Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows 7 problem - freezes up over several minutes, not all at once


  • Please log in to reply
4 replies to this topic

#1 jessman1128

jessman1128

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:18 AM

Posted 21 December 2013 - 08:32 PM

Windows 7 Professional SP1 - Dell laptop

 

For a few days now I've been having problems with my laptop. It will randomly (seemingly) cause several open programs to stop responding. When I sense this is happening, during the first minute or two I can usually switch between open programs and even close some of them and I can ctrl-alt-del and open task manager. Within a minute or two though everything stops responding and I can no longer switch between programs, close programs, ctrl-alt-del, or anything else. The mouse pointer still works, as do the NumLock/CapsLock keys on my keyboard, but everything in Windows is no longer responding. I cannot log off, shut down, etc. Windows never recovers and the only way out is to hold down the power button to kill the power. I've not found any pattern to indicate what will cause this to happen in regards to what programs I do or do not have open. One time it occurred while Windows was in the process of logging me in, but before the desktop appeared.

 

While this is happening, if I watch the hard drive activity light on the laptop it is primarily off, with a brief flicker every couple of seconds or so. During normal usage the hard drive light is usually on or flashing constantly almost all of the time.

 

It appears to be hard drive related, given the sudden decrease in HD activity according to the HD indicator light. Yet, I've run a full CHKDSK at restart, including surface scan with no apparent problems. I've run numerous BIOS-based diagnostics, including multiple different HD tests, and all passed successfully. I've run ESET's Online Scanner and it found and cleaned 2 threats (listed below) but the problem still remains. I've run full BIOS-based RAM diagnostics with no errors found.

 

ESET removed threats:

Win32/DownloadAdmin.D application

Android/Exploit.Lotoor.CW Trojan

 

I used System Restore to roll back my machine to two different restore points prior to when this problem started happening, and that didn't change anything either - which I think points to a hardware problem? Yet all hardware tests have passed.

 

I’ve checked the event logs and found what appears to be related events that correspond to the freeze times. There’s usually 3 or more VSS errors. 3 typical ones are shown below. What I don’t know is if the VSS errors are just another symptom of the underlying problem, or if they’re the cause of the problem. I’m leaning towards them being just another symptom, but I’m not sure.

 

Volume Shadow Copy Service error: The shadow copy could not be committed - operation timed out. Error context: DeviceIoControl(\\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963} - 0000000000000130,0x0053c010,0000000000347D30,0,0000000000348D40,4096,[0]).

 

Volume Shadow Copy Service error: The I/O writes cannot be held during the shadow copy creation period on volume \\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963}\. The volume index in the shadow copy set is 0. Error details: Open[0x00000000, The operation completed successfully.

], Flush[0x00000000, The operation completed successfully.

], Release[0x80042314, The shadow copy provider timed out while holding writes to the volume being shadow copied. This is probably due to excessive activity on the volume by an application or a system service. Try again later when activity on the volume is reduced.

], OnRun[0x00000000, The operation completed successfully.

].

 

Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG. Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},000000000038D9A0).

 

 Any ideas on what is causing this problem???



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:18 PM

Posted 21 December 2013 - 11:01 PM

Hello, probably not a malware issue but run these first too see if there is malware still.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.


  • >>>>>

    Download Windows Repair (All in One) from this site

    Install the program then run it.

    NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
    NOTE 2. Disable your antivirus program before running Windows Repair.


    Go to Step 2 and click on Check button next to 1. See If Check Disk Is Needed.
    If the tool that the Check Disk is needed click on Do It button next to 2. Check Disk.
    In that case make sure you restart computer.

    p22004342.gif


    Once the above is done go to Step 3 and allow it to run System File Check by clicking on Do It button:

    p22004343.gif


    Go to Step 4 and under "System Restore" click on Create button:

    p22004346.gif


    Go to Start Repairs tab and click Start button.

    Leave all checkmarks as they're.
    NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

    Click on Start button.

    p22004347.gif

    Post Windows Repair log which is located in the following folder:
    64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
    32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 jessman1128

jessman1128
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:18 AM

Posted 22 December 2013 - 06:13 AM

MiniToolbox report:

MiniToolBox by Farbar  Version: 18-12-2013
Ran by GR_Olson (administrator) on 21-12-2013 at 23:04:31
Running from "C:\Users\GR_Olson\Downloads"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ============================== 

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Intel(R) Centrino(R) Advanced-N 6200 AGN = Wireless Network Connection (Connected)
VirtualBox Host-Only Ethernet Adapter = VirtualBox Host-Only Network (Connected)
Intel(R) 82577LM Gigabit Network Connection = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set subinterface interface=?A3 subinterface=ethernet_9 mtu=1477
set subinterface interface=?A3 subinterface=ethernet_13 mtu=1477
set subinterface interface=?A3 subinterface=ethernet_14 mtu=1477
add address name="VirtualBox Host-Only Network" address=192.168.56.1 mask=255.255.255.0


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : E6410_IMAGE
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Broadcast
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : hsd1.mi.comcast.net.

Ethernet adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Nortel VPN Adapter
   Physical Address. . . . . . . . . : 00-FF-3A-3C-8E-5B
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : hsd1.mi.comcast.net.
   Description . . . . . . . . . . . : Intel(R) Centrino(R) Advanced-N 6200 AGN
   Physical Address. . . . . . . . . : 18-3D-A2-20-E8-08
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2601:4:2a80:f9:c11f:e89e:37f4:5014(Preferred) 
   Temporary IPv6 Address. . . . . . : 2601:4:2a80:f9:d53d:aaca:7449:4809(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::c11f:e89e:37f4:5014%12(Preferred) 
   IPv4 Address. . . . . . . . . . . : 10.0.0.4(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, December 21, 2013 10:59:13 PM
   Lease Expires . . . . . . . . . . : Saturday, December 28, 2013 10:59:13 PM
   Default Gateway . . . . . . . . . : fe80::ea89:2cff:fecd:241%12
                                       10.0.0.1
   DHCP Server . . . . . . . . . . . : 10.0.0.1
   DHCPv6 IAID . . . . . . . . . . . : 236469666
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-45-44-84-5C-26-0A-47-5C-81
   DNS Servers . . . . . . . . . . . : 2001:558:feed::2
                                       2001:558:feed::1
                                       75.75.76.76
                                       75.75.75.75
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Intel(R) 82577LM Gigabit Network Connection
   Physical Address. . . . . . . . . : 5C-26-0A-47-5C-81
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter VirtualBox Host-Only Network:

   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : VirtualBox Host-Only Ethernet Adapter
   Physical Address. . . . . . . . . : 08-00-27-00-B8-8A
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::fc92:de09:c403:9c5c%26(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.56.1(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Default Gateway . . . . . . . . . : 
   DHCPv6 IAID . . . . . . . . . . . : 638058535
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-45-44-84-5C-26-0A-47-5C-81
   DNS Servers . . . . . . . . . . . : fec0:0:0:ffff::1%1
                                       fec0:0:0:ffff::2%1
                                       fec0:0:0:ffff::3%1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.hsd1.mi.comcast.net.:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.mi.comcast.net.
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{97014047-367C-49F4-9436-18DE5B1F9AC7}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{DF55EBFD-6995-4B74-A4C2-0588CA4A09AB}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{3A3C8E5B-152D-43E3-8E48-0916905CE7BC}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  cdns02.comcast.net
Address:  2001:558:feed::2

Name:    google.com
Addresses:  2607:f8b0:4009:803::1004
	  173.194.46.100
	  173.194.46.101
	  173.194.46.98
	  173.194.46.103
	  173.194.46.105
	  173.194.46.99
	  173.194.46.110
	  173.194.46.104
	  173.194.46.96
	  173.194.46.102
	  173.194.46.97


Pinging google.com [2607:f8b0:4002:c07::8a] with 32 bytes of data:
Reply from 2607:f8b0:4002:c07::8a: time=49ms 
Reply from 2607:f8b0:4002:c07::8a: time=48ms 

Ping statistics for 2607:f8b0:4002:c07::8a:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 48ms, Maximum = 49ms, Average = 48ms
Server:  cdns02.comcast.net
Address:  2001:558:feed::2

Name:    yahoo.com
Addresses:  206.190.36.45
	  98.139.183.24
	  98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Request timed out.
Request timed out.

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 0, Lost = 2 (100% loss),

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 16...00 ff 3a 3c 8e 5b ......Nortel VPN Adapter
 12...18 3d a2 20 e8 08 ......Intel(R) Centrino(R) Advanced-N 6200 AGN
 10...5c 26 0a 47 5c 81 ......Intel(R) 82577LM Gigabit Network Connection
 26...08 00 27 00 b8 8a ......VirtualBox Host-Only Ethernet Adapter
  1...........................Software Loopback Interface 1
 28...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 23...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 27...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0         10.0.0.1         10.0.0.4     25
         10.0.0.0    255.255.255.0         On-link          10.0.0.4    281
         10.0.0.4  255.255.255.255         On-link          10.0.0.4    281
       10.0.0.255  255.255.255.255         On-link          10.0.0.4    281
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
     192.168.56.0    255.255.255.0         On-link      192.168.56.1    276
     192.168.56.1  255.255.255.255         On-link      192.168.56.1    276
   192.168.56.255  255.255.255.255         On-link      192.168.56.1    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.56.1    276
        224.0.0.0        240.0.0.0         On-link          10.0.0.4    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.56.1    276
  255.255.255.255  255.255.255.255         On-link          10.0.0.4    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 12    281 ::/0                     fe80::ea89:2cff:fecd:241
  1    306 ::1/128                  On-link
 12     33 2601:4:2a80:f9::/64      On-link
 12    281 2601:4:2a80:f9:c11f:e89e:37f4:5014/128
                                    On-link
 12    281 2601:4:2a80:f9:d53d:aaca:7449:4809/128
                                    On-link
 26    276 fe80::/64                On-link
 12    281 fe80::/64                On-link
 12    281 fe80::c11f:e89e:37f4:5014/128
                                    On-link
 26    276 fe80::fc92:de09:c403:9c5c/128
                                    On-link
  1    306 ff00::/8                 On-link
 26    276 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 09 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 09 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/21/2013 09:46:59 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003F3E10).


Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (12/21/2013 09:46:59 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: The I/O writes cannot be held during the shadow copy creation period on volume \\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963}\.
The volume index in the shadow copy set is 0. Error details: Open[0x00000000, The operation completed successfully.
], Flush[0x00000000, The operation completed successfully.
], Release[0x80042314, The shadow copy provider timed out while holding writes to the volume being shadow copied. This is probably due to excessive activity on the volume by an application or a system service. Try again later when activity on the volume is reduced.
], OnRun[0x00000000, The operation completed successfully.
].


Operation:
   Executing Asynchronous Operation

Context:
   Current State: DoSnapshotSet

Error: (12/21/2013 09:46:59 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: The shadow copy could not be committed - operation timed out.
Error context: DeviceIoControl(\\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963} - 0000000000000144,0x0053c010,000000000046A7F0,0,00000000004697E0,4096,[0]).


Operation:
   Committing shadow copies

Context:
   Execution Context: System Provider

Error: (12/21/2013 09:26:34 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003650F0).


Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (12/21/2013 09:26:34 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: The I/O writes cannot be held during the shadow copy creation period on volume \\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963}\.
The volume index in the shadow copy set is 0. Error details: Open[0x00000000, The operation completed successfully.
], Flush[0x00000000, The operation completed successfully.
], Release[0x80042314, The shadow copy provider timed out while holding writes to the volume being shadow copied. This is probably due to excessive activity on the volume by an application or a system service. Try again later when activity on the volume is reduced.
], OnRun[0x00000000, The operation completed successfully.
].


Operation:
   Executing Asynchronous Operation

Context:
   Current State: DoSnapshotSet

Error: (12/21/2013 09:26:34 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: The shadow copy could not be committed - operation timed out.
Error context: DeviceIoControl(\\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963} - 00000000000000C8,0x0053c010,00000000002CE390,0,00000000003173A0,4096,[0]).


Operation:
   Committing shadow copies

Context:
   Execution Context: System Provider

Error: (12/21/2013 07:57:21 PM) (Source: Windows Backup) (User: )
Description: The backup did not complete because of an error writing to the backup location \\RT-N66R\backup (at TOSHIBA_EXT)\. The error is: The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006).

Error: (12/21/2013 06:41:59 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Error calling a routine on the Shadow Copy Provider {b5946137-7b9f-4925-af80-51abd60b20d5}. Routine returned E_INVALIDARG.
Routine details GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003202B0).


Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (12/21/2013 06:41:59 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: The I/O writes cannot be held during the shadow copy creation period on volume \\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963}\.
The volume index in the shadow copy set is 0. Error details: Open[0x00000000, The operation completed successfully.
], Flush[0x00000000, The operation completed successfully.
], Release[0x80042314, The shadow copy provider timed out while holding writes to the volume being shadow copied. This is probably due to excessive activity on the volume by an application or a system service. Try again later when activity on the volume is reduced.
], OnRun[0x00000000, The operation completed successfully.
].


Operation:
   Executing Asynchronous Operation

Context:
   Current State: DoSnapshotSet

Error: (12/21/2013 06:41:59 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: The shadow copy could not be committed - operation timed out.
Error context: DeviceIoControl(\\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963} - 000000000000012C,0x0053c010,0000000000430BA0,0,000000000042FB90,4096,[0]).


