0fac  dot3svc - ok
18:10:56.0446 0x0fac  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
18:10:56.0477 0x0fac  DPS - ok
18:10:56.0808 0x0fac  [ 308195495181C8F3D51E6ED5B58D54AC ] DragonUpdater   C:\Program Files (x86)\Comodo\Dragon\dragon_updater.exe
18:10:56.0850 0x0fac  DragonUpdater - ok
18:10:56.0881 0x0fac  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
18:10:56.0931 0x0fac  drmkaud - ok
18:10:56.0989 0x0fac  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
18:10:57.0049 0x0fac  DXGKrnl - ok
18:10:57.0087 0x0fac  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
18:10:57.0151 0x0fac  EapHost - ok
18:10:57.0240 0x0fac  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
18:10:57.0377 0x0fac  ebdrv - ok
18:10:57.0417 0x0fac  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
18:10:57.0453 0x0fac  EFS - ok
18:10:57.0562 0x0fac  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
18:10:57.0624 0x0fac  ehRecvr - ok
18:10:57.0628 0x0fac  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
18:10:57.0645 0x0fac  ehSched - ok
18:10:57.0687 0x0fac  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
18:10:57.0704 0x0fac  elxstor - ok
18:10:57.0707 0x0fac  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
18:10:57.0727 0x0fac  ErrDev - ok
18:10:57.0760 0x0fac  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
18:10:57.0792 0x0fac  EventSystem - ok
18:10:57.0937 0x0fac  [ 54FC81B0162478A72A93DBBEAFB35671 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
18:10:57.0977 0x0fac  EvtEng - ok
18:10:58.0006 0x0fac  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
18:10:58.0038 0x0fac  exfat - ok
18:10:58.0042 0x0fac  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
18:10:58.0074 0x0fac  fastfat - ok
18:10:58.0097 0x0fac  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
18:10:58.0124 0x0fac  Fax - ok
18:10:58.0127 0x0fac  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
18:10:58.0138 0x0fac  fdc - ok
18:10:58.0147 0x0fac  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
18:10:58.0176 0x0fac  fdPHost - ok
18:10:58.0179 0x0fac  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
18:10:58.0208 0x0fac  FDResPub - ok
18:10:58.0211 0x0fac  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
18:10:58.0221 0x0fac  FileInfo - ok
18:10:58.0224 0x0fac  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
18:10:58.0253 0x0fac  Filetrace - ok
18:10:58.0255 0x0fac  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
18:10:58.0266 0x0fac  flpydisk - ok
18:10:58.0271 0x0fac  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
18:10:58.0284 0x0fac  FltMgr - ok
18:10:58.0327 0x0fac  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
18:10:58.0361 0x0fac  FontCache - ok
18:10:58.0408 0x0fac  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:10:58.0431 0x0fac  FontCache3.0.0.0 - ok
18:10:58.0444 0x0fac  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
18:10:58.0459 0x0fac  FsDepends - ok
18:10:58.0477 0x0fac  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
18:10:58.0491 0x0fac  Fs_Rec - ok
18:10:58.0533 0x0fac  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
18:10:58.0566 0x0fac  fvevol - ok
18:10:58.0585 0x0fac  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
18:10:58.0595 0x0fac  gagp30kx - ok
18:10:58.0638 0x0fac  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
18:10:58.0674 0x0fac  gpsvc - ok
18:10:58.0692 0x0fac  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
18:10:58.0732 0x0fac  hcw85cir - ok
18:10:58.0766 0x0fac  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
18:10:58.0794 0x0fac  HdAudAddService - ok
18:10:58.0800 0x0fac  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
18:10:58.0814 0x0fac  HDAudBus - ok
18:10:58.0817 0x0fac  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
18:10:58.0827 0x0fac  HidBatt - ok
18:10:58.0831 0x0fac  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
18:10:58.0844 0x0fac  HidBth - ok
18:10:58.0848 0x0fac  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
18:10:58.0860 0x0fac  HidIr - ok
18:10:58.0868 0x0fac  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
18:10:58.0897 0x0fac  hidserv - ok
18:10:58.0927 0x0fac  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
18:10:58.0938 0x0fac  HidUsb - ok
18:10:58.0958 0x0fac  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
18:10:58.0987 0x0fac  hkmsvc - ok
18:10:59.0007 0x0fac  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
18:10:59.0032 0x0fac  HomeGroupListener - ok
18:10:59.0061 0x0fac  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
18:10:59.0075 0x0fac  HomeGroupProvider - ok
18:10:59.0093 0x0fac  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
18:10:59.0102 0x0fac  HpSAMD - ok
18:10:59.0114 0x0fac  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
18:10:59.0154 0x0fac  HTTP - ok
18:10:59.0157 0x0fac  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
18:10:59.0166 0x0fac  hwpolicy - ok
18:10:59.0169 0x0fac  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
18:10:59.0181 0x0fac  i8042prt - ok
18:10:59.0217 0x0fac  [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
18:10:59.0229 0x0fac  iaStor - ok
18:10:59.0271 0x0fac  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
18:10:59.0283 0x0fac  iaStorV - ok
18:10:59.0363 0x0fac  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
18:10:59.0431 0x0fac  idsvc - ok
18:10:59.0592 0x0fac  [ 348214F96642FD4FEF630DE021BA3540 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
18:10:59.0689 0x0fac  igfx - ok
18:10:59.0714 0x0fac  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
18:10:59.0723 0x0fac  iirsp - ok
18:10:59.0756 0x0fac  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
18:10:59.0793 0x0fac  IKEEXT - ok
18:10:59.0798 0x0fac  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
18:10:59.0807 0x0fac  intelide - ok
18:10:59.0818 0x0fac  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
18:10:59.0829 0x0fac  intelppm - ok
18:10:59.0850 0x0fac  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
18:10:59.0880 0x0fac  IPBusEnum - ok
18:10:59.0884 0x0fac  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:10:59.0912 0x0fac  IpFilterDriver - ok
18:11:00.0002 0x0fac  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
18:11:00.0122 0x0fac  iphlpsvc - ok
18:11:00.0143 0x0fac  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
18:11:00.0163 0x0fac  IPMIDRV - ok
18:11:00.0168 0x0fac  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
18:11:00.0202 0x0fac  IPNAT - ok
18:11:00.0205 0x0fac  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
18:11:00.0259 0x0fac  IRENUM - ok
18:11:00.0266 0x0fac  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
18:11:00.0279 0x0fac  isapnp - ok
18:11:00.0314 0x0fac  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
18:11:00.0328 0x0fac  iScsiPrt - ok
18:11:00.0332 0x0fac  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
18:11:00.0343 0x0fac  kbdclass - ok
18:11:00.0347 0x0fac  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
18:11:00.0361 0x0fac  kbdhid - ok
18:11:00.0383 0x0fac  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
18:11:00.0445 0x0fac  KeyIso - ok
18:11:00.0486 0x0fac  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
18:11:00.0516 0x0fac  KSecDD - ok
18:11:00.0574 0x0fac  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
18:11:00.0603 0x0fac  KSecPkg - ok
18:11:00.0626 0x0fac  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
18:11:00.0663 0x0fac  ksthunk - ok
