Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I'm infected with something I can't get rid of


  • Please log in to reply
12 replies to this topic

#1 ibapoet

ibapoet

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:35 PM

Posted 24 November 2013 - 05:36 PM

I am using Windows 8 ( and this will probably be my last Windows OS) but I have recently been infected with something that has a bunch of ads. I use Kaspersky and the last scan detected tmpE49F.exe not sure if this is the only thing on my system but it is quarantined and but the adds are still there. I deleted scorpion saver or some other type of savings app. Somehow I have this pc needs to be backed up box on my screen and adds on every window that opens up. Here is the log file from Hijack this: ( also when I tried to run it said something wouldn't let hijack this run or open a location but I do not know how to open it in windows 8 )  

 

 
I have Google chrome, IE, and firefox but mainly use Chrome.

Edited by ibapoet, 24 November 2013 - 05:39 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:35 PM

Posted 25 November 2013 - 02:53 PM

Hello lets do this first.

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
Now disable any add ons in Chrome and the others you do not recognize, or disable all and see if it stops
Disable Individual Plug-ins in Google Chrome
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 ibapoet

ibapoet
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:35 PM

Posted 25 November 2013 - 06:45 PM

ok I ran TFC what would you like for me to do next? 



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:35 PM

Posted 25 November 2013 - 08:00 PM

If you also disabled the ad ons and the popup is still happening then run these..
 

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
     
    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner
    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .
    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.


  • Let me know how it is.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 ibapoet

ibapoet
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:35 PM

Posted 27 November 2013 - 02:23 AM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Errol (administrator) on 27-11-2013 at 02:08:08
Running from "C:\Users\Errol\Downloads"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Intel® Centrino® Wireless-N 2230 = Wi-Fi (Connected)
Realtek PCIe FE Family Controller = Ethernet (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : ErrolTolbert
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home
 
Wireless LAN adapter Local Area Connection* 12:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 60-6C-66-B1-5F-D1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Bluetooth Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 60-6C-66-B1-5F-D4
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
   Physical Address. . . . . . . . . : 5C-F9-DD-5F-59-D5
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Intel® Centrino® Wireless-N 2230
   Physical Address. . . . . . . . . : 60-6C-66-B1-5F-D0
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::f8f4:b01f:be0c:910f%3(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.4(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, November 26, 2013 8:49:00 PM
   Lease Expires . . . . . . . . . . : Wednesday, November 27, 2013 8:49:00 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 257977446
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-71-57-E8-60-6C-66-B1-5F-D0
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.home:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 13:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:287a:2b5:52c2:fbac(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::287a:2b5:52c2:fbac%10(Preferred) 
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 167772160
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-71-57-E8-60-6C-66-B1-5F-D0
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1
 
Name:    google.com
Addresses:  2607:f8b0:4006:802::1007
 173.194.43.2
 173.194.43.0
 173.194.43.3
 173.194.43.5
 173.194.43.4
 173.194.43.6
 173.194.43.9
 173.194.43.8
 173.194.43.1
 173.194.43.7
 173.194.43.14
 
 
Pinging google.com [173.194.43.0] with 32 bytes of data:
Reply from 173.194.43.0: bytes=32 time=27ms TTL=250
Reply from 173.194.43.0: bytes=32 time=24ms TTL=250
 
Ping statistics for 173.194.43.0:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 24ms, Maximum = 27ms, Average = 25ms
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  206.190.36.45
 98.138.253.109
 98.139.183.24
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=60ms TTL=249
Reply from 98.138.253.109: bytes=32 time=60ms TTL=249
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 60ms, Maximum = 60ms, Average = 60ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...60 6c 66 b1 5f d1 ......Microsoft Wi-Fi Direct Virtual Adapter
  6...60 6c 66 b1 5f d4 ......Bluetooth Device (Personal Area Network)
  4...5c f9 dd 5f 59 d5 ......Realtek PCIe FE Family Controller
  3...60 6c 66 b1 5f d0 ......Intel® Centrino® Wireless-N 2230
  1...........................Software Loopback Interface 1
  8...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 10...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.4     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.4    281
      192.168.1.4  255.255.255.255         On-link       192.168.1.4    281
    192.168.1.255  255.255.255.255         On-link       192.168.1.4    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.4    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.4    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 10    306 ::/0                     On-link
  1    306 ::1/128                  On-link
 10    306 2001::/32                On-link
 10    306 2001:0:9d38:6abd:287a:2b5:52c2:fbac/128
                                    On-link
  3    281 fe80::/64                On-link
 10    306 fe80::/64                On-link
 10    306 fe80::287a:2b5:52c2:fbac/128
                                    On-link
  3    281 fe80::f8f4:b01f:be0c:910f/128
                                    On-link
  1    306 ff00::/8                 On-link
  3    281 ff00::/8                 On-link
 10    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (11/27/2013 00:15:50 AM) (Source: Microsoft-Windows-Defrag) (User: )
Description: The volume OS (C:) was not optimized because an error was encountered: The parameter is incorrect. (0x80070057)
 
Error: (11/26/2013 10:42:00 PM) (Source: Application Error) (User: )
Description: Faulting application name: pcdrsysinfocsmi.p5x, version: 6.0.6032.39, time stamp: 0x4ffe56d2
Faulting module name: MSVCR90.dll, version: 9.0.30729.8387, time stamp: 0x51ea1bbd
Exception code: 0x40000015
Fault offset: 0x000000000004267f
Faulting process id: 0x2024
Faulting application start time: 0xpcdrsysinfocsmi.p5x0
Faulting application path: pcdrsysinfocsmi.p5x1
Faulting module path: pcdrsysinfocsmi.p5x2
Report Id: pcdrsysinfocsmi.p5x3
Faulting package full name: pcdrsysinfocsmi.p5x4
Faulting package-relative application ID: pcdrsysinfocsmi.p5x5
 
Error: (11/26/2013 11:46:14 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6032
 
Error: (11/26/2013 11:46:14 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6032
 
Error: (11/26/2013 11:46:14 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (11/26/2013 11:46:12 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4782
 
Error: (11/26/2013 11:46:12 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4782
 
Error: (11/26/2013 11:46:12 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (11/26/2013 11:46:11 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3485
 
Error: (11/26/2013 11:46:11 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3485
 
 
System errors:
=============
Error: (11/26/2013 08:51:41 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (11/25/2013 07:07:32 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (11/25/2013 07:03:16 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Centrino® Wireless Bluetooth® + High Speed Service service hung on starting.
 
Error: (11/25/2013 06:57:37 PM) (Source: DCOM) (User: ERROLTOLBERT)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}
 
Error: (11/25/2013 06:46:43 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (11/25/2013 06:44:13 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Centrino® Wireless Bluetooth® + High Speed Service service hung on starting.
 
Error: (11/25/2013 06:35:09 PM) (Source: Service Control Manager) (User: )
Description: The Adobe Acrobat Update Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (11/25/2013 10:00:00 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (11/24/2013 10:00:00 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable
 
Error: (11/23/2013 11:38:28 PM) (Source: Service Control Manager) (User: )
Description: The SProtection service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
 
Microsoft Office Sessions:
=========================
Error: (11/27/2013 00:15:50 AM) (Source: Microsoft-Windows-Defrag)(User: )
Description: OS (C:)The parameter is incorrect. (0x80070057)
 
Error: (11/26/2013 10:42:00 PM) (Source: Application Error)(User: )
Description: pcdrsysinfocsmi.p5x6.0.6032.394ffe56d2MSVCR90.dll9.0.30729.838751ea1bbd40000015000000000004267f202401ceeb22a0cc3e4dC:\Program Files\Dell Support Center\pcdrsysinfocsmi.p5xC:\WINDOWS\WinSxS\amd64_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.8387_none_08e793bfa83a89b5\MSVCR90.dlldeaf137e-5715-11e3-be85-606c66b15fd4
 
Error: (11/26/2013 11:46:14 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6032
 
Error: (11/26/2013 11:46:14 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6032
 
Error: (11/26/2013 11:46:14 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (11/26/2013 11:46:12 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4782
 
Error: (11/26/2013 11:46:12 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 4782
 
Error: (11/26/2013 11:46:12 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (11/26/2013 11:46:11 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 3485
 
Error: (11/26/2013 11:46:11 AM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 3485
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-11-27 02:05:12.317
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\imthx64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-27 02:05:12.311
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\imapo64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-27 02:05:12.226
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\imthx64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-27 02:05:12.220
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\imapo64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-27 01:57:15.687
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\imthx64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-27 01:57:15.681
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\imapo64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-27 01:57:15.596
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\imthx64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-27 01:57:15.590
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\imapo64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-27 01:56:45.037
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\imthx64.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-27 01:56:45.031
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\imapo64.dll because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Adobe Flash Player 11 Plugin (Version: 11.9.900.152)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
Canon MX340 series MP Drivers
Cisco WebEx Meetings
CyberLink LabelPrint 2.5 (Version: 2.5.5415a)
CyberLink Media Suite 10 (Version: 10.0.1.1913)
CyberLink Media Suite Essentials (Version: 10.0)
CyberLink Power2Go 8 (Version: 8.0.0.1904)
CyberLink PowerDirector 10 (Version: 10.0.1.1904)
CyberLink PowerDVD 10 (Version: 10.0.4318.52)
D3DX10 (Version: 15.4.2368.0902)
Dell Backup and Recovery - Support Software (Version: 1.6.1.1)
Dell Backup and Recovery (Version: 1.6.1.1)
Dell Support Center (Version: 3.2.6032.39)
Dell System Detect (Version: 5.3.2.10)
Dell Touchpad (Version: 8.1200.101.209)
DSC/AA Factory Installer (Version: 3.2.6032.39)
GeForce Experience NvStream Client Components (Version: 1.6.28)
Google Chrome (Version: 31.0.1650.57)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.5.4601.54)
Google Update Helper (Version: 1.3.21.165)
iCloud (Version: 3.0.2.163)
IDT Audio (Version: 1.0.6418.0)
Intel PROSet Wireless
Intel® Control Center (Version: 1.2.1.1008)
Intel® Processor Graphics (Version: 10.18.10.3316)
Intel® PROSet/Wireless for Bluetooth® + High Speed (Version: 15.5.0.0344)
Intel® PROSet/Wireless Software for Bluetooth® Technology (Version: 2.5.0.0248)
Intel® Rapid Storage Technology (Version: 11.5.4.1001)
Intel® PROSet/Wireless WiFi Software (Version: 15.05.1000.1411)
iTunes (Version: 11.1.3.8)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Kaspersky PURE 3.0 (Version: 13.0.2.558)
Malwarebytes Anti-Exploit version 0.09.3.1000 (Version: 0.09.3.1000)
Mass Effect™ 3 (Version: 1.05.0.0)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 365 Home Premium - en-us (Version: 15.0.4551.1005)
Microsoft SkyDrive (Version: 17.0.2015.0811)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Movie Maker (Version: 16.4.3505.0912)
Mozilla Firefox 25.0.1 (x86 en-US) (Version: 25.0.1)
Mozilla Maintenance Service (Version: 25.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MyPC Backup  (Version: )
NVIDIA Control Panel 331.40 (Version: 331.40)
NVIDIA GeForce Experience 1.7 (Version: 1.7)
NVIDIA Graphics Driver 331.40 (Version: 331.40)
NVIDIA Install Application (Version: 2.1002.133.889)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA Optimus 9.3.16 (Version: 9.3.16)
NVIDIA PhysX (Version: 9.13.0725)
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725)
NVIDIA ShadowPlay 9.3.16 (Version: 9.3.16)
NVIDIA Update 9.3.16 (Version: 9.3.16)
NVIDIA Update Components (Version: 9.3.16)
NVIDIA Virtual Audio 1.2.9 (Version: 1.2.9)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4551.1005)
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1005)
Office 15 Click-to-Run Localization Component (Version: 15.0.4551.1005)
Origin (Version: 9.3.6.4643)
Photo Gallery (Version: 16.4.3505.0912)
Quickset64 (Version: 11.1.32)
QuickTime (Version: 7.74.80.86)
Revo Uninstaller 1.95 (Version: 1.95)
ScenarioExpress 1.00
SecretSauce (Version: 2013.11.13.200710)
Secunia PSI (3.0.0.9015) (Version: 3.0.0.9015)
Shared C Run-time for x64 (Version: 10.0.0)
SHIELD Streaming (Version: 1.6.34)
SimCity™ (Version: 1.0.0.0)
SpeedFan (remove only)
The Logo Creator v5.2
Vuze (Version: 5.1.0.0)
Windows Live Communications Platform (Version: 16.4.3505.0912)
Windows Live Essentials (Version: 16.4.3505.0912)
Windows Live Installer (Version: 16.4.3505.0912)
Windows Live Photo Common (Version: 16.4.3505.0912)
Windows Live PIMT Platform (Version: 16.4.3505.0912)
Windows Live SOXE (Version: 16.4.3505.0912)
Windows Live SOXE Definitions (Version: 16.4.3505.0912)
Windows Live UX Platform (Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (Version: 16.4.3505.0912)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 42%
Total physical RAM: 8052.05 MB
Available physical RAM: 4606.48 MB
Total Pagefile: 9332.05 MB
Available Pagefile: 5055.04 MB
Total Virtual: 4095.88 MB
Available Virtual: 3970.17 MB
 
========================= Partitions: =====================================
 
1 Drive c: (OS) (Fixed) (Total:920.73 GB) (Free:850.42 GB) NTFS
2 Drive d: (WINRETOOLS) (Fixed) (Total:2 GB) (Free:1.23 GB) NTFS
3 Drive e: (A_PLUS_CERT) (CDROM) (Total:7.78 GB) (Free:0 GB) CDFS
4 Drive f: (ESP) (Fixed) (Total:0.48 GB) (Free:0.46 GB) FAT32
5 Drive x: () (Fixed) (Total:0.34 GB) (Free:0.04 GB) NTFS
6 Drive y: (PBR Image) (Fixed) (Total:7.83 GB) (Free:0.75 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\ERROLTOLBERT
 
