Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Where Do I Even Start...


  • Please log in to reply
15 replies to this topic

#1 RacSta

RacSta

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 21 January 2014 - 02:26 PM

Hello, I unfortunately have quite the list of problems and wasn't sure which category was best fit to post in. I've used bleeping computer before and already have malwarebytes, ccleaner, and revo uninstaller installed as a result. However, problems are arising again. Here is a list of what I am hoping to fix:

- Everytime I go on youtube, Chrome stops responding and I have to close down and restart. This site also runs significantly slower than it should

- I constantly receive notifications that my C: Hard drive is almost full, but I don't have that much stuff on my computer and I have tried everything I could think to try to fix this

- Overall, my computer performance is not good. My computer gets extremely hot, it runs very slowly, overall performance is just not good.

 

Not sure what exactly I need to do to fix this. If possible I would also like to have an idea of what I can do in the future to 'clean up' if it gets like this yet again

 

Thank you!



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:39 AM

Posted 21 January 2014 - 02:44 PM

Hello RacSta

Start with a new scan with your MBAM(Malwarebytes) Post that log

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 RacSta

RacSta
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 28 January 2014 - 07:03 PM

Here is the Malwarebytes Log

 

 

 

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org

 

Database version: v2013.10.02.01

 

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 11.0.9600.16476

Rachel :: RACHEL-HP [administrator]

 

1/26/2014 5:25:12 PM

mbam-log-2014-01-26 (17-25-12).txt

 

Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|I:\|J:\|M:\|)

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 434203

Time elapsed: 3 hour(s), 40 minute(s), 48 second(s)

 

Memory Processes Detected: 0

(No malicious items detected)

 

Memory Modules Detected: 0

(No malicious items detected)

 

Registry Keys Detected: 0

(No malicious items detected)

 

Registry Values Detected: 0

(No malicious items detected)

 

Registry Data Items Detected: 0

(No malicious items detected)

 

Folders Detected: 0

(No malicious items detected)

 

Files Detected: 3

C:\Program Files (x86)\W3i\InstallIQUpdater\InstallIQUpdater.exe (PUP.Optional.InstallIQ.A) -> Quarantined and deleted successfully.

C:\Users\Rachel\Downloads\mp3rocket (4).exe (PUP.Optional.BundledToolBar.A) -> Quarantined and deleted successfully.

C:\Users\Rachel\Downloads\mp3rocket.exe (PUP.Optional.BundledToolBar.A) -> Quarantined and deleted successfully.

 

(end)

 



#4 RacSta

RacSta
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 28 January 2014 - 07:05 PM

The MiniToolBox Log:

 

 

 

 

MiniToolBox by Farbar  Version: 23-01-2014

Ran by Rachel (administrator) on 27-01-2014 at 10:45:08

Running from "C:\Users\Rachel\Desktop"

Microsoft Windows 7 Home Premium  Service Pack 1 (X64)

Boot Mode: Normal

***************************************************************************

 

========================= Flush DNS: ===================================

 

Windows IP Configuration

 

Successfully flushed the DNS Resolver Cache.

 

========================= IE Proxy Settings: ============================== 

 

Proxy is not enabled.

No Proxy Server is set.

 

"Reset IE Proxy Settings": IE Proxy Settings were reset.

 

========================= FF Proxy Settings: ============================== 

 

 

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

 

========================= Hosts content: =================================

 

127.0.0.1       localhost

 

========================= IP Configuration: ================================

 

Realtek RTL8188CE 802.11b/g/n WiFi Adapter = Wireless Network Connection (Connected)

Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)

Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)

 

 

# ----------------------------------

# IPv4 Configuration

# ----------------------------------

pushd interface ipv4

 

reset

set global icmpredirects=enabled

 

 

popd

# End of IPv4 configuration

 

 

 

Windows IP Configuration

 

   Host Name . . . . . . . . . . . . : Rachel-HP

   Primary Dns Suffix  . . . . . . . : 

   Node Type . . . . . . . . . . . . : Hybrid

   IP Routing Enabled. . . . . . . . : No

   WINS Proxy Enabled. . . . . . . . : No

   DNS Suffix Search List. . . . . . : resnet.wsu.edu

 

Wireless LAN adapter Wireless Network Connection 2:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter

   Physical Address. . . . . . . . . : AC-81-12-B2-33-56

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Wireless LAN adapter Wireless Network Connection:

 

   Connection-specific DNS Suffix  . : resnet.wsu.edu

   Description . . . . . . . . . . . : Realtek RTL8188CE 802.11b/g/n WiFi Adapter

   Physical Address. . . . . . . . . : AC-81-12-B2-33-56

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

   Link-local IPv6 Address . . . . . : fe80::5dba:2f94:61ce:1044%13(Preferred) 

   IPv4 Address. . . . . . . . . . . : 10.200.34.170(Preferred) 

   Subnet Mask . . . . . . . . . . . : 255.255.248.0

   Lease Obtained. . . . . . . . . . : Monday, January 27, 2014 10:40:25 AM

   Lease Expires . . . . . . . . . . : Tuesday, January 28, 2014 10:40:29 AM

   Default Gateway . . . . . . . . . : 10.200.39.254

   DHCP Server . . . . . . . . . . . : 134.121.141.7

   DHCPv6 IAID . . . . . . . . . . . : 330072338

   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-ED-0A-0A-10-1F-74-C7-F5-16

   DNS Servers . . . . . . . . . . . : 8.8.8.8

                                       8.8.4.4

   Primary WINS Server . . . . . . . : 134.121.143.28

   Secondary WINS Server . . . . . . : 134.121.143.29

   NetBIOS over Tcpip. . . . . . . . : Enabled

 

Ethernet adapter Local Area Connection:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller

   Physical Address. . . . . . . . . : 10-1F-74-C7-F5-16

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.{212C69EA-3885-478D-A1EB-959B55D8DCBF}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter Local Area Connection* 11:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Microsoft 6to4 Adapter

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.resnet.wsu.edu:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : resnet.wsu.edu

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter Teredo Tunneling Pseudo-Interface:

 

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

   IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:38d1:fa:ba59:d070(Preferred) 

   Link-local IPv6 Address . . . . . : fe80::38d1:fa:ba59:d070%14(Preferred) 

   Default Gateway . . . . . . . . . : ::

   NetBIOS over Tcpip. . . . . . . . : Disabled

 

Tunnel adapter isatap.{3698521C-D90B-43B2-95C7-6E2EDA5FBC7E}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . : 

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

DNS request timed out.

    timeout was 2 seconds.

Server:  UnKnown

Address:  8.8.8.8

 

Name:    google.com

Addresses:  2607:f8b0:400a:804::1009

 173.194.33.132

 173.194.33.128

 173.194.33.142

 173.194.33.134

 173.194.33.130

 173.194.33.131

 173.194.33.136

 173.194.33.135

 173.194.33.137

 173.194.33.133

 173.194.33.129

 

 

Pinging google.com [173.194.33.128] with 32 bytes of data:

Reply from 173.194.33.128: bytes=32 time=13ms TTL=57

Reply from 173.194.33.128: bytes=32 time=11ms TTL=57

 

Ping statistics for 173.194.33.128:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 11ms, Maximum = 13ms, Average = 12ms

Server:  google-public-dns-a.google.com

Address:  8.8.8.8

 

Name:    yahoo.com

Addresses:  98.139.183.24

 98.138.253.109

 206.190.36.45

 

 

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:

Reply from 206.190.36.45: bytes=32 time=17ms TTL=52

Reply from 206.190.36.45: bytes=32 time=25ms TTL=52

 

Ping statistics for 206.190.36.45:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 17ms, Maximum = 25ms, Average = 21ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================

Interface List

 15...ac 81 12 b2 33 56 ......Microsoft Virtual WiFi Miniport Adapter

 13...ac 81 12 b2 33 56 ......Realtek RTL8188CE 802.11b/g/n WiFi Adapter

 11...10 1f 74 c7 f5 16 ......Realtek PCIe FE Family Controller

  1...........................Software Loopback Interface 1

 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter

 12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter

 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2

 14...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface

 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3

===========================================================================

 

IPv4 Route Table

===========================================================================

Active Routes:

Network Destination        Netmask          Gateway       Interface  Metric

          0.0.0.0          0.0.0.0    10.200.39.254    10.200.34.170     25

      10.200.32.0    255.255.248.0         On-link     10.200.34.170    281

    10.200.34.170  255.255.255.255         On-link     10.200.34.170    281

    10.200.39.255  255.255.255.255         On-link     10.200.34.170    281

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link     10.200.34.170    281

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

  255.255.255.255  255.255.255.255         On-link     10.200.34.170    281

===========================================================================

Persistent Routes:

  None

 

IPv6 Route Table

===========================================================================

Active Routes:

 If Metric Network Destination      Gateway

 14     58 ::/0                     On-link

  1    306 ::1/128                  On-link

 14     58 2001::/32                On-link

 14    306 2001:0:5ef5:79fd:38d1:fa:ba59:d070/128

                                    On-link

 13    281 fe80::/64                On-link

 14    306 fe80::/64                On-link

 14    306 fe80::38d1:fa:ba59:d070/128

                                    On-link

 13    281 fe80::5dba:2f94:61ce:1044/128

                                    On-link

  1    306 ff00::/8                 On-link

 14    306 ff00::/8                 On-link

 13    281 ff00::/8                 On-link

===========================================================================

Persistent Routes:

  None

========================= Winsock entries =====================================

 

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)

Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)

Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)

Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)

Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)

x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)

x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)

x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)

x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

 

========================= Event log errors: ===============================

 

Application errors:

==================

Error: (01/27/2014 10:26:54 AM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (01/26/2014 10:31:24 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 17114

 

Error: (01/26/2014 10:31:24 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 17114

 

Error: (01/26/2014 10:31:24 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (01/26/2014 10:31:23 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 15912

 

Error: (01/26/2014 10:31:23 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 15912

 

Error: (01/26/2014 10:31:23 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (01/26/2014 10:31:21 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 14602

 

Error: (01/26/2014 10:31:21 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledEvent 14602

 

Error: (01/26/2014 10:31:21 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

 

System errors:

=============

Error: (01/27/2014 10:32:04 AM) (Source: DCOM) (User: )

Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

 

Error: (01/27/2014 10:27:33 AM) (Source: DCOM) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

 

Error: (01/27/2014 10:22:30 AM) (Source: Service Control Manager) (User: )

Description: The Windows Modules Installer service did not shut down properly after receiving a preshutdown control.

 

Error: (01/22/2014 06:25:33 PM) (Source: Service Control Manager) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

 

Error: (01/19/2014 09:43:03 PM) (Source: Service Control Manager) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service.

 

Error: (01/17/2014 05:44:20 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

 

Error: (01/11/2014 09:10:54 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

 

Error: (01/09/2014 11:12:49 PM) (Source: Service Control Manager) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the IPBusEnum service.

 

Error: (01/06/2014 00:00:04 AM) (Source: Service Control Manager) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the fdPHost service.