Operation:
   Committing shadow copies

Context:
   Execution Context: System Provider


System errors:
=============
Error: (12/21/2013 11:01:06 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
SBRE

Error: (12/21/2013 11:00:33 PM) (Source: Service Control Manager) (User: )
Description: The rixdpcie service failed to start due to the following error: 
%%1058

Error: (12/21/2013 11:00:33 PM) (Source: Service Control Manager) (User: )
Description: The rimspci service failed to start due to the following error: 
%%1058

Error: (12/21/2013 10:59:04 PM) (Source: Service Control Manager) (User: )
Description: The NTRU TSS v1.2.1.34 TCS service depends on the TPM Base Services service which failed to start because of the following error: 
%%0

Error: (12/21/2013 10:58:41 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 10:52:21 PM on ?12/?21/?2013 was unexpected.

Error: (12/21/2013 10:49:24 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load: 
cdrom
SBRE

Error: (12/21/2013 10:48:58 PM) (Source: Service Control Manager) (User: )
Description: The rixdpcie service failed to start due to the following error: 
%%1058

Error: (12/21/2013 10:48:58 PM) (Source: Service Control Manager) (User: )
Description: The rimspci service failed to start due to the following error: 
%%1058

Error: (12/21/2013 10:48:16 PM) (Source: Service Control Manager) (User: )
Description: The NTRU TSS v1.2.1.34 TCS service depends on the TPM Base Services service which failed to start because of the following error: 
%%0

Error: (12/21/2013 10:47:51 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:48:31 PM on ?12/?21/?2013 was unexpected.


Microsoft Office Sessions:
=========================
Error: (12/21/2013 09:46:59 PM) (Source: VSS)(User: )
Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003F3E10)

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (12/21/2013 09:46:59 PM) (Source: VSS)(User: )
Description: \\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963}\00x00000000, The operation completed successfully.
0x00000000, The operation completed successfully.
0x80042314, The shadow copy provider timed out while holding writes to the volume being shadow copied. This is probably due to excessive activity on the volume by an application or a system service. Try again later when activity on the volume is reduced.
0x00000000, The operation completed successfully.


Operation:
   Executing Asynchronous Operation

Context:
   Current State: DoSnapshotSet

Error: (12/21/2013 09:46:59 PM) (Source: VSS)(User: )
Description: DeviceIoControl(\\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963} - 0000000000000144,0x0053c010,000000000046A7F0,0,00000000004697E0,4096,[0])

Operation:
   Committing shadow copies

Context:
   Execution Context: System Provider

Error: (12/21/2013 09:26:34 PM) (Source: VSS)(User: )
Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003650F0)

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (12/21/2013 09:26:34 PM) (Source: VSS)(User: )
Description: \\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963}\00x00000000, The operation completed successfully.
0x00000000, The operation completed successfully.
0x80042314, The shadow copy provider timed out while holding writes to the volume being shadow copied. This is probably due to excessive activity on the volume by an application or a system service. Try again later when activity on the volume is reduced.
0x00000000, The operation completed successfully.


Operation:
   Executing Asynchronous Operation

Context:
   Current State: DoSnapshotSet

Error: (12/21/2013 09:26:34 PM) (Source: VSS)(User: )
Description: DeviceIoControl(\\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963} - 00000000000000C8,0x0053c010,00000000002CE390,0,00000000003173A0,4096,[0])

Operation:
   Committing shadow copies

Context:
   Execution Context: System Provider

Error: (12/21/2013 07:57:21 PM) (Source: Windows Backup)(User: )
Description: \\RT-N66R\backup (at TOSHIBA_EXT)\The backup location cannot be found or is not valid. Review your backup settings and check the backup location. (0x81000006)

Error: (12/21/2013 06:41:59 PM) (Source: VSS)(User: )
Description: {b5946137-7b9f-4925-af80-51abd60b20d5}GetSnapshot({00000000-0000-0000-0000-000000000000},00000000003202B0)

Operation:
   Get Shadow Copy Properties

Context:
   Execution Context: Coordinator

Error: (12/21/2013 06:41:59 PM) (Source: VSS)(User: )
Description: \\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963}\00x00000000, The operation completed successfully.
0x00000000, The operation completed successfully.
0x80042314, The shadow copy provider timed out while holding writes to the volume being shadow copied. This is probably due to excessive activity on the volume by an application or a system service. Try again later when activity on the volume is reduced.
0x00000000, The operation completed successfully.


Operation:
   Executing Asynchronous Operation

Context:
   Current State: DoSnapshotSet

Error: (12/21/2013 06:41:59 PM) (Source: VSS)(User: )
Description: DeviceIoControl(\\?\Volume{6e19989c-4c1c-11e1-8f63-806e6f6e6963} - 000000000000012C,0x0053c010,0000000000430BA0,0,000000000042FB90,4096,[0])

Operation:
   Committing shadow copies

Context:
   Execution Context: System Provider


CodeIntegrity Errors:
===================================
  Date: 2013-12-03 13:00:25.863
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-03 13:00:25.805
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-03 12:50:21.674
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-03 12:50:21.610
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-03 12:50:20.322
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-03 12:50:20.264
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-03 12:50:16.107
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-03 12:50:16.009
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-03 12:50:15.385
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-12-03 12:50:15.329
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\usbaapl64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

 Tools for .Net 3.5 (Version: 3.11.50727)
64 Bit HP CIO Components Installer (Version: 8.2.1)
7-Zip 9.15 (x64 edition) (Version: 9.15.00.0)
AccelerometerP11 (Version: 2.00.00.12)
Adobe AIR (Version: 2.6.0.19140)
Adobe Connect 9 Add-in (Version: 11.2.385.0)
Adobe Connect Add-in
Adobe Flash Player 11 ActiveX (Version: 11.9.900.152)
Adobe Flash Player 11 Plugin (Version: 11.5.502.135)
Adobe Reader X (10.1.8) (Version: 10.1.8)
AES Crypt (Version: 3.09)
aioscnnr (Version: 7.6.13.10)
Amazon Kindle
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
Apple Application Support (Version: 2.3)
Apple Mobile Device Support (Version: 6.0.0.59)
Apple Software Update (Version: 2.1.3.127)
Avidemux 2.5 (Version: 2.5.6.7716)
AzureTools.Notifications.VwdExpress (Version: 2.2.11003.1601)
BioAPI Framework (Version: 1.0.2)
Bliss 1.6
Build Tools - amd64 (Version: 12.0.21005)
Build Tools - x86 (Version: 12.0.21005)
Build Tools Language Resources - amd64 (Version: 12.0.21005)
Build Tools Language Resources - x86 (Version: 12.0.21005)
C4USelfUpdater (Version: 1.00.0000)
CCleaner (Version: 3.23)
center (Version: 7.7.2.0)
Cisco WebEx Meetings
Citrix online plug-in - web (Version: 12.1.44.1)
Citrix online plug-in (DV) (Version: 12.1.44.1)
Citrix online plug-in (HDX) (Version: 12.1.44.1)
Citrix online plug-in (USB) (Version: 12.1.44.1)
Citrix online plug-in (Web) (Version: 12.1.44.1)
CrashPlan (Version: 3.2.1)
Custom (Version: 12.34.56.789)
CutePDF Writer 3.0
CyberLink PowerDVD 9.5 (Version: 9.5.1.3225)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Dell ControlVault Host Components Installer 64 bit (Version: 2.0.20.159)
Dell Data Protection | Access (Version: 01.01.00.085)
Dell Data Protection | Access (Version: 2.0.00000.085)
Dell Data Protection | Access | Drivers (Version: 1.00.011)
Dell Data Protection | Access | Middleware (Version: 1.00.005)
Dell Edoc Viewer (Version: 1.0.0)
Dell System Manager (Version: 1.5.00000)
Dell Touchpad (Version: 7.1107.101.210)
DellAccess (Version: 01.01.00.053)
Dia (remove only)
DirectX 9 Runtime (Version: 1.00.0000)
Dispatcher 6.5 SP1 for InputAccel (Version: 6.5.1)
Dropbox (Version: 2.0.22)
EMBASSY Security Center (Version: 04.03.00.067)
Entity Framework Tools for Visual Studio 2013 (Version: 12.0.20912.0)
eReg (Version: 1.20.138.34)
ESET Online Scanner v3
essentials (Version: 7.7.2.0)
Evernote v. 5.0.2 (Version: 5.0.2.1392)
Family Tree Maker 2012 (Version: 21.0.388)
FamilySearch Indexing 3.15.1 (Version: 3.15.1)
File Shredder 2.5
FileZilla Client 3.4.0 (Version: 3.4.0)
Folder Size 2.9.0.0 (Version: 2.9.0.0)
Gemalto (Version: 01.64.01.0010)
GIMP 2.6.12-2 (Version: 2.6.12)
Git version 1.8.4-preview20130916 (Version: 1.8.4-preview20130916)
Google Chrome (Version: 31.0.1650.63)
HijackThis 2.0.2 (Version: 2.0.2)
IBM System i Access for Windows V6R1M0 (Version: 06.01.0700)
IIS 8.0 Express (Version: 8.0.1557)
IIS Express Application Compatibility Database for x64
IIS Express Application Compatibility Database for x86
InputAccel 6.5 SP1 Client Components (Version: 6.51)
Intel PROSet Wireless
Intel(R) Network Connections 15.2.89.0 (Version: 15.2.89.0)
Intel(R) PROSet/Wireless WiFi Software (Version: 13.03.0000)
Intel(R) Rapid Storage Technology (Version: 9.6.0.1014)
IrfanView (remove only) (Version: 4.28)
IsoBuster 3.2 (Version: 3.2)
iTunes (Version: 10.7.0.21)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Java SE Development Kit 7 Update 21 (Version: 1.7.0.210)
Juniper Networks Host Checker (Version: 7.1.0.19243)
Juniper Networks, Inc. Setup Client (Version: 7.1.4.13103)
Junk Mail filter update (Version: 15.4.3502.0922)
Kindle Collection Manager (Version: 0.5.3)
K-Lite Codec Pack 9.8.0 (Full) (Version: 9.8.0)
Kodak AIO Printer (Version: 7.7.2.0)
KODAK AiO Software (Version: 7.7.6.0)
Kodak AiO Software Patch (Version: 7.6.12.20)
LeapFrog Connect (Version: 4.2.9.15649)
LeapFrog My Pals Plugin (Version: 4.2.9.15649)
Legacy 7.5 (Version: 7.5 )
LiPS Common/Support Files 
Logitech SetPoint 6.52 (Version: 6.52.74)
Logos 4 Prerequisites (Version: 4.60.02985)
Logos Bible Software 4 (Version: 4.61.03387)
Lotus Notes 8.5.3 (Version: 8.53.11258)
McAfee Agent (Version: 4.0.0.1496)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (Version: 4.5.50710)
Microsoft .NET Framework 4.5 SDK (Version: 4.5.50710)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (ENU) (Version: 4.5.50932)
Microsoft .NET Framework 4.5.1 Multi-Targeting Pack (Version: 4.5.50932)
Microsoft .NET Framework 4.5.1 SDK (Version: 4.5.51641)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft ASP.NET and Web Tools 2013.1 - Visual Studio Express 2013 for Web (Version: 2.1.41009.0)
Microsoft ASP.NET MVC 4 - Visual Studio Express 2013 for Web - ENU (Version: 4.1.21001.0)
Microsoft ASP.NET MVC 4 Runtime (Version: 4.0.20716.0)
Microsoft ASP.NET Web Frameworks and Tools - Visual Studio Express 2013 for Web - ENU (Version: 5.0.11001.0)
Microsoft ASP.NET Web Pages 2 - Visual Studio Express 2013 for Web - ENU (Version: 4.1.21001.0)
Microsoft ASP.NET Web Pages 2 Runtime (Version: 2.0.20716.0)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft Help Viewer 2.1 (Version: 2.1.21005)
Microsoft NuGet - Visual Studio Express 2013 for Web (Version: 2.7.40911.287)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Backward compatibility (Version: 8.05.1054)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.51.2500.0)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (Version: 4.0.8876.1)
Microsoft SQL Server System CLR Types (Version: 10.51.2500.0)
Microsoft Team Foundation Server 2013 Object Model (x64) (Version: 12.0.21005)
Microsoft Team Foundation Server 2013 Object Model Language Pack (x64) - ENU (Version: 12.0.21005)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (Version: 11.0.60610.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (Version: 11.0.60610.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (Version: 11.0.60610)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (Version: 12.0.21005)
Microsoft Visual C++ 2013 x64 Debug Runtime - 12.0.21005 (Version: 12.0.21005)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (Version: 12.0.21005)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (Version: 12.0.21005)
Microsoft Visual C++ 2013 x86 Debug Runtime - 12.0.21005 (Version: 12.0.21005)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (Version: 12.0.21005)
Microsoft Visual J# 2.0 Redistributable Package
Microsoft Visual J# 2.0 Redistributable Package (Version: 2.0.50727)
Microsoft Visual Studio 2010 Shell (Isolated) - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2013 Express Prerequisites x64 - ENU (Version: 12.0.21005)
Microsoft Visual Studio 2013 Preparation (Version: 12.0.21005)
Microsoft Visual Studio 2013 Shell (Minimum) (Version: 12.0.21005)
Microsoft Visual Studio 2013 Shell (Minimum) Interop Assemblies (Version: 12.0.21005)
Microsoft Visual Studio 2013 Shell (Minimum) Resources (Version: 12.0.21005)
Microsoft Visual Studio 2013 Team Explorer Language Pack - ENU (Version: 12.0.21005)
Microsoft Visual Studio Express 2013 for Web - ENU (Version: 12.0.21005)
Microsoft Visual Studio Express 2013 for Web - ENU (Version: 12.0.21005.13)
Microsoft Visual Studio Ultimate 2013 XAML UI Designer Core (Version: 12.0.21005)
Microsoft Visual Studio Ultimate 2013 XAML UI Designer enu Resources (Version: 12.0.21005)
Microsoft Web Deploy 3.5 (Version: 3.1237.1762)
Microsoft Web Platform Installer 4.6 (Version: 4.0.40719.0)
MotoHelper MergeModules (Version: 1.2.0)
Motorola Device Manager (Version: 2.4.3)
Motorola Device Software Update (Version: 13.07.3101)
Motorola Mobile Drivers Installation 6.2.0 (Version: 6.2.0)
Movie Rotator 1.2
Mp3 Cutter and Joiner 1.0
Mp3tag v2.55a (Version: v2.55a)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
MuseScore 1.3 (Version: 1.3.0)
MyFreeCodec
Nortel VPN Client (Version: 10.04.108)
NTRU TCG Software Stack (Version: 2.1.34)
NVIDIA 3D Vision Driver 296.79 (Version: 296.79)
NVIDIA Control Panel 296.79 (Version: 296.79)
NVIDIA Graphics Driver 296.79 (Version: 296.79)
NVIDIA HD Audio Driver 1.3.12.0 (Version: 1.3.12.0)
NVIDIA Install Application (Version: 2.1002.62.312)
NVIDIA nView 136.28 (Version: 136.28)
NVIDIA nView Desktop Manager (Version: 6.14.10.12152)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.9679)
ocr (Version: 6.2.3.50)
Oracle VM VirtualBox 4.3.2 (Version: 4.3.2)
PC-CCID (Version: 2.0.0)
PhotoShowExpress (Version: 2.0.063)
Picasa 3 (Version: 3.9)
Pik (Version: 0.3.0)
Preboot Manager (Version: 03.03.00.049)
PreReq (Version: 6.2.4.0)
Prerequisites for SSDT  (Version: 11.1.3000.0)
Private Information Manager (Version: 07.01.00.007)
QuickTime (Version: 7.74.80.86)
RBVirtualFolder64Inst (Version: 1.00.0000)
Reader 2.1 (Version: 2.1.2.1143)
Roadkil's Unstoppable Copier Version 5.2
Roxio Activation Module (Version: 1.0)
Roxio BackOnTrack (Version: 1.3.3)
Roxio Burn (Version: 1.8)
Roxio Creator Starter (Version: 1.0.439)
Roxio Creator Starter (Version: 12.1.77.0)
Roxio Creator Starter (Version: 5.0.0)
Roxio Express Labeler 3 (Version: 3.2.2)
Roxio File Backup (Version: 1.3.2)
Samsung Kies (Version: 2.6.1.13105_6)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.29.0)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Sonic CinePlayer Decoder Pack (Version: 4.3.0)
SPBA 5.9 (Version: 5.9.4.6686)
Sublime Text 2.0.2
Team Explorer for Microsoft Visual Studio 2013 (Version: 12.0.21005)
Trusted Drive Manager (Version: 4.0.0.512)
UltraEdit 16.20 (Version: 16.20.10)
UltraVNC 1.0.8.2 (Version: 1.0.8.2)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition
Upek Touchchip Fingerprint Reader (Version: 1.2.004)
Use the entry named LeapFrog Connect to uninstall (LeapFrog My Pals Plugin)
Visual Basic for Applications (R) Core - English (Version: 6.4.99.69)
Visual Basic for Applications (R) Core (Version: 6.4.99.69)
Visual Studio 2010 Prerequisites - English (Version: 10.0.40219)
VLC media player 2.0.3 (Version: 2.0.3)
Wave Infrastructure Installer (Version: 07.66.40.0008)
Wave Support Software Installer (Version: 05.13.00.014)
WIDCOMM Bluetooth Software (Version: 6.3.0.6900)
Windows Azure Authoring Tools - v2.2 (Version: 2.2.6492.2)
Windows Azure Emulator - v2.2 (Version: 2.2.6492.2)
Windows Azure Shared Components for Microsoft Visual Studio 2013 - v1.0 (Version: 1.0.10930.1602)
Windows Driver Package - Dell Inc. PBADRV System  (09/11/2009 1.0.1.6) (Version: 09/11/2009 1.0.1.6)
Windows Driver Package - Leapfrog (Leapfrog-USBLAN) Net  (09/10/2009 02.03.05.012) (Version: 09/10/2009 02.03.05.012)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
WinFF 1.4.2
WinPcap 4.1.2 (Version: 4.1.0.2001)
Wireshark 1.8.6 (64-bit) (Version: 1.8.6)
Yahoo! Detect
YNAB 4 version 4.3.352 (Version: 4.3.352)

