Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Suspecting infection, computer name change (and netbios change "9Aorka5")


  • Please log in to reply
8 replies to this topic

#1 WilX

WilX

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:51 AM

Posted 04 November 2013 - 06:52 PM

Hi! firstly this is my first post so i hope i'm doing this right.

 

I have a win 7 computer which i suspect is infected by some kind of malware/virus

 

The thing is that the computer name and local network name has changed from my deafault name to "9Aorka5", unfortunately i can't find anything about this specific name on the internet, since i also have to login to user acc on computer boot while this has been automatic before.

Possible infection (if likely) when restoring mbam clean since i was unable to launch either tuneup utilities or adobe reader after cleanup, altough infection from pdf-file is also possible (but unlikely since files were scanned with avg without any warnings)

Windows defender was also unactive (noticed when computer name was already changed), upon activating defender and running full scan no threats was found either

 

Full scan using avg free is finished without any threats and full mbam scan in safemode without network is currently ungoing, i've never seen this kind of problem before so i need help.

 

Once again i'm new to the forum and have tried to supply all i've tried and figured out so far, and thank you so much in advance!



BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:51 AM

Posted 04 November 2013 - 07:21 PM

once your scan is done with Mbam, please post the log then perform the following:

Please download TDSSKiller exe version to your desktop.
Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
Vista/Windows 7 users right-click and select Run As Administrator.

Click on Change Parameters and click Detect TDLFS File System.
    Click the Start Scan button.
    Do not use the computer during the scan
    If the scan completes with nothing found, click Close to exit.
    If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
    A TDSSKiller text file would be saved in Local Disk C.
    Copy and paste the contents of that file in your next reply.



#3 WilX

WilX
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:51 AM

Posted 05 November 2013 - 07:05 AM

Hello again! thanks for your help, i will rund the suggested program now to see what it find!

Thank you for helping me

Here's the mbam log:

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2013.11.04.04

Windows 7 Service Pack 1 x64 NTFS (Safe Mode)
Internet Explorer 10.0.9200.16540
PeterAdmin :: 9Aorka5 [administrator]

2013-11-04 23:58:58
MBAM-log-2013-11-05 (12-59-05).txt

Scan type: Full scan (C:\|D:\|E:\|G:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 619353
Time elapsed: 1 hour(s), 33 minute(s), 58 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 4
HKCR\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3} (PUP.Optional.Delta.A) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UNINSTALL.EXE (Adware.Agent) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\UNINSTALL.EXE (PUP.Optional.InstallCore.A) -> No action taken.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> No action taken.

Registry Values Detected: 1
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {8015078C-CB0B-11E0-B9A1-001D920425ED} -> No action taken.

Registry Data Items Detected: 5
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Start Page (PUP.Optional.Snapdo) -> Bad: (http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=SE&userid=e5892c12-a4c2-4f7a-b79d-23dfd07ab68f&searchtype=hp&installDate=07/05/2013) Good: (http://www.google.com) -> No action taken.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Search Bar (PUP.Optional.Snapdo) -> Bad: (http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=SE&userid=e5892c12-a4c2-4f7a-b79d-23dfd07ab68f&searchtype=ds&q={searchTerms}&installDate=07/05/2013) Good: (http://www.google.com) -> No action taken.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main|Search Page (PUP.Optional.Snapdo) -> Bad: (http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=SE&userid=e5892c12-a4c2-4f7a-b79d-23dfd07ab68f&searchtype=ds&q={searchTerms}&installDate=07/05/2013) Good: (http://www.google.com) -> No action taken.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Search|Default_Search_URL (PUP.Optional.Snapdo) -> Bad: (http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=SE&userid=e5892c12-a4c2-4f7a-b79d-23dfd07ab68f&searchtype=ds&q={searchTerms}&installDate=07/05/2013) Good: (http://www.google.com) -> No action taken.
HKCU\SOFTWARE\Microsoft\Internet Explorer\Search|SearchAssistant (PUP.Optional.Snapdo) -> Bad: (http://feed.snapdo.com/?publisher=SnapdoGOblidooYB&dpid=SnapdoGOblidooYB&co=SE&userid=e5892c12-a4c2-4f7a-b79d-23dfd07ab68f&searchtype=ds&q={searchTerms}&installDate=07/05/2013) Good: (http://www.google.com) -> No action taken.

Folders Detected: 22
C:\Users\Peter\AppData\Roaming\Babylon (PUP.Optional.Babylon.A) -> No action taken.
C:\Users\Peter\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Peter\AppData\Roaming\OpenCandy\OpenCandy_E4660A8D0CE749A8954029008F3127CB (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\mt_ffx\Delta (PUP.Optional.Delta.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\image (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\image\default (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\Install (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\language (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\language\en_us (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\language\es_es (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\language\pt_br (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\language\tr_tr (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\language\zh_cn (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\language\zh_tw (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\layout (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\layout\default (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\Desk365\eInstall\style (PUP.Optional.Desk365.A) -> No action taken.
C:\Program Files (x86)\Common Files\337\libcef (PUP.Optional.337Technologies.A) -> No action taken.
C:\Program Files (x86)\Common Files\337\libcef\1.963.439 (PUP.Optional.337Technologies.A) -> No action taken.
C:\Program Files (x86)\Common Files\337\libcef\1.963.439\locales (PUP.Optional.337Technologies.A) -> No action taken.
C:\Users\Peter\AppData\Local\Temp\ct2504091 (PUP.Optional.Conduit.A) -> No action taken.

Files Detected: 21
C:\Program Files (x86)\FoxTabFLVPlayer\Uninstall\Uninstall.exe (Adware.Agent) -> No action taken.
C:\Program Files (x86)\PDFReader\Uninstall\Uninstall.exe (PUP.Optional.InstallCore.A) -> No action taken.
C:\Program Files (x86)\Vuze\.install4j\user\mism.exe (PUP.Optional.Conduit.A) -> No action taken.
C:\Users\Peter\AppData\Roaming\eIntaller\17A99AEFC5CE4c2f9DE548BF701CF9AC\Desk365.exe (PUP.Optional.Desk365.A) -> No action taken.
C:\Users\Peter\AppData\Roaming\OpenCandy\OpenCandy_E4660A8D0CE749A8954029008F3127CB\LatestDLMgr.exe (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Public\Documents\Tu\CORE10k.EXE (PUP.Keygen.Intro) -> No action taken.
C:\Windows Activation 2010 AIO\mini-KMS_Activator_v1.051.exe (PUP.RiskwareTool.CK) -> No action taken.
C:\Windows Activation 2010 AIO\RemoveWAT 2.25.exe (HackTool.Wpakill) -> No action taken.
D:\Smått o gott\Ventrilo\ventrilo-2.1.4-Windows-i386.exe (Trojan.Dropper) -> No action taken.
D:\Smått o gott\Ventrilo\ventrilo-2.1.4-Windows-i386.zip (Trojan.Dropper) -> No action taken.
E:\Mina dokument\PCSUUpdate.exe (PUP.Optional.PCSpeedUp.A) -> No action taken.
E:\Mina dokument\Mina mottagna filer\Windows_XP_CDKEY_Changer.rar (Backdoor.IRCbot) -> No action taken.
E:\Mina dokument\spel mm\TuneUp.Utilities.2010.v9.0.2000.17.Incl.Keymaker-CORE\cr-tue17.zip (PUP.Keygen.Intro) -> No action taken.
E:\Mina dokument\spel mm\TuneUp.Utilities.2010.v9.0.2000.17.Incl.Keymaker-CORE\Tu\CORE10k.EXE (PUP.Keygen.Intro) -> No action taken.
G:\Vuze\Klara\Program\TuneUp Utilities 2013 13.0.2013.194 Final Incl Patch @ ONly By THE RAIN {HKRG}\TuneUp Utilities 2013.rar (PUP.Riskware.Patcher) -> No action taken.
C:\Users\Peter\AppData\Roaming\Babylon\log_file.txt (PUP.Optional.Babylon.A) -> No action taken.
C:\Users\Peter\AppData\Roaming\OpenCandy\OpenCandy_E4660A8D0CE749A8954029008F3127CB\2194.ico (PUP.Optional.OpenCandy) -> No action taken.
C:\Users\Peter\AppData\Roaming\OpenCandy\OpenCandy_E4660A8D0CE749A8954029008F3127CB\driverscanner (32).exe (PUP.Optional.OpenCandy) -> No action taken.
C:\Program Files (x86)\Common Files\337\libcef\1.963.439\icudt.dll (PUP.Optional.337Technologies.A) -> No action taken.
C:\Program Files (x86)\Common Files\337\libcef\1.963.439\libcef.dll (PUP.Optional.337Technologies.A) -> No action taken.
C:\Program Files (x86)\Common Files\337\libcef\1.963.439\locales\en-US.pak (PUP.Optional.337Technologies.A) -> No action taken.

(end)

 

 

EDIT:

 

TDSSKiller found nothing log as follows:

 