 

Error: (01/02/2014 04:18:51 PM) (Source: DCOM) (User: NT AUTHORITY)

Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

 

 

Microsoft Office Sessions:

=========================

Error: (01/27/2014 10:26:54 AM) (Source: WinMgmt)(User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (01/26/2014 10:31:24 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 17114

 

Error: (01/26/2014 10:31:24 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 17114

 

Error: (01/26/2014 10:31:24 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (01/26/2014 10:31:23 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 15912

 

Error: (01/26/2014 10:31:23 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 15912

 

Error: (01/26/2014 10:31:23 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

Error: (01/26/2014 10:31:21 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 14602

 

Error: (01/26/2014 10:31:21 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledEvent 14602

 

Error: (01/26/2014 10:31:21 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: Continuously busy for more than a second

 

 

CodeIntegrity Errors:

===================================

  Date: 2013-03-19 14:00:00.175

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-03-19 13:59:59.941

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

 

=========================== Installed Programs ============================

 

µTorrent (Version: 3.1.3)

64 Bit HP CIO Components Installer (Version: 7.2.8)

Adobe Download Assistant (Version: 1.2.5)

Adobe Flash Player 11 ActiveX (Version: 11.8.800.168)

Adobe Reader XI (11.0.02) (Version: 11.0.02)

Adobe Shockwave Player 11.5 (Version: 11.5.9.620)

Age of Empires III (Version: 1.00.0000)

AMD APP SDK Runtime (Version: 2.5.775.2)

AMD Catalyst Install Manager (Version: 3.0.847.0)

AMD Fuel (Version: 2011.0928.607.9079)

AMD Media Foundation Decoders (Version: 1.0.60928.0618)

AMD VISION Engine Control Center (Version: 2011.0928.607.9079)

Apple Application Support (Version: 2.3.6)

Apple Mobile Device Support (Version: 7.0.0.117)

Apple Software Update (Version: 2.1.3.127)

Bejeweled 3 (Version: 2.2.0.97)

Bonjour (Version: 3.0.0.10)

Bounce Symphony (Version: 2.2.0.97)

BufferChm (Version: 140.0.212.000)

Cake Mania (Version: 2.2.0.95)

Catalyst Control Center - Branding (Version: 1.00.0000)

Catalyst Control Center Graphics Previews Common (Version: 2011.0928.607.9079)

Catalyst Control Center InstallProxy (Version: 2011.0928.607.9079)

Catalyst Control Center Localization All (Version: 2011.0928.607.9079)

CCC Help Chinese Standard (Version: 2011.0928.0606.9079)

CCC Help Chinese Traditional (Version: 2011.0928.0606.9079)

CCC Help Czech (Version: 2011.0928.0606.9079)

CCC Help Danish (Version: 2011.0928.0606.9079)

CCC Help Dutch (Version: 2011.0928.0606.9079)

CCC Help English (Version: 2011.0928.0606.9079)

CCC Help Finnish (Version: 2011.0928.0606.9079)

CCC Help French (Version: 2011.0928.0606.9079)

CCC Help German (Version: 2011.0928.0606.9079)

CCC Help Greek (Version: 2011.0928.0606.9079)

CCC Help Hungarian (Version: 2011.0928.0606.9079)

CCC Help Italian (Version: 2011.0928.0606.9079)

CCC Help Japanese (Version: 2011.0928.0606.9079)

CCC Help Korean (Version: 2011.0928.0606.9079)

CCC Help Norwegian (Version: 2011.0928.0606.9079)

CCC Help Polish (Version: 2011.0928.0606.9079)

CCC Help Portuguese (Version: 2011.0928.0606.9079)

CCC Help Russian (Version: 2011.0928.0606.9079)

CCC Help Spanish (Version: 2011.0928.0606.9079)

CCC Help Swedish (Version: 2011.0928.0606.9079)

CCC Help Thai (Version: 2011.0928.0606.9079)

CCC Help Turkish (Version: 2011.0928.0606.9079)

ccc-utility64 (Version: 2011.0928.607.9079)

CCleaner (Version: 3.28)

Chronicles of Albian (Version: 2.2.0.95)

Chuzzle Deluxe (Version: 2.2.0.95)

Cisco EAP-FAST Module (Version: 2.2.14)

Cisco LEAP Module (Version: 1.0.19)

Cisco PEAP Module (Version: 1.1.6)

Combined Community Codec Pack 2013-08-01 (Version: 2013.08.01.0)

Constant Guard Protection Suite (Version: 1.12.1002.3)

Copy (Version: 140.0.212.000)

Cradle of Rome 2 (Version: 2.2.0.95)

CyberLink YouCam (Version: 3.5.1.4119)

D3DX10 (Version: 15.4.2368.0902)

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition

Destinations (Version: 140.0.77.000)

DeviceDiscovery (Version: 140.0.212.000)

DJ_AIO_06_F2400_SW_Min (Version: 140.0.690.000)

DriverBoost (Version: 7)

ESU for Microsoft Windows 7 SP1 (Version: 2.1.1)

Evernote v. 4.2.3 (Version: 4.2.3.22)

F2400 (Version: 140.0.690.000)

Farm Frenzy (Version: 2.2.0.95)

FATE (Version: 2.2.0.97)

Google Chrome (Version: 32.0.1700.76)

Google Update Helper (Version: 1.3.22.3)

Governor of Poker 2 Premium Edition (Version: 2.2.0.95)

GPBaseService2 (Version: 140.0.211.000)

GuardedID (Version: 0.03.1038)

Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)

HP Auto (Version: 1.0.12935.3667)

HP Client Services (Version: 1.1.12938.3539)

HP Connection Manager (Version: 4.1.25.1)

HP Customer Experience Enhancements (Version: 6.0.1.7)

HP Customer Participation Program 14.0 (Version: 14.0)

HP Deskjet F2400 All-in-One Driver Software 14.0 Rel. 6 (Version: 14.0)

HP Documentation (Version: 1.1.0.0)

HP Games (Version: 1.0.2.5)

HP Imaging Device Functions 14.0 (Version: 14.0)

HP Launch Box (Version: 1.0.14)

HP On Screen Display (Version: 1.3.5)

HP Photo Creations (Version: 1.0.0.2024)

HP Power Manager (Version: 1.4.7)

HP Quick Launch (Version: 2.7.2)

HP QuickWeb (Version: 3.1.0.9760)

HP Setup (Version: 8.7.4751.3798)

HP Setup Manager (Version: 1.1.13476.3753)

HP Smart Web Printing 4.60 (Version: 4.60)

HP Software Framework (Version: 4.6.10.1)

HP Solution Center 14.0 (Version: 14.0)

HP Support Assistant (Version: 7.0.39.15)

HP Update (Version: 5.005.000.002)

HPDiagnosticAlert (Version: 1.00.0000)

HPPhotoGadget (Version: 140.0.524.000)

HPProductAssistant (Version: 140.0.212.000)

HPSSupply (Version: 140.0.211.000)

IDT Audio (Version: 1.0.6341.0)

InstallIQ Updater (Version: 1.4.3.0)

Itibiti RTC (Version: 0.0.1)

iTunes (Version: 11.1.3.8)

Jewel Quest: The Sleepless Star - Collector's Edition (Version: 2.2.0.95)

Junk Mail filter update (Version: 15.4.3502.0922)

Mah Jong Medley (Version: 2.2.0.95)

Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)

MarketResearch (Version: 140.0.212.000)

Mesh Runtime (Version: 15.4.5722.2)

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)

Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000)

Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)

Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)

Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000)

Microsoft Silverlight (Version: 5.1.20913.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)

Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)

Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)

Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)

Microsoft_VC90_CRT_x86 (Version: 1.00.0000)

MP3 Rocket

MSVCRT (Version: 15.4.2862.0708)

MSVCRT_amd64 (Version: 15.4.2862.0708)

MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)

MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)

Mystery of Mortlake Mansion (Version: 2.2.0.97)

Namco All-Stars: PAC-MAN (Version: 2.2.0.95)

Norton Management (Version: 3.2.2.12)

Norton PC Checkup (Version: 3.0.2.122.0)

Norton Security Suite (Version: 21.1.0.18)

Origin (Version: 8.4.1.210)

Pando Media Booster (Version: 2.6.0.7)

PlayReady PC Runtime x86 (Version: 1.3.0)

Realtek Ethernet Controller Driver (Version: 7.40.126.2011)

Realtek PCIE Card Reader (Version: 6.1.7601.83)

REALTEK Wireless LAN Driver (Version: 1.00.11.0706)

Recovery Manager (Version: 2.0.0)

Revo Uninstaller 1.94 (Version: 1.94)

RoxioNow Player (Version: 1.9.5.103)

Scan (Version: 140.0.80.000)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition

Shop for HP Supplies (Version: 14.0)

Skype™ 6.6 (Version: 6.6.106)

Slingo Supreme (Version: 2.2.0.97)

SmartWebPrinting (Version: 140.0.186.000)

SolutionCenter (Version: 140.0.213.000)

Status (Version: 140.0.212.000)

Synaptics Pointing Device Driver (Version: 15.3.29.0)

The Sims 2 Glamour Life Stuff

The Sims 2 Open For Business

The Sims 2 Pets

The Sims 2 University

The Sims™ 2 Apartment Life

The Sims™ 2 Bon Voyage

The Sims™ 2 Double Deluxe

The Sims™ 2 FreeTime

The Sims™ 2 Mansion and Garden Stuff

The Sims™ 2 Seasons

The Sims™ 3 (Version: 1.50.56)

The Sims™ 3 Late Night (Version: 6.0.81)

The Sims™ 3 Pets (Version: 10.0.96)

The Sims™ 3 Seasons (Version: 16.0.136)

The Sims™ 3 Supernatural (Version: 15.0.135)

The Sims™ 3 University Life (Version: 18.0.126)

Toolbox (Version: 140.0.428.000)

TrayApp (Version: 140.0.212.000)

UltraISO Premium V9.52

Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)

Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)

Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition

Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition

Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition

Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition

Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition

Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition

Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition

Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition

Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition

Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition

Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition

Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition

Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition

Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition

Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition

Update Installer for WildTangent Games App

Vacation Quest - The Hawaiian Islands (Version: 2.2.0.97)

Virtual Villagers 5 - New Believers (Version: 2.2.0.97)

VirtualCloneDrive

WebReg (Version: 140.0.212.017)

WildTangent Games App (HP Games) (Version: 4.0.5.2)

Windows Live Communications Platform (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3508.1109)

Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)

Windows Live Installer (Version: 15.4.3502.0922)

Windows Live Language Selector (Version: 15.4.3508.1109)

Windows Live Mail (Version: 15.4.3502.0922)

Windows Live Mesh (Version: 15.4.3502.0922)

Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)

Windows Live Messenger (Version: 15.4.3502.0922)

Windows Live MIME IFilter (Version: 15.4.3502.0922)

Windows Live Movie Maker (Version: 15.4.3502.0922)

Windows Live Photo Common (Version: 15.4.3502.0922)

Windows Live Photo Gallery (Version: 15.4.3502.0922)

Windows Live PIMT Platform (Version: 15.4.3508.1109)

Windows Live Remote Client (Version: 15.4.5722.2)

Windows Live Remote Client Resources (Version: 15.4.5722.2)

Windows Live Remote Service (Version: 15.4.5722.2)

Windows Live Remote Service Resources (Version: 15.4.5722.2)

Windows Live SOXE (Version: 15.4.3502.0922)

Windows Live SOXE Definitions (Version: 15.4.3502.0922)

Windows Live UX Platform (Version: 15.4.3502.0922)

Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)

Windows Live Writer (Version: 15.4.3502.0922)

Windows Live Writer Resources (Version: 15.4.3502.0922)

WinRAR 4.20 (32-bit) (Version: 4.20.0)

Zuma Deluxe (Version: 2.2.0.95)

 

========================= Memory info: ===================================

 

Percentage of memory in use: 52%

Total physical RAM: 3689.41 MB

Available physical RAM: 1738.86 MB

Total Pagefile: 7376.99 MB

Available Pagefile: 5300.45 MB

Total Virtual: 4095.88 MB

Available Virtual: 3978.38 MB

 

========================= Partitions: =====================================

 

1 Drive c: () (Fixed) (Total:447.78 GB) (Free:141.94 GB) NTFS

2 Drive d: (Recovery) (Fixed) (Total:13.82 GB) (Free:1.54 GB) NTFS

3 Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:0.01 GB) FAT32

 

========================= Users: ========================================

 

User accounts for \\RACHEL-HP

 

Administrator            Guest                    Rachel                   

 

 

**** End of log ****



#5 RacSta

RacSta
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 28 January 2014 - 07:11 PM

When I try to post the TDS code it says the post is too long, so I will divide it into two posts

