Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Freezing


  • Please log in to reply
11 replies to this topic

#1 flexasourous

flexasourous

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 12 December 2013 - 12:23 PM

I play Online games and often my whole computer will crash/ or go black. if its all black the computer is on, the game is still running,i can hear it, but the background music that i play via spotify ends. I have contacted the service department of my respective games and they said that they are fixing there end but I'm afraid that it might be my computer, which is more than well qualified to run the game at the highest settings, even though i have them about medium for more FPS. This might be a virus or unwanted program. Can someone help me determine the problem and then fix it if possible?



BC AdBot (Login to Remove)

 


#2 flexasourous

flexasourous
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 12 December 2013 - 12:25 PM

I also have issues with windows 8 auto updating in the middle of everything and restarting. I have run anti-virus and defragment as well.



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:58 PM

Posted 12 December 2013 - 12:28 PM

Hello for now I moved ths to the Am I Infected forum as there are no ogs posted.
Lets scan for malware.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 flexasourous

flexasourous
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 12 December 2013 - 12:38 PM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Joel (administrator) on 12-12-2013 at 12:33:47
Running from "C:\Users\Joel\Downloads"
Microsoft Windows 8  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Realtek PCIe GBE Family Controller = Ethernet (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : JoelMcClurg
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
 
Wireless LAN adapter Local Area Connection* 12:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter #2
   Physical Address. . . . . . . . . : 20-16-D8-2F-E3-9F
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wi-Fi 2:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : 802.11n Wireless LAN Card
   Physical Address. . . . . . . . . : 20-16-D8-2F-E3-9D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::44b9:64dd:e555:f16a%16(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.0.6(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, December 12, 2013 12:12:22 PM
   Lease Expires . . . . . . . . . . : Thursday, December 12, 2013 1:12:27 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 522196696
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-46-5A-8B-08-60-6E-45-9D-6A
   DNS Servers . . . . . . . . . . . : 65.32.5.111
                                       65.32.5.112
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 08-60-6E-45-9D-6A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.{BC91A57D-0C4C-427A-9F89-48CA714107DA}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 13:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:3c19:1826:cda6:da86(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::3c19:1826:cda6:da86%13(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  65.32.5.111
 
Name:    google.com
Addresses:  2607:f8b0:4002:c06::64
 74.125.21.139
 74.125.21.100
 74.125.21.101
 74.125.21.102
 74.125.21.113
 74.125.21.138
 
 
Pinging google.com [173.194.37.73] with 32 bytes of data:
Reply from 173.194.37.73: bytes=32 time=136ms TTL=52
Reply from 173.194.37.73: bytes=32 time=66ms TTL=52
 
Ping statistics for 173.194.37.73:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 66ms, Maximum = 136ms, Average = 101ms
Server:  dns-redir-lb-01.tampabay.rr.com
Address:  65.32.5.111
 
Name:    yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=166ms TTL=45
Reply from 98.138.253.109: bytes=32 time=109ms TTL=45
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 109ms, Maximum = 166ms, Average = 137ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 17...20 16 d8 2f e3 9f ......Microsoft Wi-Fi Direct Virtual Adapter #2
 16...20 16 d8 2f e3 9d ......802.11n Wireless LAN Card
 12...08 60 6e 45 9d 6a ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.6     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link       192.168.0.6    281
      192.168.0.6  255.255.255.255         On-link       192.168.0.6    281
    192.168.0.255  255.255.255.255         On-link       192.168.0.6    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.0.6    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.0.6    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13    306 ::/0                     On-link
  1    306 ::1/128                  On-link
 13    306 2001::/32                On-link
 13    306 2001:0:9d38:6abd:3c19:1826:cda6:da86/128
                                    On-link
 16    281 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::3c19:1826:cda6:da86/128
                                    On-link
 16    281 fe80::44b9:64dd:e555:f16a/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 16    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/12/2013 00:16:34 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.
 
 
Operation:
   Gathering Writer Data
 
Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {76ac864b-acb5-43c8-ade6-eab2abbb84f8}
 
Error: (12/12/2013 00:16:33 PM) (Source: Application Error) (User: )
Description: Faulting application name: delegate_execute.exe, version: 31.0.1650.63, time stamp: 0x529e8449
Faulting module name: delegate_execute.exe, version: 31.0.1650.63, time stamp: 0x529e8449
Exception code: 0xc0000005
Fault offset: 0x0002a80a
Faulting process id: 0x9c0
Faulting application start time: 0xdelegate_execute.exe0
Faulting application path: delegate_execute.exe1
Faulting module path: delegate_execute.exe2
Report Id: delegate_execute.exe3
Faulting package full name: delegate_execute.exe4
Faulting package-relative application ID: delegate_execute.exe5
 
Error: (12/12/2013 00:13:59 PM) (Source: Perflib) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8
 
Error: (12/12/2013 00:12:29 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]
 
Error: (12/12/2013 00:12:27 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]
 
Error: (12/12/2013 00:08:24 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]
 
Error: (12/12/2013 00:08:22 PM) (Source: NvStreamSvc) (User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]
 
Error: (12/11/2013 01:08:36 PM) (Source: Application Error) (User: )
Description: Faulting application name: wwahost.exe, version: 6.2.9200.16420, time stamp: 0x505a90d6
Faulting module name: ntdll.dll, version: 6.2.9200.16578, time stamp: 0x515fac6e
Exception code: 0xc0000374
Fault offset: 0x000daa3c
Faulting process id: 0x398
Faulting application start time: 0xwwahost.exe0
Faulting application path: wwahost.exe1
Faulting module path: wwahost.exe2
Report Id: wwahost.exe3
Faulting package full name: wwahost.exe4
Faulting package-relative application ID: wwahost.exe5
 
Error: (12/10/2013 02:33:06 PM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.2.9200.16628, time stamp: 0x51a94434
Faulting module name: McPvNs.dll_unloaded, version: 0.0.0.0, time stamp: 0x522de439
Exception code: 0xc0000005
Fault offset: 0x000007ff6dac4050
Faulting process id: 0x22e0
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3
Faulting package full name: Explorer.EXE4
Faulting package-relative application ID: Explorer.EXE5
 
Error: (12/10/2013 00:41:46 PM) (Source: Perflib) (User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll8
 
 
System errors:
=============
Error: (12/12/2013 00:28:14 PM) (Source: DCOM) (User: JOELMCCLURG)
Description: 1053mcpltsvcUnavailable{20966775-18A4-4299-B8E3-772C336B52A7}
 
Error: (12/12/2013 00:28:14 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Platform Services service failed to start due to the following error: 
%%1053
 
Error: (12/12/2013 00:28:14 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee Platform Services service to connect.
 
Error: (12/12/2013 00:28:14 PM) (Source: DCOM) (User: JOELMCCLURG)
Description: 1053mcpltsvcUnavailable{20966775-18A4-4299-B8E3-772C336B52A7}
 
Error: (12/12/2013 00:28:14 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Platform Services service failed to start due to the following error: 
%%1053
 
Error: (12/12/2013 00:28:14 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the McAfee Platform Services service to connect.
 
Error: (12/12/2013 00:10:14 PM) (Source: HTTP) (User: )
Description: 
 
Error: (12/12/2013 00:08:09 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 11:45:53 AM on ?12/?12/?2013 was unexpected.
 
Error: (12/10/2013 02:32:54 PM) (Source: DCOM) (User: JOELMCCLURG)
Description: {209500FC-6B45-4693-8871-6296C4843751}
 
Error: (12/08/2013 05:41:51 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 5:35:16 PM on ?12/?8/?2013 was unexpected.
 
 
Microsoft Office Sessions:
=========================
Error: (12/12/2013 00:16:34 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.
 
 
Operation:
   Gathering Writer Data
 
Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {76ac864b-acb5-43c8-ade6-eab2abbb84f8}
 
Error: (12/12/2013 00:16:33 PM) (Source: Application Error)(User: )
Description: delegate_execute.exe31.0.1650.63529e8449delegate_execute.exe31.0.1650.63529e8449c00000050002a80a9c001cef75de5c994d3C:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\delegate_execute.exeC:\Program Files (x86)\Google\Chrome\Application\31.0.1650.63\delegate_execute.exe2595c021-6351-11e3-bee4-08606e459d6a
 
Error: (12/12/2013 00:13:59 PM) (Source: Perflib)(User: )
Description: BITSC:\Windows\System32\bitsperf.dll8
 
Error: (12/12/2013 00:12:29 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]
 
Error: (12/12/2013 00:12:27 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]
 
Error: (12/12/2013 00:08:24 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcUnregistering VAD endpoint [0]
 
Error: (12/12/2013 00:08:22 PM) (Source: NvStreamSvc)(User: )
Description: NvStreamSvcNvVAD endpoint registered successfully [0]
 
Error: (12/11/2013 01:08:36 PM) (Source: Application Error)(User: )
Description: wwahost.exe6.2.9200.16420505a90d6ntdll.dll6.2.9200.16578515fac6ec0000374000daa3c39801cef69bb6f755d7C:\Windows\syswow64\wwahost.exeC:\Windows\SYSTEM32\ntdll.dll40cb3678-628f-11e3-bee2-08606e459d6aMicrosoft.SkypeApp_1.9.0.2016_x86__kzf8qxf38zg5cApp
 
Error: (12/10/2013 02:33:06 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.2.9200.1662851a94434McPvNs.dll_unloaded0.0.0.0522de439c0000005000007ff6dac405022e001cef5c687a87ed3C:\Windows\Explorer.EXEMcPvNs.dlle412da26-61d1-11e3-bee2-08606e459d6a
 
Error: (12/10/2013 00:41:46 PM) (Source: Perflib)(User: )
Description: WmiApRplC:\Windows\system32\wbem\wmiaprpl.dll8
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-07-08 22:57:29.533
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-01-16 00:18:26.005
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\WWAHost.exe) attempted to load \Device\HarddiskVolume4\Program Files\WindowsApps\Microsoft.BingWeather_1.7.0.26_x64__8wekyb3d8bbwe\AppEx.Common.RichBrowse.winmd with signing level Authenticode while the system requires signing level 6 or better to load.
 
  Date: 2013-01-15 12:28:44.939
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume4\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4406.1205_x64__8wekyb3d8bbwe\LiveComm.exe with signing level Authenticode while the system requires signing level 6 or better to load.
 
 
=========================== Installed Programs ============================
 
8GadgetPack (Version: 7.0.0)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
AI Suite II (Version: 2.00.01)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
ASUS Easy Update (Version: 2.00.28)
ASUS Music Maker (Version: 18.0.3.3)
ASUS MX Suite (Version: 1.13.0.121)
ASUS Video easy (Version: 3.0.1.42)
ASUSDVD (Version: 10.0.4126.52)
Battle.net
Bonjour (Version: 3.0.0.10)
BRINK
Call of Duty: Ghosts
Call of Duty: Ghosts - Multiplayer
CameraHelperMsi (Version: 13.51.815.0)
Curse Client (Version: 5.1.1.792)
D3DX10 (Version: 15.4.2368.0902)
Diablo III
Dota 2 Test
eManual (Version: 1.00.00)
erLT (Version: 1.20.138.34)
Facebook Video Calling 1.2.0.287 (Version: 1.2.287)
Fallout: New Vegas
Firebird SQL Server - MAGIX Edition (Version: 2.1.31.0)
Galería de fotos (Version: 16.4.3503.0728)
Galerie de photos (Version: 16.4.3503.0728)
Google Chrome (Version: 31.0.1650.63)
Google Earth Plug-in (Version: 7.1.2.2041)
Google Update Helper (Version: 1.3.22.3)
Happy Cloud Client (Version: 3.41)
Hearthstone
Hi-Rez Studios Authenticate and Update Service (Version: 3.0.0.0)
Hunted: The Demon's Forge
iCloud (Version: 3.0.2.163)
Intel® Management Engine Components (Version: 8.1.0.1252)
Intel® Trusted Connect Service Client (Version: 1.24.388.1)
iTunes (Version: 11.1.3.8)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
League of Legends (Version: 1.3)
Logitech Webcam Software (Version: 2.80)
LWS Facebook (Version: 13.50.854.0)
LWS Gallery (Version: 13.51.827.0)
LWS Help_main (Version: 13.51.828.0)
LWS Launcher (Version: 13.51.828.0)
LWS Motion Detection (Version: 13.51.815.0)
LWS Pictures And Video (Version: 13.51.815.0)
LWS Twitter (Version: 13.30.1346.0)
LWS Webcam Software (Version: 13.51.815.0)
LWS WLM Plugin (Version: 1.30.1201.0)
LWS YouTube Plugin (Version: 13.31.1038.0)
Magicka
McAfee All Access – Total Protection (Version: 12.8.903)
McAfee Online Backup (Version: 1.16.4.0)
McAfee SafeKey(uninstall only)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 365 Home Premium - en-us (Version: 15.0.4454.1511)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SkyDrive (Version: 17.0.2015.0811)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (Version: 11.0.60610.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (Version: 11.0.60610.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Movie Maker (Version: 16.4.3503.0728)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1108.0727)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Mumble 1.2.3 (Version: 1.2.3)
Nero 12 Essentials OEM.a01 (Version: 12.5.00400)
Nero ControlCenter (Version: 11.0.15200)
Nero ControlCenter Help (CHM) (Version: 12.0.0003)
Nero Core Components (Version: 11.0.17800)
Nero Express (Version: 12.0.19000)
Nero Express Help (CHM) (Version: 12.0.1000)
Nero Launcher (Version: 12.2.2000)
Nero Update (Version: 11.0.11800.31.0)
NVIDIA 3D Vision Controller Driver 320.49 (Version: 320.49)
NVIDIA 3D Vision Driver 320.49 (Version: 320.49)
NVIDIA Control Panel 320.49 (Version: 320.49)
NVIDIA GeForce Experience 1.6 (Version: 1.6)
NVIDIA Graphics Driver 320.49 (Version: 320.49)
NVIDIA HD Audio Driver 1.3.24.2 (Version: 1.3.24.2)
NVIDIA Install Application (Version: 2.1002.131.854)
NVIDIA PhysX (Version: 9.13.0604)
NVIDIA PhysX System Software 9.13.0604 (Version: 9.13.0604)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.2049)
NVIDIA Update 7.2.17 (Version: 7.2.17)
NVIDIA Update Components (Version: 7.2.17)
NVIDIA Virtual Audio 1.2.1 (Version: 1.2.1)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4454.1511)
Office 15 Click-to-Run Licensing Component (Version: 15.0.4454.1511)
Office 15 Click-to-Run Localization Component (Version: 15.0.4454.1511)
Origin (Version: 9.3.11.2762)
osu! (Version: 0.0.0.0)
Pando Media Booster (Version: 2.6.0.8)
Photo Common (Version: 16.4.3503.0728)
Photo Gallery (Version: 16.4.3503.0728)
Prerequisite installer (Version: 12.0.0002)
QuickTime (Version: 7.74.80.86)
Ralink RT2860 Wireless LAN Card (Version: 1.2.0.40)
Realtek Ethernet Controller Driver (Version: 8.2.612.2012)
Realtek High Definition Audio Driver (Version: 6.0.1.6657)
RuneScape Launcher 1.2.2 (Version: 1.2.2)
Shared C Run-time for x64 (Version: 10.0.0)
SHIELD Streaming (Version: 1.05.19)
Smite (Version: 0.1.1850.0)
Spotify (Version: 0.9.6.81.gd359a796)
StarCraft II
Steam (Version: 1.0.0.0)
Team Fortress 2
The Elder Scrolls V: Skyrim
The Lord of the Rings Online
TI-Nspire™ Student Software (Version: 3.2.0.1219)
TweetDeck (Version: 3.2.4)
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
VLC media player 2.1.0 (Version: 2.1.0)
Why ASUS PC (Version: 1.00.02)
Windows Live (Version: 16.4.3503.0728)
Windows Live Communications Platform (Version: 16.4.3503.0728)
Windows Live Essentials (Version: 16.4.3503.0728)
Windows Live Installer (Version: 16.4.3503.0728)
Windows Live Photo Common (Version: 16.4.3503.0728)
Windows Live PIMT Platform (Version: 16.4.3503.0728)
Windows Live SOXE (Version: 16.4.3503.0728)
Windows Live SOXE Definitions (Version: 16.4.3503.0728)
Windows Live UX Platform (Version: 16.4.3503.0728)
Windows Live UX Platform Language Pack (Version: 16.4.3503.0728)
WinPcap 4.1.2 (Version: 4.1.0.2001)
World of Warcraft
 