Administrator            Errol                    Guest                    
UpdatusUser              
 
 
**** End of log ****
 
 
TDSSKiller


#6 ibapoet

ibapoet
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:35 PM

Posted 27 November 2013 - 02:25 AM

02:19:27.0889 0x2050  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
02:19:27.0889 0x2050  UEFI system
02:19:34.0581 0x2050  ============================================================
02:19:34.0581 0x2050  Current date / time: 2013/11/27 02:19:34.0581
02:19:34.0581 0x2050  SystemInfo:
02:19:34.0581 0x2050  
02:19:34.0581 0x2050  OS Version: 6.3.9600 ServicePack: 0.0
02:19:34.0581 0x2050  Product type: Workstation
02:19:34.0581 0x2050  ComputerName: ERROLTOLBERT
02:19:34.0581 0x2050  UserName: Errol
02:19:34.0581 0x2050  Windows directory: C:\WINDOWS
02:19:34.0581 0x2050  System windows directory: C:\WINDOWS
02:19:34.0581 0x2050  Running under WOW64
02:19:34.0581 0x2050  Processor architecture: Intel x64
02:19:34.0581 0x2050  Number of processors: 8
02:19:34.0581 0x2050  Page size: 0x1000
02:19:34.0581 0x2050  Boot type: Normal boot
02:19:34.0581 0x2050  ============================================================
02:19:34.0940 0x2050  KLMD registered as C:\WINDOWS\system32\drivers\65848509.sys
02:19:35.0346 0x2050  System UUID: {D726D991-43E0-57EA-8F1D-95A79F5AE17D}
02:19:35.0793 0x2050  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
02:19:35.0795 0x2050  ============================================================
02:19:35.0795 0x2050  \Device\Harddisk0\DR0:
02:19:35.0796 0x2050  GPT partitions:
02:19:35.0797 0x2050  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {CA95CECF-E7EC-4256-9DF0-40651E39FDE5}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x400000
02:19:35.0797 0x2050  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {4692AD73-D560-41D4-AF43-D6BE5279A404}, Name: EFI system partition, StartLBA 0x400800, BlocksNum 0xFA000
02:19:35.0797 0x2050  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {E2CB7150-E613-40E2-BF79-AFFAA87357E0}, Name: Microsoft reserved partition, StartLBA 0x4FA800, BlocksNum 0x40000
02:19:35.0797 0x2050  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {21ABE4D7-A688-444C-9B9C-A0039F33649A}, Name: Basic data partition, StartLBA 0x53A800, BlocksNum 0x73174000
02:19:35.0797 0x2050  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {C5EFDEA6-0BFD-4B20-B173-01980E8CCEEC}, Name: , StartLBA 0x736AE800, BlocksNum 0xAF000
02:19:35.0797 0x2050  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {3DE5B7C2-A415-4722-A139-F922B0BC9F76}, Name: Microsoft recovery partition, StartLBA 0x7375D800, BlocksNum 0xFA8DB0
02:19:35.0797 0x2050  MBR partitions:
02:19:35.0797 0x2050  ============================================================
02:19:35.0828 0x2050  C: <-> \Device\Harddisk0\DR0\Partition4
02:19:35.0868 0x2050  D: <-> \Device\Harddisk0\DR0\Partition1
02:19:35.0868 0x2050  ============================================================
02:19:35.0868 0x2050  Initialize success
02:19:35.0868 0x2050  ============================================================
02:20:02.0187 0x145c  ============================================================
02:20:02.0187 0x145c  Scan started
02:20:02.0187 0x145c  Mode: Manual; 
02:20:02.0187 0x145c  ============================================================
02:20:02.0187 0x145c  KSN ping started
02:20:04.0587 0x145c  KSN ping finished: true
02:20:05.0263 0x145c  ================ Scan system memory ========================
02:20:05.0263 0x145c  System memory - ok
02:20:05.0263 0x145c  ================ Scan services =============================
02:20:06.0160 0x145c  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
02:20:06.0163 0x145c  1394ohci - ok
02:20:06.0172 0x145c  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
02:20:06.0173 0x145c  3ware - ok
02:20:06.0305 0x145c  [ 3D30878A269D934100FA5F972E53AF39, 3D2D22D1A9D80DB94D6059C789FBD04DC945722B8644DF6DAA73D5713A10EC52 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
02:20:06.0312 0x145c  ACPI - ok
02:20:06.0344 0x145c  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
02:20:06.0345 0x145c  acpiex - ok
02:20:06.0361 0x145c  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
02:20:06.0361 0x145c  acpipagr - ok
02:20:06.0384 0x145c  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
02:20:06.0384 0x145c  AcpiPmi - ok
02:20:06.0398 0x145c  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
02:20:06.0399 0x145c  acpitime - ok
02:20:06.0508 0x145c  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
02:20:06.0509 0x145c  AdobeARMservice - ok
02:20:06.0896 0x145c  [ 438F31336B3DC248ABC632F1C8F34A24, 94C1218E7EC2EC6D4870A6FDC118097D7D3A359DA073DCD3A9770F399F830991 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
02:20:06.0900 0x145c  AdobeFlashPlayerUpdateSvc - ok
02:20:06.0954 0x145c  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
02:20:06.0965 0x145c  ADP80XX - ok
02:20:06.0993 0x145c  [ B19CA8E441D35AA2B1EE51C10B27DA1B, EBEB96EA44E665B2D4FCD1CC58621A20A17F036EA4A695340A2B65F94F69CDDC ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
02:20:06.0996 0x145c  AeLookupSvc - ok
02:20:07.0010 0x145c  [ 239268BAB58EAE9A3FF4E08334C00451, 13F927730DF9BAEDB3A7AB6F7238270A20E4CDEB3D5324A1C471DF2209F3D239 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
02:20:07.0017 0x145c  AFD - ok
02:20:07.0034 0x145c  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
02:20:07.0035 0x145c  agp440 - ok
02:20:07.0084 0x145c  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
02:20:07.0085 0x145c  ahcache - ok
02:20:07.0112 0x145c  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\WINDOWS\System32\alg.exe
02:20:07.0113 0x145c  ALG - ok
02:20:07.0134 0x145c  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
02:20:07.0135 0x145c  AmdK8 - ok
02:20:07.0148 0x145c  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
02:20:07.0150 0x145c  AmdPPM - ok
02:20:07.0174 0x145c  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
02:20:07.0176 0x145c  amdsata - ok
02:20:07.0205 0x145c  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
02:20:07.0208 0x145c  amdsbs - ok
02:20:07.0225 0x145c  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
02:20:07.0226 0x145c  amdxata - ok
02:20:07.0259 0x145c  [ FB88245C1815EB1588DBC364A8D24522, 8DF136DE523EB39199FC993C48D850AD5B57FD9808B778FEF77FDC737F1A0026 ] AMPPAL          C:\WINDOWS\System32\drivers\AMPPAL.sys
02:20:07.0261 0x145c  AMPPAL - ok
02:20:07.0379 0x145c  [ A73CEA1B1B0A4F6D10BFD3B9AD9DC5F9, A2A4C8FA566BE06A64A34DEBF2647AA40B31BEBA677D548CAE3100EF20632EB7 ] AMPPALR3        C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
02:20:07.0390 0x145c  AMPPALR3 - ok
02:20:07.0419 0x145c  [ 91C148FEFDF53E8B0A58CDF2466DCDC1, 02A867A89142FFEFCFB81CC7AC528F4AA737FFA80DDD681693BB9861BF2EB428 ] ApfiltrService  C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
02:20:07.0425 0x145c  ApfiltrService - ok
02:20:07.0430 0x145c  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
02:20:07.0431 0x145c  AppID - ok
02:20:07.0463 0x145c  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
02:20:07.0463 0x145c  AppIDSvc - ok
02:20:07.0485 0x145c  [ 7E790DE2487CEDB349D1750B9E47F090, EDA4A87EA2F89ABD174E9590DD46E70B9E7E4B35BDFC3ED90D79CD594F8CB2CD ] Appinfo         C:\WINDOWS\System32\appinfo.dll
02:20:07.0487 0x145c  Appinfo - ok
02:20:07.0531 0x145c  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
02:20:07.0532 0x145c  Apple Mobile Device - ok
02:20:07.0589 0x145c  [ 4B964AE0DF433A3BFA7BD24713BC2E9B, DC8933265E67E43CAE96EA64B146CB9067B536A4DA2C90EDCB38302BBFA1CE6B ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
02:20:07.0597 0x145c  AppReadiness - ok
02:20:07.0646 0x145c  [ 27334B4E29DC8E26FF86E0F075A6CED5, 77E8DC3D0819FDB0357155175043FA12C046C3367E587441BBB87F6C2920E95E ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
02:20:07.0664 0x145c  AppXSvc - ok
02:20:07.0693 0x145c  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
02:20:07.0695 0x145c  arcsas - ok
02:20:07.0708 0x145c  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
02:20:07.0708 0x145c  atapi - ok
02:20:07.0739 0x145c  [ AE8EE29474663398737DBC146D53D440, F03F20A94E51ECC651AE32C1D024BC8468D9683DF5CBE70DF5268B0E7F7AE3DB ] AthDfu          C:\WINDOWS\System32\Drivers\AthDfu.sys
02:20:07.0740 0x145c  AthDfu - ok
02:20:07.0809 0x145c  [ 4903CBC14742B5AB4DCF7A92F7DEC483, B8491FDA1D1E767658ECC5C3C3DDFB3EB12A969F0F6ACF116C18300FF54075D5 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
02:20:07.0812 0x145c  AudioEndpointBuilder - ok
02:20:07.0866 0x145c  [ 86DD7884124D363A63CCE7A11FDEBBED, E7BAE477D964E395A96342E077774467AA9DE5D8112BFCDE27EEA1CB04A2A480 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
02:20:07.0878 0x145c  Audiosrv - ok
02:20:07.0954 0x145c  [ 7E91655B4947EC1B18B3BC1645839145, 4425326D019A7A6380B71D6710AD94D58A11E1BC5BA42159DD4A17437A296C48 ] AVP             C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe
02:20:07.0959 0x145c  AVP - ok
02:20:08.0004 0x145c  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
02:20:08.0006 0x145c  AxInstSV - ok
02:20:08.0033 0x145c  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
02:20:08.0040 0x145c  b06bdrv - ok
02:20:08.0062 0x145c  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
02:20:08.0063 0x145c  BasicDisplay - ok
02:20:08.0098 0x145c  [ 2748E116F8621A4DB0D39FCDD7318C01, DA2DEB7FE1D887B1EF5E2B5103270B72268D8ABDDA36C396627305C0BA90FC20 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
02:20:08.0100 0x145c  BasicRender - ok
02:20:08.0131 0x145c  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
02:20:08.0131 0x145c  bcmfn2 - ok
02:20:08.0159 0x145c  [ BBE61A40665B83488901E41082A6097D, ADF750DB32E1295C57C03D587A60194529C8B83F90F433C3458288FB5E8F475B ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
02:20:08.0163 0x145c  BDESVC - ok
02:20:08.0191 0x145c  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
02:20:08.0191 0x145c  Beep - ok
02:20:08.0256 0x145c  [ 6468B696C65775D51A06615830E0E79D, CC4081B3A4895192B4796A745F0BCE8C9C3149B854A7B9BEF84668A2E1D074B5 ] BFE             C:\WINDOWS\System32\bfe.dll
02:20:08.0268 0x145c  BFE - ok
02:20:08.0320 0x145c  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\WINDOWS\System32\qmgr.dll
02:20:08.0334 0x145c  BITS - ok
02:20:08.0450 0x145c  [ 4AF14827F1584D084BC136A51FAA8397, B6202545E2459D648BF668F7025A139F64DB6F28F88773FD997DFF10003D9B7C ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
02:20:08.0464 0x145c  Bluetooth Device Monitor - ok
02:20:08.0486 0x145c  [ BC89A4C6A2A9C65E8E88AD0B3BF180FD, 06ECD1BF3F3526A77E389413D060BAB6BD50E5DC4C926C8EFCE2B04D56EE16E4 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
02:20:08.0501 0x145c  Bluetooth OBEX Service - ok
02:20:08.0553 0x145c  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
02:20:08.0560 0x145c  Bonjour Service - ok
02:20:08.0582 0x145c  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
02:20:08.0584 0x145c  bowser - ok
02:20:08.0615 0x145c  [ 748141CC03DF40C38F17D3F96BB15C80, 8F1FA850BC6C6497325C0758DEA36C2839BE53C3F8143DFD3A905BEEFF538126 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
02:20:08.0618 0x145c  BrokerInfrastructure - ok
02:20:08.0650 0x145c  [ D528D6A92D187777691993DD757AF19A, 2C79978310193431E5FC462368424A172858D5351C92D4815C2A7E35B5DDE50C ] Browser         C:\WINDOWS\System32\browser.dll
02:20:08.0652 0x145c  Browser - ok
02:20:08.0678 0x145c  [ 23CEDCD7527A26B222732A158F76EB24, 5A45D7FC8DFB96A938EEB8604B79413A10C0C16A17D3139B712263211D8215E9 ] BTATH_BUS       C:\WINDOWS\System32\drivers\btath_bus.sys
02:20:08.0679 0x145c  BTATH_BUS - ok
02:20:08.0698 0x145c  [ 3DD64966A764BCAFF07C9DC064BD410E, 456252339BCA224549E4CBCD5A0501AF10340211CFD567C577067ABF5DABB21F ] BTATH_HCRP      C:\WINDOWS\System32\drivers\btath_hcrp.sys
02:20:08.0701 0x145c  BTATH_HCRP - ok
02:20:08.0726 0x145c  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
02:20:08.0727 0x145c  BthAvrcpTg - ok
02:20:08.0732 0x145c  [ 131F1C8573E7BFB41C54FBF5309CCD94, DAFE51E3BADBD82A33B580F212B2D6520A120877C23F6D675521FEA2F4BA5A1F ] BthEnum         C:\WINDOWS\System32\drivers\BthEnum.sys
02:20:08.0733 0x145c  BthEnum - ok
02:20:08.0737 0x145c  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
02:20:08.0738 0x145c  BthHFEnum - ok
02:20:08.0742 0x145c  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
02:20:08.0743 0x145c  bthhfhid - ok
02:20:08.0786 0x145c  [ FCD8BD17B7193CFFF18C332D1A381D7F, CD8A03086695F8FF2566697164D1FD1B60210C017220EFBD78CB12C38CD12BE1 ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
02:20:08.0789 0x145c  BthLEEnum - ok
02:20:08.0815 0x145c  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
02:20:08.0816 0x145c  BTHMODEM - ok
02:20:08.0855 0x145c  [ 3AFE71D80EDF5D4DE0C5731352905669, 3E370169B8C5D301954D1F1DA302F7A0DB2A034990E10B3D64458C48E5693205 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
02:20:08.0857 0x145c  BthPan - ok
02:20:08.0991 0x145c  [ 10EDF9E0838BA4578FFFFF274632D454, 7719C161A3A05DF62124177A8EC97800DFE855D2B738C443F1B44E8643A4CF44 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
02:20:09.0008 0x145c  BTHPORT - ok
02:20:09.0024 0x145c  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\WINDOWS\system32\bthserv.dll
02:20:09.0025 0x145c  bthserv - ok
02:20:09.0042 0x145c  [ 9310C81BE4D5EA33798A99355BB53E94, 127D1CC281996FD7B4359858A7B3EDB6FF4987EF463406259DA04D6F65DA1478 ] BTHSSecurityMgr C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