 

Here is the first:

 

 

10:47:48.0522 0x135c  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50

10:48:03.0584 0x135c  ============================================================

10:48:03.0585 0x135c  Current date / time: 2014/01/27 10:48:03.0584

10:48:03.0585 0x135c  SystemInfo:

10:48:03.0585 0x135c 

10:48:03.0586 0x135c  OS Version: 6.1.7601 ServicePack: 1.0

10:48:03.0586 0x135c  Product type: Workstation

10:48:03.0586 0x135c  ComputerName: RACHEL-HP

10:48:03.0587 0x135c  UserName: Rachel

10:48:03.0587 0x135c  Windows directory: C:\Windows

10:48:03.0587 0x135c  System windows directory: C:\Windows

10:48:03.0587 0x135c  Running under WOW64

10:48:03.0587 0x135c  Processor architecture: Intel x64

10:48:03.0587 0x135c  Number of processors: 2

10:48:03.0587 0x135c  Page size: 0x1000

10:48:03.0587 0x135c  Boot type: Normal boot

10:48:03.0587 0x135c  ============================================================

10:48:04.0151 0x135c  KLMD registered as C:\Windows\system32\drivers\11851734.sys

10:48:04.0541 0x135c  System UUID: {66ABC189-E0A8-5371-B65A-6E6F9A40805F}

10:48:05.0826 0x135c  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

10:48:05.0839 0x135c  ============================================================

10:48:05.0839 0x135c  \Device\Harddisk0\DR0:

10:48:05.0840 0x135c  MBR partitions:

10:48:05.0840 0x135c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800

10:48:05.0840 0x135c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x37F8E800

10:48:05.0840 0x135c  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x37FF2800, BlocksNum 0x1BA3800

10:48:05.0840 0x135c  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x39B96000, BlocksNum 0x7EF830

10:48:05.0840 0x135c  ============================================================

10:48:05.0890 0x135c  C: <-> \Device\Harddisk0\DR0\Partition2

10:48:05.0941 0x135c  D: <-> \Device\Harddisk0\DR0\Partition3

10:48:05.0959 0x135c  E: <-> \Device\Harddisk0\DR0\Partition4

10:48:05.0959 0x135c  ============================================================

10:48:05.0959 0x135c  Initialize success

10:48:05.0959 0x135c  ============================================================

10:48:13.0017 0x1394  ============================================================

10:48:13.0017 0x1394  Scan started

10:48:13.0017 0x1394  Mode: Manual;

10:48:13.0017 0x1394  ============================================================

10:48:13.0017 0x1394  KSN ping started

10:48:25.0501 0x1394  KSN ping finished: true

10:48:26.0344 0x1394  ================ Scan system memory ========================

10:48:26.0345 0x1394  System memory - ok

10:48:26.0346 0x1394  ================ Scan services =============================

10:48:26.0663 0x1394  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys

10:48:26.0680 0x1394  1394ohci - ok

10:48:26.0774 0x1394  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys

10:48:26.0791 0x1394  ACPI - ok

10:48:26.0847 0x1394  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys

10:48:26.0851 0x1394  AcpiPmi - ok

10:48:26.0988 0x1394  [ 3927397AC60D943DAF8808AFFED582B7, 2688254085C219E8CA9C5494ABDAD8FAE52533CEF7FA3C152715E0B78D591BCF ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

10:48:26.0995 0x1394  AdobeARMservice - ok

10:48:27.0250 0x1394  [ 3109B16A0939BA11696EEB04F345D099, 8863EFE3631F0F4D8F6BAE804DBB01564FF2969D53393B2887F682427C289B25 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

10:48:27.0268 0x1394  AdobeFlashPlayerUpdateSvc - ok

10:48:27.0342 0x1394  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys

10:48:27.0368 0x1394  adp94xx - ok

10:48:27.0423 0x1394  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys

10:48:27.0441 0x1394  adpahci - ok

10:48:27.0499 0x1394  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys

10:48:27.0510 0x1394  adpu320 - ok

10:48:27.0556 0x1394  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll

10:48:27.0560 0x1394  AeLookupSvc - ok

10:48:27.0629 0x1394  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys

10:48:27.0652 0x1394  AFD - ok

10:48:27.0694 0x1394  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys

10:48:27.0700 0x1394  agp440 - ok

10:48:27.0735 0x1394  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe

10:48:27.0741 0x1394  ALG - ok

10:48:27.0795 0x1394  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys

10:48:27.0799 0x1394  aliide - ok

10:48:27.0848 0x1394  [ 850F0C8034225FA3F50D551A905FA503, 8FA1512A821287CFA5371F2F2D45A9120E0500B42670380739E91EAC26A82BD5 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe

10:48:27.0859 0x1394  AMD External Events Utility - ok

10:48:27.0939 0x1394  AMD FUEL Service - ok

10:48:27.0996 0x1394  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys

10:48:27.0999 0x1394  amdide - ok

10:48:28.0036 0x1394  [ 6A2EEB0C4133B20773BB3DD0B7B377B4, E4CB35C6937C70A145A13E5AE5B34A271B49101DA623171ACBFDA8601E5A70EA ] amdiox64        C:\Windows\system32\DRIVERS\amdiox64.sys

10:48:28.0040 0x1394  amdiox64 - ok

10:48:28.0092 0x1394  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys

10:48:28.0097 0x1394  AmdK8 - ok

10:48:28.0751 0x1394  [ 7979BF4A66EFDADF3D00A052409609B1, BF835AB9982686D50D9038BA94C1C4237B520C80177AB282B16D880D39681526 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys

10:48:29.0360 0x1394  amdkmdag - ok

10:48:29.0514 0x1394  [ 7D5CDB0161E91951D3DD99E55CEA4D01, 0E10345FF1B67413A239E1FDA807D0D6CA02AD6CF010982448B4DC80111A3405 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys

10:48:29.0530 0x1394  amdkmdap - ok

10:48:29.0571 0x1394  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys

10:48:29.0574 0x1394  AmdPPM - ok

10:48:29.0606 0x1394  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys

10:48:29.0659 0x1394  amdsata - ok

10:48:29.0700 0x1394  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys

10:48:29.0712 0x1394  amdsbs - ok

10:48:29.0736 0x1394  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys

10:48:29.0755 0x1394  amdxata - ok

10:48:29.0792 0x1394  [ BB4FE7889DB9CBBE61A308E99697F53C, 0B6B301EC8C2B9CBDBAEEBC54E3D3E6FE6A3A51F71E75FFE71AE30ADF8FC5E23 ] amd_sata        C:\Windows\system32\DRIVERS\amd_sata.sys

10:48:29.0797 0x1394  amd_sata - ok

10:48:29.0822 0x1394  [ 5631CBA53F1CBEA3F9E88348E6723391, 5F20FF4F651733A097990DDC3748CD00F3310B0B55BC975FA3654CDA740E0A3D ] amd_xata        C:\Windows\system32\DRIVERS\amd_xata.sys

10:48:29.0828 0x1394  amd_xata - ok

10:48:29.0874 0x1394  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys

10:48:29.0878 0x1394  AppID - ok

10:48:29.0911 0x1394  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll

10:48:29.0915 0x1394  AppIDSvc - ok

10:48:29.0957 0x1394  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll

10:48:29.0962 0x1394  Appinfo - ok

10:48:30.0055 0x1394  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

10:48:30.0060 0x1394  Apple Mobile Device - ok

10:48:30.0121 0x1394  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys

10:48:30.0131 0x1394  arc - ok

10:48:30.0171 0x1394  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys

10:48:30.0179 0x1394  arcsas - ok

10:48:30.0208 0x1394  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys

10:48:30.0212 0x1394  AsyncMac - ok

10:48:30.0256 0x1394  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys

10:48:30.0259 0x1394  atapi - ok

10:48:30.0329 0x1394  [ CBD14F698DEF12EE3557604B726CB8EB, 45EDD88B18F2DE9024851BFDE9DC0CA943692DD306CB3A0822F4A5C0C3D7CDD6 ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys

10:48:30.0336 0x1394  AtiHDAudioService - ok

10:48:30.0415 0x1394  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

10:48:30.0494 0x1394  AudioEndpointBuilder - ok

10:48:30.0571 0x1394  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll

10:48:30.0599 0x1394  AudioSrv - ok

10:48:30.0651 0x1394  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll

10:48:30.0660 0x1394  AxInstSV - ok

10:48:30.0715 0x1394  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys

10:48:30.0738 0x1394  b06bdrv - ok

10:48:30.0801 0x1394  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys

10:48:30.0815 0x1394  b57nd60a - ok

10:48:30.0991 0x1394  [ 9E84A931DBEE0292E38ED672F6293A99, 2945EAF0AC091709E0C5508B45EC343EDE507AC2B08A2D7D64F286D38424CBC4 ] BCM43XX         C:\Windows\system32\DRIVERS\bcmwl664.sys

10:48:31.0082 0x1394  BCM43XX - ok

10:48:31.0116 0x1394  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll

10:48:31.0123 0x1394  BDESVC - ok

10:48:31.0148 0x1394  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys

10:48:31.0150 0x1394  Beep - ok

10:48:31.0227 0x1394  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll

10:48:31.0321 0x1394  BFE - ok

10:48:31.0592 0x1394  [ F14F048B4D05FBCE536250EA74BF9FDC, 63E25E916209B6AF7AAC98B665E0128842F1EFDDEF95D50095514A9FDDC522A9 ] BHDrvx64        C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\BASHDefs\20140121.001\BHDrvx64.sys

10:48:31.0683 0x1394  BHDrvx64 - ok

10:48:31.0788 0x1394  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll

10:48:31.0845 0x1394  BITS - ok

10:48:31.0882 0x1394  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys

10:48:31.0885 0x1394  blbdrive - ok

10:48:31.0976 0x1394  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

10:48:31.0996 0x1394  Bonjour Service - ok



#6 RacSta

RacSta
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 28 January 2014 - 07:13 PM

And the second:

 

10:48:32.0040 0x1394  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys

10:48:32.0046 0x1394  bowser - ok

10:48:32.0069 0x1394  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys

10:48:32.0073 0x1394  BrFiltLo - ok

10:48:32.0111 0x1394  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys

10:48:32.0116 0x1394  BrFiltUp - ok

10:48:32.0167 0x1394  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys

10:48:32.0173 0x1394  BridgeMP - ok

10:48:32.0221 0x1394  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll

10:48:32.0228 0x1394  Browser - ok

10:48:32.0274 0x1394  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys

10:48:32.0289 0x1394  Brserid - ok

10:48:32.0312 0x1394  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys

10:48:32.0317 0x1394  BrSerWdm - ok

10:48:32.0341 0x1394  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys

10:48:32.0345 0x1394  BrUsbMdm - ok

10:48:32.0360 0x1394  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys

10:48:32.0363 0x1394  BrUsbSer - ok

10:48:32.0402 0x1394  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys

10:48:32.0407 0x1394  BTHMODEM - ok

10:48:32.0458 0x1394  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll

10:48:32.0464 0x1394  bthserv - ok

10:48:32.0482 0x1394  catchme - ok

10:48:32.0566 0x1394  [ 248C952C82DF1E23775432774CBB20F1, D04D382E7963B84E4856534A2FA209787FEBA2B6F21F579CA8F7C6BE4AA10072 ] ccSet_MCLIENT   C:\Windows\system32\drivers\MCLIENTx64\0302020.00C\ccSetx64.sys

10:48:32.0575 0x1394  ccSet_MCLIENT - ok

10:48:32.0690 0x1394  [ 0510396A957E9FD7205BA62D3CAE4528, C80C39EB3A87C5111132E96E966CF74ACABA36DE7714B545A707027D35995792 ] ccSet_N360      C:\Windows\system32\drivers\N360x64\1501000.012\ccSetx64.sys