18:11:00.0702 0x0fac  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
18:11:00.0738 0x0fac  KtmRm - ok
18:11:00.0768 0x0fac  [ 655A5D8E80869781CCE23760ADA7E695 ] L1C             C:\Windows\system32\DRIVERS\L1C62x64.sys
18:11:00.0776 0x0fac  L1C - ok
18:11:00.0813 0x0fac  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
18:11:00.0874 0x0fac  LanmanServer - ok
18:11:00.0885 0x0fac  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
18:11:00.0915 0x0fac  LanmanWorkstation - ok
18:11:00.0920 0x0fac  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
18:11:00.0949 0x0fac  lltdio - ok
18:11:00.0978 0x0fac  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
18:11:01.0012 0x0fac  lltdsvc - ok
18:11:01.0015 0x0fac  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
18:11:01.0044 0x0fac  lmhosts - ok
18:11:01.0108 0x0fac  [ 7F32D4C47A50E7223491E8FB9359907D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:11:01.0140 0x0fac  LMS - ok
18:11:01.0154 0x0fac  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
18:11:01.0167 0x0fac  LSI_FC - ok
18:11:01.0171 0x0fac  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
18:11:01.0180 0x0fac  LSI_SAS - ok
18:11:01.0184 0x0fac  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
18:11:01.0192 0x0fac  LSI_SAS2 - ok
18:11:01.0196 0x0fac  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
18:11:01.0205 0x0fac  LSI_SCSI - ok
18:11:01.0217 0x0fac  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
18:11:01.0247 0x0fac  luafv - ok
18:11:01.0272 0x0fac  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
18:11:01.0279 0x0fac  MBAMProtector - ok
18:11:01.0304 0x0fac  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
18:11:01.0314 0x0fac  MBAMScheduler - ok
18:11:01.0339 0x0fac  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
18:11:01.0351 0x0fac  MBAMService - ok
18:11:01.0373 0x0fac  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
18:11:01.0399 0x0fac  Mcx2Svc - ok
18:11:01.0402 0x0fac  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
18:11:01.0411 0x0fac  megasas - ok
18:11:01.0416 0x0fac  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
18:11:01.0427 0x0fac  MegaSR - ok
18:11:01.0467 0x0fac  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
18:11:01.0486 0x0fac  MEIx64 - ok
18:11:01.0528 0x0fac  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
18:11:01.0587 0x0fac  MMCSS - ok
18:11:01.0591 0x0fac  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
18:11:01.0619 0x0fac  Modem - ok
18:11:01.0622 0x0fac  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
18:11:01.0635 0x0fac  monitor - ok
18:11:01.0649 0x0fac  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
18:11:01.0658 0x0fac  mouclass - ok
18:11:01.0661 0x0fac  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
18:11:01.0672 0x0fac  mouhid - ok
18:11:01.0675 0x0fac  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
18:11:01.0685 0x0fac  mountmgr - ok
18:11:01.0689 0x0fac  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
18:11:01.0699 0x0fac  mpio - ok
18:11:01.0702 0x0fac  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
18:11:01.0731 0x0fac  mpsdrv - ok
18:11:01.0767 0x0fac  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
18:11:01.0805 0x0fac  MpsSvc - ok
18:11:01.0809 0x0fac  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
18:11:01.0826 0x0fac  MRxDAV - ok
18:11:01.0858 0x0fac  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
18:11:01.0912 0x0fac  mrxsmb - ok
18:11:01.0922 0x0fac  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:11:01.0942 0x0fac  mrxsmb10 - ok
18:11:01.0978 0x0fac  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:11:02.0013 0x0fac  mrxsmb20 - ok
18:11:02.0036 0x0fac  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
18:11:02.0050 0x0fac  msahci - ok
18:11:02.0055 0x0fac  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
18:11:02.0070 0x0fac  msdsm - ok
18:11:02.0087 0x0fac  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
18:11:02.0112 0x0fac  MSDTC - ok
18:11:02.0118 0x0fac  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
18:11:02.0146 0x0fac  Msfs - ok
18:11:02.0149 0x0fac  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
18:11:02.0177 0x0fac  mshidkmdf - ok
18:11:02.0180 0x0fac  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
18:11:02.0189 0x0fac  msisadrv - ok
18:11:02.0230 0x0fac  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
18:11:02.0392 0x0fac  MSiSCSI - ok
18:11:02.0397 0x0fac  msiserver - ok
18:11:02.0402 0x0fac  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
18:11:02.0430 0x0fac  MSKSSRV - ok
18:11:02.0433 0x0fac  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
18:11:02.0461 0x0fac  MSPCLOCK - ok
18:11:02.0464 0x0fac  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
18:11:02.0492 0x0fac  MSPQM - ok
18:11:02.0498 0x0fac  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
18:11:02.0511 0x0fac  MsRPC - ok
18:11:02.0515 0x0fac  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
18:11:02.0524 0x0fac  mssmbios - ok
18:11:02.0527 0x0fac  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
18:11:02.0556 0x0fac  MSTEE - ok
18:11:02.0558 0x0fac  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
18:11:02.0569 0x0fac  MTConfig - ok
18:11:02.0572 0x0fac  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
18:11:02.0582 0x0fac  Mup - ok
18:11:02.0614 0x0fac  [ 4BBB9D9C4DF259FAE2D172C5BB25DDD0 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
18:11:02.0624 0x0fac  MyWiFiDHCPDNS - ok
18:11:02.0656 0x0fac  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
18:11:02.0690 0x0fac  napagent - ok
18:11:02.0703 0x0fac  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
18:11:02.0724 0x0fac  NativeWifiP - ok
18:11:02.0783 0x0fac  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
18:11:02.0821 0x0fac  NDIS - ok
18:11:02.0847 0x0fac  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
18:11:02.0877 0x0fac  NdisCap - ok
18:11:02.0880 0x0fac  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
18:11:02.0909 0x0fac  NdisTapi - ok
18:11:02.0912 0x0fac  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
18:11:02.0940 0x0fac  Ndisuio - ok
18:11:02.0944 0x0fac  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
18:11:02.0974 0x0fac  NdisWan - ok
18:11:02.0977 0x0fac  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
18:11:03.0006 0x0fac  NDProxy - ok
18:11:03.0009 0x0fac  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
18:11:03.0039 0x0fac  NetBIOS - ok
18:11:03.0050 0x0fac  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
18:11:03.0081 0x0fac  NetBT - ok
18:11:03.0105 0x0fac  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
18:11:03.0117 0x0fac  Netlogon - ok
18:11:03.0158 0x0fac  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
18:11:03.0217 0x0fac  Netman - ok
18:11:03.0225 0x0fac  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
18:11:03.0259 0x0fac  netprofm - ok
18:11:03.0287 0x0fac  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
18:11:03.0296 0x0fac  NetTcpPortSharing - ok
18:11:03.0489 0x0fac  [ AC69618DE5BCCE8747C9AB0AAE1003C1 ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
18:11:03.0602 0x0fac  NETwNs64 - ok
18:11:03.0626 0x0fac  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
18:11:03.0635 0x0fac  nfrd960 - ok
18:11:03.0666 0x0fac  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
18:11:03.0695 0x0fac  NlaSvc - ok
18:11:03.0698 0x0fac  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
18:11:03.0727 0x0fac  Npfs - ok