02:20:09.0044 0x145c  BTHSSecurityMgr - ok
02:20:09.0065 0x145c  [ 0E7FA34B975764C33B5DBC6F8C401627, 9727B9D216D0670D2F2BC5B464B5FDAEC8BC769CA6ADC7F3858EDA3DA0F8036C ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
02:20:09.0067 0x145c  BTHUSB - ok
02:20:09.0131 0x145c  [ 7B31A8A9DC95B3634D896FD0F2814F19, 8FD5FBC61968F4BB8C2BAD0D432D5B86DCFED38CCF6F559F9EFB71AADD25474F ] btmhsf          C:\WINDOWS\system32\DRIVERS\btmhsf.sys
02:20:09.0149 0x145c  btmhsf - ok
02:20:09.0175 0x145c  [ FE45300D6D7E13E6DC42536F6E09ADC7, 3640F3C8D83CB1FBEE4F02A8E8167AF86F06C3D2B6F6641132B8D6FE595AE59C ] btwavdt         C:\WINDOWS\System32\drivers\btwavdt.sys
02:20:09.0178 0x145c  btwavdt - ok
02:20:09.0193 0x145c  [ 7341EAE45C2EA9FB7F887EC293A748B9, E539CFC3B53F9F67DE0B1D8D64BD0CA8CFA2C4A91A690D97787BD98FA21707D6 ] btwrchid        C:\WINDOWS\System32\drivers\btwrchid.sys
02:20:09.0194 0x145c  btwrchid - ok
02:20:09.0226 0x145c  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
02:20:09.0227 0x145c  cdfs - ok
02:20:09.0271 0x145c  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
02:20:09.0273 0x145c  cdrom - ok
02:20:09.0321 0x145c  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
02:20:09.0324 0x145c  CertPropSvc - ok
02:20:09.0365 0x145c  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
02:20:09.0366 0x145c  circlass - ok
02:20:09.0393 0x145c  [ 7F006813C2AFE622C13D7AF94F56CD07, 9F4AEEE19B44F4117BE036F1475CE2E91ED740EB7D8D38364F9724517F777482 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
02:20:09.0398 0x145c  CLFS - ok
02:20:09.0523 0x145c  [ 48BEB956F7E551CB9179883F77B7B97F, BF75F2609E022B7122FE4158518BAC6395713BB808B52D0AB59D0EF0875A9BAB ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
02:20:09.0526 0x145c  CLKMSVC10_38F51D56 - ok
02:20:09.0561 0x145c  [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive  C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
02:20:09.0562 0x145c  CLVirtualDrive - ok
02:20:09.0574 0x145c  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
02:20:09.0575 0x145c  CmBatt - ok
02:20:09.0637 0x145c  [ 825BE21E6395E00698D8A23955A87972, 303F10C3BA72ABB3BA27D08968B10E8EB03FFB6951943B0E9DD35CF48BB72578 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
02:20:09.0644 0x145c  CNG - ok
02:20:09.0652 0x145c  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
02:20:09.0652 0x145c  CompositeBus - ok
02:20:09.0655 0x145c  COMSysApp - ok
02:20:09.0674 0x145c  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
02:20:09.0675 0x145c  condrv - ok
02:20:10.0041 0x145c  [ 034643AFE2973A175E782AE530A0683C, C488572B971144D8A10F6EC8480175868913942896144D38BF49E3D8D1BC54F3 ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
02:20:10.0045 0x145c  cphs - ok
02:20:10.0082 0x145c  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
02:20:10.0084 0x145c  CryptSvc - ok
02:20:10.0130 0x145c  [ 8128B65589C944622D6809C144972ECF, 467F033A7D4A1EE63CB325BDAAA0E9C2CAA60A660912321FB74E736743923977 ] CSCrySec        C:\WINDOWS\system32\DRIVERS\CSCrySec.sys
02:20:10.0132 0x145c  CSCrySec - ok
02:20:10.0221 0x145c  [ 0F9FE82E229C039F0AC1996E44059653, BE925C118A7620259724B0750681C83DC14BC78620FB217025F46E4441C55F3A ] CSObjectsSrv    C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
02:20:10.0232 0x145c  CSObjectsSrv - ok
02:20:10.0246 0x145c  [ A6B7212B3735C7B4ABD602E78573F970, D1DD2F5D1AA8E5B0A97FEAC2C498E1184185CED9BB6D0C9632F79FD5962A5074 ] CSVirtualDiskDrv C:\WINDOWS\system32\DRIVERS\CSVirtualDiskDrv.sys
02:20:10.0247 0x145c  CSVirtualDiskDrv - ok
02:20:10.0280 0x145c  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
02:20:10.0281 0x145c  dam - ok
02:20:10.0349 0x145c  [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
02:20:10.0361 0x145c  DcomLaunch - ok
02:20:10.0387 0x145c  [ F4CCAADC2C78F57E4F16B24C9201CE22, B76A5C487A814CB986FE8CC398FB7493C9EAB9ACC933A3C35384FA447092EF00 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
02:20:10.0393 0x145c  defragsvc - ok
02:20:10.0447 0x145c  [ 0BC71D4D3B5883903C37BF4E13B0F0C5, C5EC2AD001FB7E72D3D12DBADFE01C308ACCB7426E0B90CCB3ECE2DE49D5E7D4 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
02:20:10.0453 0x145c  DeviceAssociationService - ok
02:20:10.0486 0x145c  [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
02:20:10.0489 0x145c  DeviceInstall - ok
02:20:10.0545 0x145c  [ 5DB26D7E0216D0BF364A81D3829AD7B9, FD786D530EA9ADBCB48782FE091E926505A83F2BF3B4181A3D4EDFAA991C4E5E ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
02:20:10.0547 0x145c  Dfsc - ok
02:20:10.0571 0x145c  [ E428DFFA96FAD07D8CA3C9082563A225, F3D2E94A9FF2CF68CC99A8B42B8DEA5E57D46000D1845DC0908224493480C79F ] dg_ssudbus      C:\WINDOWS\system32\DRIVERS\ssudbus.sys
02:20:10.0573 0x145c  dg_ssudbus - ok
02:20:10.0628 0x145c  [ 8B107F55FD61654A6C9F1B819AEC5FC4, 773B1B9D3583F17B7C89BDE1EC4487ABB0AE039DF4583F8746460425443DA291 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
02:20:10.0633 0x145c  Dhcp - ok
02:20:10.0651 0x145c  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
02:20:10.0652 0x145c  disk - ok
02:20:10.0667 0x145c  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
02:20:10.0667 0x145c  dmvsc - ok
02:20:10.0713 0x145c  [ 5BAF7714E68F93515A937A3FA8587EF9, DD9296F75341EF96D514139DD8A8680B332E9B9D476368AB897FDA2D5D674E60 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
02:20:10.0716 0x145c  Dnscache - ok
02:20:10.0741 0x145c  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
02:20:10.0744 0x145c  dot3svc - ok
02:20:10.0764 0x145c  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\WINDOWS\system32\dps.dll
02:20:10.0767 0x145c  DPS - ok
02:20:10.0818 0x145c  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
02:20:10.0818 0x145c  drmkaud - ok
02:20:10.0844 0x145c  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
02:20:10.0847 0x145c  DsmSvc - ok
02:20:10.0917 0x145c  [ DA8E85F1BE0C9B7D2EE2949248A389D8, 7A58F1435DD52ADEF4B947D59EF3CC0757C7AC2BF499E7CFD3584295D0F9ED0A ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
02:20:10.0937 0x145c  DXGKrnl - ok
02:20:10.0971 0x145c  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
02:20:10.0973 0x145c  Eaphost - ok
02:20:11.0088 0x145c  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
02:20:11.0131 0x145c  ebdrv - ok
02:20:11.0167 0x145c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\WINDOWS\System32\lsass.exe
02:20:11.0169 0x145c  EFS - ok
02:20:11.0201 0x145c  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
02:20:11.0202 0x145c  EhStorClass - ok
02:20:11.0227 0x145c  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
02:20:11.0229 0x145c  EhStorTcgDrv - ok
02:20:11.0241 0x145c  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
02:20:11.0242 0x145c  ErrDev - ok
02:20:11.0312 0x145c  [ 0571E626B1FDB6A83F67F11ACC65D2C0, 78590CD49BFAE9CC0F607C1BA28F5E4EF324823BAE05A27DA9D50C385B94DF18 ] ESProtectionDriver C:\Program Files\Malwarebytes Anti-Exploit\MBAE.sys
02:20:11.0313 0x145c  ESProtectionDriver - ok
02:20:11.0347 0x145c  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\WINDOWS\system32\es.dll
02:20:11.0354 0x145c  EventSystem - ok
02:20:11.0461 0x145c  [ E67E289FA8AA393223AD7F9AFB738FD6, DBAB42EE5C140024CB4FF669664885B5CB404054A430331B5ABF273598A881C0 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
02:20:11.0469 0x145c  EvtEng - ok
02:20:11.0499 0x145c  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
02:20:11.0502 0x145c  exfat - ok
02:20:11.0520 0x145c  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
02:20:11.0522 0x145c  fastfat - ok
02:20:11.0564 0x145c  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\WINDOWS\system32\fxssvc.exe
02:20:11.0574 0x145c  Fax - ok
02:20:11.0591 0x145c  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
02:20:11.0592 0x145c  fdc - ok
02:20:11.0627 0x145c  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
02:20:11.0628 0x145c  fdPHost - ok
02:20:11.0634 0x145c  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
02:20:11.0635 0x145c  FDResPub - ok
02:20:11.0656 0x145c  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
02:20:11.0658 0x145c  fhsvc - ok
02:20:11.0662 0x145c  [ 957A7A8F5ACCAF23DD9DFF6DAA393CE5, 85D1AC25CF8056FF303930A7E18DE5F7C3AEE429272CB791BD6F81F1DAFB7D8A ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
02:20:11.0663 0x145c  FileInfo - ok
02:20:11.0678 0x145c  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
02:20:11.0679 0x145c  Filetrace - ok
02:20:11.0715 0x145c  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
02:20:11.0715 0x145c  flpydisk - ok
02:20:11.0753 0x145c  [ 60D5067FCE6D9433D35E04C01D8538B3, 2D97E9E8FF18CF564DE8E70F68B56F0177DC6C0E9EEB7E1C58BBDF42456CB0D8 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
02:20:11.0758 0x145c  FltMgr - ok
02:20:11.0837 0x145c  [ 183CA7699474FDE235853967D1DA4D9B, 8FBD5997F1E39AFFD8C4322520DF4D2227279B5149017D825C188D7411BA99AF ] FontCache       C:\WINDOWS\system32\FntCache.dll
02:20:11.0855 0x145c  FontCache - ok
02:20:11.0971 0x145c  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
02:20:11.0972 0x145c  FontCache3.0.0.0 - ok
02:20:12.0013 0x145c  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
02:20:12.0014 0x145c  FsDepends - ok
02:20:12.0034 0x145c  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
02:20:12.0035 0x145c  Fs_Rec - ok
02:20:12.0091 0x145c  [ 83E1F0983B02A6F8EC764D18E24ECF10, B5CA3FCB442697681C513FB37C6BB74D7A72B67DC65E2FCA93A7F9E81B63EAAC ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
02:20:12.0099 0x145c  fvevol - ok
02:20:12.0128 0x145c  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
02:20:12.0129 0x145c  FxPPM - ok
02:20:12.0147 0x145c  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
02:20:12.0148 0x145c  gagp30kx - ok
02:20:12.0178 0x145c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
02:20:12.0179 0x145c  GEARAspiWDM - ok
02:20:12.0207 0x145c  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
02:20:12.0208 0x145c  gencounter - ok
02:20:12.0242 0x145c  [ FDA72810CA2F8409D9B31E833C448E34, FC24350E875D2AF2A41DB5EF0BFE4F876DADEACCC0B34B9B9C9B2CA185CBAE87 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
02:20:12.0244 0x145c  GPIOClx0101 - ok
02:20:12.0321 0x145c  [ 0BDE0FCF597E9B65600121EF54FF8340, DA5C96E84E05AD09251C82B4BFEDE274342409803730CEBF24EEAD0DCD42DA7E ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
02:20:12.0339 0x145c  gpsvc - ok
02:20:12.0416 0x145c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:20:12.0417 0x145c  gupdate - ok
02:20:12.0421 0x145c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
02:20:12.0423 0x145c  gupdatem - ok
02:20:12.0457 0x145c  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
02:20:12.0460 0x145c  gusvc - ok
02:20:12.0483 0x145c  [ 03909BDBFF0DCACCABF2B2D4ADEE44DC, 42E631B23BB004F5C2128BAD334C21AB20FAD08AFED9E8191AE9373531BC73DD ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
02:20:12.0484 0x145c  HDAudBus - ok
02:20:12.0509 0x145c  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
02:20:12.0510 0x145c  HidBatt - ok
02:20:12.0543 0x145c  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
02:20:12.0544 0x145c  HidBth - ok
02:20:12.0574 0x145c  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
02:20:12.0575 0x145c  hidi2c - ok
02:20:12.0580 0x145c  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
02:20:12.0581 0x145c  HidIr - ok
02:20:12.0598 0x145c  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\WINDOWS\system32\hidserv.dll
02:20:12.0599 0x145c  hidserv - ok
02:20:12.0616 0x145c  [ F31397220D9687E11EB448649AA6E038, 671ACEAA8E00E0D4ED7E33D06A4558121DA4F56EB94F1CBC16FEB2EF3852F7A5 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
02:20:12.0617 0x145c  HidUsb - ok
02:20:12.0651 0x145c  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
02:20:12.0653 0x145c  hkmsvc - ok
02:20:12.0679 0x145c  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
02:20:12.0683 0x145c  HomeGroupListener - ok
02:20:12.0729 0x145c  [ BE5F89BAFBD4272D5A0C0A37B97865ED, 2F80CE6D123FEED9FA7B00ACF7547FF77E0E6FDC5243942E83BE308C46D414C6 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
02:20:12.0735 0x145c  HomeGroupProvider - ok
02:20:12.0752 0x145c  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
02:20:12.0753 0x145c  HpSAMD - ok
02:20:12.0808 0x145c  [ 3502776E366C913D49C0DA928AE3E6CB, 3FB452F640B78AEDFBC09188F25C566949660163732A180331226A93DB08F26C ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
02:20:12.0822 0x145c  HTTP - ok
02:20:12.0825 0x145c  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
02:20:12.0826 0x145c  hwpolicy - ok
02:20:12.0847 0x145c  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
02:20:12.0848 0x145c  hyperkbd - ok
02:20:12.0871 0x145c  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
02:20:12.0871 0x145c  HyperVideo - ok
02:20:12.0904 0x145c  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
02:20:12.0906 0x145c  i8042prt - ok
02:20:12.0925 0x145c  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
02:20:12.0925 0x145c  iaLPSSi_GPIO - ok
02:20:12.0931 0x145c  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
02:20:12.0932 0x145c  iaLPSSi_I2C - ok
02:20:12.0983 0x145c  [ 459016E8A4FA6426EDB5A9456A6E5E58, 92B73EE5559ABD8783EC5AF8A2B6EBDE0D937745B4BEDBEA6DF06DD8606AE56C ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
02:20:12.0992 0x145c  iaStorA - ok
02:20:13.0034 0x145c  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