10:48:32.0707 0x1394  ccSet_N360 - ok

10:48:32.0753 0x1394  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys

10:48:32.0759 0x1394  cdfs - ok

10:48:32.0803 0x1394  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys

10:48:32.0811 0x1394  cdrom - ok

10:48:32.0852 0x1394  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll

10:48:32.0857 0x1394  CertPropSvc - ok

10:48:32.0897 0x1394  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys

10:48:32.0902 0x1394  circlass - ok

10:48:32.0997 0x1394  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys

10:48:33.0015 0x1394  CLFS - ok

10:48:33.0095 0x1394  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

10:48:33.0104 0x1394  clr_optimization_v2.0.50727_32 - ok

10:48:33.0165 0x1394  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

10:48:33.0172 0x1394  clr_optimization_v2.0.50727_64 - ok

10:48:33.0248 0x1394  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

10:48:33.0267 0x1394  clr_optimization_v4.0.30319_32 - ok

10:48:33.0308 0x1394  [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

10:48:33.0317 0x1394  clr_optimization_v4.0.30319_64 - ok

10:48:33.0353 0x1394  [ 50F92C943F18B070F166D019DFAB3D9A, A997EAFFC1598B1D0A9E1A4475F25418CA8AA6B703B53A71B1AF028E247C9950 ] clwvd           C:\Windows\system32\DRIVERS\clwvd.sys

10:48:33.0356 0x1394  clwvd - ok

10:48:33.0396 0x1394  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys

10:48:33.0398 0x1394  CmBatt - ok

10:48:33.0438 0x1394  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys

10:48:33.0442 0x1394  cmdide - ok

10:48:33.0508 0x1394  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys

10:48:33.0530 0x1394  CNG - ok

10:48:33.0568 0x1394  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys

10:48:33.0573 0x1394  Compbatt - ok

10:48:33.0614 0x1394  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys

10:48:33.0617 0x1394  CompositeBus - ok

10:48:33.0639 0x1394  COMSysApp - ok

10:48:33.0656 0x1394  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys

10:48:33.0660 0x1394  crcdisk - ok

10:48:33.0715 0x1394  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll

10:48:33.0724 0x1394  CryptSvc - ok

10:48:33.0793 0x1394  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll

10:48:33.0819 0x1394  DcomLaunch - ok

10:48:33.0881 0x1394  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll

10:48:33.0897 0x1394  defragsvc - ok

10:48:33.0945 0x1394  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys

10:48:33.0951 0x1394  DfsC - ok

10:48:34.0041 0x1394  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll

10:48:34.0057 0x1394  Dhcp - ok

10:48:34.0080 0x1394  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys

10:48:34.0083 0x1394  discache - ok

10:48:34.0119 0x1394  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys

10:48:34.0126 0x1394  Disk - ok

10:48:34.0174 0x1394  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll

10:48:34.0184 0x1394  Dnscache - ok

10:48:34.0238 0x1394  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll

10:48:34.0251 0x1394  dot3svc - ok

10:48:34.0316 0x1394  [ B42ED0320C6E41102FDE0005154849BB, 4DB872E23AD049C3C9FDC0759FC58BFA60DA91B18BC82B611BFA300D26DDFC7A ] Dot4            C:\Windows\system32\DRIVERS\Dot4.sys

10:48:34.0343 0x1394  Dot4 - ok

10:48:34.0394 0x1394  [ E9F5969233C5D89F3C35E3A66A52A361, C4BD35795C78FB11E6022372CB25DEB570730EFDAD3DC1584368235FF622638C ] Dot4Print       C:\Windows\system32\DRIVERS\Dot4Prt.sys

10:48:34.0397 0x1394  Dot4Print - ok

10:48:34.0429 0x1394  [ FD05A02B0370BC3000F402E543CA5814, 089B1113E640F495F470E8F57060B89546270481B309DC8ED3C3D13A849076A3 ] dot4usb         C:\Windows\system32\DRIVERS\dot4usb.sys

10:48:34.0433 0x1394  dot4usb - ok

10:48:34.0487 0x1394  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll

10:48:34.0496 0x1394  DPS - ok

10:48:34.0548 0x1394  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys

10:48:34.0550 0x1394  drmkaud - ok

10:48:34.0630 0x1394  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys

10:48:34.0720 0x1394  DXGKrnl - ok

10:48:34.0780 0x1394  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll

10:48:34.0786 0x1394  EapHost - ok

10:48:35.0075 0x1394  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys

10:48:35.0274 0x1394  ebdrv - ok

10:48:35.0376 0x1394  [ 1B7AA375F711F66D5FF2B855F9EC987F, 151E3897A31F0E828D08EBBB9C10A60047B48534BB38349EF1C8D9245524CA58 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys

10:48:35.0399 0x1394  eeCtrl - ok

10:48:35.0442 0x1394  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe

10:48:35.0446 0x1394  EFS - ok

10:48:35.0537 0x1394  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe

10:48:35.0638 0x1394  ehRecvr - ok

10:48:35.0667 0x1394  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe

10:48:35.0676 0x1394  ehSched - ok

10:48:35.0738 0x1394  [ A05FC7ECA0966EBB70E4D17B855A853B, 16A0C8138A3BBD8BE2658261131F9777940CFB1431018A10710E5C1A88AB70EA ] ElbyCDIO        C:\Windows\system32\Drivers\ElbyCDIO.sys

10:48:35.0742 0x1394  ElbyCDIO - ok

10:48:35.0816 0x1394  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys

10:48:35.0912 0x1394  elxstor - ok

10:48:35.0980 0x1394  [ 7230C8B80DDE1F0524C353240B78CC0E, 15F73EBFB9152010E7736AFE518A47C209E17DDB347A40C4CDA0D9BBD26D1176 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

10:48:35.0988 0x1394  EraserUtilRebootDrv - ok

10:48:36.0037 0x1394  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys

10:48:36.0041 0x1394  ErrDev - ok

10:48:36.0130 0x1394  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll

10:48:36.0149 0x1394  EventSystem - ok

10:48:36.0183 0x1394  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys

10:48:36.0194 0x1394  exfat - ok

10:48:36.0242 0x1394  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys

10:48:36.0252 0x1394  fastfat - ok

10:48:36.0428 0x1394  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe

10:48:36.0501 0x1394  Fax - ok

10:48:36.0528 0x1394  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys

10:48:36.0532 0x1394  fdc - ok

10:48:36.0562 0x1394  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll

10:48:36.0565 0x1394  fdPHost - ok

10:48:36.0582 0x1394  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll

10:48:36.0586 0x1394  FDResPub - ok

10:48:36.0610 0x1394  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys

10:48:36.0615 0x1394  FileInfo - ok

10:48:36.0639 0x1394  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys

10:48:36.0643 0x1394  Filetrace - ok

10:48:36.0666 0x1394  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys

10:48:36.0669 0x1394  flpydisk - ok

10:48:36.0737 0x1394  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys

10:48:36.0751 0x1394  FltMgr - ok

10:48:36.0857 0x1394  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll

10:48:36.0907 0x1394  FontCache - ok

10:48:36.0964 0x1394  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

10:48:36.0969 0x1394  FontCache3.0.0.0 - ok

10:48:36.0995 0x1394  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys

10:48:37.0001 0x1394  FsDepends - ok

10:48:37.0039 0x1394  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys

10:48:37.0043 0x1394  Fs_Rec - ok

10:48:37.0104 0x1394  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys

10:48:37.0116 0x1394  fvevol - ok

10:48:37.0151 0x1394  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys

10:48:37.0157 0x1394  gagp30kx - ok

10:48:37.0228 0x1394  [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

10:48:37.0239 0x1394  GamesAppService - ok

10:48:37.0282 0x1394  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

10:48:37.0285 0x1394  GEARAspiWDM - ok

10:48:37.0329 0x1394  [ 9BA22AEE7F531EF9CE085CC2E1112BC4, 3A540C3763C6DDEC96CE80576BDBE8876C96D8CCCA221CC4BC7D1929B32365D0 ] GIDv2           C:\Windows\system32\drivers\GIDv2.sys

10:48:37.0332 0x1394  GIDv2 - ok

10:48:37.0420 0x1394  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll

10:48:37.0492 0x1394  gpsvc - ok

10:48:37.0630 0x1394  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

10:48:37.0644 0x1394  gupdate - ok

10:48:37.0694 0x1394  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

10:48:37.0701 0x1394  gupdatem - ok

10:48:37.0731 0x1394  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys

10:48:37.0750 0x1394  hcw85cir - ok

10:48:37.0855 0x1394  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

10:48:37.0874 0x1394  HdAudAddService - ok

10:48:37.0901 0x1394  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys

10:48:37.0907 0x1394  HDAudBus - ok

10:48:37.0925 0x1394  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys

10:48:37.0930 0x1394  HidBatt - ok

10:48:37.0955 0x1394  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys

10:48:37.0962 0x1394  HidBth - ok

10:48:37.0998 0x1394  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys

10:48:38.0002 0x1394  HidIr - ok

10:48:38.0045 0x1394  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll

10:48:38.0049 0x1394  hidserv - ok

10:48:38.0102 0x1394  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys

10:48:38.0105 0x1394  HidUsb - ok

10:48:38.0135 0x1394  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll

10:48:38.0141 0x1394  hkmsvc - ok

10:48:38.0221 0x1394  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll

10:48:38.0238 0x1394  HomeGroupListener - ok

10:48:38.0268 0x1394  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

10:48:38.0280 0x1394  HomeGroupProvider - ok

10:48:38.0371 0x1394  [ BB1FC298BE53AAB1E110F6E786BD8AC5, C2DA2C3CE96D5F8B50013063B5EF7BED7478636896C709A7AF34855B2E69B9F1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

10:48:38.0379 0x1394  HP Support Assistant Service - ok

10:48:38.0464 0x1394  [ 6A181452D4E240B8ECC7614B9A19BDE9, 3E458A737DA597DF007D278E9D81F2BF259AB4B97A4C188CEDAEA1F144B1074F ] HPClientSvc     C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

10:48:38.0513 0x1394  HPClientSvc - ok

10:48:38.0669 0x1394  [ E07F8E78D08D9269E3365C2A4F637191, D409596D334F9C968240647694681C31E5AB8A7924FB48281F5A2D53E6A0021A ] hpCMSrv         C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe

10:48:38.0833 0x1394  hpCMSrv - ok

10:48:38.0936 0x1394  [ 9BFDA0BC109EB6D16F2CB862BB85E28C, 5D10865AFA5853D096C355949DA10851AD2B9AF7A8C671406E40D90979858702 ] HPDrvMntSvc.exe C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe

10:48:38.0947 0x1394  HPDrvMntSvc.exe - ok

10:48:39.0095 0x1394  [ 5DA42D24712E00728CEA2342A65009B2, 73EC5250DCFD556525B24B3CA66C64AC7747E77652A2AD6119936A59A9E8562A ] hpqcxs08        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll

10:48:39.0117 0x1394  hpqcxs08 - ok

10:48:39.0158 0x1394  [ D86A39BF100069444D026D22D9A6E555, 7B24D48D5BA67704C88697FADB64364E0E64D26259408E3C219820C5404C5EEC ] hpqddsvc        C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll

10:48:39.0167 0x1394  hpqddsvc - ok

10:48:39.0268 0x1394  [ 514455F6586473791C5C6B25BA4E1BAB, 0C2CAE8F35241F1B936C502AAB7C9303C643D898BAB1D060FCA1E6B3A7D9FDB9 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