13:07:44.0158 0x09b4  TDSS rootkit removing tool 3.0.0.16 Nov  1 2013 15:53:38
13:08:06.0747 0x09b4  ============================================================
13:08:06.0747 0x09b4  Current date / time: 2013/11/05 13:08:06.0747
13:08:06.0747 0x09b4  SystemInfo:
13:08:06.0747 0x09b4 
13:08:06.0747 0x09b4  OS Version: 6.1.7601 ServicePack: 1.0
13:08:06.0747 0x09b4  Product type: Workstation
13:08:06.0747 0x09b4  ComputerName: 9Aorka5
13:08:06.0747 0x09b4  UserName: PeterAdmin
13:08:06.0747 0x09b4  Windows directory: C:\Windows
13:08:06.0747 0x09b4  System windows directory: C:\Windows
13:08:06.0747 0x09b4  Running under WOW64
13:08:06.0747 0x09b4  Processor architecture: Intel x64
13:08:06.0747 0x09b4  Number of processors: 2
13:08:06.0747 0x09b4  Page size: 0x1000
13:08:06.0747 0x09b4  Boot type: Safe boot with network
13:08:06.0747 0x09b4  ============================================================
13:08:09.0565 0x09b4  System UUID: {B875F7C8-1FCA-40FC-6C69-04B3FBCA9626}
13:08:10.0095 0x09b4  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:08:10.0111 0x09b4  Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0x7E2CB, SectorsPerTrack: 0xE, TracksPerCylinder: 0x87, Type 'K0', Flags 0x00000040
13:08:10.0111 0x09b4  Drive \Device\Harddisk2\DR2 - Size: 0x3C7BFFE00 (15.12 Gb), SectorSize: 0x200, Cylinders: 0x7B5, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
13:08:10.0111 0x09b4  ============================================================
13:08:10.0111 0x09b4  \Device\Harddisk0\DR0:
13:08:10.0111 0x09b4  MBR partitions:
13:08:10.0111 0x09b4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8E07000
13:08:10.0111 0x09b4  \Device\Harddisk1\DR1:
13:08:10.0111 0x09b4  MBR partitions:
13:08:10.0111 0x09b4  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
13:08:10.0111 0x09b4  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x6479800
13:08:10.0111 0x09b4  \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x64AC3F0, BlocksNum 0xE8ACB8E
13:08:10.0111 0x09b4  \Device\Harddisk1\DR1\Partition4: MBR, Type 0x7, StartLBA 0x14D59784, BlocksNum 0x2562B4BD
13:08:10.0111 0x09b4  \Device\Harddisk2\DR2:
13:08:10.0111 0x09b4  MBR partitions:
13:08:10.0111 0x09b4  ============================================================
13:08:10.0142 0x09b4  C: <-> \Device\Harddisk1\DR1\Partition2
13:08:10.0173 0x09b4  D: <-> \Device\Harddisk1\DR1\Partition3
13:08:10.0220 0x09b4  E: <-> \Device\Harddisk1\DR1\Partition4
13:08:10.0235 0x09b4  G: <-> \Device\Harddisk0\DR0\Partition1
13:08:10.0235 0x09b4  ============================================================
13:08:10.0235 0x09b4  Initialize success
13:08:10.0235 0x09b4  ============================================================
13:09:42.0232 0x0a4c  ============================================================
13:09:42.0232 0x0a4c  Scan started
13:09:42.0232 0x0a4c  Mode: Manual; TDLFS;
13:09:42.0232 0x0a4c  ============================================================
13:09:42.0232 0x0a4c  KSN ping started
13:09:44.0738 0x0a4c  KSN ping finished: true
13:09:45.0736 0x0a4c  ================ Scan system memory ========================
13:09:45.0736 0x0a4c  System memory - ok
13:09:45.0736 0x0a4c  ================ Scan services =============================
13:09:45.0877 0x0a4c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
13:09:45.0877 0x0a4c  1394ohci - ok
13:09:45.0924 0x0a4c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
13:09:45.0939 0x0a4c  ACPI - ok
13:09:45.0955 0x0a4c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
13:09:45.0955 0x0a4c  AcpiPmi - ok
13:09:46.0048 0x0a4c  [ B1EA9681502EE57F87DB71D726288A5B, D17BD2CFAE72E92C77D183331D5CBA0FEA893BF54875920870E271940F40A8BB ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:09:46.0048 0x0a4c  AdobeARMservice - ok
13:09:46.0111 0x0a4c  [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
13:09:46.0126 0x0a4c  AdobeFlashPlayerUpdateSvc - ok
13:09:46.0158 0x0a4c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
13:09:46.0173 0x0a4c  adp94xx - ok
13:09:46.0204 0x0a4c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
13:09:46.0220 0x0a4c  adpahci - ok
13:09:46.0236 0x0a4c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
13:09:46.0251 0x0a4c  adpu320 - ok
13:09:46.0282 0x0a4c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
13:09:46.0298 0x0a4c  AeLookupSvc - ok
13:09:46.0329 0x0a4c  [ 1C7857B62DE5994A75B054A9FD4C3825, 83F963D7E636532B1AD30B1E727EC429317CA540F6EB3BB268FCC0B163B67767 ] AFD             C:\Windows\system32\drivers\afd.sys
13:09:46.0345 0x0a4c  AFD - ok
13:09:46.0376 0x0a4c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
13:09:46.0376 0x0a4c  agp440 - ok
13:09:46.0392 0x0a4c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
13:09:46.0392 0x0a4c  ALG - ok
13:09:46.0423 0x0a4c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
13:09:46.0423 0x0a4c  aliide - ok
13:09:46.0454 0x0a4c  [ 4EAAAAB8759644D572522FBCDD196A13, EF1ECE8073B048C2286F639BA76C523B6B267B64447358383C042BD593194350 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
13:09:46.0454 0x0a4c  AMD External Events Utility - ok
13:09:46.0501 0x0a4c  AMD FUEL Service - ok
13:09:46.0521 0x0a4c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
13:09:46.0521 0x0a4c  amdide - ok
13:09:46.0537 0x0a4c  [ 6A2EEB0C4133B20773BB3DD0B7B377B4, E4CB35C6937C70A145A13E5AE5B34A271B49101DA623171ACBFDA8601E5A70EA ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys
13:09:46.0537 0x0a4c  amdiox64 - ok
13:09:46.0568 0x0a4c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
13:09:46.0568 0x0a4c  AmdK8 - ok
13:09:47.0005 0x0a4c  [ 22A14DF59FB8D0BE918C597988AF4296, 714BD1BB63D732C6D03DFA1C2D81A2E00659C04052E110F0BF1EB74A7CD39B1C ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
13:09:47.0317 0x0a4c  amdkmdag - ok
13:09:47.0379 0x0a4c  [ EE22D3ED6D55A855E709F811CCCA97ED, 179F34CF6E0C2F821EBC0AECF09AAA0867616CCBB5EA6B17891860B27D56AC66 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
13:09:47.0395 0x0a4c  amdkmdap - ok
13:09:47.0426 0x0a4c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
13:09:47.0426 0x0a4c  AmdPPM - ok
13:09:47.0442 0x0a4c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
13:09:47.0457 0x0a4c  amdsata - ok
13:09:47.0473 0x0a4c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
13:09:47.0473 0x0a4c  amdsbs - ok
13:09:47.0489 0x0a4c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
13:09:47.0504 0x0a4c  amdxata - ok
13:09:47.0520 0x0a4c  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
13:09:47.0535 0x0a4c  AppID - ok
13:09:47.0551 0x0a4c  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
13:09:47.0551 0x0a4c  AppIDSvc - ok
13:09:47.0582 0x0a4c  [ 3977D4A871CA0D4F2ED1E7DB46829731, 2AF1C3225994769C3FD25CD7E9603964B035576F25B0B6D91545566E0722FFAA ] Appinfo         C:\Windows\System32\appinfo.dll
13:09:47.0582 0x0a4c  Appinfo - ok
13:09:47.0613 0x0a4c  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
13:09:47.0613 0x0a4c  AppMgmt - ok
13:09:47.0629 0x0a4c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
13:09:47.0629 0x0a4c  arc - ok
13:09:47.0660 0x0a4c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
13:09:47.0660 0x0a4c  arcsas - ok
13:09:47.0754 0x0a4c  [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:09:47.0801 0x0a4c  aspnet_state - ok
13:09:47.0816 0x0a4c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
13:09:47.0816 0x0a4c  AsyncMac - ok
13:09:47.0847 0x0a4c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
13:09:47.0847 0x0a4c  atapi - ok
13:09:47.0879 0x0a4c  [ 437F55435623D4D54D36197F5AD8B435, CE004F1E3299E39AFD70C8618253901614C0F3DBD594B6F0E1BA294C7B47FAD6 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
13:09:47.0894 0x0a4c  AtiHDAudioService - ok
13:09:48.0300 0x0a4c  [ 22A14DF59FB8D0BE918C597988AF4296, 714BD1BB63D732C6D03DFA1C2D81A2E00659C04052E110F0BF1EB74A7CD39B1C ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
13:09:48.0554 0x0a4c  atikmdag - ok
13:09:48.0664 0x0a4c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
13:09:48.0695 0x0a4c  AudioEndpointBuilder - ok
13:09:48.0710 0x0a4c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
13:09:48.0726 0x0a4c  AudioSrv - ok
13:09:48.0788 0x0a4c  [ 0D75C5C4EBF3D8197448189A2F153116, 24BD42F6C243870E6FC4001B75330071C9B305444ADBFC670863348DAE757BC7 ] Avgdiska        C:\Windows\system32\DRIVERS\avgdiska.sys
13:09:48.0788 0x0a4c  Avgdiska - ok
13:09:48.0976 0x0a4c  [ 332AEB8F6F9595C8886A7AA7A62322DC, CC2F2856257D10B72558660161732EB5FB5D8CCD8AC78EFED8263895A2529CC9 ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
13:09:49.0069 0x0a4c  AVGIDSAgent - ok
13:09:49.0116 0x0a4c  [ 06963A6DE8B1C8F15A8E1053AE9505A4, 81D90B3FCEE90F19C2E1A2BD7B29C8DC28B3BD3D5C06D29E96EED39C671176C2 ] AVGIDSDriver    C:\Windows\system32\DRIVERS\avgidsdrivera.sys
13:09:49.0116 0x0a4c  AVGIDSDriver - ok
13:09:49.0147 0x0a4c  [ E4F5607D1437FFDEE33CADA40D256D4F, 0BC90536283D4132A49BB437593273DB3F1A0C61C9643596011DED3978C53815 ] AVGIDSHA        C:\Windows\system32\DRIVERS\avgidsha.sys
13:09:49.0163 0x0a4c  AVGIDSHA - ok
13:09:49.0178 0x0a4c  [ B010FF7C984FFFFFF019F2CF162F1DE8, 13CDA37B96DADEDD4DD4A9A50D9879613E2BA8405C73F13B56093BA9E679CD40 ] Avgldx64        C:\Windows\system32\DRIVERS\avgldx64.sys
13:09:49.0194 0x0a4c  Avgldx64 - ok
13:09:49.0210 0x0a4c  [ F05BF4010D3F0E8C2D8CBFE45D7CFCE1, 85CE32BEDA3329227EED943329EA057C1ADD12E0612454680A5D38473AEA3E12 ] Avgloga         C:\Windows\system32\DRIVERS\avgloga.sys
13:09:49.0225 0x0a4c  Avgloga - ok
13:09:49.0256 0x0a4c  [ 4B459C2FCF22ECE548766B2FCF46F62C, 7DC46572C688E19AD87372D2A3D3D526B4403E9C1739DC2DD11F3DD05B38CE5A ] Avgmfx64        C:\Windows\system32\DRIVERS\avgmfx64.sys
13:09:49.0256 0x0a4c  Avgmfx64 - ok
13:09:49.0272 0x0a4c  [ 66D00CC6F7D148980071F55F9056D450, 0BD462426ED14983F00D27CB67B1652052FF8F901054D0BB7DF71EFED48F17AC ] Avgrkx64        C:\Windows\system32\DRIVERS\avgrkx64.sys
13:09:49.0272 0x0a4c  Avgrkx64 - ok
13:09:49.0288 0x0a4c  [ 4E364FABBD147F59E5D524C9EA86D772, 5D2B1E35EDBF68C23C5BF38B8B7AC484E3430219E0072C4831F58A9E8386A5FD ] Avgtdia         C:\Windows\system32\DRIVERS\avgtdia.sys
13:09:49.0303 0x0a4c  Avgtdia - ok
13:09:49.0319 0x0a4c  [ 4C05242DC361A217223E9B8EC2B3A76B, E2E5C7B853A734F11F71151B837B4D0C9BE5FFA171A700FC20ECA91B945D4832 ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
13:09:49.0319 0x0a4c  avgtp - ok
13:09:49.0350 0x0a4c  [ 07646F5F37F18F1F978CE3B0378EF1C9, 0BC440C3E8E617FA5D70D28413F091678E9FD4CF9F87CB8ED686609A0291D95B ] avgwd           C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
13:09:49.0350 0x0a4c  avgwd - ok
13:09:49.0381 0x0a4c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
13:09:49.0397 0x0a4c  AxInstSV - ok
13:09:49.0428 0x0a4c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
13:09:49.0444 0x0a4c  b06bdrv - ok
13:09:49.0475 0x0a4c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
13:09:49.0475 0x0a4c  b57nd60a - ok
13:09:49.0506 0x0a4c  [ 5BE512E49C43C8466AB7B4740D1927D7, DC203EA5830D6C3A3D82D0A9B3975CE51CE25792006D96D350A01C765A68ECF9 ] bcgame          C:\Windows\system32\drivers\bcgame.sys
