Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Slow computer, cpu usage & disk high, 10-20 sec. lag for keystroke


  • This topic is locked This topic is locked
41 replies to this topic

#1 pinkmonkey

pinkmonkey

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Cleveland, OH
  • Local time:07:04 PM

Posted 07 March 2014 - 11:03 PM

Hello & hope you might be able to help.    

 

I have been trying to figure out what is causing the notebook to several slow down with very slow response to keyboard/mouse or any tasks.  I have a Lenovo Y550 notebook and have been trying to determine if this is a virus or software conflict for several months.  

 

After using multiple tabs in Firefox or Chrome (ebay, photo's, lots of searches & facebook games), the system will start to slow down, cpu usage then goes to 80-85%, disk activity is completely solid in the Resource Monitor & the fan will run - usually until I shutdown the computer.  

I have read many of your tutorials & removed software, changed anti-virus packages, ran checkdisk, and updated video drivers.  

Running CCleaner about 4-5 times a day.

Malwarebytes, Avast & Defender have not found any problems at all - this is somewhat of a concern also.

Receiving no errors at all.

Even upgraded internet to Uverse 18Mbps - which has not helped.

 

I am not very technical - enough to be dangerous.  I have spent sooo much time trying to figure this out and realized I need help.   Thanks so much in advance !! :-)

 

FYI...This is what the resource monitor typically looks like:

 

resource+monitor.png

 

-----------------------------------------------------------------------------------------------------------------------------------------

DDS (Ver_2012-11-20.01) - NTFS_AMD64 
Internet Explorer: 11.0.9600.16518  BrowserJavaVersion: 10.51.2
Run by kelly at 22:31:40 on 2014-03-07
Microsoft Windows 7 Home Premium   6.1.7601.1.1252.1.1033.18.4091.2842 [GMT -5:00]
.
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\nvvsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\windows\system32\nvvsvc.exe
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\Microsoft SQL Server\MSSQL10_50.ACT7\MSSQL\Binn\sqlservr.exe
C:\Program Files (x86)\IBM\Lotus\Notes\ntmulti.exe
C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\windows\system32\SearchIndexer.exe
C:\windows\system32\taskhost.exe
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
C:\Program Files (x86)\Lenovo\OnekeyDM\OnekeyDM.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\System32\svchost.exe -k secsvcs
C:\windows\system32\vssvc.exe
C:\windows\System32\svchost.exe -k swprv
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.bing.com/
uDefault_Search_URL = hxxp://www.google.com/ie
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: Java™ Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
BHO: Act.UI.InternetExplorer.Plugins.AttachFile.CAttachFile: {D5233FCD-D258-4903-89B8-FB1568E7413D} - 
BHO: Java™ Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
mRun: [OnekeyDM] C:\Program Files (x86)\Lenovo\OnekeyDM\OnekeyDM.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: Add to Google Photos Screensa&ver - C:\windows\System32\GPhotos.scr/200
IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {6F431AC3-364A-478b-BBDB-89C7CE1B18F6} - {6F431AC3-364A-478b-BBDB-89C7CE1B18F6} - 
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
DPF: {38AB0814-B09B-4378-9940-14A19638C3C2} - hxxp://www.auctiva.com/Aurigma/ImageUploader57.cab
DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - hxxp://toad3.inkfrog.com/scripts/ImageUploader5.cab
DPF: {AA2FCC44-64E5-437A-AEDE-8854387EB9F4} - hxxps://lod.ttsc.net/ActiveX/vmmctlax_i386.cab
DPF: {C1FDEE68-98D5-4F42-A4DD-D0BECF5077EB} - hxxp://tools.ebayimg.com/eps/wl/activex/eBay_Enhanced_Picture_Control_v1-0-31-0.cab
DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.2.2.0.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: NameServer = 192.168.1.254
TCP: Interfaces\{B4B10043-35E2-4BAF-8BA0-E6FAD5A04024} : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{B4B10043-35E2-4BAF-8BA0-E6FAD5A04024}\2375942554132333 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{B4B10043-35E2-4BAF-8BA0-E6FAD5A04024}\2494A5140523 : DHCPNameServer = 192.168.1.10
TCP: Interfaces\{B4B10043-35E2-4BAF-8BA0-E6FAD5A04024}\2556E61696373716E63656F534F4E464 : DHCPNameServer = 10.0.7.128
TCP: Interfaces\{B4B10043-35E2-4BAF-8BA0-E6FAD5A04024}\2656C6B696E6E2736333 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{B4B10043-35E2-4BAF-8BA0-E6FAD5A04024}\86F6D656932353 : DHCPNameServer = 192.168.1.254
TCP: Interfaces\{B4B10043-35E2-4BAF-8BA0-E6FAD5A04024}\D457270786F544F676 : DHCPNameServer = 192.168.2.1
TCP: Interfaces\{E4B67577-D643-4292-B497-4EED5FF8D5BC} : DHCPNameServer = 192.168.1.254
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
AppInit_DLLs= {DLL_Str}
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\33.0.1750.146\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-BHO: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - <orphaned>
x64-BHO: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - <orphaned>
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-BHO: {DBC80044-A445-435b-BC74-9C25C1C588A9} - <orphaned>
x64-Run: [IAAnotif] C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\iaanotif.exe
x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
x64-Run: [Energy Management] C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
x64-Run: [IntelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe"
x64-Run: [Logitech Download Assistant] C:\windows\System32\rundll32.exe C:\windows\System32\LogiLDA.dll,LogiFetch
x64-Run: [EnergyUtility] C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-SSODL: WebCheck - <orphaned>
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\kelly\AppData\Roaming\Mozilla\Firefox\Profiles\3lfgf0m5.default-1393699849975\
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll
FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
FF - plugin: C:\windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_70.dll
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;avast! Revert;C:\windows\System32\drivers\aswRvrt.sys [2013-11-4 65776]
R0 aswVmm;avast! VM Monitor;C:\windows\System32\drivers\aswVmm.sys [2013-11-4 207904]
R1 funfrm;funfrm;C:\windows\System32\drivers\funfrm.sys [2009-12-2 58896]
R2 MSSQL$ACT7;SQL Server (ACT7);C:\Program Files\Microsoft SQL Server\MSSQL10_50.ACT7\MSSQL\Binn\sqlservr.exe [2011-6-17 62111072]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-8-29 414496]
R3 ACPIVPC;Lenovo Virtual Power Controller Driver;C:\windows\System32\drivers\AcpiVpc.sys [2009-12-2 26128]
R3 enecir;ENE CIR Receiver;C:\windows\System32\drivers\enecir.sys [2009-9-22 70656]
R3 enecirhid;ENE CIR HID Receiver;C:\windows\System32\drivers\enecirhid.sys [2009-9-22 14848]
R3 enecirhidma;ENE CIR HIDmini Filter;C:\windows\System32\drivers\enecirhidma.sys [2009-9-22 6656]
R3 k57nd60a;Broadcom NetLink ™ Gigabit Ethernet - NDIS 6.0;C:\windows\System32\drivers\k57nd60a.sys [2009-6-6 317480]
R3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;C:\windows\System32\drivers\NETw5s64.sys [2009-9-15 6952960]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S3 ACT! Scheduler;ACT! Scheduler;C:\Program Files (x86)\ACT\Act for Windows\Act.Scheduler.exe [2010-8-18 81920]
S3 aswStm;aswStm;C:\windows\System32\drivers\aswstm.sys [2013-12-29 80184]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\windows\System32\ieetwcollector.exe [2014-2-12 111616]
S3 libusb0;LibUsb-Win32 - Kernel Driver 03/15/2010,1.12.0.1;C:\windows\System32\drivers\libusb0.sys [2010-3-15 22016]
S3 LNSUSvc;Lotus Notes Smart Upgrade Service;C:\Program Files (x86)\IBM\Lotus\Notes\SUService.exe [2011-9-16 189832]
S3 Lotus Notes Diagnostics;Lotus Notes Diagnostics;C:\Program Files (x86)\IBM\Lotus\Notes\nsd.exe [2011-9-16 4453768]
S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\windows\System32\drivers\NETw5v64.sys [2009-12-2 5435904]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\windows\System32\drivers\rdpvideominiport.sys [2014-1-29 19456]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\windows\System32\drivers\RtsUStor.sys [2009-9-22 222208]
S3 TsUsbFlt;TsUsbFlt;C:\windows\System32\drivers\TsUsbFlt.sys [2014-2-25 56832]
S3 USBAAPL64;Apple Mobile USB Driver;C:\windows\System32\drivers\usbaapl64.sys [2012-12-13 54784]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\windows\System32\Wat\WatAdminSvc.exe [2010-2-25 1255736]
S3 wsvd;wsvd;C:\windows\System32\drivers\wsvd.sys [2009-7-21 121840]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;C:\Program Files\Microsoft SQL Server\100\Shared\sqladhlp.exe [2010-5-5 59744]
S4 RsFx0151;RsFx0151 Driver;C:\windows\System32\drivers\RsFx0151.sys [2011-6-17 313696]
S4 SQLAgent$ACT7;SQL Server Agent (ACT7);C:\Program Files\Microsoft SQL Server\MSSQL10_50.ACT7\MSSQL\Binn\SQLAGENT.EXE [2011-6-17 431456]
.
=============== Created Last 30 ================
.
2014-03-07 14:48:50 10536864 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F462A190-045C-48FA-93B0-20588CAD223B}\mpengine.dll
2014-03-01 18:16:00 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
2014-03-01 18:15:15 920864 ----a-w- C:\windows\System32\nvvsvc.exe
2014-03-01 18:15:15 6599968 ----a-w- C:\windows\System32\nvcpl.dll
2014-03-01 18:15:15 63776 ----a-w- C:\windows\System32\nvshext.dll
2014-03-01 18:15:15 3452192 ----a-w- C:\windows\System32\nvsvc64.dll
2014-03-01 18:15:15 2559776 ----a-w- C:\windows\System32\nvsvcr.dll
2014-03-01 18:15:15 219424 ----a-w- C:\windows\System32\nvmctray.dll
2014-03-01 18:15:14 580384 ----a-w- C:\windows\SysWow64\oemdspif.dll
2014-03-01 18:14:33 61216 ----a-w- C:\windows\System32\OpenCL.dll
2014-03-01 18:14:33 53024 ----a-w- C:\windows\SysWow64\OpenCL.dll
2014-02-27 13:08:14 6574592 ----a-w- C:\windows\System32\mstscax.dll
2014-02-27 13:08:14 5694464 ----a-w- C:\windows\SysWow64\mstscax.dll
2014-02-26 00:04:56 1030144 ----a-w- C:\windows\System32\TSWorkspace.dll
2014-02-26 00:04:55 792576 ----a-w- C:\windows\SysWow64\TSWorkspace.dll
2014-02-16 23:01:26 -------- d-----w- C:\Users\kelly\AppData\Local\Dan_Wilson
2014-02-16 20:09:58 -------- d-----w- C:\ProgramData\UV Realtime
2014-02-16 20:09:58 -------- d-----w- C:\Program Files (x86)\UV Realtime
2014-02-16 20:09:34 -------- d-----w- C:\Program Files (x86)\RRDtool
2014-02-12 19:30:51 658432 ----a-w- C:\windows\System32\RMActivate_isv.exe
.
==================== Find3M  ====================
.
2014-02-24 06:21:40 71048 ----a-w- C:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-02-24 06:21:40 692616 ----a-w- C:\windows\SysWow64\FlashPlayerApp.exe
2014-02-06 11:30:46 2724864 ----a-w- C:\windows\System32\mshtml.tlb
2014-02-06 11:30:12 4096 ----a-w- C:\windows\System32\ieetwcollectorres.dll
2014-02-06 11:07:39 66048 ----a-w- C:\windows\System32\iesetup.dll
2014-02-06 11:06:47 48640 ----a-w- C:\windows\System32\ieetwproxystub.dll
2014-02-06 10:49:03 139264 ----a-w- C:\windows\System32\ieUnatt.exe
2014-02-06 10:48:45 111616 ----a-w- C:\windows\System32\ieetwcollector.exe
2014-02-06 10:48:11 708608 ----a-w- C:\windows\System32\jscript9diag.dll
2014-02-06 10:20:26 2724864 ----a-w- C:\windows\SysWow64\mshtml.tlb
2014-02-06 10:11:37 5768704 ----a-w- C:\windows\System32\jscript9.dll
2014-02-06 10:01:36 61952 ----a-w- C:\windows\SysWow64\iesetup.dll
2014-02-06 10:00:46 51200 ----a-w- C:\windows\SysWow64\ieetwproxystub.dll
2014-02-06 09:50:32 2041856 ----a-w- C:\windows\System32\inetcpl.cpl
2014-02-06 09:47:22 112128 ----a-w- C:\windows\SysWow64\ieUnatt.exe
2014-02-06 09:46:27 553472 ----a-w- C:\windows\SysWow64\jscript9diag.dll
2014-02-06 09:25:36 4244480 ----a-w- C:\windows\SysWow64\jscript9.dll
2014-02-06 09:24:52 2334208 ----a-w- C:\windows\System32\wininet.dll
2014-02-06 09:09:30 1964032 ----a-w- C:\windows\SysWow64\inetcpl.cpl
2014-02-06 08:41:35 1820160 ----a-w- C:\windows\SysWow64\wininet.dll
2014-02-02 14:50:11 80184 ----a-w- C:\windows\System32\drivers\aswstm.sys
2014-02-02 14:50:09 43152 ----a-w- C:\windows\avastSS.scr
2014-01-13 19:00:09 0 ----a-w- C:\windows\SysWow64\taskhost.exe
2014-01-13 19:00:09 0 ----a-w- C:\windows\SysWow64\dwm.exe
2014-01-13 19:00:08 0 ----a-w- C:\windows\SysWow64\winlogon.exe
2014-01-13 19:00:08 0 ----a-w- C:\windows\SysWow64\UI0Detect.exe
2014-01-13 19:00:08 0 ----a-w- C:\windows\SysWow64\spoolsv.exe
2014-01-13 19:00:08 0 ----a-w- C:\windows\SysWow64\services.exe
2014-01-13 19:00:08 0 ----a-w- C:\windows\SysWow64\nvvsvc.exe
2014-01-13 19:00:08 0 ----a-w- C:\windows\SysWow64\lsm.exe
2014-01-13 19:00:08 0 ----a-w- C:\windows\SysWow64\lsass.exe
2014-01-13 18:59:48 0 ----a-w- C:\windows\SysWow64\smss.exe
2014-01-13 18:59:48 0 ----a-w- C:\windows\SysWow64\csrss.exe
2014-01-06 19:23:36 4558848 ----a-w- C:\windows\SysWow64\GPhotos.scr
2013-12-30 04:41:49 207904 ----a-w- C:\windows\System32\drivers\aswVmm.sys
2013-12-24 23:09:41 1987584 ----a-w- C:\windows\SysWow64\d3d10warp.dll
2013-12-24 22:48:32 2565120 ----a-w- C:\windows\System32\d3d10warp.dll
2013-12-21 09:53:45 548864 ----a-w- C:\windows\System32\vbscript.dll
2013-12-21 08:56:47 454656 ----a-w- C:\windows\SysWow64\vbscript.dll
2013-12-19 02:09:39 96168 ----a-w- C:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-12-18 11:13:56 270496 ------w- C:\windows\System32\MpSigStub.exe
.
============= FINISH: 22:31:51.58 ===============

Attached Files


Edited by pinkmonkey, 08 March 2014 - 10:48 PM.


BC AdBot (Login to Remove)

 


#2 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 AM

Posted 09 March 2014 - 07:54 AM

**In any case where you happen to be busy or unable to give us a reply, we would be grateful if you keep us informed in advance and we will be more than happy to wait. Failure to do so we will have your thread closed in THREE(3) days.

:)


Hello there, pinkmonkey

:welcome:

I'm Conspire, I'll be glad to help you with your computer problems.

Please observe these rules while we work:
  • Read the entire procedure
  • It is important to perform ALL actions in sequence.
  • If you don't know, stop and ask! Don't keep going on.
  • Please reply to this thread. Do not start a new topic.
  • Stick with me till you're given the all clear.
  • Remember, absence of symptoms does not mean the infection is all gone.
  • Don't attempt to clean your computer with any tools other than the ones I ask you to use during the cleanup process.
IMPORTANT NOTE : Please do not delete anything unless instructed to. Remember to backup all your important data(if possible) before moving on.

---------------------------------------------------------------------------------------------------

Please download aswMBR.exe and save it to your desktop.
  • Double click aswMBR.exe to start the tool. (Vista/Windows 7 users - right click to run as administrator)
  • Allow it to update where necessary
  • Click Scan
    • Upon completion of the scan, click Save log and save it to your desktop, and post that log in your next reply for review. Note - do NOT attempt any Fix yet.
    • You will also notice another file created on the desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) file. Attach that zipped file in your next reply as well.
===================================================

Download TDSSKiller.exe and save it to your desktop

Execute TDSSKiller.exe by doubleclicking on it.
Press Start Scan
If Malicious objects are found, do NOT select Cure. Change the action to Skip, and save the log.
Once complete, a log will be produced at the root drive which is typically C:\ ,for example, C:\TDSSKiller.<version_date_time>log.txt

===================================================

On your next reply please post :
aswMBR log
MBR.dat (attached)
TDSS Killer log



Please STOP and let me know if you have any problems in performing with the steps above or any questions you may have.

---------------------------------------------------------------------------------------------------
Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif

#3 pinkmonkey

pinkmonkey
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Cleveland, OH
  • Local time:07:04 PM

Posted 09 March 2014 - 01:36 PM

Hi Conspire!  

 

Thanks so so so so very much for your help!  I have performed the requests....