10:48:39.0310 0x1394  hpqwmiex - ok

10:48:39.0353 0x1394  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys

10:48:39.0360 0x1394  HpSAMD - ok

10:48:39.0451 0x1394  [ 2BEC76BDCD1BC080210325E7B5094834, 9CD9DF5C974C20F38423B07063A4F44E533B3B4EF39E01AC701C04BFC5F3EC53 ] HPWMISVC        C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

10:48:39.0454 0x1394  HPWMISVC - ok

10:48:39.0543 0x1394  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys

10:48:39.0621 0x1394  HTTP - ok

10:48:39.0645 0x1394  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys

10:48:39.0649 0x1394  hwpolicy - ok

10:48:39.0712 0x1394  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys

10:48:39.0719 0x1394  i8042prt - ok

10:48:39.0783 0x1394  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys

10:48:39.0891 0x1394  iaStorV - ok

10:48:40.0106 0x1394  [ D72BF0AE484F88399E8343E821C10D6A, E8D78E61EEC80934396F233565DB5682B2475867C98F09C3CE3F906373A5C1A2 ] IconMan_R       C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe

10:48:40.0313 0x1394  IconMan_R - ok

10:48:40.0394 0x1394  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

10:48:40.0433 0x1394  IDriverT - ok

10:48:40.0517 0x1394  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

10:48:40.0608 0x1394  idsvc - ok

10:48:40.0752 0x1394  [ 777612849691B0D9EE064F93481FEFF1, BA970CE9F13EE25AA54E7E9B3BE7DE0C271D9067A317F8AE5F60F93B3D18E912 ] IDSVia64        C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\IPSDefs\20140124.001\IDSvia64.sys

10:48:40.0778 0x1394  IDSVia64 - ok

10:48:40.0866 0x1394  [ 6A6CDC596E0B56808D25B524400EC774, 511ED09563154270F6F24B7786A85ED80B88ADBE74F1686886028FC60D5BB886 ] IDVaultSvc      C:\Program Files (x86)\Constant Guard Protection Suite\IDVaultSvc.exe

10:48:40.0915 0x1394  IDVaultSvc - ok

10:48:40.0965 0x1394  IEEtwCollectorService - ok

10:48:41.0006 0x1394  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys

10:48:41.0013 0x1394  iirsp - ok

10:48:41.0105 0x1394  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll

10:48:41.0142 0x1394  IKEEXT - ok

10:48:41.0186 0x1394  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys

10:48:41.0208 0x1394  intelide - ok

10:48:41.0253 0x1394  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\drivers\intelppm.sys

10:48:41.0259 0x1394  intelppm - ok

10:48:41.0300 0x1394  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll

10:48:41.0307 0x1394  IPBusEnum - ok

10:48:41.0345 0x1394  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys

10:48:41.0351 0x1394  IpFilterDriver - ok

10:48:41.0429 0x1394  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll

10:48:41.0454 0x1394  iphlpsvc - ok

10:48:41.0486 0x1394  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys

10:48:41.0492 0x1394  IPMIDRV - ok

10:48:41.0518 0x1394  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys

10:48:41.0526 0x1394  IPNAT - ok

10:48:41.0624 0x1394  [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe

10:48:41.0652 0x1394  iPod Service - ok

10:48:41.0695 0x1394  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys

10:48:41.0698 0x1394  IRENUM - ok

10:48:41.0725 0x1394  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys

10:48:41.0730 0x1394  isapnp - ok

10:48:41.0815 0x1394  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys

10:48:41.0832 0x1394  iScsiPrt - ok

10:48:41.0871 0x1394  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys

10:48:41.0875 0x1394  kbdclass - ok

10:48:41.0896 0x1394  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys

10:48:41.0900 0x1394  kbdhid - ok

10:48:41.0921 0x1394  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe

10:48:41.0925 0x1394  KeyIso - ok

10:48:41.0953 0x1394  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys

10:48:41.0960 0x1394  KSecDD - ok

10:48:42.0043 0x1394  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys

10:48:42.0056 0x1394  KSecPkg - ok

10:48:42.0099 0x1394  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys

10:48:42.0103 0x1394  ksthunk - ok

10:48:42.0161 0x1394  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll

10:48:42.0182 0x1394  KtmRm - ok

10:48:42.0252 0x1394  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll

10:48:42.0266 0x1394  LanmanServer - ok

10:48:42.0300 0x1394  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

10:48:42.0308 0x1394  LanmanWorkstation - ok

10:48:42.0362 0x1394  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys

10:48:42.0366 0x1394  lltdio - ok

10:48:42.0463 0x1394  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll

10:48:42.0483 0x1394  lltdsvc - ok

10:48:42.0511 0x1394  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll

10:48:42.0515 0x1394  lmhosts - ok

10:48:42.0555 0x1394  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys

10:48:42.0626 0x1394  LSI_FC - ok

10:48:42.0694 0x1394  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys

10:48:42.0708 0x1394  LSI_SAS - ok

10:48:42.0729 0x1394  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys

10:48:42.0735 0x1394  LSI_SAS2 - ok

10:48:42.0762 0x1394  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys

10:48:42.0771 0x1394  LSI_SCSI - ok

10:48:42.0805 0x1394  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys

10:48:42.0812 0x1394  luafv - ok

10:48:42.0920 0x1394  [ 4BA84C832E0741A294C4444556DFE993, 2CC888C85887F0F3EB5395075B9C65FF1307D98608BDC1D88ACE4A375DD9DFD9 ] MCLIENT         C:\Program Files (x86)\Norton Management\Engine\3.2.2.12\ccSvcHst.exe

10:48:42.0926 0x1394  MCLIENT - ok

10:48:42.0985 0x1394  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll

10:48:42.0993 0x1394  Mcx2Svc - ok

10:48:43.0023 0x1394  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys

10:48:43.0028 0x1394  megasas - ok

10:48:43.0076 0x1394  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys

10:48:43.0092 0x1394  MegaSR - ok

10:48:43.0164 0x1394  Microsoft SharePoint Workspace Audit Service - ok

10:48:43.0202 0x1394  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll

10:48:43.0207 0x1394  MMCSS - ok

10:48:43.0236 0x1394  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys

10:48:43.0240 0x1394  Modem - ok

10:48:43.0258 0x1394  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys

10:48:43.0261 0x1394  monitor - ok

10:48:43.0289 0x1394  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys

10:48:43.0294 0x1394  mouclass - ok

10:48:43.0347 0x1394  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\drivers\mouhid.sys

10:48:43.0350 0x1394  mouhid - ok

10:48:43.0373 0x1394  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys

10:48:43.0380 0x1394  mountmgr - ok



#7 RacSta

RacSta
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 28 January 2014 - 07:14 PM

And the third.....

 

 

10:48:43.0429 0x1394  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys

10:48:43.0438 0x1394  mpio - ok

10:48:43.0473 0x1394  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys

10:48:43.0478 0x1394  mpsdrv - ok

10:48:43.0559 0x1394  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll

10:48:43.0714 0x1394  MpsSvc - ok

10:48:43.0753 0x1394  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys

10:48:43.0764 0x1394  MRxDAV - ok

10:48:43.0810 0x1394  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys

10:48:43.0820 0x1394  mrxsmb - ok

10:48:43.0857 0x1394  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys

10:48:43.0872 0x1394  mrxsmb10 - ok

10:48:43.0899 0x1394  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys

10:48:43.0906 0x1394  mrxsmb20 - ok

10:48:43.0946 0x1394  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys

10:48:43.0950 0x1394  msahci - ok

10:48:43.0989 0x1394  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys

10:48:43.0999 0x1394  msdsm - ok

10:48:44.0077 0x1394  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe

10:48:44.0094 0x1394  MSDTC - ok

10:48:44.0145 0x1394  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys

10:48:44.0148 0x1394  Msfs - ok

10:48:44.0169 0x1394  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys

10:48:44.0172 0x1394  mshidkmdf - ok

10:48:44.0198 0x1394  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys

10:48:44.0202 0x1394  msisadrv - ok

10:48:44.0246 0x1394  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll

10:48:44.0257 0x1394  MSiSCSI - ok

10:48:44.0266 0x1394  msiserver - ok

10:48:44.0304 0x1394  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys

10:48:44.0307 0x1394  MSKSSRV - ok

10:48:44.0329 0x1394  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys

10:48:44.0331 0x1394  MSPCLOCK - ok

10:48:44.0343 0x1394  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys

10:48:44.0346 0x1394  MSPQM - ok

10:48:44.0453 0x1394  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys

10:48:44.0471 0x1394  MsRPC - ok

10:48:44.0506 0x1394  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys

10:48:44.0509 0x1394  mssmbios - ok

10:48:44.0535 0x1394  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys

10:48:44.0537 0x1394  MSTEE - ok

10:48:44.0562 0x1394  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys

10:48:44.0636 0x1394  MTConfig - ok

10:48:44.0713 0x1394  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys

10:48:44.0721 0x1394  Mup - ok

10:48:44.0920 0x1394  [ D57EC83468C328E2C3029A0BAA722072, 71714FCCDF625A0959FDB4E70FCCBCF184345537BE9509987F798837B392653E ] N360            C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\N360.exe

10:48:44.0937 0x1394  N360 - ok

10:48:44.0987 0x1394  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll

10:48:45.0012 0x1394  napagent - ok

10:48:45.0141 0x1394  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys

10:48:45.0157 0x1394  NativeWifiP - ok

10:48:45.0273 0x1394  [ 702E07EC32F96ACDB873E9A5465D4401, 2C6B1C8BA0BF4791AEA064062DCA3678AE4443DF19DB37D6CB55BA6297D8A238 ] NAVENG          C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20140125.005\ENG64.SYS

10:48:45.0305 0x1394  NAVENG - ok

10:48:45.0531 0x1394  [ 302EA314A1AF0D7CEF0A3D0195F79561, 046DBC2D9D028F2D2E8BAE745CA2ADEF42741689BFF743A13B81EA4228DDCDC6 ] NAVEX15         C:\Program Files (x86)\Norton Security Suite\NortonData\21.1.0.18\Definitions\VirusDefs\20140125.005\EX64.SYS

10:48:45.0723 0x1394  NAVEX15 - ok

10:48:45.0856 0x1394  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys

10:48:45.0933 0x1394  NDIS - ok

10:48:45.0973 0x1394  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys

10:48:45.0978 0x1394  NdisCap - ok

10:48:46.0003 0x1394  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys

10:48:46.0006 0x1394  NdisTapi - ok

10:48:46.0030 0x1394  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys

10:48:46.0034 0x1394  Ndisuio - ok

10:48:46.0124 0x1394  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys

10:48:46.0136 0x1394  NdisWan - ok

10:48:46.0155 0x1394  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys

10:48:46.0160 0x1394  NDProxy - ok

10:48:46.0229 0x1394  [ 2334DC48997BA203B794DF3EE70521DB, 832F4EC1586C9669F2D54AB3B212943E43B87A33B24DCC8CDAD6A0264291EE2F ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll

10:48:46.0234 0x1394  Net Driver HPZ12 - ok

10:48:46.0252 0x1394  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys

10:48:46.0255 0x1394  NetBIOS - ok

10:48:46.0299 0x1394  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys

10:48:46.0312 0x1394  NetBT - ok

10:48:46.0332 0x1394  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe

10:48:46.0335 0x1394  Netlogon - ok

10:48:46.0386 0x1394  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll

10:48:46.0404 0x1394  Netman - ok

10:48:46.0472 0x1394  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll

10:48:46.0495 0x1394  netprofm - ok

10:48:46.0538 0x1394  [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

10:48:46.0545 0x1394  NetTcpPortSharing - ok

10:48:46.0712 0x1394  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys

10:48:46.0722 0x1394  nfrd960 - ok

10:48:46.0772 0x1394  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll

10:48:46.0788 0x1394  NlaSvc - ok

10:48:46.0810 0x1394  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys

10:48:46.0814 0x1394  Npfs - ok

10:48:46.0841 0x1394  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll

10:48:46.0845 0x1394  nsi - ok

10:48:46.0864 0x1394  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys

10:48:46.0867 0x1394  nsiproxy - ok

10:48:46.0995 0x1394  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys

10:48:47.0114 0x1394  Ntfs - ok

10:48:47.0149 0x1394  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys

10:48:47.0151 0x1394  Null - ok

10:48:47.0274 0x1394  [ A85B4F2EF3A7304A5399EF0526423040, E45854691BA6AE36E53C2922CC93FF13DC2D84CBE7FE13A2F0B1CE1C16D1D158 ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x64.sys

10:48:47.0295 0x1394  NVENETFD - ok

10:48:47.0330 0x1394  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys

10:48:47.0355 0x1394  nvraid - ok

10:48:47.0395 0x1394  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys

10:48:47.0420 0x1394  nvstor - ok

10:48:47.0457 0x1394  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys

10:48:47.0464 0x1394  nv_agp - ok

10:48:47.0492 0x1394  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys

10:48:47.0498 0x1394  ohci1394 - ok

10:48:47.0564 0x1394  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

10:48:47.0637 0x1394  ose - ok

10:48:48.0102 0x1394  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

10:48:48.0387 0x1394  osppsvc - ok

10:48:48.0474 0x1394  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll

10:48:48.0492 0x1394  p2pimsvc - ok

10:48:48.0595 0x1394  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll

10:48:48.0665 0x1394  p2psvc - ok

10:48:48.0712 0x1394  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys

10:48:48.0720 0x1394  Parport - ok

10:48:48.0756 0x1394  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys

10:48:48.0762 0x1394  partmgr - ok

10:48:48.0794 0x1394  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll

10:48:48.0805 0x1394  PcaSvc - ok

10:48:48.0840 0x1394  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys

10:48:48.0850 0x1394  pci - ok

10:48:48.0886 0x1394  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys

10:48:48.0889 0x1394  pciide - ok

10:48:48.0983 0x1394  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys

10:48:48.0998 0x1394  pcmcia - ok

10:48:49.0031 0x1394  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys

10:48:49.0036 0x1394  pcw - ok

10:48:49.0157 0x1394  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys

10:48:49.0248 0x1394  PEAUTH - ok

10:48:49.0350 0x1394  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe

10:48:49.0356 0x1394  PerfHost - ok

10:48:49.0502 0x1394  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll

10:48:49.0589 0x1394  pla - ok

10:48:49.0718 0x1394  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll

10:48:49.0741 0x1394  PlugPlay - ok

10:48:49.0799 0x1394  [ AC78DF349F0E4CFB8B667C0CFFF83CCE, 7E635AA2E7350FCA0C954E697F1480A6204920AEFBCF06B90FFA02398DA82822 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll

10:48:49.0805 0x1394  Pml Driver HPZ12 - ok

10:48:49.0823 0x1394  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll

10:48:49.0828 0x1394  PNRPAutoReg - ok

10:48:49.0908 0x1394  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll

10:48:49.0925 0x1394  PNRPsvc - ok

10:48:49.0982 0x1394  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll

10:48:50.0006 0x1394  PolicyAgent - ok

10:48:50.0053 0x1394  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll

10:48:50.0063 0x1394  Power - ok

10:48:50.0118 0x1394  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys

10:48:50.0125 0x1394  PptpMiniport - ok

10:48:50.0157 0x1394  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys

10:48:50.0164 0x1394  Processor - ok

10:48:50.0199 0x1394  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll

10:48:50.0211 0x1394  ProfSvc - ok

10:48:50.0233 0x1394  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe

10:48:50.0237 0x1394  ProtectedStorage - ok

10:48:50.0277 0x1394  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys

10:48:50.0284 0x1394  Psched - ok

10:48:50.0400 0x1394  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys

10:48:50.0489 0x1394  ql2300 - ok

10:48:50.0532 0x1394  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys

10:48:50.0542 0x1394  ql40xx - ok

10:48:50.0724 0x1394  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll

10:48:50.0742 0x1394  QWAVE - ok

10:48:50.0775 0x1394  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys

10:48:50.0780 0x1394  QWAVEdrv - ok

10:48:50.0798 0x1394  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys

10:48:50.0801 0x1394  RasAcd - ok

10:48:50.0840 0x1394  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys

10:48:50.0845 0x1394  RasAgileVpn - ok

10:48:50.0888 0x1394  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll

10:48:50.0896 0x1394  RasAuto - ok

10:48:50.0938 0x1394  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys

10:48:50.0946 0x1394  Rasl2tp - ok

10:48:51.0031 0x1394  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll

10:48:51.0054 0x1394  RasMan - ok

10:48:51.0081 0x1394  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys

10:48:51.0087 0x1394  RasPppoe - ok

10:48:51.0110 0x1394  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys

10:48:51.0115 0x1394  RasSstp - ok

10:48:51.0199 0x1394  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys

10:48:51.0215 0x1394  rdbss - ok

10:48:51.0248 0x1394  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys

10:48:51.0251 0x1394  rdpbus - ok

10:48:51.0269 0x1394  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys

10:48:51.0272 0x1394  RDPCDD - ok

10:48:51.0320 0x1394  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys

10:48:51.0322 0x1394  RDPENCDD - ok

10:48:51.0344 0x1394  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys

10:48:51.0347 0x1394  RDPREFMP - ok

10:48:51.0388 0x1394  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys

10:48:51.0402 0x1394  RDPWD - ok

10:48:51.0443 0x1394  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys

10:48:51.0455 0x1394  rdyboost - ok

10:48:51.0494 0x1394  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll

10:48:51.0501 0x1394  RemoteAccess - ok

10:48:51.0547 0x1394  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll

10:48:51.0558 0x1394  RemoteRegistry - ok

10:48:51.0722 0x1394  [ 085D18C71AB2611A3D61528132B6501E, 2AD2DD88EBD8C498E3043CDAA37E83C69F7FE2FD6B65524F631527555B80C112 ] RoxioNow Service C:\Program Files (x86)\Roxio\RoxioNow Player\RNowSvc.exe

10:48:51.0821 0x1394  RoxioNow Service - ok

10:48:51.0851 0x1394  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll

10:48:51.0857 0x1394  RpcEptMapper - ok

10:48:51.0894 0x1394  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe

10:48:51.0898 0x1394  RpcLocator - ok

10:48:51.0950 0x1394  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll

10:48:51.0975 0x1394  RpcSs - ok

10:48:52.0039 0x1394  [ 1F5E7AF59B390261A85F5BEDB1BB88B3, 8A0B23EED74475E6790EF03E54B53BB964A0EC08ADF28BD6AAFA9CF6BE6F20DA ] RSPCIESTOR      C:\Windows\system32\DRIVERS\RtsPStor.sys

10:48:52.0056 0x1394  RSPCIESTOR - ok

10:48:52.0099 0x1394  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys

10:48:52.0103 0x1394  rspndr - ok

10:48:52.0182 0x1394  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys

10:48:52.0269 0x1394  RTL8167 - ok

10:48:52.0376 0x1394  [ F33E70E48A54A7A1BFBEEB4F3B273E4A, 8723F26DC414A4D11F9B3032E8D366BBD2D510E6F247AB67A2ACB3C209C1F8DB ] RTL8192Ce       C:\Windows\system32\DRIVERS\rtl8192Ce.sys

10:48:52.0467 0x1394  RTL8192Ce - ok

10:48:52.0489 0x1394  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe

10:48:52.0493 0x1394  SamSs - ok

10:48:52.0533 0x1394  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys

10:48:52.0542 0x1394  sbp2port - ok

10:48:52.0698 0x1394  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll

10:48:52.0713 0x1394  SCardSvr - ok

10:48:52.0750 0x1394  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys

10:48:52.0753 0x1394  scfilter - ok

10:48:52.0895 0x1394  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll

10:48:52.0975 0x1394  Schedule - ok

10:48:53.0008 0x1394  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll

10:48:53.0013 0x1394  SCPolicySvc - ok

10:48:53.0059 0x1394  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys

10:48:53.0068 0x1394  sdbus - ok

10:48:53.0107 0x1394  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll

10:48:53.0118 0x1394  SDRSVC - ok

10:48:53.0149 0x1394  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys

10:48:53.0152 0x1394  secdrv - ok

10:48:53.0177 0x1394  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll

10:48:53.0182 0x1394  seclogon - ok

10:48:53.0202 0x1394  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll

10:48:53.0208 0x1394  SENS - ok

10:48:53.0262 0x1394  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll

10:48:53.0268 0x1394  SensrSvc - ok

10:48:53.0306 0x1394  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys

10:48:53.0311 0x1394  Serenum - ok

10:48:53.0347 0x1394  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys

10:48:53.0355 0x1394  Serial - ok

10:48:53.0392 0x1394  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys

10:48:53.0399 0x1394  sermouse - ok

10:48:53.0450 0x1394  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll

10:48:53.0460 0x1394  SessionEnv - ok

10:48:53.0491 0x1394  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys

10:48:53.0494 0x1394  sffdisk - ok

10:48:53.0529 0x1394  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys

10:48:53.0532 0x1394  sffp_mmc - ok

10:48:53.0558 0x1394  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys

10:48:53.0632 0x1394  sffp_sd - ok

10:48:53.0694 0x1394  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys

10:48:53.0697 0x1394  sfloppy - ok

10:48:53.0763 0x1394  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll

10:48:53.0780 0x1394  SharedAccess - ok

10:48:53.0840 0x1394  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

10:48:53.0860 0x1394  ShellHWDetection - ok

10:48:53.0921 0x1394  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys

10:48:53.0930 0x1394  SiSRaid2 - ok

10:48:53.0967 0x1394  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys

10:48:53.0975 0x1394  SiSRaid4 - ok

10:48:54.0076 0x1394  [ 3E587DBBDFF938DDE5D4CE4047BE9041, CA13B2C50FB09365362077AEC4B25120CF09F8C35702F645922D618FE57B5E05 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe

10:48:54.0086 0x1394  SkypeUpdate - ok

10:48:54.0118 0x1394  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys

10:48:54.0125 0x1394  Smb - ok

10:48:54.0185 0x1394  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe

10:48:54.0190 0x1394  SNMPTRAP - ok

10:48:54.0222 0x1394  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys

10:48:54.0226 0x1394  spldr - ok

10:48:54.0297 0x1394  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe

10:48:54.0322 0x1394  Spooler - ok

10:48:54.0540 0x1394  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe

10:48:54.0719 0x1394  sppsvc - ok

10:48:54.0762 0x1394  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll

10:48:54.0769 0x1394  sppuinotify - ok

10:48:54.0881 0x1394  [ 602884696850C86434530790B110E8EB, C9B734F070E55732B274C70381EA28AB574EF6AD3F606D3DC9B9B0038F3EDEEA ] sptd            C:\Windows\system32\Drivers\sptd.sys

10:48:54.0882 0x1394  Suspicious file ( NoAccess ): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850C86434530790B110E8EB, sha256: C9B734F070E55732B274C70381EA28AB574EF6AD3F606D3DC9B9B0038F3EDEEA

10:48:54.0888 0x1394  sptd - detected LockedFile.Multi.Generic ( 1 )

10:49:05.0165 0x1394  sptd ( LockedFile.Multi.Generic ) - warning

10:49:05.0165 0x1394  Force sending object to P2P due to detect: C:\Windows\system32\Drivers\sptd.sys