02:20:13.0043 0x145c  iaStorAV - ok
02:20:13.0138 0x145c  [ 7F7A03D03FA18A0DB2DAC37A8D620E7F, B867A6B38EB81B6FE2501441D4CB69A2488A1F13BA558AB2B728A7507AB1BAC3 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
02:20:13.0138 0x145c  IAStorDataMgrSvc - ok
02:20:13.0173 0x145c  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
02:20:13.0179 0x145c  iaStorV - ok
02:20:13.0220 0x145c  [ 23E22B130EFE5A225E279467BE146317, 2302C119FE9C57F3A71DFE504489423B6F7140E2DFF5D501883AD971CB671CB4 ] iBtFltCoex      C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys
02:20:13.0222 0x145c  iBtFltCoex - ok
02:20:13.0224 0x145c  IEEtwCollectorService - ok
02:20:13.0379 0x145c  [ 7A5A61997B5404C8EDDFCC62378164DC, C2BCA8A2AA2DFCCF3489FC7F0F366ABBDC8606CFC6397CD7B17C8CD4A28DD17F ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
02:20:13.0432 0x145c  igfx - ok
02:20:13.0496 0x145c  [ B82255670D270B75D2D2F0F8747D1443, C40E151AC3FBF289456A4AD9E5744B314067ADA03FE729970410931904305F51 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
02:20:13.0510 0x145c  IKEEXT - ok
02:20:13.0540 0x145c  [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
02:20:13.0541 0x145c  intaud_WaveExtensible - ok
02:20:13.0575 0x145c  [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
02:20:13.0580 0x145c  IntcDAud - ok
02:20:13.0610 0x145c  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
02:20:13.0611 0x145c  intelide - ok
02:20:13.0646 0x145c  [ C1A9592EE57C6FF0A0904B9DFD55942D, E6935699A2F8F3778A86EBAA8D3228F33E42B33843AA5ADA5AA395758D61B2D4 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
02:20:13.0646 0x145c  intelpep - ok
02:20:13.0691 0x145c  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
02:20:13.0693 0x145c  intelppm - ok
02:20:13.0731 0x145c  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
02:20:13.0732 0x145c  IpFilterDriver - ok
02:20:13.0782 0x145c  [ DFC4050D58565ADBEE793A8D4AEBDAE6, 89B900408F030CD45753A11D6AE6CBAB87E8B0E3F8401402D2D8713C045BF488 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
02:20:13.0795 0x145c  iphlpsvc - ok
02:20:13.0799 0x145c  [ 9949A3C7590B8C536C05312205079A82, 9276A09D5F910AE8358A96505AB3F66C514870944D58B63B71D5E96567D1E6BB ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
02:20:13.0801 0x145c  IPMIDRV - ok
02:20:13.0805 0x145c  [ E23D32BAF152FBE35F18C6A2AB8EF271, C244E54E472B724765497731ADC0DF6DA9EBA5E7B0723A4409061F5B928851E9 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
02:20:13.0808 0x145c  IPNAT - ok
02:20:13.0845 0x145c  [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
02:20:13.0854 0x145c  iPod Service - ok
02:20:13.0873 0x145c  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
02:20:13.0874 0x145c  IRENUM - ok
02:20:13.0898 0x145c  [ 4D9B9A794F22415B8C3E0CCFBE61BC7A, 4CF01BC95F0AD7DC42AF8A0FCE032DF00610524A98CF52F531E9DE93137E7B87 ] irstrtdv        C:\WINDOWS\System32\drivers\irstrtdv.sys
02:20:13.0899 0x145c  irstrtdv - ok
02:20:13.0916 0x145c  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
02:20:13.0916 0x145c  isapnp - ok
02:20:14.0019 0x145c  [ 034D4BD9DC67C64F3A4C8A049B5173BF, C68AF5A5AD4092AA1C871BD38473AEF84EC3ECF4D06FBEB5F6C09972EF1B8A81 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
02:20:14.0022 0x145c  iScsiPrt - ok
02:20:14.0061 0x145c  [ EE03564B7FAFE2E44EDA33D52E83B4A3, 53C917EEC92B813EB0C86B225E9887C9CDFDD7708AEA71BFAC0A3039E26D7BEB ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
02:20:14.0062 0x145c  iwdbus - ok
02:20:14.0080 0x145c  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
02:20:14.0081 0x145c  kbdclass - ok
02:20:14.0093 0x145c  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
02:20:14.0094 0x145c  kbdhid - ok
02:20:14.0105 0x145c  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
02:20:14.0106 0x145c  kdnic - ok
02:20:14.0118 0x145c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\WINDOWS\system32\lsass.exe
02:20:14.0120 0x145c  KeyIso - ok
02:20:14.0339 0x145c  [ 1C6256096A341051509D36AD724830BE, 025F7E1E979DC8C4794FC7D3581D6BCF6E0F6DC327C6FCB925B6A8EDBE999A68 ] kl1             C:\WINDOWS\system32\DRIVERS\kl1.sys
02:20:14.0435 0x145c  kl1 - ok
02:20:14.0470 0x145c  [ 2248A9F2B7704271C72E306001C7FBE0, FEC8E10F4FAB332E36C1C5801396174B4CE21186431A2A234CE49695C4674ACA ] klelam          C:\WINDOWS\system32\DRIVERS\klelam.sys
02:20:14.0471 0x145c  klelam - ok
02:20:14.0525 0x145c  [ 5F247D87B44E26AED440A063A7A4FDB7, BC2BAD216A9262105CAF0F20BF539B92CB66FD0EB67AB8FAE45B0249E9F59C57 ] KLIF            C:\WINDOWS\system32\DRIVERS\klif.sys
02:20:14.0533 0x145c  KLIF - ok
02:20:14.0577 0x145c  [ 1B5B924D27399F41DECD1CC6D706429F, 501E2BAE9E38A7DD77B1019F2A90B48850087C935FA68ADADDD4A44DA283DAF5 ] KLIM6           C:\WINDOWS\system32\DRIVERS\klim6.sys
02:20:14.0578 0x145c  KLIM6 - ok
02:20:14.0581 0x145c  [ AEEC4E904850525C4D4552AF4A971BA3, C8E5267A5CE244096162118DFE72D2EA494DD34ECAEC74B7EB0DF770761E06C0 ] klkbdflt        C:\WINDOWS\system32\DRIVERS\klkbdflt.sys
02:20:14.0582 0x145c  klkbdflt - ok
02:20:14.0591 0x145c  [ 8849D8F6259D3494E8C5C9482EE40A08, 62C60FD28916407AEF3C4F8B8FF7E5FCDFAE261E772E672E3E06F0D0CA6D6729 ] klmouflt        C:\WINDOWS\system32\DRIVERS\klmouflt.sys
02:20:14.0592 0x145c  klmouflt - ok
02:20:14.0610 0x145c  [ 781EFBB7BDE229C1615892E2A2D98721, 82D017AE1ADE75075F83B62256A9DC14F6D764ADF6E79CF2717854BCA5F5F1C5 ] klwfp           C:\WINDOWS\system32\DRIVERS\klwfp.sys
02:20:14.0611 0x145c  klwfp - ok
02:20:14.0632 0x145c  [ 1FCB657B581CC4DF17FD6571F93602DE, D5D95773D19AA47BA619D149FD6068198E2AA05C219C3936E327B3DFFDE6B10C ] kneps           C:\WINDOWS\system32\DRIVERS\kneps.sys
02:20:14.0634 0x145c  kneps - ok
02:20:14.0662 0x145c  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
02:20:14.0664 0x145c  KSecDD - ok
02:20:14.0711 0x145c  [ 7296EA420134EAC390798B3232D066A4, 1F5D51EEFD389706660DFB4DB4BF3EC570BEC7097CEB5CAE70EFFE35C3255346 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
02:20:14.0714 0x145c  KSecPkg - ok
02:20:14.0734 0x145c  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
02:20:14.0735 0x145c  ksthunk - ok
02:20:14.0781 0x145c  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
02:20:14.0786 0x145c  KtmRm - ok
02:20:14.0831 0x145c  [ 27B58E16CF895AC1F1A97C04814C2239, D4336155331DDBF91952CDC6C446C68FF524F979099BA8D9B3A578758F97B2BE ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
02:20:14.0837 0x145c  LanmanServer - ok
02:20:14.0871 0x145c  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
02:20:14.0876 0x145c  LanmanWorkstation - ok
02:20:14.0908 0x145c  [ 0946D41212A96FE2DD7EC5C7C21676D2, B6CEDA4C06069B7E662AE705E858CA84B77EADF920AE0A7BD1F60F538BDAB2F4 ] lehidmini       C:\WINDOWS\System32\drivers\leath_hid.sys
02:20:14.0909 0x145c  lehidmini - ok
02:20:14.0957 0x145c  [ EE289BD147FDFF95EF1B9BD65D3B974A, EFD9D0F6C73E7D2D52DBE2E2A8D3009BFB6AB24776A100CA528A8365002C6105 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
02:20:14.0964 0x145c  lfsvc - ok
02:20:14.0968 0x145c  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
02:20:14.0969 0x145c  lltdio - ok
02:20:15.0005 0x145c  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
02:20:15.0010 0x145c  lltdsvc - ok
02:20:15.0037 0x145c  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
02:20:15.0038 0x145c  lmhosts - ok
02:20:15.0058 0x145c  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
02:20:15.0060 0x145c  LSI_SAS - ok
02:20:15.0065 0x145c  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
02:20:15.0066 0x145c  LSI_SAS2 - ok
02:20:15.0070 0x145c  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
02:20:15.0071 0x145c  LSI_SAS3 - ok
02:20:15.0095 0x145c  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
02:20:15.0096 0x145c  LSI_SSS - ok
02:20:15.0136 0x145c  [ B6B69FF200F68888A7FAFDF204D00C91, 4C9BA7B8646C74AE1E49F513EF426930C09969F29F1533D84D020B414BB1609B ] LSM             C:\WINDOWS\System32\lsm.dll
02:20:15.0146 0x145c  LSM - ok
02:20:15.0178 0x145c  [ 5EF604B0698F4FA962778285E8C5F1F2, 0465BDAB7EFBE9CC648E7E736B0B8BE152BD2FAB0917F6306675B9039C77F454 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
02:20:15.0180 0x145c  luafv - ok
02:20:15.0202 0x145c  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
02:20:15.0203 0x145c  megasas - ok
02:20:15.0235 0x145c  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
02:20:15.0243 0x145c  megasr - ok
02:20:15.0281 0x145c  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
02:20:15.0282 0x145c  MEIx64 - ok
02:20:15.0317 0x145c  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
02:20:15.0319 0x145c  MMCSS - ok
02:20:15.0322 0x145c  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
02:20:15.0323 0x145c  Modem - ok
02:20:15.0327 0x145c  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
02:20:15.0327 0x145c  monitor - ok
02:20:15.0350 0x145c  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
02:20:15.0351 0x145c  mouclass - ok
02:20:15.0369 0x145c  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
02:20:15.0370 0x145c  mouhid - ok
02:20:15.0389 0x145c  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
02:20:15.0390 0x145c  mountmgr - ok
02:20:15.0435 0x145c  [ 5E0686615A80A6279B2314E13CD23F6E, 659931AB2DD395FAA2E5036D02BC6AAE8A7E4C9FF1A902B1FF9C15E878C89E77 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
02:20:15.0437 0x145c  MozillaMaintenance - ok
02:20:15.0458 0x145c  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
02:20:15.0459 0x145c  mpsdrv - ok
02:20:15.0521 0x145c  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
02:20:15.0533 0x145c  MpsSvc - ok
02:20:15.0538 0x145c  [ 59DCEC7499095DE5AED741358037AE2D, 60C4CEBCAE27C121E9D63BD2BC3E5863A91ABC77616C56C10618273A8F9B6F61 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
02:20:15.0540 0x145c  MRxDAV - ok
02:20:15.0569 0x145c  [ 6129EDB793A4255B1E2FB41773AC9D9A, 3292C64FAB3B83C87790FB35F54D6702987891234AF33FD1D5299C7084795375 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
02:20:15.0574 0x145c  mrxsmb - ok
02:20:15.0583 0x145c  [ 295771B092D4F7FCF2B62F80CCD14320, 53655B5ABA43A6A9114FE545B88F84E52319B905B8393A51BD97678D3F94A178 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
02:20:15.0586 0x145c  mrxsmb10 - ok
02:20:15.0593 0x145c  [ AAF56E4E84D35411B4E446C445732DFE, 7AC41CAA0842AE4DA4EEF976202C58D7923DAA367F0D7E800D432323D5E7DE1A ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
02:20:15.0596 0x145c  mrxsmb20 - ok
02:20:15.0626 0x145c  [ 4E888019078AC363076A5433E89AA4F8, 3DEBDA290230B3E83F956C902C960E39463B7EFE86439199521356762769FD91 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
02:20:15.0628 0x145c  MsBridge - ok
02:20:15.0665 0x145c  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
02:20:15.0668 0x145c  MSDTC - ok
02:20:15.0691 0x145c  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
02:20:15.0692 0x145c  Msfs - ok
02:20:15.0696 0x145c  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
02:20:15.0697 0x145c  msgpiowin32 - ok
02:20:15.0715 0x145c  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
02:20:15.0715 0x145c  mshidkmdf - ok
02:20:15.0718 0x145c  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
02:20:15.0718 0x145c  mshidumdf - ok
02:20:15.0752 0x145c  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
02:20:15.0753 0x145c  msisadrv - ok
02:20:15.0779 0x145c  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
02:20:15.0782 0x145c  MSiSCSI - ok
02:20:15.0784 0x145c  msiserver - ok
02:20:15.0816 0x145c  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
02:20:15.0817 0x145c  MSKSSRV - ok
02:20:15.0821 0x145c  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
02:20:15.0822 0x145c  MsLldp - ok
02:20:15.0825 0x145c  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
02:20:15.0825 0x145c  MSPCLOCK - ok
02:20:15.0842 0x145c  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
02:20:15.0842 0x145c  MSPQM - ok
02:20:15.0876 0x145c  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
02:20:15.0880 0x145c  MsRPC - ok
02:20:15.0907 0x145c  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
02:20:15.0908 0x145c  mssmbios - ok
02:20:15.0911 0x145c  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
02:20:15.0911 0x145c  MSTEE - ok
02:20:15.0927 0x145c  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
02:20:15.0927 0x145c  MTConfig - ok
02:20:15.0931 0x145c  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
02:20:15.0933 0x145c  Mup - ok
02:20:15.0973 0x145c  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
02:20:15.0974 0x145c  mvumis - ok
02:20:16.0008 0x145c  [ 431F065E2A99FC3C670BD20694117C8B, ADE1D6B5EC0C0F078DB5F24FE4E830AC08FA1EDA1C895E7F4873874BCC1F2154 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
02:20:16.0012 0x145c  MyWiFiDHCPDNS - ok
02:20:16.0052 0x145c  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\WINDOWS\system32\qagentRT.dll
02:20:16.0058 0x145c  napagent - ok
02:20:16.0092 0x145c  [ CF8B989D89D6807B887690F2CF24EFD9, 7A3ED124D8D7736F57CD687111C478A206422D117099B2F752B6D933D009BCAC ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
02:20:16.0098 0x145c  NativeWifiP - ok
02:20:16.0128 0x145c  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
02:20:16.0132 0x145c  NcaSvc - ok
02:20:16.0137 0x145c  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
02:20:16.0140 0x145c  NcbService - ok
02:20:16.0164 0x145c  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
02:20:16.0166 0x145c  NcdAutoSetup - ok
