Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Something is creating locked files in my C Drive


  • This topic is locked This topic is locked
5 replies to this topic

#1 Guest_sakartvelo_*

Guest_sakartvelo_*

  • Guests
  • OFFLINE
  •  

Posted 22 March 2014 - 10:58 AM

   Something is creating locked files in my C Drive with long random titles.  For example, "17cfc88fff65cff8253daa3f1ec4b56a".  Inside of one is many other files with 4-digit number titles that I do not have access to view (I am the admin).  Inside of the other was only a "read me" that said I did not have access to view it, then it appeared to turn into Microsoft Silverlight files after I closed the window and tried to open it again.  Sometimes my computer does not start up properly, either, and it has definitely been running more slowly.  I now occasionally get messages saying "the Microsoft application is not running properly" asking me if I want to close the program "Microsoft".  

 

I have run AVG and Webroot and neither program has found the problem.  I am unable to delete the files or shred them with an antivirus program.  Help?



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,213 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA

Posted 26 March 2014 - 03:08 PM

Hello, let's see what we can see from these.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Guest_sakartvelo_*

Guest_sakartvelo_*

  • Guests
  • OFFLINE
  •  

Posted 27 March 2014 - 07:52 AM

1. In trying to run AdwCleaner I got this message:

 

C:\windows\system32\EXPLORERFRAME.dll is either not designed to run on Windows or it contains an error.  Try installing the program again using the original installation media or contact your system administrator or the software vendor for support."

 

When the program scanned my computer, my desktop disappeared- including the windows toolbar.  My internet window and the antivirus program window remained.  When it tried to reboot after the scan, everything disappeared (including all of the windows).  Only the mouse was visible.  I was finally forced to "hard" shut down my computer.

 

2. I downloaded the version of ESET for people not running Internet Explorer (I run Chrome), and it attempted to install and run, but failed.  During installation I got a message that said "Unexpected Error 2002".  I tried to install it twice (thinking perhaps it was my internet connection) and got the same error.

 

Also, those strange files are still "locked" on my C Drive.

 

Here are the logs you requested ... THANK YOU for checking them out!

 

From MiniToolBox:

MiniToolBox by Farbar  Version: 23-01-2014

Ran by Allie (administrator) on 26-03-2014 at 22:47:28

Running from "C:\Users\Allie\Desktop"

Microsoft Windows 7 Home Premium  Service Pack 1 (X64)

Boot Mode: Normal

***************************************************************************

 

========================= Flush DNS: ===================================

 

Windows IP Configuration

 

Successfully flushed the DNS Resolver Cache.

 

========================= IE Proxy Settings: ==============================

 

Proxy is not enabled.

No Proxy Server is set.

 

"Reset IE Proxy Settings": IE Proxy Settings were reset.

 

========================= FF Proxy Settings: ==============================

 

 

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

 

========================= Hosts content: =================================

 

 

 

========================= IP Configuration: ================================

 

Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)

Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)

Dell Wireless 1701 802.11b/g/n = Wireless Network Connection (Media disconnected)

 

 

# ----------------------------------

# IPv4 Configuration

# ----------------------------------

pushd interface ipv4

 

reset

set global icmpredirects=enabled

set subinterface interface=?6) subinterface=ethernet_6 mtu=1477

 

 

popd

# End of IPv4 configuration

 

 

 

Windows IP Configuration

 

   Host Name . . . . . . . . . . . . : Allie-PC

   Primary Dns Suffix  . . . . . . . :

   Node Type . . . . . . . . . . . . : Hybrid

   IP Routing Enabled. . . . . . . . : No

   WINS Proxy Enabled. . . . . . . . : No

 

PPP adapter AnyDATA NetWork:

 

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : AnyDATA NetWork

   Physical Address. . . . . . . . . :

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

   IPv4 Address. . . . . . . . . . . : 10.11.72.97(Preferred)

   Subnet Mask . . . . . . . . . . . : 255.255.255.255

   Default Gateway . . . . . . . . . : 0.0.0.0

   DNS Servers . . . . . . . . . . . : 81.95.167.65

                                       81.95.167.66

   NetBIOS over Tcpip. . . . . . . . : Disabled

 