18:11:03.0764 0x0fac  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
18:11:03.0794 0x0fac  nsi - ok
18:11:03.0796 0x0fac  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
18:11:03.0824 0x0fac  nsiproxy - ok
18:11:03.0898 0x0fac  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
18:11:03.0934 0x0fac  Ntfs - ok
18:11:03.0955 0x0fac  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
18:11:03.0983 0x0fac  Null - ok
18:11:04.0006 0x0fac  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
18:11:04.0016 0x0fac  nvraid - ok
18:11:04.0038 0x0fac  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
18:11:04.0048 0x0fac  nvstor - ok
18:11:04.0051 0x0fac  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
18:11:04.0061 0x0fac  nv_agp - ok
18:11:04.0070 0x0fac  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
18:11:04.0082 0x0fac  ohci1394 - ok
18:11:04.0096 0x0fac  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
18:11:04.0117 0x0fac  p2pimsvc - ok
18:11:04.0137 0x0fac  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
18:11:04.0156 0x0fac  p2psvc - ok
18:11:04.0159 0x0fac  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
18:11:04.0171 0x0fac  Parport - ok
18:11:04.0207 0x0fac  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
18:11:04.0231 0x0fac  partmgr - ok
18:11:04.0238 0x0fac  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
18:11:04.0265 0x0fac  PcaSvc - ok
18:11:04.0269 0x0fac  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
18:11:04.0279 0x0fac  pci - ok
18:11:04.0282 0x0fac  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
18:11:04.0291 0x0fac  pciide - ok
18:11:04.0312 0x0fac  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
18:11:04.0322 0x0fac  pcmcia - ok
18:11:04.0325 0x0fac  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
18:11:04.0335 0x0fac  pcw - ok
18:11:04.0345 0x0fac  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
18:11:04.0383 0x0fac  PEAUTH - ok
18:11:04.0410 0x0fac  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
18:11:04.0422 0x0fac  PerfHost - ok
18:11:04.0463 0x0fac  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
18:11:04.0507 0x0fac  pla - ok
18:11:04.0541 0x0fac  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
18:11:04.0569 0x0fac  PlugPlay - ok
18:11:04.0589 0x0fac  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
18:11:04.0601 0x0fac  PNRPAutoReg - ok
18:11:04.0607 0x0fac  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
18:11:04.0622 0x0fac  PNRPsvc - ok
18:11:04.0660 0x0fac  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
18:11:04.0718 0x0fac  PolicyAgent - ok
18:11:04.0745 0x0fac  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
18:11:04.0777 0x0fac  Power - ok
18:11:04.0801 0x0fac  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
18:11:04.0830 0x0fac  PptpMiniport - ok
18:11:04.0844 0x0fac  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
18:11:04.0855 0x0fac  Processor - ok
18:11:04.0881 0x0fac  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
18:11:04.0907 0x0fac  ProfSvc - ok
18:11:04.0916 0x0fac  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
18:11:04.0927 0x0fac  ProtectedStorage - ok
18:11:04.0953 0x0fac  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
18:11:04.0983 0x0fac  Psched - ok
18:11:05.0029 0x0fac  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
18:11:05.0050 0x0fac  ql2300 - ok
18:11:05.0054 0x0fac  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
18:11:05.0064 0x0fac  ql40xx - ok
18:11:05.0091 0x0fac  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
18:11:05.0112 0x0fac  QWAVE - ok
18:11:05.0115 0x0fac  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
18:11:05.0131 0x0fac  QWAVEdrv - ok
18:11:05.0133 0x0fac  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
18:11:05.0162 0x0fac  RasAcd - ok
18:11:05.0177 0x0fac  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
18:11:05.0206 0x0fac  RasAgileVpn - ok
18:11:05.0223 0x0fac  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
18:11:05.0254 0x0fac  RasAuto - ok
18:11:05.0258 0x0fac  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
18:11:05.0287 0x0fac  Rasl2tp - ok
18:11:05.0303 0x0fac  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
18:11:05.0337 0x0fac  RasMan - ok
18:11:05.0340 0x0fac  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
18:11:05.0370 0x0fac  RasPppoe - ok
18:11:05.0439 0x0fac  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
18:11:05.0497 0x0fac  RasSstp - ok
18:11:05.0503 0x0fac  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
18:11:05.0535 0x0fac  rdbss - ok
18:11:05.0538 0x0fac  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
18:11:05.0560 0x0fac  rdpbus - ok
18:11:05.0563 0x0fac  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
18:11:05.0591 0x0fac  RDPCDD - ok
18:11:05.0595 0x0fac  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
18:11:05.0624 0x0fac  RDPENCDD - ok
18:11:05.0628 0x0fac  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
18:11:05.0655 0x0fac  RDPREFMP - ok
18:11:05.0683 0x0fac  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
18:11:05.0722 0x0fac  RdpVideoMiniport - ok
18:11:05.0762 0x0fac  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
18:11:05.0793 0x0fac  RDPWD - ok
18:11:05.0798 0x0fac  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
18:11:05.0814 0x0fac  rdyboost - ok
18:11:05.0891 0x0fac  [ A436F5E7D80BBDBB0826D0F176D5BEA8 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
18:11:05.0922 0x0fac  RegSrvc - ok
18:11:05.0951 0x0fac  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
18:11:05.0995 0x0fac  RemoteAccess - ok
18:11:06.0018 0x0fac  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
18:11:06.0050 0x0fac  RemoteRegistry - ok
18:11:06.0059 0x0fac  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
18:11:06.0089 0x0fac  RpcEptMapper - ok
18:11:06.0113 0x0fac  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
18:11:06.0125 0x0fac  RpcLocator - ok
18:11:06.0139 0x0fac  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
18:11:06.0174 0x0fac  RpcSs - ok
18:11:06.0200 0x0fac  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
18:11:06.0229 0x0fac  rspndr - ok
18:11:06.0251 0x0fac  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
18:11:06.0262 0x0fac  SamSs - ok
18:11:06.0266 0x0fac  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
18:11:06.0275 0x0fac  sbp2port - ok
18:11:06.0297 0x0fac  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
18:11:06.0329 0x0fac  SCardSvr - ok
18:11:06.0333 0x0fac  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
18:11:06.0360 0x0fac  scfilter - ok
18:11:06.0393 0x0fac  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
18:11:06.0434 0x0fac  Schedule - ok
18:11:06.0458 0x0fac  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
18:11:06.0486 0x0fac  SCPolicySvc - ok
18:11:06.0495 0x0fac  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
18:11:06.0518 0x0fac  SDRSVC - ok
18:11:06.0521 0x0fac  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
18:11:06.0549 0x0fac  secdrv - ok
18:11:06.0564 0x0fac  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
18:11:06.0594 0x0fac  seclogon - ok
18:11:06.0603 0x0fac  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
18:11:06.0633 0x0fac  SENS - ok
18:11:06.0643 0x0fac  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
18:11:06.0671 0x0fac  SensrSvc - ok
18:11:06.0674 0x0fac  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
18:11:06.0685 0x0fac  Serenum - ok