02:20:16.0222 0x145c  [ AD9086052A5E5153AF43FE74138A4B27, A511F785F8B29CE7CCC923489C9D03B4722E8FDD9853556D4F0F3CA608CFA956 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
02:20:16.0237 0x145c  NDIS - ok
02:20:16.0241 0x145c  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
02:20:16.0242 0x145c  NdisCap - ok
02:20:16.0246 0x145c  [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37, CCD99962917BBE256F64AE14CCC9FD12433C72B5DB98E0E57CA8F212A11B3C8F ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
02:20:16.0248 0x145c  NdisImPlatform - ok
02:20:16.0271 0x145c  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
02:20:16.0272 0x145c  NdisTapi - ok
02:20:16.0293 0x145c  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
02:20:16.0294 0x145c  Ndisuio - ok
02:20:16.0313 0x145c  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
02:20:16.0314 0x145c  NdisVirtualBus - ok
02:20:16.0357 0x145c  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
02:20:16.0360 0x145c  NdisWan - ok
02:20:16.0366 0x145c  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
02:20:16.0369 0x145c  NdisWanLegacy - ok
02:20:16.0373 0x145c  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
02:20:16.0374 0x145c  NDProxy - ok
02:20:16.0379 0x145c  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
02:20:16.0380 0x145c  Ndu - ok
02:20:16.0421 0x145c  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
02:20:16.0422 0x145c  NetBIOS - ok
02:20:16.0430 0x145c  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
02:20:16.0434 0x145c  NetBT - ok
02:20:16.0459 0x145c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\WINDOWS\system32\lsass.exe
02:20:16.0461 0x145c  Netlogon - ok
02:20:16.0492 0x145c  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\WINDOWS\System32\netman.dll
02:20:16.0496 0x145c  Netman - ok
02:20:16.0550 0x145c  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
02:20:16.0557 0x145c  netprofm - ok
02:20:16.0790 0x145c  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
02:20:16.0792 0x145c  NetTcpPortSharing - ok
02:20:16.0822 0x145c  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\WINDOWS\system32\DRIVERS\netvsc63.sys
02:20:16.0824 0x145c  netvsc - ok
02:20:16.0953 0x145c  [ 75B9B86878CC159FBC40C4F9202ADBE3, 80D9176112BAFB42E6568E723781E5C03BD5472AB382496C1BD784DB9B2FB6E6 ] NETwNe64        C:\WINDOWS\system32\DRIVERS\NETwew00.sys
02:20:16.0995 0x145c  NETwNe64 - ok
02:20:17.0022 0x145c  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
02:20:17.0028 0x145c  NlaSvc - ok
02:20:17.0045 0x145c  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
02:20:17.0046 0x145c  Npfs - ok
02:20:17.0060 0x145c  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
02:20:17.0061 0x145c  npsvctrig - ok
02:20:17.0084 0x145c  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\WINDOWS\system32\nsisvc.dll
02:20:17.0085 0x145c  nsi - ok
02:20:17.0098 0x145c  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
02:20:17.0099 0x145c  nsiproxy - ok
02:20:17.0177 0x145c  [ 4412D565C0278C401575E11072C7DCE3, 82A0E9AA88750900EA0E9983157345456B418745C8BA62FAF339640E759C0418 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
02:20:17.0202 0x145c  Ntfs - ok
02:20:17.0228 0x145c  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
02:20:17.0229 0x145c  Null - ok
02:20:17.0552 0x145c  [ E873E4986FC3BC32EFCAE9B289373BBC, CA5B6CDA14C0CC1EA9D4C78A6375DA33E7B0031F542DDFF0F56C8070850905E5 ] nvlddmkm        C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys
02:20:17.0706 0x145c  nvlddmkm - ok
02:20:17.0751 0x145c  [ 6E8DEC0D636120188F66856D6097E4CD, 2280B35134920B05D383D5D8D58C42CB9A76F82DFFFF9D641A656A14B2B5C6FC ] nvpciflt        C:\WINDOWS\system32\DRIVERS\nvpciflt.sys
02:20:17.0752 0x145c  nvpciflt - ok
02:20:17.0794 0x145c  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
02:20:17.0796 0x145c  nvraid - ok
02:20:17.0802 0x145c  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
02:20:17.0804 0x145c  nvstor - ok
02:20:18.0245 0x145c  [ 449872BF91DF89D85D892AB2D2AD3A14, A42EA81703553F980D813531B3E8B07B84541D372C6138396D076FC75579D9A6 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
02:20:18.0435 0x145c  NvStreamSvc - ok
02:20:18.0491 0x145c  [ 17DE7BC5906A7D80A4F86EF67F21F8DB, 9A653FE56A474C51477A6D5E6F69AB81EB7B9EE52EA09A02B24738B0542F2F1B ] NvStUSB         C:\WINDOWS\System32\drivers\nvstusb.sys
02:20:18.0497 0x145c  NvStUSB - ok
02:20:18.0544 0x145c  [ 9E9E75C74A715B6AD71C2009C8F9F2F8, EFCEDC139DA7B645AF8C72850B94E0380BDE223994E874DBEE0922B0A2B3E28A ] nvsvc           C:\WINDOWS\system32\nvvsvc.exe
02:20:18.0557 0x145c  nvsvc - ok
02:20:18.0846 0x145c  [ C98F28448B8A2488B499657C396EF3A0, EC5D97F5E8E2B9BC675F74CA3F626A1C88A038D708D3119F9089C778BB44E8F5 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
02:20:18.0870 0x145c  nvUpdatusService - ok
02:20:18.0905 0x145c  [ 31B16657118E439B77B0A527F7EA66CB, 8C375D2AFF56125E08587DDDCE6AD31DE6D2DEEDC9AD95ADE95B7499F79A5B56 ] nvvad_WaveExtensible C:\WINDOWS\system32\drivers\nvvad64v.sys
02:20:18.0906 0x145c  nvvad_WaveExtensible - ok
02:20:18.0954 0x145c  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
02:20:18.0956 0x145c  nv_agp - ok
02:20:19.0254 0x145c  [ D02B9C22F789B320CD87A4A9D1C0FC09, EAD880B6697EB1CE90A358F8FC37C5C09D320F63BD750254F92F825E104A038B ] OfficeSvc       C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
02:20:19.0279 0x145c  OfficeSvc - ok
02:20:19.0320 0x145c  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:20:19.0322 0x145c  ose - ok
02:20:19.0371 0x145c  [ 3B510F20806B94E389784ED09DBD2111, EF8896C500B3AA3A811FDE97BC322EF3295E9BD0DE236715D4A4C52CF63727E1 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
02:20:19.0378 0x145c  p2pimsvc - ok
02:20:19.0410 0x145c  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
02:20:19.0417 0x145c  p2psvc - ok
02:20:19.0466 0x145c  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
02:20:19.0467 0x145c  Parport - ok
02:20:19.0471 0x145c  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
02:20:19.0473 0x145c  partmgr - ok
02:20:19.0501 0x145c  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
02:20:19.0508 0x145c  PcaSvc - ok
02:20:19.0562 0x145c  [ C0D3F3BC1C84B4BA746D9847314C1164, 66FDF288ACAE021C5F63BCCC68D7534B4DB737E252AB16DFF746355D8BE7502D ] pci             C:\WINDOWS\system32\drivers\pci.sys
02:20:19.0566 0x145c  pci - ok
02:20:19.0585 0x145c  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
02:20:19.0586 0x145c  pciide - ok
02:20:19.0637 0x145c  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
02:20:19.0638 0x145c  pcmcia - ok
02:20:19.0665 0x145c  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
02:20:19.0666 0x145c  pcw - ok
02:20:19.0709 0x145c  [ E170103E68329E9154A5EC383CD253ED, A9DC1C9B51DD25E474ADE11C0347C04F4B04EABEBAD4FB175AD78A29426B3243 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
02:20:19.0711 0x145c  pdc - ok
02:20:19.0733 0x145c  [ BA50CC0BD19004AAB88BE37338B6FA0D, 34D4720A621CCB4707F2EB929F6F44C317DBC6F055F7F34F3FAC68DFDAA00DEF ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
02:20:19.0741 0x145c  PEAUTH - ok
02:20:20.0151 0x145c  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
02:20:20.0152 0x145c  PerfHost - ok
02:20:20.0239 0x145c  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\WINDOWS\system32\pla.dll
02:20:20.0259 0x145c  pla - ok
02:20:20.0294 0x145c  [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
02:20:20.0296 0x145c  PlugPlay - ok
02:20:20.0325 0x145c  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
02:20:20.0326 0x145c  PNRPAutoReg - ok
02:20:20.0381 0x145c  [ 3B510F20806B94E389784ED09DBD2111, EF8896C500B3AA3A811FDE97BC322EF3295E9BD0DE236715D4A4C52CF63727E1 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
02:20:20.0387 0x145c  PNRPsvc - ok
02:20:20.0436 0x145c  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
02:20:20.0442 0x145c  PolicyAgent - ok
02:20:20.0464 0x145c  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\WINDOWS\system32\umpo.dll
02:20:20.0466 0x145c  Power - ok
02:20:20.0700 0x145c  [ B7DB57A000D46D4DE75BC0C563E58072, 8183EB09DC4D44DFF027CA0AAA8C09921A14F088C1BC427B6ACA42340AAF69E6 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
02:20:20.0743 0x145c  PrintNotify - ok
02:20:20.0802 0x145c  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
02:20:20.0803 0x145c  Processor - ok
02:20:20.0855 0x145c  [ 8513A1E7AE4B9DC82C4B4F432C648A58, C0C629BF79722A12B35BDA6D5EF6FD2D96E013D80D8F17077E9137ED3988B452 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
02:20:20.0859 0x145c  ProfSvc - ok
02:20:20.0882 0x145c  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
02:20:20.0884 0x145c  Psched - ok
02:20:20.0933 0x145c  [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI             C:\WINDOWS\system32\DRIVERS\psi_mf_amd64.sys
02:20:20.0933 0x145c  PSI - ok
02:20:20.0970 0x145c  [ A7B66B0788FB9CA54CE34EAF525DA004, 118E98D9FD28567C470414CD52369C89251D65F0C57AD7D214249AC5FAFE5297 ] qca_shb         C:\WINDOWS\System32\drivers\qca_shb.sys
02:20:20.0971 0x145c  qca_shb - ok
02:20:21.0008 0x145c  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\WINDOWS\system32\qwave.dll
02:20:21.0013 0x145c  QWAVE - ok
02:20:21.0048 0x145c  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
02:20:21.0049 0x145c  QWAVEdrv - ok
02:20:21.0065 0x145c  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
02:20:21.0065 0x145c  RasAcd - ok
02:20:21.0093 0x145c  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
02:20:21.0095 0x145c  RasAuto - ok
02:20:21.0122 0x145c  [ BF3B17016764F20F9D28CF1A8DC210C0, F64B410D444D4A3DFEE356EFC5B758781FA2612771EDCF72DB91D3120385D7DB ] RasMan          C:\WINDOWS\System32\rasmans.dll
02:20:21.0129 0x145c  RasMan - ok
02:20:21.0134 0x145c  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
02:20:21.0135 0x145c  RasPppoe - ok
02:20:21.0170 0x145c  [ B939A2A0F9D6C6C186721E268EB6FA93, 8AF03945428D8F0E9B6DE1C24627336398320C7C78E5F594E0A57AB2DB6E0A24 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
02:20:21.0175 0x145c  rdbss - ok
02:20:21.0180 0x145c  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
02:20:21.0181 0x145c  rdpbus - ok
02:20:21.0187 0x145c  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
02:20:21.0189 0x145c  RDPDR - ok
02:20:21.0195 0x145c  [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
02:20:21.0195 0x145c  RdpVideoMiniport - ok
02:20:21.0240 0x145c  [ 847C6A08912C3515807049C93E526D65, 74AFC58793B43E73614D2F49B19FB360091E208097696D9DF0B0354761E0B30F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
02:20:21.0244 0x145c  rdyboost - ok
02:20:21.0286 0x145c  [ 036746D54347FD2D0385668E2A4064E4, 7C670176176C86D6C3814367A6282A78F4E950F84DDEDA849829236C891F5BB9 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
02:20:21.0298 0x145c  ReFS - ok
02:20:21.0376 0x145c  [ D4F8266D63800FF9ACFAC838005A974C, 4FF1053A6B5365867F58AE521FDD32565C144686CB399C2B606005A507EC206E ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
02:20:21.0378 0x145c  RegSrvc - ok
02:20:21.0424 0x145c  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
02:20:21.0428 0x145c  RemoteAccess - ok
02:20:21.0492 0x145c  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
02:20:21.0495 0x145c  RemoteRegistry - ok
02:20:21.0544 0x145c  [ 02307C86CB24769306B0DFA0C751952E, 637D90161C477995925936E4807B57EA80BE11761B26F5FC1B4B0F3EB52FBA87 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
02:20:21.0546 0x145c  RFCOMM - ok
02:20:21.0702 0x145c  [ 41DDCF1ADD1FB7DE23DCF671740DDBE6, 87ECB5C883CEFF76D126A5B4D92E069C9298FA5B62CC981870F9ECCA13C074F1 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
02:20:21.0705 0x145c  RichVideo - ok
02:20:21.0745 0x145c  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
02:20:21.0747 0x145c  RpcEptMapper - ok
02:20:21.0784 0x145c  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\WINDOWS\system32\locator.exe
02:20:21.0785 0x145c  RpcLocator - ok
02:20:21.0833 0x145c  [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
02:20:21.0844 0x145c  RpcSs - ok
02:20:21.0863 0x145c  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
02:20:21.0864 0x145c  rspndr - ok
02:20:21.0930 0x145c  [ 8EB6DCEB7473C232D8BC9A886E3183AC, D81B089443306AD9D89F59DBC5F9C2F5B6A86112B4AB59316B97EE7D8B97D2FA ] RSUSBVSTOR      C:\WINDOWS\System32\Drivers\RtsUVStor.sys
02:20:21.0935 0x145c  RSUSBVSTOR - ok
02:20:21.0969 0x145c  [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168         C:\WINDOWS\system32\DRIVERS\Rt630x64.sys
02:20:21.0977 0x145c  RTL8168 - ok
02:20:22.0015 0x145c  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
02:20:22.0015 0x145c  s3cap - ok
02:20:22.0040 0x145c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\WINDOWS\system32\lsass.exe
02:20:22.0041 0x145c  SamSs - ok
02:20:22.0078 0x145c  savesenselive - ok
02:20:22.0080 0x145c  savesenselivem - ok
02:20:22.0156 0x145c  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
02:20:22.0158 0x145c  sbp2port - ok
02:20:22.0211 0x145c  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
02:20:22.0214 0x145c  SCardSvr - ok
02:20:22.0219 0x145c  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
02:20:22.0222 0x145c  ScDeviceEnum - ok
02:20:22.0248 0x145c  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
02:20:22.0249 0x145c  scfilter - ok
02:20:22.0306 0x145c  [ 888A30EAB651502352C18745367FD179, 00CD9FA55F3E896D8BA81368DF1E855E2F64B5AC488EB4F9BF2C4E45ED63FD5F ] Schedule        C:\WINDOWS\system32\schedsvc.dll
02:20:22.0322 0x145c  Schedule - ok