========================= Memory info: ===================================

Percentage of memory in use: 52%
Total physical RAM: 4021.83 MB
Available physical RAM: 1900.44 MB
Total Pagefile: 8041.84 MB
Available Pagefile: 5740.08 MB
Total Virtual: 4095.88 MB
Available Virtual: 3965.65 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:146.28 GB) (Free:24.41 GB) NTFS
2 Drive d: (READER) (Fixed) (Total:2 GB) (Free:1.86 GB) NTFS

========================= Users: ========================================

User accounts for \\E6410_IMAGE

Administrator            GR_Olson                 Guest                    
User                     


**** End of log ****

TDSSKiller:

23:07:51.0721 0x1b64  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
23:08:17.0900 0x1b64  ============================================================
23:08:17.0900 0x1b64  Current date / time: 2013/12/21 23:08:17.0900
23:08:17.0900 0x1b64  SystemInfo:
23:08:17.0900 0x1b64  
23:08:17.0900 0x1b64  OS Version: 6.1.7601 ServicePack: 1.0
23:08:17.0900 0x1b64  Product type: Workstation
23:08:17.0900 0x1b64  ComputerName: E6410_IMAGE
23:08:17.0900 0x1b64  UserName: GR_Olson
23:08:17.0900 0x1b64  Windows directory: C:\Windows
23:08:17.0900 0x1b64  System windows directory: C:\Windows
23:08:17.0900 0x1b64  Running under WOW64
23:08:17.0900 0x1b64  Processor architecture: Intel x64
23:08:17.0900 0x1b64  Number of processors: 4
23:08:17.0900 0x1b64  Page size: 0x1000
23:08:17.0900 0x1b64  Boot type: Normal boot
23:08:17.0900 0x1b64  ============================================================
23:08:24.0956 0x1b64  KLMD registered as C:\Windows\system32\drivers\04356202.sys
23:08:26.0157 0x1b64  System UUID: {F6F35D11-D769-B85E-45BF-97DF3AD62C17}
23:08:27.0332 0x1b64  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
23:08:27.0348 0x1b64  ============================================================
23:08:27.0348 0x1b64  \Device\Harddisk0\DR0:
23:08:27.0348 0x1b64  MBR partitions:
23:08:27.0348 0x1b64  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x178000
23:08:27.0348 0x1b64  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x18C000, BlocksNum 0x1248E000
23:08:27.0410 0x1b64  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1261A800, BlocksNum 0x3FD800
23:08:27.0410 0x1b64  ============================================================
23:08:27.0488 0x1b64  C: <-> \Device\Harddisk0\DR0\Partition2
23:08:27.0550 0x1b64  D: <-> \Device\Harddisk0\DR0\Partition3
23:08:27.0550 0x1b64  ============================================================
23:08:27.0550 0x1b64  Initialize success
23:08:27.0550 0x1b64  ============================================================
23:08:53.0782 0x1288  ============================================================
23:08:53.0782 0x1288  Scan started
23:08:53.0782 0x1288  Mode: Manual; 
23:08:53.0782 0x1288  ============================================================
23:08:53.0782 0x1288  KSN ping started
23:08:56.0563 0x1288  KSN ping finished: true
23:08:58.0845 0x1288  ================ Scan system memory ========================
23:08:58.0845 0x1288  System memory - ok
23:08:58.0845 0x1288  ================ Scan services =============================
23:08:59.0657 0x1288  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
23:08:59.0657 0x1288  1394ohci - ok
23:08:59.0797 0x1288  [ 627371B2D48F64CECC4D019114FB140D, B91698550BD899C208CC57F1ABE00D530D9FDC4559E3E1C0A04A27E7D4C7CE9D ] Acceler         C:\Windows\system32\DRIVERS\Accelern.sys
23:08:59.0797 0x1288  Acceler - ok
23:08:59.0922 0x1288  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
23:08:59.0937 0x1288  ACPI - ok
23:09:00.0078 0x1288  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
23:09:00.0078 0x1288  AcpiPmi - ok
23:09:00.0993 0x1288  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
23:09:00.0993 0x1288  AdobeARMservice - ok
23:09:01.0117 0x1288  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
23:09:01.0133 0x1288  adp94xx - ok
23:09:01.0227 0x1288  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
23:09:01.0273 0x1288  adpahci - ok
23:09:01.0336 0x1288  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
23:09:01.0351 0x1288  adpu320 - ok
23:09:01.0398 0x1288  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
23:09:01.0398 0x1288  AeLookupSvc - ok
23:09:01.0554 0x1288  [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
23:09:01.0554 0x1288  AESTFilters - ok
23:09:01.0695 0x1288  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
23:09:01.0726 0x1288  AFD - ok
23:09:01.0804 0x1288  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
23:09:01.0804 0x1288  agp440 - ok
23:09:01.0866 0x1288  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
23:09:01.0866 0x1288  ALG - ok
23:09:02.0116 0x1288  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
23:09:02.0116 0x1288  aliide - ok
23:09:02.0178 0x1288  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
23:09:02.0178 0x1288  amdide - ok
23:09:02.0225 0x1288  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
23:09:02.0241 0x1288  AmdK8 - ok
23:09:02.0272 0x1288  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
23:09:02.0272 0x1288  AmdPPM - ok
23:09:02.0448 0x1288  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
23:09:02.0464 0x1288  amdsata - ok
23:09:02.0495 0x1288  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
23:09:02.0511 0x1288  amdsbs - ok
23:09:02.0526 0x1288  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
23:09:02.0526 0x1288  amdxata - ok
23:09:02.0651 0x1288  [ 8655A2983A86D6675135B1FF6892055D, 1A983C11987138A606E2E1E87E353F27BA69832B6881071315886878ECBD27E1 ] ApfiltrService  C:\Windows\system32\DRIVERS\Apfiltr.sys
23:09:02.0667 0x1288  ApfiltrService - ok
23:09:02.0776 0x1288  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
23:09:02.0792 0x1288  AppID - ok
23:09:02.0885 0x1288  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
23:09:02.0885 0x1288  AppIDSvc - ok
23:09:03.0197 0x1288  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
23:09:03.0213 0x1288  Appinfo - ok
23:09:03.0556 0x1288  [ A5299D04ED225D64CF07A568A3E1BF8C, 6F7E73893127BADC8C9815E9BCC0EB5F6584E254D0D09A0B6A680704C71E0A90 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
23:09:03.0556 0x1288  Apple Mobile Device - ok
23:09:03.0696 0x1288  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
23:09:03.0712 0x1288  AppMgmt - ok
23:09:03.0852 0x1288  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
23:09:03.0852 0x1288  arc - ok
23:09:03.0884 0x1288  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
23:09:03.0899 0x1288  arcsas - ok
23:09:04.0305 0x1288  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
23:09:04.0305 0x1288  aspnet_state - ok
23:09:04.0403 0x1288  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
23:09:04.0403 0x1288  AsyncMac - ok
23:09:04.0528 0x1288  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
23:09:04.0528 0x1288  atapi - ok
23:09:04.0840 0x1288  [ D1E47D207BC716DBF3A4CA018015D3DE, 937FDB00C48F8E9E1BA5DBCD6EC55B634617D157222F00BFB032448730C22E33 ] atashost        C:\Windows\SysWOW64\atashost.exe
23:09:04.0840 0x1288  atashost - ok
23:09:05.0027 0x1288  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
23:09:05.0059 0x1288  AudioEndpointBuilder - ok
23:09:05.0074 0x1288  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
23:09:05.0074 0x1288  AudioSrv - ok
23:09:05.0183 0x1288  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
23:09:05.0183 0x1288  AxInstSV - ok
23:09:05.0308 0x1288  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
23:09:05.0339 0x1288  b06bdrv - ok
23:09:05.0449 0x1288  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
23:09:05.0464 0x1288  b57nd60a - ok
23:09:05.0620 0x1288  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
23:09:05.0620 0x1288  BDESVC - ok
23:09:05.0683 0x1288  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
23:09:05.0683 0x1288  Beep - ok
23:09:06.0073 0x1288  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
23:09:06.0104 0x1288  BFE - ok
23:09:06.0229 0x1288  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
23:09:06.0244 0x1288  BITS - ok
23:09:06.0338 0x1288  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
23:09:06.0338 0x1288  blbdrive - ok
23:09:06.0416 0x1288  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
23:09:06.0416 0x1288  bowser - ok
23:09:06.0447 0x1288  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
23:09:06.0447 0x1288  BrFiltLo - ok
23:09:06.0494 0x1288  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
23:09:06.0494 0x1288  BrFiltUp - ok
23:09:06.0603 0x1288  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
23:09:06.0603 0x1288  BridgeMP - ok
23:09:06.0728 0x1288  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
23:09:06.0743 0x1288  Browser - ok
23:09:06.0806 0x1288  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
23:09:06.0821 0x1288  Brserid - ok
23:09:06.0853 0x1288  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
23:09:06.0853 0x1288  BrSerWdm - ok
23:09:06.0868 0x1288  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
23:09:06.0868 0x1288  BrUsbMdm - ok
23:09:06.0884 0x1288  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
23:09:06.0884 0x1288  BrUsbSer - ok
23:09:06.0946 0x1288  BTCFilterService - ok
23:09:07.0087 0x1288  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
23:09:07.0087 0x1288  BthEnum - ok
23:09:07.0133 0x1288  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
23:09:07.0149 0x1288  BTHMODEM - ok
23:09:07.0227 0x1288  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
23:09:07.0243 0x1288  BthPan - ok
23:09:07.0414 0x1288  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
23:09:07.0430 0x1288  BTHPORT - ok
23:09:07.0477 0x1288  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
23:09:07.0477 0x1288  bthserv - ok
23:09:07.0508 0x1288  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
23:09:07.0508 0x1288  BTHUSB - ok
23:09:07.0601 0x1288  [ 72CC5DCC4E67E7927F94801166CFDCDA, 2D86D3B1F0C96CA41283AE30D0856BA5B3D6155609F5EEA930E73C611DE254DC ] BTWAMPFL        C:\Windows\system32\DRIVERS\btwampfl.sys
23:09:07.0617 0x1288  BTWAMPFL - ok
23:09:07.0679 0x1288  [ F6135859A582A7294BA7A3336E08BAA1, DE30457F91C25950C2713CE3A2AE1F1EFFBB068DD3B0BCC87700E7CBAF73C818 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
23:09:07.0695 0x1288  btwaudio - ok
23:09:07.0789 0x1288  [ 3DEF2370E414B4E299673558BA171A51, 5A0923D9F941ABD34EC9BEE0EB62A62F135CBF128061239CC6EA0E6752791636 ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
23:09:07.0789 0x1288  btwavdt - ok
23:09:07.0913 0x1288  [ 36E3016BEDC45274E00E2943B591AEEF, D569925A87D924AA8079DE89D6F8EF68B64D90997110999258F718714C5D926B ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
23:09:07.0945 0x1288  btwdins - ok
23:09:07.0976 0x1288  [ 07096D2BC22CCB6CEA5A532DF0BE8A75, A9B7F2EFFDF1E4EC0A5DC098F0ED2BE44E271844A4F1CBAD2FA1655DE1E03F6E ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
23:09:07.0976 0x1288  btwl2cap - ok
23:09:08.0054 0x1288  [ 9937E0E4DFC0030560A6DFE9D3A94B39, 0B9CF1932D4534BD7B1F5D7B7BD5FBF9C8D156838D24ABBDE475E79EEF1150F1 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
23:09:08.0054 0x1288  btwrchid - ok
23:09:08.0132 0x1288  [ 9887CA12F407D7FBC7F48F3678F5F0B6, 1EA21563AE990CE4EF407AB349DE5A66CB93CD7602FE6E450E119ADF0343914E ] BVRPMPR5a64     C:\Windows\system32\drivers\BVRPMPR5a64.SYS
23:09:08.0132 0x1288  BVRPMPR5a64 - ok
23:09:08.0163 0x1288  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
23:09:08.0163 0x1288  cdfs - ok
23:09:08.0990 0x1288  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
23:09:09.0068 0x1288  cdrom - ok
23:09:09.0224 0x1288  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
23:09:09.0239 0x1288  CertPropSvc - ok
23:09:09.0302 0x1288  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
23:09:09.0317 0x1288  circlass - ok
23:09:09.0411 0x1288  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
23:09:09.0427 0x1288  CLFS - ok
23:09:09.0614 0x1288  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
23:09:09.0614 0x1288  clr_optimization_v2.0.50727_32 - ok
23:09:09.0770 0x1288  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
23:09:09.0785 0x1288  clr_optimization_v2.0.50727_64 - ok
23:09:09.0988 0x1288  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
23:09:09.0988 0x1288  clr_optimization_v4.0.30319_32 - ok
23:09:10.0051 0x1288  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
23:09:10.0066 0x1288  clr_optimization_v4.0.30319_64 - ok
23:09:10.0144 0x1288  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
23:09:10.0144 0x1288  CmBatt - ok
23:09:10.0207 0x1288  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
23:09:10.0207 0x1288  cmdide - ok
23:09:10.0347 0x1288  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
23:09:10.0363 0x1288  CNG - ok
23:09:10.0441 0x1288  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
23:09:10.0441 0x1288  Compbatt - ok
23:09:10.0690 0x1288  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
23:09:10.0690 0x1288  CompositeBus - ok
23:09:10.0721 0x1288  COMSysApp - ok
23:09:10.0924 0x1288  [ 2CCC97E81FFB6263A038709D3D28DD48, 43DCA5CC406DF29E8BA9D2C358A3126A581A950A575824471A2A7E7A1E14E799 ] CrashPlanService C:\Program Files\CrashPlan\CrashPlanService.exe
23:09:11.0065 0x1288  CrashPlanService - ok