10:49:11.0025 0x1394  Object send P2P result: true

10:49:13.0961 0x1394  [ 8BFD1752AAA15BF47D668E9AC5AF96FB, EEC6CDA06A971D2E2C2634987228E550970C9246659C25DCCF87AC9CD08F55F3 ] SRTSP           C:\Windows\System32\Drivers\N360x64\1501000.012\SRTSP64.SYS

10:49:13.0997 0x1394  SRTSP - ok

10:49:14.0074 0x1394  [ B18CE01B9C09C59422BA7C7064248B35, B355EE2FBB37C4B0EFFE4DC5E0788A26579266828E7988EDC497B0AE7375F8AB ] SRTSPX          C:\Windows\system32\drivers\N360x64\1501000.012\SRTSPX64.SYS

10:49:14.0092 0x1394  SRTSPX - ok

10:49:14.0145 0x1394  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys

10:49:14.0168 0x1394  srv - ok

10:49:14.0222 0x1394  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys

10:49:14.0242 0x1394  srv2 - ok

10:49:14.0301 0x1394  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS

10:49:14.0319 0x1394  SrvHsfHDA - ok

10:49:14.0445 0x1394  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS

10:49:14.0535 0x1394  SrvHsfV92 - ok

10:49:14.0592 0x1394  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS

10:49:14.0659 0x1394  SrvHsfWinac - ok

10:49:14.0718 0x1394  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys

10:49:14.0727 0x1394  srvnet - ok

10:49:14.0769 0x1394  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll

10:49:14.0781 0x1394  SSDPSRV - ok

10:49:14.0801 0x1394  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll

10:49:14.0808 0x1394  SstpSvc - ok

10:49:14.0926 0x1394  [ A6B2EC3A2B6AD7C3F7B2F3495CADE4C0, AD540FB4F300731DE403FB95F110A0F3DBA25917A91EAB23966286DD88C98D17 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe

10:49:14.0979 0x1394  STacSV - ok

10:49:15.0009 0x1394  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys

10:49:15.0014 0x1394  stexstor - ok

10:49:15.0079 0x1394  [ EBA98394A7D58F7552C52192BD8FA7E6, 4238870E50132E87772300058B37E36973695CC1A5E62117EEF4B424C6A137E4 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys

10:49:15.0102 0x1394  STHDA - ok

10:49:15.0169 0x1394  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll

10:49:15.0198 0x1394  stisvc - ok

10:49:15.0232 0x1394  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys

10:49:15.0234 0x1394  swenum - ok

10:49:15.0285 0x1394  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll

10:49:15.0312 0x1394  swprv - ok

10:49:15.0397 0x1394  [ 5C9EE2303CA7F267665D75237862B39C, 5DECD977A823C14B4D980D3DB621BC875231B741653F0450A027FC9E87725F9D ] SymDS           C:\Windows\system32\drivers\N360x64\1501000.012\SYMDS64.SYS

10:49:15.0440 0x1394  SymDS - ok

10:49:15.0598 0x1394  [ 08AF51153E441687130B759A8F6892ED, C9DFC0667EF9CE7FACBBB0DE53BD6E0DC9E0ED582CB89FBB2E7FE91CEAC47C5B ] SymEFA          C:\Windows\system32\drivers\N360x64\1501000.012\SYMEFA64.SYS

10:49:15.0736 0x1394  SymEFA - ok

10:49:15.0797 0x1394  [ 97E11C50CE52277B377396EA8838E539, E17D03F80E14F961C41F2D54D1EF73D29BF01F38459C5710D786234F8BA3C835 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS

10:49:15.0840 0x1394  SymEvent - ok

10:49:15.0887 0x1394  [ 48C2934683CBD06F662B088EEF49EF6A, 2212A3588C28F33EFCB1D34618B3054EBBAC6731D177A581D21D1F969FE040C0 ] SymIRON         C:\Windows\system32\drivers\N360x64\1501000.012\Ironx64.SYS

10:49:15.0916 0x1394  SymIRON - ok

10:49:16.0065 0x1394  [ 78A2F073AD9EA5EBC04A70931EA36C9A, 011395F07D7879D30E1700F060CA8C02407F8FFC99998B2E7507E7AF22578B68 ] SymNetS         C:\Windows\System32\Drivers\N360x64\1501000.012\SYMNETS.SYS

10:49:16.0095 0x1394  SymNetS - ok

10:49:16.0163 0x1394  [ AC3CC98B1BDB6540021D3FFB105AC2B9, 671146CC16139AECE0BCCC44983807E045A930E262F64461D0D882A0A0B77E4F ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys

10:49:16.0183 0x1394  SynTP - ok

10:49:16.0447 0x1394  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll

10:49:16.0560 0x1394  SysMain - ok

10:49:16.0632 0x1394  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll

10:49:16.0641 0x1394  TabletInputService - ok

10:49:16.0691 0x1394  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll

10:49:16.0709 0x1394  TapiSrv - ok

10:49:16.0732 0x1394  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll

10:49:16.0738 0x1394  TBS - ok

10:49:16.0879 0x1394  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys

10:49:17.0005 0x1394  Tcpip - ok

10:49:17.0133 0x1394  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys

10:49:17.0212 0x1394  TCPIP6 - ok

10:49:17.0256 0x1394  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys

10:49:17.0260 0x1394  tcpipreg - ok

10:49:17.0289 0x1394  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys

10:49:17.0292 0x1394  TDPIPE - ok

10:49:17.0320 0x1394  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys

10:49:17.0324 0x1394  TDTCP - ok

10:49:17.0358 0x1394  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys

10:49:17.0365 0x1394  tdx - ok

10:49:17.0396 0x1394  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys

10:49:17.0401 0x1394  TermDD - ok

10:49:17.0465 0x1394  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll

10:49:17.0557 0x1394  TermService - ok

10:49:17.0640 0x1394  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll

10:49:17.0650 0x1394  Themes - ok

10:49:17.0683 0x1394  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll

10:49:17.0689 0x1394  THREADORDER - ok

10:49:17.0714 0x1394  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll

10:49:17.0722 0x1394  TrkWks - ok

10:49:17.0781 0x1394  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

10:49:17.0791 0x1394  TrustedInstaller - ok

10:49:17.0851 0x1394  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys

10:49:17.0858 0x1394  tssecsrv - ok

10:49:17.0891 0x1394  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys

10:49:17.0896 0x1394  TsUsbFlt - ok

10:49:17.0914 0x1394  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys

10:49:17.0919 0x1394  TsUsbGD - ok

10:49:17.0970 0x1394  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys

10:49:17.0977 0x1394  tunnel - ok

10:49:18.0000 0x1394  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys

10:49:18.0005 0x1394  uagp35 - ok

10:49:18.0095 0x1394  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys

10:49:18.0115 0x1394  udfs - ok

10:49:18.0152 0x1394  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe

10:49:18.0159 0x1394  UI0Detect - ok

10:49:18.0187 0x1394  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys

10:49:18.0192 0x1394  uliagpkx - ok

10:49:18.0244 0x1394  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys

10:49:18.0248 0x1394  umbus - ok

10:49:18.0269 0x1394  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys

10:49:18.0272 0x1394  UmPass - ok

10:49:18.0357 0x1394  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll

10:49:18.0376 0x1394  upnphost - ok

10:49:18.0420 0x1394  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys

10:49:18.0425 0x1394  USBAAPL64 - ok

10:49:18.0473 0x1394  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys

10:49:18.0479 0x1394  usbccgp - ok

10:49:18.0516 0x1394  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys

10:49:18.0523 0x1394  usbcir - ok

10:49:18.0568 0x1394  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys

10:49:18.0571 0x1394  usbehci - ok

10:49:18.0711 0x1394  [ B7037444DC5138FC7D3D3968B4DE5C4B, DD9E3E40766A3F3B708DA341B7280E447788218ED677E1A24EC0CD04B04281B2 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys

10:49:18.0718 0x1394  usbfilter - ok

10:49:18.0778 0x1394  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys

10:49:18.0797 0x1394  usbhub - ok

10:49:18.0824 0x1394  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys

10:49:18.0827 0x1394  usbohci - ok

10:49:18.0864 0x1394  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys

10:49:18.0870 0x1394  usbprint - ok

10:49:18.0908 0x1394  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys

10:49:18.0927 0x1394  usbscan - ok

10:49:18.0958 0x1394  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS

10:49:19.0025 0x1394  USBSTOR - ok

10:49:19.0065 0x1394  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys

10:49:19.0069 0x1394  usbuhci - ok

10:49:19.0129 0x1394  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys

10:49:19.0138 0x1394  usbvideo - ok

10:49:19.0162 0x1394  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll

10:49:19.0170 0x1394  UxSms - ok

10:49:19.0191 0x1394  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe

10:49:19.0195 0x1394  VaultSvc - ok

10:49:19.0252 0x1394  [ FD911873C0BB6945FA38C16E9A2B58F9, EF8C833321449A6E8B671890F2EBC82ABC276B890D274AADDB626D763EE98964 ] VClone          C:\Windows\system32\DRIVERS\VClone.sys

