Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

I Think im infected


  • Please log in to reply
19 replies to this topic

#1 Upgrayeddz

Upgrayeddz

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:10:40 PM

Posted 26 December 2013 - 05:19 PM

I been having issues with my computer slowing down terribly when ever i load and stream videos or games. I have done just about everything. I did whole computer scan including locked files and it showed that they were over 100 infected but low risk but AVG wouldn't dispose of the threats because of how low risk they were. I looked into the problem with AVG and they said to redo the scan without including the locked files and that showed that my computer was clean, but it still does not perform as it should. I have use malware programs jrt scannow pc boost software and nothing has helped. If there is anything I can do to help solve this issue is would be greatly appreciated.



BC AdBot (Login to Remove)

 


#2 Upgrayeddz

Upgrayeddz
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:10:40 PM

Posted 26 December 2013 - 06:15 PM

http://www.bleepingcomputer.com/forums/t/518596/multiple-com-surragate-slowing-down-computer/

This is where i started



#3 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:06:40 AM

Posted 26 December 2013 - 06:32 PM

Please download TDSSKiller exe version to your desktop. Double-click on TDSSKiller.exe to run the tool for known TDSS variants. Vista/Windows 7 users right-click and select Run As Administrator.

  •     Click on Change Parameters and click Detect TDLFS File System.
  •     Click the Start Scan button.
  •     Do not use the computer during the scan
  •     If the scan completes with nothing found, click Close to exit.
  •     If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  •     Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
  •     Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  •     A TDSSKiller text file would be saved in Local Disk C.
  •     Copy and paste the contents of that file in your next reply.
ADW Cleaner


Please download AdwCleaner by Xplode onto your desktop.
  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Clean.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[S1].txt as well.
Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
Please download Farbar Service Scanner (FSS) and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.


#4 Upgrayeddz

Upgrayeddz
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:10:40 PM

Posted 28 December 2013 - 01:53 PM

Farbar Service Scanner Version: 05-12-2013
Ran by JuanO (administrator) on 28-12-2013 at 10:52:34
Running from "C:\Users\JuanO\Downloads"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============
wuauserv Service is not running. Checking service configuration:
The start type of wuauserv service is set to Demand. The default start type is Auto.
The ImagePath of wuauserv service is OK.
The ServiceDll of wuauserv service is OK.


Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============

Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll
[2013-08-22 05:25] - [2013-08-22 05:25] - 0029184 ____A (Microsoft Corporation) 6E2271ED0C3E95B8E29F3752B91B9E84

C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys
[2013-12-10 12:11] - [2013-12-10 12:11] - 2551640 ____A (Microsoft Corporation) 6617F44D2432C529B2249A0498B6B40A

C:\Windows\System32\dnsrslvr.dll
[2013-12-10 12:11] - [2013-12-10 12:11] - 0255488 ____A (Microsoft Corporation) 5BAF7714E68F93515A937A3FA8587EF9

C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll
[2013-12-10 12:09] - [2013-12-10 12:09] - 0828416 ____A (Microsoft Corporation) 6468B696C65775D51A06615830E0E79D

C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll
[2013-12-10 12:11] - [2013-12-10 12:11] - 3532288 ____A (Microsoft Corporation) 86D0BF4F792053A50D6EE43DFA5837A5

C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MsMpEng.exe => MD5 is legit
C:\Windows\System32\ipnathlp.dll
[2013-12-10 12:11] - [2013-12-10 12:11] - 0433664 ____A (Microsoft Corporation) F4414F57DF2CECB8FC969AA43A6B0D50

C:\Windows\System32\iphlpsvc.dll
[2013-12-10 12:11] - [2013-12-10 12:11] - 0903168 ____A (Microsoft Corporation) DFC4050D58565ADBEE793A8D4AEBDAE6

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****



#5 Upgrayeddz

Upgrayeddz
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:10:40 PM

Posted 29 December 2013 - 03:56 PM

# AdwCleaner v3.016 - Report created 29/12/2013 at 12:54:39
# Updated 23/12/2013 by Xplode
# Operating System : Windows 8.1  (64 bits)
# Username : JuanO - JUAN
# Running from : C:\Users\JuanO\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16384


-\\ Mozilla Firefox v26.0 (en-US)

[ File : C:\Users\JuanO\AppData\Roaming\Mozilla\Firefox\Profiles\eu9xr92j.default\prefs.js ]


*************************

AdwCleaner[R0].txt - [10889 octets] - [24/12/2013 11:02:53]
AdwCleaner[R1].txt - [922 octets] - [27/12/2013 17:19:57]
AdwCleaner[R2].txt - [726 octets] - [29/12/2013 12:54:39]
AdwCleaner[S0].txt - [10826 octets] - [24/12/2013 11:03:11]
AdwCleaner[S1].txt - [986 octets] - [27/12/2013 17:20:42]

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [905 octets] ##########
 



#6 Upgrayeddz

Upgrayeddz
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:10:40 PM

Posted 29 December 2013 - 03:59 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 8.1 x64
Ran by JuanO on Sun 12/29/2013 at 12:57:27.22
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values
 