23:09:11.0096 0x1288  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
23:09:11.0096 0x1288  crcdisk - ok
23:09:11.0267 0x1288  [ 6E163FAAF624A03A88DFD92E607DE6E5, B78A46A3A0677B596639EB92BE6574EAD9D9503F3E4F454295606456CECFA46A ] Credential Vault Host Control Service C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe
23:09:11.0408 0x1288  Credential Vault Host Control Service - ok
23:09:11.0423 0x1288  [ 8884B4D345DDB029F43AD2E7ADD54A30, 14308D0BB171912588AC18B28A8F60AA88529897A19BFA40D3320F9407CC1B19 ] Credential Vault Host Storage C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe
23:09:11.0439 0x1288  Credential Vault Host Storage - ok
23:09:11.0501 0x1288  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
23:09:11.0501 0x1288  CryptSvc - ok
23:09:11.0611 0x1288  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
23:09:11.0626 0x1288  CSC - ok
23:09:11.0813 0x1288  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
23:09:11.0845 0x1288  CscService - ok
23:09:12.0079 0x1288  [ BA8E5B2291C01EF71CA80E25F0C79D55, 913C85EC00752AEEE2E29C6664085865DA45A091789C0F8CB015208D69F1915A ] ctxusbm         C:\Windows\system32\DRIVERS\ctxusbm.sys
23:09:12.0079 0x1288  ctxusbm - ok
23:09:12.0125 0x1288  [ A84CAAE89B487931200B969D94018AFA, 6984F3CF4E78B20350E5C09F16DE412D0232E202BD8DF86B9623F25CD154ED95 ] cvusbdrv        C:\Windows\system32\Drivers\cvusbdrv.sys
23:09:12.0125 0x1288  cvusbdrv - ok
23:09:12.0188 0x1288  [ 7B1BD6550017F7C8E21B291D99625EDC, 35FDE4693E4E8CE7038EACBCBF9E9CD428AF5D072DD019A443503E28AD592264 ] Cwbrxd          C:\Windows\cwbrxd.exe
23:09:12.0344 0x1288  Cwbrxd - ok
23:09:13.0233 0x1288  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
23:09:13.0249 0x1288  DcomLaunch - ok
23:09:13.0373 0x1288  [ 230BFB96A86AB29DA6DEB234F8985D34, B60FA89DD360E9EC56FD0412314316E76FB6C4103F6656267E237F390E416D6A ] dcpsysmgrsvc    c:\Program Files\Dell\Dell System Manager\DCPSysMgrSvc.exe
23:09:13.0389 0x1288  dcpsysmgrsvc - ok
23:09:13.0498 0x1288  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
23:09:13.0498 0x1288  defragsvc - ok
23:09:13.0592 0x1288  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
23:09:13.0607 0x1288  DfsC - ok
23:09:13.0701 0x1288  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
23:09:13.0717 0x1288  Dhcp - ok
23:09:13.0763 0x1288  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
23:09:13.0763 0x1288  discache - ok
23:09:13.0826 0x1288  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
23:09:13.0841 0x1288  Disk - ok
23:09:13.0904 0x1288  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
23:09:13.0904 0x1288  Dnscache - ok
23:09:13.0997 0x1288  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
23:09:14.0013 0x1288  dot3svc - ok
23:09:14.0122 0x1288  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
23:09:14.0122 0x1288  DPS - ok
23:09:14.0231 0x1288  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
23:09:14.0231 0x1288  drmkaud - ok
23:09:14.0325 0x1288  [ AD00375D9ABA8DB72D0E38129AF0277A, 317EC9A096F4476A7809926E3F8D0E39FB3ABAB1F7726739FFCB93668101AC6A ] DVMIO           D:\Program Files (x86)\Dell\Reader 2.1\dvmio_x64.sys
23:09:14.0341 0x1288  DVMIO - ok
23:09:14.0481 0x1288  [ 6F0952F5A3C8D9E90DF1F88B84541145, 55818BCE974D7BCDBD9DE03CE214477C15C085876BBE2AA3B984805F8E61A564 ] DvmMDES         D:\Program Files (x86)\Dell\Reader 2.1\DVMExportService.exe
23:09:14.0590 0x1288  DvmMDES - ok
23:09:14.0746 0x1288  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
23:09:14.0762 0x1288  DXGKrnl - ok
23:09:14.0840 0x1288  [ 60C5B36E07BE8B3AF3911C3D10303CFE, AD34AC7BD929AF1864768156E7C0FA2997E9EB44EB8DEAEB160EB55A082C2C5A ] e1kexpress      C:\Windows\system32\DRIVERS\e1k62x64.sys
23:09:14.0840 0x1288  e1kexpress - ok
23:09:14.0933 0x1288  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
23:09:14.0980 0x1288  EapHost - ok
23:09:15.0511 0x1288  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
23:09:15.0589 0x1288  ebdrv - ok
23:09:15.0651 0x1288  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
23:09:15.0651 0x1288  EFS - ok
23:09:15.0823 0x1288  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
23:09:15.0838 0x1288  ehRecvr - ok
23:09:15.0901 0x1288  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
23:09:15.0901 0x1288  ehSched - ok
23:09:16.0010 0x1288  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
23:09:16.0025 0x1288  elxstor - ok
23:09:16.0088 0x1288  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
23:09:16.0088 0x1288  ErrDev - ok
23:09:16.0181 0x1288  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
23:09:16.0197 0x1288  EventSystem - ok
23:09:16.0447 0x1288  [ BDFCB7E8C108D042B213957D2B044E7E, 2840637123E40ACEB6F78A618C7C230B62388C36C49D5AD9BE795A1063FA5845 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
23:09:16.0571 0x1288  EvtEng - ok
23:09:16.0649 0x1288  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
23:09:16.0665 0x1288  exfat - ok
23:09:16.0805 0x1288  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
23:09:16.0821 0x1288  fastfat - ok
23:09:16.0977 0x1288  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
23:09:16.0993 0x1288  Fax - ok
23:09:17.0039 0x1288  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
23:09:17.0039 0x1288  fdc - ok
23:09:17.0102 0x1288  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
23:09:17.0102 0x1288  fdPHost - ok
23:09:17.0117 0x1288  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
23:09:17.0117 0x1288  FDResPub - ok
23:09:17.0164 0x1288  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
23:09:17.0164 0x1288  FileInfo - ok
23:09:17.0195 0x1288  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
23:09:17.0195 0x1288  Filetrace - ok
23:09:17.0211 0x1288  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
23:09:17.0211 0x1288  flpydisk - ok
23:09:17.0289 0x1288  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
23:09:17.0305 0x1288  FltMgr - ok
23:09:17.0570 0x1288  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
23:09:17.0585 0x1288  FontCache - ok
23:09:17.0710 0x1288  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
23:09:17.0710 0x1288  FontCache3.0.0.0 - ok
23:09:17.0741 0x1288  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
23:09:17.0741 0x1288  FsDepends - ok
23:09:17.0835 0x1288  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
23:09:17.0835 0x1288  Fs_Rec - ok
23:09:17.0929 0x1288  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
23:09:17.0944 0x1288  fvevol - ok
23:09:18.0038 0x1288  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
23:09:18.0038 0x1288  gagp30kx - ok
23:09:18.0100 0x1288  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
23:09:18.0100 0x1288  GEARAspiWDM - ok
23:09:18.0225 0x1288  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
23:09:18.0241 0x1288  gpsvc - ok
23:09:18.0459 0x1288  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
23:09:18.0475 0x1288  gusvc - ok
23:09:18.0553 0x1288  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
23:09:18.0650 0x1288  hcw85cir - ok
23:09:18.0746 0x1288  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
23:09:18.0746 0x1288  HDAudBus - ok
23:09:18.0778 0x1288  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
23:09:18.0778 0x1288  HidBatt - ok
23:09:18.0809 0x1288  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
23:09:18.0809 0x1288  HidBth - ok
23:09:18.0871 0x1288  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
23:09:18.0871 0x1288  HidIr - ok
23:09:19.0074 0x1288  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
23:09:19.0214 0x1288  hidserv - ok
23:09:19.0855 0x1288  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
23:09:19.0855 0x1288  HidUsb - ok
23:09:19.0980 0x1288  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
23:09:19.0980 0x1288  hkmsvc - ok
23:09:20.0198 0x1288  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
23:09:20.0214 0x1288  HomeGroupListener - ok
23:09:20.0307 0x1288  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
23:09:20.0323 0x1288  HomeGroupProvider - ok
23:09:20.0416 0x1288  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
23:09:20.0416 0x1288  HpSAMD - ok
23:09:20.0619 0x1288  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
23:09:20.0635 0x1288  HTTP - ok
23:09:20.0760 0x1288  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
23:09:20.0760 0x1288  hwpolicy - ok
23:09:20.0822 0x1288  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
23:09:20.0822 0x1288  i8042prt - ok
23:09:21.0181 0x1288  [ ABBF174CB394F5C437410A788B7E404A, 95554F675329E7062F0936E4E902FEFF2456CAD95D6C9B60DCC213EF6E4C62D8 ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
23:09:21.0196 0x1288  iaStor - ok
23:09:21.0368 0x1288  [ 31A0E93CDF29007D6C6FFFB632F375ED, CA464928E9868B9A09C324DBBC8DA41A01C5C486B43578FC695250D523DE555B ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
23:09:21.0368 0x1288  IAStorDataMgrSvc - ok
23:09:21.0524 0x1288  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
23:09:21.0555 0x1288  iaStorV - ok
23:09:22.0023 0x1288  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
23:09:22.0039 0x1288  idsvc - ok
23:09:22.0070 0x1288  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
23:09:22.0070 0x1288  iirsp - ok
23:09:22.0366 0x1288  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
23:09:22.0382 0x1288  IKEEXT - ok
23:09:22.0444 0x1288  [ 36FDF367A1DABFF903E2214023D71368, 60468692C1D048428AF25ED87DE23DAE756C7BA2B6CF6AF5EFD2E53C80F5FC68 ] Impcd           C:\Windows\system32\DRIVERS\Impcd.sys
23:09:22.0444 0x1288  Impcd - ok
23:09:22.0678 0x1288  [ A4A87C2F228DD2AC93DAE94E103792D3, 22F75A82DA293B9ED6B9EB564A06FFFFDAA9E1FB0B60AC4A479B17E1BD77F1F8 ] InstallFilterService C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\InstallFilterService.exe
23:09:23.0599 0x1288  InstallFilterService - ok
23:09:23.0677 0x1288  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
23:09:23.0677 0x1288  intelide - ok
23:09:23.0739 0x1288  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
23:09:23.0739 0x1288  intelppm - ok
23:09:23.0802 0x1288  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
23:09:23.0911 0x1288  IPBusEnum - ok
23:09:24.0051 0x1288  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
23:09:24.0051 0x1288  IpFilterDriver - ok
23:09:24.0212 0x1288  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
23:09:24.0345 0x1288  iphlpsvc - ok
23:09:24.0454 0x1288  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
23:09:24.0454 0x1288  IPMIDRV - ok
23:09:24.0501 0x1288  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
23:09:24.0516 0x1288  IPNAT - ok
23:09:24.0703 0x1288  [ 6E50CFA46527B39015B750AAD161C5CC, 93F99EF7771C56EBE41FBC0C668F686644FBDF94E31456D3F5A9A8AE2F70EAB6 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
23:09:24.0719 0x1288  iPod Service - ok
23:09:24.0750 0x1288  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
23:09:24.0750 0x1288  IRENUM - ok
23:09:24.0844 0x1288  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
23:09:24.0844 0x1288  isapnp - ok
23:09:24.0940 0x1288  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
23:09:24.0955 0x1288  iScsiPrt - ok
23:09:25.0174 0x1288  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
23:09:25.0189 0x1288  kbdclass - ok
23:09:25.0252 0x1288  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
23:09:25.0267 0x1288  kbdhid - ok
23:09:25.0299 0x1288  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
23:09:25.0314 0x1288  KeyIso - ok
23:09:25.0813 0x1288  [ 140692763A50BFFF322CDC076300587E, 4B6D9AE479EDDB429C1DE36406517FA65C2B3927B20792B3A27CEE05A6B7A3AB ] Kodak AiO Network Discovery Service C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
23:09:25.0829 0x1288  Kodak AiO Network Discovery Service - ok
23:09:26.0257 0x1288  [ E29F999616D7C08B0E91296908C47CAF, 285594B526A15911238B89E5FCBCFFA48A6C69CCC481918D2C474C6BB12869E6 ] Kodak AiO Status Monitor Service C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
23:09:26.0272 0x1288  Kodak AiO Status Monitor Service - ok
23:09:26.0345 0x1288  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
23:09:26.0347 0x1288  KSecDD - ok
23:09:26.0573 0x1288  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
23:09:26.0589 0x1288  KSecPkg - ok
23:09:26.0636 0x1288  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
23:09:26.0636 0x1288  ksthunk - ok
23:09:26.0687 0x1288  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
23:09:26.0687 0x1288  KtmRm - ok
23:09:26.0830 0x1288  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
23:09:26.0830 0x1288  LanmanServer - ok
23:09:27.0001 0x1288  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
23:09:27.0017 0x1288  LanmanWorkstation - ok
23:09:27.0719 0x1288  [ 70FB6254E29150A7A4A39FDFFD306C33, 23783F90F6A55B0FF506F6D11355F6E04DDFF66309EB029B155F4411B3CBB57A ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
23:09:27.0735 0x1288  LBTServ - ok
23:09:28.0842 0x1288  [ 32F1B95C60042F3D95FC8AB43559B3B1, 52652B1CE93C6B9DC12E56B5D4C44F45042901D89D21974BFE1D7116BFADEE74 ] LeapFrog Connect Device Service C:\Program Files (x86)\LeapFrog\LeapFrog Connect\CommandService.exe
23:09:29.0099 0x1288  LeapFrog Connect Device Service - ok
23:09:29.0270 0x1288  [ 1470EF17E02E82E4F43346DF9E9F11E1, 052D5D71F08B17ECA6013F9908369D101186429BA8B4F9D900BEE5B883A867F9 ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
23:09:29.0270 0x1288  LHidFilt - ok