  1. aswMBR log is posted below (ran as administrator & program updated first as stated)
  2. MBR.dat is zipped and attached
  3. TDSSKiller downloaded & when launched there is a message that popped up - attached screen shot for you.  I did select load update & it downloaded TDSSKiller.zip folder which is saved on the desktop.  I DID NOT OPEN OR RUN this newer version.  

tdsskiller+message.png

 

 

I am not making any changes or running any programs until you tell me to do so.  :-)

Thanks again so very much,

Kelly

 
Attached File  MBR.zip   589bytes   0 downloads
------------------------------------------------------------------------------------------------------------------
 
aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2014-03-09 13:18:00
-----------------------------
13:18:00.560    OS Version: Windows x64 6.1.7601 Service Pack 1
13:18:00.560    Number of processors: 2 586 0x170A
13:18:00.560    ComputerName: IDEAPAD  UserName: kelly
13:18:01.496    Initialize success
13:23:54.776    AVAST engine defs: 14030900
13:24:58.179    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
13:24:58.194    Disk 0 Vendor: HITACHI_ PB3Z Size: 305245MB BusType: 3
13:24:58.319    Disk 0 MBR read successfully
13:24:58.319    Disk 0 MBR scan
13:24:58.335    Disk 0 Windows 7 default MBR code
13:24:58.350    Disk 0 Partition 1 80 (A) 07    HPFS/NTFS NTFS          200 MB offset 2048
13:24:58.366    Disk 0 Partition 2 00     07    HPFS/NTFS NTFS       258962 MB offset 411648
13:24:58.366    Disk 0 Partition - 00     0F Extended LBA             30973 MB offset 530765824
13:24:58.413    Disk 0 Partition 3 00     12  Compaq diag NTFS        15108 MB offset 594198528
13:24:58.444    Disk 0 Partition 4 00     07    HPFS/NTFS NTFS        30972 MB offset 530767872
13:24:58.615    Disk 0 scanning C:\windows\system32\drivers
13:25:10.378    Service scanning
13:25:48.442    Modules scanning
13:25:48.957    Disk 0 trace - called modules:
13:25:48.988    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll 
13:25:48.988    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c3b060]
13:25:49.003    3 CLASSPNP.SYS[fffff880013c043f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004817050]
13:25:49.861    AVAST engine scan C:\windows
13:25:51.874    AVAST engine scan C:\windows\system32
13:29:52.234    AVAST engine scan C:\windows\system32\drivers
13:30:06.150    AVAST engine scan C:\Users\kelly
13:45:00.158    AVAST engine scan C:\ProgramData
13:47:23.148    Scan finished successfully
13:49:07.450    Disk 0 MBR has been saved successfully to "C:\Users\kelly\Desktop\MBR.dat"
13:49:07.450    The log file has been saved successfully to "C:\Users\kelly\Desktop\aswMBR.txt"
 
 
 
------------------------------------------------------------------------------------------------------------------
 