#7 Upgrayeddz

Upgrayeddz
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:10:40 PM

Posted 29 December 2013 - 04:02 PM

12:57:46.0266 0x0878  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
12:57:46.0266 0x0878  UEFI system
12:57:51.0095 0x0878  ============================================================
12:57:51.0095 0x0878  Current date / time: 2013/12/29 12:57:51.0095
12:57:51.0095 0x0878  SystemInfo:
12:57:51.0095 0x0878  
12:57:51.0095 0x0878  OS Version: 6.3.9600 ServicePack: 0.0
12:57:51.0095 0x0878  Product type: Workstation
12:57:51.0095 0x0878  ComputerName: JUAN
12:57:51.0095 0x0878  UserName: JuanO
12:57:51.0095 0x0878  Windows directory: C:\WINDOWS
12:57:51.0095 0x0878  System windows directory: C:\WINDOWS
12:57:51.0095 0x0878  Running under WOW64
12:57:51.0095 0x0878  Processor architecture: Intel x64
12:57:51.0095 0x0878  Number of processors: 4
12:57:51.0095 0x0878  Page size: 0x1000
12:57:51.0095 0x0878  Boot type: Normal boot
12:57:51.0095 0x0878  ============================================================
12:57:51.0610 0x0878  KLMD registered as C:\WINDOWS\system32\drivers\97960926.sys
12:57:51.0923 0x0878  System UUID: {ACD8C3D6-2508-F6CD-9356-20FAC76E04B2}
12:57:52.0861 0x0878  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:57:52.0939 0x0878  ============================================================
12:57:52.0939 0x0878  \Device\Harddisk0\DR0:
12:57:52.0986 0x0878  GPT partitions:
12:57:53.0001 0x0878  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {FDC145A6-DE01-4CE8-95C0-5C25B61511E1}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xC8000
12:57:53.0001 0x0878  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {738BAC23-2CA2-461D-8B47-302D8AB70FAD}, Name: EFI system partition, StartLBA 0xC8800, BlocksNum 0x96000
12:57:53.0001 0x0878  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {3A5B3B74-8FC8-4481-BBF7-B33C387AA9D1}, Name: Microsoft reserved partition, StartLBA 0x15E800, BlocksNum 0x40000
12:57:53.0001 0x0878  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {172DBA10-E88E-4A8F-B81B-F207C7D36B88}, Name: Basic data partition, StartLBA 0x19E800, BlocksNum 0x70EB9000
12:57:53.0001 0x0878  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {F8D1DD53-CC93-4ED9-A125-80124368FC41}, Name: , StartLBA 0x71057800, BlocksNum 0xAF000
12:57:53.0001 0x0878  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {7936B3C7-0E00-4CCD-86E9-B5B6690EE93A}, Name: Basic data partition, StartLBA 0x71106800, BlocksNum 0x3600000
12:57:53.0001 0x0878  MBR partitions:
12:57:53.0001 0x0878  ============================================================
12:57:53.0001 0x0878  C: <-> \Device\Harddisk0\DR0\Partition4
12:57:53.0001 0x0878  ============================================================
12:57:53.0001 0x0878  Initialize success
12:57:53.0001 0x0878  ============================================================
12:58:04.0375 0x0fa4  ============================================================
12:58:04.0375 0x0fa4  Scan started
12:58:04.0375 0x0fa4  Mode: Manual; SigCheck; TDLFS;
12:58:04.0375 0x0fa4  ============================================================
12:58:04.0375 0x0fa4  KSN ping started
12:58:06.0922 0x0fa4  KSN ping finished: true
12:58:07.0109 0x0fa4  ================ Scan system memory ========================
12:58:07.0109 0x0fa4  System memory - ok
12:58:07.0109 0x0fa4  ================ Scan services =============================
12:58:07.0203 0x0fa4  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
12:58:07.0265 0x0fa4  1394ohci - ok
12:58:07.0297 0x0fa4  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
12:58:07.0312 0x0fa4  3ware - ok
12:58:07.0359 0x0fa4  [ 3D30878A269D934100FA5F972E53AF39, 3D2D22D1A9D80DB94D6059C789FBD04DC945722B8644DF6DAA73D5713A10EC52 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
12:58:07.0375 0x0fa4  ACPI - ok
12:58:07.0406 0x0fa4  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
12:58:07.0406 0x0fa4  acpiex - ok
12:58:07.0422 0x0fa4  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
12:58:07.0453 0x0fa4  acpipagr - ok
12:58:07.0484 0x0fa4  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
12:58:07.0531 0x0fa4  AcpiPmi - ok
12:58:07.0547 0x0fa4  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
12:58:07.0562 0x0fa4  acpitime - ok
12:58:07.0609 0x0fa4  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:58:07.0625 0x0fa4  AdobeARMservice - ok
12:58:07.0703 0x0fa4  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:58:07.0703 0x0fa4  AdobeFlashPlayerUpdateSvc - ok
12:58:07.0734 0x0fa4  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
12:58:07.0750 0x0fa4  ADP80XX - ok
12:58:07.0797 0x0fa4  [ B19CA8E441D35AA2B1EE51C10B27DA1B, EBEB96EA44E665B2D4FCD1CC58621A20A17F036EA4A695340A2B65F94F69CDDC ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
12:58:07.0828 0x0fa4  AeLookupSvc - ok
12:58:07.0859 0x0fa4  [ 239268BAB58EAE9A3FF4E08334C00451, 13F927730DF9BAEDB3A7AB6F7238270A20E4CDEB3D5324A1C471DF2209F3D239 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
12:58:07.0906 0x0fa4  AFD - ok
12:58:07.0922 0x0fa4  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
12:58:07.0937 0x0fa4  agp440 - ok
12:58:07.0937 0x0fa4  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
12:58:08.0015 0x0fa4  ahcache - ok
12:58:08.0047 0x0fa4  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\WINDOWS\System32\alg.exe
12:58:08.0109 0x0fa4  ALG - ok
12:58:08.0125 0x0fa4  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
12:58:08.0187 0x0fa4  AmdK8 - ok
12:58:08.0203 0x0fa4  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
12:58:08.0219 0x0fa4  AmdPPM - ok
12:58:08.0234 0x0fa4  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
12:58:08.0250 0x0fa4  amdsata - ok
12:58:08.0265 0x0fa4  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
12:58:08.0281 0x0fa4  amdsbs - ok
12:58:08.0297 0x0fa4  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
12:58:08.0297 0x0fa4  amdxata - ok
12:58:08.0312 0x0fa4  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
12:58:08.0359 0x0fa4  AppID - ok
12:58:08.0390 0x0fa4  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
12:58:08.0437 0x0fa4  AppIDSvc - ok
12:58:08.0437 0x0fa4  [ 7E790DE2487CEDB349D1750B9E47F090, EDA4A87EA2F89ABD174E9590DD46E70B9E7E4B35BDFC3ED90D79CD594F8CB2CD ] Appinfo         C:\WINDOWS\System32\appinfo.dll
12:58:08.0484 0x0fa4  Appinfo - ok
12:58:08.0547 0x0fa4  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
12:58:08.0547 0x0fa4  Apple Mobile Device - ok
12:58:08.0625 0x0fa4  [ 4B964AE0DF433A3BFA7BD24713BC2E9B, DC8933265E67E43CAE96EA64B146CB9067B536A4DA2C90EDCB38302BBFA1CE6B ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
12:58:08.0672 0x0fa4  AppReadiness - ok
12:58:08.0734 0x0fa4  [ 0B726D9ED75C787D6FFAF1E3873BCC70, DC3822B35FB65D53CC5D0E3982C326C5F47F0911BEB1F66DCC84A79C84621E1E ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
12:58:08.0812 0x0fa4  AppXSvc - ok
12:58:08.0844 0x0fa4  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
12:58:08.0844 0x0fa4  arcsas - ok
12:58:08.0859 0x0fa4  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
12:58:08.0875 0x0fa4  atapi - ok
12:58:08.0890 0x0fa4  [ 51C6777AD7649F6C3ED389151CFD9DE6, B010089D83A9D96DC5D1C525B8EA913CF2F80FA0254684A16DD29CCA9BE84620 ] AthBTPort       C:\WINDOWS\system32\DRIVERS\btath_flt.sys
12:58:08.0906 0x0fa4  AthBTPort - ok
12:58:08.0937 0x0fa4  [ 688D17F196290EB2FCE0D6A62227853A, 1A959A248237CE858130C2726321E6168F2FB7511F9FA8AB017880846D59910A ] AtherosSvc      C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe
12:58:08.0969 0x0fa4  AtherosSvc - ok
12:58:09.0094 0x0fa4  [ 2C7676F892E88FD190F08D98048C7C6C, 44C13C103F61DA4D1A3823D37344F8C9465A611A9560808CE928925FB69604F7 ] athr            C:\WINDOWS\system32\DRIVERS\athw8x.sys
12:58:09.0234 0x0fa4  athr - ok
12:58:09.0281 0x0fa4  [ 4903CBC14742B5AB4DCF7A92F7DEC483, B8491FDA1D1E767658ECC5C3C3DDFB3EB12A969F0F6ACF116C18300FF54075D5 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
12:58:09.0344 0x0fa4  AudioEndpointBuilder - ok
12:58:09.0390 0x0fa4  [ 86DD7884124D363A63CCE7A11FDEBBED, E7BAE477D964E395A96342E077774467AA9DE5D8112BFCDE27EEA1CB04A2A480 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
12:58:09.0422 0x0fa4  Audiosrv - ok
12:58:09.0453 0x0fa4  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
12:58:09.0500 0x0fa4  AxInstSV - ok
12:58:09.0516 0x0fa4  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
12:58:09.0547 0x0fa4  b06bdrv - ok
12:58:09.0562 0x0fa4  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
12:58:09.0594 0x0fa4  BasicDisplay - ok
12:58:09.0609 0x0fa4  [ 2748E116F8621A4DB0D39FCDD7318C01, DA2DEB7FE1D887B1EF5E2B5103270B72268D8ABDDA36C396627305C0BA90FC20 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
12:58:09.0625 0x0fa4  BasicRender - ok
12:58:09.0641 0x0fa4  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
12:58:09.0641 0x0fa4  bcmfn2 - ok
12:58:09.0687 0x0fa4  [ BBE61A40665B83488901E41082A6097D, ADF750DB32E1295C57C03D587A60194529C8B83F90F433C3458288FB5E8F475B ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
12:58:09.0734 0x0fa4  BDESVC - ok
12:58:09.0766 0x0fa4  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
12:58:09.0797 0x0fa4  Beep - ok
12:58:09.0844 0x0fa4  [ 6468B696C65775D51A06615830E0E79D, CC4081B3A4895192B4796A745F0BCE8C9C3149B854A7B9BEF84668A2E1D074B5 ] BFE             C:\WINDOWS\System32\bfe.dll
12:58:09.0906 0x0fa4  BFE - ok
12:58:09.0953 0x0fa4  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\WINDOWS\System32\qmgr.dll
12:58:10.0109 0x0fa4  BITS - ok
12:58:10.0172 0x0fa4  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
12:58:10.0187 0x0fa4  Bonjour Service - ok
12:58:10.0203 0x0fa4  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
12:58:10.0266 0x0fa4  bowser - ok
12:58:10.0312 0x0fa4  [ 748141CC03DF40C38F17D3F96BB15C80, 8F1FA850BC6C6497325C0758DEA36C2839BE53C3F8143DFD3A905BEEFF538126 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
12:58:10.0344 0x0fa4  BrokerInfrastructure - ok
12:58:10.0344 0x0fa4  [ D528D6A92D187777691993DD757AF19A, 2C79978310193431E5FC462368424A172858D5351C92D4815C2A7E35B5DDE50C ] Browser         C:\WINDOWS\System32\browser.dll
12:58:10.0422 0x0fa4  Browser - ok
12:58:10.0422 0x0fa4  BTATH_LWFLT - ok
12:58:10.0469 0x0fa4  [ 957011414233B09F24CF90F5EFA59FBD, 35C20789EAEA9E6E0394D233270F15662702BE7EEB23DA8569F647B969650A65 ] BtFilter        C:\WINDOWS\system32\DRIVERS\btfilter.sys
12:58:10.0484 0x0fa4  BtFilter - ok
12:58:10.0500 0x0fa4  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
12:58:10.0531 0x0fa4  BthAvrcpTg - ok
12:58:10.0547 0x0fa4  [ 131F1C8573E7BFB41C54FBF5309CCD94, DAFE51E3BADBD82A33B580F212B2D6520A120877C23F6D675521FEA2F4BA5A1F ] BthEnum         C:\WINDOWS\system32\DRIVERS\BthEnum.sys
12:58:10.0578 0x0fa4  BthEnum - ok
12:58:10.0594 0x0fa4  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
12:58:10.0609 0x0fa4  BthHFEnum - ok
12:58:10.0625 0x0fa4  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
12:58:10.0641 0x0fa4  bthhfhid - ok
12:58:10.0641 0x0fa4  [ FCD8BD17B7193CFFF18C332D1A381D7F, CD8A03086695F8FF2566697164D1FD1B60210C017220EFBD78CB12C38CD12BE1 ] BthLEEnum       C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys
12:58:10.0672 0x0fa4  BthLEEnum - ok
12:58:10.0687 0x0fa4  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
12:58:10.0703 0x0fa4  BTHMODEM - ok
12:58:10.0734 0x0fa4  [ 3AFE71D80EDF5D4DE0C5731352905669, 3E370169B8C5D301954D1F1DA302F7A0DB2A034990E10B3D64458C48E5693205 ] BthPan          C:\WINDOWS\system32\DRIVERS\bthpan.sys
12:58:10.0766 0x0fa4  BthPan - ok
12:58:10.0812 0x0fa4  [ 10EDF9E0838BA4578FFFFF274632D454, 7719C161A3A05DF62124177A8EC97800DFE855D2B738C443F1B44E8643A4CF44 ] BTHPORT         C:\WINDOWS\System32\Drivers\BTHport.sys
12:58:10.0875 0x0fa4  BTHPORT - ok
12:58:10.0891 0x0fa4  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\WINDOWS\system32\bthserv.dll
12:58:10.0906 0x0fa4  bthserv - ok
12:58:10.0922 0x0fa4  [ 0E7FA34B975764C33B5DBC6F8C401627, 9727B9D216D0670D2F2BC5B464B5FDAEC8BC769CA6ADC7F3858EDA3DA0F8036C ] BTHUSB          C:\WINDOWS\System32\Drivers\BTHUSB.sys
12:58:10.0953 0x0fa4  BTHUSB - ok
12:58:10.0984 0x0fa4  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
12:58:11.0016 0x0fa4  cdfs - ok
12:58:11.0031 0x0fa4  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
12:58:11.0047 0x0fa4  cdrom - ok
12:58:11.0078 0x0fa4  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
12:58:11.0094 0x0fa4  CertPropSvc - ok
12:58:11.0109 0x0fa4  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
12:58:11.0109 0x0fa4  circlass - ok
12:58:11.0172 0x0fa4  [ B794DCF38C965FA2F93C45A7C3D582C5, 0E483EAF835B85AA4B6F449F9BB68AF0A3EE4192D29CD72F4B812F1E4D9E9A7C ] cleanhlp        C:\EEK\Run\cleanhlp64.sys
12:58:11.0187 0x0fa4  cleanhlp - ok
12:58:11.0187 0x0fa4  [ 7F006813C2AFE622C13D7AF94F56CD07, 9F4AEEE19B44F4117BE036F1475CE2E91ED740EB7D8D38364F9724517F777482 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
12:58:11.0203 0x0fa4  CLFS - ok
12:58:11.0234 0x0fa4  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
12:58:11.0250 0x0fa4  CmBatt - ok
12:58:11.0297 0x0fa4  [ 825BE21E6395E00698D8A23955A87972, 303F10C3BA72ABB3BA27D08968B10E8EB03FFB6951943B0E9DD35CF48BB72578 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
12:58:11.0312 0x0fa4  CNG - ok
12:58:11.0328 0x0fa4  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
12:58:11.0344 0x0fa4  CompositeBus - ok
12:58:11.0344 0x0fa4  COMSysApp - ok
12:58:11.0359 0x0fa4  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
12:58:11.0391 0x0fa4  condrv - ok
12:58:11.0453 0x0fa4  [ D5F868A46AED8E7CAD6C30E0599DD100, F016C3BAC207B5A513CB28E78F93D1347398B9BEEF8D1A32339D034AFB74CF6C ] cphs            C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
12:58:11.0516 0x0fa4  cphs - ok
12:58:11.0531 0x0fa4  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
12:58:11.0594 0x0fa4  CryptSvc - ok
12:58:11.0594 0x0fa4  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
12:58:11.0609 0x0fa4  dam - ok
12:58:11.0641 0x0fa4  [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
12:58:11.0672 0x0fa4  DcomLaunch - ok
12:58:11.0703 0x0fa4  [ F4CCAADC2C78F57E4F16B24C9201CE22, B76A5C487A814CB986FE8CC398FB7493C9EAB9ACC933A3C35384FA447092EF00 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