13:09:49.0506 0x0a4c  bcgame - ok
13:09:49.0537 0x0a4c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
13:09:49.0537 0x0a4c  BDESVC - ok
13:09:49.0553 0x0a4c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
13:09:49.0553 0x0a4c  Beep - ok
13:09:49.0600 0x0a4c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
13:09:49.0631 0x0a4c  BFE - ok
13:09:49.0678 0x0a4c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
13:09:49.0740 0x0a4c  BITS - ok
13:09:49.0756 0x0a4c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
13:09:49.0756 0x0a4c  blbdrive - ok
13:09:49.0787 0x0a4c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
13:09:49.0802 0x0a4c  bowser - ok
13:09:49.0802 0x0a4c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
13:09:49.0802 0x0a4c  BrFiltLo - ok
13:09:49.0818 0x0a4c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
13:09:49.0818 0x0a4c  BrFiltUp - ok
13:09:49.0849 0x0a4c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
13:09:49.0865 0x0a4c  Browser - ok
13:09:49.0896 0x0a4c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
13:09:49.0896 0x0a4c  Brserid - ok
13:09:49.0912 0x0a4c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
13:09:49.0912 0x0a4c  BrSerWdm - ok
13:09:49.0927 0x0a4c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
13:09:49.0927 0x0a4c  BrUsbMdm - ok
13:09:49.0943 0x0a4c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
13:09:49.0958 0x0a4c  BrUsbSer - ok
13:09:49.0958 0x0a4c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
13:09:49.0974 0x0a4c  BTHMODEM - ok
13:09:49.0990 0x0a4c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
13:09:49.0990 0x0a4c  bthserv - ok
13:09:50.0036 0x0a4c  [ 58BF7714A312698108A96D0DE2BB6825, 87E0EC24520C9C421AF6A680FEF42E18911AABA373A9F927C5CE77AD50F8196F ] cbVSCService11  C:\Program Files (x86)\Cobian Backup 11\cbVSCService11.exe
13:09:50.0036 0x0a4c  cbVSCService11 - ok
13:09:50.0068 0x0a4c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
13:09:50.0068 0x0a4c  cdfs - ok
13:09:50.0099 0x0a4c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
13:09:50.0099 0x0a4c  cdrom - ok
13:09:50.0130 0x0a4c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
13:09:50.0130 0x0a4c  CertPropSvc - ok
13:09:50.0146 0x0a4c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
13:09:50.0146 0x0a4c  circlass - ok
13:09:50.0161 0x0a4c  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
13:09:50.0177 0x0a4c  CLFS - ok
13:09:50.0224 0x0a4c  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:09:50.0239 0x0a4c  clr_optimization_v2.0.50727_32 - ok
13:09:50.0270 0x0a4c  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:09:50.0286 0x0a4c  clr_optimization_v2.0.50727_64 - ok
13:09:50.0333 0x0a4c  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:09:50.0442 0x0a4c  clr_optimization_v4.0.30319_32 - ok
13:09:50.0458 0x0a4c  [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:09:50.0473 0x0a4c  clr_optimization_v4.0.30319_64 - ok
13:09:50.0489 0x0a4c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
13:09:50.0489 0x0a4c  CmBatt - ok
13:09:50.0504 0x0a4c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
13:09:50.0504 0x0a4c  cmdide - ok
13:09:50.0541 0x0a4c  [ AAFCB52FE0037207FB6FBEA070D25EFE, 7D035BFB6DD86944CCDE6D71811891406D7FD08344EF8CF57C4D932E096F1377 ] CNG             C:\Windows\system32\Drivers\cng.sys
13:09:50.0556 0x0a4c  CNG - ok
13:09:50.0619 0x0a4c  [ 644FBD0AE1D570C3751E0EAD7A3FFE56, 9DD7ADE1FE67E37BC2BB8C41EB524F5EA16F39DC668B31CFA8B0906773C020B9 ] CobianBackup11  C:\Program Files (x86)\Cobian Backup 11\cbService.exe
13:09:50.0650 0x0a4c  CobianBackup11 - ok
13:09:50.0681 0x0a4c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
13:09:50.0681 0x0a4c  Compbatt - ok
13:09:50.0697 0x0a4c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
13:09:50.0697 0x0a4c  CompositeBus - ok
13:09:50.0712 0x0a4c  COMSysApp - ok
13:09:50.0790 0x0a4c  cpuz131 - ok
13:09:50.0806 0x0a4c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
13:09:50.0806 0x0a4c  crcdisk - ok
13:09:50.0806 0x0a4c  Crypkey License - ok
13:09:50.0853 0x0a4c  [ 9C01375BE382E834CC26D1B7EAF2C4FE, B1D1E36B91A3C3CD09428EE3403896F71390A2798323BB406B484D9DB064A219 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
13:09:50.0853 0x0a4c  CryptSvc - ok
13:09:50.0899 0x0a4c  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
13:09:50.0915 0x0a4c  CSC - ok
13:09:50.0946 0x0a4c  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
13:09:50.0977 0x0a4c  CscService - ok
13:09:51.0009 0x0a4c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
13:09:51.0024 0x0a4c  DcomLaunch - ok
13:09:51.0055 0x0a4c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
13:09:51.0055 0x0a4c  defragsvc - ok
13:09:51.0087 0x0a4c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
13:09:51.0102 0x0a4c  DfsC - ok
13:09:51.0118 0x0a4c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
13:09:51.0133 0x0a4c  Dhcp - ok
13:09:51.0149 0x0a4c  [ 1151E5C32EFDE468FD0821CEE1CF24CB, F19A15D23416B93682F8A5C98F0D7BB84493D073F4230CC6A4E8DA56519DDFED ] DigiNet         C:\Windows\system32\DRIVERS\diginet.sys
13:09:51.0149 0x0a4c  DigiNet - ok
13:09:51.0165 0x0a4c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
13:09:51.0165 0x0a4c  discache - ok
13:09:51.0180 0x0a4c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
13:09:51.0180 0x0a4c  Disk - ok
13:09:51.0258 0x0a4c  [ E89C0405C0C7C4B3133C818F7EB2B3DF, FBD26B4995A19F7AE00AC56C54D3F1EAB397C619C8B42BA7B81732BAE7E5E060 ] DlinkUDSMBus    C:\Windows\syswow64\Drivers\DlinkUDSMBus.sys
13:09:51.0258 0x0a4c  DlinkUDSMBus - ok
13:09:51.0274 0x0a4c  [ 922ACF0612FF5DBFE05CEC7EAB00D531, 27AF20BB62026701EED10557FC18FBFA7174DE3AC7DBC29C00F8FA2CD489ADC9 ] DlinkUDSTcpBus  C:\Windows\syswow64\Drivers\DlinkUDSTcpBus.sys
13:09:51.0289 0x0a4c  DlinkUDSTcpBus - ok
13:09:51.0321 0x0a4c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
13:09:51.0321 0x0a4c  Dnscache - ok
13:09:51.0367 0x0a4c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
13:09:51.0367 0x0a4c  dot3svc - ok
13:09:51.0383 0x0a4c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
13:09:51.0399 0x0a4c  DPS - ok
13:09:51.0414 0x0a4c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
13:09:51.0414 0x0a4c  drmkaud - ok
13:09:51.0477 0x0a4c  [ F5BEE30450E18E6B83A5012C100616FD, 44D0577D159FC2BDF4EAD1DC2C7FD14925D075225EF97608CAC52DEE405B08FD ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
13:09:51.0508 0x0a4c  DXGKrnl - ok
13:09:51.0539 0x0a4c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
13:09:51.0539 0x0a4c  EapHost - ok
13:09:51.0539 0x0a4c  easytether - ok
13:09:51.0664 0x0a4c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
13:09:51.0757 0x0a4c  ebdrv - ok
13:09:51.0789 0x0a4c  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] EFS             C:\Windows\System32\lsass.exe
13:09:51.0789 0x0a4c  EFS - ok
13:09:51.0851 0x0a4c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
13:09:51.0867 0x0a4c  ehRecvr - ok
13:09:51.0898 0x0a4c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
13:09:51.0913 0x0a4c  ehSched - ok
13:09:51.0929 0x0a4c  [ 702D5606CF2199E0EDEA6F0E0D27CD10, 238046CFE126A1F8AB96D8B62F6AA5EC97BAB830E2BAE5B1B6AB2D31894C79E4 ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys
13:09:51.0929 0x0a4c  ElbyCDIO - ok
13:09:51.0960 0x0a4c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
13:09:51.0976 0x0a4c  elxstor - ok
13:09:52.0007 0x0a4c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
13:09:52.0007 0x0a4c  ErrDev - ok
13:09:52.0038 0x0a4c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
13:09:52.0054 0x0a4c  EventSystem - ok
13:09:52.0085 0x0a4c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
13:09:52.0085 0x0a4c  exfat - ok
13:09:52.0101 0x0a4c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
13:09:52.0116 0x0a4c  fastfat - ok
13:09:52.0163 0x0a4c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
13:09:52.0179 0x0a4c  Fax - ok
13:09:52.0210 0x0a4c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
13:09:52.0210 0x0a4c  fdc - ok
13:09:52.0225 0x0a4c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
13:09:52.0225 0x0a4c  fdPHost - ok
13:09:52.0241 0x0a4c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
13:09:52.0241 0x0a4c  FDResPub - ok
13:09:52.0257 0x0a4c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
13:09:52.0257 0x0a4c  FileInfo - ok
13:09:52.0288 0x0a4c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
13:09:52.0288 0x0a4c  Filetrace - ok
13:09:52.0381 0x0a4c  [ BF72C20B44B85FD030AEAA721E35D512, 1508D52117727745E292BFD9BF5B6C4DDC06FE8D29F353B5179041745E877E5D ] FileZilla Server C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe
13:09:52.0397 0x0a4c  FileZilla Server - ok
13:09:52.0413 0x0a4c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
13:09:52.0413 0x0a4c  flpydisk - ok
13:09:52.0459 0x0a4c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
13:09:52.0459 0x0a4c  FltMgr - ok
13:09:52.0527 0x0a4c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
13:09:52.0558 0x0a4c  FontCache - ok
13:09:52.0636 0x0a4c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:09:52.0636 0x0a4c  FontCache3.0.0.0 - ok
13:09:52.0652 0x0a4c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
13:09:52.0652 0x0a4c  FsDepends - ok
13:09:52.0667 0x0a4c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
13:09:52.0667 0x0a4c  Fs_Rec - ok
13:09:52.0698 0x0a4c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
13:09:52.0714 0x0a4c  fvevol - ok
13:09:52.0730 0x0a4c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
13:09:52.0730 0x0a4c  gagp30kx - ok
13:09:52.0745 0x0a4c  [ 16C2A6BCDDA8952C2035DEC861492A19, 9023CD3A2C1009786A48EF7FBCC97ED1724C836279424A4D465CCE1AFA2DBDDA ] ggflt           C:\Windows\system32\DRIVERS\ggflt.sys
13:09:52.0745 0x0a4c  ggflt - ok
13:09:52.0761 0x0a4c  [ 6B503DF845EABF3457E49FBBDA26C10E, A1553E3822EDEA26D8E67FCC7F9EA40DFBED49EC92FD5674AAF938F2D58CF964 ] ggsemc          C:\Windows\system32\DRIVERS\ggsemc.sys
13:09:52.0761 0x0a4c  ggsemc - ok
13:09:52.0823 0x0a4c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
13:09:52.0839 0x0a4c  gpsvc - ok
13:09:52.0854 0x0a4c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
13:09:52.0854 0x0a4c  hcw85cir - ok
13:09:52.0886 0x0a4c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
13:09:52.0901 0x0a4c  HdAudAddService - ok
13:09:52.0917 0x0a4c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
13:09:52.0932 0x0a4c  HDAudBus - ok
13:09:52.0932 0x0a4c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
13:09:52.0932 0x0a4c  HidBatt - ok
13:09:52.0948 0x0a4c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
13:09:52.0948 0x0a4c  HidBth - ok
13:09:52.0964 0x0a4c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
13:09:52.0964 0x0a4c  HidIr - ok
13:09:52.0995 0x0a4c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
13:09:52.0995 0x0a4c  hidserv - ok
13:09:53.0010 0x0a4c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
13:09:53.0010 0x0a4c  HidUsb - ok
13:09:53.0042 0x0a4c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
13:09:53.0042 0x0a4c  hkmsvc - ok