02:20:22.0368 0x145c  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
02:20:22.0370 0x145c  SCPolicySvc - ok
02:20:22.0409 0x145c  [ 2F9A3380B8C0380E5608E29C7AA66899, 56D1908437DD3791E54866819E39CC89586C5CD804F47B556416FA8642D88CBB ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
02:20:22.0412 0x145c  sdbus - ok
02:20:22.0447 0x145c  [ 4EAF4DCF9DBD9A56952A58F56D61C005, BCA42FD1553569D3603008CC97D88FD309E87F8A8B1522A4287A0E81CAE6C294 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
02:20:22.0448 0x145c  sdstor - ok
02:20:22.0452 0x145c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
02:20:22.0453 0x145c  secdrv - ok
02:20:22.0470 0x145c  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\WINDOWS\system32\seclogon.dll
02:20:22.0472 0x145c  seclogon - ok
02:20:22.0591 0x145c  [ DA6C0E0B15CD0B135FD385AEABAE3A4C, 1DBED093D4BD1E800828D8E0EB19EDA7FD1E963AABD4F71D61F1AD04F669290F ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
02:20:22.0606 0x145c  Secunia PSI Agent - ok
02:20:22.0671 0x145c  [ 71761EDC432A0E39CF621105884E738E, 935133326B794F6DEAA97B9B6B6295AC6A884C3B73ABCD5662A79CEAD8EEA5EE ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
02:20:22.0679 0x145c  Secunia Update Agent - ok
02:20:22.0712 0x145c  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\WINDOWS\System32\sens.dll
02:20:22.0714 0x145c  SENS - ok
02:20:22.0726 0x145c  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
02:20:22.0730 0x145c  SensrSvc - ok
02:20:22.0768 0x145c  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
02:20:22.0770 0x145c  SerCx - ok
02:20:22.0775 0x145c  [ 53BDBF04ECAF943CBF6359E3BCB2445E, B7CD4341B34BC44B511A167C21BF2EB907EB9F85D2B0A83577B9D632AD76D614 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
02:20:22.0777 0x145c  SerCx2 - ok
02:20:22.0804 0x145c  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
02:20:22.0804 0x145c  Serenum - ok
02:20:22.0822 0x145c  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
02:20:22.0824 0x145c  Serial - ok
02:20:22.0844 0x145c  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
02:20:22.0845 0x145c  sermouse - ok
02:20:22.0872 0x145c  [ 441E6FF1F34D7A942946DB42A15FB519, A16BA505B74C7A2ADD08BD5B50728C2AD55062E0ABABAD7E3EE0EB97F3725523 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
02:20:22.0878 0x145c  SessionEnv - ok
02:20:22.0896 0x145c  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
02:20:22.0896 0x145c  sfloppy - ok
02:20:23.0030 0x145c  [ EB70DAE99D7D4F1279AC13640FC974CC, 229BEF6C412E65577B57D631DA98478778D2CF9E5D3400931B508BCFE52BA36E ] SftService      C:\Program Files (x86)\Dell Backup and Recovery\sftservice.exe
02:20:23.0054 0x145c  SftService - ok
02:20:23.0102 0x145c  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
02:20:23.0108 0x145c  SharedAccess - ok
02:20:23.0147 0x145c  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
02:20:23.0156 0x145c  ShellHWDetection - ok
02:20:23.0179 0x145c  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
02:20:23.0180 0x145c  SiSRaid2 - ok
02:20:23.0184 0x145c  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
02:20:23.0185 0x145c  SiSRaid4 - ok
02:20:23.0218 0x145c  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\WINDOWS\System32\smphost.dll
02:20:23.0220 0x145c  smphost - ok
02:20:23.0255 0x145c  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
02:20:23.0256 0x145c  SNMPTRAP - ok
02:20:23.0355 0x145c  [ 8A2F723010B77C79898836784032BFF7, EE19F160F199BFEC0BA5632C36CFBD0DBC43C118D0E0520C5D174480904B669D ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
02:20:23.0360 0x145c  spaceport - ok
02:20:23.0402 0x145c  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
02:20:23.0404 0x145c  SpbCx - ok
02:20:23.0826 0x145c  [ 0FFE35F0B0CD5A324BBE22F02569AE3B, F4EE803EEFDB4EAEEDB3024C3516F1F9A202C77F4870D6B74356BBDE32B3B560 ] speedfan        C:\WINDOWS\SysWOW64\speedfan.sys
02:20:23.0828 0x145c  speedfan - ok
02:20:23.0865 0x145c  [ FE0CB40F36D3FCDD3A1B312EF72C38D5, 42EA50869752164764DFE8CE7E1C247BE8342A0C15F39158DC808E8A692C460F ] Spooler         C:\WINDOWS\System32\spoolsv.exe
02:20:23.0877 0x145c  Spooler - ok
02:20:24.0091 0x145c  [ E6DEC72A2A23FAA53EB9FEC3C7E29D66, 58BB3B9D50DFFF99E790D5B768FAA387F16385436BA6EB704BE6DB1F63B8E4B2 ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
02:20:24.0173 0x145c  sppsvc - ok
02:20:24.0217 0x145c  [ 2B78788A1485F9B99A578A299DF42C02, A87183A9B13585C9E850437A45237105D39D7F3212ADB079D6AB430B67A59643 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
02:20:24.0223 0x145c  srv - ok
02:20:24.0276 0x145c  [ C1AE59C0B0817236EC083A91C396005A, 26F05ECB44C300DA8F333B115727C31C5C8252C83F37F0AE7DFF89B267599CDF ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
02:20:24.0284 0x145c  srv2 - ok
02:20:24.0294 0x145c  [ 77195C32175FC63D6054EBA5A066D727, 22F5D26809BC9288021620040FC7B7BB76708D434C863B3C0C20F73200C1C6A9 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
02:20:24.0297 0x145c  srvnet - ok
02:20:24.0346 0x145c  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
02:20:24.0350 0x145c  SSDPSRV - ok
02:20:24.0416 0x145c  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
02:20:24.0419 0x145c  SstpSvc - ok
02:20:24.0456 0x145c  [ AAF6F247F1DC370C593B4430974EAD9C, 232D0D62EC83A5537ADB28B5DC01074BA812FE6C70C54F70CD7A5EF1BC19D3E1 ] ssudmdm         C:\WINDOWS\system32\DRIVERS\ssudmdm.sys
02:20:24.0459 0x145c  ssudmdm - ok
02:20:24.0552 0x145c  [ 97F839E8AEC48EE271509BF4BC764C24, 7B9B791E987ADC8991C128CD52CB253F295E41DF502BF8933DF388994E84560D ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
02:20:24.0556 0x145c  STacSV - ok
02:20:24.0605 0x145c  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
02:20:24.0606 0x145c  stexstor - ok
02:20:24.0665 0x145c  [ 7E89F65EB250463EE8665CFE19566FC3, 45849BAFA62E72A97103C5F02962D346D3F79DE9DB07297D1073FF355A506D9C ] STHDA           C:\WINDOWS\system32\DRIVERS\stwrt64.sys
02:20:24.0673 0x145c  STHDA - ok
02:20:24.0736 0x145c  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
02:20:24.0745 0x145c  stisvc - ok
02:20:24.0762 0x145c  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
02:20:24.0764 0x145c  storahci - ok
02:20:24.0791 0x145c  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
02:20:24.0792 0x145c  storflt - ok
02:20:24.0815 0x145c  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
02:20:24.0816 0x145c  stornvme - ok
02:20:24.0843 0x145c  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
02:20:24.0845 0x145c  StorSvc - ok
02:20:24.0870 0x145c  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
02:20:24.0871 0x145c  storvsc - ok
02:20:24.0885 0x145c  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\WINDOWS\system32\svsvc.dll
02:20:24.0886 0x145c  svsvc - ok
02:20:24.0904 0x145c  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
02:20:24.0904 0x145c  swenum - ok
02:20:24.0933 0x145c  [ A5DC2E63F5E5D3C0B843307374998479, B3156296D1750FEAF2354E217735B8D888C50599869233FB1B537167F2CECE0B ] swprv           C:\WINDOWS\System32\swprv.dll
02:20:24.0943 0x145c  swprv - ok
02:20:25.0018 0x145c  [ E45DA7CBBA34510C8B9473AD7D4FFD0B, 89C2AED757D86C276D78D29D94DCBF9C1B6A244A2153EC85CCB2E86C5F078387 ] SysMain         C:\WINDOWS\system32\sysmain.dll
02:20:25.0035 0x145c  SysMain - ok
02:20:25.0062 0x145c  [ 373382005ACB27CB16ED16722FBE946A, A1F86A014A518B3C2EC22A8DD830111E3B2A71D860ECA65A96BC82560802ACF4 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
02:20:25.0067 0x145c  SystemEventsBroker - ok
02:20:25.0094 0x145c  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
02:20:25.0096 0x145c  TabletInputService - ok
02:20:25.0133 0x145c  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
02:20:25.0138 0x145c  TapiSrv - ok
02:20:25.0244 0x145c  [ 6617F44D2432C529B2249A0498B6B40A, E108D3949DE29FE3D3302337725B835BD182CD1CD9424A54829251178D0F49D3 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
02:20:25.0276 0x145c  Tcpip - ok
02:20:25.0326 0x145c  [ 6617F44D2432C529B2249A0498B6B40A, E108D3949DE29FE3D3302337725B835BD182CD1CD9424A54829251178D0F49D3 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
02:20:25.0358 0x145c  TCPIP6 - ok
02:20:25.0393 0x145c  [ 33A7D83EEB15431773A6E186CFAABA21, AC5100A76CA44BFADF4A54FDB09FF5D2FF13B9F8482DC1AE86C8C27005F77B0F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
02:20:25.0394 0x145c  tcpipreg - ok
02:20:25.0421 0x145c  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
02:20:25.0423 0x145c  tdx - ok
02:20:25.0426 0x145c  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
02:20:25.0427 0x145c  terminpt - ok
02:20:25.0468 0x145c  [ 2C77831737491F4D684D315B95C62883, 90A2574A281F19646CFCDA5FDF40063220058290D2D5523AD91B7E709EC36D3D ] TermService     C:\WINDOWS\System32\termsrv.dll
02:20:25.0482 0x145c  TermService - ok
02:20:25.0494 0x145c  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\WINDOWS\system32\themeservice.dll
02:20:25.0496 0x145c  Themes - ok
02:20:25.0535 0x145c  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
02:20:25.0537 0x145c  THREADORDER - ok
02:20:25.0592 0x145c  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
02:20:25.0596 0x145c  TimeBroker - ok
02:20:25.0647 0x145c  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
02:20:25.0649 0x145c  TPM - ok
02:20:25.0663 0x145c  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
02:20:25.0666 0x145c  TrkWks - ok
02:20:25.0718 0x145c  [ DA56FFA46030E6FEB215E3D5DAA65B11, 36B5EED8F9044475000362DBFC8A2A40B889ED46382CCEFB6BA04BE0442F98C2 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
02:20:25.0719 0x145c  TrustedInstaller - ok
02:20:25.0725 0x145c  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
02:20:25.0726 0x145c  TsUsbFlt - ok
02:20:25.0729 0x145c  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
02:20:25.0730 0x145c  TsUsbGD - ok
02:20:25.0735 0x145c  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
02:20:25.0738 0x145c  tunnel - ok
02:20:25.0768 0x145c  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
02:20:25.0769 0x145c  uagp35 - ok
02:20:25.0797 0x145c  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
02:20:25.0799 0x145c  UASPStor - ok
02:20:25.0886 0x145c  [ 5D1B430EA11064C56E7C8F84B90DEB6A, 874D9EE807F16321C4857030F9C18D2B925785FD4BB7ED047AF9535BF3F30D84 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
02:20:25.0889 0x145c  UCX01000 - ok
02:20:25.0908 0x145c  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
02:20:25.0912 0x145c  udfs - ok
02:20:25.0931 0x145c  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
02:20:25.0932 0x145c  UEFI - ok
02:20:25.0960 0x145c  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
02:20:25.0962 0x145c  UI0Detect - ok
02:20:25.0966 0x145c  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
02:20:25.0967 0x145c  uliagpkx - ok
02:20:25.0985 0x145c  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
02:20:25.0986 0x145c  umbus - ok
02:20:26.0002 0x145c  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
02:20:26.0002 0x145c  UmPass - ok
02:20:26.0041 0x145c  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
02:20:26.0046 0x145c  UmRdpService - ok
02:20:26.0076 0x145c  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\WINDOWS\System32\upnphost.dll
02:20:26.0083 0x145c  upnphost - ok
02:20:26.0125 0x145c  [ 433ECDE01A52691FA7ACA51C10C09B70, B896296A3F8EF2AF3AC5F0091B9848156608586F1E10A95D70700BAB51E8062A ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
02:20:26.0127 0x145c  usbccgp - ok
02:20:26.0155 0x145c  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
02:20:26.0156 0x145c  usbcir - ok
02:20:26.0191 0x145c  [ 5477D6E27C7D266EF8C152B9A25ADE5E, FEE81677D284A78A0C0FB60F887A952CFC759AE78B01206D73F59FE33612C519 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
02:20:26.0192 0x145c  usbehci - ok
02:20:26.0271 0x145c  [ DF56C2C04EFA328D7A66B69007130266, 719316EB25A8C7B82C7941D1C5B964CC4EDA4A997732F481526DE7356F6FC0D8 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
02:20:26.0277 0x145c  usbhub - ok
02:20:26.0339 0x145c  [ C0E33820326199CE3CFD3B9F27F81D99, C67F55E7DD6F7FC4A96256A14A805D39C5CE8725FD86675C6C860B3DE8E4DBC3 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
02:20:26.0345 0x145c  USBHUB3 - ok
02:20:26.0349 0x145c  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
02:20:26.0350 0x145c  usbohci - ok
02:20:26.0353 0x145c  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
02:20:26.0354 0x145c  usbprint - ok
02:20:26.0376 0x145c  [ F04D164C4168701A4E7835607722E5F1, 6F743CF2CF73945B4A4B1C4402744BC2FE1624F1346C194493AD2F7110F9EB35 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
02:20:26.0377 0x145c  usbscan - ok
02:20:26.0418 0x145c  [ B1230E9813B5C7E762DF27756AA23917, 985203D267C2BF5FA88FE043785DF3DDFD796CB3CC4007E171AF63F41C413239 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
02:20:26.0420 0x145c  USBSTOR - ok
02:20:26.0437 0x145c  [ BA4FA655E0FC577DB7436FC963932CE4, 3336FDECD4AEC6B316D4C0803E22A12719EBEDD1A9427C0DF5D3B263BE600EE6 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
02:20:26.0438 0x145c  usbuhci - ok
02:20:26.0493 0x145c  [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo        C:\WINDOWS\System32\Drivers\usbvideo.sys
02:20:26.0496 0x145c  usbvideo - ok
02:20:26.0585 0x145c  [ 53AA1CD1740BDE110EB22CD8C05F615F, 46932B0A05823871199EF8425174B1B3A61C3257408D1706877F43E79DD0B7AF ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
02:20:26.0589 0x145c  USBXHCI - ok
02:20:26.0622 0x145c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