========================= Memory info: ===================================
 
Percentage of memory in use: 42%
Total physical RAM: 8145.57 MB
Available physical RAM: 4693.71 MB
Total Pagefile: 9361.57 MB
Available Pagefile: 5439.25 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.14 MB
 
========================= Partitions: =====================================
 
1 Drive c: (Windows) (Fixed) (Total:918.35 GB) (Free:652.1 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\JOELMCCLURG
 
Administrator            Guest                    Joel                     
UpdatusUser              
 
 
**** End of log ****


#5 flexasourous

flexasourous
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 12 December 2013 - 12:39 PM

12:36:27.0255 0x130c  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
12:36:27.0255 0x130c  UEFI system
12:36:32.0722 0x130c  ============================================================
12:36:32.0722 0x130c  Current date / time: 2013/12/12 12:36:32.0722
12:36:32.0722 0x130c  SystemInfo:
12:36:32.0722 0x130c  
12:36:32.0722 0x130c  OS Version: 6.2.9200 ServicePack: 0.0
12:36:32.0722 0x130c  Product type: Workstation
12:36:32.0722 0x130c  ComputerName: JOELMCCLURG
12:36:32.0722 0x130c  UserName: Joel
12:36:32.0722 0x130c  Windows directory: C:\Windows
12:36:32.0722 0x130c  System windows directory: C:\Windows
12:36:32.0722 0x130c  Running under WOW64
12:36:32.0722 0x130c  Processor architecture: Intel x64
12:36:32.0722 0x130c  Number of processors: 8
12:36:32.0722 0x130c  Page size: 0x1000
12:36:32.0722 0x130c  Boot type: Normal boot
12:36:32.0722 0x130c  ============================================================
12:36:34.0776 0x130c  KLMD registered as C:\Windows\system32\drivers\72238122.sys
12:36:34.0890 0x130c  System UUID: {DF420B45-E7F4-2E98-A40B-DF9D7A208CE2}
12:36:36.0030 0x130c  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:36:36.0051 0x130c  ============================================================
12:36:36.0051 0x130c  \Device\Harddisk0\DR0:
12:36:36.0051 0x130c  GPT partitions:
12:36:36.0052 0x130c  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {2B94D000-7FC2-4F6F-800E-A46655797963}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x190000
12:36:36.0052 0x130c  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {B0EB4C7D-9850-4E94-B930-D18745B22952}, Name: EFI system partition, StartLBA 0x190800, BlocksNum 0x82000
12:36:36.0052 0x130c  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {50336F90-F21B-427E-AEA1-7EAD21989E74}, Name: Microsoft reserved partition, StartLBA 0x212800, BlocksNum 0x40000
12:36:36.0052 0x130c  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {7CFD3728-9F02-42D1-A7C5-BF08EA300D72}, Name: Basic data partition, StartLBA 0x252800, BlocksNum 0x72CB4000
12:36:36.0052 0x130c  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {F74B634D-AE24-4799-AD2C-7F98572E4350}, Name: Basic data partition, StartLBA 0x72F06800, BlocksNum 0x1800000
12:36:36.0052 0x130c  MBR partitions:
12:36:36.0052 0x130c  ============================================================
12:36:36.0103 0x130c  C: <-> \Device\Harddisk0\DR0\Partition4
12:36:36.0103 0x130c  ============================================================
12:36:36.0103 0x130c  Initialize success
12:36:36.0103 0x130c  ============================================================
12:36:41.0669 0x21c0  ============================================================
12:36:41.0669 0x21c0  Scan started
12:36:41.0669 0x21c0  Mode: Manual; 
12:36:41.0669 0x21c0  ============================================================
12:36:41.0669 0x21c0  KSN ping started
12:36:45.0183 0x21c0  KSN ping finished: true
12:36:46.0646 0x21c0  ================ Scan system memory ========================
12:36:46.0646 0x21c0  System memory - ok
12:36:46.0647 0x21c0  ================ Scan services =============================
12:36:48.0441 0x21c0  [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
12:36:53.0460 0x21c0  1394ohci - ok
12:36:56.0289 0x21c0  [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware           C:\Windows\system32\drivers\3ware.sys
12:36:59.0408 0x21c0  3ware - ok
12:36:59.0605 0x21c0  [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:37:00.0398 0x21c0  ACPI - ok
12:37:00.0406 0x21c0  [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
12:37:05.0920 0x21c0  acpiex - ok
12:37:05.0941 0x21c0  [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
12:37:08.0433 0x21c0  acpipagr - ok
12:37:08.0445 0x21c0  [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
12:37:11.0697 0x21c0  AcpiPmi - ok
12:37:11.0719 0x21c0  [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
12:37:13.0615 0x21c0  acpitime - ok
12:37:15.0576 0x21c0  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:37:15.0591 0x21c0  AdobeFlashPlayerUpdateSvc - ok
12:37:15.0639 0x21c0  [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:37:15.0658 0x21c0  adp94xx - ok
12:37:15.0678 0x21c0  [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:37:15.0694 0x21c0  adpahci - ok
12:37:15.0700 0x21c0  [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:37:15.0712 0x21c0  adpu320 - ok
12:37:15.0884 0x21c0  [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:37:15.0919 0x21c0  AeLookupSvc - ok
12:37:15.0981 0x21c0  [ 7C0E0EDF18D6CC565D7BFBB451709FA5, 47C21CD9D87B5C1B5EB14F6166B5E3349B1A6F10501E63CCED8D52A9FE22765D ] AFD             C:\Windows\system32\drivers\afd.sys
12:37:15.0990 0x21c0  AFD - ok
12:37:16.0003 0x21c0  [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:37:16.0015 0x21c0  agp440 - ok
12:37:16.0057 0x21c0  [ FF5221C2E5D5CC82F93EB7C99DC2852F, FFA8522782A633444087029F8E52D549575C96FAA06E4899555DE92ACB79B913 ] AiCharger       C:\Windows\syswow64\drivers\AiCharger.sys
12:37:16.0057 0x21c0  AiCharger - ok
12:37:16.0080 0x21c0  [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG             C:\Windows\System32\alg.exe
12:37:16.0173 0x21c0  ALG - ok
12:37:16.0199 0x21c0  [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\Windows\system32\AUInstallAgent.dll
12:37:16.0212 0x21c0  AllUserInstallAgent - ok
12:37:16.0228 0x21c0  [ 5A81054B824004B1ECC04F0034A1CDF9, 73A1986A4B346C425157216EBF16CC90EFFC642EDF6109E6364CF0552E3388FD ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
12:37:16.0326 0x21c0  AmdK8 - ok
12:37:16.0429 0x21c0  [ B849D453E644FAB9BC8EF6DC8CA9C4C6, B803CDA478D3385937C44CBB05A0E65ABACEFEBA682975787C44E2904FB89D2D ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
12:37:16.0503 0x21c0  AmdPPM - ok
12:37:16.0515 0x21c0  [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:37:16.0526 0x21c0  amdsata - ok
12:37:16.0534 0x21c0  [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
12:37:16.0548 0x21c0  amdsbs - ok
12:37:16.0556 0x21c0  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:37:16.0566 0x21c0  amdxata - ok
12:37:16.0580 0x21c0  [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID           C:\Windows\system32\drivers\appid.sys
12:37:16.0606 0x21c0  AppID - ok
12:37:16.0696 0x21c0  [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:37:16.0760 0x21c0  AppIDSvc - ok
12:37:16.0788 0x21c0  [ 4F750B7EFCB6520AE01E01D082D7D476, AD2A67D727A1D4DD0BBACC6B4BB432FA9A14D50D8BA292B95A4747CEC9F85728 ] Appinfo         C:\Windows\System32\appinfo.dll
12:37:16.0862 0x21c0  Appinfo - ok
12:37:16.0992 0x21c0  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:37:16.0999 0x21c0  Apple Mobile Device - ok
12:37:17.0004 0x21c0  [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc             C:\Windows\system32\drivers\arc.sys
12:37:17.0015 0x21c0  arc - ok
12:37:17.0111 0x21c0  [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:37:17.0123 0x21c0  arcsas - ok
12:37:17.0177 0x21c0  [ 31E2470E61D5A390405BA41C279D8446, ADA2518DCB78529F716622E45775283CBBB8CA61A4E90B99C2D799C23C8AFCAA ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
12:37:17.0193 0x21c0  asComSvc - ok
12:37:17.0253 0x21c0  [ 0466B91EE5767A769E9F8EDB8EF94DDB, 04A529E57D6F617688B072B3BD281538B6B02BB985EE0AE2E355E685E52BE0C8 ] asHmComSvc      C:\Program Files (x86)\ASUS\AAHM\1.00.20\aaHMSvc.exe
12:37:17.0275 0x21c0  asHmComSvc - ok
12:37:19.0515 0x21c0  [ FEF9DD9EA587F8886ADE43C1BEFBDAFE, DDE6F28B3F7F2ABBEE59D4864435108791631E9CB4CDFB1F178E5AA9859956D8 ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
12:37:19.0516 0x21c0  AsIO - ok
12:37:19.0534 0x21c0  [ AD8947D621FDCA48F1F39F4624B60AA1, D685CD1A378FA411EA11C18615A1EC5D66CEC2F990DB0D4181EE3140B9DF3E8B ] AsSysCtrlService C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.13\AsSysCtrlService.exe
12:37:19.0544 0x21c0  AsSysCtrlService - ok
12:37:19.0557 0x21c0  [ 1392B92179B07B672720763D9B1028A5, B4D47EA790920A4531E3DF5A4B4B0721B7FEA6B49A35679F0652F1E590422602 ] AsUpIO          C:\Windows\syswow64\drivers\AsUpIO.sys
12:37:19.0558 0x21c0  AsUpIO - ok
12:37:19.0561 0x21c0  [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:37:19.0590 0x21c0  AsyncMac - ok
12:37:19.0605 0x21c0  [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi           C:\Windows\system32\drivers\atapi.sys
12:37:19.0606 0x21c0  atapi - ok
12:37:19.0645 0x21c0  [ D278B7C0205249398F434856F5329FC9, 19526BC7D85D1EA63449A94274183EA051AB9F0F32209514041906E691060405 ] AU8168          C:\Windows\system32\DRIVERS\au630x64.sys
12:37:19.0657 0x21c0  AU8168 - ok
12:37:19.0700 0x21c0  [ BCD7A47EF587DC00DD61D12D9C2D1E44, 95BC9AC8BA8A86DB5C7A6317002BD9872F193B401A0C58DF252DCF3D4A7541E2 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
12:37:20.0859 0x21c0  AudioEndpointBuilder - ok
12:37:21.0207 0x21c0  [ 599B3F685A263A114FFAF3BE29C49C75, 579E9561BA8537888E061E303F3F89E2E6F8B8DED74369C3767DB10B35CD45E8 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:37:21.0482 0x21c0  Audiosrv - ok
12:37:21.0695 0x21c0  [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:37:21.0877 0x21c0  AxInstSV - ok
12:37:21.0955 0x21c0  [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
12:37:21.0975 0x21c0  b06bdrv - ok
12:37:22.0006 0x21c0  [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
12:37:22.0009 0x21c0  BasicDisplay - ok
12:37:22.0015 0x21c0  [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
12:37:22.0016 0x21c0  BasicRender - ok
12:37:22.0075 0x21c0  [ 89143A7BA7850F5C7E61B43BB44B6418, 00BB781DF87D4FF1BAFD318AFE237296B4F5925023BA4486405EC0A384C88D8F ] BDESVC          C:\Windows\System32\bdesvc.dll
12:37:22.0306 0x21c0  BDESVC - ok
12:37:22.0411 0x21c0  [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep            C:\Windows\system32\drivers\Beep.sys
12:37:22.0415 0x21c0  Beep - ok
12:37:22.0476 0x21c0  [ 53AA55632B94622F2DC3695E86EF9363, 9B5BB8EDA48A37AE97BCD42D83B25A6D10AA6231EABE745DCCE6D60E19094A6F ] BFE             C:\Windows\System32\bfe.dll
12:37:22.0656 0x21c0  BFE - ok
12:37:22.0727 0x21c0  [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS            C:\Windows\system32\qmgr.dll
12:37:22.0748 0x21c0  BITS - ok
12:37:22.0885 0x21c0  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:37:22.0918 0x21c0  Bonjour Service - ok
12:37:23.0033 0x21c0  [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:37:23.0036 0x21c0  bowser - ok
12:37:23.0083 0x21c0  [ 038FA1B55531E7020DB705B42FCCE373, 023E87E3204D64890D6FEA78E762E5BC5BD0A59325EBC264834727779EEEDBC5 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
12:37:23.0095 0x21c0  BrokerInfrastructure - ok
12:37:23.0118 0x21c0  [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser         C:\Windows\System32\browser.dll
12:37:23.0130 0x21c0  Browser - ok
12:37:23.0148 0x21c0  [ 6695200F455E251F0BCC9CE4D0978D59, 4DB2F967E449581A9330EF43E794B45B93581564B20C5B991FC1EC665A640D69 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
12:37:23.0163 0x21c0  BthAvrcpTg - ok
12:37:23.0181 0x21c0  [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
12:37:23.0199 0x21c0  BthHFEnum - ok
12:37:23.0227 0x21c0  [ DCB4EBD928A6FB368BE6CAE522412DE1, 9E1345F29467054689B9F48B5CCB567760D36610A4EA9AF41B829EAD60347269 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
12:37:23.0300 0x21c0  bthhfhid - ok
12:37:23.0306 0x21c0  [ 033916CE8784A848B9A3D686B7F66D97, B4D0514D59646CF6B70D4FA488CF95C38EA38CC5C509329CC8753E897C640AFA ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
12:37:23.0321 0x21c0  BTHMODEM - ok
12:37:23.0362 0x21c0  [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv         C:\Windows\system32\bthserv.dll
12:37:23.0374 0x21c0  bthserv - ok
12:37:23.0375 0x21c0  catchme - ok
12:37:23.0406 0x21c0  [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:37:23.0417 0x21c0  cdfs - ok
12:37:23.0426 0x21c0  [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom           C:\Windows\System32\drivers\cdrom.sys
12:37:23.0430 0x21c0  cdrom - ok
12:37:23.0439 0x21c0  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:37:23.0454 0x21c0  CertPropSvc - ok
12:37:23.0554 0x21c0  [ C3EF5F5F169165C01DF8DB9F884D3F1C, E192E46FDC8C15D3AD48B191A99EDFA6B6053384EF9DB76FDE4C1150911A05E8 ] cfwids          C:\Windows\system32\drivers\cfwids.sys
12:37:23.0555 0x21c0  cfwids - ok
12:37:23.0558 0x21c0  [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass        C:\Windows\System32\drivers\circlass.sys
12:37:23.0576 0x21c0  circlass - ok
12:37:23.0617 0x21c0  [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS            C:\Windows\system32\drivers\CLFS.sys
12:37:23.0623 0x21c0  CLFS - ok
12:37:23.0632 0x21c0  [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
12:37:23.0664 0x21c0  CmBatt - ok