13:09:53.0073 0x0a4c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
13:09:53.0073 0x0a4c  HomeGroupListener - ok
13:09:53.0104 0x0a4c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
13:09:53.0104 0x0a4c  HomeGroupProvider - ok
13:09:53.0120 0x0a4c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
13:09:53.0120 0x0a4c  HpSAMD - ok
13:09:53.0166 0x0a4c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
13:09:53.0182 0x0a4c  HTTP - ok
13:09:53.0213 0x0a4c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
13:09:53.0213 0x0a4c  hwpolicy - ok
13:09:53.0244 0x0a4c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
13:09:53.0244 0x0a4c  i8042prt - ok
13:09:53.0276 0x0a4c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
13:09:53.0291 0x0a4c  iaStorV - ok
13:09:53.0354 0x0a4c  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:09:53.0385 0x0a4c  idsvc - ok
13:09:53.0400 0x0a4c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
13:09:53.0400 0x0a4c  iirsp - ok
13:09:53.0447 0x0a4c  [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT          C:\Windows\System32\ikeext.dll
13:09:53.0478 0x0a4c  IKEEXT - ok
13:09:53.0588 0x0a4c  [ A0EAB13A78CC5FB960EC76E3D6408DA3, F536B151EB1F284E8F352A7D8C9C0EBBC2E852E5EB6F0F6C6C313F272CE617FE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
13:09:53.0666 0x0a4c  IntcAzAudAddService - ok
13:09:53.0697 0x0a4c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
13:09:53.0697 0x0a4c  intelide - ok
13:09:53.0712 0x0a4c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
13:09:53.0712 0x0a4c  intelppm - ok
13:09:53.0744 0x0a4c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
13:09:53.0744 0x0a4c  IPBusEnum - ok
13:09:53.0775 0x0a4c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
13:09:53.0775 0x0a4c  IpFilterDriver - ok
13:09:53.0837 0x0a4c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
13:09:53.0853 0x0a4c  iphlpsvc - ok
13:09:53.0868 0x0a4c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
13:09:53.0884 0x0a4c  IPMIDRV - ok
13:09:53.0900 0x0a4c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
13:09:53.0900 0x0a4c  IPNAT - ok
13:09:53.0915 0x0a4c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
13:09:53.0915 0x0a4c  IRENUM - ok
13:09:53.0931 0x0a4c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
13:09:53.0931 0x0a4c  isapnp - ok
13:09:53.0962 0x0a4c  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
13:09:53.0978 0x0a4c  iScsiPrt - ok
13:09:53.0993 0x0a4c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
13:09:53.0993 0x0a4c  kbdclass - ok
13:09:54.0009 0x0a4c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
13:09:54.0009 0x0a4c  kbdhid - ok
13:09:54.0024 0x0a4c  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] KeyIso          C:\Windows\system32\lsass.exe
13:09:54.0024 0x0a4c  KeyIso - ok
13:09:54.0040 0x0a4c  [ 97A7070AEA4C058B6418519E869A63B4, 15345C2D6CA159BD498002974A0BD21CAB611124D85E3320248B47652AEF23C8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
13:09:54.0056 0x0a4c  KSecDD - ok
13:09:54.0087 0x0a4c  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E, 94F1382291BD748BAE7EDBCB56F43B8564A1EE22E2DBEB37066559EE3D065FBA ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
13:09:54.0087 0x0a4c  KSecPkg - ok
13:09:54.0102 0x0a4c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
13:09:54.0102 0x0a4c  ksthunk - ok
13:09:54.0149 0x0a4c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
13:09:54.0165 0x0a4c  KtmRm - ok
13:09:54.0180 0x0a4c  [ 7D80A55B6D0C2A54728158E846F4696D, F52291B6D6B1CEA3153CCF6B9ECE9E7A8DFF62E83B59A0C064D514FD992F3D30 ] L8042Kbd        C:\Windows\system32\DRIVERS\L8042Kbd.sys
13:09:54.0180 0x0a4c  L8042Kbd - ok
13:09:54.0196 0x0a4c  [ 40985C70AC469208EC010A72C2F72ED9, F9E8F2790CD59D791DDC5D902137F437CB0286C3203FE07A41AE1234DA478FA7 ] L8042mou        C:\Windows\system32\DRIVERS\L8042mou.Sys
13:09:54.0212 0x0a4c  L8042mou - ok
13:09:54.0243 0x0a4c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
13:09:54.0243 0x0a4c  LanmanServer - ok
13:09:54.0274 0x0a4c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
13:09:54.0274 0x0a4c  LanmanWorkstation - ok
13:09:54.0383 0x0a4c  [ 7772DFAB22611050B79504E671B06E6E, 331FE235EDBCF48EE96A5A9D5D0560457CD85FA3FD7BEACD3700055F815D9F13 ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
13:09:54.0383 0x0a4c  LBTServ - ok
13:09:54.0430 0x0a4c  [ 241F2648ADF090E2A10095BD6D6F5DCB, D31F50F7A70A62E3CA45071F75C56FFA21464BFAF4CA4A3AD2482D7477D78D4E ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
13:09:54.0430 0x0a4c  LHidFilt - ok
13:09:54.0446 0x0a4c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
13:09:54.0446 0x0a4c  lltdio - ok
13:09:54.0461 0x0a4c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
13:09:54.0477 0x0a4c  lltdsvc - ok
13:09:54.0508 0x0a4c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
13:09:54.0508 0x0a4c  lmhosts - ok
13:09:54.0529 0x0a4c  [ 342ED5A4B3326014438F36D22D803737, 45488402BD919D84729A19E618B3595D615EB1F73FB9BC77675A21E7DB80AB6C ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
13:09:54.0529 0x0a4c  LMouFilt - ok
13:09:54.0544 0x0a4c  [ 2AB80E1D548CACC409F8F4D5D945D219, A40A483FA363624DDDF079E08E7946AD8FC865A9B7004049A3E29C6C25927E57 ] LMouKE          C:\Windows\system32\DRIVERS\LMouKE.Sys
13:09:54.0544 0x0a4c  LMouKE - ok
13:09:54.0575 0x0a4c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
13:09:54.0591 0x0a4c  LSI_FC - ok
13:09:54.0607 0x0a4c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
13:09:54.0607 0x0a4c  LSI_SAS - ok
13:09:54.0622 0x0a4c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
13:09:54.0638 0x0a4c  LSI_SAS2 - ok
13:09:54.0653 0x0a4c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
13:09:54.0653 0x0a4c  LSI_SCSI - ok
13:09:54.0669 0x0a4c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
13:09:54.0669 0x0a4c  luafv - ok
13:09:54.0685 0x0a4c  [ 29C733E1DE824670DC9315CFC9BDBCD3, 8CFC987FEB174D91E415DEC89437D31D7AA5F6B7685641372EF26790E1444610 ] LUsbFilt        C:\Windows\system32\Drivers\LUsbFilt.Sys
13:09:54.0685 0x0a4c  LUsbFilt - ok
13:09:54.0716 0x0a4c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
13:09:54.0716 0x0a4c  Mcx2Svc - ok
13:09:54.0731 0x0a4c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
13:09:54.0731 0x0a4c  megasas - ok
13:09:54.0763 0x0a4c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
13:09:54.0763 0x0a4c  MegaSR - ok
13:09:54.0778 0x0a4c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
13:09:54.0794 0x0a4c  MMCSS - ok
13:09:54.0809 0x0a4c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
13:09:54.0809 0x0a4c  Modem - ok
13:09:54.0841 0x0a4c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
13:09:54.0841 0x0a4c  monitor - ok
13:09:54.0872 0x0a4c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
13:09:54.0872 0x0a4c  mouclass - ok
13:09:54.0887 0x0a4c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
13:09:54.0887 0x0a4c  mouhid - ok
13:09:54.0919 0x0a4c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
13:09:54.0919 0x0a4c  mountmgr - ok
13:09:54.0965 0x0a4c  [ 034AE0801A40A1A8049B32A235F0116F, 1C6431943FBEDC5A33808FE66A6516DB1F260DA13AFACD3C30E0B6C0EFB129C8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:09:54.0981 0x0a4c  MozillaMaintenance - ok
13:09:55.0012 0x0a4c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
13:09:55.0012 0x0a4c  mpio - ok
13:09:55.0028 0x0a4c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
13:09:55.0028 0x0a4c  mpsdrv - ok
13:09:55.0075 0x0a4c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
13:09:55.0106 0x0a4c  MpsSvc - ok
13:09:55.0137 0x0a4c  [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
13:09:55.0137 0x0a4c  MRxDAV - ok
13:09:55.0184 0x0a4c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
13:09:55.0184 0x0a4c  mrxsmb - ok
13:09:55.0199 0x0a4c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
13:09:55.0215 0x0a4c  mrxsmb10 - ok
13:09:55.0215 0x0a4c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
13:09:55.0231 0x0a4c  mrxsmb20 - ok
13:09:55.0246 0x0a4c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
13:09:55.0246 0x0a4c  msahci - ok
13:09:55.0262 0x0a4c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
13:09:55.0277 0x0a4c  msdsm - ok
13:09:55.0293 0x0a4c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
13:09:55.0293 0x0a4c  MSDTC - ok
13:09:55.0324 0x0a4c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
13:09:55.0324 0x0a4c  Msfs - ok
13:09:55.0340 0x0a4c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
13:09:55.0355 0x0a4c  mshidkmdf - ok
13:09:55.0355 0x0a4c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
13:09:55.0355 0x0a4c  msisadrv - ok
13:09:55.0387 0x0a4c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
13:09:55.0387 0x0a4c  MSiSCSI - ok
13:09:55.0402 0x0a4c  msiserver - ok
13:09:55.0418 0x0a4c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
13:09:55.0418 0x0a4c  MSKSSRV - ok
13:09:55.0433 0x0a4c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
13:09:55.0433 0x0a4c  MSPCLOCK - ok
13:09:55.0449 0x0a4c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
13:09:55.0449 0x0a4c  MSPQM - ok
13:09:55.0480 0x0a4c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
13:09:55.0496 0x0a4c  MsRPC - ok
13:09:55.0511 0x0a4c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
13:09:55.0511 0x0a4c  mssmbios - ok
13:09:55.0527 0x0a4c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
13:09:55.0527 0x0a4c  MSTEE - ok
13:09:55.0543 0x0a4c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
13:09:55.0543 0x0a4c  MTConfig - ok
13:09:55.0574 0x0a4c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
13:09:55.0574 0x0a4c  Mup - ok
13:09:55.0605 0x0a4c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
13:09:55.0621 0x0a4c  napagent - ok
13:09:55.0652 0x0a4c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
13:09:55.0667 0x0a4c  NativeWifiP - ok
13:09:55.0714 0x0a4c  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
13:09:55.0745 0x0a4c  NDIS - ok
13:09:55.0761 0x0a4c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
13:09:55.0777 0x0a4c  NdisCap - ok
13:09:55.0777 0x0a4c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
13:09:55.0792 0x0a4c  NdisTapi - ok
13:09:55.0808 0x0a4c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
13:09:55.0808 0x0a4c  Ndisuio - ok
13:09:55.0839 0x0a4c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
13:09:55.0839 0x0a4c  NdisWan - ok
13:09:55.0870 0x0a4c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
13:09:55.0870 0x0a4c  NDProxy - ok
13:09:55.0886 0x0a4c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
13:09:55.0886 0x0a4c  NetBIOS - ok
13:09:55.0917 0x0a4c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
13:09:55.0917 0x0a4c  NetBT - ok
13:09:55.0933 0x0a4c  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] Netlogon        C:\Windows\system32\lsass.exe
13:09:55.0948 0x0a4c  Netlogon - ok
13:09:55.0979 0x0a4c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
13:09:55.0995 0x0a4c  Netman - ok