13:51:24.0058 4016  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
13:51:26.0070 4016  ============================================================
13:51:26.0070 4016  Current date / time: 2014/03/09 13:51:26.0070
13:51:26.0070 4016  SystemInfo:
13:51:26.0070 4016  
13:51:26.0070 4016  OS Version: 6.1.7601 ServicePack: 1.0
13:51:26.0070 4016  Product type: Workstation
13:51:26.0070 4016  ComputerName: IDEAPAD
13:51:26.0070 4016  UserName: kelly
13:51:26.0070 4016  Windows directory: C:\windows
13:51:26.0070 4016  System windows directory: C:\windows
13:51:26.0070 4016  Running under WOW64
13:51:26.0070 4016  Processor architecture: Intel x64
13:51:26.0070 4016  Number of processors: 2
13:51:26.0070 4016  Page size: 0x1000
13:51:26.0070 4016  Boot type: Normal boot
13:51:26.0070 4016  ============================================================
13:51:26.0601 4016  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
13:51:26.0632 4016  ============================================================
13:51:26.0632 4016  \Device\Harddisk0\DR0:
13:51:26.0632 4016  MBR partitions:
13:51:26.0632 4016  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
13:51:26.0632 4016  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x1F9C9000
13:51:26.0663 4016  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1FA2E000, BlocksNum 0x3C7E000
13:51:26.0663 4016  ============================================================
13:51:26.0710 4016  C: <-> \Device\Harddisk0\DR0\Partition2
13:51:26.0757 4016  D: <-> \Device\Harddisk0\DR0\Partition3
13:51:26.0757 4016  ============================================================
13:51:26.0757 4016  Initialize success
13:51:26.0757 4016  ============================================================
13:56:00.0271 2740  ============================================================
13:56:00.0271 2740  Scan started
13:56:00.0271 2740  Mode: Manual; 
13:56:00.0271 2740  ============================================================
13:56:00.0755 2740  ================ Scan system memory ========================
13:56:00.0755 2740  System memory - ok
13:56:00.0755 2740  ================ Scan services =============================
13:56:00.0927 2740  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
13:56:00.0927 2740  1394ohci - ok
13:56:00.0973 2740  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\windows\system32\drivers\ACPI.sys
13:56:00.0973 2740  ACPI - ok
13:56:01.0005 2740  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
13:56:01.0005 2740  AcpiPmi - ok
13:56:01.0067 2740  [ 2E68544BCE94DE6677F700CF1D582B6D ] ACPIVPC         C:\windows\system32\DRIVERS\AcpiVpc.sys
13:56:01.0067 2740  ACPIVPC - ok
13:56:01.0161 2740  [ 630D2C9D36DAD22829C95C55D36BA5CC ] ACT! Scheduler  C:\Program Files (x86)\ACT\Act for Windows\Act.Scheduler.exe
13:56:01.0176 2740  ACT! Scheduler - ok
13:56:01.0317 2740  [ B362181ED3771DC03B4141927C80F801 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
13:56:01.0317 2740  AdobeARMservice - ok
13:56:01.0363 2740  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\windows\system32\DRIVERS\adp94xx.sys
13:56:01.0363 2740  adp94xx - ok
13:56:01.0441 2740  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\windows\system32\DRIVERS\adpahci.sys
13:56:01.0441 2740  adpahci - ok
13:56:01.0473 2740  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\windows\system32\DRIVERS\adpu320.sys
13:56:01.0488 2740  adpu320 - ok
13:56:01.0519 2740  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
13:56:01.0519 2740  AeLookupSvc - ok
13:56:01.0582 2740  [ 79059559E89D06E8B80CE2944BE20228 ] AFD             C:\windows\system32\drivers\afd.sys
13:56:01.0597 2740  AFD - ok
13:56:01.0644 2740  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\windows\system32\drivers\agp440.sys
13:56:01.0644 2740  agp440 - ok
13:56:01.0691 2740  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\windows\System32\alg.exe
13:56:01.0691 2740  ALG - ok
13:56:01.0753 2740  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\windows\system32\drivers\aliide.sys
13:56:01.0753 2740  aliide - ok
13:56:01.0785 2740  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\windows\system32\drivers\amdide.sys
13:56:01.0785 2740  amdide - ok
13:56:01.0800 2740  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\windows\system32\DRIVERS\amdk8.sys
13:56:01.0816 2740  AmdK8 - ok
13:56:01.0847 2740  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\windows\system32\DRIVERS\amdppm.sys
13:56:01.0847 2740  AmdPPM - ok
13:56:01.0894 2740  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\windows\system32\drivers\amdsata.sys
13:56:01.0894 2740  amdsata - ok
13:56:01.0956 2740  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\windows\system32\DRIVERS\amdsbs.sys
13:56:01.0956 2740  amdsbs - ok
13:56:01.0987 2740  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\windows\system32\drivers\amdxata.sys
13:56:01.0987 2740  amdxata - ok
13:56:02.0034 2740  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\windows\system32\drivers\appid.sys
13:56:02.0034 2740  AppID - ok
13:56:02.0081 2740  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\windows\System32\appidsvc.dll
13:56:02.0081 2740  AppIDSvc - ok
13:56:02.0128 2740  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\windows\System32\appinfo.dll
13:56:02.0128 2740  Appinfo - ok
13:56:02.0237 2740  [ F518545E5B7623AD49ABE7F8776EFA46 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
13:56:02.0237 2740  Apple Mobile Device - ok
13:56:02.0284 2740  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\windows\system32\DRIVERS\arc.sys
13:56:02.0284 2740  arc - ok
13:56:02.0299 2740  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\windows\system32\DRIVERS\arcsas.sys
13:56:02.0299 2740  arcsas - ok
13:56:02.0409 2740  [ 9A262EDD17F8473B91B333D6B031A901 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
13:56:02.0440 2740  aspnet_state - ok
13:56:02.0518 2740  [ C04F7B373881009D7994D9BF55D24AB4 ] aswRvrt         C:\windows\system32\drivers\aswRvrt.sys
13:56:02.0518 2740  aswRvrt - ok
13:56:02.0596 2740  [ FD3EA14ADF6216BDF4030DB2EFD43D96 ] aswStm          C:\windows\system32\drivers\aswStm.sys
13:56:02.0596 2740  aswStm - ok
13:56:02.0627 2740  [ 90399625F341AB76BA4B85A5E860EB1F ] aswVmm          C:\windows\system32\drivers\aswVmm.sys
13:56:02.0627 2740  aswVmm - ok
13:56:02.0658 2740  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
13:56:02.0658 2740  AsyncMac - ok
13:56:02.0721 2740  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\windows\system32\drivers\atapi.sys
13:56:02.0721 2740  atapi - ok
13:56:02.0783 2740  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
13:56:02.0783 2740  AudioEndpointBuilder - ok
13:56:02.0799 2740  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\windows\System32\Audiosrv.dll
13:56:02.0814 2740  AudioSrv - ok
13:56:02.0861 2740  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\windows\System32\AxInstSV.dll
13:56:02.0861 2740  AxInstSV - ok
13:56:02.0923 2740  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\windows\system32\DRIVERS\bxvbda.sys
13:56:02.0923 2740  b06bdrv - ok
13:56:02.0955 2740  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
13:56:02.0970 2740  b57nd60a - ok
13:56:03.0017 2740  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\windows\System32\bdesvc.dll
13:56:03.0017 2740  BDESVC - ok
13:56:03.0048 2740  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\windows\system32\drivers\Beep.sys
13:56:03.0064 2740  Beep - ok
13:56:03.0142 2740  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\windows\System32\bfe.dll
13:56:03.0142 2740  BFE - ok
13:56:03.0220 2740  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\windows\System32\qmgr.dll
13:56:03.0220 2740  BITS - ok
13:56:03.0251 2740  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
13:56:03.0251 2740  blbdrive - ok
13:56:03.0376 2740  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
13:56:03.0376 2740  Bonjour Service - ok
13:56:03.0423 2740  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
13:56:03.0423 2740  bowser - ok
13:56:03.0469 2740  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\windows\system32\DRIVERS\BrFiltLo.sys
13:56:03.0469 2740  BrFiltLo - ok
13:56:03.0501 2740  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\windows\system32\DRIVERS\BrFiltUp.sys
13:56:03.0501 2740  BrFiltUp - ok
13:56:03.0532 2740  [ 5C2F352A4E961D72518261257AAE204B ] BridgeMP        C:\windows\system32\DRIVERS\bridge.sys
13:56:03.0532 2740  BridgeMP - ok
13:56:03.0579 2740  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\windows\System32\browser.dll
13:56:03.0579 2740  Browser - ok
13:56:03.0625 2740  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\windows\System32\Drivers\Brserid.sys
13:56:03.0625 2740  Brserid - ok
13:56:03.0657 2740  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
13:56:03.0657 2740  BrSerWdm - ok
13:56:03.0688 2740  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
13:56:03.0688 2740  BrUsbMdm - ok
13:56:03.0703 2740  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
13:56:03.0703 2740  BrUsbSer - ok
13:56:03.0766 2740  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\windows\system32\drivers\BthEnum.sys
13:56:03.0766 2740  BthEnum - ok
13:56:03.0781 2740  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\windows\system32\DRIVERS\bthmodem.sys
13:56:03.0781 2740  BTHMODEM - ok
13:56:03.0813 2740  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\windows\system32\DRIVERS\bthpan.sys
13:56:03.0813 2740  BthPan - ok
13:56:03.0844 2740  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\windows\System32\Drivers\BTHport.sys
13:56:03.0859 2740  BTHPORT - ok
13:56:03.0875 2740  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\windows\system32\bthserv.dll
13:56:03.0891 2740  bthserv - ok
13:56:03.0937 2740  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\windows\System32\Drivers\BTHUSB.sys
13:56:03.0937 2740  BTHUSB - ok
13:56:03.0953 2740  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
13:56:03.0953 2740  cdfs - ok
13:56:04.0015 2740  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\windows\system32\drivers\cdrom.sys
13:56:04.0015 2740  cdrom - ok
13:56:04.0062 2740  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\windows\System32\certprop.dll
13:56:04.0062 2740  CertPropSvc - ok
13:56:04.0109 2740  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\windows\system32\DRIVERS\circlass.sys
13:56:04.0109 2740  circlass - ok
13:56:04.0140 2740  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\windows\system32\CLFS.sys
13:56:04.0140 2740  CLFS - ok
13:56:04.0203 2740  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
13:56:04.0218 2740  clr_optimization_v2.0.50727_32 - ok
13:56:04.0249 2740  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
13:56:04.0249 2740  clr_optimization_v2.0.50727_64 - ok
13:56:04.0343 2740  [ E87213F37A13E2B54391E40934F071D0 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
13:56:04.0390 2740  clr_optimization_v4.0.30319_32 - ok
13:56:04.0421 2740  [ 4AEDAB50F83580D0B4D6CF78191F92AA ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
13:56:04.0421 2740  clr_optimization_v4.0.30319_64 - ok
13:56:04.0452 2740  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
13:56:04.0452 2740  CmBatt - ok
13:56:04.0499 2740  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\windows\system32\drivers\cmdide.sys
13:56:04.0499 2740  cmdide - ok
13:56:04.0530 2740  [ EBF28856F69CF094A902F884CF989706 ] CNG             C:\windows\system32\Drivers\cng.sys
13:56:04.0546 2740  CNG - ok
13:56:04.0561 2740  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\windows\system32\DRIVERS\compbatt.sys
13:56:04.0561 2740  Compbatt - ok
13:56:04.0608 2740  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\windows\system32\drivers\CompositeBus.sys
13:56:04.0608 2740  CompositeBus - ok
13:56:04.0624 2740  COMSysApp - ok
13:56:04.0671 2740  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\windows\system32\DRIVERS\crcdisk.sys
13:56:04.0671 2740  crcdisk - ok
13:56:04.0717 2740  [ 6B400F211BEE880A37A1ED0368776BF4 ] CryptSvc        C:\windows\system32\cryptsvc.dll
13:56:04.0717 2740  CryptSvc - ok
13:56:04.0764 2740  [ C6E1C081C0849E08FECEC18DF73B10C4 ] dc3d            C:\windows\system32\DRIVERS\dc3d.sys
13:56:04.0764 2740  dc3d - ok
13:56:04.0827 2740  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\windows\system32\rpcss.dll
13:56:04.0842 2740  DcomLaunch - ok
13:56:04.0858 2740  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\windows\System32\defragsvc.dll
13:56:04.0873 2740  defragsvc - ok
13:56:04.0905 2740  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\windows\system32\Drivers\dfsc.sys
13:56:04.0905 2740  DfsC - ok
13:56:04.0936 2740  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\windows\system32\dhcpcore.dll
13:56:04.0936 2740  Dhcp - ok
13:56:04.0983 2740  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\windows\system32\drivers\discache.sys
13:56:04.0983 2740  discache - ok
13:56:05.0029 2740  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\windows\system32\DRIVERS\disk.sys
13:56:05.0029 2740  Disk - ok
13:56:05.0076 2740  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\windows\System32\dnsrslvr.dll
13:56:05.0076 2740  Dnscache - ok
13:56:05.0139 2740  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\windows\System32\dot3svc.dll
13:56:05.0139 2740  dot3svc - ok
13:56:05.0201 2740  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\windows\system32\dps.dll
13:56:05.0201 2740  DPS - ok
13:56:05.0263 2740  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
13:56:05.0263 2740  drmkaud - ok
13:56:05.0326 2740  [ 88612F1CE3BF42256913BF6E61C70D52 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
13:56:05.0341 2740  DXGKrnl - ok
13:56:05.0373 2740  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\windows\System32\eapsvc.dll
13:56:05.0373 2740  EapHost - ok
13:56:05.0482 2740  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\windows\system32\DRIVERS\evbda.sys
13:56:05.0560 2740  ebdrv - ok
13:56:05.0591 2740  [ 4D71227301DD8D09097B9E4CC6527E5A ] EFS             C:\windows\System32\lsass.exe
13:56:05.0591 2740  EFS - ok
13:56:05.0653 2740  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
13:56:05.0669 2740  ehRecvr - ok
13:56:05.0685 2740  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\windows\ehome\ehsched.exe
13:56:05.0685 2740  ehSched - ok
13:56:05.0731 2740  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\windows\system32\DRIVERS\elxstor.sys
13:56:05.0747 2740  elxstor - ok
13:56:05.0778 2740  [ 524C79054636D2E5751169005006460B ] enecir          C:\windows\system32\DRIVERS\enecir.sys
13:56:05.0778 2740  enecir - ok
13:56:05.0825 2740  [ E17EB95358F396E27D573A1B20F891F8 ] enecirhid       C:\windows\system32\DRIVERS\enecirhid.sys
13:56:05.0825 2740  enecirhid - ok
13:56:05.0872 2740  [ 8492D808C79BD6FE439F77BE84956CDF ] enecirhidma     C:\windows\system32\DRIVERS\enecirhidma.sys
13:56:05.0872 2740  enecirhidma - ok
13:56:05.0903 2740  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\windows\system32\drivers\errdev.sys
13:56:05.0903 2740  ErrDev - ok
13:56:05.0950 2740  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\windows\system32\es.dll
13:56:05.0965 2740  EventSystem - ok
13:56:06.0012 2740  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\windows\system32\drivers\exfat.sys
13:56:06.0028 2740  exfat - ok
13:56:06.0059 2740  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\windows\system32\drivers\fastfat.sys
13:56:06.0059 2740  fastfat - ok
13:56:06.0121 2740  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\windows\system32\fxssvc.exe
13:56:06.0137 2740  Fax - ok
13:56:06.0153 2740  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\windows\system32\DRIVERS\fdc.sys
13:56:06.0153 2740  fdc - ok
13:56:06.0199 2740  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\windows\system32\fdPHost.dll
13:56:06.0199 2740  fdPHost - ok
13:56:06.0215 2740  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\windows\system32\fdrespub.dll
13:56:06.0215 2740  FDResPub - ok
13:56:06.0231 2740  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
13:56:06.0231 2740  FileInfo - ok
13:56:06.0246 2740  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
13:56:06.0246 2740  Filetrace - ok
13:56:06.0277 2740  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\windows\system32\DRIVERS\flpydisk.sys
13:56:06.0277 2740  flpydisk - ok
13:56:06.0340 2740  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
13:56:06.0340 2740  FltMgr - ok
13:56:06.0418 2740  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\windows\system32\FntCache.dll
13:56:06.0433 2740  FontCache - ok
13:56:06.0480 2740  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
13:56:06.0496 2740  FontCache3.0.0.0 - ok
13:56:06.0511 2740  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
13:56:06.0511 2740  FsDepends - ok
13:56:06.0543 2740  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
13:56:06.0543 2740  Fs_Rec - ok
13:56:06.0621 2740  [ 6CCF66BCA3D24146CB8B0930DBA1448F ] funfrm          C:\windows\system32\drivers\funfrm.sys
13:56:06.0621 2740  funfrm - ok
13:56:06.0683 2740  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
13:56:06.0683 2740  fvevol - ok
13:56:06.0714 2740  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\windows\system32\DRIVERS\gagp30kx.sys
13:56:06.0714 2740  gagp30kx - ok
13:56:06.0777 2740  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
13:56:06.0777 2740  GEARAspiWDM - ok
13:56:06.0823 2740  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\windows\System32\gpsvc.dll
13:56:06.0839 2740  gpsvc - ok
13:56:06.0964 2740  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:56:06.0964 2740  gupdate - ok
13:56:06.0995 2740  [ 8F0DE4FEF8201E306F9938B0905AC96A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
13:56:06.0995 2740  gupdatem - ok
13:56:07.0057 2740  [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
13:56:07.0057 2740  gusvc - ok
13:56:07.0089 2740  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
13:56:07.0089 2740  hcw85cir - ok
13:56:07.0151 2740  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
13:56:07.0151 2740  HdAudAddService - ok
13:56:07.0182 2740  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\windows\system32\drivers\HDAudBus.sys
13:56:07.0182 2740  HDAudBus - ok
13:56:07.0229 2740  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\windows\system32\DRIVERS\HidBatt.sys
13:56:07.0229 2740  HidBatt - ok
13:56:07.0245 2740  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\windows\system32\DRIVERS\hidbth.sys
13:56:07.0245 2740  HidBth - ok
13:56:07.0276 2740  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\windows\system32\DRIVERS\hidir.sys
13:56:07.0276 2740  HidIr - ok
13:56:07.0307 2740  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\windows\System32\hidserv.dll
13:56:07.0307 2740  hidserv - ok
13:56:07.0354 2740  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
13:56:07.0369 2740  HidUsb - ok
13:56:07.0401 2740  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\windows\system32\kmsvc.dll
13:56:07.0401 2740  hkmsvc - ok
13:56:07.0432 2740  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\windows\system32\ListSvc.dll
13:56:07.0447 2740  HomeGroupListener - ok
13:56:07.0494 2740  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\windows\system32\provsvc.dll
13:56:07.0494 2740  HomeGroupProvider - ok
13:56:07.0541 2740  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
13:56:07.0541 2740  HpSAMD - ok
13:56:07.0603 2740  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\windows\system32\drivers\HTTP.sys
13:56:07.0619 2740  HTTP - ok
13:56:07.0650 2740  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
13:56:07.0666 2740  hwpolicy - ok
13:56:07.0713 2740  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\windows\system32\drivers\i8042prt.sys
13:56:07.0713 2740  i8042prt - ok
13:56:07.0759 2740  [ 0E899D0DB39617AA0B2F992E7E95B5EB ] IAANTMON        C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
13:56:07.0775 2740  IAANTMON - ok
13:56:07.0806 2740  [ BBB3B6DF1ABB0FE35802EDE85CC1C011 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
13:56:07.0822 2740  iaStor - ok
13:56:07.0869 2740  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
13:56:07.0884 2740  iaStorV - ok
13:56:07.0993 2740  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
13:56:07.0993 2740  IDriverT - ok
13:56:08.0056 2740  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
13:56:08.0071 2740  idsvc - ok
13:56:08.0103 2740  IEEtwCollectorService - ok
13:56:08.0274 2740  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
13:56:08.0446 2740  igfx - ok
13:56:08.0508 2740  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\windows\system32\DRIVERS\iirsp.sys
13:56:08.0508 2740  iirsp - ok
13:56:08.0555 2740  [ 344789398EC3EE5A4E00C52B31847946 ] IKEEXT          C:\windows\System32\ikeext.dll
13:56:08.0571 2740  IKEEXT - ok
13:56:08.0664 2740  [ BC64B75E8E0A0B8982AB773483164E72 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
13:56:08.0695 2740  IntcAzAudAddService - ok
13:56:08.0727 2740  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\windows\system32\drivers\intelide.sys
13:56:08.0727 2740  intelide - ok
13:56:08.0758 2740  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
13:56:08.0758 2740  intelppm - ok
13:56:08.0789 2740  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\windows\system32\ipbusenum.dll
13:56:08.0789 2740  IPBusEnum - ok
13:56:08.0836 2740  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
13:56:08.0836 2740  IpFilterDriver - ok
13:56:08.0883 2740  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
13:56:08.0883 2740  iphlpsvc - ok
13:56:08.0929 2740  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
13:56:08.0929 2740  IPMIDRV - ok
13:56:08.0961 2740  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
13:56:08.0961 2740  IPNAT - ok
13:56:09.0039 2740  [ F7ED08D4BC89D7AC6135C1556A89157F ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
13:56:09.0054 2740  iPod Service - ok
13:56:09.0070 2740  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\windows\system32\drivers\irenum.sys
13:56:09.0070 2740  IRENUM - ok
13:56:09.0101 2740  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\windows\system32\drivers\isapnp.sys
13:56:09.0117 2740  isapnp - ok
13:56:09.0148 2740  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
13:56:09.0163 2740  iScsiPrt - ok
13:56:09.0195 2740  [ 08DD34F74D65E1C8F238565570952630 ] k57nd60a        C:\windows\system32\DRIVERS\k57nd60a.sys
13:56:09.0210 2740  k57nd60a - ok
13:56:09.0241 2740  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
13:56:09.0241 2740  kbdclass - ok
13:56:09.0257 2740  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys
13:56:09.0257 2740  kbdhid - ok
13:56:09.0273 2740  [ 4D71227301DD8D09097B9E4CC6527E5A ] KeyIso          C:\windows\system32\lsass.exe
13:56:09.0273 2740  KeyIso - ok
13:56:09.0319 2740  [ 8F489706472F7E9A06BAAA198703FA64 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
13:56:09.0319 2740  KSecDD - ok
13:56:09.0335 2740  [ 868A2CAAB12EFC7A021682BCA0EEC54C ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
13:56:09.0335 2740  KSecPkg - ok
13:56:09.0366 2740  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
13:56:09.0366 2740  ksthunk - ok
13:56:09.0397 2740  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\windows\system32\msdtckrm.dll
13:56:09.0413 2740  KtmRm - ok
13:56:09.0491 2740  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\windows\System32\srvsvc.dll
13:56:09.0491 2740  LanmanServer - ok
13:56:09.0522 2740  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\windows\System32\wkssvc.dll
13:56:09.0522 2740  LanmanWorkstation - ok
13:56:09.0569 2740  [ 76CBD1FAC76653A6B57F8E1C641E50A0 ] libusb0         C:\windows\system32\DRIVERS\libusb0.sys
13:56:09.0569 2740  libusb0 - ok
13:56:09.0616 2740  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
13:56:09.0616 2740  lltdio - ok
13:56:09.0647 2740  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\windows\System32\lltdsvc.dll
13:56:09.0663 2740  lltdsvc - ok
13:56:09.0678 2740  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\windows\System32\lmhsvc.dll
13:56:09.0678 2740  lmhosts - ok
13:56:09.0756 2740  [ 2098AF12149789FA6608422C8796F77C ] LNSUSvc         C:\Program Files (x86)\IBM\Lotus\Notes\SUService.exe
13:56:09.0787 2740  LNSUSvc - ok
13:56:09.0897 2740  [ E4FA829273FDF5BD20FC9804FD5F9C20 ] Lotus Notes Diagnostics C:\Program Files (x86)\IBM\Lotus\Notes\nsd.exe
13:56:09.0990 2740  Lotus Notes Diagnostics - ok
13:56:10.0037 2740  [ 16679269303613C4CE7C8FF03413410F ] LPCFilter       C:\windows\system32\DRIVERS\LPCFilter.sys
13:56:10.0037 2740  LPCFilter - ok
13:56:10.0068 2740  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\windows\system32\DRIVERS\lsi_fc.sys
13:56:10.0068 2740  LSI_FC - ok
13:56:10.0099 2740  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\windows\system32\DRIVERS\lsi_sas.sys
13:56:10.0115 2740  LSI_SAS - ok
13:56:10.0131 2740  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\windows\system32\DRIVERS\lsi_sas2.sys
13:56:10.0146 2740  LSI_SAS2 - ok
13:56:10.0162 2740  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\windows\system32\DRIVERS\lsi_scsi.sys
13:56:10.0162 2740  LSI_SCSI - ok
13:56:10.0193 2740  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\windows\system32\drivers\luafv.sys
13:56:10.0193 2740  luafv - ok
13:56:10.0240 2740  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
13:56:10.0240 2740  Mcx2Svc - ok
13:56:10.0271 2740  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\windows\system32\DRIVERS\megasas.sys
13:56:10.0271 2740  megasas - ok
13:56:10.0318 2740  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\windows\system32\DRIVERS\MegaSR.sys
13:56:10.0318 2740  MegaSR - ok
13:56:10.0349 2740  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\windows\system32\mmcss.dll
13:56:10.0349 2740  MMCSS - ok
13:56:10.0365 2740  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\windows\system32\drivers\modem.sys
13:56:10.0365 2740  Modem - ok
13:56:10.0396 2740  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\windows\system32\DRIVERS\monitor.sys
13:56:10.0396 2740  monitor - ok
13:56:10.0443 2740  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
13:56:10.0443 2740  mouclass - ok
13:56:10.0458 2740  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
13:56:10.0458 2740  mouhid - ok
13:56:10.0505 2740  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
13:56:10.0505 2740  mountmgr - ok
13:56:10.0567 2740  [ 338037EFA0E8E8699B2667D57B751574 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
13:56:10.0583 2740  MozillaMaintenance - ok
13:56:10.0599 2740  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\windows\system32\drivers\mpio.sys
13:56:10.0599 2740  mpio - ok
13:56:10.0630 2740  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
13:56:10.0630 2740  mpsdrv - ok
13:56:10.0692 2740  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\windows\system32\mpssvc.dll
13:56:10.0692 2740  MpsSvc - ok
13:56:10.0739 2740  [ 1A4F75E63C9FB84B85DFFC6B63FD5404 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
13:56:10.0739 2740  MRxDAV - ok
13:56:10.0786 2740  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
13:56:10.0786 2740  mrxsmb - ok
13:56:10.0817 2740  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
13:56:10.0833 2740  mrxsmb10 - ok
13:56:10.0848 2740  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
13:56:10.0848 2740  mrxsmb20 - ok
13:56:10.0895 2740  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\windows\system32\drivers\msahci.sys
13:56:10.0895 2740  msahci - ok
13:56:10.0926 2740  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\windows\system32\drivers\msdsm.sys
13:56:10.0926 2740  msdsm - ok
13:56:10.0942 2740  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\windows\System32\msdtc.exe
13:56:10.0957 2740  MSDTC - ok
13:56:10.0973 2740  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\windows\system32\drivers\Msfs.sys
13:56:10.0973 2740  Msfs - ok
13:56:10.0989 2740  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
13:56:10.0989 2740  mshidkmdf - ok
13:56:11.0004 2740  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
13:56:11.0020 2740  msisadrv - ok
13:56:11.0051 2740  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
13:56:11.0051 2740  MSiSCSI - ok
13:56:11.0051 2740  msiserver - ok
13:56:11.0082 2740  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
13:56:11.0082 2740  MSKSSRV - ok
13:56:11.0098 2740  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
13:56:11.0098 2740  MSPCLOCK - ok
13:56:11.0113 2740  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
13:56:11.0113 2740  MSPQM - ok
13:56:11.0160 2740  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
13:56:11.0160 2740  MsRPC - ok
13:56:11.0191 2740  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\windows\system32\drivers\mssmbios.sys
13:56:11.0207 2740  mssmbios - ok
13:56:11.0285 2740  MSSQL$ACT7 - ok
13:56:11.0379 2740  [ 04EF36EAF5C4DBCE424D81B76F1E9231 ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
13:56:11.0379 2740  MSSQLServerADHelper100 - ok
13:56:11.0425 2740  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
13:56:11.0425 2740  MSTEE - ok
13:56:11.0457 2740  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\windows\system32\DRIVERS\MTConfig.sys
13:56:11.0457 2740  MTConfig - ok
13:56:11.0472 2740  [ FF54EA1617D15711690D5EF054512C21 ] Multi-user Cleanup Service C:\Program Files (x86)\IBM\Lotus\Notes\ntmulti.exe
13:56:11.0488 2740  Multi-user Cleanup Service - ok
13:56:11.0503 2740  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\windows\system32\Drivers\mup.sys
13:56:11.0503 2740  Mup - ok
13:56:11.0550 2740  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\windows\system32\qagentRT.dll
13:56:11.0566 2740  napagent - ok
13:56:11.0628 2740  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
13:56:11.0628 2740  NativeWifiP - ok
13:56:11.0691 2740  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\windows\system32\drivers\ndis.sys
13:56:11.0691 2740  NDIS - ok
13:56:11.0722 2740  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
13:56:11.0722 2740  NdisCap - ok
13:56:11.0753 2740  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
13:56:11.0753 2740  NdisTapi - ok