12:37:23.0766 0x21c0  [ E708BFF0473EC6B271EA46B65B16CA56, 2B4C661F7C5A4395CA4204122A1C3C8AA766B56C3D01CD8BAAFA18F71FC7B591 ] CNG             C:\Windows\system32\Drivers\cng.sys
12:37:23.0794 0x21c0  CNG - ok
12:37:23.0844 0x21c0  [ 81F2B52C47B8AD32CC4FF967FC8D73DA, 13D84B4096E0F9AB9D04F6CD9E9C0DE4B6DF6F11D63C797266D719FD2429A655 ] CompFilter64    C:\Windows\System32\drivers\lvbflt64.sys
12:37:23.0846 0x21c0  CompFilter64 - ok
12:37:23.0873 0x21c0  [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
12:37:23.0875 0x21c0  CompositeBus - ok
12:37:23.0878 0x21c0  COMSysApp - ok
12:37:23.0886 0x21c0  [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv          C:\Windows\system32\drivers\condrv.sys
12:37:23.0887 0x21c0  condrv - ok
12:37:23.0912 0x21c0  [ 5CE2742F063731EC10C1B2EE386A2C08, 309919BDDD4649AFB95A99DCF8AFC3BAE10F9BC1E2819C0794CFD0F80682C223 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:37:23.0958 0x21c0  CryptSvc - ok
12:37:23.0981 0x21c0  [ FAEF4C245BE832DB41B15DAAC336AFB7, 1F8C98AB0DF4327FCB01FE0356025488E19B48A45FFFA50576B49A8587FAC42B ] dam             C:\Windows\system32\drivers\dam.sys
12:37:23.0985 0x21c0  dam - ok
12:37:24.0064 0x21c0  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:37:24.0073 0x21c0  DcomLaunch - ok
12:37:24.0110 0x21c0  [ C8650D1F61149AA546BDBC99172EBBC1, D9592ED1B6F23B6EC76A0B93635B6E38702311B0A6982F0F9DEC37FCDAF1288B ] defragsvc       C:\Windows\System32\defragsvc.dll
12:37:24.0114 0x21c0  defragsvc - ok
12:37:24.0146 0x21c0  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\Windows\system32\das.dll
12:37:24.0153 0x21c0  DeviceAssociationService - ok
12:37:24.0208 0x21c0  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
12:37:24.0210 0x21c0  DeviceInstall - ok
12:37:24.0214 0x21c0  [ 09D9EB9E7898F8E6561473A20CC808B9, 0F511593D36084843E5138AF6D55FE08D77803968AE12A236A02368DB364347E ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
12:37:24.0217 0x21c0  Dfsc - ok
12:37:24.0269 0x21c0  [ 9E0E72222264745ADEB0E5AC680B0ED6, 576AFC8741695396A3B8E9DBDD3703E9D70370437D09D162262E47A140D101B4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:37:24.0344 0x21c0  Dhcp - ok
12:37:24.0349 0x21c0  [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache        C:\Windows\system32\drivers\discache.sys
12:37:24.0350 0x21c0  discache - ok
12:37:24.0361 0x21c0  [ 560495FF4CA22E1D9B1972FA18F43B6F, 41FFDD4C1097AA857A8177E34F101A1A9C1429A4E8DEC3D395C6135A9E112CD6 ] disk            C:\Windows\system32\drivers\disk.sys
12:37:24.0363 0x21c0  disk - ok
12:37:24.0373 0x21c0  [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
12:37:24.0375 0x21c0  dmvsc - ok
12:37:24.0426 0x21c0  [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:37:24.0468 0x21c0  Dnscache - ok
12:37:24.0542 0x21c0  [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc         C:\Windows\System32\dot3svc.dll
12:37:24.0557 0x21c0  dot3svc - ok
12:37:24.0579 0x21c0  [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS             C:\Windows\system32\dps.dll
12:37:24.0595 0x21c0  DPS - ok
12:37:24.0616 0x21c0  [ 9C7C183F937951AE17C5B8B3259CF3FF, 8ED607139F15D08B4835ACF864421BA4C08C88FE90B9AAF707F5D8514D7731B1 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:37:24.0618 0x21c0  drmkaud - ok
12:37:24.0641 0x21c0  [ F87F4AAAF6664906248D11D5E579A53B, F283932F68ED93891EEF00C18724359AB7057E922A3CDC8BC6F33F84D2B0BEE5 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
12:37:24.0668 0x21c0  DsmSvc - ok
12:37:24.0833 0x21c0  [ E6AF4DF1817953D73C519B17CF849756, 26A90EB368A3F572086F223ABED87B8FC6F998AE401C9E52BEB5EE76AB052702 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:37:24.0848 0x21c0  DXGKrnl - ok
12:37:24.0878 0x21c0  [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost         C:\Windows\System32\eapsvc.dll
12:37:24.0892 0x21c0  Eaphost - ok
12:37:25.0091 0x21c0  [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv           C:\Windows\system32\drivers\evbda.sys
12:37:25.0273 0x21c0  ebdrv - ok
12:37:25.0293 0x21c0  [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] EFS             C:\Windows\System32\lsass.exe
12:37:25.0298 0x21c0  EFS - ok
12:37:25.0308 0x21c0  [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
12:37:25.0310 0x21c0  EhStorClass - ok
12:37:25.0322 0x21c0  [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
12:37:25.0332 0x21c0  EhStorTcgDrv - ok
12:37:25.0344 0x21c0  [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev          C:\Windows\System32\drivers\errdev.sys
12:37:25.0357 0x21c0  ErrDev - ok
12:37:25.0821 0x21c0  [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem     C:\Windows\system32\es.dll
12:37:25.0827 0x21c0  EventSystem - ok
12:37:25.0835 0x21c0  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat           C:\Windows\system32\drivers\exfat.sys
12:37:25.0851 0x21c0  exfat - ok
12:37:26.0029 0x21c0  Fabs - ok
12:37:26.0040 0x21c0  [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:37:26.0044 0x21c0  fastfat - ok
12:37:26.0108 0x21c0  [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax             C:\Windows\system32\fxssvc.exe
12:37:26.0131 0x21c0  Fax - ok
12:37:26.0134 0x21c0  [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc             C:\Windows\System32\drivers\fdc.sys
12:37:26.0146 0x21c0  fdc - ok
12:37:26.0161 0x21c0  [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost         C:\Windows\system32\fdPHost.dll
12:37:26.0174 0x21c0  fdPHost - ok
12:37:26.0177 0x21c0  [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:37:26.0190 0x21c0  FDResPub - ok
12:37:26.0223 0x21c0  [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc           C:\Windows\system32\fhsvc.dll
12:37:26.0235 0x21c0  fhsvc - ok
12:37:26.0238 0x21c0  [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:37:26.0240 0x21c0  FileInfo - ok
12:37:26.0266 0x21c0  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:37:26.0280 0x21c0  Filetrace - ok
12:37:26.0361 0x21c0  [ 5BD96D8C5411ACE71A7EAACAF0EF2903, 2AF58E6060C7DEC44B4CA30E14E164473CD4089AE475DAFFC61DFE56990C1147 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
12:37:26.0547 0x21c0  FirebirdServerMAGIXInstance - ok
12:37:26.0552 0x21c0  [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
12:37:26.0561 0x21c0  flpydisk - ok
12:37:26.0605 0x21c0  [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:37:26.0621 0x21c0  FltMgr - ok
12:37:26.0780 0x21c0  [ 0BCDC0FF11B984162B0CF0FF6E9E0146, D44A3CECBA36B7A64854E244FA6B5E65047896BF9983D20B431410FBBA36697A ] FontCache       C:\Windows\system32\FntCache.dll
12:37:26.0897 0x21c0  FontCache - ok
12:37:27.0005 0x21c0  [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:37:27.0146 0x21c0  FontCache3.0.0.0 - ok
12:37:27.0165 0x21c0  [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:37:27.0182 0x21c0  FsDepends - ok
12:37:27.0190 0x21c0  [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:37:27.0191 0x21c0  Fs_Rec - ok
12:37:27.0244 0x21c0  [ C1646A95EAC515F60CDB2A7A8A013C1E, F559B83C02B17265EDE95DD497C1A94E402F07EC251FC47449F789907AFFED14 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:37:27.0251 0x21c0  fvevol - ok
12:37:27.0272 0x21c0  [ A969D92973DFA895E7776B4BFE36DBB2, 7528E6983ECC59291A7A386E4E459B19D1593ABDDFFD276E2F01B0EA21693E20 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
12:37:27.0283 0x21c0  FxPPM - ok
12:37:27.0301 0x21c0  [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:37:27.0315 0x21c0  gagp30kx - ok
12:37:27.0338 0x21c0  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
12:37:27.0339 0x21c0  GEARAspiWDM - ok
12:37:27.0367 0x21c0  [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
12:37:27.0391 0x21c0  gencounter - ok
12:37:27.0523 0x21c0  [ FC2B8B06BDBD3B6457F5A3DA9AD2410E, 4BF196E1CAC94E9265EBEB68F41C3E29F0C709ECFF9420B5B1C9C82680D5D6A8 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
12:37:27.0569 0x21c0  GPIOClx0101 - ok
12:37:28.0025 0x21c0  [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:37:28.0083 0x21c0  gpsvc - ok
12:37:28.0181 0x21c0  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:37:28.0184 0x21c0  gupdate - ok
12:37:28.0193 0x21c0  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
12:37:28.0195 0x21c0  gupdatem - ok
12:37:28.0221 0x21c0  [ 630555943E5A3FE21010CE91EC7FC84F, 20D7247A4363EE9E851501D89A466564ADCAEC304DE42280E4E09AD8499436A9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:37:28.0258 0x21c0  HdAudAddService - ok
12:37:28.0308 0x21c0  [ 7D87B5B6C7188D553E11B59DC7F0B111, FC633DB71E1D72E8AD8F89BBB54324CC6ED17F5594EF55DD0BDB58EE1F601FF5 ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
12:37:28.0310 0x21c0  HDAudBus - ok
12:37:28.0313 0x21c0  [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
12:37:28.0337 0x21c0  HidBatt - ok
12:37:28.0367 0x21c0  [ 085F150D002B7F0153D3C06DDF33A143, 41847FD02608ECFE3A6B4B38CBDE8416B0EF17491868511FD704B0BCC280338E ] HidBth          C:\Windows\System32\drivers\hidbth.sys
12:37:28.0396 0x21c0  HidBth - ok
12:37:28.0419 0x21c0  [ CC4A07E51D89575CAB6F4EB590D87CD4, DFB4EAF0923EF9FF6C42EDD1EA5E4025F243C9BE2D03D5423FE8A897DC01D657 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
12:37:28.0436 0x21c0  hidi2c - ok
12:37:28.0444 0x21c0  [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr           C:\Windows\System32\drivers\hidir.sys
12:37:28.0459 0x21c0  HidIr - ok
12:37:28.0476 0x21c0  [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv         C:\Windows\System32\hidserv.dll
12:37:28.0497 0x21c0  hidserv - ok
12:37:28.0517 0x21c0  [ 012C354B4AB48E9A7A657DF39E3A2073, B15D0089CE509FF1CF73DFE095425C1C99FC3971622DCAAD9CAEB989A12A4FDB ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
12:37:28.0519 0x21c0  HidUsb - ok
12:37:28.0571 0x21c0  [ B30B655AF441263BF2F4FE9B623EFD1E, 46C412F4066FAD8500A9184CA30401366A360A0C0A4AAFAAC1645EA74DD21E98 ] HiPatchService  C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
12:37:28.0613 0x21c0  HiPatchService - ok
12:37:28.0652 0x21c0  [ 29F981739E50305128022CBE10B3659C, 25060937145B0DCA8CD088E78993BFEF1430CDDFF433E606AFC93993CBBF4B3E ] HipShieldK      C:\Windows\system32\drivers\HipShieldK.sys
12:37:28.0667 0x21c0  HipShieldK - ok
12:37:28.0708 0x21c0  [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:37:28.0726 0x21c0  hkmsvc - ok
12:37:28.0811 0x21c0  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF, E6967F3F465C6E903221BC0FCBAE7D05FD18C0BF110D929335F5935364B3C1BC ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:37:28.0873 0x21c0  HomeGroupListener - ok
12:37:28.0904 0x21c0  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:37:28.0909 0x21c0  HomeGroupProvider - ok
12:37:29.0018 0x21c0  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] HomeNetSvc      C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
12:37:29.0022 0x21c0  HomeNetSvc - ok
12:37:29.0037 0x21c0  [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:37:29.0050 0x21c0  HpSAMD - ok
12:37:29.0138 0x21c0  [ F4A91D985EB9D1D2717D538F3424603C, 454AD2FF3A7963B9835AEF300F6672F92D0CCF59593BA2CCC83F0EC1446BB659 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:37:29.0151 0x21c0  HTTP - ok
12:37:29.0170 0x21c0  [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:37:29.0172 0x21c0  hwpolicy - ok
12:37:29.0188 0x21c0  [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
12:37:29.0228 0x21c0  hyperkbd - ok
12:37:29.0232 0x21c0  [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
12:37:29.0261 0x21c0  HyperVideo - ok
12:37:29.0275 0x21c0  [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
12:37:29.0287 0x21c0  i8042prt - ok
12:37:29.0327 0x21c0  [ 0FE66A51D81A25AACEAAE4C26308121D, C5553F7ABA74A8EB71A4ED0E8F2A6AA2892F871D164F2D4FADB035BE7D1A8C44 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
12:37:29.0349 0x21c0  iaStorA - ok
12:37:29.0358 0x21c0  [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:37:29.0376 0x21c0  iaStorV - ok
12:37:29.0671 0x21c0  [ E5272DDF2C9043411809171715B4633D, B98E6565E7EA912E32746E1D35AD29C2EB9F3A21ACA8CB145C9F503B66AF0AFB ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
12:37:30.0013 0x21c0  igfx - ok
12:37:30.0026 0x21c0  [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:37:30.0037 0x21c0  iirsp - ok
12:37:30.0081 0x21c0  [ E455C83E029121270BED73CDAC381F37, 433D525C19DBF26FAC28853C606C872D973104842B0EF1B2BF2EAC85457E2953 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:37:30.0107 0x21c0  IKEEXT - ok
12:37:30.0308 0x21c0  [ 9CC645EB9697AA4F2D5A39835C80A0A2, 39861B19E9BF17F5250D571996167A178606150B62C876529D3699817FDDC42A ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:37:30.0815 0x21c0  IntcAzAudAddService - ok
12:37:30.0982 0x21c0  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
12:37:30.0993 0x21c0  Intel® Capability Licensing Service Interface - ok
12:37:31.0019 0x21c0  [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide        C:\Windows\system32\drivers\intelide.sys
12:37:31.0030 0x21c0  intelide - ok
12:37:31.0046 0x21c0  [ E15CDF68DD73423F15D4AC404793AF0D, E2D0136AF68D1A73EB3A63C83284B4661222CB0A4AFACCF276CB57CBD4850287 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
12:37:31.0049 0x21c0  intelppm - ok
12:37:31.0061 0x21c0  [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:37:31.0073 0x21c0  IpFilterDriver - ok
12:37:31.0118 0x21c0  [ C217B8D2E58C57A319B16125C3D4B69C, 905BB858E1782BD08FF080A4A604CE662440A15601B178FBD30269C306C04CCF ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:37:31.0133 0x21c0  iphlpsvc - ok