18:11:06.0689 0x0fac  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
18:11:06.0701 0x0fac  Serial - ok
18:11:06.0704 0x0fac  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
18:11:06.0715 0x0fac  sermouse - ok
18:11:06.0734 0x0fac  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
18:11:06.0764 0x0fac  SessionEnv - ok
18:11:06.0767 0x0fac  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
18:11:06.0780 0x0fac  sffdisk - ok
18:11:06.0783 0x0fac  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
18:11:06.0796 0x0fac  sffp_mmc - ok
18:11:06.0799 0x0fac  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
18:11:06.0812 0x0fac  sffp_sd - ok
18:11:06.0815 0x0fac  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
18:11:06.0825 0x0fac  sfloppy - ok
18:11:06.0852 0x0fac  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
18:11:06.0887 0x0fac  SharedAccess - ok
18:11:06.0903 0x0fac  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
18:11:06.0936 0x0fac  ShellHWDetection - ok
18:11:06.0939 0x0fac  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
18:11:06.0948 0x0fac  SiSRaid2 - ok
18:11:06.0952 0x0fac  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
18:11:06.0961 0x0fac  SiSRaid4 - ok
18:11:06.0964 0x0fac  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
18:11:06.0993 0x0fac  Smb - ok
18:11:07.0003 0x0fac  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
18:11:07.0016 0x0fac  SNMPTRAP - ok
18:11:07.0019 0x0fac  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
18:11:07.0028 0x0fac  spldr - ok
18:11:07.0071 0x0fac  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
18:11:07.0097 0x0fac  Spooler - ok
18:11:07.0203 0x0fac  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
18:11:07.0277 0x0fac  sppsvc - ok
18:11:07.0283 0x0fac  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
18:11:07.0313 0x0fac  sppuinotify - ok
18:11:07.0355 0x0fac  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
18:11:07.0430 0x0fac  srv - ok
18:11:07.0468 0x0fac  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
18:11:07.0506 0x0fac  srv2 - ok
18:11:07.0522 0x0fac  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
18:11:07.0540 0x0fac  srvnet - ok
18:11:07.0593 0x0fac  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
18:11:07.0655 0x0fac  SSDPSRV - ok
18:11:07.0679 0x0fac  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
18:11:07.0710 0x0fac  SstpSvc - ok
18:11:07.0729 0x0fac  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
18:11:07.0738 0x0fac  stexstor - ok
18:11:07.0781 0x0fac  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
18:11:07.0822 0x0fac  stisvc - ok
18:11:07.0825 0x0fac  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
18:11:07.0835 0x0fac  swenum - ok
18:11:07.0859 0x0fac  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
18:11:07.0895 0x0fac  swprv - ok
18:11:07.0945 0x0fac  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
18:11:07.0980 0x0fac  SysMain - ok
18:11:07.0998 0x0fac  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
18:11:08.0016 0x0fac  TabletInputService - ok
18:11:08.0031 0x0fac  [ 3C23BE0DAD748BAE77E87F18F34EBA0E ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
18:11:08.0039 0x0fac  tap0901 - ok
18:11:08.0051 0x0fac  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
18:11:08.0085 0x0fac  TapiSrv - ok
18:11:08.0092 0x0fac  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
18:11:08.0125 0x0fac  TBS - ok
18:11:08.0212 0x0fac  [ DB74544B75566C974815E79A62433F29 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
18:11:08.0250 0x0fac  Tcpip - ok
18:11:08.0311 0x0fac  [ DB74544B75566C974815E79A62433F29 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
18:11:08.0343 0x0fac  TCPIP6 - ok
18:11:08.0388 0x0fac  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
18:11:08.0400 0x0fac  tcpipreg - ok
18:11:08.0435 0x0fac  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
18:11:08.0484 0x0fac  TDPIPE - ok
18:11:08.0525 0x0fac  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
18:11:08.0557 0x0fac  TDTCP - ok
18:11:08.0564 0x0fac  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
18:11:08.0600 0x0fac  tdx - ok
18:11:08.0603 0x0fac  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
18:11:08.0612 0x0fac  TermDD - ok
18:11:08.0649 0x0fac  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
18:11:08.0685 0x0fac  TermService - ok
18:11:08.0698 0x0fac  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
18:11:08.0714 0x0fac  Themes - ok
18:11:08.0728 0x0fac  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
18:11:08.0758 0x0fac  THREADORDER - ok
18:11:08.0771 0x0fac  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
18:11:08.0802 0x0fac  TrkWks - ok
18:11:08.0847 0x0fac  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
18:11:08.0900 0x0fac  TrustedInstaller - ok
18:11:08.0930 0x0fac  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
18:11:08.0962 0x0fac  tssecsrv - ok
18:11:09.0002 0x0fac  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
18:11:09.0041 0x0fac  TsUsbFlt - ok
18:11:09.0076 0x0fac  [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
18:11:09.0103 0x0fac  TsUsbGD - ok
18:11:09.0134 0x0fac  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
18:11:09.0184 0x0fac  tunnel - ok
18:11:09.0187 0x0fac  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
18:11:09.0196 0x0fac  uagp35 - ok
18:11:09.0201 0x0fac  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
18:11:09.0233 0x0fac  udfs - ok
18:11:09.0259 0x0fac  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
18:11:09.0273 0x0fac  UI0Detect - ok
18:11:09.0276 0x0fac  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
18:11:09.0285 0x0fac  uliagpkx - ok
18:11:09.0288 0x0fac  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
18:11:09.0300 0x0fac  umbus - ok
18:11:09.0302 0x0fac  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
18:11:09.0313 0x0fac  UmPass - ok
18:11:09.0425 0x0fac  [ 2C16648A12999AE69A9EBF41974B0BA2 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:11:09.0461 0x0fac  UNS - ok
18:11:09.0493 0x0fac  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
18:11:09.0528 0x0fac  upnphost - ok
18:11:09.0551 0x0fac  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
18:11:09.0578 0x0fac  usbccgp - ok
18:11:09.0595 0x0fac  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
18:11:09.0609 0x0fac  usbcir - ok
18:11:09.0626 0x0fac  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
18:11:09.0637 0x0fac  usbehci - ok
18:11:09.0668 0x0fac  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
18:11:09.0681 0x0fac  usbhub - ok
18:11:09.0719 0x0fac  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
18:11:09.0751 0x0fac  usbohci - ok
18:11:09.0762 0x0fac  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
18:11:09.0784 0x0fac  usbprint - ok
18:11:09.0819 0x0fac  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\drivers\USBSTOR.SYS
18:11:09.0858 0x0fac  USBSTOR - ok
18:11:09.0880 0x0fac  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
18:11:09.0898 0x0fac  usbuhci - ok
18:11:09.0944 0x0fac  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
18:11:09.0991 0x0fac  usbvideo - ok
18:11:10.0020 0x0fac  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
18:11:10.0058 0x0fac  UxSms - ok
18:11:10.0083 0x0fac  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
18:11:10.0094 0x0fac  VaultSvc - ok
18:11:10.0097 0x0fac  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
18:11:10.0106 0x0fac  vdrvroot - ok