13:09:56.0042 0x0a4c  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:09:56.0073 0x0a4c  NetMsmqActivator - ok
13:09:56.0089 0x0a4c  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:09:56.0089 0x0a4c  NetPipeActivator - ok
13:09:56.0120 0x0a4c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
13:09:56.0135 0x0a4c  netprofm - ok
13:09:56.0135 0x0a4c  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:09:56.0135 0x0a4c  NetTcpActivator - ok
13:09:56.0151 0x0a4c  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:09:56.0151 0x0a4c  NetTcpPortSharing - ok
13:09:56.0182 0x0a4c  [ 2263727032E9B19231A706046B8C82D3, AAAE23FF8164BC03F9C331C324F4C4AC7298535CC0BBBB14E9319D009D92D9E1 ] NetworkX        C:\Windows\system32\ckldrv.sys
13:09:56.0182 0x0a4c  NetworkX - ok
13:09:56.0182 0x0a4c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
13:09:56.0198 0x0a4c  nfrd960 - ok
13:09:56.0213 0x0a4c  [ 311654EF177ACD01A2B16C34BA3F0960, 99CEAD3FB22A893E22C4120E443B8D65E3F036FBB61BCF58194BAB51D770C582 ] NfsClnt         C:\Windows\system32\nfsclnt.exe
13:09:56.0213 0x0a4c  NfsClnt - ok
13:09:56.0245 0x0a4c  [ 255B989D47B063E00F89FF6446511DDB, 5C75AD1E7578CD20D59B2F19CC4F3DCB667A582C9ECB41E65E87CD767A7DB749 ] NfsRdr          C:\Windows\system32\drivers\nfsrdr.sys
13:09:56.0245 0x0a4c  NfsRdr - ok
13:09:56.0276 0x0a4c  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
13:09:56.0291 0x0a4c  NlaSvc - ok
13:09:56.0291 0x0a4c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
13:09:56.0307 0x0a4c  Npfs - ok
13:09:56.0323 0x0a4c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
13:09:56.0338 0x0a4c  nsi - ok
13:09:56.0354 0x0a4c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
13:09:56.0354 0x0a4c  nsiproxy - ok
13:09:56.0447 0x0a4c  [ E453ACF4E7D44E5530B5D5F2B9CA8563, 85EEBCBB3187A21282619A0264C10E9E52EFE4387F3425D3D279EF460DA3AD06 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
13:09:56.0494 0x0a4c  Ntfs - ok
13:09:56.0510 0x0a4c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
13:09:56.0510 0x0a4c  Null - ok
13:09:56.0510 0x0a4c  nvlddmkm - ok
13:09:56.0546 0x0a4c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
13:09:56.0546 0x0a4c  nvraid - ok
13:09:56.0577 0x0a4c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
13:09:56.0577 0x0a4c  nvstor - ok
13:09:56.0608 0x0a4c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
13:09:56.0624 0x0a4c  nv_agp - ok
13:09:56.0640 0x0a4c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
13:09:56.0655 0x0a4c  ohci1394 - ok
13:09:56.0686 0x0a4c  [ 34B98278B3C9F0F53088A360B63B0A97, E6684DDB8D5ED2122639CAB32094BFEC620E399B9ACD0F3FE3E544E831E65B98 ] OpenVPNService  C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe
13:09:56.0686 0x0a4c  OpenVPNService - ok
13:09:56.0796 0x0a4c  [ 49A344136F729659C075D67ADFB88FBA, 5EF65E7FAC02FE5C3039C510634F257A02D77A449A8A4B749666712F90E59A8B ] OS Selector     C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
13:09:56.0858 0x0a4c  OS Selector - ok
13:09:56.0889 0x0a4c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
13:09:56.0905 0x0a4c  p2pimsvc - ok
13:09:56.0936 0x0a4c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
13:09:56.0952 0x0a4c  p2psvc - ok
13:09:56.0967 0x0a4c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
13:09:56.0967 0x0a4c  Parport - ok
13:09:56.0998 0x0a4c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
13:09:56.0998 0x0a4c  partmgr - ok
13:09:57.0014 0x0a4c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
13:09:57.0030 0x0a4c  PcaSvc - ok
13:09:57.0061 0x0a4c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
13:09:57.0061 0x0a4c  pci - ok
13:09:57.0076 0x0a4c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
13:09:57.0076 0x0a4c  pciide - ok
13:09:57.0092 0x0a4c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
13:09:57.0108 0x0a4c  pcmcia - ok
13:09:57.0123 0x0a4c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
13:09:57.0123 0x0a4c  pcw - ok
13:09:57.0170 0x0a4c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
13:09:57.0186 0x0a4c  PEAUTH - ok
13:09:57.0248 0x0a4c  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
13:09:57.0295 0x0a4c  PeerDistSvc - ok
13:09:57.0373 0x0a4c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
13:09:57.0420 0x0a4c  PerfHost - ok
13:09:57.0498 0x0a4c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
13:09:57.0544 0x0a4c  pla - ok
13:09:57.0591 0x0a4c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
13:09:57.0591 0x0a4c  PlugPlay - ok
13:09:57.0622 0x0a4c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
13:09:57.0622 0x0a4c  PNRPAutoReg - ok
13:09:57.0654 0x0a4c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
13:09:57.0654 0x0a4c  PNRPsvc - ok
13:09:57.0685 0x0a4c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
13:09:57.0700 0x0a4c  PolicyAgent - ok
13:09:57.0732 0x0a4c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
13:09:57.0747 0x0a4c  Power - ok
13:09:57.0778 0x0a4c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
13:09:57.0778 0x0a4c  PptpMiniport - ok
13:09:57.0794 0x0a4c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
13:09:57.0794 0x0a4c  Processor - ok
13:09:57.0825 0x0a4c  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
13:09:57.0841 0x0a4c  ProfSvc - ok
13:09:57.0841 0x0a4c  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] ProtectedStorage C:\Windows\system32\lsass.exe
13:09:57.0856 0x0a4c  ProtectedStorage - ok
13:09:57.0888 0x0a4c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
13:09:57.0888 0x0a4c  Psched - ok
13:09:57.0966 0x0a4c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
13:09:58.0012 0x0a4c  ql2300 - ok
13:09:58.0028 0x0a4c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
13:09:58.0028 0x0a4c  ql40xx - ok
13:09:58.0059 0x0a4c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
13:09:58.0075 0x0a4c  QWAVE - ok
13:09:58.0090 0x0a4c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
13:09:58.0090 0x0a4c  QWAVEdrv - ok
13:09:58.0106 0x0a4c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
13:09:58.0106 0x0a4c  RasAcd - ok
13:09:58.0137 0x0a4c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
13:09:58.0137 0x0a4c  RasAgileVpn - ok
13:09:58.0153 0x0a4c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
13:09:58.0153 0x0a4c  RasAuto - ok
13:09:58.0184 0x0a4c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
13:09:58.0184 0x0a4c  Rasl2tp - ok
13:09:58.0200 0x0a4c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
13:09:58.0215 0x0a4c  RasMan - ok
13:09:58.0246 0x0a4c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
13:09:58.0246 0x0a4c  RasPppoe - ok
13:09:58.0262 0x0a4c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
13:09:58.0262 0x0a4c  RasSstp - ok
13:09:58.0309 0x0a4c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
13:09:58.0309 0x0a4c  rdbss - ok
13:09:58.0340 0x0a4c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
13:09:58.0340 0x0a4c  rdpbus - ok
13:09:58.0340 0x0a4c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
13:09:58.0356 0x0a4c  RDPCDD - ok
13:09:58.0371 0x0a4c  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
13:09:58.0387 0x0a4c  RDPDR - ok
13:09:58.0402 0x0a4c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
13:09:58.0402 0x0a4c  RDPENCDD - ok
13:09:58.0418 0x0a4c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
13:09:58.0418 0x0a4c  RDPREFMP - ok
13:09:58.0449 0x0a4c  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
13:09:58.0449 0x0a4c  RdpVideoMiniport - ok
13:09:58.0496 0x0a4c  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
13:09:58.0496 0x0a4c  RDPWD - ok
13:09:58.0532 0x0a4c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
13:09:58.0532 0x0a4c  rdyboost - ok
13:09:58.0563 0x0a4c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
13:09:58.0579 0x0a4c  RemoteAccess - ok
13:09:58.0595 0x0a4c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
13:09:58.0595 0x0a4c  RemoteRegistry - ok
13:09:58.0626 0x0a4c  [ CAF88D6573D21CD2AA27001DDBFDC74D, 8256B93E586953F1B594BFFA1F005DB08325CAF1729A93820B09F60DAA998C97 ] RMCAST          C:\Windows\system32\DRIVERS\RMCAST.sys
13:09:58.0641 0x0a4c  RMCAST - ok
13:09:58.0657 0x0a4c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
13:09:58.0673 0x0a4c  RpcEptMapper - ok
13:09:58.0673 0x0a4c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
13:09:58.0688 0x0a4c  RpcLocator - ok
13:09:58.0735 0x0a4c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
13:09:58.0751 0x0a4c  RpcSs - ok
13:09:58.0782 0x0a4c  [ 4AFDE1E8925A06BA253DAB6541701F5C, 4296180E7BAD2D853F0D128869E93141ED325462EC16C609999EA497C7A134E7 ] RpcXdr          C:\Windows\system32\drivers\rpcxdr.sys
13:09:58.0782 0x0a4c  RpcXdr - ok
13:09:58.0797 0x0a4c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
13:09:58.0797 0x0a4c  rspndr - ok
13:09:58.0829 0x0a4c  [ ABCB5A38A0D85BDF69B7877E1AD1EED5, 44DF1A92E8FA53677A04C46088B0AD49F1F6A090820BE550A514C4FBFD91444D ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
13:09:58.0829 0x0a4c  RTL8167 - ok
13:09:58.0860 0x0a4c  [ EA268BCE30691C2DD24F02E617FD2EB5, DD95E7C1C60C773953CE9DB77D8441508CE4A21820AAEDE455A3A6C373278DA4 ] s0016bus        C:\Windows\system32\DRIVERS\s0016bus.sys
13:09:58.0860 0x0a4c  s0016bus - ok
13:09:58.0891 0x0a4c  [ F5F9DEB89996D333EF976624D37E24E3, 88DE296EFA6CA2F32318F1807D633C8949D237FB33BA320551B71089CF5EB73B ] s0016mdfl       C:\Windows\system32\DRIVERS\s0016mdfl.sys
13:09:58.0891 0x0a4c  s0016mdfl - ok
13:09:58.0907 0x0a4c  [ C17CE2AEE67480FEBCC36ECCB54C0BE8, E13F83608B29988CCDB5A462AA3E56D26222427066651EEDF48223664D3FAFEA ] s0016mdm        C:\Windows\system32\DRIVERS\s0016mdm.sys
13:09:58.0907 0x0a4c  s0016mdm - ok
13:09:58.0938 0x0a4c  [ CC267F04C54C5EC5B7BD658D7628469F, 66F2283C8CE15BEED0B933EA82158C91FC77B1BF9FEF057D0E291922D07A8E53 ] s0016mgmt       C:\Windows\system32\DRIVERS\s0016mgmt.sys
13:09:58.0938 0x0a4c  s0016mgmt - ok
13:09:58.0953 0x0a4c  [ 30A35BBCE09D9FE67482FD62C61911FC, 8E8B0910F2A4C7DCFF0F8A83AAA8F9B38D53CEB7B7E7DC5B64350A09CBE6F557 ] s0016nd5        C:\Windows\system32\DRIVERS\s0016nd5.sys
13:09:58.0953 0x0a4c  s0016nd5 - ok
13:09:58.0985 0x0a4c  [ CA394DCC38579C7AD82E83EE64D798A0, A56DB0C67EF6CF1A95BB8E7FBFFBC7926D3E3A0511DD4389D2002312E72703A9 ] s0016obex       C:\Windows\system32\DRIVERS\s0016obex.sys
13:09:58.0985 0x0a4c  s0016obex - ok
13:09:59.0016 0x0a4c  [ EB267CCEA84E6E8598D92F73332AC67B, 3C7F0FDD825D2C50B13E78FB742B09A5E636820C6F47778F1C5E6900B3C9B905 ] s0016unic       C:\Windows\system32\DRIVERS\s0016unic.sys
13:09:59.0016 0x0a4c  s0016unic - ok
13:09:59.0047 0x0a4c  [ 032F537623A7B2FB81AAA184C30B70C3, C9E0569322A173D62D357CEA7BFECB0CF9D5817E3AE4B46955760BF98F5D16B3 ] s0017bus        C:\Windows\system32\DRIVERS\s0017bus.sys
13:09:59.0047 0x0a4c  s0017bus - ok
13:09:59.0078 0x0a4c  [ 9964A28E569B4FF105B446EF8978FD5C, 7872699B528C31E8B8699B6F8D2127440CD67A3BEAD0E5941BD58FDCD73DBE2C ] s0017mdfl       C:\Windows\system32\DRIVERS\s0017mdfl.sys
13:09:59.0078 0x0a4c  s0017mdfl - ok
13:09:59.0094 0x0a4c  [ 06347087D274C23DCFA8C4AB5C4314DB, 757DDAC72524EB59854A05E46A16CE2B0AF0CE1FC411110712576327D3984E91 ] s0017mdm        C:\Windows\system32\DRIVERS\s0017mdm.sys