02:20:26.0623 0x145c  VaultSvc - ok
02:20:26.0627 0x145c  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
02:20:26.0628 0x145c  vdrvroot - ok
02:20:26.0714 0x145c  [ CFBAD6B48EDFAA0828A52646B7C4C08D, DDC7D607E784CE6FB5BC62E53E6309EB583D74425E6D3FC8F3D3EC705D69C075 ] vds             C:\WINDOWS\System32\vds.exe
02:20:26.0731 0x145c  vds - ok
02:20:26.0763 0x145c  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
02:20:26.0766 0x145c  VerifierExt - ok
02:20:26.0840 0x145c  [ 041D3EF364E624DBB2703A64A5AADF89, 94A52A35AFDD09EBCC4266BD6D44014AAB4BBDFD3F6E8C997A1CA49DFB48F60D ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
02:20:26.0848 0x145c  vhdmp - ok
02:20:26.0911 0x145c  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
02:20:26.0911 0x145c  viaide - ok
02:20:26.0916 0x145c  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
02:20:26.0917 0x145c  vmbus - ok
02:20:26.0938 0x145c  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
02:20:26.0938 0x145c  VMBusHID - ok
02:20:27.0005 0x145c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
02:20:27.0020 0x145c  vmicguestinterface - ok
02:20:27.0038 0x145c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
02:20:27.0045 0x145c  vmicheartbeat - ok
02:20:27.0057 0x145c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
02:20:27.0064 0x145c  vmickvpexchange - ok
02:20:27.0076 0x145c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
02:20:27.0084 0x145c  vmicrdv - ok
02:20:27.0094 0x145c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
02:20:27.0102 0x145c  vmicshutdown - ok
02:20:27.0113 0x145c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
02:20:27.0121 0x145c  vmictimesync - ok
02:20:27.0132 0x145c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
02:20:27.0139 0x145c  vmicvss - ok
02:20:27.0173 0x145c  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
02:20:27.0174 0x145c  volmgr - ok
02:20:27.0203 0x145c  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
02:20:27.0208 0x145c  volmgrx - ok
02:20:27.0231 0x145c  [ 9F9CE33B50611A1C61A46B8911E0B30B, FE4EDF16CE8FC36BB2125FC7D1CF45C65B06A2C31D426635115D879987DF2159 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
02:20:27.0235 0x145c  volsnap - ok
02:20:27.0318 0x145c  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
02:20:27.0320 0x145c  vpci - ok
02:20:27.0381 0x145c  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
02:20:27.0384 0x145c  vsmraid - ok
02:20:27.0426 0x145c  [ D51D7EF1EA5ED2BB01E9D07E6E0533BC, E31118F42B316C9B6C9072D9628AA2801FC2519F1A46C9ED167843CD67183C19 ] VSS             C:\WINDOWS\system32\vssvc.exe
02:20:27.0446 0x145c  VSS - ok
02:20:27.0478 0x145c  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
02:20:27.0482 0x145c  VSTXRAID - ok
02:20:27.0523 0x145c  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
02:20:27.0524 0x145c  vwifibus - ok
02:20:27.0537 0x145c  [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
02:20:27.0539 0x145c  vwififlt - ok
02:20:27.0542 0x145c  [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
02:20:27.0543 0x145c  vwifimp - ok
02:20:27.0596 0x145c  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\WINDOWS\system32\w32time.dll
02:20:27.0602 0x145c  W32Time - ok
02:20:27.0622 0x145c  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
02:20:27.0623 0x145c  WacomPen - ok
02:20:27.0680 0x145c  [ 92BF4B3EBD6F163B94B7A20C65E7B698, 293E6FEFA862690A7B75443D6495144313D759971B98B495A99AAB0D2CF1F350 ] wbengine        C:\WINDOWS\system32\wbengine.exe
02:20:27.0700 0x145c  wbengine - ok
02:20:27.0732 0x145c  [ 58F28103889817C93E5B5AFABC87E709, 547381B10DAC8A3CC16FB5DE6DF2FDA3CCD8F45DF581959FFF6E30875419B011 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
02:20:27.0739 0x145c  WbioSrvc - ok
02:20:27.0764 0x145c  [ 772365894F14652D376B2E5030179DC9, 3D917CED040456EB269BE2B82315CEAE3589FEC016DAE37FC5BC1C3D66DE3140 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
02:20:27.0770 0x145c  Wcmsvc - ok
02:20:27.0793 0x145c  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
02:20:27.0800 0x145c  wcncsvc - ok
02:20:27.0811 0x145c  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
02:20:27.0813 0x145c  WcsPlugInService - ok
02:20:27.0816 0x145c  [ 694B28DE12AD47031FFB4B052662131A, FF3B1B1A69C82BB123073E10D9F1322ED8587F5BAC36F8AB7DAED22C7DD5C7DB ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
02:20:27.0817 0x145c  WdBoot - ok
02:20:27.0881 0x145c  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
02:20:27.0892 0x145c  Wdf01000 - ok
02:20:27.0910 0x145c  [ 0B99529A3BECC3528D865DDECB62503B, 28E6B44BDC52E212D2EB269491D3574B45EE9B19821FE15167D7FA05566C89F4 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
02:20:27.0913 0x145c  WdFilter - ok
02:20:27.0933 0x145c  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
02:20:27.0935 0x145c  WdiServiceHost - ok
02:20:27.0938 0x145c  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
02:20:27.0941 0x145c  WdiSystemHost - ok
02:20:27.0945 0x145c  [ 282E7D46310338FF4A6B7680440EB0DA, 04242798DD82F583154AEA3D775C9BFD574FC471D01CDEB9D070872425094D82 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
02:20:27.0947 0x145c  WdNisDrv - ok
02:20:28.0006 0x145c  WdNisSvc - ok
02:20:28.0036 0x145c  [ 6588A957873326361AB1CAC4E76F8394, BE17880CEDCAE5ED3B983443E3777842646A3E48B661422A717656E11F6DBA94 ] WebClient       C:\WINDOWS\System32\webclnt.dll
02:20:28.0040 0x145c  WebClient - ok
02:20:28.0076 0x145c  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
02:20:28.0080 0x145c  Wecsvc - ok
02:20:28.0084 0x145c  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
02:20:28.0085 0x145c  WEPHOSTSVC - ok
02:20:28.0096 0x145c  [ AA1315B87D9B2E39584165318A59F15D, CD19608BE1F6B7AECF802F8D2DD4FCBDAA29450ED37F7D040DC6453924C7B0FE ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
02:20:28.0099 0x145c  wercplsupport - ok
02:20:28.0103 0x145c  [ 22B4C24AB921BFF7827FFBCA1F4E1BB3, B634F7018097A8E4EECDD9F032DF6A0FB6817FC3DEB92BCE6A0965B5D71D8DFA ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
02:20:28.0106 0x145c  WerSvc - ok
02:20:28.0143 0x145c  [ 2E3E82D7B1076B90F4E228A8EF17B261, 0492F8E0BE09DAD9922E85CCA7BCB1548CB9DC5841F46174A0657FDC59AAC3CE ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
02:20:28.0145 0x145c  WFPLWFS - ok
02:20:28.0172 0x145c  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
02:20:28.0174 0x145c  WiaRpc - ok
02:20:28.0190 0x145c  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
02:20:28.0190 0x145c  WIMMount - ok
02:20:28.0192 0x145c  WinDefend - ok
02:20:28.0245 0x145c  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
02:20:28.0257 0x145c  WinHttpAutoProxySvc - ok
02:20:28.0410 0x145c  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
02:20:28.0413 0x145c  Winmgmt - ok
02:20:28.0520 0x145c  [ 690C3FC5C9DBD6B9AEDF8341EC720E41, 0E4412BB6DEB5761F7A889FD90821FAFD7C6E173F449EAB3A0446BA653D6AD0C ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
02:20:28.0553 0x145c  WinRM - ok
02:20:28.0688 0x145c  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\WINDOWS\system32\DRIVERS\WinUsb.sys
02:20:28.0689 0x145c  WinUsb - ok
02:20:28.0864 0x145c  [ 9378B4E7E4E3EAE2F05823CFFF2C6EF4, 66BE95F975FAF3825DFA22BD4DA8693D37B15B83DBFDD36C7896F7363A127513 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
02:20:28.0883 0x145c  WlanSvc - ok
02:20:28.0938 0x145c  [ C2838466CCC44FAEF2C3D4C1E5971ECB, 4CA5B1632302E59E754CEA5B3CA3977D8CE9DC7B2E8673B450BBF0D646AD7AD8 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
02:20:28.0958 0x145c  wlidsvc - ok
02:20:28.0983 0x145c  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
02:20:28.0983 0x145c  WmiAcpi - ok
02:20:29.0010 0x145c  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
02:20:29.0013 0x145c  wmiApSrv - ok
02:20:29.0037 0x145c  WMPNetworkSvc - ok
02:20:29.0105 0x145c  [ E178371E493BF17EB90FE71ABA8BE643, E6F96C62D6AD1FE65D54F6799ABC32D34DE8C6EBFF8A297CA3142EF096112FCE ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
02:20:29.0126 0x145c  workfolderssvc - ok
02:20:29.0150 0x145c  [ E746BCDBA2E02CF6B8D6B26FB167FBE0, 8875BBE444A33E0C477EF1A3899955501B7E0A9479CA8AA20DD8E6AA0D9A71E6 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
02:20:29.0151 0x145c  wpcfltr - ok
02:20:29.0180 0x145c  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
02:20:29.0182 0x145c  WPCSvc - ok
02:20:29.0221 0x145c  [ D27491CFCE452C154CECFA155AD0EBC8, 1F3F74C253E3B07DE7EFE27C34DD9AF08617C7B03BB44C2902F69BA9DA3F21F2 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
02:20:29.0223 0x145c  WPDBusEnum - ok
02:20:29.0226 0x145c  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
02:20:29.0227 0x145c  WpdUpFltr - ok
02:20:29.0259 0x145c  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
02:20:29.0260 0x145c  ws2ifsl - ok
02:20:29.0294 0x145c  [ 5CFA46C4ACB2FD70572017052378DAE5, F09134C4433A9E174889A16F29EA6628045B21BE4FA85275ACFD24D5DFB0D937 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
02:20:29.0297 0x145c  wscsvc - ok
02:20:29.0299 0x145c  WSearch - ok
02:20:29.0415 0x145c  [ 3671C668670626DAB0D47B44F65F0489, 0B19244AEF6C819A72724B4DD4C7CD565CE825F0306FB35FC71A1AAB7D1D7FE4 ] WSService       C:\WINDOWS\System32\WSService.dll
02:20:29.0458 0x145c  WSService - ok
02:20:29.0583 0x145c  [ 86D0BF4F792053A50D6EE43DFA5837A5, 5705DAB9C5896F10757630439AC8FEAB5754251C6C90E9E8449220A65D1E95D5 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
02:20:29.0628 0x145c  wuauserv - ok
02:20:29.0663 0x145c  [ 2FEAE33E9B2B56104596E1BA444405A9, 0A142F50E06F6224B9CB36B3CE62BE0B36DE8B8DB9F9E05D287DFB884CC7826E ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
02:20:29.0665 0x145c  WudfPf - ok
02:20:29.0672 0x145c  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
02:20:29.0675 0x145c  WUDFRd - ok
02:20:29.0681 0x145c  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFSensorLP    C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
02:20:29.0685 0x145c  WUDFSensorLP - ok
02:20:29.0713 0x145c  [ BB73CBC65AABC4EA0A5C6A1474A0A743, D644B3C6A7202CADDADB3B68FE1B2A7C76B023FE58F667EED4D538C1F4A65D64 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
02:20:29.0715 0x145c  wudfsvc - ok
02:20:29.0723 0x145c  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
02:20:29.0726 0x145c  WUDFWpdFs - ok
02:20:29.0732 0x145c  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
02:20:29.0735 0x145c  WUDFWpdMtp - ok
02:20:29.0770 0x145c  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
02:20:29.0778 0x145c  WwanSvc - ok
02:20:29.0937 0x145c  [ 97D3DCBBF3915782644DB56F5C191B9F, 3207D951F8042ADA9256283E9D64C3427D145DB98172A87733F868215FF62EF4 ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
02:20:29.0971 0x145c  ZeroConfigService - ok
02:20:29.0979 0x145c  ================ Scan global ===============================
02:20:30.0063 0x145c  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll
02:20:30.0100 0x145c  [ 599F1244C60E3D6C28A8DA7FBA7A2C13, 992E5EB5E3ED6172DC986085532224A148A09A4E9A4DED9556F34533EE98E4D0 ] C:\WINDOWS\system32\winsrv.dll
02:20:30.0132 0x145c  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll
02:20:30.0181 0x145c  [ B4B610BBCB002EC478C6FD80CF915697, CE22B87A7C7C0D325CE66FB97E7318B4A41EE0BD14D902A410126A1EBBEAA6FB ] C:\WINDOWS\system32\services.exe
02:20:30.0187 0x145c  [ Global ] - ok
02:20:30.0188 0x145c  ================ Scan MBR ==================================
02:20:30.0211 0x145c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
02:20:30.0215 0x145c  \Device\Harddisk0\DR0 - ok
02:20:30.0215 0x145c  ================ Scan VBR ==================================
02:20:30.0218 0x145c  [ E710E36E2FEABA0D990EA7764F82A5F0 ] \Device\Harddisk0\DR0\Partition1
02:20:30.0219 0x145c  \Device\Harddisk0\DR0\Partition1 - ok
02:20:30.0229 0x145c  [ 32F54B150030F9FF0F35BCB80AE1EAE1 ] \Device\Harddisk0\DR0\Partition2
02:20:30.0230 0x145c  \Device\Harddisk0\DR0\Partition2 - ok
02:20:30.0241 0x145c  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
02:20:30.0241 0x145c  \Device\Harddisk0\DR0\Partition3 - ok
02:20:30.0251 0x145c  [ 0EC569069CC10C92D83C4F3C485F6233 ] \Device\Harddisk0\DR0\Partition4
02:20:30.0253 0x145c  \Device\Harddisk0\DR0\Partition4 - ok
02:20:30.0290 0x145c  [ 7CF6C2BEEA882F14F94B5E341812F1A8 ] \Device\Harddisk0\DR0\Partition5
02:20:30.0291 0x145c  \Device\Harddisk0\DR0\Partition5 - ok
02:20:30.0307 0x145c  [ 92FACEC7CDFE327899AA29670BA4FBDF ] \Device\Harddisk0\DR0\Partition6
02:20:30.0308 0x145c  \Device\Harddisk0\DR0\Partition6 - ok
02:20:30.0308 0x145c  Waiting for KSN requests completion. In queue: 128
02:20:31.0309 0x145c  Waiting for KSN requests completion. In queue: 128
02:20:32.0309 0x145c  Waiting for KSN requests completion. In queue: 128
02:20:33.0317 0x145c  AV detected via SS2: Kaspersky PURE 3.0, C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\wmiav.exe ( 13.0.2.558 ), 0x41000 ( enabled : updated )
02:20:33.0317 0x145c  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.3.9600.16384 ), 0x60100 ( disabled : updated )
02:20:33.0318 0x145c  FW detected via SS2: Kaspersky PURE 3.0, C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\wmifw.exe ( 13.0.2.558 ), 0x41010 ( enabled )
02:20:35.0755 0x145c  ============================================================
02:20:35.0755 0x145c  Scan finished
02:20:35.0755 0x145c  ============================================================
02:20:35.0761 0x0ed0  Detected object count: 0
02:20:35.0761 0x0ed0  Actual detected object count: 0