12:58:11.0719 0x0fa4  defragsvc - ok
12:58:11.0750 0x0fa4  [ 0BC71D4D3B5883903C37BF4E13B0F0C5, C5EC2AD001FB7E72D3D12DBADFE01C308ACCB7426E0B90CCB3ECE2DE49D5E7D4 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
12:58:11.0766 0x0fa4  DeviceAssociationService - ok
12:58:11.0797 0x0fa4  [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
12:58:11.0813 0x0fa4  DeviceInstall - ok
12:58:11.0828 0x0fa4  [ 5DB26D7E0216D0BF364A81D3829AD7B9, FD786D530EA9ADBCB48782FE091E926505A83F2BF3B4181A3D4EDFAA991C4E5E ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
12:58:11.0844 0x0fa4  Dfsc - ok
12:58:11.0891 0x0fa4  [ 8B107F55FD61654A6C9F1B819AEC5FC4, 773B1B9D3583F17B7C89BDE1EC4487ABB0AE039DF4583F8746460425443DA291 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
12:58:11.0922 0x0fa4  Dhcp - ok
12:58:11.0953 0x0fa4  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
12:58:11.0953 0x0fa4  disk - ok
12:58:11.0984 0x0fa4  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
12:58:12.0016 0x0fa4  dmvsc - ok
12:58:12.0063 0x0fa4  [ 5BAF7714E68F93515A937A3FA8587EF9, DD9296F75341EF96D514139DD8A8680B332E9B9D476368AB897FDA2D5D674E60 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
12:58:12.0125 0x0fa4  Dnscache - ok
12:58:12.0156 0x0fa4  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
12:58:12.0172 0x0fa4  dot3svc - ok
12:58:12.0203 0x0fa4  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\WINDOWS\system32\dps.dll
12:58:12.0219 0x0fa4  DPS - ok
12:58:12.0234 0x0fa4  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
12:58:12.0234 0x0fa4  drmkaud - ok
12:58:12.0250 0x0fa4  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
12:58:12.0281 0x0fa4  DsmSvc - ok
12:58:12.0344 0x0fa4  [ A3D1CB64DF885ACE126543E6D7067348, AFB5EF73F7B2854669137F586171500E4EB00F12BFCFD6B743FABD165B4AEED3 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
12:58:12.0406 0x0fa4  DXGKrnl - ok
12:58:12.0438 0x0fa4  [ 7C92EC22B031ECCD75EE0A3CEE214EDA, FDE675A46AD05BBE69B0EDCFBA4DFBBAEDAE53969D49E9CECC9D89ABB02EE59D ] e1cexpress      C:\WINDOWS\system32\DRIVERS\e1c63x64.sys
12:58:12.0453 0x0fa4  e1cexpress - ok
12:58:12.0484 0x0fa4  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
12:58:12.0484 0x0fa4  Eaphost - ok
12:58:12.0594 0x0fa4  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
12:58:12.0703 0x0fa4  ebdrv - ok
12:58:12.0734 0x0fa4  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\WINDOWS\System32\lsass.exe
12:58:12.0750 0x0fa4  EFS - ok
12:58:12.0766 0x0fa4  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
12:58:12.0766 0x0fa4  EhStorClass - ok
12:58:12.0781 0x0fa4  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
12:58:12.0797 0x0fa4  EhStorTcgDrv - ok
12:58:12.0859 0x0fa4  [ 3D897AAAAC4BC8D6F069DA3BB65D136D, 65FAD19C638AE65FB29587EF980FB6EF12B528274469403281A5DCDD1E46C1DB ] ePowerSvc       C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
12:58:12.0875 0x0fa4  ePowerSvc - ok
12:58:12.0891 0x0fa4  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
12:58:12.0906 0x0fa4  ErrDev - ok
12:58:12.0922 0x0fa4  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\WINDOWS\system32\es.dll
12:58:12.0969 0x0fa4  EventSystem - ok
12:58:12.0984 0x0fa4  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
12:58:13.0016 0x0fa4  exfat - ok
12:58:13.0031 0x0fa4  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
12:58:13.0047 0x0fa4  fastfat - ok
12:58:13.0078 0x0fa4  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\WINDOWS\system32\fxssvc.exe
12:58:13.0141 0x0fa4  Fax - ok
12:58:13.0156 0x0fa4  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
12:58:13.0156 0x0fa4  fdc - ok
12:58:13.0188 0x0fa4  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
12:58:13.0203 0x0fa4  fdPHost - ok
12:58:13.0203 0x0fa4  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
12:58:13.0219 0x0fa4  FDResPub - ok
12:58:13.0250 0x0fa4  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
12:58:13.0266 0x0fa4  fhsvc - ok
12:58:13.0281 0x0fa4  [ 957A7A8F5ACCAF23DD9DFF6DAA393CE5, 85D1AC25CF8056FF303930A7E18DE5F7C3AEE429272CB791BD6F81F1DAFB7D8A ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
12:58:13.0281 0x0fa4  FileInfo - ok
12:58:13.0281 0x0fa4  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
12:58:13.0297 0x0fa4  Filetrace - ok
12:58:13.0313 0x0fa4  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
12:58:13.0328 0x0fa4  flpydisk - ok
12:58:13.0344 0x0fa4  [ 60D5067FCE6D9433D35E04C01D8538B3, 2D97E9E8FF18CF564DE8E70F68B56F0177DC6C0E9EEB7E1C58BBDF42456CB0D8 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
12:58:13.0359 0x0fa4  FltMgr - ok
12:58:13.0406 0x0fa4  [ 183CA7699474FDE235853967D1DA4D9B, 8FBD5997F1E39AFFD8C4322520DF4D2227279B5149017D825C188D7411BA99AF ] FontCache       C:\WINDOWS\system32\FntCache.dll
12:58:13.0500 0x0fa4  FontCache - ok
12:58:13.0578 0x0fa4  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:58:13.0594 0x0fa4  FontCache3.0.0.0 - ok
12:58:13.0594 0x0fa4  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
12:58:13.0609 0x0fa4  FsDepends - ok
12:58:13.0625 0x0fa4  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
12:58:13.0625 0x0fa4  Fs_Rec - ok
12:58:13.0672 0x0fa4  [ 83E1F0983B02A6F8EC764D18E24ECF10, B5CA3FCB442697681C513FB37C6BB74D7A72B67DC65E2FCA93A7F9E81B63EAAC ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
12:58:13.0688 0x0fa4  fvevol - ok
12:58:13.0703 0x0fa4  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
12:58:13.0719 0x0fa4  FxPPM - ok
12:58:13.0734 0x0fa4  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
12:58:13.0734 0x0fa4  gagp30kx - ok
12:58:13.0813 0x0fa4  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
12:58:13.0813 0x0fa4  GamesAppService - ok
12:58:13.0844 0x0fa4  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
12:58:13.0844 0x0fa4  GEARAspiWDM - ok
12:58:13.0859 0x0fa4  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
12:58:13.0859 0x0fa4  gencounter - ok
12:58:13.0875 0x0fa4  [ FDA72810CA2F8409D9B31E833C448E34, FC24350E875D2AF2A41DB5EF0BFE4F876DADEACCC0B34B9B9C9B2CA185CBAE87 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
12:58:13.0891 0x0fa4  GPIOClx0101 - ok
12:58:13.0938 0x0fa4  [ 0BDE0FCF597E9B65600121EF54FF8340, DA5C96E84E05AD09251C82B4BFEDE274342409803730CEBF24EEAD0DCD42DA7E ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
12:58:14.0016 0x0fa4  gpsvc - ok
12:58:14.0031 0x0fa4  [ 03909BDBFF0DCACCABF2B2D4ADEE44DC, 42E631B23BB004F5C2128BAD334C21AB20FAD08AFED9E8191AE9373531BC73DD ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
12:58:14.0063 0x0fa4  HDAudBus - ok
12:58:14.0078 0x0fa4  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
12:58:14.0078 0x0fa4  HidBatt - ok
12:58:14.0094 0x0fa4  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
12:58:14.0109 0x0fa4  HidBth - ok
12:58:14.0125 0x0fa4  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
12:58:14.0141 0x0fa4  hidi2c - ok
12:58:14.0156 0x0fa4  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
12:58:14.0172 0x0fa4  HidIr - ok
12:58:14.0172 0x0fa4  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\WINDOWS\system32\hidserv.dll
12:58:14.0188 0x0fa4  hidserv - ok
12:58:14.0188 0x0fa4  [ F31397220D9687E11EB448649AA6E038, 671ACEAA8E00E0D4ED7E33D06A4558121DA4F56EB94F1CBC16FEB2EF3852F7A5 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
12:58:14.0219 0x0fa4  HidUsb - ok
12:58:14.0250 0x0fa4  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
12:58:14.0266 0x0fa4  hkmsvc - ok
12:58:14.0281 0x0fa4  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
12:58:14.0344 0x0fa4  HomeGroupListener - ok
12:58:14.0375 0x0fa4  [ BE5F89BAFBD4272D5A0C0A37B97865ED, 2F80CE6D123FEED9FA7B00ACF7547FF77E0E6FDC5243942E83BE308C46D414C6 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
12:58:14.0406 0x0fa4  HomeGroupProvider - ok
12:58:14.0422 0x0fa4  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
12:58:14.0438 0x0fa4  HpSAMD - ok
12:58:14.0485 0x0fa4  [ 3502776E366C913D49C0DA928AE3E6CB, 3FB452F640B78AEDFBC09188F25C566949660163732A180331226A93DB08F26C ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
12:58:14.0516 0x0fa4  HTTP - ok
12:58:14.0531 0x0fa4  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
12:58:14.0531 0x0fa4  hwpolicy - ok
12:58:14.0563 0x0fa4  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
12:58:14.0563 0x0fa4  hyperkbd - ok
12:58:14.0578 0x0fa4  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
12:58:14.0578 0x0fa4  HyperVideo - ok
12:58:14.0594 0x0fa4  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
12:58:14.0625 0x0fa4  i8042prt - ok
12:58:14.0625 0x0fa4  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
12:58:14.0641 0x0fa4  iaLPSSi_GPIO - ok
12:58:14.0641 0x0fa4  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
12:58:14.0656 0x0fa4  iaLPSSi_I2C - ok
12:58:14.0688 0x0fa4  [ 0FE66A51D81A25AACEAAE4C26308121D, C5553F7ABA74A8EB71A4ED0E8F2A6AA2892F871D164F2D4FADB035BE7D1A8C44 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
12:58:14.0703 0x0fa4  iaStorA - ok
12:58:14.0750 0x0fa4  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
12:58:14.0766 0x0fa4  iaStorAV - ok
12:58:14.0781 0x0fa4  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
12:58:14.0797 0x0fa4  iaStorV - ok
12:58:14.0797 0x0fa4  IEEtwCollectorService - ok
12:58:14.0922 0x0fa4  [ 4F6363C26B4A3DDBC9FAFCBA68602B01, 0920551F9312D967AAA68003BD8C4A312AA8F1E8B826DDE8BF59B9B639AB5F3B ] igfx            C:\WINDOWS\system32\DRIVERS\igdkmd64.sys
12:58:15.0125 0x0fa4  igfx - ok
12:58:15.0188 0x0fa4  [ B82255670D270B75D2D2F0F8747D1443, C40E151AC3FBF289456A4AD9E5744B314067ADA03FE729970410931904305F51 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
12:58:15.0250 0x0fa4  IKEEXT - ok
12:58:15.0297 0x0fa4  [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys
12:58:15.0297 0x0fa4  intaud_WaveExtensible - ok
12:58:15.0406 0x0fa4  [ F1A3ECE3809AF333810ED0A872200226, BF1CC3EE64A9BDE41A5139A56016DE79DB87212D130B6024A03206CFCF65AC72 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
12:58:15.0531 0x0fa4  IntcAzAudAddService - ok
12:58:15.0547 0x0fa4  [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud        C:\WINDOWS\system32\DRIVERS\IntcDAud.sys
12:58:15.0578 0x0fa4  IntcDAud - ok
12:58:15.0641 0x0fa4  [ B353F1834FCD36D77BE3F74992C147D4, BFBC42B500FC7D6D2B523F988DD54156D2B6132CBE366EB591BF45556959A8E9 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
12:58:16.0469 0x0fa4  Intel® Capability Licensing Service Interface - ok
12:58:16.0500 0x0fa4  [ CBF7341E55A8348C7AB01A9870C7D948, A5084DF3C6321788C88A9E6B5F43FE5BCFDBB579BDE3A4D5F55558C6D13035A5 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
12:58:16.0516 0x0fa4  Intel® PROSet Monitoring Service - ok
12:58:16.0547 0x0fa4  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
12:58:16.0547 0x0fa4  intelide - ok
12:58:16.0578 0x0fa4  [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
12:58:16.0578 0x0fa4  intelpep - ok
12:58:16.0594 0x0fa4  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
12:58:16.0610 0x0fa4  intelppm - ok
12:58:16.0641 0x0fa4  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
12:58:16.0657 0x0fa4  IpFilterDriver - ok
12:58:16.0719 0x0fa4  [ DFC4050D58565ADBEE793A8D4AEBDAE6, 89B900408F030CD45753A11D6AE6CBAB87E8B0E3F8401402D2D8713C045BF488 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
12:58:16.0797 0x0fa4  iphlpsvc - ok
12:58:16.0813 0x0fa4  [ 9949A3C7590B8C536C05312205079A82, 9276A09D5F910AE8358A96505AB3F66C514870944D58B63B71D5E96567D1E6BB ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
12:58:16.0875 0x0fa4  IPMIDRV - ok
12:58:16.0922 0x0fa4  [ E23D32BAF152FBE35F18C6A2AB8EF271, C244E54E472B724765497731ADC0DF6DA9EBA5E7B0723A4409061F5B928851E9 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
12:58:16.0953 0x0fa4  IPNAT - ok
12:58:17.0000 0x0fa4  [ B6E8B931EFEF4112C6A401931627DC6B, 89A0745360928F7DD0A522FF5FBFEED4FC831F37D6CF88D5E66FA91FD6F0A1DF ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
12:58:17.0016 0x0fa4  iPod Service - ok
12:58:17.0047 0x0fa4  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
12:58:17.0063 0x0fa4  IRENUM - ok
12:58:17.0094 0x0fa4  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
12:58:17.0094 0x0fa4  isapnp - ok
12:58:17.0125 0x0fa4  [ 034D4BD9DC67C64F3A4C8A049B5173BF, C68AF5A5AD4092AA1C871BD38473AEF84EC3ECF4D06FBEB5F6C09972EF1B8A81 ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
12:58:17.0141 0x0fa4  iScsiPrt - ok
12:58:17.0157 0x0fa4  [ EE03564B7FAFE2E44EDA33D52E83B4A3, 53C917EEC92B813EB0C86B225E9887C9CDFDD7708AEA71BFAC0A3039E26D7BEB ] iwdbus          C:\WINDOWS\System32\drivers\iwdbus.sys
12:58:17.0172 0x0fa4  iwdbus - ok
12:58:17.0235 0x0fa4  [ 5B7DE9D87B9D2713BDD6A53678DC2A49, E7A0D68FA2ED2730640F40FF59338BE173C8973BFC38286E6320CA332A39C204 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
12:58:17.0250 0x0fa4  jhi_service - ok
12:58:17.0266 0x0fa4  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
12:58:17.0282 0x0fa4  kbdclass - ok
12:58:17.0282 0x0fa4  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
12:58:17.0297 0x0fa4  kbdhid - ok
12:58:17.0297 0x0fa4  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
12:58:17.0360 0x0fa4  kdnic - ok
12:58:17.0375 0x0fa4  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\WINDOWS\system32\lsass.exe
12:58:17.0391 0x0fa4  KeyIso - ok
12:58:17.0407 0x0fa4  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
12:58:17.0407 0x0fa4  KSecDD - ok
12:58:17.0422 0x0fa4  [ 7296EA420134EAC390798B3232D066A4, 1F5D51EEFD389706660DFB4DB4BF3EC570BEC7097CEB5CAE70EFFE35C3255346 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
12:58:17.0422 0x0fa4  KSecPkg - ok
12:58:17.0438 0x0fa4  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
12:58:17.0438 0x0fa4  ksthunk - ok
12:58:17.0469 0x0fa4  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
12:58:17.0485 0x0fa4  KtmRm - ok
12:58:17.0532 0x0fa4  [ 27B58E16CF895AC1F1A97C04814C2239, D4336155331DDBF91952CDC6C446C68FF524F979099BA8D9B3A578758F97B2BE ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
12:58:17.0547 0x0fa4  LanmanServer - ok
12:58:17.0578 0x0fa4  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
12:58:17.0610 0x0fa4  LanmanWorkstation - ok