13:09:59.0094 0x0a4c  s0017mdm - ok
13:09:59.0109 0x0a4c  [ F0F0747B3FA50272DE6B1BF575FA4700, FCB9007C630A0FD23CA0A8286BA9E498F6B36F1090F717B4A713286EEC4346C0 ] s0017mgmt       C:\Windows\system32\DRIVERS\s0017mgmt.sys
13:09:59.0125 0x0a4c  s0017mgmt - ok
13:09:59.0141 0x0a4c  [ 7224412CEA2FF2DF7D4842C1B0E71045, A2773319909B66F4DEA2E6134BB2723383866A63C482A26E2ADB65F29A405281 ] s0017nd5        C:\Windows\system32\DRIVERS\s0017nd5.sys
13:09:59.0141 0x0a4c  s0017nd5 - ok
13:09:59.0172 0x0a4c  [ 3FEADBC7F09B8B596CBFB82F12ABA87F, FBA6209893FF7C07823AB6F89FF7E36CF116C9FE202868DB4289233AF85E659A ] s0017obex       C:\Windows\system32\DRIVERS\s0017obex.sys
13:09:59.0172 0x0a4c  s0017obex - ok
13:09:59.0203 0x0a4c  [ 2B63BEA31D939888B2A8F3F14D89B5C1, 0C1333885DB315A63C1FAA53ED2160695F97C1B336B8DA986A48B97F39A46954 ] s0017unic       C:\Windows\system32\DRIVERS\s0017unic.sys
13:09:59.0203 0x0a4c  s0017unic - ok
13:09:59.0219 0x0a4c  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
13:09:59.0234 0x0a4c  s3cap - ok
13:09:59.0234 0x0a4c  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] SamSs           C:\Windows\system32\lsass.exe
13:09:59.0250 0x0a4c  SamSs - ok
13:09:59.0265 0x0a4c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
13:09:59.0265 0x0a4c  sbp2port - ok
13:09:59.0297 0x0a4c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
13:09:59.0312 0x0a4c  SCardSvr - ok
13:09:59.0343 0x0a4c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
13:09:59.0343 0x0a4c  scfilter - ok
13:09:59.0406 0x0a4c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
13:09:59.0437 0x0a4c  Schedule - ok
13:09:59.0468 0x0a4c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
13:09:59.0468 0x0a4c  SCPolicySvc - ok
13:09:59.0499 0x0a4c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
13:09:59.0499 0x0a4c  SDRSVC - ok
13:09:59.0531 0x0a4c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
13:09:59.0531 0x0a4c  secdrv - ok
13:09:59.0562 0x0a4c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
13:09:59.0562 0x0a4c  seclogon - ok
13:09:59.0577 0x0a4c  [ EDE7A1D2715AAC2190D51DC07AFD44E3, 992EDC724AC30AAAA9164805F801A73483AC36E8D355CD523B69C4E544EB55CB ] seehcri         C:\Windows\system32\DRIVERS\seehcri.sys
13:09:59.0577 0x0a4c  seehcri - ok
13:09:59.0593 0x0a4c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
13:09:59.0609 0x0a4c  SENS - ok
13:09:59.0624 0x0a4c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
13:09:59.0624 0x0a4c  SensrSvc - ok
13:09:59.0640 0x0a4c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
13:09:59.0640 0x0a4c  Serenum - ok
13:09:59.0655 0x0a4c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
13:09:59.0671 0x0a4c  Serial - ok
13:09:59.0687 0x0a4c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
13:09:59.0702 0x0a4c  sermouse - ok
13:09:59.0733 0x0a4c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
13:09:59.0749 0x0a4c  SessionEnv - ok
13:09:59.0765 0x0a4c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
13:09:59.0780 0x0a4c  sffdisk - ok
13:09:59.0780 0x0a4c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
13:09:59.0780 0x0a4c  sffp_mmc - ok
13:09:59.0796 0x0a4c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
13:09:59.0796 0x0a4c  sffp_sd - ok
13:09:59.0811 0x0a4c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
13:09:59.0811 0x0a4c  sfloppy - ok
13:09:59.0874 0x0a4c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
13:09:59.0874 0x0a4c  SharedAccess - ok
13:09:59.0921 0x0a4c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
13:09:59.0936 0x0a4c  ShellHWDetection - ok
13:09:59.0936 0x0a4c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
13:09:59.0952 0x0a4c  SiSRaid2 - ok
13:09:59.0967 0x0a4c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
13:09:59.0967 0x0a4c  SiSRaid4 - ok
13:10:00.0014 0x0a4c  [ F5BBEDF602C310B00036EB2DBF4348A5, AC2712E639F0C54BCF00EB4E90E805335871EA27AE8A45DFC53EDF28822318C4 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
13:10:00.0014 0x0a4c  SkypeUpdate - ok
13:10:00.0030 0x0a4c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
13:10:00.0045 0x0a4c  Smb - ok
13:10:00.0077 0x0a4c  [ B2AA7562BA5858633FCDCD246E8D6730, 761A581358048B47EBAE15433B2A70E9B35D37831E8513FD22E12DD2D96D639F ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
13:10:00.0108 0x0a4c  snapman - ok
13:10:00.0139 0x0a4c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
13:10:00.0139 0x0a4c  SNMPTRAP - ok
13:10:00.0170 0x0a4c  [ 12583AF6CBE0050651EAF2723B3AD7B3, 965D4F981B54669A96C5AB02D09BF0A9850D13862425B8981F1A9271350F28BB ] speedfan        C:\Windows\syswow64\speedfan.sys
13:10:00.0170 0x0a4c  speedfan - ok
13:10:00.0186 0x0a4c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
13:10:00.0186 0x0a4c  spldr - ok
13:10:00.0233 0x0a4c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
13:10:00.0248 0x0a4c  Spooler - ok
13:10:00.0389 0x0a4c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
13:10:00.0498 0x0a4c  sppsvc - ok
13:10:00.0565 0x0a4c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
13:10:00.0581 0x0a4c  sppuinotify - ok
13:10:00.0612 0x0a4c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
13:10:00.0628 0x0a4c  srv - ok
13:10:00.0659 0x0a4c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
13:10:00.0674 0x0a4c  srv2 - ok
13:10:00.0674 0x0a4c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
13:10:00.0690 0x0a4c  srvnet - ok
13:10:00.0706 0x0a4c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
13:10:00.0721 0x0a4c  SSDPSRV - ok
13:10:00.0737 0x0a4c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
13:10:00.0737 0x0a4c  SstpSvc - ok
13:10:00.0752 0x0a4c  Steam Client Service - ok
13:10:00.0784 0x0a4c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
13:10:00.0784 0x0a4c  stexstor - ok
13:10:00.0830 0x0a4c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
13:10:00.0846 0x0a4c  stisvc - ok
13:10:00.0877 0x0a4c  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
13:10:00.0877 0x0a4c  storflt - ok
13:10:00.0893 0x0a4c  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
13:10:00.0893 0x0a4c  storvsc - ok
13:10:00.0924 0x0a4c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
13:10:00.0924 0x0a4c  swenum - ok
13:10:01.0002 0x0a4c  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
13:10:01.0018 0x0a4c  SwitchBoard - ok
13:10:01.0049 0x0a4c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
13:10:01.0064 0x0a4c  swprv - ok
13:10:01.0080 0x0a4c  Synth3dVsc - ok
13:10:01.0158 0x0a4c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
13:10:01.0205 0x0a4c  SysMain - ok
13:10:01.0236 0x0a4c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
13:10:01.0236 0x0a4c  TabletInputService - ok
13:10:01.0267 0x0a4c  [ 2C1686795B9307265F649249AD11D629, 51E4CFA39995B155724CFC9AF45B83F674F300907B2A405F003AE09E7C6F6E1A ] tap0901         C:\Windows\system32\DRIVERS\tap0901.sys
13:10:01.0267 0x0a4c  tap0901 - ok
13:10:01.0298 0x0a4c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
13:10:01.0298 0x0a4c  TapiSrv - ok
13:10:01.0330 0x0a4c  [ 048CFE7569D6ADCAB9349BB1A566A79E, E248D2A66881FDFF9505896F383EFFEF2FD5AFC15D8992E653F5C31F1F80DAF3 ] tbhsd           C:\Windows\system32\drivers\tbhsd.sys
13:10:01.0330 0x0a4c  tbhsd - ok
13:10:01.0361 0x0a4c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
13:10:01.0361 0x0a4c  TBS - ok
13:10:01.0454 0x0a4c  [ B62A953F2BF3922C8764A29C34A22899, 4A117FF9D1BD58C6A1787DDA7402BAE30E4BA7A70FE3A144F41DD647AA7A3901 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
13:10:01.0501 0x0a4c  Tcpip - ok
13:10:01.0579 0x0a4c  [ B62A953F2BF3922C8764A29C34A22899, 4A117FF9D1BD58C6A1787DDA7402BAE30E4BA7A70FE3A144F41DD647AA7A3901 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
13:10:01.0610 0x0a4c  TCPIP6 - ok
13:10:01.0657 0x0a4c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
13:10:01.0657 0x0a4c  tcpipreg - ok
13:10:01.0688 0x0a4c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
13:10:01.0688 0x0a4c  TDPIPE - ok
13:10:01.0720 0x0a4c  [ 86D1B3662EC12F2FEAD9CC6F58EF36F6, D0FF6757880832CB131D44E747266189A919FA3981E994B7312E6F79E80ACF63 ] TdsNordecr      C:\Windows\system32\DRIVERS\nordecr.sys
13:10:01.0720 0x0a4c  TdsNordecr - ok
13:10:01.0735 0x0a4c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
13:10:01.0751 0x0a4c  TDTCP - ok
13:10:01.0766 0x0a4c  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
13:10:01.0766 0x0a4c  tdx - ok
13:10:01.0798 0x0a4c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
13:10:01.0798 0x0a4c  TermDD - ok
13:10:01.0860 0x0a4c  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
13:10:01.0876 0x0a4c  TermService - ok
13:10:01.0891 0x0a4c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
13:10:01.0891 0x0a4c  Themes - ok
13:10:01.0922 0x0a4c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
13:10:01.0922 0x0a4c  THREADORDER - ok
13:10:01.0954 0x0a4c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
13:10:01.0954 0x0a4c  TrkWks - ok
13:10:02.0000 0x0a4c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
13:10:02.0000 0x0a4c  TrustedInstaller - ok
13:10:02.0047 0x0a4c  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
13:10:02.0047 0x0a4c  tssecsrv - ok
13:10:02.0078 0x0a4c  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
13:10:02.0078 0x0a4c  TsUsbFlt - ok
13:10:02.0078 0x0a4c  tsusbhub - ok
13:10:02.0156 0x0a4c  [ A25A3DE3974CF11ACC1707DBBB5F325C, 12215BA76135C4CF9BB70D28E253D1E345F39E661D2A8E41E003452E95609F19 ] TuneUp.Defrag   C:\Program Files (x86)\TuneUp Utilities 2010\TuneUpDefragService.exe
13:10:02.0172 0x0a4c  TuneUp.Defrag - ok
13:10:02.0297 0x0a4c  [ 1D43BF1698B88B6758F20F4B4C40C37B, 17EFA195FC2E3D6FD3FB05C7593F3BE639DCEA65A5AAF63FB35C31F53A72EF95 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
13:10:02.0375 0x0a4c  TuneUp.UtilitiesSvc - ok
13:10:02.0390 0x0a4c  [ 7BC3381C0713F613B31ACDE38B71CB53, 275A6CB6A6157270C35FD7D6213D0D99030AEE5AE852E0D929CBE879C63FAB2F ] TuneUpUtilitiesDrv C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys
13:10:02.0390 0x0a4c  TuneUpUtilitiesDrv - ok
13:10:02.0422 0x0a4c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
13:10:02.0422 0x0a4c  tunnel - ok
13:10:02.0453 0x0a4c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
13:10:02.0453 0x0a4c  uagp35 - ok
13:10:02.0484 0x0a4c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
13:10:02.0484 0x0a4c  udfs - ok
13:10:02.0520 0x0a4c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
13:10:02.0536 0x0a4c  UI0Detect - ok
13:10:02.0551 0x0a4c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
13:10:02.0551 0x0a4c  uliagpkx - ok
13:10:02.0567 0x0a4c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
13:10:02.0567 0x0a4c  umbus - ok
13:10:02.0583 0x0a4c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
13:10:02.0583 0x0a4c  UmPass - ok
13:10:02.0629 0x0a4c  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
13:10:02.0629 0x0a4c  UmRdpService - ok
13:10:02.0661 0x0a4c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
13:10:02.0676 0x0a4c  upnphost - ok