12:37:31.0144 0x21c0  [ 6E98A046A12AA113F8898AA5D612BD6E, 28816CC1F03F2BFBF099C087C0BB6949E959F44C888DD2D0528FF7ED5D665ECF ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
12:37:31.0165 0x21c0  IPMIDRV - ok
12:37:31.0170 0x21c0  [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:37:31.0186 0x21c0  IPNAT - ok
12:37:31.0246 0x21c0  [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:37:31.0256 0x21c0  iPod Service - ok
12:37:31.0272 0x21c0  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:37:31.0288 0x21c0  IRENUM - ok
12:37:31.0291 0x21c0  [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:37:31.0301 0x21c0  isapnp - ok
12:37:31.0340 0x21c0  [ 69C8BF0BC2B0EA10F130F4D3104DC2EF, 8FFF92828C3DC20F0F42C42E58A03B59A4E0187963F728DC618C9595FB2D0239 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
12:37:31.0367 0x21c0  iScsiPrt - ok
12:37:31.0420 0x21c0  [ 78ABBE558F57144047F10A0F50FE4B2F, 6BE608F7697D83FD6C7E6EA422AC5637933BDC96B1044C12DE9A419CE7D6F6CE ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
12:37:31.0422 0x21c0  jhi_service - ok
12:37:31.0429 0x21c0  [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
12:37:31.0430 0x21c0  kbdclass - ok
12:37:31.0442 0x21c0  [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
12:37:31.0443 0x21c0  kbdhid - ok
12:37:31.0457 0x21c0  [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
12:37:31.0458 0x21c0  kdnic - ok
12:37:31.0484 0x21c0  [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] KeyIso          C:\Windows\system32\lsass.exe
12:37:31.0485 0x21c0  KeyIso - ok
12:37:31.0527 0x21c0  [ DFA480F6DED551464F3A5B959F437800, C07AB6F28A09FCBE11EECAD03B06CEAE1016EC24031FCA0C092639E90FBA84CF ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:37:31.0529 0x21c0  KSecDD - ok
12:37:31.0590 0x21c0  [ 127FB0AAD232BAAD2C9BBACD374F4FC5, 3BC56F6B4374062C96149D69ACE053DF81A278F0361599F5A2F3DB1F76F0AD68 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:37:31.0608 0x21c0  KSecPkg - ok
12:37:31.0614 0x21c0  [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:37:31.0615 0x21c0  ksthunk - ok
12:37:31.0681 0x21c0  [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:37:31.0696 0x21c0  KtmRm - ok
12:37:31.0738 0x21c0  [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] LanmanServer    C:\Windows\System32\srvsvc.dll
12:37:31.0752 0x21c0  LanmanServer - ok
12:37:31.0787 0x21c0  [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:37:31.0801 0x21c0  LanmanWorkstation - ok
12:37:31.0809 0x21c0  [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:37:31.0811 0x21c0  lltdio - ok
12:37:31.0851 0x21c0  [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:37:31.0867 0x21c0  lltdsvc - ok
12:37:31.0886 0x21c0  [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:37:31.0901 0x21c0  lmhosts - ok
12:37:31.0944 0x21c0  [ 2C24DC448DBE8DB9BE1441B824C57E79, DA2257EEC964A47D03C2BB13317FD788E51D4685E2395B303ED7B2575FEF3B19 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
12:37:31.0947 0x21c0  LMS - ok
12:37:31.0973 0x21c0  [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:37:31.0984 0x21c0  LSI_SAS - ok
12:37:31.0989 0x21c0  [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
12:37:32.0000 0x21c0  LSI_SAS2 - ok
12:37:32.0007 0x21c0  [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:37:32.0018 0x21c0  LSI_SCSI - ok
12:37:32.0022 0x21c0  [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
12:37:32.0033 0x21c0  LSI_SSS - ok
12:37:32.0091 0x21c0  [ A57BA284F5996FFD32DCDBC41A4657DB, 2106B83873A824BC83EF42FAC9DD9A0F741209535A84AE65EA8E786519920043 ] LSM             C:\Windows\System32\lsm.dll
12:37:32.0134 0x21c0  LSM - ok
12:37:32.0139 0x21c0  [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:37:32.0141 0x21c0  luafv - ok
12:37:32.0176 0x21c0  [ A0A527569856B9814E8920F52EBB67F5, 4347277C84B47E4CC048850BDEFB258CFB3B476AA99FD503FD71FBB70FFF5ACF ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
12:37:32.0182 0x21c0  LVRS64 - ok
12:37:32.0391 0x21c0  [ 415E344294D1C0D04627B29146F68481, B4A1A05BDF07E8F226A98E51F62BE18BE2C046A084C495BD8A95CABC79FD0614 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
12:37:32.0543 0x21c0  LVUVC64 - ok
12:37:32.0609 0x21c0  [ A2BCB725DB8896508516C707129F17DD, 81A20691E99BB7B5F513189B46ED08AD8A702F39CC93EA0F1EF46A698B5B00DC ] McAfee SiteAdvisor Service c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe
12:37:32.0610 0x21c0  McAfee SiteAdvisor Service - ok
12:37:32.0726 0x21c0  [ 20D553F3AAFCECE3A2D0F8E3A2EFD4FC, 15318A09BDF71BC218190C59F46ABFF50E85B4FCC079BA4FCBC256ACD2B4BB37 ] McAPExe         C:\Program Files\McAfee\MSC\McAPExe.exe
12:37:32.0730 0x21c0  McAPExe - ok
12:37:32.0770 0x21c0  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McMPFSvc        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
12:37:32.0774 0x21c0  McMPFSvc - ok
12:37:32.0780 0x21c0  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McNaiAnn        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
12:37:32.0784 0x21c0  McNaiAnn - ok
12:37:32.0866 0x21c0  [ 63D93A440E7AC015D85B9A3DA0C1BBAF, 849A13E91B041DEC2A47F5BE65ADBA6CAC8AF01675D0D8E13730724B54B4DD15 ] McODS           C:\Program Files\McAfee\VirusScan\mcods.exe
12:37:32.0873 0x21c0  McODS - ok
12:37:32.0881 0x21c0  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] mcpltsvc        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
12:37:32.0884 0x21c0  mcpltsvc - ok
12:37:32.0902 0x21c0  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McProxy         C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
12:37:32.0906 0x21c0  McProxy - ok
12:37:32.0930 0x21c0  [ F4BE81C919FC0A012F5357E3911D4B67, 8FC3D787A1FACE8022D9BF1A4B024E313F8FD7535696D5E868DC2839E3B76E72 ] McPvDrv         C:\Windows\system32\drivers\McPvDrv.sys
12:37:32.0932 0x21c0  McPvDrv - ok
12:37:32.0948 0x21c0  [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas         C:\Windows\system32\drivers\megasas.sys
12:37:32.0964 0x21c0  megasas - ok
12:37:32.0989 0x21c0  [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
12:37:33.0006 0x21c0  MegaSR - ok
12:37:33.0028 0x21c0  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\Windows\System32\drivers\HECIx64.sys
12:37:33.0029 0x21c0  MEIx64 - ok
12:37:33.0088 0x21c0  [ 895040402C88062B6E1F722AF01A1667, 51686E1F4FCBCD8377DE5C9A233837C76B32A64739044D715D313E598E6B68F5 ] mfeapfk         C:\Windows\system32\drivers\mfeapfk.sys
12:37:33.0090 0x21c0  mfeapfk - ok
12:37:33.0120 0x21c0  [ 7490FCC76EA46340F2CA851288A924B8, F9E0D883AE7A3D202A1F1B79999C691CA57C405E4647300CF93EF55360E152A5 ] MfeASKM         C:\Program Files\McAfee\AppStats\MfeASKM.sys
12:37:33.0120 0x21c0  MfeASKM - ok
12:37:33.0182 0x21c0  [ 916AA2512ED6A9A811D8F1DDDBD844FD, C55ED6F85B6201A514801AF800F90236366638A1913508CD73C4C4380641C515 ] MfeASUM         C:\Program Files\McAfee\AppStats\MfeASUM.exe
12:37:33.0215 0x21c0  MfeASUM - ok
12:37:33.0257 0x21c0  [ B796F6230CF956FC95C6766BF845B3F3, 4EBE28AA2B767450C49871A136197110C7203B9882CD574B27E8B3F98B2D6334 ] mfeavfk         C:\Windows\system32\drivers\mfeavfk.sys
12:37:33.0263 0x21c0  mfeavfk - ok
12:37:33.0313 0x21c0  [ DE0FD24C4BAA2B280B59392C394C6599, 60E21CB2B9E19B9B874E4835F13E0D874DAD5BD492E8E39E1EC3D1FD2268CAD4 ] mfecore         C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
12:37:33.0329 0x21c0  mfecore - ok
12:37:33.0344 0x21c0  [ 15D02973B14AC639DDBA18353B57F484, 59EDCEFEDE5EACD11B95ADB2C71F913A216FF3F1B510C8C25AF503758F8383F8 ] mfeelamk        C:\Windows\system32\drivers\mfeelamk.sys
12:37:33.0390 0x21c0  mfeelamk - ok
12:37:33.0429 0x21c0  [ 41C6D39FCBF849D69E73626B369763AC, 806F689C7F860438011D065A181D5331996FA94B797D56EFE708D6B3E754BB62 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
12:37:33.0437 0x21c0  mfefire - ok
12:37:33.0463 0x21c0  [ 017664D9DC24B62C368E568011BD2D0A, 2A03C9B4C283D54488C503C402CA058A05B102986AD9304483D027B3AC9ECD27 ] mfefirek        C:\Windows\system32\drivers\mfefirek.sys
12:37:33.0471 0x21c0  mfefirek - ok
12:37:33.0542 0x21c0  [ 238CBB4E02CD1B20A12A683F7AB5AF05, 8B6B67E35966E02CD8EF947E8FFB16D182F97D599A4A2A01CF49FEA34180DD23 ] mfehidk         C:\Windows\system32\drivers\mfehidk.sys
12:37:33.0554 0x21c0  mfehidk - ok
12:37:33.0690 0x21c0  [ FDB02B0C2865DBDE9571D57D3ABC6A6B, 9AC814E8FEB1F928582B1AA76DD41B78981C9D211D8DB9F555AD5B334B14E11D ] mfencbdc        C:\Windows\system32\DRIVERS\mfencbdc.sys
12:37:33.0697 0x21c0  mfencbdc - ok
12:37:33.0724 0x21c0  [ C3EE053D6A0CCD75C07FADC73D7BA4E4, 81F2F6716B86B2FE673F1C1252101F5E7AD4BE4258F8086C2F9F848E0B59EAF2 ] mfencrk         C:\Windows\system32\DRIVERS\mfencrk.sys
12:37:33.0728 0x21c0  mfencrk - ok
12:37:33.0774 0x21c0  [ 1992C9EFA684A23E8047D9ADCA150E9E, 3F839BB3DFAB0B5AF2EBB576D1C4F235F155A23845AA0B3CAF9DD84F2D75B37F ] mfevtp          C:\Windows\system32\mfevtps.exe
12:37:33.0782 0x21c0  mfevtp - ok
12:37:33.0838 0x21c0  [ 1477459C6A9BDE33474B45A32B92D59B, B6198F9F8E1A7A1EC3DD7865C4D0C3F61579A8DE5BFF19A30751932E2A053B55 ] mfewfpk         C:\Windows\system32\drivers\mfewfpk.sys
12:37:33.0920 0x21c0  mfewfpk - ok
12:37:33.0951 0x21c0  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS           C:\Windows\system32\mmcss.dll
12:37:33.0952 0x21c0  MMCSS - ok
12:37:34.0041 0x21c0  [ 8CC001C65C31633171991FA72A551D43, F256EED72C712C2B5C1DB6DE31DA52609EC0E47EB869E7BC0B70B286593A96DB ] MOBKbackup      C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe
12:37:34.0045 0x21c0  MOBKbackup - ok
12:37:34.0071 0x21c0  [ 3800C23D0D90C59AAFCDEFDC82B5C4AF, D949CACB9EF881194B06A961071938F57F3AD57EBB5440B6E7F0B340757641BD ] MOBKFilter      C:\Windows\system32\DRIVERS\MOBK.sys
12:37:34.0079 0x21c0  MOBKFilter - ok
12:37:34.0100 0x21c0  [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem           C:\Windows\system32\drivers\modem.sys
12:37:34.0113 0x21c0  Modem - ok
12:37:34.0135 0x21c0  [ EA8EAD3F5B762F889CC7F3966625B48B, B701A42E5E08B7BC6601560446146803182E5DC631AB73E9408F19CB6432F121 ] monitor         C:\Windows\System32\drivers\monitor.sys
12:37:34.0136 0x21c0  monitor - ok
12:37:34.0164 0x21c0  [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
12:37:34.0171 0x21c0  mouclass - ok
12:37:34.0196 0x21c0  [ C0ADEBED913295803B579ED288936CBB, 58F71541166D1DA07C18FBD27458D55E3F8AD7291CB7496B3A2F01372A5B0CAE ] mouhid          C:\Windows\System32\drivers\mouhid.sys
12:37:34.0197 0x21c0  mouhid - ok
12:37:34.0214 0x21c0  [ 89D263DBF08119CE16273991C120D6DD, 9771EDAD266F0E234E71DFB6792F396710E051F2ADCA5CDADEBBD2790D0E6054 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:37:34.0216 0x21c0  mountmgr - ok
12:37:34.0236 0x21c0  [ 0D1609DD82C7440F5D5BF21A9D4D5C0C, BCBFF081FAFB822CE29D291FB329FC310D90F0EC0D1BB69CF8CB09ED5A2E84D1 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:37:34.0319 0x21c0  mpsdrv - ok
12:37:34.0410 0x21c0  [ 3031573A739DBEE8923851929D0AF423, E9EA6C0D12A896AC745173B1F1A58192B52724AA424718B16B8D05E9AC091741 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:37:34.0432 0x21c0  MpsSvc - ok
12:37:34.0466 0x21c0  [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:37:34.0486 0x21c0  MRxDAV - ok
12:37:34.0535 0x21c0  [ 93179D48066918323628CB016D8C94DC, FE110BF7A10EDD1DF7F6B933D373FCA51F37413282EBC4187E7C9B1965186BCC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:37:34.0541 0x21c0  mrxsmb - ok
12:37:34.0549 0x21c0  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:37:34.0553 0x21c0  mrxsmb10 - ok
12:37:34.0560 0x21c0  [ 5C7DD2E5759FFCCD2C7341C1B90F2B26, 9822FA53E6067C0E39B7A3A3F1E88719D5D8B055D86FF894F0475B158289EA45 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:37:34.0563 0x21c0  mrxsmb20 - ok
12:37:34.0599 0x21c0  [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
12:37:34.0635 0x21c0  MsBridge - ok
12:37:34.0666 0x21c0  [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC           C:\Windows\System32\msdtc.exe
12:37:34.0681 0x21c0  MSDTC - ok
12:37:34.0692 0x21c0  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:37:34.0693 0x21c0  Msfs - ok
12:37:34.0725 0x21c0  [ C32A7A39B960A42BA9D4FBE47213CA03, 4DA48587138972DA5E95AEDBBBE73BA8CCADC8172C6654427ABEAC8047B27E95 ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
12:37:34.0736 0x21c0  msgpiowin32 - ok
12:37:34.0766 0x21c0  [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:37:34.0776 0x21c0  mshidkmdf - ok
12:37:34.0785 0x21c0  [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
12:37:34.0796 0x21c0  mshidumdf - ok
12:37:34.0815 0x21c0  [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:37:34.0823 0x21c0  msisadrv - ok
12:37:34.0864 0x21c0  [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:37:34.0879 0x21c0  MSiSCSI - ok
12:37:34.0881 0x21c0  msiserver - ok
12:37:34.0909 0x21c0  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] MSK80Service    C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
12:37:34.0913 0x21c0  MSK80Service - ok
12:37:34.0964 0x21c0  [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:37:34.0970 0x21c0  MSKSSRV - ok
12:37:34.0981 0x21c0  [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
12:37:34.0993 0x21c0  MsLldp - ok
12:37:35.0012 0x21c0  [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:37:35.0013 0x21c0  MSPCLOCK - ok
12:37:35.0025 0x21c0  [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:37:35.0028 0x21c0  MSPQM - ok
12:37:35.0057 0x21c0  [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:37:35.0064 0x21c0  MsRPC - ok
12:37:35.0076 0x21c0  [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
12:37:35.0077 0x21c0  mssmbios - ok
12:37:35.0094 0x21c0  [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:37:35.0102 0x21c0  MSTEE - ok