12:58:17.0657 0x0fa4  [ EE289BD147FDFF95EF1B9BD65D3B974A, EFD9D0F6C73E7D2D52DBE2E2A8D3009BFB6AB24776A100CA528A8365002C6105 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
12:58:17.0719 0x0fa4  lfsvc - ok
12:58:17.0719 0x0fa4  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
12:58:17.0750 0x0fa4  lltdio - ok
12:58:17.0766 0x0fa4  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
12:58:17.0782 0x0fa4  lltdsvc - ok
12:58:17.0797 0x0fa4  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
12:58:17.0828 0x0fa4  lmhosts - ok
12:58:17.0860 0x0fa4  [ E70FD0D2C95F559A17321D831875593D, 57839ADA7CC6606D98B43FC2F4EC6F5E9B75A2F3EC937C11322201128A161E0D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
12:58:17.0875 0x0fa4  LMS - ok
12:58:17.0891 0x0fa4  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
12:58:17.0907 0x0fa4  LSI_SAS - ok
12:58:17.0907 0x0fa4  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
12:58:17.0922 0x0fa4  LSI_SAS2 - ok
12:58:17.0938 0x0fa4  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
12:58:17.0938 0x0fa4  LSI_SAS3 - ok
12:58:17.0953 0x0fa4  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
12:58:17.0969 0x0fa4  LSI_SSS - ok
12:58:18.0000 0x0fa4  [ B6B69FF200F68888A7FAFDF204D00C91, 4C9BA7B8646C74AE1E49F513EF426930C09969F29F1533D84D020B414BB1609B ] LSM             C:\WINDOWS\System32\lsm.dll
12:58:18.0047 0x0fa4  LSM - ok
12:58:18.0047 0x0fa4  [ 5EF604B0698F4FA962778285E8C5F1F2, 0465BDAB7EFBE9CC648E7E736B0B8BE152BD2FAB0917F6306675B9039C77F454 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
12:58:18.0078 0x0fa4  luafv - ok
12:58:18.0078 0x0fa4  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
12:58:18.0094 0x0fa4  megasas - ok
12:58:18.0125 0x0fa4  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
12:58:18.0141 0x0fa4  megasr - ok
12:58:18.0188 0x0fa4  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
12:58:18.0188 0x0fa4  MEIx64 - ok
12:58:18.0203 0x0fa4  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
12:58:18.0313 0x0fa4  MMCSS - ok
12:58:18.0328 0x0fa4  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
12:58:18.0328 0x0fa4  Modem - ok
12:58:18.0344 0x0fa4  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
12:58:18.0360 0x0fa4  monitor - ok
12:58:18.0375 0x0fa4  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
12:58:18.0375 0x0fa4  mouclass - ok
12:58:18.0375 0x0fa4  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
12:58:18.0407 0x0fa4  mouhid - ok
12:58:18.0407 0x0fa4  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
12:58:18.0422 0x0fa4  mountmgr - ok
12:58:18.0422 0x0fa4  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
12:58:18.0438 0x0fa4  mpsdrv - ok
12:58:18.0485 0x0fa4  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
12:58:18.0516 0x0fa4  MpsSvc - ok
12:58:18.0532 0x0fa4  [ 59DCEC7499095DE5AED741358037AE2D, 60C4CEBCAE27C121E9D63BD2BC3E5863A91ABC77616C56C10618273A8F9B6F61 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
12:58:18.0547 0x0fa4  MRxDAV - ok
12:58:18.0578 0x0fa4  [ 6129EDB793A4255B1E2FB41773AC9D9A, 3292C64FAB3B83C87790FB35F54D6702987891234AF33FD1D5299C7084795375 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
12:58:18.0625 0x0fa4  mrxsmb - ok
12:58:18.0657 0x0fa4  [ 295771B092D4F7FCF2B62F80CCD14320, 53655B5ABA43A6A9114FE545B88F84E52319B905B8393A51BD97678D3F94A178 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
12:58:18.0688 0x0fa4  mrxsmb10 - ok
12:58:18.0688 0x0fa4  [ AAF56E4E84D35411B4E446C445732DFE, 7AC41CAA0842AE4DA4EEF976202C58D7923DAA367F0D7E800D432323D5E7DE1A ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
12:58:18.0719 0x0fa4  mrxsmb20 - ok
12:58:18.0750 0x0fa4  [ 4E888019078AC363076A5433E89AA4F8, 3DEBDA290230B3E83F956C902C960E39463B7EFE86439199521356762769FD91 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
12:58:18.0766 0x0fa4  MsBridge - ok
12:58:18.0797 0x0fa4  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
12:58:18.0813 0x0fa4  MSDTC - ok
12:58:18.0813 0x0fa4  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
12:58:18.0828 0x0fa4  Msfs - ok
12:58:18.0828 0x0fa4  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
12:58:18.0844 0x0fa4  msgpiowin32 - ok
12:58:18.0860 0x0fa4  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
12:58:18.0860 0x0fa4  mshidkmdf - ok
12:58:18.0875 0x0fa4  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
12:58:18.0891 0x0fa4  mshidumdf - ok
12:58:18.0891 0x0fa4  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
12:58:18.0907 0x0fa4  msisadrv - ok
12:58:18.0938 0x0fa4  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
12:58:18.0953 0x0fa4  MSiSCSI - ok
12:58:18.0953 0x0fa4  msiserver - ok
12:58:18.0985 0x0fa4  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
12:58:18.0985 0x0fa4  MSKSSRV - ok
12:58:19.0000 0x0fa4  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
12:58:19.0016 0x0fa4  MsLldp - ok
12:58:19.0032 0x0fa4  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
12:58:19.0032 0x0fa4  MSPCLOCK - ok
12:58:19.0047 0x0fa4  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
12:58:19.0063 0x0fa4  MSPQM - ok
12:58:19.0078 0x0fa4  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
12:58:19.0094 0x0fa4  MsRPC - ok
12:58:19.0094 0x0fa4  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
12:58:19.0110 0x0fa4  mssmbios - ok
12:58:19.0125 0x0fa4  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
12:58:19.0141 0x0fa4  MSTEE - ok
12:58:19.0157 0x0fa4  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
12:58:19.0172 0x0fa4  MTConfig - ok
12:58:19.0172 0x0fa4  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
12:58:19.0188 0x0fa4  Mup - ok
12:58:19.0204 0x0fa4  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
12:58:19.0204 0x0fa4  mvumis - ok
12:58:19.0250 0x0fa4  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\WINDOWS\system32\qagentRT.dll
12:58:19.0266 0x0fa4  napagent - ok
12:58:19.0297 0x0fa4  [ CF8B989D89D6807B887690F2CF24EFD9, 7A3ED124D8D7736F57CD687111C478A206422D117099B2F752B6D933D009BCAC ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
12:58:19.0360 0x0fa4  NativeWifiP - ok
12:58:19.0407 0x0fa4  [ E59AFB64C2F6E0C99350E1C944C75088, 10A9044192D0A83857A57286EABB05037922860483DA2B05AFCC485A8311E4EF ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
12:58:19.0422 0x0fa4  NAUpdate - ok
12:58:19.0469 0x0fa4  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
12:58:19.0485 0x0fa4  NcaSvc - ok
12:58:19.0500 0x0fa4  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
12:58:19.0532 0x0fa4  NcbService - ok
12:58:19.0532 0x0fa4  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
12:58:19.0563 0x0fa4  NcdAutoSetup - ok
12:58:19.0610 0x0fa4  [ AD9086052A5E5153AF43FE74138A4B27, A511F785F8B29CE7CCC923489C9D03B4722E8FDD9853556D4F0F3CA608CFA956 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
12:58:19.0657 0x0fa4  NDIS - ok
12:58:19.0657 0x0fa4  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
12:58:19.0672 0x0fa4  NdisCap - ok
12:58:19.0672 0x0fa4  [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37, CCD99962917BBE256F64AE14CCC9FD12433C72B5DB98E0E57CA8F212A11B3C8F ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
12:58:19.0688 0x0fa4  NdisImPlatform - ok
12:58:19.0704 0x0fa4  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
12:58:19.0719 0x0fa4  NdisTapi - ok
12:58:19.0719 0x0fa4  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
12:58:19.0750 0x0fa4  Ndisuio - ok
12:58:19.0750 0x0fa4  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
12:58:19.0766 0x0fa4  NdisVirtualBus - ok
12:58:19.0782 0x0fa4  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:58:19.0797 0x0fa4  NdisWan - ok
12:58:19.0813 0x0fa4  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
12:58:19.0813 0x0fa4  NdisWanLegacy - ok
12:58:19.0829 0x0fa4  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
12:58:19.0844 0x0fa4  NDProxy - ok
12:58:19.0860 0x0fa4  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
12:58:19.0860 0x0fa4  Ndu - ok
12:58:19.0875 0x0fa4  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
12:58:19.0891 0x0fa4  NetBIOS - ok
12:58:19.0891 0x0fa4  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
12:58:19.0922 0x0fa4  NetBT - ok
12:58:19.0938 0x0fa4  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\WINDOWS\system32\lsass.exe
12:58:19.0938 0x0fa4  Netlogon - ok
12:58:19.0969 0x0fa4  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\WINDOWS\System32\netman.dll
12:58:19.0985 0x0fa4  Netman - ok
12:58:20.0016 0x0fa4  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
12:58:20.0032 0x0fa4  netprofm - ok
12:58:20.0063 0x0fa4  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
12:58:20.0110 0x0fa4  NetTcpPortSharing - ok
12:58:20.0125 0x0fa4  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\WINDOWS\system32\DRIVERS\netvsc63.sys
12:58:20.0141 0x0fa4  netvsc - ok
12:58:20.0157 0x0fa4  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
12:58:20.0188 0x0fa4  NlaSvc - ok
12:58:20.0204 0x0fa4  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
12:58:20.0219 0x0fa4  Npfs - ok
12:58:20.0235 0x0fa4  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
12:58:20.0282 0x0fa4  npsvctrig - ok
12:58:20.0282 0x0fa4  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\WINDOWS\system32\nsisvc.dll
12:58:20.0297 0x0fa4  nsi - ok
12:58:20.0313 0x0fa4  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
12:58:20.0313 0x0fa4  nsiproxy - ok
12:58:20.0391 0x0fa4  [ 4412D565C0278C401575E11072C7DCE3, 82A0E9AA88750900EA0E9983157345456B418745C8BA62FAF339640E759C0418 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
12:58:20.0454 0x0fa4  Ntfs - ok
12:58:20.0454 0x0fa4  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
12:58:20.0469 0x0fa4  Null - ok
12:58:20.0500 0x0fa4  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
12:58:20.0500 0x0fa4  nvraid - ok
12:58:20.0516 0x0fa4  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
12:58:20.0516 0x0fa4  nvstor - ok
12:58:20.0532 0x0fa4  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
12:58:20.0547 0x0fa4  nv_agp - ok
12:58:20.0625 0x0fa4  [ 25FFB1C1E5BD27B9757EACF40B2B0F7B, 41B4236F580B4653C65E3F16DD3FF91E924716FDD2DCBA89A5F416563C5F0076 ] OfficeSvc       C:\Program Files\Microsoft Office 15\ClientX64\integratedoffice.exe
12:58:20.0657 0x0fa4  OfficeSvc - ok
12:58:20.0766 0x0fa4  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:58:20.0766 0x0fa4  ose - ok
12:58:20.0922 0x0fa4  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:58:21.0063 0x0fa4  osppsvc - ok
12:58:21.0125 0x0fa4  [ 3B510F20806B94E389784ED09DBD2111, EF8896C500B3AA3A811FDE97BC322EF3295E9BD0DE236715D4A4C52CF63727E1 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
12:58:21.0188 0x0fa4  p2pimsvc - ok
12:58:21.0235 0x0fa4  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
12:58:21.0250 0x0fa4  p2psvc - ok
12:58:21.0266 0x0fa4  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
12:58:21.0282 0x0fa4  Parport - ok
12:58:21.0297 0x0fa4  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
12:58:21.0313 0x0fa4  partmgr - ok
12:58:21.0329 0x0fa4  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
12:58:21.0360 0x0fa4  PcaSvc - ok
12:58:21.0375 0x0fa4  [ C0D3F3BC1C84B4BA746D9847314C1164, 66FDF288ACAE021C5F63BCCC68D7534B4DB737E252AB16DFF746355D8BE7502D ] pci             C:\WINDOWS\system32\drivers\pci.sys
12:58:21.0391 0x0fa4  pci - ok
12:58:21.0407 0x0fa4  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
12:58:21.0407 0x0fa4  pciide - ok
12:58:21.0454 0x0fa4  [ F2617724012BA0D139DAE38A87D97584, 8BA56397DF47A424D3A48CDD65C309C74C2A0A21C94F8EDDB68AA7DC115F27EC ] PCloudCleanerService C:\WINDOWS\SysWOW64\PCloudCleanerService.EXE
12:58:21.0469 0x0fa4  PCloudCleanerService - ok
12:58:21.0485 0x0fa4  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
12:58:21.0500 0x0fa4  pcmcia - ok
12:58:21.0516 0x0fa4  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
12:58:21.0532 0x0fa4  pcw - ok
12:58:21.0547 0x0fa4  [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
12:58:21.0563 0x0fa4  pdc - ok
12:58:21.0579 0x0fa4  [ BA50CC0BD19004AAB88BE37338B6FA0D, 34D4720A621CCB4707F2EB929F6F44C317DBC6F055F7F34F3FAC68DFDAA00DEF ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
12:58:21.0610 0x0fa4  PEAUTH - ok
12:58:21.0657 0x0fa4  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
12:58:21.0704 0x0fa4  PerfHost - ok
12:58:21.0751 0x0fa4  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\WINDOWS\system32\pla.dll
12:58:21.0813 0x0fa4  pla - ok
12:58:21.0844 0x0fa4  [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
12:58:21.0860 0x0fa4  PlugPlay - ok
12:58:21.0876 0x0fa4  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
12:58:21.0891 0x0fa4  PNRPAutoReg - ok
12:58:21.0907 0x0fa4  [ 3B510F20806B94E389784ED09DBD2111, EF8896C500B3AA3A811FDE97BC322EF3295E9BD0DE236715D4A4C52CF63727E1 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
12:58:21.0922 0x0fa4  PNRPsvc - ok
12:58:21.0969 0x0fa4  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
12:58:21.0985 0x0fa4  PolicyAgent - ok
12:58:22.0001 0x0fa4  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\WINDOWS\system32\umpo.dll
12:58:22.0032 0x0fa4  Power - ok
12:58:22.0141 0x0fa4  [ B7DB57A000D46D4DE75BC0C563E58072, 8183EB09DC4D44DFF027CA0AAA8C09921A14F088C1BC427B6ACA42340AAF69E6 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
12:58:22.0282 0x0fa4  PrintNotify - ok
12:58:22.0297 0x0fa4  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
12:58:22.0329 0x0fa4  Processor - ok
12:58:22.0360 0x0fa4  [ 8513A1E7AE4B9DC82C4B4F432C648A58, C0C629BF79722A12B35BDA6D5EF6FD2D96E013D80D8F17077E9137ED3988B452 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
12:58:22.0407 0x0fa4  ProfSvc - ok
12:58:22.0454 0x0fa4  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
12:58:22.0485 0x0fa4  Psched - ok
12:58:22.0516 0x0fa4  [ 05A0C2744CEAC6F1B723EC469B650EF0, D9F2E0E4431217C6A7CDE38D36362CD5A06E93B9F45F92638120EF151089B370 ] PSKMAD          C:\WINDOWS\system32\DRIVERS\PSKMAD.sys
12:58:22.0516 0x0fa4  PSKMAD - ok
12:58:22.0532 0x0fa4  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\WINDOWS\system32\qwave.dll
12:58:22.0563 0x0fa4  QWAVE - ok
12:58:22.0563 0x0fa4  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