13:10:02.0707 0x0a4c  [ 6F1A3157A1C89435352CEB543CDB359C, 325B46220779C5FE3B6F19FF794474837FAB9675D9C98ACB68CCE47B1CFE5F12 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
13:10:02.0707 0x0a4c  usbccgp - ok
13:10:02.0739 0x0a4c  [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
13:10:02.0739 0x0a4c  usbcir - ok
13:10:02.0754 0x0a4c  [ C025055FE7B87701EB042095DF1A2D7B, D7B34B6C2C5BD3C8141895AC21BB637EA5E3C4F7A85EEF4C4C36E6BB2045A3D9 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
13:10:02.0754 0x0a4c  usbehci - ok
13:10:02.0785 0x0a4c  [ 287C6C9410B111B68B52CA298F7B8C24, 98900C08FE662A00DF8B37837B2BEBF9ACB7989C387AF36B2109B05A4F462D4E ] usbhub          C:\Windows\system32\drivers\usbhub.sys
13:10:02.0801 0x0a4c  usbhub - ok
13:10:02.0832 0x0a4c  [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
13:10:02.0832 0x0a4c  usbohci - ok
13:10:02.0848 0x0a4c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
13:10:02.0848 0x0a4c  usbprint - ok
13:10:02.0879 0x0a4c  [ AAA2513C8AED8B54B189FD0C6B1634C0, 02FEE0B756AA559C29477A19861AC16D5A3152DC3C897C7D466423438B6A5E42 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
13:10:02.0879 0x0a4c  usbscan - ok
13:10:02.0910 0x0a4c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
13:10:02.0910 0x0a4c  USBSTOR - ok
13:10:02.0941 0x0a4c  [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
13:10:02.0941 0x0a4c  usbuhci - ok
13:10:02.0957 0x0a4c  [ 7B28E2FBE75115660FAB31079C0A9F29, 81BB5A3E64B652A672A0782A88ABF6DDD729D38712D0706CE0FB9DE6D1EE1515 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
13:10:02.0957 0x0a4c  usb_rndisx - ok
13:10:02.0988 0x0a4c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
13:10:02.0988 0x0a4c  UxSms - ok
13:10:03.0004 0x0a4c  [ 4AB3FB5B25760008A1DA1A14EDE3F61D, 669C286027D10475E43E0F91A2D1C07759C3C912CE1DC502898283DD22D5678B ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
13:10:03.0019 0x0a4c  UxTuneUp - ok
13:10:03.0035 0x0a4c  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] VaultSvc        C:\Windows\system32\lsass.exe
13:10:03.0035 0x0a4c  VaultSvc - ok
13:10:03.0066 0x0a4c  [ C5E70C4E64666DB9D69C9F2FDAE22428, 759696619EEAF757AB28098FD9BF8EE045FFDECCBC249084BF01C60863CD3AAA ] VClone          C:\Windows\system32\DRIVERS\VClone.sys
13:10:03.0066 0x0a4c  VClone - ok
13:10:03.0082 0x0a4c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
13:10:03.0082 0x0a4c  vdrvroot - ok
13:10:03.0129 0x0a4c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
13:10:03.0144 0x0a4c  vds - ok
13:10:03.0160 0x0a4c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
13:10:03.0160 0x0a4c  vga - ok
13:10:03.0191 0x0a4c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
13:10:03.0191 0x0a4c  VgaSave - ok
13:10:03.0191 0x0a4c  VGPU - ok
13:10:03.0238 0x0a4c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
13:10:03.0253 0x0a4c  vhdmp - ok
13:10:03.0269 0x0a4c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
13:10:03.0269 0x0a4c  viaide - ok
13:10:03.0285 0x0a4c  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
13:10:03.0300 0x0a4c  vmbus - ok
13:10:03.0316 0x0a4c  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
13:10:03.0316 0x0a4c  VMBusHID - ok
13:10:03.0347 0x0a4c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
13:10:03.0347 0x0a4c  volmgr - ok
13:10:03.0378 0x0a4c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
13:10:03.0394 0x0a4c  volmgrx - ok
13:10:03.0425 0x0a4c  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
13:10:03.0425 0x0a4c  volsnap - ok
13:10:03.0456 0x0a4c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
13:10:03.0456 0x0a4c  vsmraid - ok
13:10:03.0550 0x0a4c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
13:10:03.0581 0x0a4c  VSS - ok
13:10:03.0612 0x0a4c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
13:10:03.0612 0x0a4c  vwifibus - ok
13:10:03.0643 0x0a4c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
13:10:03.0659 0x0a4c  W32Time - ok
13:10:03.0690 0x0a4c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
13:10:03.0690 0x0a4c  WacomPen - ok
13:10:03.0706 0x0a4c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
13:10:03.0721 0x0a4c  WANARP - ok
13:10:03.0721 0x0a4c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
13:10:03.0721 0x0a4c  Wanarpv6 - ok
13:10:03.0799 0x0a4c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
13:10:03.0799 0x0a4c  Suspicious file ( NoAccess ): C:\Windows\system32\Wat\WatAdminSvc.exe. md5: 3CEC96DE223E49EAAE3651FCF8FAEA6C, sha256: 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61
13:10:03.0815 0x0a4c  WatAdminSvc - detected LockedFile.Multi.Generic ( 1 )
13:10:06.0285 0x0a4c  Detect skipped due to KSN trusted
13:10:06.0285 0x0a4c  WatAdminSvc - ok
13:10:06.0363 0x0a4c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
13:10:06.0394 0x0a4c  wbengine - ok
13:10:06.0425 0x0a4c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
13:10:06.0425 0x0a4c  WbioSrvc - ok
13:10:06.0472 0x0a4c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
13:10:06.0488 0x0a4c  wcncsvc - ok
13:10:06.0503 0x0a4c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
13:10:06.0503 0x0a4c  WcsPlugInService - ok
13:10:06.0524 0x0a4c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
13:10:06.0524 0x0a4c  Wd - ok
13:10:06.0586 0x0a4c  [ 442783E2CB0DA19873B7A63833FF4CB4, 09254970265476214F3187CC22A4F9C7C2769D419600E83FBE302C3A103E527F ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
13:10:06.0602 0x0a4c  Wdf01000 - ok
13:10:06.0633 0x0a4c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
13:10:06.0633 0x0a4c  WdiServiceHost - ok
13:10:06.0649 0x0a4c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
13:10:06.0649 0x0a4c  WdiSystemHost - ok
13:10:06.0680 0x0a4c  [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient       C:\Windows\System32\webclnt.dll
13:10:06.0680 0x0a4c  WebClient - ok
13:10:06.0742 0x0a4c  [ C23EF40C1EFE8524EF52A1C93044AACE, 15BC345CCAA2E142764A28FD710F7572F8794A80EC3B2733E9A2A68ACD104D5C ] WEBNTACCESS     C:\PROGRA~1\MSI\MSIWDev\NTACCESS_64.SYS
13:10:06.0758 0x0a4c  WEBNTACCESS - ok
13:10:06.0789 0x0a4c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
13:10:06.0789 0x0a4c  Wecsvc - ok
13:10:06.0805 0x0a4c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
13:10:06.0805 0x0a4c  wercplsupport - ok
13:10:06.0820 0x0a4c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
13:10:06.0836 0x0a4c  WerSvc - ok
13:10:06.0851 0x0a4c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
13:10:06.0851 0x0a4c  WfpLwf - ok
13:10:06.0867 0x0a4c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
13:10:06.0867 0x0a4c  WIMMount - ok
13:10:06.0883 0x0a4c  WinDefend - ok
13:10:06.0898 0x0a4c  WinHttpAutoProxySvc - ok
13:10:06.0945 0x0a4c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
13:10:06.0961 0x0a4c  Winmgmt - ok
13:10:07.0039 0x0a4c  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
13:10:07.0101 0x0a4c  WinRM - ok
13:10:07.0132 0x0a4c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
13:10:07.0132 0x0a4c  WinUsb - ok
13:10:07.0195 0x0a4c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
13:10:07.0226 0x0a4c  Wlansvc - ok
13:10:07.0241 0x0a4c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
13:10:07.0241 0x0a4c  WmiAcpi - ok
13:10:07.0273 0x0a4c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
13:10:07.0288 0x0a4c  wmiApSrv - ok
13:10:07.0304 0x0a4c  WMPNetworkSvc - ok
13:10:07.0319 0x0a4c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
13:10:07.0319 0x0a4c  WPCSvc - ok
13:10:07.0351 0x0a4c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
13:10:07.0366 0x0a4c  WPDBusEnum - ok
13:10:07.0382 0x0a4c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
13:10:07.0382 0x0a4c  ws2ifsl - ok
13:10:07.0397 0x0a4c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
13:10:07.0397 0x0a4c  wscsvc - ok
13:10:07.0413 0x0a4c  WSearch - ok
13:10:07.0522 0x0a4c  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
13:10:07.0585 0x0a4c  wuauserv - ok
13:10:07.0631 0x0a4c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
13:10:07.0631 0x0a4c  WudfPf - ok
13:10:07.0663 0x0a4c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
13:10:07.0663 0x0a4c  WUDFRd - ok
13:10:07.0678 0x0a4c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
13:10:07.0678 0x0a4c  wudfsvc - ok
13:10:07.0709 0x0a4c  [ 9A3452B3C2A46C073166C5CF49FAD1AE, D6F95F51D8E37BA4CF403965EC08CCFEEA9EEFDBFC7752432EAEC19925BDA115 ] WwanSvc         C:\Windows\System32\wwansvc.dll
13:10:07.0756 0x0a4c  WwanSvc - ok
13:10:07.0787 0x0a4c  ================ Scan global ===============================
13:10:07.0834 0x0a4c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
13:10:07.0865 0x0a4c  [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll
13:10:07.0881 0x0a4c  [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll
13:10:07.0912 0x0a4c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
13:10:07.0928 0x0a4c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
13:10:07.0943 0x0a4c  [ Global ] - ok
13:10:07.0943 0x0a4c  ================ Scan MBR ==================================
13:10:07.0943 0x0a4c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:10:08.0021 0x0a4c  \Device\Harddisk0\DR0 - ok
13:10:08.0037 0x0a4c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
13:10:08.0588 0x0a4c  \Device\Harddisk1\DR1 - ok
13:10:08.0588 0x0a4c  [ 7424571E89719E77B7576953091F8431 ] \Device\Harddisk2\DR2
13:10:08.0713 0x0a4c  \Device\Harddisk2\DR2 - ok
13:10:08.0713 0x0a4c  ================ Scan VBR ==================================
13:10:08.0713 0x0a4c  [ 3382365B2C959BE3002691FB71744714 ] \Device\Harddisk0\DR0\Partition1
13:10:08.0713 0x0a4c  \Device\Harddisk0\DR0\Partition1 - ok
13:10:08.0713 0x0a4c  [ 34783F2AC231CBBE89CBEFF84CBA3727 ] \Device\Harddisk1\DR1\Partition1
13:10:08.0728 0x0a4c  \Device\Harddisk1\DR1\Partition1 - ok
13:10:08.0760 0x0a4c  [ 9C6ECAE85E73E1216B0DD2936E1D590B ] \Device\Harddisk1\DR1\Partition2
13:10:08.0760 0x0a4c  \Device\Harddisk1\DR1\Partition2 - ok
13:10:08.0775 0x0a4c  [ A0AC2F91FDFB5AF01A3EDA320C85EB5F ] \Device\Harddisk1\DR1\Partition3
13:10:08.0775 0x0a4c  \Device\Harddisk1\DR1\Partition3 - ok
13:10:08.0791 0x0a4c  [ F6B0BB10903F919677F87062509D7625 ] \Device\Harddisk1\DR1\Partition4
13:10:08.0791 0x0a4c  \Device\Harddisk1\DR1\Partition4 - ok
13:10:08.0791 0x0a4c  Waiting for KSN requests completion. In queue: 30
13:10:09.0805 0x0a4c  Waiting for KSN requests completion. In queue: 30
13:10:10.0808 0x0a4c  Waiting for KSN requests completion. In queue: 30
13:10:11.0900 0x0a4c  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files (x86)\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41000 ( enabled : updated )
13:10:11.0931 0x0a4c  Win FW state via NFP2: enabled
13:10:14.0354 0x0a4c  ============================================================
13:10:14.0354 0x0a4c  Scan finished
13:10:14.0354 0x0a4c  ============================================================
13:10:14.0354 0x0a44  Detected object count: 0
13:10:14.0354 0x0a44  Actual detected object count: 0
13:10:41.0935 0x09b0  Deinitialize success