12:37:35.0113 0x21c0  [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
12:37:35.0153 0x21c0  MTConfig - ok
12:37:35.0160 0x21c0  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup             C:\Windows\system32\Drivers\mup.sys
12:37:35.0162 0x21c0  Mup - ok
12:37:35.0170 0x21c0  [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
12:37:35.0182 0x21c0  mvumis - ok
12:37:35.0258 0x21c0  [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent        C:\Windows\system32\qagentRT.dll
12:37:35.0273 0x21c0  napagent - ok
12:37:35.0311 0x21c0  [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:37:35.0318 0x21c0  NativeWifiP - ok
12:37:35.0377 0x21c0  [ E0E4A1F81A7D69C595A8A9DDAD084C19, 8F55F3637AE8BFFB0ACE37AFC5122026525137E0B2923899B779C1BD08DF0E22 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
12:37:35.0391 0x21c0  NAUpdate - ok
12:37:35.0438 0x21c0  [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc          C:\Windows\System32\ncasvc.dll
12:37:35.0472 0x21c0  NcaSvc - ok
12:37:35.0489 0x21c0  [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
12:37:35.0514 0x21c0  NcdAutoSetup - ok
12:37:35.0552 0x21c0  [ A10E176F3B2BF83EDE7B5C4658C93B66, 42F2FAEB4A29BBC6727D7E159D3E7E2E66D33785E5C98496EEB44D281601A23E ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:37:35.0568 0x21c0  NDIS - ok
12:37:35.0594 0x21c0  [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:37:35.0608 0x21c0  NdisCap - ok
12:37:35.0633 0x21c0  [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
12:37:35.0678 0x21c0  NdisImPlatform - ok
12:37:35.0714 0x21c0  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:37:35.0716 0x21c0  NdisTapi - ok
12:37:35.0738 0x21c0  [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:37:35.0746 0x21c0  Ndisuio - ok
12:37:35.0757 0x21c0  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:37:35.0760 0x21c0  NdisWan - ok
12:37:35.0877 0x21c0  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY   C:\Windows\system32\DRIVERS\ndiswan.sys
12:37:35.0879 0x21c0  NDISWANLEGACY - ok
12:37:35.0919 0x21c0  [ 3730942D7DB2F8BB5F84542B7FF6F650, 89C9D7D7305205BDB304CE6DA7D1A57EDE86A9D77429698802A39D75EB78CAAB ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:37:35.0921 0x21c0  NDProxy - ok
12:37:35.0935 0x21c0  [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu             C:\Windows\system32\drivers\Ndu.sys
12:37:35.0937 0x21c0  Ndu - ok
12:37:35.0939 0x21c0  [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:37:35.0941 0x21c0  NetBIOS - ok
12:37:35.0948 0x21c0  [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:37:35.0954 0x21c0  NetBT - ok
12:37:35.0967 0x21c0  [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] Netlogon        C:\Windows\system32\lsass.exe
12:37:35.0968 0x21c0  Netlogon - ok
12:37:36.0004 0x21c0  [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman          C:\Windows\System32\netman.dll
12:37:36.0031 0x21c0  Netman - ok
12:37:36.0091 0x21c0  [ 79FA9393C67EBBF92A56923592CF7A7C, A8AB8A6346B97B68810CC632F425085BE9E63ACAED0F119A7BFD03F2DA4AA5F6 ] netprofm        C:\Windows\System32\netprofmsvc.dll
12:37:36.0137 0x21c0  netprofm - ok
12:37:36.0202 0x21c0  [ BE0F20C494EBCB1899346FE973AD5EBE, 9F4036897E47EC702B46B9535732AF26E950909A60CC05A8013A915A2B6C5784 ] netr28x         C:\Windows\system32\DRIVERS\netr28x.sys
12:37:36.0265 0x21c0  netr28x - ok
12:37:36.0347 0x21c0  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:37:36.0361 0x21c0  NetTcpPortSharing - ok
12:37:36.0379 0x21c0  [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:37:36.0390 0x21c0  nfrd960 - ok
12:37:36.0429 0x21c0  [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:37:36.0444 0x21c0  NlaSvc - ok
12:37:36.0483 0x21c0  [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:37:36.0486 0x21c0  Npfs - ok
12:37:36.0525 0x21c0  [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
12:37:36.0526 0x21c0  npsvctrig - ok
12:37:36.0540 0x21c0  [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi             C:\Windows\system32\nsisvc.dll
12:37:36.0551 0x21c0  nsi - ok
12:37:36.0554 0x21c0  [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:37:36.0555 0x21c0  nsiproxy - ok
12:37:36.0614 0x21c0  [ 76929F4A69E425911A63B407E26C2589, 17896DB6EDEF2637D159432DB61E8B5FA2F4F54B5F50BCD6215827C321ED2C2A ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:37:36.0668 0x21c0  Ntfs - ok
12:37:36.0705 0x21c0  [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null            C:\Windows\system32\drivers\Null.sys
12:37:36.0707 0x21c0  Null - ok
12:37:36.0727 0x21c0  [ 805F0C2B9C07E4C0F74D0EF70E9E827A, 32D3DA095788F7F7BA52AC56C8C0DD6D9D388ED3ECEAFEF23EDB8F5812FF953E ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
12:37:36.0731 0x21c0  NVHDA - ok
12:37:37.0055 0x21c0  [ EE6B7B6A54BCAFF516E30B1C15467495, 85D5E22593549C7980AA3523F0C9C4391E0D147B29F07500A8DA68F49D80A84F ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:37:37.0263 0x21c0  nvlddmkm - ok
12:37:37.0631 0x21c0  [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:37:37.0646 0x21c0  nvraid - ok
12:37:37.0651 0x21c0  [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:37:37.0663 0x21c0  nvstor - ok
12:37:38.0159 0x21c0  [ 912602BB857F31BAAD644C993D0E5F8D, C4F8C4C72052DCFDA8C2065E22B624DE1AA4CF8AF7DC5B2C9E69CEBA3FD80D55 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
12:37:38.0423 0x21c0  NvStreamSvc - ok
12:37:38.0490 0x21c0  [ 25626309AD2F81D47C829CCB5E46E478, D23F9F72C064B5D2A7979674703585345A78F7BE88887794FC9CA2971818B3DC ] nvsvc           C:\Windows\system32\nvvsvc.exe
12:37:38.0506 0x21c0  nvsvc - ok
12:37:38.0608 0x21c0  [ 056EF5C4AF4BD002AEAE417412C8EB71, 7B7BCAE68112126A7867BBEDC064EBD01CF2BF4FC79160C87331EAD363942181 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
12:37:38.0700 0x21c0  nvUpdatusService - ok
12:37:38.0723 0x21c0  [ 92E4BEE1A9EC0572F794B5BAECC0B599, C9A0C55E071AF92C490CF8FA85A96120C8C290E61D55BCD3679843348E3470D7 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
12:37:38.0724 0x21c0  nvvad_WaveExtensible - ok
12:37:38.0728 0x21c0  [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:37:38.0741 0x21c0  nv_agp - ok
12:37:38.0863 0x21c0  [ 9CF7E8EF673BB0B8BBF520AB1F0331E2, 63A98C22E08B83E83DA7CD56B67ED1C61516043B3FD9CC8232ABA9DC80EC733B ] OfficeSvc       C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
12:37:38.0904 0x21c0  OfficeSvc - ok
12:37:38.0973 0x21c0  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:37:38.0985 0x21c0  ose - ok
12:37:39.0010 0x21c0  [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:37:39.0025 0x21c0  p2pimsvc - ok
12:37:39.0056 0x21c0  [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc          C:\Windows\system32\p2psvc.dll
12:37:39.0074 0x21c0  p2psvc - ok
12:37:39.0079 0x21c0  [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport         C:\Windows\System32\drivers\parport.sys
12:37:39.0090 0x21c0  Parport - ok
12:37:39.0112 0x21c0  [ D6ACCF9F2EEEEA711C14EFD976E573F3, 60D2A81832A8D24F91C3EF134440D5026354917F59462BACBCE7A01D84767D91 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:37:39.0114 0x21c0  partmgr - ok
12:37:39.0160 0x21c0  [ 4811D9EC53649105A5A8BEA661B0F936, C77907E03D0561500FCFEAFAC323E9679E66297329901A0CA2BD7E919419A8E8 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:37:39.0186 0x21c0  PcaSvc - ok
12:37:39.0208 0x21c0  [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci             C:\Windows\system32\drivers\pci.sys
12:37:39.0223 0x21c0  pci - ok
12:37:39.0226 0x21c0  [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide          C:\Windows\system32\drivers\pciide.sys
12:37:39.0230 0x21c0  pciide - ok
12:37:39.0249 0x21c0  [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:37:39.0264 0x21c0  pcmcia - ok
12:37:39.0267 0x21c0  [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw             C:\Windows\system32\drivers\pcw.sys
12:37:39.0268 0x21c0  pcw - ok
12:37:39.0294 0x21c0  [ D1AE0CD137E165E1BA8EEF1D7CEAC876, 40EAC3849A36CFFA363BF13339DBAE3548FD55C501AD2FCC1FE10400C3EE0FD3 ] pdc             C:\Windows\system32\drivers\pdc.sys
12:37:39.0304 0x21c0  Suspicious file ( Forged ): C:\Windows\system32\drivers\pdc.sys. Real md5: D1AE0CD137E165E1BA8EEF1D7CEAC876, sha256: 40EAC3849A36CFFA363BF13339DBAE3548FD55C501AD2FCC1FE10400C3EE0FD3, fake md5: 0698DEDEAD6A00AD0D468C687D830FBF, fake sha256: B9DCA1A61F2EF80DB26380F390F2E9A17114D33129D61CF465B949B6A7916CAA
12:37:39.0304 0x21c0  pdc - detected ForgedFile.Multi.Generic ( 1 )
12:37:42.0336 0x21c0  pdc ( ForgedFile.Multi.Generic ) - warning
12:37:42.0336 0x21c0  Force sending object to P2P due to detect: C:\Windows\system32\drivers\pdc.sys
12:37:59.0834 0x21c0  Object send P2P result: true
12:38:02.0539 0x21c0  [ 61FE70659CD43E07F94DA4DC31DEC493, 3739B6670B440173FD81DE3D47B0B90FAF296802AD4F57C05BF5CF191BF16022 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:38:02.0616 0x21c0  PEAUTH - ok
12:38:05.0482 0x21c0  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:38:05.0497 0x21c0  PerfHost - ok
12:38:05.0699 0x21c0  [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla             C:\Windows\system32\pla.dll
12:38:05.0873 0x21c0  pla - ok
12:38:05.0914 0x21c0  [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:38:05.0916 0x21c0  PlugPlay - ok
12:38:05.0932 0x21c0  [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:38:05.0944 0x21c0  PNRPAutoReg - ok
12:38:05.0966 0x21c0  [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:38:05.0971 0x21c0  PNRPsvc - ok
12:38:06.0000 0x21c0  [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:38:06.0034 0x21c0  PolicyAgent - ok
12:38:06.0070 0x21c0  [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power           C:\Windows\system32\umpo.dll
12:38:06.0072 0x21c0  Power - ok
12:38:06.0091 0x21c0  [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:38:06.0094 0x21c0  PptpMiniport - ok
12:38:06.0330 0x21c0  [ C2D3B3D0060619D5E03E696BD56FF59F, 155954F16B6F9B51BA16F43F1AE6F977B1EC4DE77862C6F6C722293189BE0DD2 ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
12:38:06.0507 0x21c0  PrintNotify - ok
12:38:06.0537 0x21c0  [ DD979EB6A7212F60E4AFBE96EDC7AE6D, BC681D64C5B8F08FD4613D71111853FCD5B05E4BD127D2C6258BAED7627105BE ] Processor       C:\Windows\System32\drivers\processr.sys
12:38:06.0549 0x21c0  Processor - ok
12:38:06.0562 0x21c0  [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] ProfSvc         C:\Windows\system32\profsvc.dll
12:38:06.0565 0x21c0  ProfSvc - ok
12:38:06.0579 0x21c0  [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:38:06.0582 0x21c0  Psched - ok
12:38:06.0598 0x21c0  [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE           C:\Windows\system32\qwave.dll
12:38:06.0636 0x21c0  QWAVE - ok
12:38:06.0660 0x21c0  [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:38:06.0672 0x21c0  QWAVEdrv - ok
12:38:06.0681 0x21c0  [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:38:06.0702 0x21c0  RasAcd - ok
12:38:06.0727 0x21c0  [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:38:06.0729 0x21c0  RasAgileVpn - ok
12:38:06.0747 0x21c0  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto         C:\Windows\System32\rasauto.dll
12:38:06.0763 0x21c0  RasAuto - ok
12:38:06.0767 0x21c0  [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:38:06.0770 0x21c0  Rasl2tp - ok
12:38:06.0806 0x21c0  [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan          C:\Windows\System32\rasmans.dll
12:38:06.0833 0x21c0  RasMan - ok
12:38:06.0845 0x21c0  [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:38:06.0847 0x21c0  RasPppoe - ok
12:38:06.0853 0x21c0  [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:38:06.0855 0x21c0  RasSstp - ok
12:38:06.0900 0x21c0  [ CA03D642ACE58E1BA54E4B383F91CD69, 39BB942603801CF11FBEA28E24F8C8D1EF2AF615D1FABF951683A015D6A6EF37 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:38:06.0907 0x21c0  rdbss - ok
12:38:06.0912 0x21c0  [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
12:38:06.0918 0x21c0  rdpbus - ok
12:38:06.0954 0x21c0  [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:38:06.0984 0x21c0  RDPDR - ok
12:38:07.0005 0x21c0  RdpVideoMiniport - ok
12:38:07.0014 0x21c0  [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:38:07.0026 0x21c0  RDPWD - ok
12:38:07.0040 0x21c0  [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:38:07.0044 0x21c0  rdyboost - ok
12:38:07.0065 0x21c0  [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:38:07.0092 0x21c0  RemoteAccess - ok
12:38:07.0122 0x21c0  [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:38:07.0156 0x21c0  RemoteRegistry - ok
12:38:07.0178 0x21c0  [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:38:07.0344 0x21c0  RpcEptMapper - ok
12:38:07.0358 0x21c0  [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator      C:\Windows\system32\locator.exe
12:38:07.0371 0x21c0  RpcLocator - ok
12:38:07.0443 0x21c0  [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs           C:\Windows\system32\rpcss.dll
12:38:07.0453 0x21c0  RpcSs - ok
12:38:07.0468 0x21c0  [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:38:07.0475 0x21c0  rspndr - ok
12:38:07.0586 0x21c0  [ 7D9DA8EC6784A9EE213C676709D46BE6, 9861D1EF107F7D1590B89098EAEA7F509C1EF46999C37703F3766BAD733D8AD2 ] RTL8168         C:\Windows\system32\DRIVERS\Rt630x64.sys
12:38:07.0608 0x21c0  RTL8168 - ok
12:38:07.0627 0x21c0  [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
12:38:07.0638 0x21c0  s3cap - ok
12:38:07.0674 0x21c0  [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] SamSs           C:\Windows\system32\lsass.exe