23:09:29.0317 0x1288  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
23:09:29.0317 0x1288  lltdio - ok
23:09:29.0406 0x1288  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
23:09:29.0406 0x1288  lltdsvc - ok
23:09:29.0468 0x1288  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
23:09:29.0468 0x1288  lmhosts - ok
23:09:29.0515 0x1288  [ 12814AE119E959437BEA3110F81BD188, 277A9AA641E8C70F4611B1AA0D7C998547BF109FDB117A4F2C0328663D4D7D71 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
23:09:29.0515 0x1288  LMouFilt - ok
23:09:30.0605 0x1288  [ 2098AF12149789FA6608422C8796F77C, 600772098454156ECC9CD7633BD503FC3FA3124C991B6AE4EF6BE6FD3EDE5ADA ] LNSUSvc         C:\Program Files (x86)\IBM\Lotus\Notes\SUService.exe
23:09:30.0715 0x1288  LNSUSvc - ok
23:09:31.0167 0x1288  [ E4FA829273FDF5BD20FC9804FD5F9C20, 8BBFCB4308EED3926462101739AF44B9A0D82BD7721D9D5DA54E8DF23C981BCC ] Lotus Notes Diagnostics C:\Program Files (x86)\IBM\Lotus\Notes\nsd.exe
23:09:31.0494 0x1288  Lotus Notes Diagnostics - ok
23:09:31.0604 0x1288  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
23:09:31.0619 0x1288  LSI_FC - ok
23:09:31.0619 0x1288  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
23:09:31.0619 0x1288  LSI_SAS - ok
23:09:31.0635 0x1288  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
23:09:31.0635 0x1288  LSI_SAS2 - ok
23:09:31.0682 0x1288  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
23:09:31.0682 0x1288  LSI_SCSI - ok
23:09:31.0775 0x1288  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
23:09:31.0775 0x1288  luafv - ok
23:09:31.0994 0x1288  [ 1B963D79740B187795407CD03E2F7B4D, 8223B5B1A16661726D98C9D0086E0EE4DBA7FD4A4020021263B2295BCA70B518 ] McAfeeFramework C:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe
23:09:31.0994 0x1288  McAfeeFramework - ok
23:09:32.0040 0x1288  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
23:09:32.0040 0x1288  Mcx2Svc - ok
23:09:32.0056 0x1288  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
23:09:32.0056 0x1288  megasas - ok
23:09:32.0118 0x1288  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
23:09:32.0118 0x1288  MegaSR - ok
23:09:32.0212 0x1288  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
23:09:32.0212 0x1288  MMCSS - ok
23:09:32.0290 0x1288  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
23:09:32.0290 0x1288  Modem - ok
23:09:32.0352 0x1288  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
23:09:32.0352 0x1288  monitor - ok
23:09:32.0368 0x1288  motandroidusb - ok
23:09:32.0384 0x1288  motccgp - ok
23:09:32.0399 0x1288  motccgpfl - ok
23:09:32.0399 0x1288  motmodem - ok
23:09:32.0742 0x1288  [ 1BCB26A55B2E092FAA4DA01D9A3DE528, A4A00F6DAB0EB8AC750184221E19F6182DC8A4CAD87D1259DC15AAF7ACA82360 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
23:09:32.0883 0x1288  Motorola Device Manager - ok
23:09:32.0883 0x1288  MotoSwitchService - ok
23:09:32.0898 0x1288  Motousbnet - ok
23:09:32.0976 0x1288  motusbdevice - ok
23:09:33.0086 0x1288  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
23:09:33.0086 0x1288  mouclass - ok
23:09:33.0117 0x1288  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
23:09:33.0132 0x1288  mouhid - ok
23:09:33.0210 0x1288  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
23:09:33.0210 0x1288  mountmgr - ok
23:09:33.0881 0x1288  [ C6B88D62F20AC646C6BD5C032EC2FAF9, 111A07939F3C5A46F0C51B9D6F5C1D8478099E32EFD88BC260467109ADD975F8 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
23:09:33.0897 0x1288  MpFilter - ok
23:09:34.0100 0x1288  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
23:09:34.0100 0x1288  mpio - ok
23:09:34.0209 0x1288  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
23:09:34.0209 0x1288  mpsdrv - ok
23:09:34.0396 0x1288  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
23:09:34.0427 0x1288  MpsSvc - ok
23:09:34.0508 0x1288  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
23:09:34.0523 0x1288  MRxDAV - ok
23:09:34.0586 0x1288  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
23:09:34.0601 0x1288  mrxsmb - ok
23:09:34.0726 0x1288  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
23:09:34.0726 0x1288  mrxsmb10 - ok
23:09:34.0851 0x1288  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
23:09:34.0851 0x1288  mrxsmb20 - ok
23:09:34.0898 0x1288  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
23:09:34.0898 0x1288  msahci - ok
23:09:34.0929 0x1288  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
23:09:34.0944 0x1288  msdsm - ok
23:09:34.0991 0x1288  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
23:09:34.0991 0x1288  MSDTC - ok
23:09:35.0085 0x1288  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
23:09:35.0085 0x1288  Msfs - ok
23:09:35.0210 0x1288  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
23:09:35.0210 0x1288  mshidkmdf - ok
23:09:35.0288 0x1288  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
23:09:35.0288 0x1288  msisadrv - ok
23:09:35.0397 0x1288  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
23:09:35.0397 0x1288  MSiSCSI - ok
23:09:35.0412 0x1288  msiserver - ok
23:09:35.0490 0x1288  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
23:09:35.0490 0x1288  MSKSSRV - ok
23:09:35.0740 0x1288  [ 7675E15D1B2180745E4DA4D26AAD7385, 729AA6C610F67028CFFFF64B772FFA1CAE7581D37F8909BDA423D52AF85C92C8 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
23:09:35.0740 0x1288  MsMpSvc - ok
23:09:35.0834 0x1288  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
23:09:35.0849 0x1288  MSPCLOCK - ok
23:09:35.0880 0x1288  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
23:09:35.0896 0x1288  MSPQM - ok
23:09:36.0099 0x1288  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
23:09:36.0114 0x1288  MsRPC - ok
23:09:36.0177 0x1288  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
23:09:36.0177 0x1288  mssmbios - ok
23:09:36.0224 0x1288  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
23:09:36.0224 0x1288  MSTEE - ok
23:09:36.0270 0x1288  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
23:09:36.0270 0x1288  MTConfig - ok
23:09:36.0364 0x1288  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
23:09:36.0364 0x1288  Mup - ok
23:09:36.0489 0x1288  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
23:09:36.0489 0x1288  napagent - ok
23:09:36.0754 0x1288  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
23:09:36.0770 0x1288  NativeWifiP - ok
23:09:37.0082 0x1288  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
23:09:37.0097 0x1288  NDIS - ok
23:09:37.0206 0x1288  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
23:09:37.0206 0x1288  NdisCap - ok
23:09:37.0284 0x1288  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
23:09:37.0284 0x1288  NdisTapi - ok
23:09:37.0347 0x1288  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
23:09:37.0347 0x1288  Ndisuio - ok
23:09:37.0409 0x1288  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
23:09:37.0409 0x1288  NdisWan - ok
23:09:37.0487 0x1288  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
23:09:37.0487 0x1288  NDProxy - ok
23:09:37.0581 0x1288  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
23:09:37.0581 0x1288  Net Driver HPZ12 - ok
23:09:37.0722 0x1288  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
23:09:37.0722 0x1288  NetBIOS - ok
23:09:37.0816 0x1288  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
23:09:37.0831 0x1288  NetBT - ok
23:09:37.0863 0x1288  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
23:09:37.0863 0x1288  Netlogon - ok
23:09:37.0956 0x1288  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
23:09:37.0972 0x1288  Netman - ok
23:09:38.0050 0x1288  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:09:38.0065 0x1288  NetMsmqActivator - ok
23:09:38.0065 0x1288  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:09:38.0081 0x1288  NetPipeActivator - ok
23:09:38.0206 0x1288  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
23:09:38.0237 0x1288  netprofm - ok
23:09:38.0237 0x1288  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:09:38.0237 0x1288  NetTcpActivator - ok
23:09:38.0253 0x1288  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
23:09:38.0253 0x1288  NetTcpPortSharing - ok
23:09:39.0564 0x1288  [ EB43840BABF5589E33186D094DE7381D, 028750D33516773258FEA120FE4108A2EEA3FC6FEC49C6B2C1926F57858173AC ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
23:09:39.0829 0x1288  NETwNs64 - ok
23:09:40.0110 0x1288  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
23:09:40.0110 0x1288  nfrd960 - ok
23:09:40.0313 0x1288  [ ACE8C64C57E4A711473C8BC10ADF692B, 53D8083CE78DB5527080B4570AC28ABAA262667744A319707AE0C46E46B297F9 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
23:09:40.0313 0x1288  NisDrv - ok
23:09:40.0547 0x1288  [ 6247E8B31ED0A9D6BC5A26276E49BEB3, 230C0C560492C454B9EB14B50EB4A78DC74FAB6B662449A0EA3114B3E671BFF3 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
23:09:40.0859 0x1288  NisSrv - ok
23:09:41.0498 0x1288  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
23:09:41.0561 0x1288  NlaSvc - ok
23:09:41.0732 0x1288  [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] NPF             C:\Windows\system32\drivers\npf.sys
23:09:41.0732 0x1288  NPF - ok
23:09:41.0795 0x1288  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
23:09:41.0810 0x1288  Npfs - ok
23:09:41.0842 0x1288  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
23:09:41.0842 0x1288  nsi - ok
23:09:41.0873 0x1288  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
23:09:41.0873 0x1288  nsiproxy - ok
23:09:42.0138 0x1288  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
23:09:42.0200 0x1288  Ntfs - ok
23:09:42.0294 0x1288  [ B1E0C3B8DA8AC3EB7763881F5608C059, 6ECF1786080497B53B81F46F306D92070AC0831DA5D9ADD475D2F612B31F709B ] NT_NvcA         C:\Windows\system32\DRIVERS\ntnvca.sys
23:09:42.0310 0x1288  NT_NvcA - ok
23:09:42.0341 0x1288  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
23:09:42.0341 0x1288  Null - ok
23:09:42.0512 0x1288  [ D027196CED4A5011405D9A0574ABEFB5, AC4713F35357C8B524B56153BDBEA85D58253FD4747111E23DD4106FE7EEEAF7 ] NvcSvcMgr       C:\Program Files (x86)\Nortel\Nortel VPN Client\NvcSvcMgr.exe
23:09:42.0590 0x1288  NvcSvcMgr - ok
23:09:42.0700 0x1288  [ 60655E464793B00B8E25E5DCA88C5CAF, 5CD398391F3249B75BF6102E4B761C7F5B1A47B05CF9F987CDA1C05B53CB0E36 ] nvcwfpco        C:\Windows\system32\DRIVERS\nvcwfpco.sys
23:09:42.0746 0x1288  nvcwfpco - ok
23:09:42.0856 0x1288  [ 8D4AAC74B571FC356560E5B308955E93, C7F74F40D708D590EDB5D2ED064CF9C279FB1EBE33EDED073391E4D5E1CEE046 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
23:09:42.0871 0x1288  NVHDA - ok
23:09:44.0338 0x1288  [ 368D7CA6309634E8D9B82C36723EE293, 4C6D4398362895E174B0D4D010ACEE2DB103F7ED89830891DE473661A5034DF4 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
23:09:44.0774 0x1288  nvlddmkm - ok
23:09:44.0868 0x1288  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
23:09:44.0868 0x1288  nvraid - ok
23:09:44.0946 0x1288  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
23:09:44.0962 0x1288  nvstor - ok
23:09:45.0102 0x1288  [ 23946D1E72925D973FB7FD9BADEFBAFB, 206483C62C95F0B6A890DE4D02566EDA62F9363F61CC902796371EE64A145DDD ] nvsvc           C:\Windows\system32\nvvsvc.exe
23:09:45.0133 0x1288  nvsvc - ok
23:09:45.0274 0x1288  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
23:09:45.0289 0x1288  nv_agp - ok
23:09:45.0367 0x1288  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
23:09:45.0383 0x1288  ohci1394 - ok
23:09:45.0492 0x1288  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
23:09:45.0492 0x1288  ose - ok
23:09:45.0960 0x1288  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
23:09:46.0100 0x1288  osppsvc - ok
23:09:46.0194 0x1288  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
23:09:46.0241 0x1288  p2pimsvc - ok
23:09:46.0288 0x1288  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
23:09:46.0303 0x1288  p2psvc - ok
23:09:46.0459 0x1288  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
23:09:46.0475 0x1288  Parport - ok
23:09:46.0537 0x1288  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
23:09:46.0537 0x1288  partmgr - ok
23:09:46.0646 0x1288  [ 363B3F857ABEE85767E01E3044C539CD, F6CB6C4B5B206E75BC8EB125363B1A095BA24FCC997A10605D59FCE44BA8651C ] PBADRV          C:\Windows\system32\DRIVERS\PBADRV.sys
23:09:46.0646 0x1288  PBADRV - ok
23:09:46.0693 0x1288  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
23:09:46.0709 0x1288  PcaSvc - ok
23:09:46.0756 0x1288  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
23:09:46.0771 0x1288  pci - ok
23:09:46.0818 0x1288  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
23:09:46.0818 0x1288  pciide - ok
23:09:46.0849 0x1288  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
23:09:46.0865 0x1288  pcmcia - ok
23:09:46.0896 0x1288  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
23:09:46.0896 0x1288  pcw - ok
23:09:46.0990 0x1288  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
23:09:47.0036 0x1288  PEAUTH - ok
23:09:47.0224 0x1288  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
23:09:47.0255 0x1288  PeerDistSvc - ok
23:09:47.0723 0x1288  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
23:09:47.0723 0x1288  PerfHost - ok
23:09:48.0097 0x1288  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
23:09:48.0128 0x1288  pla - ok
23:09:48.0222 0x1288  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