Wireless LAN adapter Wireless Network Connection:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Dell Wireless 1701 802.11b/g/n

   Physical Address. . . . . . . . . : 64-27-37-D1-D1-45

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Ethernet adapter Local Area Connection:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Realtek PCIe FE Family Controller

   Physical Address. . . . . . . . . : 24-B6-FD-23-52-F3

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Ethernet adapter Bluetooth Network Connection:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)

   Physical Address. . . . . . . . . : 64-27-37-D1-D1-46

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.{5C9934AA-C985-4933-8812-EFA91864F432}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter Teredo Tunneling Pseudo-Interface:

 

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:3c99:1621:f5f4:b79e(Preferred)

   Link-local IPv6 Address . . . . . : fe80::3c99:1621:f5f4:b79e%18(Preferred)

   Default Gateway . . . . . . . . . : ::

   NetBIOS over Tcpip. . . . . . . . : Disabled

 

Tunnel adapter isatap.{3B7E8831-0B9C-42FD-9F57-F8BCE6BE6002}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.{8A37B48C-44E4-4E5A-93B5-0640EFB66B85}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.FreeUNI:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter isatap.{71824391-FB5B-40F5-A8E1-0CA77FBC9B3D}:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

Server:  um.magticom.ge

Address:  81.95.167.65

 

DNS request timed out.

    timeout was 2 seconds.

DNS request timed out.

    timeout was 2 seconds.

DNS request timed out.

    timeout was 2 seconds.

Name:    google.com

Address:  2a00:1450:4017:800::1002

 

 

Pinging google.com [213.157.220.173] with 32 bytes of data:

Reply from 213.157.220.173: bytes=32 time=45ms TTL=58

Reply from 213.157.220.173: bytes=32 time=75ms TTL=58

 

Ping statistics for 213.157.220.173:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 45ms, Maximum = 75ms, Average = 60ms

Server:  um.magticom.ge

Address:  81.95.167.65

 

Name:    yahoo.com

Addresses:  98.139.183.24

                  206.190.36.45

                  98.138.253.109

 

 

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:

Reply from 98.138.253.109: bytes=32 time=258ms TTL=47

Reply from 98.138.253.109: bytes=32 time=275ms TTL=47

 

Ping statistics for 98.138.253.109:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 258ms, Maximum = 275ms, Average = 266ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================

Interface List

 32...........................AnyDATA NetWork

 14...64 27 37 d1 d1 45 ......Dell Wireless 1701 802.11b/g/n

 13...24 b6 fd 23 52 f3 ......Realtek PCIe FE Family Controller

 12...64 27 37 d1 d1 46 ......Bluetooth Device (Personal Area Network)

  1...........................Software Loopback Interface 1

 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter

 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface

 20...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2

 21...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3

 17...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4

 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5

===========================================================================

 

IPv4 Route Table

===========================================================================

Active Routes:

Network Destination        Netmask          Gateway       Interface  Metric

          0.0.0.0          0.0.0.0         On-link       10.11.72.97     51

      10.11.72.97  255.255.255.255         On-link       10.11.72.97    306

        127.0.0.0        255.0.0.0         On-link         127.0.0.1   4531

        127.0.0.1  255.255.255.255         On-link         127.0.0.1   4531

  127.255.255.255  255.255.255.255         On-link         127.0.0.1   4531

        224.0.0.0        240.0.0.0         On-link         127.0.0.1   4531

        224.0.0.0        240.0.0.0         On-link       10.11.72.97     51

  255.255.255.255  255.255.255.255         On-link         127.0.0.1   4531

  255.255.255.255  255.255.255.255         On-link       10.11.72.97    306

===========================================================================

Persistent Routes:

  None

 

IPv6 Route Table

===========================================================================

Active Routes:

 If Metric Network Destination      Gateway

 18     58 ::/0                     On-link

  1    306 ::1/128                  On-link

 18     58 2001::/32                On-link

 18    306 2001:0:9d38:90d7:3c99:1621:f5f4:b79e/128

                                    On-link

 18    306 fe80::/64                On-link

 18    306 fe80::3c99:1621:f5f4:b79e/128

                                    On-link

  1    306 ff00::/8                 On-link

 18    306 ff00::/8                 On-link

===========================================================================

Persistent Routes:

  None

========================= Winsock entries =====================================

 

Catalog5 01 C:\windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)

Catalog5 02 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)

Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 04 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog5 06 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)

Catalog5 07 C:\windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)

Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)

Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)

Catalog9 01 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 02 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 03 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 04 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 06 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 07 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 08 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 09 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 10 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 11 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)

x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)

x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)

x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)

x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)

x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)

x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

 

========================= Event log errors: ===============================

 

Application errors:

==================

Error: (03/26/2014 10:41:47 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/26/2014 11:18:00 AM) (Source: RasClient) (User: )

Description: CoId={B1AF7E4B-11F9-478A-A7D3-27FF3F422790}: The user Allie-PC\Allie dialed a connection named AnyDATA NetWork which has failed. The error code returned on failure is 0.

 

Error: (03/26/2014 11:16:31 AM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/26/2014 05:36:10 AM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/25/2014 10:13:52 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/25/2014 00:10:58 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/25/2014 00:06:22 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/25/2014 08:58:36 AM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/25/2014 05:52:03 AM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

Error: (03/24/2014 10:29:56 PM) (Source: WinMgmt) (User: )

Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

 

 

System errors:

=============

Error: (03/26/2014 10:40:56 PM) (Source: Service Control Manager) (User: )

Description: The Mobile Partner. OUC service failed to start due to the following error:

%%1053

 

Error: (03/26/2014 10:40:56 PM) (Source: Service Control Manager) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Partner. OUC service to connect.

 

Error: (03/26/2014 11:15:52 AM) (Source: Service Control Manager) (User: )

Description: The Mobile Partner. OUC service failed to start due to the following error:

%%1053

 

Error: (03/26/2014 11:15:52 AM) (Source: Service Control Manager) (User: )

Description: A timeout was reached (30000 milliseconds) while waiting for the Mobile Partner. OUC service to connect.

 

Error: (03/26/2014 11:15:14 AM) (Source: iaStor) (User: )

Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

 

Error: (03/26/2014 05:40:28 AM) (Source: Service Control Manager) (User: )

Description: The Background Intelligent Transfer Service service hung on starting.

 

Error: (03/26/2014 05:40:27 AM) (Source: iaStor) (User: )

Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

 

Error: (03/26/2014 05:38:27 AM) (Source: iaStor) (User: )

Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

 

Error: (03/26/2014 05:36:40 AM) (Source: Service Control Manager) (User: )

Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SftService service.

 

Error: (03/26/2014 05:35:59 AM) (Source: iaStor) (User: )

Description: The device, \Device\Ide\iaStor0, did not respond within the timeout period.

 

 

Microsoft Office Sessions:

=========================

Error: (08/13/2013 11:21:45 AM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 10510 seconds with 9420 seconds of active time.  This session ended with a crash.

 

Error: (08/13/2013 08:26:16 AM) (Source: Microsoft Office 12 Sessions)(User: )

Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6668.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 19689 seconds with 10620 seconds of active time.  This session ended with a crash.

 

 

CodeIntegrity Errors:

===================================

  Date: 2013-10-01 10:20:48.648

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\adusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-10-01 10:20:48.585

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\adusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-10-01 10:20:48.523

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\adusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-10-01 10:20:48.476

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\adusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-10-01 10:20:48.414

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\adusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-10-01 10:20:48.351

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\adusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-10-01 02:31:59.553

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\adusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-10-01 02:31:59.503

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\adusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-10-01 02:31:59.443

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\adusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

  Date: 2013-10-01 02:31:59.383

  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\drivers\adusbser.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

 

 

=========================== Installed Programs ============================

 

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)

Accidental Damage Services Agreement (Version: 2.0.0)

Adobe AIR (Version: 2.6.0.19120)

Adobe Flash Player 12 ActiveX (Version: 12.0.0.77)

Adobe Flash Player 12 Plugin (Version: 12.0.0.77)

Adobe Reader X MUI (Version: 10.0.0)