18:11:10.0133 0x0fac  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
18:11:10.0169 0x0fac  vds - ok
18:11:10.0172 0x0fac  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
18:11:10.0185 0x0fac  vga - ok
18:11:10.0187 0x0fac  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
18:11:10.0216 0x0fac  VgaSave - ok
18:11:10.0220 0x0fac  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
18:11:10.0230 0x0fac  vhdmp - ok
18:11:10.0233 0x0fac  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
18:11:10.0242 0x0fac  viaide - ok
18:11:10.0267 0x0fac  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
18:11:10.0276 0x0fac  volmgr - ok
18:11:10.0282 0x0fac  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
18:11:10.0302 0x0fac  volmgrx - ok
18:11:10.0321 0x0fac  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
18:11:10.0332 0x0fac  volsnap - ok
18:11:10.0337 0x0fac  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
18:11:10.0347 0x0fac  vsmraid - ok
18:11:10.0404 0x0fac  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
18:11:10.0462 0x0fac  VSS - ok
18:11:10.0466 0x0fac  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
18:11:10.0478 0x0fac  vwifibus - ok
18:11:10.0482 0x0fac  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
18:11:10.0497 0x0fac  vwififlt - ok
18:11:10.0500 0x0fac  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
18:11:10.0514 0x0fac  vwifimp - ok
18:11:10.0521 0x0fac  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
18:11:10.0554 0x0fac  W32Time - ok
18:11:10.0559 0x0fac  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
18:11:10.0569 0x0fac  WacomPen - ok
18:11:10.0573 0x0fac  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
18:11:10.0601 0x0fac  WANARP - ok
18:11:10.0604 0x0fac  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
18:11:10.0632 0x0fac  Wanarpv6 - ok
18:11:10.0686 0x0fac  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
18:11:10.0726 0x0fac  WatAdminSvc - ok
18:11:10.0763 0x0fac  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
18:11:10.0832 0x0fac  wbengine - ok
18:11:10.0837 0x0fac  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
18:11:10.0856 0x0fac  WbioSrvc - ok
18:11:10.0862 0x0fac  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
18:11:10.0883 0x0fac  wcncsvc - ok
18:11:10.0892 0x0fac  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
18:11:10.0916 0x0fac  WcsPlugInService - ok
18:11:10.0938 0x0fac  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
18:11:10.0947 0x0fac  Wd - ok
18:11:10.0978 0x0fac  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
18:11:10.0993 0x0fac  Wdf01000 - ok
18:11:11.0010 0x0fac  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
18:11:11.0041 0x0fac  WdiServiceHost - ok
18:11:11.0043 0x0fac  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
18:11:11.0063 0x0fac  WdiSystemHost - ok
18:11:11.0083 0x0fac  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
18:11:11.0103 0x0fac  WebClient - ok
18:11:11.0117 0x0fac  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
18:11:11.0151 0x0fac  Wecsvc - ok
18:11:11.0166 0x0fac  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
18:11:11.0196 0x0fac  wercplsupport - ok
18:11:11.0199 0x0fac  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
18:11:11.0229 0x0fac  WerSvc - ok
18:11:11.0232 0x0fac  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
18:11:11.0260 0x0fac  WfpLwf - ok
18:11:11.0345 0x0fac  [ 64DE79BF805724F0606FE7B3B2F13784 ] WiMAXAppSrv     C:\Program Files\Intel\WiMAX\Bin\AppSrv.exe
18:11:11.0384 0x0fac  WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - warning
18:11:11.0384 0x0fac  WiMAXAppSrv - detected UnsignedFile.Multi.Generic (1)
18:11:11.0391 0x0fac  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
18:11:11.0405 0x0fac  WIMMount - ok
18:11:11.0428 0x0fac  WinDefend - ok
18:11:11.0431 0x0fac  WinHttpAutoProxySvc - ok
18:11:11.0558 0x0fac  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
18:11:11.0614 0x0fac  Winmgmt - ok
18:11:11.0668 0x0fac  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
18:11:11.0719 0x0fac  WinRM - ok
18:11:11.0761 0x0fac  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
18:11:11.0808 0x0fac  Wlansvc - ok
18:11:11.0825 0x0fac  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
18:11:11.0837 0x0fac  WmiAcpi - ok
18:11:11.0856 0x0fac  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
18:11:11.0872 0x0fac  wmiApSrv - ok
18:11:11.0904 0x0fac  WMPNetworkSvc - ok
18:11:11.0919 0x0fac  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
18:11:11.0969 0x0fac  WPCSvc - ok
18:11:11.0977 0x0fac  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
18:11:12.0011 0x0fac  WPDBusEnum - ok
18:11:12.0022 0x0fac  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
18:11:12.0053 0x0fac  ws2ifsl - ok
18:11:12.0070 0x0fac  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
18:11:12.0088 0x0fac  wscsvc - ok
18:11:12.0090 0x0fac  WSearch - ok
18:11:12.0198 0x0fac  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
18:11:12.0245 0x0fac  wuauserv - ok
18:11:12.0274 0x0fac  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
18:11:12.0294 0x0fac  WudfPf - ok
18:11:12.0299 0x0fac  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
18:11:12.0311 0x0fac  WUDFRd - ok
18:11:12.0331 0x0fac  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
18:11:12.0343 0x0fac  wudfsvc - ok
18:11:12.0386 0x0fac  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
18:11:12.0479 0x0fac  WwanSvc - ok
18:11:12.0494 0x0fac  ================ Scan global ===============================
18:11:12.0528 0x0fac  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
18:11:12.0564 0x0fac  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:11:12.0598 0x0fac  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
18:11:12.0633 0x0fac  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
18:11:12.0675 0x0fac  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
18:11:12.0687 0x0fac  [Global] - ok
18:11:12.0688 0x0fac  ================ Scan MBR ==================================
18:11:12.0710 0x0fac  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
18:11:13.0090 0x0fac  \Device\Harddisk0\DR0 - ok
18:11:13.0843 0x0fac  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
18:11:14.0026 0x0fac  \Device\Harddisk1\DR1 - ok
18:11:14.0027 0x0fac  ================ Scan VBR ==================================
18:11:14.0033 0x0fac  [ DA7470AE9061701E40889C2195831F95 ] \Device\Harddisk0\DR0\Partition1
18:11:14.0036 0x0fac  \Device\Harddisk0\DR0\Partition1 - ok
18:11:14.0073 0x0fac  [ 696E8A485FDABBF04F09F37E5475F8D0 ] \Device\Harddisk0\DR0\Partition2
18:11:14.0075 0x0fac  \Device\Harddisk0\DR0\Partition2 - ok
18:11:14.0087 0x0fac  [ B41706071D99D6E7E5F6838E0BAE2258 ] \Device\Harddisk1\DR1\Partition1
18:11:14.0090 0x0fac  \Device\Harddisk1\DR1\Partition1 - ok
18:11:14.0090 0x0fac  ============================================================
18:11:14.0090 0x0fac  Scan finished
18:11:14.0090 0x0fac  ============================================================
18:11:14.0101 0x0e60  Detected object count: 2
18:11:14.0101 0x0e60  Actual detected object count: 2
18:11:17.0297 0x0e60  DMAgent ( UnsignedFile.Multi.Generic ) - skipped by user
18:11:17.0297 0x0e60  DMAgent ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:11:17.0298 0x0e60  WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - skipped by user
18:11:17.0298 0x0e60  WiMAXAppSrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
18:13:31.0426 0x0d8c  Deinitialize success
 