23:09:48.0253 0x1288  PlugPlay - ok
23:09:48.0269 0x1288  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
23:09:48.0269 0x1288  Pml Driver HPZ12 - ok
23:09:48.0378 0x1288  [ A010F13D27C1033A8BE09D5FA9BF348B, 5536A233554C469F270046ADEE12A158F70E2D8BE776BAD0925235B015567D46 ] pneteth         C:\Windows\system32\DRIVERS\pneteth.sys
23:09:48.0378 0x1288  pneteth - ok
23:09:48.0456 0x1288  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
23:09:48.0456 0x1288  PNRPAutoReg - ok
23:09:48.0534 0x1288  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
23:09:48.0550 0x1288  PNRPsvc - ok
23:09:48.0690 0x1288  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
23:09:48.0706 0x1288  PolicyAgent - ok
23:09:48.0799 0x1288  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
23:09:48.0799 0x1288  Power - ok
23:09:48.0893 0x1288  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
23:09:48.0893 0x1288  PptpMiniport - ok
23:09:48.0924 0x1288  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
23:09:48.0940 0x1288  Processor - ok
23:09:49.0064 0x1288  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
23:09:49.0080 0x1288  ProfSvc - ok
23:09:49.0111 0x1288  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
23:09:49.0111 0x1288  ProtectedStorage - ok
23:09:49.0252 0x1288  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
23:09:49.0267 0x1288  Psched - ok
23:09:49.0673 0x1288  [ EA735BF6DF13A857A83C99BF27A422AD, 026A57155FB9E01CFAFD8613980CDF0F3D744ABBBC66EFDC6C20B89980FB45CF ] PST Service     C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
23:09:49.0860 0x1288  PST Service - ok
23:09:50.0032 0x1288  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
23:09:50.0032 0x1288  PxHlpa64 - ok
23:09:50.0234 0x1288  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
23:09:50.0266 0x1288  ql2300 - ok
23:09:50.0422 0x1288  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
23:09:50.0422 0x1288  ql40xx - ok
23:09:50.0500 0x1288  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
23:09:50.0515 0x1288  QWAVE - ok
23:09:50.0531 0x1288  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
23:09:50.0531 0x1288  QWAVEdrv - ok
23:09:50.0593 0x1288  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
23:09:50.0593 0x1288  RasAcd - ok
23:09:50.0734 0x1288  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
23:09:50.0749 0x1288  RasAgileVpn - ok
23:09:50.0796 0x1288  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
23:09:50.0968 0x1288  RasAuto - ok
23:09:51.0139 0x1288  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
23:09:51.0139 0x1288  Rasl2tp - ok
23:09:51.0451 0x1288  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
23:09:51.0467 0x1288  RasMan - ok
23:09:51.0514 0x1288  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
23:09:51.0779 0x1288  RasPppoe - ok
23:09:52.0372 0x1288  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
23:09:52.0372 0x1288  RasSstp - ok
23:09:52.0559 0x1288  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
23:09:52.0574 0x1288  rdbss - ok
23:09:52.0606 0x1288  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
23:09:52.0606 0x1288  rdpbus - ok
23:09:52.0637 0x1288  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
23:09:52.0637 0x1288  RDPCDD - ok
23:09:52.0699 0x1288  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
23:09:52.0715 0x1288  RDPDR - ok
23:09:52.0746 0x1288  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
23:09:52.0746 0x1288  RDPENCDD - ok
23:09:52.0777 0x1288  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
23:09:52.0777 0x1288  RDPREFMP - ok
23:09:52.0918 0x1288  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
23:09:52.0918 0x1288  RDPWD - ok
23:09:53.0042 0x1288  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
23:09:53.0058 0x1288  rdyboost - ok
23:09:53.0198 0x1288  [ A6BAEA839CC888D4961AB5FE16BB8C4A, A3DD50446BEDAE38A3DA8AC9809F3BCE95EA418C2DEF5DB433DB614591C6B51B ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
23:09:53.0230 0x1288  RegSrvc - ok
23:09:53.0276 0x1288  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
23:09:53.0276 0x1288  RemoteAccess - ok
23:09:53.0370 0x1288  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
23:09:53.0386 0x1288  RemoteRegistry - ok
23:09:53.0479 0x1288  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
23:09:53.0479 0x1288  RFCOMM - ok
23:09:53.0526 0x1288  [ 3DCA561AAF776AA2E356FB5B142AA5F8, E11F6776F02A09D64FDBB23D7169AB5467E0D8684AACB3D7CA8FAC42F3A02677 ] rimspci         C:\Windows\system32\DRIVERS\rimspe64.sys
23:09:53.0526 0x1288  rimspci - ok
23:09:53.0557 0x1288  [ 91C2AE052652E7ABD88155F11D667ED2, 3BF841DA9B1941A1B7EC688E59EFC22767A4871973546CCCE45ECAD183F473B6 ] risdpcie        C:\Windows\system32\DRIVERS\risdpe64.sys
23:09:53.0557 0x1288  risdpcie - ok
23:09:53.0604 0x1288  [ A4579105A3C5B6290701EAD0C153E07A, C1070C93309FBD3D67E8BAFDF2B8FFE83D4F877396B21816F8AAC0FDE68335CC ] rixdpcie        C:\Windows\system32\DRIVERS\rixdpe64.sys
23:09:53.0604 0x1288  rixdpcie - ok
23:09:53.0854 0x1288  [ 3C957189B31C34D3AD21967B12B6AED7, 878FE6EA03F60592D6D557B905A5119E2CC836C2A6A86ED2867C3C9B0F0FDBA2 ] RoxMediaDB12OEM C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe
23:09:53.0885 0x1288  RoxMediaDB12OEM - ok
23:09:53.0947 0x1288  [ 2B73088CC2CA757A172B425C9398E5BC, 3D296B4D6F66F7729CC48FE54456E6E6D8207DBA7E31D66653566C128E53163B ] RoxWatch12      C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe
23:09:53.0947 0x1288  RoxWatch12 - ok
23:09:54.0104 0x1288  [ B60F58F175DE20A6739194E85B035178, 6E66D6041AF0B69896E4556F9FF3A3AA70CF4B09FFBE68E14E60313C5E3FFDDB ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
23:09:54.0120 0x1288  rpcapd - ok
23:09:54.0151 0x1288  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
23:09:54.0151 0x1288  RpcEptMapper - ok
23:09:54.0182 0x1288  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
23:09:54.0182 0x1288  RpcLocator - ok
23:09:54.0401 0x1288  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\System32\rpcss.dll
23:09:54.0432 0x1288  RpcSs - ok
23:09:54.0525 0x1288  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
23:09:54.0525 0x1288  rspndr - ok
23:09:54.0619 0x1288  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
23:09:54.0619 0x1288  s3cap - ok
23:09:54.0635 0x1288  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
23:09:54.0635 0x1288  SamSs - ok
23:09:54.0681 0x1288  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
23:09:54.0681 0x1288  sbp2port - ok
23:09:54.0728 0x1288  SBRE - ok
23:09:54.0853 0x1288  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
23:09:54.0869 0x1288  SCardSvr - ok
23:09:54.0931 0x1288  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
23:09:54.0931 0x1288  scfilter - ok
23:09:55.0118 0x1288  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
23:09:55.0149 0x1288  Schedule - ok
23:09:55.0212 0x1288  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
23:09:55.0212 0x1288  SCPolicySvc - ok
23:09:55.0337 0x1288  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
23:09:55.0337 0x1288  sdbus - ok
23:09:55.0415 0x1288  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
23:09:55.0415 0x1288  SDRSVC - ok
23:09:55.0461 0x1288  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
23:09:55.0461 0x1288  secdrv - ok
23:09:55.0555 0x1288  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
23:09:55.0555 0x1288  seclogon - ok
23:09:55.0883 0x1288  [ F3D951071C624137430FE65A67541EF9, 13B4465F51F48A69BBF682ACC8E2E4D6837090A8DEACEF4B413D7D478C539253 ] SecureStorageService C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Secure Storage Manager\SecureStorageService.exe
23:09:56.0475 0x1288  SecureStorageService - ok
23:09:56.0522 0x1288  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
23:09:56.0538 0x1288  SENS - ok
23:09:56.0569 0x1288  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
23:09:56.0569 0x1288  SensrSvc - ok
23:09:56.0600 0x1288  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
23:09:56.0600 0x1288  Serenum - ok
23:09:56.0663 0x1288  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
23:09:56.0663 0x1288  Serial - ok
23:09:56.0709 0x1288  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
23:09:56.0709 0x1288  sermouse - ok
23:09:56.0772 0x1288  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
23:09:56.0787 0x1288  SessionEnv - ok
23:09:56.0850 0x1288  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
23:09:56.0850 0x1288  sffdisk - ok
23:09:56.0881 0x1288  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
23:09:56.0881 0x1288  sffp_mmc - ok
23:09:56.0897 0x1288  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
23:09:56.0897 0x1288  sffp_sd - ok
23:09:56.0975 0x1288  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
23:09:56.0975 0x1288  sfloppy - ok
23:09:57.0037 0x1288  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
23:09:57.0037 0x1288  SharedAccess - ok
23:09:57.0115 0x1288  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
23:09:57.0131 0x1288  ShellHWDetection - ok
23:09:57.0162 0x1288  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
23:09:57.0162 0x1288  SiSRaid2 - ok
23:09:57.0193 0x1288  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
23:09:57.0193 0x1288  SiSRaid4 - ok
23:09:57.0255 0x1288  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
23:09:57.0255 0x1288  Smb - ok
23:09:57.0318 0x1288  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
23:09:57.0333 0x1288  SNMPTRAP - ok
23:09:57.0365 0x1288  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
23:09:57.0380 0x1288  spldr - ok
23:09:57.0630 0x1288  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
23:09:57.0645 0x1288  Spooler - ok
23:09:58.0129 0x1288  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
23:09:58.0191 0x1288  sppsvc - ok
23:09:58.0332 0x1288  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
23:09:58.0332 0x1288  sppuinotify - ok
23:09:58.0519 0x1288  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
23:09:58.0550 0x1288  srv - ok
23:09:58.0644 0x1288  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
23:09:58.0644 0x1288  srv2 - ok
23:09:58.0675 0x1288  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
23:09:58.0675 0x1288  srvnet - ok
23:09:58.0722 0x1288  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
23:09:58.0722 0x1288  SSDPSRV - ok
23:09:58.0769 0x1288  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
23:09:58.0769 0x1288  SstpSvc - ok
23:09:58.0909 0x1288  [ 82611146BAE413CD44A66B8DA6DA9945, 91DB8A7571F42E801F90A961D169FDE6F11F99A04DA90B683A9199AB5D7DB2B3 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
23:09:58.0909 0x1288  STacSV - ok
23:09:59.0018 0x1288  [ C568FDB21CE77A44FD166F28F104AC46, 5D8675CE501EF9CE637FFBBC945E09184D54CF206BC3480B15170E50BCA43D6F ] stdflt          C:\Windows\system32\DRIVERS\stdfltn.sys
23:09:59.0018 0x1288  stdflt - ok
23:09:59.0113 0x1288  [ 02A7183FEBD44D54BFC98D166D091FF5, D143FDDF2A2B561E5370B9C685DDD93CA880640CB5272A1AC55C16BB61783A1E ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
23:09:59.0128 0x1288  Stereo Service - ok
23:09:59.0222 0x1288  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
23:09:59.0222 0x1288  stexstor - ok
23:09:59.0331 0x1288  [ 7F43422BEE65CD1284FED6C4FA577D5E, D5C79DB2651FAA4598B24401BBC35D7C2875AC04A95CA8009D0B7DB1F0DB28BE ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
23:09:59.0347 0x1288  STHDA - ok
23:09:59.0394 0x1288  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
23:09:59.0394 0x1288  StillCam - ok
23:09:59.0581 0x1288  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
23:09:59.0596 0x1288  stisvc - ok
23:09:59.0706 0x1288  [ 7731F46EC0D687A931CBA063E8F90EF0, 5CF996A209756B901316C4406C7D3E52ECC9C15A1BDB0D4D9C77846AB29FD040 ] stllssvr        C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
23:09:59.0752 0x1288  stllssvr - ok
23:09:59.0799 0x1288  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
23:09:59.0815 0x1288  storflt - ok
23:09:59.0830 0x1288  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
23:09:59.0846 0x1288  StorSvc - ok
23:09:59.0877 0x1288  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
23:09:59.0893 0x1288  storvsc - ok
23:09:59.0971 0x1288  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
23:09:59.0971 0x1288  swenum - ok
23:10:00.0064 0x1288  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
23:10:00.0080 0x1288  swprv - ok
23:10:00.0408 0x1288  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
23:10:00.0439 0x1288  SysMain - ok
23:10:00.0548 0x1288  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
23:10:00.0548 0x1288  TabletInputService - ok
23:10:00.0657 0x1288  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
23:10:00.0673 0x1288  TapiSrv - ok
23:10:00.0688 0x1288  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
23:10:00.0688 0x1288  TBS - ok
23:10:00.0860 0x1288  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
23:10:00.0907 0x1288  Tcpip - ok
23:10:01.0016 0x1288  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
23:10:01.0047 0x1288  TCPIP6 - ok
23:10:01.0297 0x1288  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
23:10:01.0297 0x1288  tcpipreg - ok
23:10:01.0484 0x1288  [ E42D560E2163480E7B586B14ABEB3386, CA400CA4A9358740D811AAEEE016F3A162F8A9AC1EF2B718203C83945C234EF2 ] tcsd_win32.exe  C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