 


Edited by WilX, 05 November 2013 - 07:14 AM.


#4 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:51 AM

Posted 05 November 2013 - 05:39 PM

Please rerun MBAM, and remove the detected items.

ADW Cleaner


Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Clean.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


#5 WilX

WilX
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:51 AM

Posted 06 November 2013 - 08:01 AM

Adware cleaner log (Before cleanup):

 

# AdwCleaner v3.011 - Report created 06/11/2013 at 13:31:05
# Updated 03/11/2013 by Xplode
# Operating System : Windows 7 Ultimate Service Pack 1 (64 bits)
# Username : PeterAdmin - PETERTEST
# Running from : C:\Users\Peter\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\END
File Found : C:\Program Files (x86)\Mozilla Firefox\searchplugins\fcmdSrch.xml
File Found : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_apps.conduit.com_0.localstorage-journal
File Found : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_facebook.conduitapps.com_0.localstorage-journal
File Found : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.babylon.com_0.localstorage-journal
File Found : C:\Users\Peter\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage-journal
File Found : C:\Windows\System32\Tasks\GoforFilesUpdate
Folder Found C:\Program Files (x86)\2YourFace
Folder Found C:\Program Files (x86)\AskBarDis
Folder Found C:\Program Files (x86)\Common Files\337
Folder Found C:\Program Files (x86)\Vuze
Folder Found C:\ProgramData\AVG Secure Search
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\eSafe
Folder Found C:\ProgramData\Premium
Folder Found C:\ProgramData\Tarma Installer
Folder Found C:\ProgramData\Uniblue\DriverScanner
Folder Found C:\Users\Peter\AppData\Local\AVG Secure Search
Folder Found C:\Users\Peter\AppData\Local\OpenCandy
Folder Found C:\Users\Peter\AppData\LocalLow\AVG Secure Search
Folder Found C:\Users\Peter\AppData\LocalLow\AVG Security Toolbar
Folder Found C:\Users\Peter\AppData\LocalLow\Conduit
Folder Found C:\Users\Peter\AppData\LocalLow\Delta
Folder Found C:\Users\Peter\AppData\LocalLow\PriceGong
Folder Found C:\Users\Peter\AppData\LocalLow\Vuze_Remote

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\AVG Secure Search
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Found : [x64] HKCU\Software\AVG Secure Search
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Found : HKLM\Software\Babylon
Key Found : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
Key Found : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Found : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Key Found : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Found : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
Key Found : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
Key Found : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{94496571-6AC5-4836-82D5-D46260C44B17}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Classes\driverscanner
Key Found : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Found : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Found : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E393F82-2644-4AB6-B994-1AD39D6C59EE}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
Key Found : HKLM\SOFTWARE\Classes\Prod.cap
Key Found : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
Key Found : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
Key Found : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
Key Found : HKLM\Software\DataMngr
Key Found : HKLM\Software\Desksvc
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\lmblfngognklgemafekefcdjcnkdhmdm
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{71FABB35-C38B-425A-BD33-51D7395AF088}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstallerStub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstallerStub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\driverscanner_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\facemoods_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\facemoodssrv_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SnapDo_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Found : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
Key Found : HKLM\Software\Uniblue\DriverScanner
Key Found : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\DeskSvc
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{1231839B-064E-4788-B865-465A1B5266FD}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{2DAC2231-CC35-482B-97C5-CED1D4185080}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F1CD84C-04A3-4EA0-9EA1-7D134FD66C82}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{3F83A9CA-B5F0-44EC-9357-35BB3E84B07F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{44C3C1DB-2127-433C-98EC-4C9412B5FC3A}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4634804A-F0B0-4A74-A550-FC0EEF8A4362}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{47E520EA-CAD2-4F51-8F30-613B3A1C33EB}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4C07EA4F-5F52-4222-B170-4CD9ED33BAEA}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4D5132DD-BB2B-4249-B5E0-D145A8C982E1}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{542FA950-C57A-4E17-B3E1-D935DFE15DEE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{57C91446-8D81-4156-A70E-624551442DE9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{5B035F86-41B5-40F1-AAAD-3D219F30244E}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{6365AC7B-9920-4D8B-AF5D-3BDFEAC340A8}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{6A934270-717F-4BC3-BA59-BC9BED47A8D2}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{706D4A4B-184A-4434-B331-296B07493D2D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{70AFB7B2-9FB5-4A70-905B-0E9576142E1D}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{74C012C4-00FB-4F04-9AFB-4AD5449D2018}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{78888F8B-D5E4-43CE-89F5-C8C18223AF64}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{79B13431-CCAC-4097-8889-D0289E5E924F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{7AD65FD1-79E0-406D-B03C-DD7C14726D69}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{8B8558F6-DC26-4F39-8417-34B8934AA459}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{8BE10F21-185F-4CA0-B789-9921674C3993}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{8C8D5C57-3CAD-4CF9-BCAD-F873678DA883}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{94C0B25D-3359-4B10-B227-F96A77DB773F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{97DD820D-2E20-40AD-B01E-6730B2FCE630}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{981334CB-7B8B-431F-B86D-67B7426B125B}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E393F82-2644-4AB6-B994-1AD39D6C59EE}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{A3A2A5C0-1306-4D1A-A093-9CECA4230002}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B0B75FBA-7288-4FD3-A9EB-7EE27FA65599}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B173667F-8395-4317-8DD6-45AD1FE00047}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B177446D-54A4-4869-BABC-8566110B4BE0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{B32672B3-F656-46E0-B584-FE61C0BB6037}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{BFE569F7-646C-4512-969B-9BE3E580D393}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C1C2FC43-F042-4F17-AEDB-C5ABF3B42E4B}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C2434722-5C85-4CA0-BA69-1B67E7AB3D68}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C2996524-2187-441F-A398-CD6CB6B3D020}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C44FEFF4-EF0C-4CF7-83D0-92B4266A32B9}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{D9D1DFC5-502D-43E4-B1BB-4D0B7841489A}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E047E227-5342-4D94-80F7-CFB154BF55BD}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E0B07188-A528-4F9E-B2F7-C7FDE8680AE4}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E3F79BE9-24D4-4F4D-8C13-DF2C9899F82E}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{E77EEF95-3E83-4BB8-9C0D-4A5163774997}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{F05B12E1-ADE8-4485-B45B-898748B53C37}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{F131923C-381D-4E4C-A472-4A17118FD742}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{F7EC6286-297C-4981-9DCC-FD7F57BC24C9}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Found : [x64] HKLM\SOFTWARE\Tarma Installer
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{7473B6BD-4691-4744-A82B-7854EB3D70B6}]
Value Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
Value Found : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [support@2yourface.com]
Value Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16537

*************************

AdwCleaner[R0].txt - [13046 octets] - [06/11/2013 13:31:05]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [13107 octets] ##########

 

 

================================================================================================================

 

And then JRT log:

================================================================================================================

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Ultimate x64
Ran by PeterAdmin on 2013-11-06 at 13:40:31,33
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-1150696056-1180195882-3414456120-1027\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Search Bar
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchURL\\Default
Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\searchURL\\Default

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\ASKUpgrade_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\ASKUpgrade_RASMANCS
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\ASKUpgrade_RASAPI32
Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\ASKUpgrade_RASMANCS

 

~~~ Files

 

~~~ Folders

Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2013-11-06 at 13:49:19,81
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


 



#6 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:51 AM

Posted 06 November 2013 - 10:48 AM

Have you had any issues with the name changing on the computer?

#7 WilX

WilX
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:51 AM

Posted 06 November 2013 - 11:39 AM

I'm not sure i follow. As far as naming the problem was noticed when network paths broke down, apparently the computer now had the name 9Aorka5 (which i have no idea of where it comes from)

 

After that i've succesfully changed back the name, but only by reinstalling network card and manually chagning the whole computer name not only netbios) into something else.


Edited by WilX, 06 November 2013 - 11:39 AM.


#8 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:01:51 AM

Posted 06 November 2013 - 11:42 AM

So how is the computer behaving now, and other anomalies?

#9 WilX

WilX
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  
  • Local time:02:51 AM

Posted 09 November 2013 - 07:37 AM

It seems there is no problem present anymore, fact is that the only thing ive been aware of is the actual namechange, hopfully nothing is left on the computer whatever it was.

Thank you for all your help. Take care!




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users