 
 

Edited by A Mom, 20 August 2013 - 11:10 PM.


#5 A Mom

A Mom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 20 August 2013 - 11:09 PM

Farbar Service Scanner Version: 18-08-2013
Ran by patrick (administrator) on 21-08-2013 at 00:06:01
Running from "C:\Users\patrick\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************
 
Internet Services:
============
 
Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Attempt to access Yahoo.com returned error: Yahoo.com is offline
 
 
Windows Firewall:
=============
 
Firewall Disabled Policy: 
==================
 
 
System Restore:
============
 
System Restore Disabled Policy: 
========================
 
 
Action Center:
============
 
 
Windows Update:
============
 
Windows Autoupdate Disabled Policy: 
============================
 
 
Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.
 
 
Windows Defender Disabled Policy: 
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1
 
 
Other Services:
==============
 
 
File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\ipnathlp.dll => MD5 is legit
C:\Windows\System32\iphlpsvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
 
 
**** End of log ****

 

 

 

 

 



#6 A Mom

A Mom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 20 August 2013 - 11:11 PM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by patrick (administrator) on 20-08-2013 at 18:17:07
Running from "C:\Users\patrick\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Intel® Centrino® Wireless-N 6150 = Wireless Network Connection (Connected)
avast! SecureLine TAP Adapter = Local Area Connection 2 (Hardware not present)
Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20) = Local Area Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)
Intel® Centrino® WiMAX 6150 = Local Area Connection 3 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : patrick-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Ethernet adapter Local Area Connection 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel® Centrino® WiMAX 6150
   Physical Address. . . . . . . . . : 64-D4-DA-60-33-19
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2
   Physical Address. . . . . . . . . : 40-25-C2-65-23-B9
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 40-25-C2-65-23-B9
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 6150
   Physical Address. . . . . . . . . : 40-25-C2-65-23-B8
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::60da:6b0f:326a:ea9%12(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.10(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, August 20, 2013 12:23:12 PM
   Lease Expires . . . . . . . . . . : Wednesday, August 21, 2013 5:35:13 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 306193858
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-A3-72-50-14-DA-E9-CB-A4-38
   DNS Servers . . . . . . . . . . . : 8.26.56.26
                                       156.154.70.22
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
   Physical Address. . . . . . . . . : 14-DA-E9-CB-A4-38
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{D834595B-056B-455A-85C8-E9AEC170BA3B}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{8EC306F4-13E8-456B-863D-A297BA937453}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{ED7B6052-0B61-45EC-AA37-6C4B48413A04}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{4C2CAC80-3740-46C7-94C5-210D6CB37FC9}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:2ca7:2247:3f57:fef5(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::2ca7:2247:3f57:fef5%15(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
 