13:56:11.0800 2740  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
13:56:11.0800 2740  Ndisuio - ok
13:56:11.0847 2740  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
13:56:11.0847 2740  NdisWan - ok
13:56:11.0878 2740  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
13:56:11.0878 2740  NDProxy - ok
13:56:11.0893 2740  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
13:56:11.0893 2740  NetBIOS - ok
13:56:11.0940 2740  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
13:56:11.0940 2740  NetBT - ok
13:56:11.0956 2740  [ 4D71227301DD8D09097B9E4CC6527E5A ] Netlogon        C:\windows\system32\lsass.exe
13:56:11.0956 2740  Netlogon - ok
13:56:11.0987 2740  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\windows\System32\netman.dll
13:56:12.0003 2740  Netman - ok
13:56:12.0049 2740  [ 21318671BCAD3ACF16638F98D4D00973 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:56:12.0049 2740  NetMsmqActivator - ok
13:56:12.0081 2740  [ 21318671BCAD3ACF16638F98D4D00973 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:56:12.0081 2740  NetPipeActivator - ok
13:56:12.0112 2740  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\windows\System32\netprofm.dll
13:56:12.0112 2740  netprofm - ok
13:56:12.0112 2740  [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:56:12.0127 2740  NetTcpActivator - ok
13:56:12.0127 2740  [ 21318671BCAD3ACF16638F98D4D00973 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
13:56:12.0127 2740  NetTcpPortSharing - ok
13:56:12.0299 2740  [ 4D85A450EDEF10C38882182753A49AAE ] NETw5s64        C:\windows\system32\DRIVERS\NETw5s64.sys
13:56:12.0486 2740  NETw5s64 - ok
13:56:12.0627 2740  [ 705283C02177809CA9FA7CC58A4F1E77 ] netw5v64        C:\windows\system32\DRIVERS\netw5v64.sys
13:56:12.0751 2740  netw5v64 - ok
13:56:12.0798 2740  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\windows\system32\DRIVERS\nfrd960.sys
13:56:12.0798 2740  nfrd960 - ok
13:56:12.0829 2740  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\windows\System32\nlasvc.dll
13:56:12.0845 2740  NlaSvc - ok
13:56:12.0907 2740  [ 351533ACC2A069B94E80BBFC177E8FDF ] NPF             C:\windows\system32\drivers\npf.sys
13:56:12.0907 2740  NPF - ok
13:56:12.0923 2740  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\windows\system32\drivers\Npfs.sys
13:56:12.0923 2740  Npfs - ok
13:56:12.0954 2740  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\windows\system32\nsisvc.dll
13:56:12.0954 2740  nsi - ok
13:56:12.0970 2740  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
13:56:12.0970 2740  nsiproxy - ok
13:56:13.0063 2740  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
13:56:13.0079 2740  Ntfs - ok
13:56:13.0110 2740  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\windows\system32\drivers\Null.sys
13:56:13.0110 2740  Null - ok
13:56:13.0141 2740  [ 554964B900AE2954B8B589B6287034AC ] NVHDA           C:\windows\system32\drivers\nvhda64v.sys
13:56:13.0157 2740  NVHDA - ok
13:56:13.0453 2740  [ 9B93CC9C70EDE60A9C486E7719DB9E8D ] nvlddmkm        C:\windows\system32\DRIVERS\nvlddmkm.sys
13:56:13.0687 2740  nvlddmkm - ok
13:56:13.0734 2740  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\windows\system32\drivers\nvraid.sys
13:56:13.0734 2740  nvraid - ok
13:56:13.0781 2740  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\windows\system32\drivers\nvstor.sys
13:56:13.0781 2740  nvstor - ok
13:56:13.0859 2740  [ FB50E60564ED30DDC855F0CE435C8467 ] nvsvc           C:\windows\system32\nvvsvc.exe
13:56:13.0875 2740  nvsvc - ok
13:56:13.0984 2740  [ C63E582366EAD77978BFFD959A66DBB8 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
13:56:13.0999 2740  nvUpdatusService - ok
13:56:14.0015 2740  nvvad_WaveExtensible - ok
13:56:14.0062 2740  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
13:56:14.0062 2740  nv_agp - ok
13:56:14.0093 2740  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
13:56:14.0093 2740  ohci1394 - ok
13:56:14.0171 2740  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
13:56:14.0171 2740  ose - ok
13:56:14.0358 2740  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
13:56:14.0499 2740  osppsvc - ok
13:56:14.0561 2740  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
13:56:14.0561 2740  p2pimsvc - ok
13:56:14.0577 2740  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\windows\system32\p2psvc.dll
13:56:14.0592 2740  p2psvc - ok
13:56:14.0608 2740  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\windows\system32\DRIVERS\parport.sys
13:56:14.0608 2740  Parport - ok
13:56:14.0639 2740  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\windows\system32\drivers\partmgr.sys
13:56:14.0639 2740  partmgr - ok
13:56:14.0670 2740  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\windows\System32\pcasvc.dll
13:56:14.0670 2740  PcaSvc - ok
13:56:14.0717 2740  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\windows\system32\drivers\pci.sys
13:56:14.0717 2740  pci - ok
13:56:14.0748 2740  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\windows\system32\drivers\pciide.sys
13:56:14.0748 2740  pciide - ok
13:56:14.0779 2740  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\windows\system32\DRIVERS\pcmcia.sys
13:56:14.0795 2740  pcmcia - ok
13:56:14.0811 2740  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\windows\system32\drivers\pcw.sys
13:56:14.0811 2740  pcw - ok
13:56:14.0842 2740  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\windows\system32\drivers\peauth.sys
13:56:14.0842 2740  PEAUTH - ok
13:56:14.0920 2740  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\windows\SysWow64\perfhost.exe
13:56:14.0920 2740  PerfHost - ok
13:56:14.0982 2740  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\windows\system32\pla.dll
13:56:14.0998 2740  pla - ok
13:56:15.0045 2740  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
13:56:15.0060 2740  PlugPlay - ok
13:56:15.0076 2740  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
13:56:15.0076 2740  PNRPAutoReg - ok
13:56:15.0107 2740  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
13:56:15.0107 2740  PNRPsvc - ok
13:56:15.0154 2740  [ 4F0878FD62D5F7444C5F1C4C66D9D293 ] Point64         C:\windows\system32\DRIVERS\point64.sys
13:56:15.0154 2740  Point64 - ok
13:56:15.0201 2740  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
13:56:15.0201 2740  PolicyAgent - ok
13:56:15.0247 2740  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\windows\system32\umpo.dll
13:56:15.0247 2740  Power - ok
13:56:15.0294 2740  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
13:56:15.0294 2740  PptpMiniport - ok
13:56:15.0325 2740  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\windows\system32\DRIVERS\processr.sys
13:56:15.0325 2740  Processor - ok
13:56:15.0372 2740  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\windows\system32\profsvc.dll
13:56:15.0372 2740  ProfSvc - ok
13:56:15.0388 2740  [ 4D71227301DD8D09097B9E4CC6527E5A ] ProtectedStorage C:\windows\system32\lsass.exe
13:56:15.0388 2740  ProtectedStorage - ok
13:56:15.0435 2740  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\windows\system32\DRIVERS\pacer.sys
13:56:15.0435 2740  Psched - ok
13:56:15.0481 2740  [ E0D0CB09AA07B22BE984E4F7EC0326F5 ] PSI_SVC_2       C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
13:56:15.0481 2740  PSI_SVC_2 - ok
13:56:15.0544 2740  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\windows\system32\DRIVERS\ql2300.sys
13:56:15.0575 2740  ql2300 - ok
13:56:15.0591 2740  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\windows\system32\DRIVERS\ql40xx.sys
13:56:15.0591 2740  ql40xx - ok
13:56:15.0622 2740  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\windows\system32\qwave.dll
13:56:15.0622 2740  QWAVE - ok
13:56:15.0653 2740  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
13:56:15.0653 2740  QWAVEdrv - ok
13:56:15.0669 2740  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
13:56:15.0669 2740  RasAcd - ok
13:56:15.0715 2740  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
13:56:15.0715 2740  RasAgileVpn - ok
13:56:15.0731 2740  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\windows\System32\rasauto.dll
13:56:15.0731 2740  RasAuto - ok
13:56:15.0762 2740  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
13:56:15.0762 2740  Rasl2tp - ok
13:56:15.0809 2740  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\windows\System32\rasmans.dll
13:56:15.0825 2740  RasMan - ok
13:56:15.0856 2740  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
13:56:15.0856 2740  RasPppoe - ok
13:56:15.0871 2740  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
13:56:15.0871 2740  RasSstp - ok
13:56:15.0934 2740  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
13:56:15.0934 2740  rdbss - ok
13:56:15.0949 2740  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\windows\system32\DRIVERS\rdpbus.sys
13:56:15.0949 2740  rdpbus - ok
13:56:15.0965 2740  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
13:56:15.0965 2740  RDPCDD - ok
13:56:15.0996 2740  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
13:56:15.0996 2740  RDPENCDD - ok
13:56:16.0012 2740  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
13:56:16.0012 2740  RDPREFMP - ok
13:56:16.0074 2740  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
13:56:16.0074 2740  RdpVideoMiniport - ok
13:56:16.0121 2740  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
13:56:16.0121 2740  RDPWD - ok
13:56:16.0168 2740  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
13:56:16.0168 2740  rdyboost - ok
13:56:16.0199 2740  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\windows\System32\mprdim.dll
13:56:16.0199 2740  RemoteAccess - ok
13:56:16.0230 2740  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\windows\system32\regsvc.dll
13:56:16.0230 2740  RemoteRegistry - ok
13:56:16.0277 2740  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\windows\system32\DRIVERS\rfcomm.sys
13:56:16.0277 2740  RFCOMM - ok
13:56:16.0324 2740  [ AD42432D22940B4215177BE113E4919C ] RimUsb          C:\windows\system32\Drivers\RimUsb_AMD64.sys
13:56:16.0324 2740  RimUsb - ok
13:56:16.0371 2740  [ 4AAFFFA67AC4DFA3D9985D78573887E2 ] RimVSerPort     C:\windows\system32\DRIVERS\RimSerial_AMD64.sys
13:56:16.0386 2740  RimVSerPort - ok
13:56:16.0402 2740  [ 388D3DD1A6457280F3BADBA9F3ACD6B1 ] ROOTMODEM       C:\windows\system32\Drivers\RootMdm.sys
13:56:16.0402 2740  ROOTMODEM - ok
13:56:16.0449 2740  [ B60F58F175DE20A6739194E85B035178 ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
13:56:16.0449 2740  rpcapd - ok
13:56:16.0480 2740  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
13:56:16.0480 2740  RpcEptMapper - ok
13:56:16.0511 2740  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\windows\system32\locator.exe
13:56:16.0511 2740  RpcLocator - ok
13:56:16.0558 2740  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\windows\system32\rpcss.dll
13:56:16.0573 2740  RpcSs - ok
13:56:16.0651 2740  [ C606C5F712A3761896CEFFA4AF6B1268 ] RsFx0151        C:\windows\system32\DRIVERS\RsFx0151.sys
13:56:16.0651 2740  RsFx0151 - ok
13:56:16.0683 2740  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
13:56:16.0683 2740  rspndr - ok
13:56:16.0714 2740  [ 8C22F21C924413D4E109995F748E18BB ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
13:56:16.0714 2740  RSUSBSTOR - ok
13:56:16.0729 2740  RtsUIR - ok
13:56:16.0745 2740  [ 4D71227301DD8D09097B9E4CC6527E5A ] SamSs           C:\windows\system32\lsass.exe
13:56:16.0745 2740  SamSs - ok
13:56:16.0776 2740  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
13:56:16.0776 2740  sbp2port - ok
13:56:16.0807 2740  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\windows\System32\SCardSvr.dll
13:56:16.0807 2740  SCardSvr - ok
13:56:16.0854 2740  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
13:56:16.0854 2740  scfilter - ok
13:56:16.0917 2740  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\windows\system32\schedsvc.dll
13:56:16.0932 2740  Schedule - ok
13:56:16.0963 2740  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\windows\System32\certprop.dll
13:56:16.0963 2740  SCPolicySvc - ok
13:56:16.0995 2740  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\windows\System32\SDRSVC.dll
13:56:16.0995 2740  SDRSVC - ok
13:56:17.0026 2740  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
13:56:17.0026 2740  secdrv - ok
13:56:17.0057 2740  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\windows\system32\seclogon.dll
13:56:17.0073 2740  seclogon - ok
13:56:17.0104 2740  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\windows\system32\sens.dll
13:56:17.0104 2740  SENS - ok
13:56:17.0119 2740  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\windows\system32\sensrsvc.dll
13:56:17.0135 2740  SensrSvc - ok
13:56:17.0166 2740  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\windows\system32\DRIVERS\serenum.sys
13:56:17.0166 2740  Serenum - ok
13:56:17.0182 2740  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\windows\system32\DRIVERS\serial.sys
13:56:17.0182 2740  Serial - ok
13:56:17.0229 2740  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\windows\system32\DRIVERS\sermouse.sys
13:56:17.0229 2740  sermouse - ok
13:56:17.0291 2740  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\windows\system32\sessenv.dll
13:56:17.0291 2740  SessionEnv - ok
13:56:17.0322 2740  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
13:56:17.0322 2740  sffdisk - ok
13:56:17.0338 2740  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
13:56:17.0338 2740  sffp_mmc - ok
13:56:17.0353 2740  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
13:56:17.0353 2740  sffp_sd - ok
13:56:17.0385 2740  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\windows\system32\DRIVERS\sfloppy.sys
13:56:17.0385 2740  sfloppy - ok
13:56:17.0431 2740  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\windows\System32\ipnathlp.dll
13:56:17.0431 2740  SharedAccess - ok
13:56:17.0478 2740  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\windows\System32\shsvcs.dll
13:56:17.0478 2740  ShellHWDetection - ok
13:56:17.0525 2740  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\windows\system32\DRIVERS\SiSRaid2.sys
13:56:17.0525 2740  SiSRaid2 - ok
13:56:17.0556 2740  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\windows\system32\DRIVERS\sisraid4.sys
13:56:17.0556 2740  SiSRaid4 - ok
13:56:17.0587 2740  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\windows\system32\DRIVERS\smb.sys
13:56:17.0587 2740  Smb - ok
13:56:17.0634 2740  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\windows\System32\snmptrap.exe
13:56:17.0650 2740  SNMPTRAP - ok
13:56:17.0650 2740  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\windows\system32\drivers\spldr.sys
13:56:17.0650 2740  spldr - ok
13:56:17.0697 2740  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\windows\System32\spoolsv.exe
13:56:17.0712 2740  Spooler - ok
13:56:17.0806 2740  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\windows\system32\sppsvc.exe
13:56:17.0884 2740  sppsvc - ok
13:56:17.0915 2740  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\windows\system32\sppuinotify.dll
13:56:17.0915 2740  sppuinotify - ok
13:56:18.0009 2740  [ 3420E0482AD95120B471B7328A8D7D08 ] SQLAgent$ACT7   C:\Program Files\Microsoft SQL Server\MSSQL10_50.ACT7\MSSQL\Binn\SQLAGENT.EXE
13:56:18.0024 2740  SQLAgent$ACT7 - ok
13:56:18.0149 2740  [ 7D67C07C63796775CC5492BCFEAFF125 ] SQLBrowser      C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
13:56:18.0149 2740  SQLBrowser - ok
13:56:18.0180 2740  [ F98DDFBFE0EE66D4C4B00693512B9527 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
13:56:18.0180 2740  SQLWriter - ok
13:56:18.0243 2740  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\windows\system32\DRIVERS\srv.sys
13:56:18.0243 2740  srv - ok
13:56:18.0258 2740  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
13:56:18.0274 2740  srv2 - ok
13:56:18.0289 2740  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
13:56:18.0289 2740  srvnet - ok
13:56:18.0336 2740  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
13:56:18.0336 2740  SSDPSRV - ok
13:56:18.0352 2740  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\windows\system32\sstpsvc.dll
13:56:18.0352 2740  SstpSvc - ok
13:56:18.0414 2740  [ 7FCE08C739136C9C64107A8814EF854C ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
13:56:18.0430 2740  Stereo Service - ok
13:56:18.0445 2740  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\windows\system32\DRIVERS\stexstor.sys
13:56:18.0445 2740  stexstor - ok
13:56:18.0508 2740  [ DECACB6921DED1A38642642685D77DAC ] StillCam        C:\windows\system32\drivers\serscan.sys
13:56:18.0508 2740  StillCam - ok
13:56:18.0570 2740  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\windows\System32\wiaservc.dll
13:56:18.0570 2740  stisvc - ok
13:56:18.0601 2740  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\windows\system32\drivers\swenum.sys
13:56:18.0601 2740  swenum - ok
13:56:18.0648 2740  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\windows\System32\swprv.dll
13:56:18.0664 2740  swprv - ok
13:56:18.0695 2740  [ 12A35E44D8647985FCDB8D298A590134 ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
13:56:18.0695 2740  SynTP - ok
13:56:18.0773 2740  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\windows\system32\sysmain.dll
13:56:18.0789 2740  SysMain - ok
13:56:18.0820 2740  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\windows\System32\TabSvc.dll
13:56:18.0820 2740  TabletInputService - ok
13:56:18.0851 2740  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\windows\System32\tapisrv.dll
13:56:18.0851 2740  TapiSrv - ok
13:56:18.0898 2740  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\windows\System32\tbssvc.dll
13:56:18.0898 2740  TBS - ok
13:56:18.0976 2740  [ 40AF23633D197905F03AB5628C558C51 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
13:56:19.0007 2740  Tcpip - ok
13:56:19.0038 2740  [ 40AF23633D197905F03AB5628C558C51 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
13:56:19.0054 2740  TCPIP6 - ok
13:56:19.0085 2740  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
13:56:19.0101 2740  tcpipreg - ok
13:56:19.0132 2740  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
13:56:19.0132 2740  TDPIPE - ok
13:56:19.0179 2740  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
13:56:19.0179 2740  TDTCP - ok
13:56:19.0210 2740  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
13:56:19.0210 2740  tdx - ok
13:56:19.0257 2740  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\windows\system32\drivers\termdd.sys
13:56:19.0257 2740  TermDD - ok
13:56:19.0303 2740  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\windows\System32\termsrv.dll
13:56:19.0319 2740  TermService - ok
13:56:19.0350 2740  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\windows\system32\themeservice.dll
13:56:19.0350 2740  Themes - ok
13:56:19.0366 2740  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\windows\system32\mmcss.dll
13:56:19.0366 2740  THREADORDER - ok
13:56:19.0381 2740  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\windows\System32\trkwks.dll
13:56:19.0397 2740  TrkWks - ok
13:56:19.0444 2740  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
13:56:19.0459 2740  TrustedInstaller - ok
13:56:19.0491 2740  [ 4CE278FC9671BA81A138D70823FCAA09 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
13:56:19.0491 2740  tssecsrv - ok
13:56:19.0522 2740  [ E9981ECE8D894CEF7038FD1D040EB426 ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
13:56:19.0522 2740  TsUsbFlt - ok
13:56:19.0569 2740  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
13:56:19.0569 2740  tunnel - ok
13:56:19.0600 2740  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\windows\system32\DRIVERS\uagp35.sys
13:56:19.0600 2740  uagp35 - ok
13:56:19.0647 2740  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
13:56:19.0647 2740  udfs - ok
13:56:19.0678 2740  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\windows\system32\UI0Detect.exe
13:56:19.0678 2740  UI0Detect - ok
13:56:19.0709 2740  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
13:56:19.0709 2740  uliagpkx - ok
13:56:19.0756 2740  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\windows\system32\DRIVERS\umbus.sys
13:56:19.0756 2740  umbus - ok
13:56:19.0771 2740  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\windows\system32\DRIVERS\umpass.sys
13:56:19.0787 2740  UmPass - ok
13:56:19.0803 2740  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\windows\System32\upnphost.dll
13:56:19.0818 2740  upnphost - ok
13:56:19.0849 2740  [ C9E9D59C0099A9FF51697E9306A44240 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
13:56:19.0849 2740  USBAAPL64 - ok
13:56:19.0881 2740  [ DCA68B0943D6FA415F0C56C92158A83A ] usbccgp         C:\windows\system32\drivers\usbccgp.sys
13:56:19.0896 2740  usbccgp - ok
13:56:19.0912 2740  USBCCID - ok
13:56:19.0943 2740  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31 ] usbcir          C:\windows\system32\drivers\usbcir.sys
13:56:19.0943 2740  usbcir - ok
13:56:19.0974 2740  [ 18A85013A3E0F7E1755365D287443965 ] usbehci         C:\windows\system32\DRIVERS\usbehci.sys
13:56:19.0974 2740  usbehci - ok
13:56:20.0037 2740  [ 8D1196CFBB223621F2C67D45710F25BA ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
13:56:20.0037 2740  usbhub - ok
13:56:20.0083 2740  [ 765A92D428A8DB88B960DA5A8D6089DC ] usbohci         C:\windows\system32\drivers\usbohci.sys
13:56:20.0083 2740  usbohci - ok
13:56:20.0115 2740  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
13:56:20.0115 2740  usbprint - ok
13:56:20.0161 2740  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
13:56:20.0161 2740  USBSTOR - ok
13:56:20.0193 2740  [ DD253AFC3BC6CBA412342DE60C3647F3 ] usbuhci         C:\windows\system32\DRIVERS\usbuhci.sys
13:56:20.0193 2740  usbuhci - ok
13:56:20.0255 2740  [ 1F775DA4CF1A3A1834207E975A72E9D7 ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
13:56:20.0271 2740  usbvideo - ok
13:56:20.0302 2740  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\windows\System32\uxsms.dll
13:56:20.0302 2740  UxSms - ok
13:56:20.0317 2740  [ 4D71227301DD8D09097B9E4CC6527E5A ] VaultSvc        C:\windows\system32\lsass.exe
13:56:20.0317 2740  VaultSvc - ok
13:56:20.0364 2740  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
13:56:20.0364 2740  vdrvroot - ok
13:56:20.0411 2740  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\windows\System32\vds.exe
13:56:20.0427 2740  vds - ok
13:56:20.0442 2740  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
13:56:20.0442 2740  vga - ok
13:56:20.0458 2740  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\windows\System32\drivers\vga.sys
13:56:20.0473 2740  VgaSave - ok
13:56:20.0505 2740  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
13:56:20.0520 2740  vhdmp - ok
13:56:20.0551 2740  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\windows\system32\drivers\viaide.sys
13:56:20.0551 2740  viaide - ok
13:56:20.0567 2740  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\windows\system32\drivers\volmgr.sys
13:56:20.0567 2740  volmgr - ok
13:56:20.0614 2740  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
13:56:20.0614 2740  volmgrx - ok
13:56:20.0629 2740  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\windows\system32\drivers\volsnap.sys
13:56:20.0645 2740  volsnap - ok
13:56:20.0676 2740  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\windows\system32\DRIVERS\vsmraid.sys
13:56:20.0676 2740  vsmraid - ok
13:56:20.0754 2740  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\windows\system32\vssvc.exe
13:56:20.0770 2740  VSS - ok
13:56:20.0801 2740  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\windows\System32\drivers\vwifibus.sys
13:56:20.0801 2740  vwifibus - ok
13:56:20.0817 2740  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
13:56:20.0817 2740  vwififlt - ok
13:56:20.0848 2740  [ 6A638FC4BFDDC4D9B186C28C91BD1A01 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
13:56:20.0848 2740  vwifimp - ok
13:56:20.0879 2740  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\windows\system32\w32time.dll
13:56:20.0895 2740  W32Time - ok
13:56:20.0910 2740  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\windows\system32\DRIVERS\wacompen.sys
13:56:20.0910 2740  WacomPen - ok
13:56:20.0973 2740  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
13:56:20.0973 2740  WANARP - ok
13:56:20.0973 2740  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
13:56:20.0973 2740  Wanarpv6 - ok
13:56:21.0066 2740  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
13:56:21.0082 2740  WatAdminSvc - ok
13:56:21.0160 2740  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\windows\system32\wbengine.exe
13:56:21.0175 2740  wbengine - ok
13:56:21.0222 2740  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
13:56:21.0222 2740  WbioSrvc - ok
13:56:21.0285 2740  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\windows\System32\wcncsvc.dll
13:56:21.0285 2740  wcncsvc - ok
13:56:21.0300 2740  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
13:56:21.0316 2740  WcsPlugInService - ok
13:56:21.0331 2740  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\windows\system32\DRIVERS\wd.sys
13:56:21.0331 2740  Wd - ok
13:56:21.0378 2740  [ E2C933EDBC389386EBE6D2BA953F43D8 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
13:56:21.0394 2740  Wdf01000 - ok
13:56:21.0425 2740  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\windows\system32\wdi.dll
13:56:21.0425 2740  WdiServiceHost - ok
13:56:21.0441 2740  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\windows\system32\wdi.dll
13:56:21.0441 2740  WdiSystemHost - ok
13:56:21.0456 2740  wdmirror - ok
13:56:21.0503 2740  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D ] WebClient       C:\windows\System32\webclnt.dll
13:56:21.0503 2740  WebClient - ok
13:56:21.0519 2740  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\windows\system32\wecsvc.dll
13:56:21.0534 2740  Wecsvc - ok
13:56:21.0550 2740  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\windows\System32\wercplsupport.dll
13:56:21.0550 2740  wercplsupport - ok
13:56:21.0581 2740  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\windows\System32\WerSvc.dll
13:56:21.0581 2740  WerSvc - ok
13:56:21.0612 2740  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
13:56:21.0612 2740  WfpLwf - ok
13:56:21.0643 2740  [ B14EF15BD757FA488F9C970EEE9C0D35 ] WimFltr         C:\windows\system32\DRIVERS\wimfltr.sys
13:56:21.0643 2740  WimFltr - ok
13:56:21.0675 2740  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
13:56:21.0675 2740  WIMMount - ok
13:56:21.0706 2740  WinDefend - ok
13:56:21.0721 2740  WinHttpAutoProxySvc - ok
13:56:21.0784 2740  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
13:56:21.0784 2740  Winmgmt - ok
13:56:21.0862 2740  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\windows\system32\WsmSvc.dll
13:56:21.0893 2740  WinRM - ok
13:56:21.0924 2740  [ FE88B288356E7B47B74B13372ADD906D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
13:56:21.0924 2740  WinUsb - ok
13:56:21.0971 2740  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\windows\System32\wlansvc.dll
13:56:21.0987 2740  Wlansvc - ok
13:56:22.0033 2740  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\windows\system32\drivers\wmiacpi.sys
13:56:22.0033 2740  WmiAcpi - ok
13:56:22.0065 2740  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
13:56:22.0065 2740  wmiApSrv - ok
13:56:22.0111 2740  WMPNetworkSvc - ok
13:56:22.0158 2740  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
13:56:22.0158 2740  WPCSvc - ok
13:56:22.0189 2740  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
13:56:22.0205 2740  WPDBusEnum - ok
13:56:22.0236 2740  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
13:56:22.0236 2740  ws2ifsl - ok
13:56:22.0252 2740  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\windows\system32\wscsvc.dll
13:56:22.0252 2740  wscsvc - ok
13:56:22.0299 2740  [ 8D918B1DB190A4D9B1753A66FA8C96E8 ] WSDPrintDevice  C:\windows\system32\DRIVERS\WSDPrint.sys
13:56:22.0299 2740  WSDPrintDevice - ok
13:56:22.0299 2740  WSearch - ok
13:56:22.0361 2740  [ 83575C43B2BFE9AB0661A7F957E843C0 ] wsvd            C:\windows\system32\DRIVERS\wsvd.sys
13:56:22.0361 2740  wsvd - ok
13:56:22.0455 2740  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\windows\system32\wuaueng.dll
13:56:22.0486 2740  wuauserv - ok
13:56:22.0533 2740  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
13:56:22.0548 2740  WudfPf - ok
13:56:22.0579 2740  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
13:56:22.0579 2740  WUDFRd - ok
13:56:22.0595 2740  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
13:56:22.0595 2740  wudfsvc - ok
13:56:22.0642 2740  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\windows\System32\wwansvc.dll
13:56:22.0642 2740  WwanSvc - ok
13:56:22.0657 2740  ================ Scan global ===============================
13:56:22.0689 2740  [ BA0CD8C393E8C9F83354106093832C7B ] C:\windows\system32\basesrv.dll
13:56:22.0735 2740  [ 88EDD0B34EED542745931E581AD21A32 ] C:\windows\system32\winsrv.dll
13:56:22.0735 2740  [ 88EDD0B34EED542745931E581AD21A32 ] C:\windows\system32\winsrv.dll
13:56:22.0767 2740  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\windows\system32\sxssrv.dll
13:56:22.0798 2740  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\windows\system32\services.exe
13:56:22.0798 2740  [Global] - ok
13:56:22.0798 2740  ================ Scan MBR ==================================
13:56:22.0813 2740  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
13:56:23.0016 2740  \Device\Harddisk0\DR0 - ok
13:56:23.0016 2740  ================ Scan VBR ==================================
13:56:23.0016 2740  [ 2B1E119E0250A48E15A9F5224A0A62AB ] \Device\Harddisk0\DR0\Partition1
13:56:23.0016 2740  \Device\Harddisk0\DR0\Partition1 - ok
13:56:23.0032 2740  [ 705F032992392B2CD0DE6DB5D6054151 ] \Device\Harddisk0\DR0\Partition2
13:56:23.0047 2740  \Device\Harddisk0\DR0\Partition2 - ok
13:56:23.0063 2740  [ 36ACD53B2E9D4ABA1A8D7C35DD3F42A8 ] \Device\Harddisk0\DR0\Partition3
13:56:23.0079 2740  \Device\Harddisk0\DR0\Partition3 - ok
13:56:23.0079 2740  ============================================================
13:56:23.0079 2740  Scan finished
13:56:23.0079 2740  ============================================================
13:56:23.0079 0988  Detected object count: 0
13:56:23.0079 0988  Actual detected object count: 0
14:02:36.0013 3996  Deinitialize success
 