#7 ibapoet

ibapoet
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:35 PM

Posted 27 November 2013 - 02:55 AM

Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8.1 x64
Ran by Errol on Wed 11/27/2013 at  2:48:09.88
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\crossrider
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\dealplylive
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\Wow6432Node\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iminent_rasapi32
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Tracing\iminent_rasmancs
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\searchthewebarp
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\searchthewebarp
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\iminent_rasapi32
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Tracing\iminent_rasmancs
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0f21b1e5-5afc-43c9-9c66-515046e92ec2}
Failed to delete: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{0f21b1e5-5afc-43c9-9c66-515046e92ec2}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Users\Errol\appdata\local\slick savings"
Failed to delete: [Folder] "C:\Program Files (x86)\free youtube downloader"
Failed to delete: [Folder] "C:\Program Files (x86)\mypc backup"
Successfully deleted: [Folder] "C:\Users\Errol\AppData\Roaming\microsoft\windows\start menu\programs\mypc backup"
Successfully deleted: [Folder] "C:\Users\Errol\AppData\Roaming\microsoft\windows\start menu\programs\torntv.com"
Successfully deleted: [Folder] "C:\Users\Errol\documents\optimizer pro"
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 11/27/2013 at  2:51:09.30
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:35 PM

Posted 27 November 2013 - 02:19 PM

Hi, either you did not run ADWCleaner or did not post the log.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 ibapoet

ibapoet
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:35 PM

Posted 27 November 2013 - 06:08 PM

actually its not running i will try it again



#10 ibapoet

ibapoet
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:35 PM

Posted 27 November 2013 - 06:34 PM

# AdwCleaner v3.013 - Report created 27/11/2013 at 18:27:08
# Updated 24/11/2013 by Xplode
# Operating System : Windows 8.1  (64 bits)
# Username : Errol - ERROLTOLBERT
# Running from : C:\Users\Errol\Downloads\adwcleaner (2).exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\Program Files (x86)\MyPC Backup
Folder Deleted : C:\Program Files (x86)\Vuze
File Deleted : C:\Users\Errol\Desktop\MyPC Backup.lnk
File Deleted : C:\Users\Errol\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_igdhbblpcellaljokkpfhcjlagemhgjl_0.localstorage
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\hbcennhacfaagdopikcegfcobcadeocj
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\pfndaklgolladniicklehhancnlgocpp
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Iminent_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\mypc backup
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{4AA46D49-459F-4358-B4D1-169048547C23}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\Software\DealPlyLive
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MyPC Backup
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.16384
 
 
-\\ Mozilla Firefox v25.0.1 (en-US)
 
[ File : C:\Users\Errol\AppData\Roaming\Mozilla\Firefox\Profiles\8v6t0c3h.default\prefs.js ]
 
Line Deleted : user_pref("iminent.enabledAds", "false");
 
-\\ Google Chrome v31.0.1650.57
 
[ File : C:\Users\Errol\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [2377 octets] - [16/10/2013 19:07:06]
AdwCleaner[R1].txt - [6930 octets] - [27/11/2013 02:27:07]
AdwCleaner[R2].txt - [6690 octets] - [27/11/2013 18:15:17]
AdwCleaner[S0].txt - [2406 octets] - [16/10/2013 19:08:37]
AdwCleaner[S1].txt - [6565 octets] - [27/11/2013 18:27:08]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [6625 octets] ##########


#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:35 PM

Posted 27 November 2013 - 09:19 PM

How is it running now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 ibapoet

ibapoet
  • Topic Starter

  • Members
  • 38 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:35 PM

Posted 30 November 2013 - 01:47 AM

i do not see any ads. Startup seems to be running a lil slower but it seems like the infection is gone



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,490 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:35 PM

Posted 01 December 2013 - 08:01 PM

That slowness should go away as you use the PC and repopulate your usual haunts.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users