23:10:01.0687 0x1288  tcsd_win32.exe - ok
23:10:03.0340 0x1288  [ 347D6407C90C0B6AC82F8249EBA9A482, 4F94878A4E2D30D437274003B640CD62CCC165E222B82635523B88EB451888FF ] TdmService      C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmService.exe
23:10:03.0512 0x1288  TdmService - ok
23:10:03.0808 0x1288  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
23:10:03.0808 0x1288  TDPIPE - ok
23:10:03.0949 0x1288  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
23:10:03.0949 0x1288  TDTCP - ok
23:10:04.0152 0x1288  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
23:10:04.0152 0x1288  tdx - ok
23:10:04.0261 0x1288  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
23:10:04.0261 0x1288  TermDD - ok
23:10:04.0432 0x1288  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
23:10:04.0448 0x1288  TermService - ok
23:10:04.0510 0x1288  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
23:10:04.0526 0x1288  Themes - ok
23:10:04.0573 0x1288  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
23:10:04.0573 0x1288  THREADORDER - ok
23:10:04.0620 0x1288  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
23:10:04.0620 0x1288  TrkWks - ok
23:10:04.0791 0x1288  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
23:10:04.0807 0x1288  TrustedInstaller - ok
23:10:04.0869 0x1288  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
23:10:04.0885 0x1288  tssecsrv - ok
23:10:04.0994 0x1288  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
23:10:05.0010 0x1288  TsUsbFlt - ok
23:10:05.0228 0x1288  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
23:10:05.0228 0x1288  tunnel - ok
23:10:05.0262 0x1288  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
23:10:05.0262 0x1288  uagp35 - ok
23:10:05.0340 0x1288  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
23:10:05.0340 0x1288  udfs - ok
23:10:05.0433 0x1288  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
23:10:05.0433 0x1288  UI0Detect - ok
23:10:05.0543 0x1288  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
23:10:05.0543 0x1288  uliagpkx - ok
23:10:05.0761 0x1288  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\drivers\umbus.sys
23:10:06.0323 0x1288  umbus - ok
23:10:06.0369 0x1288  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
23:10:06.0650 0x1288  UmPass - ok
23:10:06.0759 0x1288  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
23:10:06.0775 0x1288  UmRdpService - ok
23:10:06.0900 0x1288  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
23:10:06.0915 0x1288  upnphost - ok
23:10:07.0040 0x1288  [ AF1B9474D67897D0C2CFF58E0ACEACCC, 5ED9836EC7BEEB6706C327EF199E9B674863ED8C83890DDE5E5A6554C2DA5288 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
23:10:07.0040 0x1288  USBAAPL64 - ok
23:10:07.0134 0x1288  [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
23:10:07.0134 0x1288  usbccgp - ok
23:10:07.0243 0x1288  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
23:10:07.0243 0x1288  usbcir - ok
23:10:07.0337 0x1288  [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci         C:\Windows\system32\drivers\usbehci.sys
23:10:07.0337 0x1288  usbehci - ok
23:10:07.0383 0x1288  [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
23:10:07.0399 0x1288  usbhub - ok
23:10:07.0430 0x1288  [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci         C:\Windows\system32\drivers\usbohci.sys
23:10:07.0430 0x1288  usbohci - ok
23:10:07.0477 0x1288  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
23:10:07.0477 0x1288  usbprint - ok
23:10:07.0539 0x1288  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
23:10:07.0555 0x1288  USBSTOR - ok
23:10:07.0633 0x1288  [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
23:10:07.0633 0x1288  usbuhci - ok
23:10:07.0664 0x1288  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
23:10:07.0680 0x1288  UxSms - ok
23:10:07.0711 0x1288  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
23:10:07.0711 0x1288  VaultSvc - ok
23:10:07.0914 0x1288  [ A901A0731ED54A17599220AEB2FD9C1E, FF96D820723B073129798C02F9760C22BD8C78EA73DA40973D90989134A3454C ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
23:10:07.0929 0x1288  VBoxDrv - ok
23:10:08.0007 0x1288  [ EEE2FFB3B099FEC69DBD0C860E5BF703, 2019DE97016F406DC980AAD4480F96EA4AA816787C506FE0005A62C7CE65EA03 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
23:10:08.0023 0x1288  VBoxNetAdp - ok
23:10:08.0070 0x1288  [ B2903902D15F3C4CBFAEF3580230EF4A, 864474724C58889C4E7B98C6F294BA3DA1F8D1EE313E0082ECC505ADB133E7E5 ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
23:10:08.0085 0x1288  VBoxNetFlt - ok
23:10:08.0163 0x1288  [ 3C29E78375DBA1FEC3394580336F15C8, A67352098F93E04C2AA4A41FBECF6773BFECA41EAA3FF576EAEBA540CF53CF8A ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
23:10:08.0179 0x1288  VBoxUSBMon - ok
23:10:08.0241 0x1288  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
23:10:08.0257 0x1288  vdrvroot - ok
23:10:08.0351 0x1288  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
23:10:08.0366 0x1288  vds - ok
23:10:08.0460 0x1288  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
23:10:08.0460 0x1288  vga - ok
23:10:08.0475 0x1288  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
23:10:08.0475 0x1288  VgaSave - ok
23:10:08.0553 0x1288  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
23:10:08.0553 0x1288  vhdmp - ok
23:10:08.0600 0x1288  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
23:10:08.0600 0x1288  viaide - ok
23:10:08.0663 0x1288  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
23:10:08.0678 0x1288  vmbus - ok
23:10:08.0741 0x1288  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
23:10:08.0741 0x1288  VMBusHID - ok
23:10:08.0787 0x1288  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
23:10:08.0787 0x1288  volmgr - ok
23:10:08.0897 0x1288  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
23:10:08.0912 0x1288  volmgrx - ok
23:10:08.0975 0x1288  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
23:10:08.0990 0x1288  volsnap - ok
23:10:09.0177 0x1288  [ 9B4F6978628D07FAEBF77FF6F8F2960D, FC36FE6BE77445D55E4E92CE3EAF172E253EC8CF8D2EBCA204969CF21FFA5600 ] VsEtwService120 C:\Program Files (x86)\Microsoft Visual Studio 12.0\Common7\Packages\Debugger\Services\VsEtwService.exe
23:10:09.0209 0x1288  VsEtwService120 - ok
23:10:09.0302 0x1288  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
23:10:09.0302 0x1288  vsmraid - ok
23:10:09.0552 0x1288  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
23:10:09.0583 0x1288  VSS - ok
23:10:09.0630 0x1288  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
23:10:09.0630 0x1288  vwifibus - ok
23:10:09.0677 0x1288  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
23:10:09.0677 0x1288  vwififlt - ok
23:10:09.0755 0x1288  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
23:10:09.0770 0x1288  W32Time - ok
23:10:09.0801 0x1288  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
23:10:09.0817 0x1288  WacomPen - ok
23:10:09.0926 0x1288  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
23:10:09.0926 0x1288  WANARP - ok
23:10:09.0926 0x1288  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
23:10:09.0926 0x1288  Wanarpv6 - ok
23:10:10.0129 0x1288  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
23:10:10.0145 0x1288  WatAdminSvc - ok
23:10:10.0254 0x1288  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
23:10:10.0285 0x1288  wbengine - ok
23:10:10.0363 0x1288  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
23:10:10.0379 0x1288  WbioSrvc - ok
23:10:10.0566 0x1288  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
23:10:10.0597 0x1288  wcncsvc - ok
23:10:10.0628 0x1288  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
23:10:10.0644 0x1288  WcsPlugInService - ok
23:10:10.0706 0x1288  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
23:10:10.0737 0x1288  Wd - ok
23:10:10.0878 0x1288  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
23:10:10.0909 0x1288  Wdf01000 - ok
23:10:11.0439 0x1288  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
23:10:11.0439 0x1288  WdiServiceHost - ok
23:10:11.0455 0x1288  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
23:10:11.0455 0x1288  WdiSystemHost - ok
23:10:11.0549 0x1288  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
23:10:11.0549 0x1288  WebClient - ok
23:10:11.0580 0x1288  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
23:10:11.0595 0x1288  Wecsvc - ok
23:10:11.0627 0x1288  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
23:10:11.0627 0x1288  wercplsupport - ok
23:10:11.0845 0x1288  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
23:10:11.0845 0x1288  WerSvc - ok
23:10:11.0954 0x1288  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
23:10:11.0954 0x1288  WfpLwf - ok
23:10:12.0063 0x1288  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
23:10:12.0063 0x1288  WIMMount - ok
23:10:12.0141 0x1288  WinDefend - ok
23:10:12.0141 0x1288  WinHttpAutoProxySvc - ok
23:10:12.0375 0x1288  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
23:10:12.0375 0x1288  Winmgmt - ok
23:10:12.0687 0x1288  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
23:10:12.0734 0x1288  WinRM - ok
23:10:12.0812 0x1288  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
23:10:12.0812 0x1288  WinUsb - ok
23:10:12.0953 0x1288  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
23:10:12.0984 0x1288  Wlansvc - ok
23:10:13.0062 0x1288  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
23:10:13.0062 0x1288  wlcrasvc - ok
23:10:14.0544 0x1288  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
23:10:14.0637 0x1288  wlidsvc - ok
23:10:14.0762 0x1288  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
23:10:14.0762 0x1288  WmiAcpi - ok
23:10:14.0809 0x1288  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
23:10:14.0825 0x1288  wmiApSrv - ok
23:10:14.0903 0x1288  WMPNetworkSvc - ok
23:10:15.0074 0x1288  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
23:10:15.0074 0x1288  WPCSvc - ok
23:10:15.0168 0x1288  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
23:10:15.0183 0x1288  WPDBusEnum - ok
23:10:15.0230 0x1288  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
23:10:15.0230 0x1288  ws2ifsl - ok
23:10:15.0308 0x1288  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
23:10:15.0308 0x1288  wscsvc - ok
23:10:15.0480 0x1288  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
23:10:15.0480 0x1288  WSDPrintDevice - ok
23:10:15.0495 0x1288  WSearch - ok
23:10:15.0963 0x1288  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
23:10:16.0026 0x1288  wuauserv - ok
23:10:16.0088 0x1288  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
23:10:16.0088 0x1288  WudfPf - ok
23:10:16.0229 0x1288  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
23:10:16.0229 0x1288  WUDFRd - ok
23:10:16.0307 0x1288  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
23:10:16.0307 0x1288  wudfsvc - ok
23:10:16.0416 0x1288  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
23:10:16.0416 0x1288  WwanSvc - ok
23:10:16.0509 0x1288  ================ Scan global ===============================
23:10:16.0665 0x1288  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
23:10:17.0040 0x1288  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:10:17.0071 0x1288  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
23:10:17.0227 0x1288  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
23:10:17.0352 0x1288  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
23:10:17.0367 0x1288  [ Global ] - ok
23:10:17.0367 0x1288  ================ Scan MBR ==================================
23:10:17.0383 0x1288  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
23:10:17.0929 0x1288  \Device\Harddisk0\DR0 - ok
23:10:17.0929 0x1288  ================ Scan VBR ==================================
23:10:17.0945 0x1288  [ D6C96511235064BEE859153FC22C7057 ] \Device\Harddisk0\DR0\Partition1
23:10:17.0960 0x1288  \Device\Harddisk0\DR0\Partition1 - ok
23:10:17.0976 0x1288  [ 92623D7B1CA4881DF88F507C4AFD2E80 ] \Device\Harddisk0\DR0\Partition2
23:10:17.0976 0x1288  \Device\Harddisk0\DR0\Partition2 - ok
23:10:18.0023 0x1288  [ C80083557970E84BAE19D7179973D3A2 ] \Device\Harddisk0\DR0\Partition3
23:10:18.0023 0x1288  \Device\Harddisk0\DR0\Partition3 - ok
23:10:18.0023 0x1288  Waiting for KSN requests completion. In queue: 108
23:10:19.0037 0x1288  Waiting for KSN requests completion. In queue: 108
23:10:20.0051 0x1288  Waiting for KSN requests completion. In queue: 108
23:10:21.0065 0x1288  Waiting for KSN requests completion. In queue: 108
23:10:22.0080 0x1288  Waiting for KSN requests completion. In queue: 108
23:10:23.0095 0x1288  Waiting for KSN requests completion. In queue: 108
23:10:24.0202 0x1288  Waiting for KSN requests completion. In queue: 108
23:10:25.0216 0x1288  Waiting for KSN requests completion. In queue: 108
23:10:26.0217 0x1288  Waiting for KSN requests completion. In queue: 95
23:10:27.0236 0x1288  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.4.304.0 ), 0x61000 ( enabled : updated )
23:10:27.0243 0x1288  Win FW state via NFP2: enabled
23:10:29.0813 0x1288  ============================================================
23:10:29.0813 0x1288  Scan finished
23:10:29.0813 0x1288  ============================================================
23:10:29.0813 0x03a4  Detected object count: 0
23:10:29.0813 0x03a4  Actual detected object count: 0
23:11:59.0949 0x0934  Deinitialize success