 



#4 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 AM

Posted 10 March 2014 - 07:16 AM

You're welcome. :)

You can click load update. It's best to get them updated at all times.
Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif

#5 pinkmonkey

pinkmonkey
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Cleveland, OH
  • Local time:07:04 PM

Posted 10 March 2014 - 08:03 AM

Good Morning Conspire!

 

Have completed the current version TDSSKiller scan and it is below.  

Had slow issues again yesterday, 65-85% cpu, disk was high & so were networking & memory in the Resource Monitor.  Even shutting the computer down for half hour didn't really help much.  Firefox is pretty much completely unusable & Chrome will last about for about 10 new windows.  

 

Thanks again soooooooo much :-)

Kelly

 

-----------------------------------------------------------------------------------------------------

 

08:45:42.0907 0x0b0c  TDSS rootkit removing tool 3.0.0.25 Feb 27 2014 15:23:02
08:46:46.0836 0x0b0c  ============================================================
08:46:46.0836 0x0b0c  Current date / time: 2014/03/10 08:46:46.0836
08:46:46.0836 0x0b0c  SystemInfo:
08:46:46.0836 0x0b0c  
08:46:46.0836 0x0b0c  OS Version: 6.1.7601 ServicePack: 1.0
08:46:46.0836 0x0b0c  Product type: Workstation
08:46:46.0836 0x0b0c  ComputerName: IDEAPAD
08:46:46.0836 0x0b0c  UserName: kelly
08:46:46.0836 0x0b0c  Windows directory: C:\windows
08:46:46.0836 0x0b0c  System windows directory: C:\windows
08:46:46.0836 0x0b0c  Running under WOW64
08:46:46.0836 0x0b0c  Processor architecture: Intel x64
08:46:46.0836 0x0b0c  Number of processors: 2
08:46:46.0836 0x0b0c  Page size: 0x1000
08:46:46.0836 0x0b0c  Boot type: Normal boot
08:46:46.0836 0x0b0c  ============================================================
08:46:48.0099 0x0b0c  KLMD registered as C:\windows\system32\drivers\11697747.sys
08:46:48.0380 0x0b0c  System UUID: {17A40575-5BBF-D7C1-B7C7-FDBE5A0F2391}
08:46:48.0833 0x0b0c  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:46:48.0848 0x0b0c  ============================================================
08:46:48.0848 0x0b0c  \Device\Harddisk0\DR0:
08:46:48.0848 0x0b0c  MBR partitions:
08:46:48.0848 0x0b0c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x64000
08:46:48.0848 0x0b0c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64800, BlocksNum 0x1F9C9000
08:46:48.0864 0x0b0c  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x1FA2E000, BlocksNum 0x3C7E000
08:46:48.0864 0x0b0c  ============================================================
08:46:48.0926 0x0b0c  C: <-> \Device\Harddisk0\DR0\Partition2
08:46:48.0957 0x0b0c  D: <-> \Device\Harddisk0\DR0\Partition3
08:46:48.0957 0x0b0c  ============================================================
08:46:48.0957 0x0b0c  Initialize success
08:46:48.0957 0x0b0c  ============================================================
08:46:54.0651 0x0364  ============================================================
08:46:54.0651 0x0364  Scan started
08:46:54.0651 0x0364  Mode: Manual; 
08:46:54.0651 0x0364  ============================================================
08:46:54.0651 0x0364  KSN ping started
08:46:57.0584 0x0364  KSN ping finished: true
08:46:57.0771 0x0364  ================ Scan system memory ========================
08:46:57.0771 0x0364  System memory - ok
08:46:57.0771 0x0364  ================ Scan services =============================
08:46:57.0943 0x0364  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
08:46:57.0959 0x0364  1394ohci - ok
08:46:58.0005 0x0364  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\windows\system32\drivers\ACPI.sys
08:46:58.0005 0x0364  ACPI - ok
08:46:58.0037 0x0364  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
08:46:58.0037 0x0364  AcpiPmi - ok
08:46:58.0099 0x0364  [ 2E68544BCE94DE6677F700CF1D582B6D, D2DF57D25582B86AF1AFD50C80DCCB1E3B33F2844906EC427121A159C60316AF ] ACPIVPC         C:\windows\system32\DRIVERS\AcpiVpc.sys
08:46:58.0099 0x0364  ACPIVPC - ok
08:46:58.0239 0x0364  [ 630D2C9D36DAD22829C95C55D36BA5CC, 49C08710303A4624E03E10CE24D24772D9FC77C8BFCFA37949E82FC8E0D0FD08 ] ACT! Scheduler  C:\Program Files (x86)\ACT\Act for Windows\Act.Scheduler.exe
08:46:58.0286 0x0364  ACT! Scheduler - ok
08:46:58.0411 0x0364  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:46:58.0411 0x0364  AdobeARMservice - ok
08:46:58.0473 0x0364  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\windows\system32\DRIVERS\adp94xx.sys
08:46:58.0489 0x0364  adp94xx - ok
08:46:58.0567 0x0364  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\windows\system32\DRIVERS\adpahci.sys
08:46:58.0567 0x0364  adpahci - ok
08:46:58.0614 0x0364  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\windows\system32\DRIVERS\adpu320.sys
08:46:58.0614 0x0364  adpu320 - ok
08:46:58.0661 0x0364  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
08:46:58.0661 0x0364  AeLookupSvc - ok
08:46:58.0739 0x0364  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\windows\system32\drivers\afd.sys
08:46:58.0754 0x0364  AFD - ok
08:46:58.0801 0x0364  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\windows\system32\drivers\agp440.sys
08:46:58.0801 0x0364  agp440 - ok
08:46:58.0832 0x0364  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\windows\System32\alg.exe
08:46:58.0832 0x0364  ALG - ok
08:46:58.0895 0x0364  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\windows\system32\drivers\aliide.sys
08:46:58.0910 0x0364  aliide - ok
08:46:58.0941 0x0364  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\windows\system32\drivers\amdide.sys
08:46:58.0941 0x0364  amdide - ok
08:46:58.0957 0x0364  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\windows\system32\DRIVERS\amdk8.sys
08:46:58.0957 0x0364  AmdK8 - ok
08:46:58.0988 0x0364  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\windows\system32\DRIVERS\amdppm.sys
08:46:58.0988 0x0364  AmdPPM - ok
08:46:59.0035 0x0364  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\windows\system32\drivers\amdsata.sys
08:46:59.0035 0x0364  amdsata - ok
08:46:59.0129 0x0364  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\windows\system32\DRIVERS\amdsbs.sys
08:46:59.0129 0x0364  amdsbs - ok
08:46:59.0160 0x0364  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\windows\system32\drivers\amdxata.sys
08:46:59.0160 0x0364  amdxata - ok
08:46:59.0222 0x0364  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\windows\system32\drivers\appid.sys
08:46:59.0222 0x0364  AppID - ok
08:46:59.0253 0x0364  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\windows\System32\appidsvc.dll
08:46:59.0253 0x0364  AppIDSvc - ok
08:46:59.0300 0x0364  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\windows\System32\appinfo.dll
08:46:59.0300 0x0364  Appinfo - ok
08:46:59.0394 0x0364  [ F518545E5B7623AD49ABE7F8776EFA46, CD39B6EC0D80C6DB857F34D4AC5C31085271B51B8851A56FEFC052B20B7CC40C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
08:46:59.0394 0x0364  Apple Mobile Device - ok
08:46:59.0456 0x0364  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\windows\system32\DRIVERS\arc.sys
08:46:59.0456 0x0364  arc - ok
08:46:59.0487 0x0364  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\windows\system32\DRIVERS\arcsas.sys
08:46:59.0487 0x0364  arcsas - ok
08:46:59.0643 0x0364  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:46:59.0675 0x0364  aspnet_state - ok
08:46:59.0753 0x0364  [ C04F7B373881009D7994D9BF55D24AB4, 5DEEA804F4F9862024F40A204E88DBCFFBDD2DC87CA86145E3FB649CFCCDC624 ] aswRvrt         C:\windows\system32\drivers\aswRvrt.sys
08:46:59.0753 0x0364  aswRvrt - ok
08:46:59.0831 0x0364  [ FD3EA14ADF6216BDF4030DB2EFD43D96, 2D3009008AAE93285301B5844DC214D6B05ECB05D37AE08895D8E7187A0BB619 ] aswStm          C:\windows\system32\drivers\aswStm.sys
08:46:59.0831 0x0364  aswStm - ok
08:46:59.0862 0x0364  [ 90399625F341AB76BA4B85A5E860EB1F, 92DD461B14240222F451F971642844A4DAD9DF4FFEAA8F12D16EA117822BEEF3 ] aswVmm          C:\windows\system32\drivers\aswVmm.sys
08:46:59.0862 0x0364  aswVmm - ok
08:46:59.0909 0x0364  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
08:46:59.0909 0x0364  AsyncMac - ok
08:46:59.0987 0x0364  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\windows\system32\drivers\atapi.sys
08:46:59.0987 0x0364  atapi - ok
08:47:00.0049 0x0364  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
08:47:00.0065 0x0364  AudioEndpointBuilder - ok
08:47:00.0096 0x0364  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\windows\System32\Audiosrv.dll
08:47:00.0111 0x0364  AudioSrv - ok
08:47:00.0174 0x0364  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\windows\System32\AxInstSV.dll
08:47:00.0189 0x0364  AxInstSV - ok
08:47:00.0236 0x0364  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\windows\system32\DRIVERS\bxvbda.sys
08:47:00.0252 0x0364  b06bdrv - ok
08:47:00.0314 0x0364  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
08:47:00.0330 0x0364  b57nd60a - ok
08:47:00.0377 0x0364  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\windows\System32\bdesvc.dll
08:47:00.0377 0x0364  BDESVC - ok
08:47:00.0392 0x0364  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\windows\system32\drivers\Beep.sys
08:47:00.0392 0x0364  Beep - ok
08:47:00.0486 0x0364  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\windows\System32\bfe.dll
08:47:00.0517 0x0364  BFE - ok
08:47:00.0579 0x0364  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\windows\System32\qmgr.dll
08:47:00.0595 0x0364  BITS - ok
08:47:00.0626 0x0364  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
08:47:00.0626 0x0364  blbdrive - ok
08:47:00.0767 0x0364  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
08:47:00.0782 0x0364  Bonjour Service - ok
08:47:00.0845 0x0364  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
08:47:00.0845 0x0364  bowser - ok
08:47:00.0876 0x0364  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\windows\system32\DRIVERS\BrFiltLo.sys
08:47:00.0876 0x0364  BrFiltLo - ok
08:47:00.0923 0x0364  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\windows\system32\DRIVERS\BrFiltUp.sys
08:47:00.0923 0x0364  BrFiltUp - ok
08:47:00.0954 0x0364  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\windows\system32\DRIVERS\bridge.sys
08:47:00.0954 0x0364  BridgeMP - ok
08:47:01.0001 0x0364  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\windows\System32\browser.dll
08:47:01.0001 0x0364  Browser - ok
08:47:01.0047 0x0364  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\windows\System32\Drivers\Brserid.sys
08:47:01.0047 0x0364  Brserid - ok
08:47:01.0063 0x0364  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
08:47:01.0079 0x0364  BrSerWdm - ok
08:47:01.0110 0x0364  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
08:47:01.0110 0x0364  BrUsbMdm - ok
08:47:01.0125 0x0364  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
08:47:01.0141 0x0364  BrUsbSer - ok
08:47:01.0203 0x0364  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\windows\system32\drivers\BthEnum.sys
08:47:01.0203 0x0364  BthEnum - ok
08:47:01.0219 0x0364  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\windows\system32\DRIVERS\bthmodem.sys
08:47:01.0219 0x0364  BTHMODEM - ok
08:47:01.0250 0x0364  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\windows\system32\DRIVERS\bthpan.sys
08:47:01.0250 0x0364  BthPan - ok
08:47:01.0313 0x0364  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\windows\System32\Drivers\BTHport.sys
08:47:01.0328 0x0364  BTHPORT - ok
08:47:01.0375 0x0364  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\windows\system32\bthserv.dll
08:47:01.0375 0x0364  bthserv - ok
08:47:01.0391 0x0364  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\windows\System32\Drivers\BTHUSB.sys
08:47:01.0406 0x0364  BTHUSB - ok
08:47:01.0437 0x0364  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
08:47:01.0437 0x0364  cdfs - ok
08:47:01.0500 0x0364  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\windows\system32\drivers\cdrom.sys
08:47:01.0500 0x0364  cdrom - ok
08:47:01.0547 0x0364  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\windows\System32\certprop.dll
08:47:01.0547 0x0364  CertPropSvc - ok
08:47:01.0578 0x0364  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\windows\system32\DRIVERS\circlass.sys
08:47:01.0578 0x0364  circlass - ok
08:47:01.0609 0x0364  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\windows\system32\CLFS.sys
08:47:01.0625 0x0364  CLFS - ok
08:47:01.0687 0x0364  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:47:01.0687 0x0364  clr_optimization_v2.0.50727_32 - ok
08:47:01.0718 0x0364  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:47:01.0718 0x0364  clr_optimization_v2.0.50727_64 - ok
08:47:01.0812 0x0364  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:47:01.0890 0x0364  clr_optimization_v4.0.30319_32 - ok
08:47:01.0905 0x0364  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:47:01.0937 0x0364  clr_optimization_v4.0.30319_64 - ok
08:47:01.0983 0x0364  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
08:47:01.0983 0x0364  CmBatt - ok
08:47:02.0015 0x0364  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\windows\system32\drivers\cmdide.sys
08:47:02.0015 0x0364  cmdide - ok
08:47:02.0077 0x0364  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\windows\system32\Drivers\cng.sys
08:47:02.0093 0x0364  CNG - ok
08:47:02.0124 0x0364  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\windows\system32\DRIVERS\compbatt.sys
08:47:02.0124 0x0364  Compbatt - ok
08:47:02.0171 0x0364  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\windows\system32\drivers\CompositeBus.sys
08:47:02.0171 0x0364  CompositeBus - ok
08:47:02.0186 0x0364  COMSysApp - ok
08:47:02.0217 0x0364  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\windows\system32\DRIVERS\crcdisk.sys
08:47:02.0217 0x0364  crcdisk - ok
08:47:02.0264 0x0364  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\windows\system32\cryptsvc.dll
08:47:02.0264 0x0364  CryptSvc - ok
08:47:02.0327 0x0364  [ C6E1C081C0849E08FECEC18DF73B10C4, B5E552F4744C91836CBAF3F62CB861C1D9422721870D11B5CCE21B45E384985A ] dc3d            C:\windows\system32\DRIVERS\dc3d.sys
08:47:02.0327 0x0364  dc3d - ok
08:47:02.0405 0x0364  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\windows\system32\rpcss.dll
08:47:02.0420 0x0364  DcomLaunch - ok
08:47:02.0451 0x0364  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\windows\System32\defragsvc.dll
08:47:02.0467 0x0364  defragsvc - ok
08:47:02.0514 0x0364  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\windows\system32\Drivers\dfsc.sys
08:47:02.0514 0x0364  DfsC - ok
08:47:02.0561 0x0364  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\windows\system32\dhcpcore.dll
08:47:02.0576 0x0364  Dhcp - ok
08:47:02.0607 0x0364  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\windows\system32\drivers\discache.sys
08:47:02.0623 0x0364  discache - ok
08:47:02.0670 0x0364  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\windows\system32\DRIVERS\disk.sys
08:47:02.0670 0x0364  Disk - ok
08:47:02.0732 0x0364  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\windows\System32\dnsrslvr.dll
08:47:02.0732 0x0364  Dnscache - ok
08:47:02.0795 0x0364  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\windows\System32\dot3svc.dll
08:47:02.0795 0x0364  dot3svc - ok
08:47:02.0841 0x0364  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\windows\system32\dps.dll
08:47:02.0857 0x0364  DPS - ok
08:47:02.0904 0x0364  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
08:47:02.0904 0x0364  drmkaud - ok
08:47:02.0982 0x0364  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
08:47:02.0997 0x0364  DXGKrnl - ok
08:47:03.0044 0x0364  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\windows\System32\eapsvc.dll
08:47:03.0060 0x0364  EapHost - ok
08:47:03.0216 0x0364  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\windows\system32\DRIVERS\evbda.sys
08:47:03.0372 0x0364  ebdrv - ok
08:47:03.0419 0x0364  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\windows\System32\lsass.exe
08:47:03.0419 0x0364  EFS - ok
08:47:03.0497 0x0364  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
08:47:03.0512 0x0364  ehRecvr - ok
08:47:03.0543 0x0364  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\windows\ehome\ehsched.exe
08:47:03.0543 0x0364  ehSched - ok
08:47:03.0590 0x0364  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\windows\system32\DRIVERS\elxstor.sys
08:47:03.0606 0x0364  elxstor - ok
08:47:03.0637 0x0364  [ 524C79054636D2E5751169005006460B, 1EBA5972E13C5BB07BBD94D6647B86469B4910F60A3C8BDDC6BB5736EF99C9C3 ] enecir          C:\windows\system32\DRIVERS\enecir.sys
08:47:03.0637 0x0364  enecir - ok
08:47:03.0668 0x0364  [ E17EB95358F396E27D573A1B20F891F8, 23D12C2AC2CF7D3441632F1BAF43E9C7554DD9A85F2B08253710DE3C7555B540 ] enecirhid       C:\windows\system32\DRIVERS\enecirhid.sys
08:47:03.0668 0x0364  enecirhid - ok
08:47:03.0699 0x0364  [ 8492D808C79BD6FE439F77BE84956CDF, 8B2D14C5A7FFA72144E1113B4DDAD7F1258F707442EDE0E4EF3CBB72886EFE8E ] enecirhidma     C:\windows\system32\DRIVERS\enecirhidma.sys
08:47:03.0699 0x0364  enecirhidma - ok
08:47:03.0746 0x0364  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\windows\system32\drivers\errdev.sys
08:47:03.0746 0x0364  ErrDev - ok
08:47:03.0840 0x0364  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\windows\system32\es.dll
08:47:03.0855 0x0364  EventSystem - ok
08:47:03.0887 0x0364  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\windows\system32\drivers\exfat.sys
08:47:03.0887 0x0364  exfat - ok
08:47:03.0918 0x0364  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\windows\system32\drivers\fastfat.sys
08:47:03.0933 0x0364  fastfat - ok
08:47:03.0996 0x0364  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\windows\system32\fxssvc.exe
08:47:04.0011 0x0364  Fax - ok
08:47:04.0027 0x0364  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\windows\system32\DRIVERS\fdc.sys
08:47:04.0027 0x0364  fdc - ok
08:47:04.0074 0x0364  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\windows\system32\fdPHost.dll
08:47:04.0074 0x0364  fdPHost - ok
08:47:04.0089 0x0364  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\windows\system32\fdrespub.dll
08:47:04.0089 0x0364  FDResPub - ok
08:47:04.0105 0x0364  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
08:47:04.0105 0x0364  FileInfo - ok
08:47:04.0121 0x0364  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
08:47:04.0121 0x0364  Filetrace - ok
08:47:04.0152 0x0364  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\windows\system32\DRIVERS\flpydisk.sys
08:47:04.0152 0x0364  flpydisk - ok
08:47:04.0214 0x0364  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
08:47:04.0214 0x0364  FltMgr - ok
08:47:04.0308 0x0364  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\windows\system32\FntCache.dll
08:47:04.0339 0x0364  FontCache - ok
08:47:04.0401 0x0364  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:47:04.0401 0x0364  FontCache3.0.0.0 - ok
08:47:04.0417 0x0364  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
08:47:04.0433 0x0364  FsDepends - ok
08:47:04.0464 0x0364  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
08:47:04.0464 0x0364  Fs_Rec - ok
08:47:04.0542 0x0364  [ 6CCF66BCA3D24146CB8B0930DBA1448F, 89BAD905F7836D8606A734D8582A42566F9D36DAD04FEF87D5C5BFD7C4508EFB ] funfrm          C:\windows\system32\drivers\funfrm.sys
08:47:04.0542 0x0364  funfrm - ok
08:47:04.0620 0x0364  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
08:47:04.0620 0x0364  fvevol - ok
08:47:04.0651 0x0364  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\windows\system32\DRIVERS\gagp30kx.sys
08:47:04.0651 0x0364  gagp30kx - ok
08:47:04.0698 0x0364  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
08:47:04.0698 0x0364  GEARAspiWDM - ok
08:47:04.0776 0x0364  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\windows\System32\gpsvc.dll
08:47:04.0791 0x0364  gpsvc - ok
08:47:04.0916 0x0364  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:47:04.0916 0x0364  gupdate - ok
08:47:04.0947 0x0364  [ 8F0DE4FEF8201E306F9938B0905AC96A, CA7153FE0C037D79FBF7CE0E090D741FB52BCCBBBD4CA505EF4849A0C4199F72 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:47:04.0963 0x0364  gupdatem - ok
08:47:05.0010 0x0364  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
08:47:05.0010 0x0364  gusvc - ok
08:47:05.0041 0x0364  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
08:47:05.0041 0x0364  hcw85cir - ok
08:47:05.0119 0x0364  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
08:47:05.0135 0x0364  HdAudAddService - ok
08:47:05.0150 0x0364  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\windows\system32\drivers\HDAudBus.sys
08:47:05.0166 0x0364  HDAudBus - ok
08:47:05.0181 0x0364  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\windows\system32\DRIVERS\HidBatt.sys
08:47:05.0181 0x0364  HidBatt - ok
08:47:05.0213 0x0364  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\windows\system32\DRIVERS\hidbth.sys
08:47:05.0213 0x0364  HidBth - ok
08:47:05.0244 0x0364  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\windows\system32\DRIVERS\hidir.sys
08:47:05.0244 0x0364  HidIr - ok
08:47:05.0275 0x0364  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\windows\System32\hidserv.dll
08:47:05.0275 0x0364  hidserv - ok
08:47:05.0337 0x0364  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
08:47:05.0337 0x0364  HidUsb - ok
08:47:05.0384 0x0364  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\windows\system32\kmsvc.dll
08:47:05.0384 0x0364  hkmsvc - ok
08:47:05.0447 0x0364  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
08:47:05.0447 0x0364  HomeGroupListener - ok
08:47:05.0493 0x0364  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
08:47:05.0493 0x0364  HomeGroupProvider - ok
08:47:05.0540 0x0364  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
08:47:05.0540 0x0364  HpSAMD - ok
08:47:05.0618 0x0364  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\windows\system32\drivers\HTTP.sys
08:47:05.0634 0x0364  HTTP - ok