12:58:22.0594 0x0fa4  QWAVEdrv - ok
12:58:22.0610 0x0fa4  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
12:58:22.0610 0x0fa4  RasAcd - ok
12:58:22.0657 0x0fa4  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
12:58:22.0672 0x0fa4  RasAuto - ok
12:58:22.0688 0x0fa4  [ BF3B17016764F20F9D28CF1A8DC210C0, F64B410D444D4A3DFEE356EFC5B758781FA2612771EDCF72DB91D3120385D7DB ] RasMan          C:\WINDOWS\System32\rasmans.dll
12:58:22.0719 0x0fa4  RasMan - ok
12:58:22.0735 0x0fa4  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
12:58:22.0751 0x0fa4  RasPppoe - ok
12:58:22.0782 0x0fa4  [ B939A2A0F9D6C6C186721E268EB6FA93, 8AF03945428D8F0E9B6DE1C24627336398320C7C78E5F594E0A57AB2DB6E0A24 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
12:58:22.0797 0x0fa4  rdbss - ok
12:58:22.0797 0x0fa4  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
12:58:22.0844 0x0fa4  rdpbus - ok
12:58:22.0891 0x0fa4  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
12:58:22.0922 0x0fa4  RDPDR - ok
12:58:22.0938 0x0fa4  [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
12:58:22.0938 0x0fa4  RdpVideoMiniport - ok
12:58:22.0985 0x0fa4  [ 847C6A08912C3515807049C93E526D65, 74AFC58793B43E73614D2F49B19FB360091E208097696D9DF0B0354761E0B30F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
12:58:23.0001 0x0fa4  rdyboost - ok
12:58:23.0032 0x0fa4  [ 036746D54347FD2D0385668E2A4064E4, 7C670176176C86D6C3814367A6282A78F4E950F84DDEDA849829236C891F5BB9 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
12:58:23.0063 0x0fa4  ReFS - ok
12:58:23.0094 0x0fa4  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
12:58:23.0126 0x0fa4  RemoteAccess - ok
12:58:23.0172 0x0fa4  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
12:58:23.0204 0x0fa4  RemoteRegistry - ok
12:58:23.0219 0x0fa4  [ 02307C86CB24769306B0DFA0C751952E, 637D90161C477995925936E4807B57EA80BE11761B26F5FC1B4B0F3EB52FBA87 ] RFCOMM          C:\WINDOWS\system32\DRIVERS\rfcomm.sys
12:58:23.0251 0x0fa4  RFCOMM - ok
12:58:23.0266 0x0fa4  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
12:58:23.0282 0x0fa4  RpcEptMapper - ok
12:58:23.0297 0x0fa4  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\WINDOWS\system32\locator.exe
12:58:23.0313 0x0fa4  RpcLocator - ok
12:58:23.0344 0x0fa4  [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
12:58:23.0360 0x0fa4  RpcSs - ok
12:58:23.0376 0x0fa4  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
12:58:23.0391 0x0fa4  rspndr - ok
12:58:23.0407 0x0fa4  [ 7291CC1B5ECA448B0B9C15E7E987A6B3, 1A61A4E5105354ABF041989044E97F1DEE356D65D77218F2DF97A4D2337177FD ] RSUSBSTOR       C:\WINDOWS\System32\Drivers\RtsUStor.sys
12:58:23.0422 0x0fa4  RSUSBSTOR - ok
12:58:23.0438 0x0fa4  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
12:58:23.0454 0x0fa4  s3cap - ok
12:58:23.0469 0x0fa4  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\WINDOWS\system32\lsass.exe
12:58:23.0469 0x0fa4  SamSs - ok
12:58:23.0501 0x0fa4  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
12:58:23.0501 0x0fa4  sbp2port - ok
12:58:23.0516 0x0fa4  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
12:58:23.0532 0x0fa4  SCardSvr - ok
12:58:23.0547 0x0fa4  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
12:58:23.0563 0x0fa4  ScDeviceEnum - ok
12:58:23.0563 0x0fa4  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
12:58:23.0579 0x0fa4  scfilter - ok
12:58:23.0610 0x0fa4  [ 888A30EAB651502352C18745367FD179, 00CD9FA55F3E896D8BA81368DF1E855E2F64B5AC488EB4F9BF2C4E45ED63FD5F ] Schedule        C:\WINDOWS\system32\schedsvc.dll
12:58:23.0657 0x0fa4  Schedule - ok
12:58:23.0688 0x0fa4  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
12:58:23.0704 0x0fa4  SCPolicySvc - ok
12:58:23.0719 0x0fa4  [ 2F9A3380B8C0380E5608E29C7AA66899, 56D1908437DD3791E54866819E39CC89586C5CD804F47B556416FA8642D88CBB ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
12:58:23.0735 0x0fa4  sdbus - ok
12:58:23.0751 0x0fa4  [ 4EAF4DCF9DBD9A56952A58F56D61C005, BCA42FD1553569D3603008CC97D88FD309E87F8A8B1522A4287A0E81CAE6C294 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
12:58:23.0751 0x0fa4  sdstor - ok
12:58:23.0766 0x0fa4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
12:58:23.0766 0x0fa4  secdrv - ok
12:58:23.0797 0x0fa4  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\WINDOWS\system32\seclogon.dll
12:58:23.0829 0x0fa4  seclogon - ok
12:58:23.0844 0x0fa4  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\WINDOWS\System32\sens.dll
12:58:23.0876 0x0fa4  SENS - ok
12:58:23.0876 0x0fa4  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
12:58:23.0938 0x0fa4  SensrSvc - ok
12:58:23.0954 0x0fa4  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
12:58:23.0969 0x0fa4  SerCx - ok
12:58:24.0001 0x0fa4  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
12:58:24.0001 0x0fa4  SerCx2 - ok
12:58:24.0032 0x0fa4  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
12:58:24.0032 0x0fa4  Serenum - ok
12:58:24.0048 0x0fa4  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
12:58:24.0048 0x0fa4  Serial - ok
12:58:24.0063 0x0fa4  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
12:58:24.0079 0x0fa4  sermouse - ok
12:58:24.0110 0x0fa4  [ 441E6FF1F34D7A942946DB42A15FB519, A16BA505B74C7A2ADD08BD5B50728C2AD55062E0ABABAD7E3EE0EB97F3725523 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
12:58:24.0173 0x0fa4  SessionEnv - ok
12:58:24.0188 0x0fa4  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
12:58:24.0204 0x0fa4  sfloppy - ok
12:58:24.0251 0x0fa4  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
12:58:24.0266 0x0fa4  SharedAccess - ok
12:58:24.0298 0x0fa4  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
12:58:24.0329 0x0fa4  ShellHWDetection - ok
12:58:24.0360 0x0fa4  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
12:58:24.0360 0x0fa4  SiSRaid2 - ok
12:58:24.0376 0x0fa4  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
12:58:24.0391 0x0fa4  SiSRaid4 - ok
12:58:24.0438 0x0fa4  [ 7C15061CD0372487903B07B9BB03AFAD, FB96CDA29C7C1E8A315BA89E8B150918E59F32CE749D3EF43FCBEB3FB57BF1C6 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
12:58:24.0438 0x0fa4  SkypeUpdate - ok
12:58:24.0485 0x0fa4  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\WINDOWS\System32\smphost.dll
12:58:24.0501 0x0fa4  smphost - ok
12:58:24.0532 0x0fa4  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
12:58:24.0563 0x0fa4  SNMPTRAP - ok
12:58:24.0579 0x0fa4  [ F6EBE514D13ECE7EDC23440039CDF9AB, B58072BE7E4E52704C7B1D52DD49F469542B4B015C6D560369EEC1B046AFB254 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
12:58:24.0610 0x0fa4  spaceport - ok
12:58:24.0626 0x0fa4  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
12:58:24.0626 0x0fa4  SpbCx - ok
12:58:24.0673 0x0fa4  [ FE0CB40F36D3FCDD3A1B312EF72C38D5, 42EA50869752164764DFE8CE7E1C247BE8342A0C15F39158DC808E8A692C460F ] Spooler         C:\WINDOWS\System32\spoolsv.exe
12:58:24.0735 0x0fa4  Spooler - ok
12:58:24.0891 0x0fa4  [ E6DEC72A2A23FAA53EB9FEC3C7E29D66, 58BB3B9D50DFFF99E790D5B768FAA387F16385436BA6EB704BE6DB1F63B8E4B2 ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
12:58:25.0094 0x0fa4  sppsvc - ok
12:58:25.0126 0x0fa4  [ 2B78788A1485F9B99A578A299DF42C02, A87183A9B13585C9E850437A45237105D39D7F3212ADB079D6AB430B67A59643 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
12:58:25.0188 0x0fa4  srv - ok
12:58:25.0235 0x0fa4  [ C1AE59C0B0817236EC083A91C396005A, 26F05ECB44C300DA8F333B115727C31C5C8252C83F37F0AE7DFF89B267599CDF ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
12:58:25.0266 0x0fa4  srv2 - ok
12:58:25.0282 0x0fa4  [ 77195C32175FC63D6054EBA5A066D727, 22F5D26809BC9288021620040FC7B7BB76708D434C863B3C0C20F73200C1C6A9 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
12:58:25.0298 0x0fa4  srvnet - ok
12:58:25.0329 0x0fa4  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
12:58:25.0344 0x0fa4  SSDPSRV - ok
12:58:25.0376 0x0fa4  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
12:58:25.0391 0x0fa4  SstpSvc - ok
12:58:25.0438 0x0fa4  [ A87A39F9B42D82F5D60D36BB1D3CC9D3, F609CC721B898B5053FE34B24C94970453BD57441F9A2C93D4F77CB297D56169 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
12:58:25.0454 0x0fa4  Steam Client Service - ok
12:58:25.0485 0x0fa4  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
12:58:25.0501 0x0fa4  stexstor - ok
12:58:25.0532 0x0fa4  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
12:58:25.0579 0x0fa4  stisvc - ok
12:58:25.0594 0x0fa4  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
12:58:25.0594 0x0fa4  storahci - ok
12:58:25.0610 0x0fa4  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\WINDOWS\system32\DRIVERS\vmstorfl.sys
12:58:25.0626 0x0fa4  storflt - ok
12:58:25.0641 0x0fa4  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
12:58:25.0641 0x0fa4  stornvme - ok
12:58:25.0657 0x0fa4  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
12:58:25.0704 0x0fa4  StorSvc - ok
12:58:25.0719 0x0fa4  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
12:58:25.0735 0x0fa4  storvsc - ok
12:58:25.0751 0x0fa4  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\WINDOWS\system32\svsvc.dll
12:58:25.0766 0x0fa4  svsvc - ok
12:58:25.0782 0x0fa4  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
12:58:25.0798 0x0fa4  swenum - ok
12:58:25.0829 0x0fa4  [ A5DC2E63F5E5D3C0B843307374998479, B3156296D1750FEAF2354E217735B8D888C50599869233FB1B537167F2CECE0B ] swprv           C:\WINDOWS\System32\swprv.dll
12:58:25.0860 0x0fa4  swprv - ok
12:58:25.0891 0x0fa4  [ E45DA7CBBA34510C8B9473AD7D4FFD0B, 89C2AED757D86C276D78D29D94DCBF9C1B6A244A2153EC85CCB2E86C5F078387 ] SysMain         C:\WINDOWS\system32\sysmain.dll
12:58:25.0969 0x0fa4  SysMain - ok
12:58:25.0985 0x0fa4  [ 373382005ACB27CB16ED16722FBE946A, A1F86A014A518B3C2EC22A8DD830111E3B2A71D860ECA65A96BC82560802ACF4 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
12:58:26.0016 0x0fa4  SystemEventsBroker - ok
12:58:26.0032 0x0fa4  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
12:58:26.0048 0x0fa4  TabletInputService - ok
12:58:26.0063 0x0fa4  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
12:58:26.0079 0x0fa4  TapiSrv - ok
12:58:26.0141 0x0fa4  [ 6617F44D2432C529B2249A0498B6B40A, E108D3949DE29FE3D3302337725B835BD182CD1CD9424A54829251178D0F49D3 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
12:58:26.0235 0x0fa4  Tcpip - ok
12:58:26.0329 0x0fa4  [ 6617F44D2432C529B2249A0498B6B40A, E108D3949DE29FE3D3302337725B835BD182CD1CD9424A54829251178D0F49D3 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
12:58:26.0391 0x0fa4  TCPIP6 - ok
12:58:26.0407 0x0fa4  [ 33A7D83EEB15431773A6E186CFAABA21, AC5100A76CA44BFADF4A54FDB09FF5D2FF13B9F8482DC1AE86C8C27005F77B0F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
12:58:26.0423 0x0fa4  tcpipreg - ok
12:58:26.0423 0x0fa4  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
12:58:26.0438 0x0fa4  tdx - ok
12:58:26.0454 0x0fa4  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
12:58:26.0454 0x0fa4  terminpt - ok
12:58:26.0501 0x0fa4  [ 2C77831737491F4D684D315B95C62883, 90A2574A281F19646CFCDA5FDF40063220058290D2D5523AD91B7E709EC36D3D ] TermService     C:\WINDOWS\System32\termsrv.dll
12:58:26.0516 0x0fa4  TermService - ok
12:58:26.0548 0x0fa4  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\WINDOWS\system32\themeservice.dll
12:58:26.0579 0x0fa4  Themes - ok
12:58:26.0610 0x0fa4  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
12:58:26.0610 0x0fa4  THREADORDER - ok
12:58:26.0626 0x0fa4  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
12:58:26.0641 0x0fa4  TimeBroker - ok
12:58:26.0673 0x0fa4  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
12:58:26.0673 0x0fa4  TPM - ok
12:58:26.0688 0x0fa4  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
12:58:26.0704 0x0fa4  TrkWks - ok
12:58:26.0735 0x0fa4  [ DA56FFA46030E6FEB215E3D5DAA65B11, 36B5EED8F9044475000362DBFC8A2A40B889ED46382CCEFB6BA04BE0442F98C2 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
12:58:26.0766 0x0fa4  TrustedInstaller - ok
12:58:26.0782 0x0fa4  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
12:58:26.0829 0x0fa4  TsUsbFlt - ok
12:58:26.0845 0x0fa4  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
12:58:26.0860 0x0fa4  TsUsbGD - ok
12:58:26.0876 0x0fa4  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
12:58:26.0891 0x0fa4  tunnel - ok
12:58:26.0907 0x0fa4  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
12:58:26.0923 0x0fa4  uagp35 - ok
12:58:26.0923 0x0fa4  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
12:58:26.0938 0x0fa4  UASPStor - ok
12:58:26.0954 0x0fa4  [ 5D1B430EA11064C56E7C8F84B90DEB6A, 874D9EE807F16321C4857030F9C18D2B925785FD4BB7ED047AF9535BF3F30D84 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
12:58:26.0954 0x0fa4  UCX01000 - ok
12:58:26.0985 0x0fa4  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
12:58:27.0001 0x0fa4  udfs - ok
12:58:27.0016 0x0fa4  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
12:58:27.0032 0x0fa4  UEFI - ok
12:58:27.0063 0x0fa4  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
12:58:27.0095 0x0fa4  UI0Detect - ok
12:58:27.0110 0x0fa4  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
12:58:27.0110 0x0fa4  uliagpkx - ok
12:58:27.0126 0x0fa4  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
12:58:27.0126 0x0fa4  umbus - ok
12:58:27.0141 0x0fa4  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
12:58:27.0141 0x0fa4  UmPass - ok
12:58:27.0173 0x0fa4  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
12:58:27.0204 0x0fa4  UmRdpService - ok
12:58:27.0266 0x0fa4  [ C485FB802F6C4A306B8F89BA087E5CA2, DE2E0F4A22D63EC54E23491962282ED3B01C7EB9941774A0C5633A776EAD499A ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
12:58:27.0282 0x0fa4  UNS - ok
12:58:27.0298 0x0fa4  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\WINDOWS\System32\upnphost.dll
12:58:27.0329 0x0fa4  upnphost - ok
12:58:27.0345 0x0fa4  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
12:58:27.0407 0x0fa4  USBAAPL64 - ok
12:58:27.0438 0x0fa4  [ 433ECDE01A52691FA7ACA51C10C09B70, B896296A3F8EF2AF3AC5F0091B9848156608586F1E10A95D70700BAB51E8062A ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
12:58:27.0438 0x0fa4  usbccgp - ok
12:58:27.0470 0x0fa4  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