Adobe Shockwave Player 12.0 (Version: 12.0.9.149)

Advanced Audio FX Engine (Version: 1.12.05)

Apple Application Support (Version: 3.0)

Apple Mobile Device Support (Version: 7.1.0.32)

Apple Software Update (Version: 2.1.3.127)

AVG 2014 (Version: 14.0.3722)

AVG 2014 (Version: 14.0.4354)

AVG 2014 (Version: 2014.0.4354)

Banctec Service Agreement (Version: 2.0.0)

Bing Rewards Client Installer (Version: 16.0.345.0)

Blio (Version: 2.3.7140)

Complete Care Business Service Agreement (Version: 2.0.0)

Consumer In-Home Service Agreement (Version: 2.0.0)

Creatures Albian Years

D3DX10 (Version: 15.4.2368.0902)

Dell DataSafe Local Backup - Support Software (Version: 9.4.60)

Dell DataSafe Local Backup (Version: 9.4.60)

Dell DataSafe Online (Version: 2.1.19634)

Dell Edoc Viewer (Version: 1.0.0)

Dell Getting Started Guide (Version: 1.00.0000)

Dell Home Systems Service Agreement (Version: 2.0.0)

Dell MusicStage (Version: 1.5.201.0)

Dell PhotoStage (Version: 1.5.0.65)

Dell Product Registration (Version: 1.1.3)

Dell Stage (Version: 1.5.201.0)

Dell Stage Remote (Version: 2.0.0.43)

Dell Touchpad (Version: 7.1207.101.225)

Dell VideoStage  (Version: 1.2.0.1712)

Dell Webcam Central (Version: 2.00.44)

DirectX 9 Runtime (Version: 1.00.0000)

DW WLAN Card (Version: 5.100.82.88)

Easy Wireless Net (Version: 3.268.03)

Express Zip (Version: 2.28)

File Association Helper (Version: 1.1.6.53763)

Gizmo Central (Version: v2.7.9)

Google Chrome (Version: 33.0.1750.154)

Google Drive (Version: 1.14.6059.644)

Google Talk Plugin (Version: 5.2.4.18058)

Google Update Helper (Version: 1.3.22.5)

Google+ Auto Backup (Version: 1.0.21.81)

Google+ Auto Backup (Version: 1.0.24.118)

High-Definition Video Playback (Version: 7.3.10000.0.0)

HP LaserJet Professional M1130-M1210 MFP Series

IDT Audio (Version: 1.0.6341.0)

Intel® Control Center (Version: 1.2.1.1007)

Intel® Management Engine Components (Version: 7.0.0.1144)

Intel® Processor Graphics (Version: 8.15.10.2342)

Intel® Rapid Storage Technology (Version: 10.1.2.1004)

iTunes (Version: 11.1.4.62)

Java 7 Update 51 (Version: 7.0.510)

Java Auto Updater (Version: 2.1.9.8)

Java™ 7 Update 1 (64-bit) (Version: 7.0.10)

JavaFX 2.0.3 (Version: 2.0.3)

Junk Mail filter update (Version: 15.4.3502.0922)

Mesh Runtime (Version: 15.4.5722.2)

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)

Microsoft Application Error Reporting (Version: 12.0.6015.5000)

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Access MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)

Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)

Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)

Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)

Microsoft Silverlight (Version: 5.1.30214.0)

Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)

Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)

Mobile Partner (Version: 21.009.07.03.996)

Mozilla Firefox 22.0 (x86 en-US) (Version: 22.0)

Mozilla Maintenance Service (Version: 22.0)

MSVCRT (Version: 15.4.2862.0708)

MSVCRT_amd64 (Version: 15.4.2862.0708)

MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)

MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)

My Dell (Version: 3.5.6426.22)

Nero 10 Movie ThemePack Basic (Version: 10.2.10200.0.0)

Nero Control Center 10 (Version: 10.6.12500.0.5)

Nero ControlCenter 10 Help (CHM) (Version: 10.2.10800)

Nero Core Components 10 (Version: 2.0.20000.9.12)

Nero Update (Version: 11.0.11500.28.0)