08:47:05.0681 0x0364  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
08:47:05.0681 0x0364  hwpolicy - ok
08:47:05.0727 0x0364  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\windows\system32\drivers\i8042prt.sys
08:47:05.0743 0x0364  i8042prt - ok
08:47:05.0790 0x0364  [ 0E899D0DB39617AA0B2F992E7E95B5EB, 214AA4A0F298BB97C9DC6CB0496D566519C45C1092CE2C5BF92E5FFB8E4B6FA3 ] IAANTMON        C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe
08:47:05.0790 0x0364  IAANTMON - ok
08:47:05.0837 0x0364  [ BBB3B6DF1ABB0FE35802EDE85CC1C011, 6E1FA8519A7D417969244E807D2863B39656169A925966045036A989A5EB611D ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
08:47:05.0852 0x0364  iaStor - ok
08:47:05.0899 0x0364  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
08:47:05.0915 0x0364  iaStorV - ok
08:47:06.0008 0x0364  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
08:47:06.0024 0x0364  IDriverT - ok
08:47:06.0102 0x0364  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:47:06.0117 0x0364  idsvc - ok
08:47:06.0164 0x0364  IEEtwCollectorService - ok
08:47:06.0414 0x0364  [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
08:47:06.0663 0x0364  igfx - ok
08:47:06.0710 0x0364  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\windows\system32\DRIVERS\iirsp.sys
08:47:06.0710 0x0364  iirsp - ok
08:47:06.0788 0x0364  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\windows\System32\ikeext.dll
08:47:06.0819 0x0364  IKEEXT - ok
08:47:06.0929 0x0364  [ BC64B75E8E0A0B8982AB773483164E72, BF7CB0DEAAF78E20EA56B50FC177E99538FC4F29DA018D98E4286D122789435D ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
08:47:06.0991 0x0364  IntcAzAudAddService - ok
08:47:07.0038 0x0364  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\windows\system32\drivers\intelide.sys
08:47:07.0038 0x0364  intelide - ok
08:47:07.0053 0x0364  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
08:47:07.0053 0x0364  intelppm - ok
08:47:07.0085 0x0364  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\windows\system32\ipbusenum.dll
08:47:07.0085 0x0364  IPBusEnum - ok
08:47:07.0147 0x0364  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
08:47:07.0147 0x0364  IpFilterDriver - ok
08:47:07.0209 0x0364  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
08:47:07.0225 0x0364  iphlpsvc - ok
08:47:07.0272 0x0364  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
08:47:07.0272 0x0364  IPMIDRV - ok
08:47:07.0319 0x0364  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\windows\system32\drivers\ipnat.sys
08:47:07.0319 0x0364  IPNAT - ok
08:47:07.0412 0x0364  [ F7ED08D4BC89D7AC6135C1556A89157F, 8F15F1E528F6513FCEF5D966880CBA8A2C7A4816393393F4B201CDD6227F36A3 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
08:47:07.0428 0x0364  iPod Service - ok
08:47:07.0443 0x0364  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\windows\system32\drivers\irenum.sys
08:47:07.0443 0x0364  IRENUM - ok
08:47:07.0490 0x0364  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\windows\system32\drivers\isapnp.sys
08:47:07.0490 0x0364  isapnp - ok
08:47:07.0537 0x0364  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
08:47:07.0537 0x0364  iScsiPrt - ok
08:47:07.0584 0x0364  [ 08DD34F74D65E1C8F238565570952630, CD58D4A05AE191A60FC4A1D6D11EF86885A600F42607BFD57895F8611A1F7A23 ] k57nd60a        C:\windows\system32\DRIVERS\k57nd60a.sys
08:47:07.0584 0x0364  k57nd60a - ok
08:47:07.0615 0x0364  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
08:47:07.0615 0x0364  kbdclass - ok
08:47:07.0631 0x0364  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys
08:47:07.0631 0x0364  kbdhid - ok
08:47:07.0646 0x0364  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\windows\system32\lsass.exe
08:47:07.0646 0x0364  KeyIso - ok
08:47:07.0693 0x0364  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
08:47:07.0693 0x0364  KSecDD - ok
08:47:07.0709 0x0364  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
08:47:07.0709 0x0364  KSecPkg - ok
08:47:07.0740 0x0364  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
08:47:07.0755 0x0364  ksthunk - ok
08:47:07.0787 0x0364  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\windows\system32\msdtckrm.dll
08:47:07.0802 0x0364  KtmRm - ok
08:47:07.0896 0x0364  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\windows\System32\srvsvc.dll
08:47:07.0911 0x0364  LanmanServer - ok
08:47:07.0958 0x0364  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
08:47:07.0958 0x0364  LanmanWorkstation - ok
08:47:08.0021 0x0364  [ 76CBD1FAC76653A6B57F8E1C641E50A0, F5D514BEBF8647953078ECF83EE9F7DA88C5D9C8687C2CD8E6B46324F35CFCE0 ] libusb0         C:\windows\system32\DRIVERS\libusb0.sys
08:47:08.0021 0x0364  libusb0 - ok
08:47:08.0052 0x0364  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
08:47:08.0067 0x0364  lltdio - ok
08:47:08.0099 0x0364  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\windows\System32\lltdsvc.dll
08:47:08.0099 0x0364  lltdsvc - ok
08:47:08.0130 0x0364  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\windows\System32\lmhsvc.dll
08:47:08.0130 0x0364  lmhosts - ok
08:47:08.0223 0x0364  [ 2098AF12149789FA6608422C8796F77C, 600772098454156ECC9CD7633BD503FC3FA3124C991B6AE4EF6BE6FD3EDE5ADA ] LNSUSvc         C:\Program Files (x86)\IBM\Lotus\Notes\SUService.exe
08:47:08.0239 0x0364  LNSUSvc - ok
08:47:08.0411 0x0364  [ E4FA829273FDF5BD20FC9804FD5F9C20, 8BBFCB4308EED3926462101739AF44B9A0D82BD7721D9D5DA54E8DF23C981BCC ] Lotus Notes Diagnostics C:\Program Files (x86)\IBM\Lotus\Notes\nsd.exe
08:47:08.0567 0x0364  Lotus Notes Diagnostics - ok
08:47:08.0613 0x0364  [ 16679269303613C4CE7C8FF03413410F, 4DECDD4C07878F30670ADB650EA1591EFFF419C0B629C72A5960158890A28BC7 ] LPCFilter       C:\windows\system32\DRIVERS\LPCFilter.sys
08:47:08.0613 0x0364  LPCFilter - ok
08:47:08.0645 0x0364  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\windows\system32\DRIVERS\lsi_fc.sys
08:47:08.0645 0x0364  LSI_FC - ok
08:47:08.0691 0x0364  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\windows\system32\DRIVERS\lsi_sas.sys
08:47:08.0691 0x0364  LSI_SAS - ok
08:47:08.0738 0x0364  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\windows\system32\DRIVERS\lsi_sas2.sys
08:47:08.0738 0x0364  LSI_SAS2 - ok
08:47:08.0754 0x0364  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\windows\system32\DRIVERS\lsi_scsi.sys
08:47:08.0769 0x0364  LSI_SCSI - ok
08:47:08.0801 0x0364  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\windows\system32\drivers\luafv.sys
08:47:08.0801 0x0364  luafv - ok
08:47:08.0847 0x0364  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
08:47:08.0847 0x0364  Mcx2Svc - ok
08:47:08.0879 0x0364  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\windows\system32\DRIVERS\megasas.sys
08:47:08.0879 0x0364  megasas - ok
08:47:08.0910 0x0364  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\windows\system32\DRIVERS\MegaSR.sys
08:47:08.0910 0x0364  MegaSR - ok
08:47:08.0941 0x0364  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\windows\system32\mmcss.dll
08:47:08.0941 0x0364  MMCSS - ok
08:47:08.0972 0x0364  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\windows\system32\drivers\modem.sys
08:47:08.0988 0x0364  Modem - ok
08:47:09.0003 0x0364  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\windows\system32\DRIVERS\monitor.sys
08:47:09.0003 0x0364  monitor - ok
08:47:09.0050 0x0364  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
08:47:09.0050 0x0364  mouclass - ok
08:47:09.0066 0x0364  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
08:47:09.0066 0x0364  mouhid - ok
08:47:09.0113 0x0364  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
08:47:09.0113 0x0364  mountmgr - ok
08:47:09.0175 0x0364  [ 338037EFA0E8E8699B2667D57B751574, 59E0D39806D0C4EB57913AA013242837FD39AD378726AEE42D250CBA87C1C3BF ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
08:47:09.0175 0x0364  MozillaMaintenance - ok
08:47:09.0191 0x0364  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\windows\system32\drivers\mpio.sys
08:47:09.0206 0x0364  mpio - ok
08:47:09.0237 0x0364  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
08:47:09.0237 0x0364  mpsdrv - ok
08:47:09.0315 0x0364  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\windows\system32\mpssvc.dll
08:47:09.0347 0x0364  MpsSvc - ok
08:47:09.0378 0x0364  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
08:47:09.0393 0x0364  MRxDAV - ok
08:47:09.0440 0x0364  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
08:47:09.0440 0x0364  mrxsmb - ok
08:47:09.0487 0x0364  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
08:47:09.0503 0x0364  mrxsmb10 - ok
08:47:09.0518 0x0364  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
08:47:09.0518 0x0364  mrxsmb20 - ok
08:47:09.0565 0x0364  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\windows\system32\drivers\msahci.sys
08:47:09.0565 0x0364  msahci - ok
08:47:09.0612 0x0364  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\windows\system32\drivers\msdsm.sys
08:47:09.0612 0x0364  msdsm - ok
08:47:09.0627 0x0364  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\windows\System32\msdtc.exe
08:47:09.0627 0x0364  MSDTC - ok
08:47:09.0659 0x0364  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\windows\system32\drivers\Msfs.sys
08:47:09.0659 0x0364  Msfs - ok
08:47:09.0674 0x0364  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
08:47:09.0674 0x0364  mshidkmdf - ok
08:47:09.0690 0x0364  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
08:47:09.0705 0x0364  msisadrv - ok
08:47:09.0737 0x0364  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
08:47:09.0737 0x0364  MSiSCSI - ok
08:47:09.0752 0x0364  msiserver - ok
08:47:09.0783 0x0364  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
08:47:09.0783 0x0364  MSKSSRV - ok
08:47:09.0799 0x0364  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
08:47:09.0799 0x0364  MSPCLOCK - ok
08:47:09.0799 0x0364  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
08:47:09.0799 0x0364  MSPQM - ok
08:47:09.0861 0x0364  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
08:47:09.0877 0x0364  MsRPC - ok
08:47:09.0924 0x0364  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\windows\system32\drivers\mssmbios.sys
08:47:09.0924 0x0364  mssmbios - ok
08:47:10.0002 0x0364  MSSQL$ACT7 - ok
08:47:10.0111 0x0364  [ 04EF36EAF5C4DBCE424D81B76F1E9231, ABA97C3004903852357264291613649D823F5BB24806E6CF9952AB3AA0E97C15 ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
08:47:10.0111 0x0364  MSSQLServerADHelper100 - ok
08:47:10.0158 0x0364  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
08:47:10.0158 0x0364  MSTEE - ok
08:47:10.0189 0x0364  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\windows\system32\DRIVERS\MTConfig.sys
08:47:10.0189 0x0364  MTConfig - ok
08:47:10.0205 0x0364  [ FF54EA1617D15711690D5EF054512C21, 68A51E039B8B52B4712FE0B5C5784C884D72E6DA6FE4427E176A29F3B99EE8E9 ] Multi-user Cleanup Service C:\Program Files (x86)\IBM\Lotus\Notes\ntmulti.exe
08:47:10.0220 0x0364  Multi-user Cleanup Service - ok
08:47:10.0236 0x0364  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\windows\system32\Drivers\mup.sys
08:47:10.0236 0x0364  Mup - ok
08:47:10.0298 0x0364  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\windows\system32\qagentRT.dll
08:47:10.0314 0x0364  napagent - ok
08:47:10.0361 0x0364  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
08:47:10.0376 0x0364  NativeWifiP - ok
08:47:10.0439 0x0364  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\windows\system32\drivers\ndis.sys
08:47:10.0470 0x0364  NDIS - ok
08:47:10.0517 0x0364  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
08:47:10.0517 0x0364  NdisCap - ok
08:47:10.0532 0x0364  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
08:47:10.0532 0x0364  NdisTapi - ok
08:47:10.0595 0x0364  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
08:47:10.0595 0x0364  Ndisuio - ok
08:47:10.0626 0x0364  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
08:47:10.0641 0x0364  NdisWan - ok
08:47:10.0673 0x0364  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
08:47:10.0673 0x0364  NDProxy - ok
08:47:10.0704 0x0364  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
08:47:10.0704 0x0364  NetBIOS - ok
08:47:10.0766 0x0364  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
08:47:10.0766 0x0364  NetBT - ok
08:47:10.0782 0x0364  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\windows\system32\lsass.exe
08:47:10.0782 0x0364  Netlogon - ok
08:47:10.0813 0x0364  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\windows\System32\netman.dll
08:47:10.0829 0x0364  Netman - ok
08:47:10.0891 0x0364  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:47:10.0891 0x0364  NetMsmqActivator - ok
08:47:10.0907 0x0364  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:47:10.0907 0x0364  NetPipeActivator - ok
08:47:10.0938 0x0364  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\windows\System32\netprofm.dll
08:47:10.0953 0x0364  netprofm - ok
08:47:10.0969 0x0364  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:47:10.0969 0x0364  NetTcpActivator - ok
08:47:10.0969 0x0364  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:47:10.0985 0x0364  NetTcpPortSharing - ok
08:47:11.0250 0x0364  [ 4D85A450EDEF10C38882182753A49AAE, FB6C2D91B2CF834315498BB31F931E2A49066A3158A588FD705F59628DF2F8FC ] NETw5s64        C:\windows\system32\DRIVERS\NETw5s64.sys
08:47:11.0499 0x0364  NETw5s64 - ok
08:47:11.0811 0x0364  [ 705283C02177809CA9FA7CC58A4F1E77, EA723588AA706F3D1E6007B300119AF6A99D1E4FB6B454751F48519191DE26E5 ] netw5v64        C:\windows\system32\DRIVERS\netw5v64.sys
08:47:11.0999 0x0364  netw5v64 - ok
08:47:12.0061 0x0364  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\windows\system32\DRIVERS\nfrd960.sys
08:47:12.0061 0x0364  nfrd960 - ok
08:47:12.0077 0x0364  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\windows\System32\nlasvc.dll
08:47:12.0092 0x0364  NlaSvc - ok
08:47:12.0155 0x0364  [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] NPF             C:\windows\system32\drivers\npf.sys
08:47:12.0155 0x0364  NPF - ok
08:47:12.0170 0x0364  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\windows\system32\drivers\Npfs.sys
08:47:12.0170 0x0364  Npfs - ok
08:47:12.0201 0x0364  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\windows\system32\nsisvc.dll
08:47:12.0201 0x0364  nsi - ok
08:47:12.0217 0x0364  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
08:47:12.0217 0x0364  nsiproxy - ok
08:47:12.0326 0x0364  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
08:47:12.0373 0x0364  Ntfs - ok
08:47:12.0404 0x0364  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\windows\system32\drivers\Null.sys
08:47:12.0404 0x0364  Null - ok
08:47:12.0451 0x0364  [ 554964B900AE2954B8B589B6287034AC, C6C9EA3ADAFEBBF2AF944E4A0656BD795AD37706008CC0CA3F2150BD709476E7 ] NVHDA           C:\windows\system32\drivers\nvhda64v.sys
08:47:12.0451 0x0364  NVHDA - ok
08:47:12.0919 0x0364  [ 9B93CC9C70EDE60A9C486E7719DB9E8D, 8E31BE72797D3308D8AF136E9F4C6199BCF4592F88E9FEB361752FF768225EC9 ] nvlddmkm        C:\windows\system32\DRIVERS\nvlddmkm.sys
08:47:13.0137 0x0364  nvlddmkm - ok
08:47:13.0215 0x0364  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\windows\system32\drivers\nvraid.sys
08:47:13.0215 0x0364  nvraid - ok
08:47:13.0262 0x0364  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\windows\system32\drivers\nvstor.sys
08:47:13.0262 0x0364  nvstor - ok
08:47:13.0356 0x0364  [ FB50E60564ED30DDC855F0CE435C8467, C9A56D74F58739B8A069336FF5456FC5F3CE89371B8CFE8144B8D06A9C79C6AB ] nvsvc           C:\windows\system32\nvvsvc.exe
08:47:13.0387 0x0364  nvsvc - ok
08:47:13.0496 0x0364  [ C63E582366EAD77978BFFD959A66DBB8, BBAC11300AFED29291A08EEC8A740DA67C8C003AF89D06F9E0671CCF0E7908A0 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
08:47:13.0543 0x0364  nvUpdatusService - ok
08:47:13.0543 0x0364  nvvad_WaveExtensible - ok
08:47:13.0590 0x0364  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
08:47:13.0590 0x0364  nv_agp - ok
08:47:13.0637 0x0364  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
08:47:13.0637 0x0364  ohci1394 - ok
08:47:13.0715 0x0364  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
08:47:13.0715 0x0364  ose - ok
08:47:13.0995 0x0364  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
08:47:14.0229 0x0364  osppsvc - ok
08:47:14.0307 0x0364  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
08:47:14.0307 0x0364  p2pimsvc - ok
08:47:14.0339 0x0364  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\windows\system32\p2psvc.dll
08:47:14.0354 0x0364  p2psvc - ok
08:47:14.0370 0x0364  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\windows\system32\DRIVERS\parport.sys
08:47:14.0370 0x0364  Parport - ok
08:47:14.0417 0x0364  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\windows\system32\drivers\partmgr.sys
08:47:14.0417 0x0364  partmgr - ok
08:47:14.0448 0x0364  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\windows\System32\pcasvc.dll
08:47:14.0463 0x0364  PcaSvc - ok
08:47:14.0495 0x0364  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\windows\system32\drivers\pci.sys
08:47:14.0510 0x0364  pci - ok
08:47:14.0557 0x0364  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\windows\system32\drivers\pciide.sys
08:47:14.0557 0x0364  pciide - ok
08:47:14.0588 0x0364  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\windows\system32\DRIVERS\pcmcia.sys
08:47:14.0588 0x0364  pcmcia - ok
08:47:14.0604 0x0364  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\windows\system32\drivers\pcw.sys
08:47:14.0604 0x0364  pcw - ok
08:47:14.0651 0x0364  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\windows\system32\drivers\peauth.sys
08:47:14.0666 0x0364  PEAUTH - ok
08:47:14.0729 0x0364  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\windows\SysWow64\perfhost.exe
08:47:14.0744 0x0364  PerfHost - ok
08:47:14.0822 0x0364  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\windows\system32\pla.dll
08:47:14.0869 0x0364  pla - ok
08:47:14.0947 0x0364  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
08:47:14.0947 0x0364  PlugPlay - ok
08:47:14.0978 0x0364  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
08:47:14.0978 0x0364  PNRPAutoReg - ok
08:47:15.0009 0x0364  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
08:47:15.0025 0x0364  PNRPsvc - ok
08:47:15.0072 0x0364  [ 4F0878FD62D5F7444C5F1C4C66D9D293, B381217D6202C06EE992EBDE061FA20376FF71F698022D0A80168CCD1059453C ] Point64         C:\windows\system32\DRIVERS\point64.sys
08:47:15.0072 0x0364  Point64 - ok
08:47:15.0134 0x0364  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
08:47:15.0150 0x0364  PolicyAgent - ok
08:47:15.0197 0x0364  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\windows\system32\umpo.dll
08:47:15.0197 0x0364  Power - ok
08:47:15.0259 0x0364  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
08:47:15.0259 0x0364  PptpMiniport - ok
08:47:15.0290 0x0364  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\windows\system32\DRIVERS\processr.sys
08:47:15.0290 0x0364  Processor - ok
08:47:15.0337 0x0364  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\windows\system32\profsvc.dll
08:47:15.0353 0x0364  ProfSvc - ok
08:47:15.0353 0x0364  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\windows\system32\lsass.exe
08:47:15.0368 0x0364  ProtectedStorage - ok
08:47:15.0415 0x0364  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
08:47:15.0415 0x0364  Psched - ok
08:47:15.0477 0x0364  [ E0D0CB09AA07B22BE984E4F7EC0326F5, C3302AFE28E7128DC5E76CDDA82F9AA0E135201775189136DCA2ABDBB52F0AAE ] PSI_SVC_2       C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
08:47:15.0477 0x0364  PSI_SVC_2 - ok
08:47:15.0555 0x0364  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\windows\system32\DRIVERS\ql2300.sys
08:47:15.0602 0x0364  ql2300 - ok
08:47:15.0633 0x0364  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\windows\system32\DRIVERS\ql40xx.sys
08:47:15.0633 0x0364  ql40xx - ok
08:47:15.0665 0x0364  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\windows\system32\qwave.dll
08:47:15.0680 0x0364  QWAVE - ok
08:47:15.0696 0x0364  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
08:47:15.0696 0x0364  QWAVEdrv - ok
08:47:15.0711 0x0364  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
08:47:15.0711 0x0364  RasAcd - ok
08:47:15.0743 0x0364  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
08:47:15.0743 0x0364  RasAgileVpn - ok
08:47:15.0774 0x0364  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\windows\System32\rasauto.dll
08:47:15.0774 0x0364  RasAuto - ok
08:47:15.0805 0x0364  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
08:47:15.0821 0x0364  Rasl2tp - ok
08:47:15.0867 0x0364  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\windows\System32\rasmans.dll
08:47:15.0883 0x0364  RasMan - ok
08:47:15.0899 0x0364  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
08:47:15.0914 0x0364  RasPppoe - ok
08:47:15.0930 0x0364  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
08:47:15.0930 0x0364  RasSstp - ok
08:47:15.0977 0x0364  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
08:47:15.0992 0x0364  rdbss - ok
08:47:16.0008 0x0364  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\windows\system32\DRIVERS\rdpbus.sys
08:47:16.0008 0x0364  rdpbus - ok
08:47:16.0023 0x0364  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
08:47:16.0023 0x0364  RDPCDD - ok
08:47:16.0039 0x0364  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
08:47:16.0039 0x0364  RDPENCDD - ok
08:47:16.0055 0x0364  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
08:47:16.0055 0x0364  RDPREFMP - ok
08:47:16.0117 0x0364  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
08:47:16.0133 0x0364  RdpVideoMiniport - ok
08:47:16.0164 0x0364  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
08:47:16.0179 0x0364  RDPWD - ok
08:47:16.0226 0x0364  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
08:47:16.0226 0x0364  rdyboost - ok
08:47:16.0257 0x0364  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\windows\System32\mprdim.dll
08:47:16.0273 0x0364  RemoteAccess - ok