12:38:07.0675 0x21c0  SamSs - ok
12:38:07.0784 0x21c0  [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:38:07.0794 0x21c0  sbp2port - ok
12:38:07.0815 0x21c0  [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:38:07.0832 0x21c0  SCardSvr - ok
12:38:07.0846 0x21c0  [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:38:07.0864 0x21c0  scfilter - ok
12:38:07.0956 0x21c0  [ ED40ED9A65F3E79A8C43DD50C5FDADBF, 2323BFAB1BC3D661A376650B7AC14C7780C92BA575DA048F3C7611CDB3F7F04A ] Schedule        C:\Windows\system32\schedsvc.dll
12:38:07.0972 0x21c0  Schedule - ok
12:38:08.0003 0x21c0  [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:38:08.0005 0x21c0  SCPolicySvc - ok
12:38:08.0041 0x21c0  [ F58B030A0664385C707B8C1C63682041, E46AADAA2CD687B9A4B564DC5B002493C8480542588E660BC3DF89EAF9DB0427 ] sdbus           C:\Windows\System32\drivers\sdbus.sys
12:38:08.0058 0x21c0  sdbus - ok
12:38:08.0074 0x21c0  [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:38:08.0101 0x21c0  SDRSVC - ok
12:38:08.0139 0x21c0  [ BB107AA9980B0DA4E19A3A90C3BD4460, BCB4CF0FFF1FD57302557B68044A88C8EEAAE57C2FEAE8EAD1F410F960298B6D ] sdstor          C:\Windows\System32\drivers\sdstor.sys
12:38:08.0150 0x21c0  sdstor - ok
12:38:08.0163 0x21c0  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:38:08.0165 0x21c0  secdrv - ok
12:38:08.0179 0x21c0  [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon        C:\Windows\system32\seclogon.dll
12:38:08.0194 0x21c0  seclogon - ok
12:38:08.0207 0x21c0  [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS            C:\Windows\system32\sens.dll
12:38:08.0245 0x21c0  SENS - ok
12:38:08.0267 0x21c0  [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:38:08.0291 0x21c0  SensrSvc - ok
12:38:08.0304 0x21c0  [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
12:38:08.0315 0x21c0  SerCx - ok
12:38:08.0318 0x21c0  [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum         C:\Windows\System32\drivers\serenum.sys
12:38:08.0329 0x21c0  Serenum - ok
12:38:08.0359 0x21c0  [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial          C:\Windows\System32\drivers\serial.sys
12:38:08.0374 0x21c0  Serial - ok
12:38:08.0382 0x21c0  [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse        C:\Windows\System32\drivers\sermouse.sys
12:38:08.0403 0x21c0  sermouse - ok
12:38:08.0477 0x21c0  [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv      C:\Windows\system32\sessenv.dll
12:38:08.0581 0x21c0  SessionEnv - ok
12:38:08.0583 0x21c0  [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
12:38:08.0592 0x21c0  sfloppy - ok
12:38:08.0620 0x21c0  [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:38:08.0628 0x21c0  SharedAccess - ok
12:38:08.0663 0x21c0  [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:38:08.0720 0x21c0  ShellHWDetection - ok
12:38:08.0725 0x21c0  [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
12:38:08.0736 0x21c0  SiSRaid2 - ok
12:38:08.0740 0x21c0  [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:38:08.0751 0x21c0  SiSRaid4 - ok
12:38:08.0766 0x21c0  [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:38:08.0793 0x21c0  SNMPTRAP - ok
12:38:08.0838 0x21c0  [ 9110193D93960E38B8692E4519C75D72, 789381B4CCC056EE431E78E2339AC9802264A1CE4B378DDA9769649664C9A7A0 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
12:38:08.0841 0x21c0  spaceport - ok
12:38:08.0845 0x21c0  [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
12:38:08.0856 0x21c0  SpbCx - ok
12:38:08.0890 0x21c0  [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler         C:\Windows\System32\spoolsv.exe
12:38:08.0903 0x21c0  Spooler - ok
12:38:09.0023 0x21c0  [ 061A977C920FBE4BF71FF47C966DDDCA, 746516396B72E4ADB05D978C819CD45FE44EE194756F6DA50121D755439CA590 ] sppsvc          C:\Windows\system32\sppsvc.exe
12:38:09.0119 0x21c0  sppsvc - ok
12:38:09.0154 0x21c0  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:38:09.0162 0x21c0  srv - ok
12:38:09.0202 0x21c0  [ 56218A571ECF8D55E0CDFF8DF2546CF1, 44B34722108EDDC8757A0B7C939A854457BB7EBC92A83C4284DFFAECFC2E3619 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:38:09.0211 0x21c0  srv2 - ok
12:38:09.0230 0x21c0  [ 14FC338B80CFF7E04215133B568D15C4, 1F437BE0EC887097F0C3409D4198A20981FC325FDF915532AB85070D337DEF2B ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:38:09.0245 0x21c0  srvnet - ok
12:38:09.0284 0x21c0  [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:38:09.0304 0x21c0  SSDPSRV - ok
12:38:09.0316 0x21c0  [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:38:09.0328 0x21c0  SstpSvc - ok
12:38:09.0444 0x21c0  [ 7DE35FB26617D9AEF44CEFE9FAC5C51A, ADAFD4690D61070DEEC7D04CBE565C73EF92A17F9C16B7FDD1375D38CD54395A ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:38:09.0454 0x21c0  Steam Client Service - ok
12:38:09.0484 0x21c0  Stereo Service - ok
12:38:09.0487 0x21c0  [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor        C:\Windows\system32\drivers\stexstor.sys
12:38:09.0497 0x21c0  stexstor - ok
12:38:09.0527 0x21c0  [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc          C:\Windows\System32\wiaservc.dll
12:38:09.0572 0x21c0  stisvc - ok
12:38:09.0611 0x21c0  [ B240874B2CA0CD02E8CD11E140B14C57, 0FDBEE3DB644175A30065CAF020F375703ADC45A33221788C010F3111707FC25 ] storahci        C:\Windows\system32\drivers\storahci.sys
12:38:09.0613 0x21c0  storahci - ok
12:38:09.0631 0x21c0  [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
12:38:09.0644 0x21c0  storflt - ok
12:38:09.0694 0x21c0  [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc         C:\Windows\system32\storsvc.dll
12:38:09.0713 0x21c0  StorSvc - ok
12:38:09.0731 0x21c0  [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc         C:\Windows\system32\drivers\storvsc.sys
12:38:09.0742 0x21c0  storvsc - ok
12:38:09.0750 0x21c0  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc           C:\Windows\system32\svsvc.dll
12:38:09.0771 0x21c0  svsvc - ok
12:38:09.0775 0x21c0  [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum          C:\Windows\System32\drivers\swenum.sys
12:38:09.0776 0x21c0  swenum - ok
12:38:09.0786 0x21c0  [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv           C:\Windows\System32\swprv.dll
12:38:09.0793 0x21c0  swprv - ok
12:38:09.0847 0x21c0  [ A06CB9269D29EE3D0F3F5630ABB660B8, 519A01FC7D9414B26CCBC23E7FB1CEAF1C91CD173B4F4A4025F8316B7460C584 ] SysMain         C:\Windows\system32\sysmain.dll
12:38:09.0873 0x21c0  SysMain - ok
12:38:09.0923 0x21c0  [ 6FB88606C4A71E1BFAF97D63A676C673, D72F93A482E989ACA50F9647B7AD699A4656AEAACF377BB2B8CEBB094B748852 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
12:38:09.0928 0x21c0  SystemEventsBroker - ok
12:38:09.0944 0x21c0  [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\Windows\System32\TabSvc.dll
12:38:09.0959 0x21c0  TabletInputService - ok
12:38:09.0972 0x21c0  [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:38:09.0986 0x21c0  TapiSrv - ok
12:38:10.0061 0x21c0  [ 37D85E873C9531A2F88DD9C63D3F8A9E, C31FF8324962B72DAED445F0A264E3E2E51296DDC98A5914DCE155693FB18868 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:38:10.0111 0x21c0  Tcpip - ok
12:38:10.0169 0x21c0  [ 37D85E873C9531A2F88DD9C63D3F8A9E, C31FF8324962B72DAED445F0A264E3E2E51296DDC98A5914DCE155693FB18868 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:38:10.0194 0x21c0  TCPIP6 - ok
12:38:10.0293 0x21c0  [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:38:10.0294 0x21c0  tcpipreg - ok
12:38:10.0301 0x21c0  [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:38:10.0303 0x21c0  tdx - ok
12:38:10.0315 0x21c0  [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
12:38:10.0326 0x21c0  terminpt - ok
12:38:10.0359 0x21c0  [ 541EE228D0DEF392F7B2DFD885DD021B, 594D6538FA4DB5EF4D130007D7C29051EC2EDCA39EBB119695B58E9CBB0EB728 ] TermService     C:\Windows\System32\termsrv.dll
12:38:10.0383 0x21c0  TermService - ok
12:38:10.0408 0x21c0  [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes          C:\Windows\system32\themeservice.dll
12:38:10.0425 0x21c0  Themes - ok
12:38:10.0448 0x21c0  [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER     C:\Windows\system32\mmcss.dll
12:38:10.0450 0x21c0  THREADORDER - ok
12:38:10.0481 0x21c0  [ 4515B9E4140F04FB3907692DF89FCA87, F68EC56524BDA877646E987BE7414C1D622BD9FF05A5AEADCA39030FDC2B0115 ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
12:38:10.0485 0x21c0  TimeBroker - ok
12:38:10.0772 0x21c0  [ 506B0B498216371D64ABB69145B70E4C, 94FE0E8A61C506FBA45D14571A14DC259E1D52778CEF8366CE8CBDCD871E28DB ] tor             C:\Program Files (x86)\Tor\tor.exe
12:38:11.0014 0x21c0  tor - ok
12:38:11.0043 0x21c0  [ E94F7A7B48C7638D1F3F8089344C97B7, 276CDE59614D563A52529BCC4BFC726E5F5BE131C9C4142558A644D79328C810 ] TPM             C:\Windows\system32\drivers\tpm.sys
12:38:11.0058 0x21c0  TPM - ok
12:38:11.0078 0x21c0  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks          C:\Windows\System32\trkwks.dll
12:38:11.0092 0x21c0  TrkWks - ok
12:38:11.0160 0x21c0  [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:38:11.0163 0x21c0  TrustedInstaller - ok
12:38:11.0169 0x21c0  [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:38:11.0212 0x21c0  TsUsbFlt - ok
12:38:11.0278 0x21c0  [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
12:38:11.0289 0x21c0  TsUsbGD - ok
12:38:11.0297 0x21c0  [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:38:11.0300 0x21c0  tunnel - ok
12:38:11.0327 0x21c0  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:38:11.0338 0x21c0  uagp35 - ok
12:38:11.0345 0x21c0  [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
12:38:11.0356 0x21c0  UASPStor - ok
12:38:11.0390 0x21c0  [ 061BA3EE0D2BE17944990544008CF190, C9236D368EC2281B545E8C008BC2801F21A9716ED3D4DAEDB0751A5008346E81 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
12:38:11.0394 0x21c0  UCX01000 - ok
12:38:11.0412 0x21c0  udfs - ok
12:38:11.0444 0x21c0  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:38:11.0474 0x21c0  UI0Detect - ok
12:38:11.0493 0x21c0  [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:38:11.0507 0x21c0  uliagpkx - ok
12:38:11.0510 0x21c0  [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus           C:\Windows\System32\drivers\umbus.sys
12:38:11.0511 0x21c0  umbus - ok
12:38:11.0514 0x21c0  UmPass - ok
12:38:11.0535 0x21c0  [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService    C:\Windows\System32\umrdp.dll
12:38:11.0549 0x21c0  UmRdpService - ok
12:38:11.0630 0x21c0  [ E1A119AD21F5AFE22EB516C549306D3D, 48769D5E7A78B7A2C00F1F6798AC133CF3E0B2C76F71D3719BD741DDD8F2D229 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
12:38:11.0636 0x21c0  UNS - ok
12:38:11.0667 0x21c0  [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost        C:\Windows\System32\upnphost.dll
12:38:11.0674 0x21c0  upnphost - ok
12:38:11.0707 0x21c0  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\System32\Drivers\usbaapl64.sys
12:38:11.0730 0x21c0  USBAAPL64 - ok
12:38:11.0758 0x21c0  [ 9E9F21FF91D7ECC0BCCB94D3FE52A959, 85461393D62ED939F6741C2D0A90C8AB34F4415173223BB4CFC119715D10E7A7 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
12:38:11.0760 0x21c0  usbaudio - ok
12:38:11.0770 0x21c0  [ C976C4306F9AE133D6BBD47FDFC3BF92, 820413D92D6A89055A7F26523BF5CC4B668610C4A06E8B0D163FBF929B1DFA9A ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
12:38:11.0772 0x21c0  usbccgp - ok
12:38:11.0788 0x21c0  [ 427B6DB8C05A5A977E8C3525370A2595, C67222CA9123AE12D953995326B3B582C146CEA89594B7209DB0B1F628A0118D ] usbcir          C:\Windows\System32\drivers\usbcir.sys
12:38:11.0822 0x21c0  usbcir - ok
12:38:11.0859 0x21c0  [ B24FDEB1B18496F1B463782235AA3AF1, 3F5036F36987C8007D03DAFC3EC30615515BE96D9A1DF879BCD4EB0E66CD50B1 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
12:38:11.0862 0x21c0  usbehci - ok
12:38:11.0912 0x21c0  [ F8C2A832DF9403F5EA8080CBDBDA95FB, 50E9455465672BC13EB945BEC132D2F30BA2EB25C68928D2B4C256F2DB292A83 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
12:38:11.0923 0x21c0  usbhub - ok
12:38:11.0970 0x21c0  [ E5F7328B1D29BCE791862CD3C0DD382A, E520D75CA6E4EDB06F576D97FB6B7CFD46A3EF3A3AC881537DE3BB8C862FE8C3 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
12:38:11.0975 0x21c0  USBHUB3 - ok
12:38:11.0991 0x21c0  [ 325F6179009B5A7F6118951A5BA422AB, 756CB2893530485E8C3ACFF5A40F4C6EB446E72B2296E8772058E407A5E066DE ] usbohci         C:\Windows\System32\drivers\usbohci.sys
12:38:12.0019 0x21c0  usbohci - ok
12:38:12.0051 0x21c0  [ 9FDBA6982582A6F2354144980F641E7B, 054A65412CB22C5BE970FD3A266E140110D869B614B9F9894628D553CE82C991 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
12:38:12.0090 0x21c0  usbprint - ok
12:38:12.0106 0x21c0  [ BFC7FE4AAEB61317A921871B4085EF4B, CBC3FBAEAD6C82A437CC87A97007EF807C64053AB8FA5C3233C2A0CF6FC8D019 ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
12:38:12.0108 0x21c0  USBSTOR - ok
12:38:12.0130 0x21c0  [ C44D96B1CDDE705B23F55AB423CCA73D, AB9842E90DD3D686E66BDBE043EB0068272B611D6F63C818EB9D1B6FE2FE23BD ] USBTINSP        C:\Windows\System32\drivers\tinspusb.sys
12:38:12.0159 0x21c0  USBTINSP - ok
12:38:12.0182 0x21c0  [ 1ABF657259DB57F7E5558E4DF1357C0C, 34EAF5DEA3293CFA96BA81B036305FD90ABAE05B9CB73D4F54FB236448C1978C ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
12:38:12.0192 0x21c0  usbuhci - ok
12:38:12.0220 0x21c0  [ 9EF7C01D3ACCBC243B5CB1A95865B2FF, 367A7640B4992E68EB3E1BBD78D3014742F4CC4056750E389048C653251DAD33 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
12:38:12.0234 0x21c0  usbvideo - ok