12:58:27.0485 0x0fa4  usbcir - ok
12:58:27.0485 0x0fa4  [ 5477D6E27C7D266EF8C152B9A25ADE5E, FEE81677D284A78A0C0FB60F887A952CFC759AE78B01206D73F59FE33612C519 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
12:58:27.0501 0x0fa4  usbehci - ok
12:58:27.0516 0x0fa4  [ DF56C2C04EFA328D7A66B69007130266, 719316EB25A8C7B82C7941D1C5B964CC4EDA4A997732F481526DE7356F6FC0D8 ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
12:58:27.0548 0x0fa4  usbhub - ok
12:58:27.0563 0x0fa4  [ C0E33820326199CE3CFD3B9F27F81D99, C67F55E7DD6F7FC4A96256A14A805D39C5CE8725FD86675C6C860B3DE8E4DBC3 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
12:58:27.0579 0x0fa4  USBHUB3 - ok
12:58:27.0595 0x0fa4  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
12:58:27.0595 0x0fa4  usbohci - ok
12:58:27.0610 0x0fa4  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
12:58:27.0626 0x0fa4  usbprint - ok
12:58:27.0641 0x0fa4  [ B1230E9813B5C7E762DF27756AA23917, 985203D267C2BF5FA88FE043785DF3DDFD796CB3CC4007E171AF63F41C413239 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
12:58:27.0657 0x0fa4  USBSTOR - ok
12:58:27.0657 0x0fa4  [ BA4FA655E0FC577DB7436FC963932CE4, 3336FDECD4AEC6B316D4C0803E22A12719EBEDD1A9427C0DF5D3B263BE600EE6 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
12:58:27.0673 0x0fa4  usbuhci - ok
12:58:27.0688 0x0fa4  [ 3B44CB989757428208CCFCC028C13110, E71BFA4BB0F4FAEDA79606C44F7DAAB317CD99C9382942E5830F440CF96D9B35 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
12:58:27.0704 0x0fa4  USBXHCI - ok
12:58:27.0720 0x0fa4  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
12:58:27.0735 0x0fa4  VaultSvc - ok
12:58:27.0735 0x0fa4  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
12:58:27.0735 0x0fa4  vdrvroot - ok
12:58:27.0782 0x0fa4  [ CFBAD6B48EDFAA0828A52646B7C4C08D, DDC7D607E784CE6FB5BC62E53E6309EB583D74425E6D3FC8F3D3EC705D69C075 ] vds             C:\WINDOWS\System32\vds.exe
12:58:27.0845 0x0fa4  vds - ok
12:58:27.0860 0x0fa4  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
12:58:27.0860 0x0fa4  VerifierExt - ok
12:58:27.0907 0x0fa4  [ 041D3EF364E624DBB2703A64A5AADF89, 94A52A35AFDD09EBCC4266BD6D44014AAB4BBDFD3F6E8C997A1CA49DFB48F60D ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
12:58:27.0938 0x0fa4  vhdmp - ok
12:58:27.0938 0x0fa4  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
12:58:27.0954 0x0fa4  viaide - ok
12:58:27.0985 0x0fa4  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
12:58:28.0001 0x0fa4  vmbus - ok
12:58:28.0016 0x0fa4  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
12:58:28.0016 0x0fa4  VMBusHID - ok
12:58:28.0063 0x0fa4  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
12:58:28.0079 0x0fa4  vmicguestinterface - ok
12:58:28.0095 0x0fa4  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
12:58:28.0110 0x0fa4  vmicheartbeat - ok
12:58:28.0126 0x0fa4  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
12:58:28.0141 0x0fa4  vmickvpexchange - ok
12:58:28.0157 0x0fa4  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
12:58:28.0173 0x0fa4  vmicrdv - ok
12:58:28.0188 0x0fa4  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
12:58:28.0204 0x0fa4  vmicshutdown - ok
12:58:28.0204 0x0fa4  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
12:58:28.0220 0x0fa4  vmictimesync - ok
12:58:28.0251 0x0fa4  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
12:58:28.0266 0x0fa4  vmicvss - ok
12:58:28.0266 0x0fa4  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
12:58:28.0282 0x0fa4  volmgr - ok
12:58:28.0282 0x0fa4  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
12:58:28.0298 0x0fa4  volmgrx - ok
12:58:28.0313 0x0fa4  [ 9F9CE33B50611A1C61A46B8911E0B30B, FE4EDF16CE8FC36BB2125FC7D1CF45C65B06A2C31D426635115D879987DF2159 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
12:58:28.0329 0x0fa4  volsnap - ok
12:58:28.0345 0x0fa4  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
12:58:28.0345 0x0fa4  vpci - ok
12:58:28.0360 0x0fa4  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
12:58:28.0376 0x0fa4  vsmraid - ok
12:58:28.0423 0x0fa4  [ D51D7EF1EA5ED2BB01E9D07E6E0533BC, E31118F42B316C9B6C9072D9628AA2801FC2519F1A46C9ED167843CD67183C19 ] VSS             C:\WINDOWS\system32\vssvc.exe
12:58:28.0485 0x0fa4  VSS - ok
12:58:28.0501 0x0fa4  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
12:58:28.0516 0x0fa4  VSTXRAID - ok
12:58:28.0532 0x0fa4  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
12:58:28.0532 0x0fa4  vwifibus - ok
12:58:28.0532 0x0fa4  [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
12:58:28.0548 0x0fa4  vwififlt - ok
12:58:28.0548 0x0fa4  [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
12:58:28.0563 0x0fa4  vwifimp - ok
12:58:28.0595 0x0fa4  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\WINDOWS\system32\w32time.dll
12:58:28.0626 0x0fa4  W32Time - ok
12:58:28.0641 0x0fa4  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
12:58:28.0657 0x0fa4  WacomPen - ok
12:58:28.0704 0x0fa4  [ 92BF4B3EBD6F163B94B7A20C65E7B698, 293E6FEFA862690A7B75443D6495144313D759971B98B495A99AAB0D2CF1F350 ] wbengine        C:\WINDOWS\system32\wbengine.exe
12:58:28.0766 0x0fa4  wbengine - ok
12:58:28.0798 0x0fa4  [ 58F28103889817C93E5B5AFABC87E709, 547381B10DAC8A3CC16FB5DE6DF2FDA3CCD8F45DF581959FFF6E30875419B011 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
12:58:28.0829 0x0fa4  WbioSrvc - ok
12:58:28.0845 0x0fa4  [ 772365894F14652D376B2E5030179DC9, 3D917CED040456EB269BE2B82315CEAE3589FEC016DAE37FC5BC1C3D66DE3140 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
12:58:28.0876 0x0fa4  Wcmsvc - ok
12:58:28.0907 0x0fa4  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
12:58:28.0970 0x0fa4  wcncsvc - ok
12:58:29.0001 0x0fa4  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
12:58:29.0032 0x0fa4  WcsPlugInService - ok
12:58:29.0032 0x0fa4  [ 694B28DE12AD47031FFB4B052662131A, FF3B1B1A69C82BB123073E10D9F1322ED8587F5BAC36F8AB7DAED22C7DD5C7DB ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
12:58:29.0048 0x0fa4  WdBoot - ok
12:58:29.0079 0x0fa4  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
12:58:29.0110 0x0fa4  Wdf01000 - ok
12:58:29.0110 0x0fa4  [ 0B99529A3BECC3528D865DDECB62503B, 28E6B44BDC52E212D2EB269491D3574B45EE9B19821FE15167D7FA05566C89F4 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
12:58:29.0126 0x0fa4  WdFilter - ok
12:58:29.0142 0x0fa4  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
12:58:29.0173 0x0fa4  WdiServiceHost - ok
12:58:29.0173 0x0fa4  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
12:58:29.0188 0x0fa4  WdiSystemHost - ok
12:58:29.0204 0x0fa4  [ 282E7D46310338FF4A6B7680440EB0DA, 04242798DD82F583154AEA3D775C9BFD574FC471D01CDEB9D070872425094D82 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
12:58:29.0220 0x0fa4  WdNisDrv - ok
12:58:29.0251 0x0fa4  WdNisSvc - ok
12:58:29.0298 0x0fa4  [ 6588A957873326361AB1CAC4E76F8394, BE17880CEDCAE5ED3B983443E3777842646A3E48B661422A717656E11F6DBA94 ] WebClient       C:\WINDOWS\System32\webclnt.dll
12:58:29.0313 0x0fa4  WebClient - ok
12:58:29.0329 0x0fa4  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
12:58:29.0345 0x0fa4  Wecsvc - ok
12:58:29.0360 0x0fa4  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
12:58:29.0392 0x0fa4  WEPHOSTSVC - ok
12:58:29.0407 0x0fa4  [ AA1315B87D9B2E39584165318A59F15D, CD19608BE1F6B7AECF802F8D2DD4FCBDAA29450ED37F7D040DC6453924C7B0FE ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
12:58:29.0438 0x0fa4  wercplsupport - ok
12:58:29.0454 0x0fa4  [ 22B4C24AB921BFF7827FFBCA1F4E1BB3, B634F7018097A8E4EECDD9F032DF6A0FB6817FC3DEB92BCE6A0965B5D71D8DFA ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
12:58:29.0470 0x0fa4  WerSvc - ok
12:58:29.0501 0x0fa4  [ 2E3E82D7B1076B90F4E228A8EF17B261, 0492F8E0BE09DAD9922E85CCA7BCB1548CB9DC5841F46174A0657FDC59AAC3CE ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
12:58:29.0517 0x0fa4  WFPLWFS - ok
12:58:29.0532 0x0fa4  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
12:58:29.0548 0x0fa4  WiaRpc - ok
12:58:29.0579 0x0fa4  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
12:58:29.0595 0x0fa4  WIMMount - ok
12:58:29.0595 0x0fa4  WinDefend - ok
12:58:29.0626 0x0fa4  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
12:58:29.0657 0x0fa4  WinHttpAutoProxySvc - ok
12:58:29.0688 0x0fa4  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
12:58:29.0688 0x0fa4  Winmgmt - ok
12:58:29.0767 0x0fa4  [ 690C3FC5C9DBD6B9AEDF8341EC720E41, 0E4412BB6DEB5761F7A889FD90821FAFD7C6E173F449EAB3A0446BA653D6AD0C ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
12:58:29.0845 0x0fa4  WinRM - ok
12:58:29.0860 0x0fa4  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\WINDOWS\system32\DRIVERS\WinUsb.sys
12:58:29.0876 0x0fa4  WinUsb - ok
12:58:29.0923 0x0fa4  [ 9378B4E7E4E3EAE2F05823CFFF2C6EF4, 66BE95F975FAF3825DFA22BD4DA8693D37B15B83DBFDD36C7896F7363A127513 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
12:58:29.0970 0x0fa4  WlanSvc - ok
12:58:30.0017 0x0fa4  [ C2838466CCC44FAEF2C3D4C1E5971ECB, 4CA5B1632302E59E754CEA5B3CA3977D8CE9DC7B2E8673B450BBF0D646AD7AD8 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
12:58:30.0095 0x0fa4  wlidsvc - ok
12:58:30.0110 0x0fa4  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
12:58:30.0126 0x0fa4  WmiAcpi - ok
12:58:30.0157 0x0fa4  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
12:58:30.0173 0x0fa4  wmiApSrv - ok
12:58:30.0204 0x0fa4  WMPNetworkSvc - ok
12:58:30.0282 0x0fa4  [ E178371E493BF17EB90FE71ABA8BE643, E6F96C62D6AD1FE65D54F6799ABC32D34DE8C6EBFF8A297CA3142EF096112FCE ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
12:58:30.0360 0x0fa4  workfolderssvc - ok
12:58:30.0392 0x0fa4  [ E746BCDBA2E02CF6B8D6B26FB167FBE0, 8875BBE444A33E0C477EF1A3899955501B7E0A9479CA8AA20DD8E6AA0D9A71E6 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
12:58:30.0392 0x0fa4  wpcfltr - ok
12:58:30.0407 0x0fa4  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
12:58:30.0454 0x0fa4  WPCSvc - ok
12:58:30.0470 0x0fa4  [ D27491CFCE452C154CECFA155AD0EBC8, 1F3F74C253E3B07DE7EFE27C34DD9AF08617C7B03BB44C2902F69BA9DA3F21F2 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
12:58:30.0501 0x0fa4  WPDBusEnum - ok
12:58:30.0517 0x0fa4  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
12:58:30.0532 0x0fa4  WpdUpFltr - ok
12:58:30.0532 0x0fa4  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
12:58:30.0563 0x0fa4  ws2ifsl - ok
12:58:30.0595 0x0fa4  [ 5CFA46C4ACB2FD70572017052378DAE5, F09134C4433A9E174889A16F29EA6628045B21BE4FA85275ACFD24D5DFB0D937 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
12:58:30.0610 0x0fa4  wscsvc - ok
12:58:30.0610 0x0fa4  WSearch - ok
12:58:30.0720 0x0fa4  [ 3671C668670626DAB0D47B44F65F0489, 0B19244AEF6C819A72724B4DD4C7CD565CE825F0306FB35FC71A1AAB7D1D7FE4 ] WSService       C:\WINDOWS\System32\WSService.dll
12:58:30.0845 0x0fa4  WSService - ok
12:58:30.0954 0x0fa4  [ 86D0BF4F792053A50D6EE43DFA5837A5, 5705DAB9C5896F10757630439AC8FEAB5754251C6C90E9E8449220A65D1E95D5 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
12:58:31.0079 0x0fa4  wuauserv - ok
12:58:31.0095 0x0fa4  [ 2FEAE33E9B2B56104596E1BA444405A9, 0A142F50E06F6224B9CB36B3CE62BE0B36DE8B8DB9F9E05D287DFB884CC7826E ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
12:58:31.0110 0x0fa4  WudfPf - ok
12:58:31.0126 0x0fa4  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
12:58:31.0142 0x0fa4  WUDFRd - ok
12:58:31.0157 0x0fa4  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFSensorLP    C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:58:31.0173 0x0fa4  WUDFSensorLP - ok
12:58:31.0189 0x0fa4  [ BB73CBC65AABC4EA0A5C6A1474A0A743, D644B3C6A7202CADDADB3B68FE1B2A7C76B023FE58F667EED4D538C1F4A65D64 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
12:58:31.0204 0x0fa4  wudfsvc - ok
12:58:31.0220 0x0fa4  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:58:31.0235 0x0fa4  WUDFWpdFs - ok
12:58:31.0235 0x0fa4  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
12:58:31.0251 0x0fa4  WUDFWpdMtp - ok
12:58:31.0282 0x0fa4  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
12:58:31.0329 0x0fa4  WwanSvc - ok
12:58:31.0345 0x0fa4  ================ Scan global ===============================
12:58:31.0392 0x0fa4  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll
12:58:31.0407 0x0fa4  [ 599F1244C60E3D6C28A8DA7FBA7A2C13, 992E5EB5E3ED6172DC986085532224A148A09A4E9A4DED9556F34533EE98E4D0 ] C:\WINDOWS\system32\winsrv.dll
12:58:31.0423 0x0fa4  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll
12:58:31.0439 0x0fa4  [ B4B610BBCB002EC478C6FD80CF915697, CE22B87A7C7C0D325CE66FB97E7318B4A41EE0BD14D902A410126A1EBBEAA6FB ] C:\WINDOWS\system32\services.exe
12:58:31.0454 0x0fa4  [ Global ] - ok
12:58:31.0454 0x0fa4  ================ Scan MBR ==================================
12:58:31.0470 0x0fa4  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
12:58:31.0532 0x0fa4  \Device\Harddisk0\DR0 - ok
12:58:31.0532 0x0fa4  ================ Scan VBR ==================================
12:58:31.0548 0x0fa4  [ D3E4DB0DE41D9F51A8711643DCD1D328 ] \Device\Harddisk0\DR0\Partition1
12:58:31.0564 0x0fa4  \Device\Harddisk0\DR0\Partition1 - ok
12:58:31.0564 0x0fa4  [ E8E8DF3767BEF957A7781C0074455AFB ] \Device\Harddisk0\DR0\Partition2
12:58:31.0564 0x0fa4  \Device\Harddisk0\DR0\Partition2 - ok
12:58:31.0579 0x0fa4  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
12:58:31.0579 0x0fa4  \Device\Harddisk0\DR0\Partition3 - ok
12:58:31.0579 0x0fa4  [ D51E121D3B173479D8885FEBB27936E3 ] \Device\Harddisk0\DR0\Partition4
12:58:31.0579 0x0fa4  \Device\Harddisk0\DR0\Partition4 - ok
12:58:31.0610 0x0fa4  [ 05C4A85FF3D01C42BF0E00C35BDF4665 ] \Device\Harddisk0\DR0\Partition5
12:58:31.0610 0x0fa4  \Device\Harddisk0\DR0\Partition5 - ok
12:58:31.0610 0x0fa4  [ F28F22398D5D964EBEA310F751A06A21 ] \Device\Harddisk0\DR0\Partition6
12:58:31.0610 0x0fa4  \Device\Harddisk0\DR0\Partition6 - ok
12:58:31.0610 0x0fa4  Waiting for KSN requests completion. In queue: 88
12:58:32.0626 0x0fa4  Waiting for KSN requests completion. In queue: 88
12:58:33.0642 0x0fa4  Waiting for KSN requests completion. In queue: 88
12:58:34.0657 0x0fa4  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.3.9600.16384 ), 0x61100 ( enabled : updated )
12:58:34.0657 0x0fa4  Win FW state via NFP2: disabled