08:47:16.0304 0x0364  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\windows\system32\regsvc.dll
08:47:16.0304 0x0364  RemoteRegistry - ok
08:47:16.0351 0x0364  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\windows\system32\DRIVERS\rfcomm.sys
08:47:16.0351 0x0364  RFCOMM - ok
08:47:16.0413 0x0364  [ AD42432D22940B4215177BE113E4919C, BF04E1F942846B928E523727EB03BBFA83FCE535CF7C0A4E787A5CBA46D5BF8D ] RimUsb          C:\windows\system32\Drivers\RimUsb_AMD64.sys
08:47:16.0413 0x0364  RimUsb - ok
08:47:16.0460 0x0364  [ 4AAFFFA67AC4DFA3D9985D78573887E2, A2A4623A1DFA3C1BF0B09390F3731AFF5616BF9E9144F5DEEAA89B37E445D834 ] RimVSerPort     C:\windows\system32\DRIVERS\RimSerial_AMD64.sys
08:47:16.0460 0x0364  RimVSerPort - ok
08:47:16.0476 0x0364  [ 388D3DD1A6457280F3BADBA9F3ACD6B1, 5C534EA15195B1301C917904627AF09FE2ABA3FEE1641B5C87E8F3191BC49058 ] ROOTMODEM       C:\windows\system32\Drivers\RootMdm.sys
08:47:16.0476 0x0364  ROOTMODEM - ok
08:47:16.0538 0x0364  [ B60F58F175DE20A6739194E85B035178, 6E66D6041AF0B69896E4556F9FF3A3AA70CF4B09FFBE68E14E60313C5E3FFDDB ] rpcapd          C:\Program Files (x86)\WinPcap\rpcapd.exe
08:47:16.0538 0x0364  rpcapd - ok
08:47:16.0569 0x0364  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
08:47:16.0569 0x0364  RpcEptMapper - ok
08:47:16.0601 0x0364  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\windows\system32\locator.exe
08:47:16.0601 0x0364  RpcLocator - ok
08:47:16.0663 0x0364  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\windows\system32\rpcss.dll
08:47:16.0679 0x0364  RpcSs - ok
08:47:16.0772 0x0364  [ C606C5F712A3761896CEFFA4AF6B1268, 8E6411B0E818DF621B7E1AB271684712CAF741C38B57C0609D6978FA0198523C ] RsFx0151        C:\windows\system32\DRIVERS\RsFx0151.sys
08:47:16.0772 0x0364  RsFx0151 - ok
08:47:16.0803 0x0364  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
08:47:16.0803 0x0364  rspndr - ok
08:47:16.0835 0x0364  [ 8C22F21C924413D4E109995F748E18BB, 021369512F4C8F34458E1CD572B3A7F2F9434CB3EA941EBA8E5525263DB38BD7 ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
08:47:16.0850 0x0364  RSUSBSTOR - ok
08:47:16.0866 0x0364  RtsUIR - ok
08:47:16.0866 0x0364  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\windows\system32\lsass.exe
08:47:16.0866 0x0364  SamSs - ok
08:47:16.0928 0x0364  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
08:47:16.0928 0x0364  sbp2port - ok
08:47:16.0959 0x0364  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\windows\System32\SCardSvr.dll
08:47:16.0975 0x0364  SCardSvr - ok
08:47:17.0006 0x0364  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
08:47:17.0006 0x0364  scfilter - ok
08:47:17.0084 0x0364  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\windows\system32\schedsvc.dll
08:47:17.0131 0x0364  Schedule - ok
08:47:17.0162 0x0364  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\windows\System32\certprop.dll
08:47:17.0162 0x0364  SCPolicySvc - ok
08:47:17.0209 0x0364  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\windows\System32\SDRSVC.dll
08:47:17.0225 0x0364  SDRSVC - ok
08:47:17.0256 0x0364  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys
08:47:17.0256 0x0364  secdrv - ok
08:47:17.0303 0x0364  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\windows\system32\seclogon.dll
08:47:17.0303 0x0364  seclogon - ok
08:47:17.0349 0x0364  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\windows\system32\sens.dll
08:47:17.0349 0x0364  SENS - ok
08:47:17.0365 0x0364  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\windows\system32\sensrsvc.dll
08:47:17.0365 0x0364  SensrSvc - ok
08:47:17.0396 0x0364  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\windows\system32\DRIVERS\serenum.sys
08:47:17.0412 0x0364  Serenum - ok
08:47:17.0427 0x0364  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\windows\system32\DRIVERS\serial.sys
08:47:17.0427 0x0364  Serial - ok
08:47:17.0474 0x0364  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\windows\system32\DRIVERS\sermouse.sys
08:47:17.0474 0x0364  sermouse - ok
08:47:17.0537 0x0364  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\windows\system32\sessenv.dll
08:47:17.0537 0x0364  SessionEnv - ok
08:47:17.0583 0x0364  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
08:47:17.0583 0x0364  sffdisk - ok
08:47:17.0599 0x0364  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
08:47:17.0599 0x0364  sffp_mmc - ok
08:47:17.0615 0x0364  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
08:47:17.0615 0x0364  sffp_sd - ok
08:47:17.0646 0x0364  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\windows\system32\DRIVERS\sfloppy.sys
08:47:17.0646 0x0364  sfloppy - ok
08:47:17.0693 0x0364  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\windows\System32\ipnathlp.dll
08:47:17.0708 0x0364  SharedAccess - ok
08:47:17.0771 0x0364  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
08:47:17.0771 0x0364  ShellHWDetection - ok
08:47:17.0817 0x0364  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\windows\system32\DRIVERS\SiSRaid2.sys
08:47:17.0817 0x0364  SiSRaid2 - ok
08:47:17.0849 0x0364  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\windows\system32\DRIVERS\sisraid4.sys
08:47:17.0849 0x0364  SiSRaid4 - ok
08:47:17.0880 0x0364  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\windows\system32\DRIVERS\smb.sys
08:47:17.0895 0x0364  Smb - ok
08:47:17.0942 0x0364  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
08:47:17.0942 0x0364  SNMPTRAP - ok
08:47:17.0958 0x0364  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\windows\system32\drivers\spldr.sys
08:47:17.0958 0x0364  spldr - ok
08:47:18.0020 0x0364  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\windows\System32\spoolsv.exe
08:47:18.0036 0x0364  Spooler - ok
08:47:18.0192 0x0364  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\windows\system32\sppsvc.exe
08:47:18.0317 0x0364  sppsvc - ok
08:47:18.0348 0x0364  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\windows\system32\sppuinotify.dll
08:47:18.0348 0x0364  sppuinotify - ok
08:47:18.0473 0x0364  [ 3420E0482AD95120B471B7328A8D7D08, D3D8C45EC601B59ACBE7FE76B7C8478256DD29ADBF9A22938BFD4098E593B682 ] SQLAgent$ACT7   C:\Program Files\Microsoft SQL Server\MSSQL10_50.ACT7\MSSQL\Binn\SQLAGENT.EXE
08:47:18.0488 0x0364  SQLAgent$ACT7 - ok
08:47:18.0582 0x0364  [ 7D67C07C63796775CC5492BCFEAFF125, BAEFF806F656FA252D1DBC1E21603CF5F7D54C5AFB3FC91F2723729A7740DF8A ] SQLBrowser      C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
08:47:18.0597 0x0364  SQLBrowser - ok
08:47:18.0629 0x0364  [ F98DDFBFE0EE66D4C4B00693512B9527, 322FF75D1CA460368FD72ADCD93273F1D5AA5CF2C4DF65A94BF9ABAA2E695150 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
08:47:18.0629 0x0364  SQLWriter - ok
08:47:18.0691 0x0364  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\windows\system32\DRIVERS\srv.sys
08:47:18.0707 0x0364  srv - ok
08:47:18.0738 0x0364  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
08:47:18.0753 0x0364  srv2 - ok
08:47:18.0769 0x0364  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
08:47:18.0769 0x0364  srvnet - ok
08:47:18.0800 0x0364  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
08:47:18.0816 0x0364  SSDPSRV - ok
08:47:18.0831 0x0364  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\windows\system32\sstpsvc.dll
08:47:18.0831 0x0364  SstpSvc - ok
08:47:18.0909 0x0364  [ 7FCE08C739136C9C64107A8814EF854C, 820E494A401D69E3DA7A8624B2093DCF98198E6D8CCCE345BDF76952EE4ADB07 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
08:47:18.0909 0x0364  Stereo Service - ok
08:47:18.0941 0x0364  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\windows\system32\DRIVERS\stexstor.sys
08:47:18.0941 0x0364  stexstor - ok
08:47:18.0987 0x0364  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\windows\system32\drivers\serscan.sys
08:47:18.0987 0x0364  StillCam - ok
08:47:19.0065 0x0364  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\windows\System32\wiaservc.dll
08:47:19.0081 0x0364  stisvc - ok
08:47:19.0112 0x0364  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\windows\system32\drivers\swenum.sys
08:47:19.0112 0x0364  swenum - ok
08:47:19.0159 0x0364  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\windows\System32\swprv.dll
08:47:19.0175 0x0364  swprv - ok
08:47:19.0221 0x0364  [ 12A35E44D8647985FCDB8D298A590134, 65CF4B5E69CD6B03B004D7E2D5966756DA70E8938DAA698184D58F5E01EA4054 ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
08:47:19.0221 0x0364  SynTP - ok
08:47:19.0331 0x0364  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\windows\system32\sysmain.dll
08:47:19.0377 0x0364  SysMain - ok
08:47:19.0424 0x0364  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
08:47:19.0424 0x0364  TabletInputService - ok
08:47:19.0440 0x0364  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\windows\System32\tapisrv.dll
08:47:19.0455 0x0364  TapiSrv - ok
08:47:19.0487 0x0364  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\windows\System32\tbssvc.dll
08:47:19.0487 0x0364  TBS - ok
08:47:19.0611 0x0364  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\windows\system32\drivers\tcpip.sys
08:47:19.0658 0x0364  Tcpip - ok
08:47:19.0721 0x0364  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
08:47:19.0767 0x0364  TCPIP6 - ok
08:47:19.0814 0x0364  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
08:47:19.0814 0x0364  tcpipreg - ok
08:47:19.0845 0x0364  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
08:47:19.0845 0x0364  TDPIPE - ok
08:47:19.0892 0x0364  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
08:47:19.0892 0x0364  TDTCP - ok
08:47:19.0939 0x0364  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
08:47:19.0939 0x0364  tdx - ok
08:47:19.0986 0x0364  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\windows\system32\drivers\termdd.sys
08:47:19.0986 0x0364  TermDD - ok
08:47:20.0017 0x0364  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\windows\System32\termsrv.dll
08:47:20.0048 0x0364  TermService - ok
08:47:20.0079 0x0364  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\windows\system32\themeservice.dll
08:47:20.0079 0x0364  Themes - ok
08:47:20.0095 0x0364  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\windows\system32\mmcss.dll
08:47:20.0095 0x0364  THREADORDER - ok
08:47:20.0126 0x0364  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\windows\System32\trkwks.dll
08:47:20.0126 0x0364  TrkWks - ok
08:47:20.0189 0x0364  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
08:47:20.0204 0x0364  TrustedInstaller - ok
08:47:20.0235 0x0364  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
08:47:20.0235 0x0364  tssecsrv - ok
08:47:20.0267 0x0364  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
08:47:20.0267 0x0364  TsUsbFlt - ok
08:47:20.0329 0x0364  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
08:47:20.0345 0x0364  tunnel - ok
08:47:20.0360 0x0364  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\windows\system32\DRIVERS\uagp35.sys
08:47:20.0376 0x0364  uagp35 - ok
08:47:20.0423 0x0364  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
08:47:20.0423 0x0364  udfs - ok
08:47:20.0469 0x0364  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\windows\system32\UI0Detect.exe
08:47:20.0469 0x0364  UI0Detect - ok
08:47:20.0501 0x0364  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
08:47:20.0501 0x0364  uliagpkx - ok
08:47:20.0532 0x0364  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\windows\system32\DRIVERS\umbus.sys
08:47:20.0532 0x0364  umbus - ok
08:47:20.0563 0x0364  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\windows\system32\DRIVERS\umpass.sys
08:47:20.0563 0x0364  UmPass - ok
08:47:20.0594 0x0364  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\windows\System32\upnphost.dll
08:47:20.0610 0x0364  upnphost - ok
08:47:20.0657 0x0364  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
08:47:20.0657 0x0364  USBAAPL64 - ok
08:47:20.0703 0x0364  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\windows\system32\drivers\usbccgp.sys
08:47:20.0719 0x0364  usbccgp - ok
08:47:20.0719 0x0364  USBCCID - ok
08:47:20.0781 0x0364  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\windows\system32\drivers\usbcir.sys
08:47:20.0781 0x0364  usbcir - ok
08:47:20.0813 0x0364  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\windows\system32\DRIVERS\usbehci.sys
08:47:20.0813 0x0364  usbehci - ok
08:47:20.0875 0x0364  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
08:47:20.0875 0x0364  usbhub - ok
08:47:20.0922 0x0364  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\windows\system32\drivers\usbohci.sys
08:47:20.0922 0x0364  usbohci - ok
08:47:20.0953 0x0364  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys
08:47:20.0953 0x0364  usbprint - ok
08:47:21.0000 0x0364  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
08:47:21.0000 0x0364  USBSTOR - ok
08:47:21.0031 0x0364  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\windows\system32\DRIVERS\usbuhci.sys
08:47:21.0031 0x0364  usbuhci - ok
08:47:21.0093 0x0364  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
08:47:21.0109 0x0364  usbvideo - ok
08:47:21.0140 0x0364  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\windows\System32\uxsms.dll
08:47:21.0140 0x0364  UxSms - ok
08:47:21.0156 0x0364  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\windows\system32\lsass.exe
08:47:21.0156 0x0364  VaultSvc - ok
08:47:21.0203 0x0364  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
08:47:21.0218 0x0364  vdrvroot - ok
08:47:21.0265 0x0364  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\windows\System32\vds.exe
08:47:21.0281 0x0364  vds - ok
08:47:21.0312 0x0364  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
08:47:21.0312 0x0364  vga - ok
08:47:21.0327 0x0364  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\windows\System32\drivers\vga.sys
08:47:21.0327 0x0364  VgaSave - ok
08:47:21.0374 0x0364  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
08:47:21.0390 0x0364  vhdmp - ok
08:47:21.0437 0x0364  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\windows\system32\drivers\viaide.sys
08:47:21.0437 0x0364  viaide - ok
08:47:21.0452 0x0364  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\windows\system32\drivers\volmgr.sys
08:47:21.0452 0x0364  volmgr - ok
08:47:21.0499 0x0364  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
08:47:21.0515 0x0364  volmgrx - ok
08:47:21.0530 0x0364  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\windows\system32\drivers\volsnap.sys
08:47:21.0546 0x0364  volsnap - ok
08:47:21.0593 0x0364  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\windows\system32\DRIVERS\vsmraid.sys
08:47:21.0593 0x0364  vsmraid - ok
08:47:21.0686 0x0364  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\windows\system32\vssvc.exe
08:47:21.0733 0x0364  VSS - ok
08:47:21.0764 0x0364  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\windows\System32\drivers\vwifibus.sys
08:47:21.0764 0x0364  vwifibus - ok
08:47:21.0780 0x0364  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
08:47:21.0780 0x0364  vwififlt - ok
08:47:21.0811 0x0364  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
08:47:21.0811 0x0364  vwifimp - ok
08:47:21.0858 0x0364  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\windows\system32\w32time.dll
08:47:21.0873 0x0364  W32Time - ok
08:47:21.0889 0x0364  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\windows\system32\DRIVERS\wacompen.sys
08:47:21.0889 0x0364  WacomPen - ok
08:47:21.0951 0x0364  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
08:47:21.0951 0x0364  WANARP - ok
08:47:21.0967 0x0364  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
08:47:21.0967 0x0364  Wanarpv6 - ok
08:47:22.0076 0x0364  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
08:47:22.0107 0x0364  WatAdminSvc - ok
08:47:22.0201 0x0364  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\windows\system32\wbengine.exe
08:47:22.0248 0x0364  wbengine - ok
08:47:22.0279 0x0364  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
08:47:22.0295 0x0364  WbioSrvc - ok
08:47:22.0357 0x0364  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\windows\System32\wcncsvc.dll
08:47:22.0357 0x0364  wcncsvc - ok
08:47:22.0388 0x0364  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
08:47:22.0388 0x0364  WcsPlugInService - ok
08:47:22.0404 0x0364  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\windows\system32\DRIVERS\wd.sys
08:47:22.0404 0x0364  Wd - ok
08:47:22.0482 0x0364  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
08:47:22.0497 0x0364  Wdf01000 - ok
08:47:22.0544 0x0364  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\windows\system32\wdi.dll
08:47:22.0544 0x0364  WdiServiceHost - ok
08:47:22.0544 0x0364  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\windows\system32\wdi.dll
08:47:22.0544 0x0364  WdiSystemHost - ok
08:47:22.0560 0x0364  wdmirror - ok
08:47:22.0607 0x0364  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\windows\System32\webclnt.dll
08:47:22.0622 0x0364  WebClient - ok
08:47:22.0638 0x0364  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\windows\system32\wecsvc.dll
08:47:22.0638 0x0364  Wecsvc - ok
08:47:22.0669 0x0364  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\windows\System32\wercplsupport.dll
08:47:22.0669 0x0364  wercplsupport - ok
08:47:22.0700 0x0364  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\windows\System32\WerSvc.dll
08:47:22.0716 0x0364  WerSvc - ok
08:47:22.0731 0x0364  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
08:47:22.0731 0x0364  WfpLwf - ok
08:47:22.0763 0x0364  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\windows\system32\DRIVERS\wimfltr.sys
08:47:22.0778 0x0364  WimFltr - ok
08:47:22.0794 0x0364  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\windows\system32\drivers\wimmount.sys
08:47:22.0794 0x0364  WIMMount - ok
08:47:22.0809 0x0364  WinDefend - ok
08:47:22.0841 0x0364  WinHttpAutoProxySvc - ok
08:47:22.0903 0x0364  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
08:47:22.0919 0x0364  Winmgmt - ok
08:47:23.0012 0x0364  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\windows\system32\WsmSvc.dll
08:47:23.0075 0x0364  WinRM - ok
08:47:23.0121 0x0364  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
08:47:23.0137 0x0364  WinUsb - ok
08:47:23.0184 0x0364  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\windows\System32\wlansvc.dll
08:47:23.0215 0x0364  Wlansvc - ok
08:47:23.0246 0x0364  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\windows\system32\drivers\wmiacpi.sys
08:47:23.0246 0x0364  WmiAcpi - ok
08:47:23.0293 0x0364  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
08:47:23.0293 0x0364  wmiApSrv - ok
08:47:23.0355 0x0364  WMPNetworkSvc - ok
08:47:23.0387 0x0364  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\windows\System32\wpcsvc.dll
08:47:23.0402 0x0364  WPCSvc - ok
08:47:23.0449 0x0364  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
08:47:23.0449 0x0364  WPDBusEnum - ok
08:47:23.0480 0x0364  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
08:47:23.0480 0x0364  ws2ifsl - ok
08:47:23.0496 0x0364  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\windows\system32\wscsvc.dll
08:47:23.0496 0x0364  wscsvc - ok
08:47:23.0527 0x0364  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\windows\system32\DRIVERS\WSDPrint.sys
08:47:23.0543 0x0364  WSDPrintDevice - ok
08:47:23.0543 0x0364  WSearch - ok
08:47:23.0605 0x0364  [ 83575C43B2BFE9AB0661A7F957E843C0, 6FCE62721902A4F35F1A4CED8AF60A0346CFAB657ED92DE4CEFF19BDB830D32D ] wsvd            C:\windows\system32\DRIVERS\wsvd.sys
08:47:23.0605 0x0364  wsvd - ok
08:47:23.0730 0x0364  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\windows\system32\wuaueng.dll
08:47:23.0792 0x0364  wuauserv - ok
08:47:23.0839 0x0364  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
08:47:23.0839 0x0364  WudfPf - ok
08:47:23.0886 0x0364  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
08:47:23.0886 0x0364  WUDFRd - ok
08:47:23.0917 0x0364  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
08:47:23.0917 0x0364  wudfsvc - ok
08:47:23.0964 0x0364  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\windows\System32\wwansvc.dll
08:47:23.0964 0x0364  WwanSvc - ok
08:47:23.0995 0x0364  ================ Scan global ===============================
08:47:24.0026 0x0364  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
08:47:24.0073 0x0364  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
08:47:24.0089 0x0364  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
08:47:24.0120 0x0364  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
08:47:24.0151 0x0364  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
08:47:24.0167 0x0364  [ Global ] - ok
08:47:24.0167 0x0364  ================ Scan MBR ==================================
08:47:24.0182 0x0364  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:47:24.0432 0x0364  \Device\Harddisk0\DR0 - ok
08:47:24.0432 0x0364  ================ Scan VBR ==================================
08:47:24.0432 0x0364  [ 2B1E119E0250A48E15A9F5224A0A62AB ] \Device\Harddisk0\DR0\Partition1
08:47:24.0432 0x0364  \Device\Harddisk0\DR0\Partition1 - ok
08:47:24.0447 0x0364  [ 705F032992392B2CD0DE6DB5D6054151 ] \Device\Harddisk0\DR0\Partition2
08:47:24.0447 0x0364  \Device\Harddisk0\DR0\Partition2 - ok
08:47:24.0479 0x0364  [ 36ACD53B2E9D4ABA1A8D7C35DD3F42A8 ] \Device\Harddisk0\DR0\Partition3
08:47:24.0479 0x0364  \Device\Harddisk0\DR0\Partition3 - ok
08:47:24.0479 0x0364  Waiting for KSN requests completion. In queue: 69
08:47:25.0493 0x0364  Waiting for KSN requests completion. In queue: 69
08:47:26.0507 0x0364  Waiting for KSN requests completion. In queue: 69
08:47:27.0552 0x0364  Win FW state via NFP2: enabled
08:47:30.0422 0x0364  ============================================================
08:47:30.0422 0x0364  Scan finished
08:47:30.0422 0x0364  ============================================================
08:47:30.0422 0x0bac  Detected object count: 0
08:47:30.0422 0x0bac  Actual detected object count: 0
08:48:26.0052 0x0aac  Deinitialize success
 