Peace Corps VRF

PhotoShowExpress (Version: 2.0.063)

Picasa 3 (Version: 3.9)

PlayReady PC Runtime x86 (Version: 1.3.0)

Premium Service Agreement (Version: 2.0.0)

QualxServ Service Agreement (Version: 2.0.0)

Quickset64 (Version: 10.09.25)

RBVirtualFolder64Inst (Version: 1.00.0000)

Realtek Ethernet Controller Driver (Version: 7.45.516.2011)

Realtek USB 2.0 Card Reader (Version: 6.1.7600.30126)

Roxio Activation Module (Version: 1.0)

Roxio BackOnTrack (Version: 1.3.3)

Roxio Burn (Version: 1.8)

Roxio Creator Starter (Version: 1.0.439)

Roxio Creator Starter (Version: 12.1.77.0)

Roxio Creator Starter (Version: 5.0.0)

Roxio Express Labeler 3 (Version: 3.2.2)

Roxio File Backup (Version: 1.3.2)

Scan To (Version: 1.0.1)

Skype Click to Call (Version: 7.1.15383.6004)

Skype™ 6.14 (Version: 6.14.104)

Sonic CinePlayer Decoder Pack (Version: 4.3.0)

Switch Sound File Converter

swMSM (Version: 12.0.0.1)

SyncUP (Version: 1.10.11100.8.106)

SyncUP (Version: 10.2.15400)

TeraCopy 2.27

Tixati

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft Office 2007 Help for Common Features (KB963673)

Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition

Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition

Update for Microsoft Office Access 2007 Help (KB963663)

Update for Microsoft Office Excel 2007 Help (KB963678)

Update for Microsoft Office Infopath 2007 Help (KB963662)

Update for Microsoft Office OneNote 2007 Help (KB963670)

Update for Microsoft Office Outlook 2007 (KB2687404) 32-Bit Edition

Update for Microsoft Office Outlook 2007 Help (KB963677)

Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2878234) 32-Bit Edition

Update for Microsoft Office Powerpoint 2007 Help (KB963669)

Update for Microsoft Office Publisher 2007 Help (KB963667)

Update for Microsoft Office Script Editor Help (KB963671)

Update for Microsoft Office Word 2007 Help (KB963665)

Visual Studio 2012 x64 Redistributables (Version: 14.0.0.1)

Visual Studio 2012 x86 Redistributables (Version: 14.0.0.1)

VLC media player 2.0.5 (Version: 2.0.5)

WIDCOMM Bluetooth Software (Version: 6.3.0.7600)

Win 32 Dorkbot Removal Tool (Version: 1.0)

Windows Driver Package - AnyDATA.NET (adusbser) Modem  (07/08/2009 2.0.6.7) (Version: 07/08/2009 2.0.6.7)

Windows Driver Package - AnyDATA.NET (adusbser) Ports  (07/08/2009 2.0.6.7) (Version: 07/08/2009 2.0.6.7)

Windows Live Communications Platform (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3502.0922)

Windows Live Essentials (Version: 15.4.3508.1109)

Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)

Windows Live Installer (Version: 15.4.3502.0922)

Windows Live Language Selector (Version: 15.4.3508.1109)

Windows Live Mail (Version: 15.4.3502.0922)

Windows Live Mesh (Version: 15.4.3502.0922)

Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)

Windows Live Messenger (Version: 15.4.3502.0922)

Windows Live MIME IFilter (Version: 15.4.3502.0922)

Windows Live Movie Maker (Version: 15.4.3502.0922)

Windows Live Photo Common (Version: 15.4.3502.0922)

Windows Live Photo Gallery (Version: 15.4.3502.0922)

Windows Live PIMT Platform (Version: 15.4.3508.1109)

Windows Live Remote Client (Version: 15.4.5722.2)

Windows Live Remote Client Resources (Version: 15.4.5722.2)

Windows Live Remote Service (Version: 15.4.5722.2)

Windows Live Remote Service Resources (Version: 15.4.5722.2)

Windows Live SOXE (Version: 15.4.3502.0922)

Windows Live SOXE Definitions (Version: 15.4.3502.0922)