Tunnel adapter isatap.{13C333C6-3F4B-470C-B852-352577005CC1}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter 6TO4 Adapter:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  ns1.recursive.dns.com
Address:  8.26.56.26
 
DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Address:  2a00:1450:4009:802::1000
 
 
Pinging google.com [74.125.228.66] with 32 bytes of data:
Reply from 74.125.228.66: bytes=32 time=60ms TTL=51
Reply from 74.125.228.66: bytes=32 time=63ms TTL=51
 
Ping statistics for 74.125.228.66:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 60ms, Maximum = 63ms, Average = 61ms
Server:  ns1.recursive.dns.com
Address:  8.26.56.26
 
DNS request timed out.
    timeout was 2 seconds.
Name:    yahoo.com
Addresses:  98.139.183.24
 98.138.253.109
 206.190.36.45
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=209ms TTL=47
Reply from 98.138.253.109: bytes=32 time=164ms TTL=45
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 164ms, Maximum = 209ms, Average = 186ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=3ms TTL=128
Reply from 127.0.0.1: bytes=32 time=6ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 3ms, Maximum = 6ms, Average = 4ms
===========================================================================
Interface List
 18...64 d4 da 60 33 19 ......Intel® Centrino® WiMAX 6150
 14...40 25 c2 65 23 b9 ......Microsoft Virtual WiFi Miniport Adapter #2
 13...40 25 c2 65 23 b9 ......Microsoft Virtual WiFi Miniport Adapter
 12...40 25 c2 65 23 b8 ......Intel® Centrino® Wireless-N 6150
 11...14 da e9 cb a4 38 ......Atheros AR8151 PCI-E Gigabit Ethernet Controller (NDIS 6.20)
  1...........................Software Loopback Interface 1
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 39...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 40...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
 17...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.10     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.10    281
     192.168.1.10  255.255.255.255         On-link      192.168.1.10    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.10    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.10    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.10    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 15     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 15     58 2001::/32                On-link
 15    306 2001:0:5ef5:79fd:2ca7:2247:3f57:fef5/128
                                    On-link
 12    281 fe80::/64                On-link
 15    306 fe80::/64                On-link
 15    306 fe80::2ca7:2247:3f57:fef5/128
                                    On-link
 12    281 fe80::60da:6b0f:326a:ea9/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (08/20/2013 02:44:10 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (08/20/2013 02:44:06 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (08/20/2013 02:44:05 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (08/20/2013 02:44:02 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (08/20/2013 00:16:12 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/20/2013 00:45:32 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/20/2013 00:12:12 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/19/2013 11:49:34 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/19/2013 11:37:42 PM) (Source: Application Error) (User: )
Description: Faulting application name: mbamgui.exe, version: 1.70.0.0, time stamp: 0x512fc066
Faulting module name: mbamgui.exe, version: 1.70.0.0, time stamp: 0x512fc066
Exception code: 0x40000015
Fault offset: 0x0003b525
Faulting process id: 0x898
Faulting application start time: 0xmbamgui.exe0
Faulting application path: mbamgui.exe1
Faulting module path: mbamgui.exe2
Report Id: mbamgui.exe3
 
Error: (08/19/2013 11:37:16 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (08/19/2013 11:29:33 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.
 
Error: (08/19/2013 10:51:33 PM) (Source: iaStor) (User: )
Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.
 
Error: (08/19/2013 09:22:20 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{C7483A64-37FD-4A51-9CCA-51457E755558} because another computer on the network has the same name.  The server could not start.
 
Error: (08/19/2013 09:17:04 PM) (Source: DCOM) (User: patrick-PC)
Description: application-specificLocalActivation{48DA6741-1BF0-4A44-8325-293086C79077}{48DA6741-1BF0-4A44-8325-293086C79077}patrick-PCpatrickS-1-5-21-3020856249-1737618876-2619382199-1000LocalHost (Using LRPC)
 
Error: (08/19/2013 09:17:04 PM) (Source: DCOM) (User: patrick-PC)
Description: application-specificLocalActivation{48DA6741-1BF0-4A44-8325-293086C79077}{48DA6741-1BF0-4A44-8325-293086C79077}patrick-PCpatrickS-1-5-21-3020856249-1737618876-2619382199-1000LocalHost (Using LRPC)
 
Error: (08/19/2013 09:17:04 PM) (Source: DCOM) (User: patrick-PC)
Description: application-specificLocalActivation{48DA6741-1BF0-4A44-8325-293086C79077}{48DA6741-1BF0-4A44-8325-293086C79077}patrick-PCpatrickS-1-5-21-3020856249-1737618876-2619382199-1000LocalHost (Using LRPC)
 
Error: (08/19/2013 09:17:04 PM) (Source: DCOM) (User: patrick-PC)
Description: application-specificLocalActivation{48DA6741-1BF0-4A44-8325-293086C79077}{48DA6741-1BF0-4A44-8325-293086C79077}patrick-PCpatrickS-1-5-21-3020856249-1737618876-2619382199-1000LocalHost (Using LRPC)
 
Error: (08/19/2013 09:17:04 PM) (Source: DCOM) (User: patrick-PC)
Description: application-specificLocalActivation{48DA6741-1BF0-4A44-8325-293086C79077}{48DA6741-1BF0-4A44-8325-293086C79077}patrick-PCpatrickS-1-5-21-3020856249-1737618876-2619382199-1000LocalHost (Using LRPC)
 
Error: (08/19/2013 04:55:19 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{72DD353D-54E2-4B47-B2BE-73D54BB89DD1} because another computer on the network has the same name.  The server could not start.
 
Error: (08/19/2013 04:55:03 PM) (Source: Server) (User: )
Description: The server could not bind to the transport \Device\NetBT_Tcpip_{72DD353D-54E2-4B47-B2BE-73D54BB89DD1} because another computer on the network has the same name.  The server could not start.
 