ADWCleaner:

# AdwCleaner v3.015 - Report created 21/12/2013 at 23:13:33
# Updated 10/12/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : GR_Olson - E6410_IMAGE
# Running from : C:\Users\GR_Olson\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\blekko toolbars
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Folder Deleted : C:\Program Files (x86)\adawaretb
Folder Deleted : C:\Program Files (x86)\myfree codec
Folder Deleted : C:\Program Files (x86)\Toolbar Cleaner
Folder Deleted : C:\Users\GR_Olson\AppData\Local\PackageAware
Folder Deleted : C:\Users\GR_Olson\AppData\LocalLow\adawaretb

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\secman.DLL
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\adawarebp_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\adawarebp_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FD501041-8EBE-11CE-8183-00AA00577DA2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKLM\Software\DeviceVM
Key Deleted : HKLM\Software\Myfree Codec
Key Deleted : HKLM\Software\Toolbar Cleaner
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Toolbar Cleaner
Key Deleted : [x64] HKLM\SOFTWARE\DeviceVM

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16750


-\\ Google Chrome v

[ File : C:\Users\GR_Olson\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [3074 octets] - [21/12/2013 23:12:42]
AdwCleaner[S0].txt - [3021 octets] - [21/12/2013 23:13:33]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3081 octets] ##########

JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Professional x64
Ran by GR_Olson on Sat 12/21/2013 at 23:25:28.81
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Successfully deleted: [Empty Folder] C:\Users\GR_Olson\appdata\local\{6174D773-A439-49F0-B92D-F8411748525A}
Successfully deleted: [Empty Folder] C:\Users\GR_Olson\appdata\local\{90859EBC-6C26-44B2-A9F9-27B2C4CB58E7}
Successfully deleted: [Empty Folder] C:\Users\GR_Olson\appdata\local\{A9D155F9-6E34-4A70-8065-F48BAFC1E42E}
Successfully deleted: [Empty Folder] C:\Users\GR_Olson\appdata\local\{E0252F8C-10BE-4014-86D3-C09069D0CFCC}



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 12/21/2013 at 23:32:26.64
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Windows Repair:

Starting Repairs...
   Start (12/22/2013 12:17:13 AM)

01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (12/22/2013 12:17:13 AM)
   Running Repair Under Current User Account
   Done (12/22/2013 12:17:30 AM)

01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (12/22/2013 12:17:30 AM)
   Running Repair Under System Account
   Done (12/22/2013 12:19:01 AM)

01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (12/22/2013 12:19:01 AM)
   Running Repair Under System Account
   Done (12/22/2013 12:20:01 AM)

03 - Register System Files
   Start (12/22/2013 12:20:02 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:21:14 AM)

04 - Repair WMI
   Start (12/22/2013 12:21:15 AM)
   Running Repair Under Current User Account
   Done (12/22/2013 12:26:46 AM)

05 - Repair Windows Firewall
   Start (12/22/2013 12:26:46 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:27:24 AM)

06 - Repair Internet Explorer
   Start (12/22/2013 12:27:24 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:27:50 AM)

07 - Repair MDAC/MS Jet
   Start (12/22/2013 12:27:50 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:28:01 AM)

08 - Repair Hosts File
   Start (12/22/2013 12:28:01 AM)
   Running Repair Under System Account
   Done (12/22/2013 12:28:04 AM)

09 - Remove Policies Set By Infections
   Start (12/22/2013 12:28:04 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:28:08 AM)

11 - Repair Icons
   Start (12/22/2013 12:28:08 AM)
   Running Repair Under System Account
   Done (12/22/2013 12:28:11 AM)

12 - Repair Winsock & DNS Cache
   Start (12/22/2013 12:28:11 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:28:26 AM)

14 - Repair Proxy Settings
   Start (12/22/2013 12:28:26 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:28:30 AM)

16 - Repair Windows Updates
   Start (12/22/2013 12:28:30 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:28:52 AM)

17 - Repair CD/DVD Missing/Not Working
   Start (12/22/2013 12:28:52 AM)
   Done (12/22/2013 12:28:52 AM)

18 - Repair Volume Shadow Copy Service
   Start (12/22/2013 12:28:52 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:28:56 AM)

20 - Repair MSI (Windows Installer)
   Start (12/22/2013 12:28:57 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:08 AM)

22.01 - Repair bat Association
   Start (12/22/2013 12:29:08 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:12 AM)

22.02 - Repair cmd Association
   Start (12/22/2013 12:29:12 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:17 AM)

22.03 - Repair com Association
   Start (12/22/2013 12:29:17 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:22 AM)

22.04 - Repair Directory Association
   Start (12/22/2013 12:29:22 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:27 AM)

22.05 - Repair Drive Association
   Start (12/22/2013 12:29:27 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:31 AM)

22.06 - Repair exe Association
   Start (12/22/2013 12:29:31 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:36 AM)

22.07 - Repair Folder Association
   Start (12/22/2013 12:29:36 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:41 AM)

22.08 - Repair inf Association
   Start (12/22/2013 12:29:41 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:45 AM)

22.09 - Repair lnk (Shortcuts) Association
   Start (12/22/2013 12:29:45 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:50 AM)

22.10 - Repair msc Association
   Start (12/22/2013 12:29:50 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:29:55 AM)

22.11 - Repair reg Association
   Start (12/22/2013 12:29:55 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:30:00 AM)

22.12 - Repair scr Association
   Start (12/22/2013 12:30:00 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:30:04 AM)

23 - Repair Windows Safe Mode
   Start (12/22/2013 12:30:04 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:30:09 AM)

24 - Repair Print Spooler
   Start (12/22/2013 12:30:09 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:30:24 AM)

25 - Restore Important Windows Services
   Start (12/22/2013 12:30:24 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:30:29 AM)

26 - Set Windows Services To Default Startup
   Start (12/22/2013 12:30:29 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (12/22/2013 12:30:38 AM)

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

Cleaning up empty logs...

All Selected Repairs Done.
   Done (12/22/2013 12:30:38 AM)
   Total Repair Time: 00:13:25


...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under Current User Account



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,329 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:18 PM

Posted 24 December 2013 - 11:28 PM

So how is it now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 jessman1128

jessman1128
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:11:18 AM

Posted 25 December 2013 - 04:06 AM

Exactly the same. Ok, maybe a little worse. Definitely not any better.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users