 



#6 pinkmonkey

pinkmonkey
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Cleveland, OH
  • Local time:07:04 PM

Posted 10 March 2014 - 08:11 AM

Conspire, I also wanted you to see there looks like duplicates on TDSSKiller in the file system.  Here is a screen shot:

 

tdsskiller+files.png



#7 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 AM

Posted 10 March 2014 - 09:03 AM

Did you run them before I came for help?
Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif

#8 pinkmonkey

pinkmonkey
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Cleveland, OH
  • Local time:07:04 PM

Posted 10 March 2014 - 11:05 AM

I had been trying to figure out what is wrong & going through the tutorials for a couple of months.  So I probably did run... although I have not ever gotten anything ever that needed fixing. 

Since reaching out, I haven't done anything except follow your instructions.  Oh, & clearing browsing data in Chrome.  

 

Thanks Conspire :-)


Edited by pinkmonkey, 10 March 2014 - 11:06 AM.


#9 pinkmonkey

pinkmonkey
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Cleveland, OH
  • Local time:07:04 PM

Posted 10 March 2014 - 10:40 PM

Hi Conspire!

 

I am ready for the next steps of what you believe I should do.  Hope I didn't scare you off :-) 

 

Thanks again!!

Kelly



#10 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 AM

Posted 11 March 2014 - 07:32 AM

Sorry, Kelly. I've been busy the whole day and only got the time now to reply. No you didn't scare me off. :)

Do note that I'm in a different time zone so my replies might take a bit longer than those reside in the US.

I think the duplicates are the result of your previous installation. But it should have been overwrote the thing rather than creating another file which is odd but not big of a deal.

Let's run ComboFix.


Please read through these instructions to familiarize yourself with what to expect when this tool runs

Refer to the ComboFix User's Guide


Download ComboFix from one of these locations:

Link 1
Link 2



* IMPORTANT- Save ComboFix.exe to your Desktop

====================================================


Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. Note: If you are having difficulty properly disabling your protective programs, or are unsure as to what programs need to be disabled, please refer to the information available through this link : How to Disable your Security Programs


====================================================


Double click on combofix.exe & follow the prompts.


When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply for further review.
Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif

#11 pinkmonkey

pinkmonkey
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Cleveland, OH
  • Local time:07:04 PM

Posted 11 March 2014 - 11:10 AM

Hi Conspire!  

 

No worries, just glad I didn't scare you!  Didn't even realize we are very different time zones :-)

 

Attached is the combofix.txt file

  • Followed the instructions & used link 1 for the download 
  • Disabled Windows Defender
  • Turned off Windows Firewall

FYI, it did not show any backing up of the Windows Registry or reference any clock settings during the autoscan.  Everything else was pretty quick.  

 

Ready for the next steps & thank you sooooo much again :-)

Kelly

 

Attached File  combofix.txt   14.55KB   4 downloads

 

 



#12 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 AM

Posted 11 March 2014 - 08:07 PM

Hi Kelly,

 

I will review and post something to you as soon as I got off from work later this evening. 

 

Please bear with me.


Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif

#13 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 AM

Posted 12 March 2014 - 06:06 AM

Hello again,

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R#].txt) will open in Notepad for review (where the largest value of # represents the most recent report).
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif

#14 pinkmonkey

pinkmonkey
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Cleveland, OH
  • Local time:07:04 PM

Posted 12 March 2014 - 09:13 AM

Hello Conspire!

 

Okay, this ran in like 2 seconds and really doesn't have much info!  The only thing I did not do is disable the Windows firewall before I downloaded.  

 

Cheers,

Kelly

--------------------------------------------------------------------------------------------------------------------------------------------

 

# AdwCleaner v3.021 - Report created 12/03/2014 at 09:56:18
# Updated 10/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : kelly - IDEAPAD
# Running from : C:\Users\kelly\Desktop\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{C4C4F1F4-3074-4CB6-9FB8-0A64273166F0}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.16518
 
 
-\\ Mozilla Firefox v27.0.1 (en-US)
 
[ File : C:\Users\kelly\AppData\Roaming\Mozilla\Firefox\Profiles\3lfgf0m5.default-1393699849975\prefs.js ]
 
 
-\\ Google Chrome v33.0.1750.146
 
[ File : C:\Users\kelly\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [855 octets] - [12/03/2014 09:56:18]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [914 octets] ##########


#15 Conspire

Conspire

  • Malware Response Team
  • 1,155 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:04 AM

Posted 13 March 2014 - 07:24 AM

Not much of dirty things which tells us it's a good sign.

But the JRT might take a while..

Double click on AdwCleaner.exe to run the tool again.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
===================================================

thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • ===================================================

    On your next reply please post :
    AdwCleaner log
    JRT log



    Please STOP and let me know if you have any problems in performing with the steps above or any questions you may have.

Proud Graduate of the WTT Classroom
Member of UNITE
The help you receive here is always free. If you wish to show your appreciation, then you may btn_donate_SM.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users