 
Microsoft Office Sessions:
=========================
Error: (08/20/2013 02:44:10 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\patrick\Downloads\esetsmartinstaller_enu.exe
 
Error: (08/20/2013 02:44:06 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\patrick\Downloads\esetsmartinstaller_enu.exe
 
Error: (08/20/2013 02:44:05 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\patrick\Downloads\esetsmartinstaller_enu.exe
 
Error: (08/20/2013 02:44:02 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\Users\patrick\Downloads\esetsmartinstaller_enu.exe
 
Error: (08/20/2013 00:16:12 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/20/2013 00:45:32 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/20/2013 00:12:12 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/19/2013 11:49:34 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (08/19/2013 11:37:42 PM) (Source: Application Error)(User: )
Description: mbamgui.exe1.70.0.0512fc066mbamgui.exe1.70.0.0512fc066400000150003b52589801ce9d568af1e94eC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exeC:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exede6579c4-0949-11e3-a1af-14dae9cba438
 
Error: (08/19/2013 11:37:16 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
=========================== Installed Programs ============================
 
Alcor Micro USB Card Reader (Version: 1.2.0117.08443)
Asmedia ASM104x USB 3.0 Host Controller Driver (Version: 1.12.9.0)
Atheros Driver Installation Program (Version: 9.0)
avast! Free Antivirus (Version: 8.0.1489.0)
Comodo Dragon (Version: 28.1.0.0)
ESET Online Scanner v3
Intel PROSet Wireless
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 9.17.10.2932)
Intel® PROSet/Wireless WiFi Software (Version: 14.01.1000)
Intel® PROSet/Wireless WiMAX Software (Version: 6.02.1000)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
 
========================= Devices: ================================
 
Name: avast! SecureLine TAP Adapter
Description: avast! SecureLine TAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: TAP-Windows Provider V9
Service: tap0901
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 38%
Total physical RAM: 6049.14 MB
Available physical RAM: 3691.01 MB
Total Pagefile: 12096.46 MB
Available Pagefile: 9598.17 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.73 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:596.07 GB) (Free:560.71 GB) NTFS
3 Drive e: () (Removable) (Total:7.38 GB) (Free:7.35 GB) FAT32
 
========================= Users: ========================================
 
User accounts for \\PATRICK-PC
 
Administrator            aly                      Guest                    
patrick                  
 
========================= Minidump Files ==================================
 
No minidump file found
 
========================= Restore Points ==================================
 
19-08-2013 06:15:33 avast! Free Antivirus Setup
19-08-2013 06:19:25 Windows Modules Installer
19-08-2013 06:24:55 Installed Asmedia ASM104x USB 3.0 Host Controller Driver.
19-08-2013 06:41:28 Installed Intel® PROSet/Wireless WiFi Software.
19-08-2013 06:52:30 Installed Alcor Micro USB Card Reader
19-08-2013 06:55:58 Installed Asmedia ASM104x USB 3.0 Host Controller Driver.
19-08-2013 07:11:00 Windows Modules Installer
19-08-2013 07:51:09 Device Driver Package Install: TAP-Windows Provider V9 Network adapters
19-08-2013 07:51:26 Windows Update
19-08-2013 08:01:33 Installed Intel® PROSet/Wireless WiMAX Software.
19-08-2013 08:11:20 Windows Update
19-08-2013 09:01:34 Windows Update
19-08-2013 09:07:49 Windows Update
19-08-2013 09:20:10 Windows Update
19-08-2013 09:31:42 Windows Update
19-08-2013 10:11:15 Windows Update
19-08-2013 17:53:43 Revo Uninstaller Pro's restore point - BBYCM30068
20-08-2013 01:25:11 Revo Uninstaller Pro's restore point - VPNReactor
20-08-2013 01:26:33 Revo Uninstaller Pro's restore point - vpn reactor
20-08-2013 03:31:26 Restore Operation
20-08-2013 03:43:05 Windows Update
 
**** End of log ****
 
 
# AdwCleaner v3.000 - Report created 21/08/2013 at 00:14:33
# Updated 20/08/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : patrick - PATRICK-PC
# Running from : C:\Users\patrick\Downloads\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.16660
 
 
*************************
 
AdwCleaner[R0].txt - [644 octets] - [20/08/2013 21:48:59]
AdwCleaner[R1].txt - [565 octets] - [21/08/2013 00:14:33]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [624 octets] ##########
 
 
 
 
 
It looks like AdwCleaner  has changed, seems like a different interface.
 

 

 
 
 
 
 

Edited by A Mom, 20 August 2013 - 11:16 PM.


#7 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:42 AM

Posted 21 August 2013 - 06:29 AM

Hi

Please do the following next:

:step1:

  • Launch Malwarebytes' Anti-Malware (MBAM)
  • Click on the tab update, then click Check for Updates
  • If an update is found, it will download and install the latest version.
  • Then on the Scanner tab select Perform full scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is checked, and click Remove Selected.
  • When completed, a log will open in Notepad.
  • Post the log in your next reply.


Note: Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\<Username>\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Users\<Username>\AppData\Roaming\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt


:step2:

I'd like us to scan your machine with ESET Online Scanner:

Note: You can use either Internet Explorer or Mozilla FireFox for this scan. You will however need to disable your current installed Anti-Virus, how to do so can be read here.

Note: Vista/Windows 7 users: You will need to to right-click on the either the IE or FF icon in the Start Menu or Quick Launch Bar on the Taskbar and select Run as Administrator from the context menu.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png  button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png
       icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • On ESET: Click the Back button, then the Finish button.

Note: Do not forget to re-enable your Anti-Virus application after running the above scan!


:step3:

  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.



:step4:

How is the computer running now?


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#8 A Mom

A Mom
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:42 AM

Posted 21 August 2013 - 11:29 PM

Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.08.22.01
 
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16660
patrick :: PATRICK-PC [administrator]
 
Protection: Enabled
 
8/21/2013 10:51:56 PM
mbam-log-2013-08-21 (22-51-56).txt
 
Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 372785
Time elapsed: 21 minute(s), 40 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
 

 

 
 
 
 
 
 
# AdwCleaner v3.000 - Report created 22/08/2013 at 00:09:48
# Updated 20/08/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : patrick - PATRICK-PC
# Running from : C:\Users\patrick\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.16660
 
 
*************************
 
AdwCleaner[R0].txt - [644 octets] - [22/08/2013 00:09:27]
AdwCleaner[S0].txt - [566 octets] - [22/08/2013 00:09:48]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [625 octets] ##########
 
 
 
 
Eset and Malwarebytes didn't find anything but i run all of these scanners daily so that's what i expected,  my issue is with corrupted files , programs not responding and as of today my admin acct password being deleted which has never happened before and me and my son are the only users.
 
Something is definitely wrong because AdwCleaner is not working like it normally does , i run it just as described and it used to show some results but now it just shows the above.

Edited by A Mom, 21 August 2013 - 11:31 PM.


#9 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:07:42 AM

Posted 22 August 2013 - 01:21 PM

Ok we need a deeper look:

 

===========

 

Please follow the instructions in ==>This Guide<== starting at Step 6.  If you cannot complete a step, skip it and continue.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<==  Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users