#8 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:06:40 AM

Posted 29 December 2013 - 06:23 PM

Can you post the avg log that detected the 100 low risk items?

#9 Upgrayeddz

Upgrayeddz
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:10:40 PM

Posted 29 December 2013 - 07:44 PM

Whole Computer Scan Medium priority;"1";"1";"0" Message;"190";"0";"190" Folders selected for scanning:;"Scan whole computer" Started:;"12/29/2013, 3:57:24 PM" Finished:;"12/29/2013, 4:24:11 PM" Total object scanned:;"223292" User who launched the scan:;"JuanO"   Name;"Description";"Result";"Status";"Priority" C:\Windows\System32\sru\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\wdi\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\e2a0d8155aa42adcfa8bcfb5a2658ea2_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\security\audit\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files (x86)\Google\CrashReports\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files (x86)\Microsoft Office\Office14\Library\Analysis\FUNCRES.XLAM;"Contains macros";"";"Infected";"Message" C:\Users\JuanO\Documents\My Videos\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\AppCompat\Programs\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\ModemLogs\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_80070490_7e7aa0cace58445e58738f5b198b7038917c24ee_00000000_03fc7237\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\Critical_6.3.9600.16384_47f62b2e91a76e7d9afa4beb49db12c63afbba6_00000000_03e04319\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\d16126d82f7976571d83cddf049f1ad2_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\PerfLogs\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\Power Efficiency Diagnostics\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_c323f571ce46e48e04faf60c5c05e3881c48d2_00000000_029534f0\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_ec7c5c97d154733d7dba67f796a3e690fd86516d_00000000_03b04d1b\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default\Cookies\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files\Microsoft Office 15\root\office15\Library\Analysis\PROCDB.XLAM;"Contains macros";"";"Infected";"Message" C:\Windows\System32\Com\dmp\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\MSOCache\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\AppData\Local\ElevatedDiagnostics\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\AppData\Local\Microsoft\Windows\INetCache\Content.IE5\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\85ce82c14cbe886ac789435eefe7cc09_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_f55adbba596b1ba5eaa7483dee0e16dd5c506f_00000000_03c95bea\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\SysWOW64\wdi\SleepStudy\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2026cd2d23e6a287f78078b67d885ef1_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\AppRepository\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_ec7c5c97d154733d7dba67f796a3e690fd86516d_00000000_03c95b00\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\93b86984c4bfc7de673b2157c095bed2_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows NT\MSFax\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\networklist\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\ias\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f0436a76cf636018760f0252265b551e_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files (x86)\Microsoft Office\Office14\1033\EXPTOOWS.XLA;"Contains macros";"";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\0e43f8e85f171fa1915f4fae1dc7d837_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\Resources\Themes\aero\VSCache\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\NetHood\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2d64fb5816da2858fa50e7f633c4de70_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\Documents\My Pictures\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_80070490_7e7aa0cace58445e58738f5b198b7038917c24ee_00000000_03fc7322\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\LogFiles\Firewall\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\AppData\Local\Microsoft\Windows\UsrClass.dat;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\MFAData\msistorg.dat;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default\Templates\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\Installer\$PatchCache$\Managed\00004109610090400000000000F01FEC\14.0.4763\FUNCRES.XLAM_1033;"Contains macros";"";"Infected";"Message" C:\hiberfil.sys;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files\Microsoft Office 15\root\office15\SAMPLES\SOLVSAMP.XLS;"Contains macros";"";"Infected";"Message" C:\Windows\SysWOW64\Com\dmp\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Public\Documents\My Videos\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_80070490_7e7aa0cace58445e58738f5b198b7038917c24ee_00000000_03b055e5\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_80070490_7e7aa0cace58445e58738f5b198b7038917c24ee_00000000_03b04b66\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\dff7077d85354136f50c36a6754bff4e_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\PLA\System\System Diagnostics.xml;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\Prefetch\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\User Account Pictures\Administrator.dat;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\Minidump\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows Defender\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files\WindowsApps\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\47f2d2ffe5e01337d07636e461134a97_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default.migrated\Documents\My Videos\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\diagwrn.xml;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Public\Documents\My Music\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\ff034bdf8cc5fd4c60baa98cb0a76f70_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_ec7c5c97d154733d7dba67f796a3e690fd86516d_00000000_03b0680d\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f686aace6942fb7f7ceb231212eef4a4_d08fbe81-f9b4-4684-be6d-67394fc13f30;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\LocationProvider\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\$Recycle.Bin\S-1-5-19\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\PLA\Templates\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_f55adbba596b1ba5eaa7483dee0e16dd5c506f_00000000_03b04df6\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\820f17b56a6bf3484001a830c1058961_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Network\Downloader\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\098542daaff5f164a1f4236577b2559c_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\Sysprep\Panther\IE\diagwrn.xml;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\System Volume Information\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\440d4893aa50c666390a5d0fb2e15279_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Search\Data\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_ec7c5c97d154733d7dba67f796a3e690fd86516d_00000000_03fc73fd\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\$Recycle.Bin\S-1-5-18\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\Logs\HomeGroup\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\SysWOW64\networklist\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2eb7ff6c5054ba756e6c8cc36acdb4d0_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\ServiceProfiles\LocalService\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\19dd6c9ebea148dcd3066baf91202bb6_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5e77e19a228582db23c1317b99a3e07f_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\5fb0e7a60fea312a7f39e55a5b13d04f_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files\Microsoft Office 15\root\office15\Library\SOLVER\SOLVER.XLAM;"Contains macros";"";"Infected";"Message" C:\Program Files (x86)\Microsoft Office\Office14\Library\EUROTOOL.XLAM;"Contains macros";"";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\Kernel_c000021a_a659dcf2ad1ae910e337f981daad3f7ac7eaeea_00000000_cab_03e0aa01\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_f55adbba596b1ba5eaa7483dee0e16dd5c506f_00000000_03e0452c\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\c9e5c30a9c4fc4492ed3a2937a42972f_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\security\cap\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\Installer\$PatchCache$\Managed\00004109610090400000000000F01FEC\14.0.4763\PROCDB.XLAM_1033;"Contains macros";"";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\ab589428267077cefac3e0f443daba67_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_unspecified_ec7c5c97d154733d7dba67f796a3e690fd86516d_00000000_cab_06be52d8\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\config\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\ServiceProfiles\NetworkService\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_f55adbba596b1ba5eaa7483dee0e16dd5c506f_00000000_03fc74d7\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\ed9fec07ed7c95d17a8117962a015f99_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\PLA\Reports\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\SysWOW64\Tasks\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\PLA\Rules\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\AUInstallAgent\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\LogFiles\Fax\Outgoing\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\LogFiles\WMI\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\AppData\Local\Microsoft\Windows\WebCacheLock.dat;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\Panther\UnattendGC\diagwrn.xml;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default.migrated\Documents\My Pictures\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Public\Documents\My Pictures\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files\Microsoft Office 15\root\office15\Library\EUROTOOL.XLAM;"Contains macros";"";"Infected";"Message" C:\Windows\SysWOW64\sru\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_80070490_7e7aa0cace58445e58738f5b198b7038917c24ee_00000000_01346eec\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\wfp\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Documents and Settings\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\pagefile.sys;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default\Documents\My Pictures\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\RAC\StateData\RacMetaData.dat;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\SMI\Store\Machine\SCHEMA.DAT;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_80070490_7e7aa0cace58445e58738f5b198b7038917c24ee_00000000_03b0549d\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_ec7c5c97d154733d7dba67f796a3e690fd86516d_00000000_02953619\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\56fb0dae62c4a59b0dc64a92a8947054_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Documents\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\Tasks\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default\Recent\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\Logs\SystemRestore\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\Panther\UnattendGC\diagerr.xml;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\spool\PRINTERS\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\Documents\My Music\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\Sysprep\Panther\IE\diagerr.xml;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\MsDtc\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\LogFiles\Fax\Incoming\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\AppData\Local\Microsoft\Windows\INetCookies\DAWMFRFQ.txt;"Found Tracking cookie.Real";"Secured";"Healed";"Medium" C:\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\PCPKSP\WindowsAIK\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\05cf61493a2b9f86524a01fcf272eda4_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\AppData\Local\History\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_f55adbba596b1ba5eaa7483dee0e16dd5c506f_00000000_03b068e8\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_2152759308_19a56fc295d9f94116fa36d31393c2858a9cf4a6_00000000_cab_0684f9e4\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\swapfile.sys;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default\AppData\Local\History\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\2a7142b6abbfd8d3bd39b07b2dc4f826_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\diagerr.xml;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\WinSxS\amd64_microsoft-windows-c..rformance-perftrack_31bf3856ad364e35_6.3.9600.16384_none_4c9196811ed79b13\traceanonconfig.xml;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\LiveKernelReports\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default\PrintHood\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_ec7c5c97d154733d7dba67f796a3e690fd86516d_00000000_03e04432\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\PLA\System\System Performance.xml;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\pagefile.sys;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_unspecified_f55adbba596b1ba5eaa7483dee0e16dd5c506f_00000000_cab_06be52b8\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\swapfile.sys;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\wbem\MOF\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\Configuration\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\SysWOW64\config\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\40d26a5e124e18614f85be9561dab871_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\found.000\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default\Documents\My Music\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a26094b9e492d13d18e2fd9ce5e71dad_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files (x86)\Microsoft Office\Office14\SAMPLES\SOLVSAMP.XLS;"Contains macros";"";"Infected";"Message" C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Templates\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\Sqm\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\restore\MachineGuid.txt;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_unspecified_f55adbba596b1ba5eaa7483dee0e16dd5c506f_00000000_029536e4\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\SystemData\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default.migrated\Documents\My Music\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\45faa771767893c7ad119df15978b0e5_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\a38ef5ffc0bae2192bb1e986b76bec6a_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\70ee3e1fefedc7e0fc7fbe7146705277_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\NTUSER.DAT;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files (x86)\Microsoft Office\Office14\Library\Analysis\PROCDB.XLAM;"Contains macros";"";"Infected";"Message" C:\Users\JuanO\PrintHood\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Windows\WER\ReportArchive\NonCritical_80070490_7e7aa0cace58445e58738f5b198b7038917c24ee_00000000_03b04c41\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\084280ad97a15ca08746a2d8cb3b87f6_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files\Microsoft Office 15\root\office15\Library\Analysis\FUNCRES.XLAM;"Contains macros";"";"Infected";"Message" C:\Users\Default\AppData\Local\Temporary Internet Files\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\SysWOW64\MsDtc\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\9d8454d12ecf683371944aac93dbe0df_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\hiberfil.sys;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files (x86)\Microsoft Office\Office14\Library\SOLVER\SOLVER.XLAM;"Contains macros";"";"Infected";"Message" C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f28cef4c1e308c1d0f1ed00e841f5616_df36763b-313e-4438-bdbe-23a6d88651b4;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\ProgramData\Desktop\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Windows\System32\spool\SERVERS\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\JuanO\Templates\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files (x86)\Microsoft Office\Office14\Library\Analysis\ATPVBAEN.XLAM;"Contains macros";"";"Infected";"Message" C:\Recovery\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Program Files\Microsoft Office 15\root\office15\Library\Analysis\ATPVBAEN.XLAM;"Contains macros";"";"Infected";"Message" C:\Program Files\Microsoft Office 15\root\office15\1033\EXPTOOWS.XLA;"Contains macros";"";"Infected";"Message" C:\Users\Default\Documents\My Videos\;"Locked file. Not tested.";"Infected";"Infected";"Message" C:\Users\Default\NetHood\;"Locked file. Not tested.";"Infected";"Infected";"Message"

#10 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:06:40 AM

Posted 29 December 2013 - 08:48 PM

I would consider all those to be false positive.

#11 Upgrayeddz

Upgrayeddz
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:10:40 PM

Posted 30 December 2013 - 11:23 PM

Do you have any other ideas for what I could do to figure why i get this lag?



#12 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:06:40 AM

Posted 30 December 2013 - 11:28 PM

When I get home in about 7 hours I will post more instructions.