12:38:12.0251 0x21c0  [ 8DC398D7B8E02C929A2096E74A170970, 87B3CE84D05F50C33935B28F0AFF1CB15DAA4530768BA1FB25C311609CD4B0A5 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
12:38:12.0257 0x21c0  USBXHCI - ok
12:38:12.0265 0x21c0  [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] VaultSvc        C:\Windows\system32\lsass.exe
12:38:12.0266 0x21c0  VaultSvc - ok
12:38:12.0269 0x21c0  [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:38:12.0270 0x21c0  vdrvroot - ok
12:38:12.0303 0x21c0  [ 1B4488988E5E7512E6C5CD1255E9E973, B82C26E767A8895CFFD76C11D07D5C945C38E1BD32CC27D20A6C0FA7F6064FC5 ] vds             C:\Windows\System32\vds.exe
12:38:12.0364 0x21c0  vds - ok
12:38:12.0379 0x21c0  [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
12:38:12.0382 0x21c0  VerifierExt - ok
12:38:12.0409 0x21c0  [ 500BE6B2E49883720D0AE8BB859ED7A3, 4606B02A3E8123510676E554635EB5ECF9DC5F2B83928710C8563787C52CC102 ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
12:38:12.0429 0x21c0  vhdmp - ok
12:38:12.0446 0x21c0  [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:38:12.0458 0x21c0  viaide - ok
12:38:12.0462 0x21c0  [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
12:38:12.0475 0x21c0  vmbus - ok
12:38:12.0477 0x21c0  [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
12:38:12.0486 0x21c0  VMBusHID - ok
12:38:12.0561 0x21c0  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
12:38:12.0589 0x21c0  vmicheartbeat - ok
12:38:12.0597 0x21c0  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\Windows\System32\ICSvc.dll
12:38:12.0601 0x21c0  vmickvpexchange - ok
12:38:12.0608 0x21c0  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv         C:\Windows\System32\ICSvc.dll
12:38:12.0612 0x21c0  vmicrdv - ok
12:38:12.0619 0x21c0  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown    C:\Windows\System32\ICSvc.dll
12:38:12.0623 0x21c0  vmicshutdown - ok
12:38:12.0631 0x21c0  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync    C:\Windows\System32\ICSvc.dll
12:38:12.0635 0x21c0  vmictimesync - ok
12:38:12.0642 0x21c0  [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss         C:\Windows\System32\ICSvc.dll
12:38:12.0647 0x21c0  vmicvss - ok
12:38:12.0650 0x21c0  [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:38:12.0656 0x21c0  volmgr - ok
12:38:12.0687 0x21c0  [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:38:12.0694 0x21c0  volmgrx - ok
12:38:12.0722 0x21c0  [ 78A5BBA3819FFFC62FFEC3E2220D102D, A95797B97D576374C2CDA8A09E6C51A89BADE428AAA89D5093579C85062E5874 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:38:12.0728 0x21c0  volsnap - ok
12:38:12.0743 0x21c0  [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci            C:\Windows\System32\drivers\vpci.sys
12:38:12.0753 0x21c0  vpci - ok
12:38:12.0758 0x21c0  [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:38:12.0771 0x21c0  vsmraid - ok
12:38:12.0833 0x21c0  [ D0C69E44BC1E1D4AD290FD84104623D8, 4C86760EA4BD2A64FFD42D89284EC3E5048CB2F0F6F3B80D017B41C0D2456A90 ] VSS             C:\Windows\system32\vssvc.exe
12:38:12.0861 0x21c0  VSS - ok
12:38:12.0878 0x21c0  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
12:38:12.0895 0x21c0  VSTXRAID - ok
12:38:12.0906 0x21c0  [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
12:38:12.0907 0x21c0  vwifibus - ok
12:38:12.0911 0x21c0  [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:38:12.0912 0x21c0  vwififlt - ok
12:38:12.0915 0x21c0  [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
12:38:12.0916 0x21c0  vwifimp - ok
12:38:12.0951 0x21c0  [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time         C:\Windows\system32\w32time.dll
12:38:12.0956 0x21c0  W32Time - ok
12:38:12.0959 0x21c0  [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
12:38:13.0021 0x21c0  WacomPen - ok
12:38:13.0048 0x21c0  [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarp          C:\Windows\system32\DRIVERS\wanarp.sys
12:38:13.0050 0x21c0  Wanarp - ok
12:38:13.0053 0x21c0  [ 61F6972FF9AC9A8D0B4D62076DC30051, 5A028036461534CA53CB2D6C1D720783D408A9F17FD77AB1ECDD75FBAD9F2381 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:38:13.0055 0x21c0  Wanarpv6 - ok
12:38:13.0112 0x21c0  [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine        C:\Windows\system32\wbengine.exe
12:38:13.0157 0x21c0  wbengine - ok
12:38:13.0187 0x21c0  [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:38:13.0206 0x21c0  WbioSrvc - ok
12:38:13.0217 0x21c0  Wcmsvc - ok
12:38:13.0244 0x21c0  [ 5B5FEAB51172F5513C2CF7B39CFA6A01, 4FDAC5168E00D44781C6F5D98ECD4977A12663C5CE6FFDFF9DBC89A28D6212D8 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:38:13.0262 0x21c0  wcncsvc - ok
12:38:13.0291 0x21c0  [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:38:13.0312 0x21c0  WcsPlugInService - ok
12:38:13.0315 0x21c0  [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd              C:\Windows\system32\drivers\wd.sys
12:38:13.0326 0x21c0  Wd - ok
12:38:13.0369 0x21c0  [ FD47DF026B32969B8A68721A0243E8EE, 57A7B9B40CEDADFB023AEDD9F29869F1B93EA2596F47B5DDC233D57FC585CCE1 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
12:38:13.0380 0x21c0  WdBoot - ok
12:38:13.0420 0x21c0  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:38:13.0444 0x21c0  Wdf01000 - ok
12:38:13.0472 0x21c0  [ 5F425D842DD6ADE9F95A51A0616AFAD7, 807B8E6A4FE443A362076C225F588A8C897CFE24A6367F4D461C8F6D3EF004C5 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
12:38:13.0488 0x21c0  WdFilter - ok
12:38:13.0503 0x21c0  [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:38:13.0521 0x21c0  WdiServiceHost - ok
12:38:13.0525 0x21c0  [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:38:13.0527 0x21c0  WdiSystemHost - ok
12:38:13.0562 0x21c0  [ F2002DA5E6B78C15B2CD48CFF8F0FBB6, 4281100271761521F75F4D5A3D2E9FF40A9C7D81CEDAFD2EDD95788534090CA6 ] WebClient       C:\Windows\System32\webclnt.dll
12:38:13.0578 0x21c0  WebClient - ok
12:38:13.0608 0x21c0  [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:38:13.0623 0x21c0  Wecsvc - ok
12:38:13.0644 0x21c0  [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:38:13.0647 0x21c0  wercplsupport - ok
12:38:13.0684 0x21c0  [ 5F70EBFC1F75B487DE79501E3CCBDB54, 2FCA57BF60A43B03BB42FBF22BBFC19AD2266FBBD818494AD114125E6E433321 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:38:13.0687 0x21c0  WerSvc - ok
12:38:13.0703 0x21c0  WFPLWFS - ok
12:38:13.0730 0x21c0  [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc          C:\Windows\System32\wiarpc.dll
12:38:13.0755 0x21c0  WiaRpc - ok
12:38:13.0758 0x21c0  [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:38:13.0769 0x21c0  WIMMount - ok
12:38:13.0798 0x21c0  WinDefend - ok
12:38:13.0840 0x21c0  [ 7911470B6018059A880469A63B65700A, 4B6131491A028FBCA54AC261112D183EFD42E98160545C8E8DFBDA01C87B3FB5 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
12:38:13.0853 0x21c0  WinHttpAutoProxySvc - ok
12:38:13.0912 0x21c0  [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:38:13.0927 0x21c0  Winmgmt - ok
12:38:14.0000 0x21c0  [ 8E212A627F33F6FC3B5F3BB47212F66E, 9BBFE26ABFA14F346FE3711D13D959523EEA23608A33C16F3D750D66CA511911 ] WinRM           C:\Windows\system32\WsmSvc.dll
12:38:14.0143 0x21c0  WinRM - ok
12:38:14.0300 0x21c0  [ BB20956C424531003F7FA6CD36F11D5D, 2C55F1C7553A527A7C4C34E730BE943269AE23928731C64D3DC945E07AE1771E ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
12:38:14.0317 0x21c0  WinUsb - ok
12:38:14.0397 0x21c0  [ 6351724B8FA0255C2DBD970297F00B93, A02F274479F9F32E30C75A5BD991B008B3CCB47D380D5870563EF918DAC5730E ] WlanSvc         C:\Windows\System32\wlansvc.dll
12:38:14.0414 0x21c0  WlanSvc - ok
12:38:14.0427 0x21c0  wlidsvc - ok
12:38:14.0441 0x21c0  [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
12:38:14.0442 0x21c0  WmiAcpi - ok
12:38:14.0464 0x21c0  [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:38:14.0467 0x21c0  wmiApSrv - ok
12:38:14.0605 0x21c0  WMPNetworkSvc - ok
12:38:14.0728 0x21c0  [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
12:38:14.0780 0x21c0  wpcfltr - ok
12:38:14.0796 0x21c0  [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:38:14.0806 0x21c0  WPCSvc - ok
12:38:14.0819 0x21c0  [ 3013658A4D327854BEEC4A08D9655194, C4CF5AA6A47CC55E7037B0BFE20AE0A6442ADDC5DEB89D6861C98C61851FA821 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:38:14.0853 0x21c0  WPDBusEnum - ok
12:38:14.0857 0x21c0  [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
12:38:14.0858 0x21c0  WpdUpFltr - ok
12:38:14.0907 0x21c0  [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:38:14.0908 0x21c0  ws2ifsl - ok
12:38:14.0971 0x21c0  [ 0600A6E0EDAFC452FDA63C8FD084111C, D6DADFE6A261FCDF0D3C4908A2E5A7B18E3F5D20DD8D3A30F7E9DBC43CC77459 ] wscsvc          C:\Windows\system32\wscsvc.dll
12:38:14.0978 0x21c0  Suspicious file ( Forged ): C:\Windows\system32\wscsvc.dll. Real md5: 0600A6E0EDAFC452FDA63C8FD084111C, sha256: D6DADFE6A261FCDF0D3C4908A2E5A7B18E3F5D20DD8D3A30F7E9DBC43CC77459, fake md5: 012CFE7F0F95266F554EE3B91EE2128A, fake sha256: 866312F6BF7369BE686F1BA9F01311C99E95E268C6E63BE37C841F54F5AA0DB8
12:38:14.0978 0x21c0  wscsvc - detected ForgedFile.Multi.Generic ( 1 )
12:38:17.0711 0x21c0  Object is SCO, delete is not allowed
12:38:17.0711 0x21c0  wscsvc ( ForgedFile.Multi.Generic ) - warning
12:38:30.0392 0x21c0  [ 74EFDA0526862C3D8D01A776182798EA, 7C9AD6118CB344C63B60A8BA5FA8C85ADED30933821ABD1427857E826EFC2952 ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
12:38:30.0394 0x21c0  WSDPrintDevice - ok
12:38:30.0397 0x21c0  WSearch - ok
12:38:30.0466 0x21c0  [ D4D04839F3DFAF09D94BAB1016F7A297, 944A41D251F522EE87189C1D01CF7EEE2C70BF4353BA4005C44F03DB485F843F ] WSService       C:\Windows\System32\WSService.dll
12:38:30.0493 0x21c0  WSService - ok
12:38:30.0505 0x21c0  wuauserv - ok
12:38:30.0566 0x21c0  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:38:30.0571 0x21c0  WudfPf - ok
12:38:30.0582 0x21c0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
12:38:30.0586 0x21c0  WUDFRd - ok
12:38:30.0591 0x21c0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFSensorLP    C:\Windows\system32\DRIVERS\WUDFRd.sys
12:38:30.0594 0x21c0  WUDFSensorLP - ok
12:38:30.0619 0x21c0  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:38:30.0634 0x21c0  wudfsvc - ok
12:38:30.0639 0x21c0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
12:38:30.0641 0x21c0  WUDFWpdFs - ok
12:38:30.0646 0x21c0  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
12:38:30.0648 0x21c0  WUDFWpdMtp - ok
12:38:30.0673 0x21c0  WwanSvc - ok
12:38:30.0699 0x21c0  [ D107AA09E4E233E1AAE126255D8A4057, 767E78508DF2FABF1E8DBEA7214B4214FA7B2FAA9AC6DD7D97F3F517A8C83BFB ] xusb22          C:\Windows\System32\drivers\xusb22.sys
12:38:30.0714 0x21c0  xusb22 - ok
12:38:30.0721 0x21c0  ================ Scan global ===============================
12:38:30.0762 0x21c0  [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\Windows\system32\basesrv.dll
12:38:30.0817 0x21c0  [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\Windows\system32\winsrv.dll
12:38:30.0865 0x21c0  [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\Windows\system32\sxssrv.dll
12:38:30.0920 0x21c0  [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\Windows\system32\services.exe
12:38:30.0927 0x21c0  [ Global ] - ok
12:38:30.0927 0x21c0  ================ Scan MBR ==================================
12:38:30.0949 0x21c0  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
12:38:30.0953 0x21c0  \Device\Harddisk0\DR0 - ok
12:38:30.0953 0x21c0  ================ Scan VBR ==================================
12:38:30.0955 0x21c0  [ 0034E22DF6F0BBE56EE94EC030DCF93E ] \Device\Harddisk0\DR0\Partition1
12:38:30.0956 0x21c0  \Device\Harddisk0\DR0\Partition1 - ok
12:38:30.0964 0x21c0  [ 8BCA2994C71441D02F901DC167E313DA ] \Device\Harddisk0\DR0\Partition2
12:38:30.0965 0x21c0  \Device\Harddisk0\DR0\Partition2 - ok
12:38:30.0973 0x21c0  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
12:38:30.0974 0x21c0  \Device\Harddisk0\DR0\Partition3 - ok
12:38:30.0980 0x21c0  [ 47C6A460C99188DCF96FE171CF97261E ] \Device\Harddisk0\DR0\Partition4
12:38:30.0982 0x21c0  \Device\Harddisk0\DR0\Partition4 - ok
12:38:31.0007 0x21c0  [ 4F2F9E32E64C5E60FBF5DECFFDCE1B8E ] \Device\Harddisk0\DR0\Partition5
12:38:31.0010 0x21c0  \Device\Harddisk0\DR0\Partition5 - ok
12:38:31.0011 0x21c0  Waiting for KSN requests completion. In queue: 9
12:38:32.0012 0x21c0  Waiting for KSN requests completion. In queue: 9
12:38:33.0012 0x21c0  Waiting for KSN requests completion. In queue: 9
12:38:34.0020 0x21c0  AV detected via SS2: McAfee Anti-Virus and Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 12.8.0.0 ), 0x51000 ( enabled : updated )
12:38:34.0090 0x21c0  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.3.215.0 ), 0x60100 ( disabled : updated )
12:38:34.0091 0x21c0  FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 12.8.0.0 ), 0x51010 ( enabled )
12:38:36.0642 0x21c0  ============================================================
12:38:36.0642 0x21c0  Scan finished
12:38:36.0642 0x21c0  ============================================================
12:38:36.0647 0x1fb8  Detected object count: 2
12:38:36.0647 0x1fb8  Actual detected object count: 2
12:38:46.0573 0x1fb8  pdc ( ForgedFile.Multi.Generic ) - skipped by user
12:38:46.0573 0x1fb8  pdc ( ForgedFile.Multi.Generic ) - User select action: Skip 
12:38:46.0574 0x1fb8  wscsvc ( ForgedFile.Multi.Generic ) - skipped by user
12:38:46.0574 0x1fb8  wscsvc ( ForgedFile.Multi.Generic ) - User select action: Skip 