10:49:19.0255 0x1394  VClone - ok

10:49:19.0291 0x1394  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys

10:49:19.0295 0x1394  vdrvroot - ok

10:49:19.0357 0x1394  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe

10:49:19.0444 0x1394  vds - ok

10:49:19.0481 0x1394  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys

10:49:19.0485 0x1394  vga - ok

10:49:19.0512 0x1394  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys

10:49:19.0515 0x1394  VgaSave - ok

10:49:19.0558 0x1394  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys

10:49:19.0642 0x1394  vhdmp - ok

10:49:19.0689 0x1394  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys

10:49:19.0692 0x1394  viaide - ok

10:49:19.0718 0x1394  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys

10:49:19.0724 0x1394  volmgr - ok

10:49:19.0771 0x1394  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys

10:49:19.0790 0x1394  volmgrx - ok

10:49:19.0832 0x1394  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys

10:49:19.0846 0x1394  volsnap - ok

10:49:19.0893 0x1394  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys

10:49:19.0903 0x1394  vsmraid - ok

10:49:20.0010 0x1394  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe

10:49:20.0100 0x1394  VSS - ok

10:49:20.0137 0x1394  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys

10:49:20.0140 0x1394  vwifibus - ok

10:49:20.0167 0x1394  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys

10:49:20.0172 0x1394  vwififlt - ok

10:49:20.0229 0x1394  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys

10:49:20.0232 0x1394  vwifimp - ok

10:49:20.0284 0x1394  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll

10:49:20.0304 0x1394  W32Time - ok

10:49:20.0339 0x1394  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys

10:49:20.0344 0x1394  WacomPen - ok

10:49:20.0383 0x1394  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys

10:49:20.0388 0x1394  WANARP - ok

10:49:20.0399 0x1394  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys

10:49:20.0405 0x1394  Wanarpv6 - ok

10:49:20.0522 0x1394  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe

10:49:20.0613 0x1394  WatAdminSvc - ok

10:49:20.0816 0x1394  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe

10:49:20.0908 0x1394  wbengine - ok

10:49:20.0942 0x1394  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll

10:49:20.0956 0x1394  WbioSrvc - ok

10:49:21.0000 0x1394  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll

10:49:21.0021 0x1394  wcncsvc - ok

10:49:21.0044 0x1394  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

10:49:21.0051 0x1394  WcsPlugInService - ok

10:49:21.0087 0x1394  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys

10:49:21.0091 0x1394  Wd - ok

10:49:21.0158 0x1394  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys

10:49:21.0238 0x1394  Wdf01000 - ok

10:49:21.0275 0x1394  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll

10:49:21.0282 0x1394  WdiServiceHost - ok

10:49:21.0294 0x1394  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll

10:49:21.0301 0x1394  WdiSystemHost - ok

10:49:21.0344 0x1394  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll

10:49:21.0360 0x1394  WebClient - ok

10:49:21.0394 0x1394  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll

10:49:21.0409 0x1394  Wecsvc - ok

10:49:21.0438 0x1394  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll

10:49:21.0447 0x1394  wercplsupport - ok

10:49:21.0481 0x1394  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll

10:49:21.0489 0x1394  WerSvc - ok

10:49:21.0542 0x1394  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys

10:49:21.0544 0x1394  WfpLwf - ok

10:49:21.0574 0x1394  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys

10:49:21.0599 0x1394  WIMMount - ok

10:49:21.0666 0x1394  WinDefend - ok

10:49:21.0691 0x1394  WinHttpAutoProxySvc - ok

10:49:21.0773 0x1394  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll

10:49:21.0788 0x1394  Winmgmt - ok

10:49:21.0928 0x1394  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll

10:49:22.0041 0x1394  WinRM - ok

10:49:22.0116 0x1394  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys

10:49:22.0122 0x1394  WinUsb - ok

10:49:22.0207 0x1394  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll

10:49:22.0284 0x1394  Wlansvc - ok

10:49:22.0341 0x1394  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

10:49:22.0362 0x1394  wlcrasvc - ok

10:49:22.0657 0x1394  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

10:49:22.0788 0x1394  wlidsvc - ok

10:49:22.0823 0x1394  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys

10:49:22.0826 0x1394  WmiAcpi - ok

10:49:22.0865 0x1394  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe

10:49:22.0876 0x1394  wmiApSrv - ok

10:49:22.0924 0x1394  WMPNetworkSvc - ok

10:49:22.0959 0x1394  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll

10:49:22.0965 0x1394  WPCSvc - ok

10:49:22.0987 0x1394  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll

10:49:22.0996 0x1394  WPDBusEnum - ok

10:49:23.0031 0x1394  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys

10:49:23.0034 0x1394  ws2ifsl - ok

10:49:23.0068 0x1394  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll

10:49:23.0075 0x1394  wscsvc - ok

10:49:23.0123 0x1394  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys

10:49:23.0128 0x1394  WSDPrintDevice - ok

10:49:23.0137 0x1394  WSearch - ok

10:49:23.0303 0x1394  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll

10:49:23.0421 0x1394  wuauserv - ok

10:49:23.0460 0x1394  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys

10:49:23.0466 0x1394  WudfPf - ok

10:49:23.0509 0x1394  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys

10:49:23.0521 0x1394  WUDFRd - ok

10:49:23.0556 0x1394  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll

10:49:23.0564 0x1394  wudfsvc - ok

10:49:23.0729 0x1394  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll

10:49:23.0755 0x1394  WwanSvc - ok

10:49:23.0795 0x1394  ================ Scan global ===============================

10:49:23.0823 0x1394  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll

10:49:23.0882 0x1394  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll

10:49:23.0909 0x1394  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll

10:49:23.0971 0x1394  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll

10:49:24.0020 0x1394  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe

10:49:24.0036 0x1394  [ Global ] - ok

10:49:24.0037 0x1394  ================ Scan MBR ==================================

10:49:24.0057 0x1394  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

10:49:24.0473 0x1394  \Device\Harddisk0\DR0 - ok

10:49:24.0474 0x1394  ================ Scan VBR ==================================

10:49:24.0481 0x1394  [ 7A385EAE3D31B61066ACE00C32BFD54E ] \Device\Harddisk0\DR0\Partition1

10:49:24.0484 0x1394  \Device\Harddisk0\DR0\Partition1 - ok

10:49:24.0497 0x1394  [ 8A04B8BDB18B9931A6B54C36470CA12D ] \Device\Harddisk0\DR0\Partition2

10:49:24.0500 0x1394  \Device\Harddisk0\DR0\Partition2 - ok

10:49:24.0535 0x1394  [ 9EB9CDD35E84983CCCAEBBE6DF3DDC62 ] \Device\Harddisk0\DR0\Partition3

10:49:24.0539 0x1394  \Device\Harddisk0\DR0\Partition3 - ok

10:49:24.0557 0x1394  [ 3A3FD5772738B9C4B388DCCD241DA294 ] \Device\Harddisk0\DR0\Partition4

10:49:24.0637 0x1394  \Device\Harddisk0\DR0\Partition4 - ok

10:49:24.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:25.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:26.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:27.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:28.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:29.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:30.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:31.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:32.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:33.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:34.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:35.0639 0x1394  Waiting for KSN requests completion. In queue: 113

10:49:36.0684 0x1394  AV detected via SS2: Norton Security Suite, C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\WSCStub.exe ( 21.1.0.0 ), 0x51000 ( enabled : updated )

10:49:36.0689 0x1394  FW detected via SS2: Norton Security Suite, C:\Program Files (x86)\Norton Security Suite\Engine\21.1.0.18\WSCStub.exe ( 21.1.0.0 ), 0x51010 ( enabled )

10:49:39.0292 0x1394  ============================================================

10:49:39.0292 0x1394  Scan finished

10:49:39.0292 0x1394  ============================================================

10:49:39.0324 0x1354  Detected object count: 1

10:49:39.0324 0x1354  Actual detected object count: 1

10:49:59.0969 0x1354  sptd ( LockedFile.Multi.Generic ) - skipped by user

10:49:59.0969 0x1354  sptd ( LockedFile.Multi.Generic ) - User select action: Skip



#8 RacSta

RacSta
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 28 January 2014 - 07:16 PM

The adware Removal Log:

 

# AdwCleaner v3.017 - Report created 27/01/2014 at 13:03:42

# Updated 12/01/2014 by Xplode

# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

# Username : Rachel - RACHEL-HP

# Running from : C:\Users\Rachel\Desktop\AdwCleaner.exe

# Option : Clean

 

***** [ Services ] *****

 

 

***** [ Files / Folders ] *****

 

Folder Deleted : C:\ProgramData\w3i

Folder Deleted : C:\Program Files (x86)\w3i

Folder Deleted : C:\Users\Rachel\AppData\Local\visi_coupon

Folder Deleted : C:\Users\Rachel\AppData\Roaming\pccustubinstaller

 

***** [ Shortcuts ] *****

 

 

***** [ Registry ] *****

 

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasapi32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\askpartnercobrandingtool_rasmancs

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\AskSLib_RASMANCS

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_slender_RASAPI32

Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_slender_RASMANCS

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}

Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Key Deleted : HKCU\Software\pc optimizer pro

Key Deleted : HKLM\Software\dt soft\daemon tools toolbar

 

***** [ Browsers ] *****

 

-\\ Internet Explorer v11.0.9600.16428

 

 

-\\ Mozilla Firefox v

 

-\\ Google Chrome v32.0.1700.76

 

[ File : C:\Users\Rachel\AppData\Local\Google\Chrome\User Data\Default\preferences ]

 

 

*************************

 

AdwCleaner[R0].txt - [3392 octets] - [27/01/2014 13:01:23]

AdwCleaner[S0].txt - [3095 octets] - [27/01/2014 13:03:42]

 

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3155 octets] ##########


And finally the JRT log

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.1.0 (01.07.2014:1)

OS: Windows 7 Home Premium x64

Ran by Rachel on Mon 01/27/2014 at 13:12:41.66

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

~~~ Services

 

 

 

~~~ Registry Values

 

 

 

~~~ Registry Keys

 

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\caphyon

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{78D5AF52-65DE-4089-B2E9-2E0BC6D0CD76}

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\SearchScopes\{78D5AF52-65DE-4089-B2E9-2E0BC6D0CD76}

 

 

 

~~~ Files

 

 

 

~~~ Folders

 

Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{053DA71A-BA57-454A-B8D0-363D4691AFE3}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{0886D65D-B066-4C62-94AF-C8A618FE37C2}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{138E8350-AA32-4260-830C-CFF52F5FEC64}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{60EB9D91-EAC9-4894-941B-3321E50D2114}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{6492E5C0-403F-491C-8245-091EF43CF88A}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{64C6E601-DB76-4218-8AA8-3213518D62B9}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{684D40F5-B730-4B11-9F89-62484CCE70E4}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{68AAFF69-DCE1-4A23-A592-B5BE72445FA4}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{A9269C73-425F-4D77-808A-F02153C2AF8C}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{B817096B-A850-4CC0-AD25-3BCF6B4448C6}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{BF9ABB29-B9F5-460A-B600-67F1504F4ED7}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{BFEC0D85-8CE4-4A80-B71F-5292A42FF03D}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{C481E549-D477-4D02-A61F-C6CC4944A283}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{D76C969D-27A0-4752-9D5F-C64458C843DD}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{D8D15490-B73A-48DE-B5D3-6B4A039A5DD8}

Successfully deleted: [Empty Folder] C:\Users\Rachel\appdata\local\{E12B6162-23D7-4643-98EE-3CA930DD8FF4}

 

 

 

~~~ Event Viewer Logs were cleared

 

 

 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on Mon 01/27/2014 at 13:31:16.47

End of JRT log

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

 

 

When I did the final scan you directed, it crashed half way through giving me the screen of blue death as I've heard it called before. Before crashing it said it had detected 2 threats, but when I redid it after the crash and completed it, it found none? Nothing else was running during either time I ran this scan. Not sure if that should be concerning



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:39 AM

Posted 28 January 2014 - 07:50 PM

It most likely removed it and that was the crash o BSOD as you correctly called it.
 
There may be an ESET log here if you want too look..
 
The ESET Online Scanner saves a log file after running, which can be examined or sent in to ESET for further analysis. The path to the log file is "C:\Program Files\ESET\EsetOnlineScanner\log.txt" (on 64-bit systems this directory will be "C:\Program Files (x86)\ESET\Esetonlinescanner\log.txt"). You can view this file by navigating to the directory and double-clicking it in Windows Explorer, or by copying and pasting the path specification above (including the quotation marks) into the Start > Run dialog box from the Start Menu on the desktop.
 
How is it running now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 RacSta

RacSta
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 28 January 2014 - 08:18 PM

I am sure it is alright. Everything seems to be running well so thank you! :) I do still receive a lot of notifications on my computer that HP_TOOLS (E:) Is almost completely full and my local disk C: and Recovery D: are also very full. Do I just really have a lot of stuff or is something wrong?



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:39 AM

Posted 28 January 2014 - 08:31 PM

1 Drive c: () (Fixed) (Total:447.78 GB) (Free:141.94 GB) NTFS

2 Drive d: (Recovery) (Fixed) (Total:13.82 GB) (Free:1.54 GB) NTFS

3 Drive e: (HP_TOOLS) (Fixed) (Total:3.96 GB) (Free:0.01 GB) FAT32


They are vey full..
Drive 2 is recovery so leave it alone.

Drive 3 is a bunch of tools. Its a small drive and unless there are tools you do not want leave it.

Drive 1 the C drive is almost full .
This wil start causing slowness issues.

There are a lot of SIMS on it. Can you put some of them on other media?

Do you have a lot of pictures and music that can be moved also?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 RacSta

RacSta
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 29 January 2014 - 09:43 PM

What other media could I move Sims too? Sorry if that's a dumb question. I don't have many pictures or music, but I could move them to discs to help with other room. 



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:12:39 AM

Posted 29 January 2014 - 09:57 PM

You can put them on a Flash drive, CD's or anther hard drive. but ask in Gaming how. So you don't lose saved items.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 RacSta

RacSta
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 30 January 2014 - 02:36 PM

Excellent thank you!



#15 RacSta

RacSta
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:08:39 PM

Posted 30 January 2014 - 06:31 PM

Do I need to uninstall any of the cleaners you had me use? Last time I used bleepingcomputer I was told I had to remove some of them since they could harm my computer in the future if used






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users