#13 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:06:40 AM

Posted 31 December 2013 - 06:41 AM

Please download MiniToolBox, and save it to your desktop and run it, and checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

#14 Upgrayeddz

Upgrayeddz
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:10:40 PM

Posted 31 December 2013 - 12:34 PM

MiniToolBox by Farbar  Version: 18-12-2013
Ran by JuanO (administrator) on 31-12-2013 at 09:33:58
Running from "C:\Users\JuanO\Downloads"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Intel® 82579V Gigabit Network Connection = Ethernet (Connected)
Qualcomm Atheros AR5BWB222 Wireless Network Adapter = Wi-Fi (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Juan
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : netgear.com

Wireless LAN adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 12-16-D8-83-34-6C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 20-16-D8-83-42-A4
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : netgear.com
   Description . . . . . . . . . . . : Qualcomm Atheros AR5BWB222 Wireless Network Adapter
   Physical Address. . . . . . . . . : 20-16-D8-83-34-6C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . : netgear.com
   Description . . . . . . . . . . . : Intel® 82579V Gigabit Network Connection
   Physical Address. . . . . . . . . : 70-54-D2-3C-92-FD
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::fd58:441b:ae17:60a%3(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.254.19(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, December 31, 2013 9:00:23 AM
   Lease Expires . . . . . . . . . . : Wednesday, January 1, 2014 9:00:23 AM
   Default Gateway . . . . . . . . . : 192.168.254.254
   DHCP Server . . . . . . . . . . . : 192.168.254.254
   DHCPv6 IAID . . . . . . . . . . . : 260606088
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-64-86-3A-70-54-D2-3C-92-FD
   DNS Servers . . . . . . . . . . . : 192.168.254.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.netgear.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : netgear.com
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 3:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:cad:2dad:3f57:1ec(Preferred)
   Link-local IPv6 Address . . . . . : fe80::cad:2dad:3f57:1ec%9(Preferred)
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 150994944
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-64-86-3A-70-54-D2-3C-92-FD
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  dslrouter.netgear.com
Address:  192.168.254.254

Name:    google.com
Addresses:  2607:f8b0:4005:800::1003
      74.125.239.101
      74.125.239.102
      74.125.239.103
      74.125.239.104
      74.125.239.105
      74.125.239.110
      74.125.239.96
      74.125.239.97
      74.125.239.98
      74.125.239.99
      74.125.239.100


Pinging google.com [74.125.239.100] with 32 bytes of data:
Reply from 74.125.239.100: bytes=32 time=45ms TTL=54
Reply from 74.125.239.100: bytes=32 time=45ms TTL=54

Ping statistics for 74.125.239.100:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 45ms, Maximum = 45ms, Average = 45ms
Server:  dslrouter.netgear.com
Address:  192.168.254.254

Name:    yahoo.com
Addresses:  98.139.183.24
      206.190.36.45
      98.138.253.109


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=120ms TTL=47
Reply from 98.138.253.109: bytes=32 time=81ms TTL=47

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 81ms, Maximum = 120ms, Average = 100ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 10...12 16 d8 83 34 6c ......Microsoft Wi-Fi Direct Virtual Adapter
  6...20 16 d8 83 42 a4 ......Bluetooth Device (Personal Area Network)
  4...20 16 d8 83 34 6c ......Qualcomm Atheros AR5BWB222 Wireless Network Adapter
  3...70 54 d2 3c 92 fd ......Intel® 82579V Gigabit Network Connection
  1...........................Software Loopback Interface 1
  7...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
  9...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0  192.168.254.254   192.168.254.19     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
    192.168.254.0    255.255.255.0         On-link    192.168.254.19    276
   192.168.254.19  255.255.255.255         On-link    192.168.254.19    276
  192.168.254.255  255.255.255.255         On-link    192.168.254.19    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link    192.168.254.19    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link    192.168.254.19    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  9    306 ::/0                     On-link
  1    306 ::1/128                  On-link
  9    306 2001::/32                On-link
  9    306 2001:0:9d38:90d7:cad:2dad:3f57:1ec/128
                                    On-link
  3    276 fe80::/64                On-link
  9    306 fe80::/64                On-link
  9    306 fe80::cad:2dad:3f57:1ec/128
                                    On-link
  3    276 fe80::fd58:441b:ae17:60a/128
                                    On-link
  1    306 ff00::/8                 On-link
  3    276 ff00::/8                 On-link
  9    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (12/30/2013 04:08:30 PM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073422302

Error: (12/29/2013 04:09:22 PM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073422302

Error: (12/28/2013 04:08:30 PM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073422302

Error: (12/27/2013 05:08:26 PM) (Source: Application Error) (User: )
Description: Faulting application name: firefox.exe, version: 26.0.0.5087, time stamp: 0x52a0d273
Faulting module name: xul.dll, version: 26.0.0.5087, time stamp: 0x52a0d20a
Exception code: 0xc0000005
Fault offset: 0x0014e1a8
Faulting process id: 0x1308
Faulting application start time: 0xfirefox.exe0
Faulting application path: firefox.exe1
Faulting module path: firefox.exe2
Report Id: firefox.exe3
Faulting package full name: firefox.exe4
Faulting package-relative application ID: firefox.exe5

Error: (12/27/2013 04:08:30 PM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073422302

Error: (12/26/2013 06:35:23 PM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 26.0.0.5087 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 5d8

Start Time: 01cf0286ec0b17ee

Termination Time: 31

Application Path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe

Report Id: 8369ed76-6e9f-11e3-bfbc-2016d88342a4

Faulting package full name:

Faulting package-relative application ID:

Error: (12/26/2013 04:08:31 PM) (Source: Office 2013 Licensing Service) (User: )
Description: Subscription licensing service failed: -1073422302

Error: (12/26/2013 10:54:03 AM) (Source: MsiInstaller) (User: Juan)
Description: Product: iTunes -- Error 1920. Service 'Apple Mobile Device' (Apple Mobile Device) failed to start.  Verify that you have sufficient privileges to start system services.

Error: (12/26/2013 10:25:11 AM) (Source: MsiInstaller) (User: Juan)
Description: Product: iTunes -- Error 1920. Service 'Apple Mobile Device' (Apple Mobile Device) failed to start.  Verify that you have sufficient privileges to start system services.

Error: (12/25/2013 11:21:43 PM) (Source: Application Hang) (User: )
Description: The program Explorer.EXE version 6.3.9600.16441 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: af0

Start Time: 01cf0205d68d2240

Termination Time: 0

Application Path: C:\WINDOWS\Explorer.EXE

Report Id: 1f9675c6-6dfb-11e3-bfb7-2016d88342a4

Faulting package full name:

Faulting package-relative application ID:


System errors:
=============
Error: (12/31/2013 09:04:31 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (12/31/2013 01:03:37 AM) (Source: Service Control Manager) (User: )
Description: The Superfetch service terminated with the following error:
%%1062

Error: (12/30/2013 10:35:03 AM) (Source: DCOM) (User: Juan)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (12/30/2013 10:34:33 AM) (Source: DCOM) (User: Juan)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (12/30/2013 10:25:46 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable

Error: (12/30/2013 01:22:23 AM) (Source: Service Control Manager) (User: )
Description: The Superfetch service terminated with the following error:
%%1062

Error: (12/29/2013 07:35:25 PM) (Source: Service Control Manager) (User: )
Description: The Virtual Disk service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (12/29/2013 07:35:16 PM) (Source: Service Control Manager) (User: )
Description: The Office Software Protection Platform service terminated unexpectedly.  It has done this 1 time(s).

Error: (12/29/2013 04:28:45 PM) (Source: DCOM) (User: Juan)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (12/29/2013 00:52:51 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: machine-defaultLocalActivation{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Using LRPC)UnavailableUnavailable


Microsoft Office Sessions:
=========================
Error: (12/30/2013 04:08:30 PM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073422302

Error: (12/29/2013 04:09:22 PM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073422302

Error: (12/28/2013 04:08:30 PM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073422302

Error: (12/27/2013 05:08:26 PM) (Source: Application Error)(User: )
Description: firefox.exe26.0.0.508752a0d273xul.dll26.0.0.508752a0d20ac00000050014e1a8130801cf03675faeeffdC:\Program Files (x86)\Mozilla Firefox\firefox.exeC:\Program Files (x86)\Mozilla Firefox\xul.dll8ddbe024-6f5c-11e3-bfbd-2016d88342a4

Error: (12/27/2013 04:08:30 PM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073422302

Error: (12/26/2013 06:35:23 PM) (Source: Application Hang)(User: )
Description: firefox.exe26.0.0.50875d801cf0286ec0b17ee31C:\Program Files (x86)\Mozilla Firefox\firefox.exe8369ed76-6e9f-11e3-bfbc-2016d88342a4

Error: (12/26/2013 04:08:31 PM) (Source: Office 2013 Licensing Service)(User: )
Description: Subscription licensing service failed: -1073422302

Error: (12/26/2013 10:54:03 AM) (Source: MsiInstaller)(User: Juan)
Description: Product: iTunes -- Error 1920. Service 'Apple Mobile Device' (Apple Mobile Device) failed to start.  Verify that you have sufficient privileges to start system services.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/26/2013 10:25:11 AM) (Source: MsiInstaller)(User: Juan)
Description: Product: iTunes -- Error 1920. Service 'Apple Mobile Device' (Apple Mobile Device) failed to start.  Verify that you have sufficient privileges to start system services.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/25/2013 11:21:43 PM) (Source: Application Hang)(User: )
Description: Explorer.EXE6.3.9600.16441af001cf0205d68d22400C:\WINDOWS\Explorer.EXE1f9675c6-6dfb-11e3-bfb7-2016d88342a4


CodeIntegrity Errors:
===================================
  Date: 2013-12-29 15:31:33.069
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2013-12-29 15:31:33.036
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2013-12-29 15:31:09.644
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2013-12-29 15:30:46.854
  Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.


=========================== Installed Programs ============================

µTorrent (Version: 3.3.2.30303)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Agatha Christie - Death on the Nile (Version: 2.2.0.98)
Aloha TriPeaks (Version: 2.2.0.98)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
Battle.net
Bejeweled 3 (Version: 2.2.0.98)
Bonjour (Version: 3.0.0.10)
Cisco Connect (Version: 1.4.11245.0)
Cradle Of Egypt Collector's Edition (Version: 2.2.0.98)
CyberLink MediaEspresso 6.5 (Version: 6.5.3103_44819)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Delicious: Emily's True Love Premium Edition (Version: 2.2.0.98)
FINAL FANTASY XIV - A Realm Reborn (Version: 1.0.0000)
Gateway Power Management (Version: 7.00.3006)
Gateway Recovery Management (Version: 6.00.3011)
Hearthstone
Hotkey Utility (Version: 3.00.3001)
iCloud (Version: 3.1.0.40)
Identity Card (Version: 2.00.3004)
Intel® Management Engine Components (Version: 8.1.0.1281)
Intel® Network Connections 18.5.54.0 (Version: 18.5.54.0)
Intel® Processor Graphics (Version: 10.18.10.3379)
Intel® Rapid Storage Technology (Version: 11.5.0.1207)
Intel® SDK for OpenCL - CPU Only Runtime Package (Version: 2.0.0.37149)
Intel® Trusted Connect Service Client (Version: 1.24.738.1)
iTunes (Version: 11.1.2.32)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Jewel Match 3 (Version: 2.2.0.98)
League of Legends (Version: 1.3)
Live Updater (Version: 2.00.3003)
Microsoft Office 365 Home Premium - en-us (Version: 15.0.4551.1011)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SkyDrive (Version: 17.0.2003.1112)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Mozilla Firefox 26.0 (x86 en-US) (Version: 26.0)
myitlab Plug-in/ActiveX Installer (Version: 1.0.7)
Mystery P.I. - Curious Case of Counterfeit Cove (Version: 2.2.0.98)
Nero 12 Essentials OEM.a01 (Version: 12.5.00000)
Nero ControlCenter (Version: 11.0.16700)
Nero ControlCenter Help (CHM) (Version: 12.0.0003)
Nero Core Components (Version: 11.0.23400)
Nero Express (Version: 12.5.7000)
Nero Express Help (CHM) (Version: 12.0.1000)
Nero Launcher (Version: 12.0.3000)
Nero Update (Version: 11.0.13300.42.0)
Nexon Game Manager
NVIDIA PhysX (Version: 9.12.1031)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4551.1011)
Office 15 Click-to-Run Licensing Component (Version: 15.0.4551.1011)
Office 15 Click-to-Run Localization Component (Version: 15.0.4551.1011)
Peggle Nights (Version: 2.2.0.98)
Penguins! (Version: 2.2.0.98)
Plants vs. Zombies - Game of the Year (Version: 2.2.0.98)
Polar Bowler (Version: 2.2.0.97)
Polar Golfer (Version: 2.2.0.98)
Prerequisite installer (Version: 12.0.0002)
Qualcomm Atheros Bluetooth Suite (64) (Version: 8.0.0.214)
Qualcomm Atheros WLAN and Bluetooth Client Installation Program (Version: 11.31)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.0)
Realtek High Definition Audio Driver (Version: 6.0.1.6680)
Realtek USB 2.0 Card Reader (Version: 6.2.8400.30137)
RealUpgrade 1.1 (Version: 1.1.0)
RIFT
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Skype™ 6.3 (Version: 6.3.107)
Spotify (Version: 0.8.4.99.ga249b5f1)
Steam (Version: 1.0.0.0)
System Requirements Lab for Intel (Version: 4.5.15.0)
Tales of Lagoona (Version: 2.2.0.110)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition
Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition
Update Installer for WildTangent Games App
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
Visual Studio 2010 x64 Redistributables (Version: 13.0.0.1)
Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)
Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)
WildTangent Games (Version: 1.0.3.0)
WildTangent Games App (Version: 4.0.10.15)
World of Warcraft
Zuma's Revenge (Version: 2.2.0.98)

========================= Memory info: ===================================

Percentage of memory in use: 15%
Total physical RAM: 6012.96 MB
Available physical RAM: 5103.34 MB
Total Pagefile: 12156.96 MB
Available Pagefile: 11257.83 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.88 MB

========================= Partitions: =====================================

1 Drive c: (Gateway) (Fixed) (Total:903.36 GB) (Free:779.7 GB) NTFS

========================= Users: ========================================

User accounts for \\JUAN

Administrator            Guest                    JuanO                    


**** End of log ****
 



#15 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:06:40 AM

Posted 31 December 2013 - 07:10 PM

Please perform the following, so that we can get the exact specs of your computer. This will better assist us in helping you more.

Publish a Snapshot using Speccy

The below is for those who cannot get online

Please take caution when attaching a text file to your post if you cannot copy/paste the link to your post, you will need to edit it to make sure that your Windows Key is not present.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users