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:58 PM

Posted 12 December 2013 - 12:44 PM

Note: ComboFix will not run on WIN 8 yet.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 flexasourous

flexasourous
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 12 December 2013 - 12:46 PM

# AdwCleaner v3.015 - Report created 12/12/2013 at 12:42:00
# Updated 10/12/2013 by Xplode
# Operating System : Windows 8  (64 bits)
# Username : Joel - JOELMCCLURG
# Running from : C:\Users\Joel\Downloads\AdwCleaner (3).exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
File Deleted : C:\Windows\System32\Tasks\BrowserProtect
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKLM\SOFTWARE\Classes\*\shell\filescout
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.16537
 
 
-\\ Google Chrome v31.0.1650.63
 
[ File : C:\Users\Joel\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [1229 octets] - [12/12/2013 12:41:06]
AdwCleaner[S0].txt - [1047 octets] - [12/12/2013 12:42:01]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1107 octets] ##########


#8 flexasourous

flexasourous
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 12 December 2013 - 12:55 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8 x64
Ran by Joel on Thu 12/12/2013 at 12:47:42.32
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-2525473180-2704296099-2607482992-1001\Software\sweetim
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110111271149}
Failed to delete: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110111271149}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 12/12/2013 at 12:53:45.13
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:58 PM

Posted 12 December 2013 - 04:10 PM

I have a feeling ESET will not find much or what it does is not going to change your issue.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 flexasourous

flexasourous
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 12 December 2013 - 04:21 PM

C:\Users\Joel\Downloads\FreemakeYoutubeMp3ConverterSetup.exe Win32/OpenCandy application cleaned by deleting - quarantined
C:\Users\Joel\Downloads\VLCMediaPlayerSetup-cQm0mpU.exe Win32/Somoto.A application cleaned by deleting - quarantined
C:\Users\Joel\Downloads\VLCMediaPlayerSetup-dT1CTYK.exe Win32/Somoto.A application cleaned by deleting - quarantined
 
 

So now what? :)



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,573 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:58 PM

Posted 12 December 2013 - 05:06 PM

Hi, Win32.Somoto.A, is a PUP (Potentially Unwanted Program) it is bundled within the custom installers on many download sites like Softonic, Brothersoft and Cnet.
You had pups and adware,good to remove but probably not causing freezing. I think now tat it is clean start a new Win 8 opic so they can look at other items to find the cause.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 flexasourous

flexasourous
  • Topic Starter

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:10:58 PM

Posted 12 December 2013 - 07:04 PM

Thank you very much!:)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users