Windows Live UX Platform (Version: 15.4.3502.0922)

Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)

Windows Live Writer (Version: 15.4.3502.0922)

Windows Live Writer Resources (Version: 15.4.3502.0922)

Zinio Reader 4 (Version: 4.2.4164)

 

========================= Memory info: ===================================

 

Percentage of memory in use: 45%

Total physical RAM: 4004.27 MB

Available physical RAM: 2177.33 MB

Total Pagefile: 8006.73 MB

Available Pagefile: 5989.44 MB

Total Virtual: 4095.88 MB

Available Virtual: 3972.63 MB

 

========================= Partitions: =====================================

 

1 Drive c: (OS) (Fixed) (Total:451.01 GB) (Free:66.77 GB) NTFS

 

========================= Users: ========================================

 

User accounts for \\ALLIE-PC

 

Administrator            Allie                    Guest                   

 

 

**** End of log ****

 

From TDSSKiller:

22:54:05.0491 0x0a08  TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43

22:54:09.0553 0x0a08  ============================================================

22:54:09.0553 0x0a08  Current date / time: 2014/03/26 22:54:09.0553

22:54:09.0553 0x0a08  SystemInfo:

22:54:09.0553 0x0a08 

22:54:09.0553 0x0a08  OS Version: 6.1.7601 ServicePack: 1.0

22:54:09.0553 0x0a08  Product type: Workstation

22:54:09.0554 0x0a08  ComputerName: ALLIE-PC

22:54:09.0554 0x0a08  UserName: Allie

22:54:09.0554 0x0a08  Windows directory: C:\windows

22:54:09.0554 0x0a08  System windows directory: C:\windows

22:54:09.0554 0x0a08  Running under WOW64

22:54:09.0554 0x0a08  Processor architecture: Intel x64

22:54:09.0554 0x0a08  Number of processors: 4

22:54:09.0554 0x0a08  Page size: 0x1000

22:54:09.0554 0x0a08  Boot type: Normal boot

22:54:09.0554 0x0a08  ============================================================

22:54:09.0939 0x0a08  KLMD registered as C:\windows\system32\drivers\49797375.sys

22:54:10.0119 0x0a08  System UUID: {E2F97C15-16C1-3268-D4D8-4E12FCA36A08}

22:54:10.0974 0x0a08  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

22:54:10.0985 0x0a08  ============================================================

22:54:10.0985 0x0a08  \Device\Harddisk0\DR0:

22:54:10.0985 0x0a08  MBR partitions:

22:54:10.0985 0x0a08  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x1D4C000

22:54:10.0985 0x0a08  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1D7E800, BlocksNum 0x38607030

22:54:10.0985 0x0a08  ============================================================

22:54:11.0066 0x0a08  C: <-> \Device\Harddisk0\DR0\Partition2

22:54:11.0066 0x0a08  ============================================================

22:54:11.0066 0x0a08  Initialize success

22:54:11.0067 0x0a08  ============================================================

22:54:15.0736 0x0a90  ============================================================

22:54:15.0736 0x0a90  Scan started

22:54:15.0736 0x0a90  Mode: Manual;

22:54:15.0736 0x0a90  ============================================================

22:54:15.0736 0x0a90  KSN ping started

22:54:16.0796 0x0a90  KSN ping finished: true

22:54:16.0944 0x0a90  ================ Scan system memory ========================

22:54:16.0944 0x0a90  System memory - ok

22:54:16.0945 0x0a90  ================ Scan services =============================

22:54:17.0199 0x0a90  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys

22:54:17.0215 0x0a90  1394ohci - ok

22:54:17.0293 0x0a90  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\windows\system32\drivers\ACPI.sys

22:54:17.0315 0x0a90  ACPI - ok

22:54:17.0342 0x0a90  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys

22:54:17.0345 0x0a90  AcpiPmi - ok

22:54:17.0453 0x0a90  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

22:54:17.0460 0x0a90  AdobeFlashPlayerUpdateSvc - ok

22:54:17.0528 0x0a90  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys

22:54:17.0561 0x0a90  adp94xx - ok

22:54:17.0618 0x0a90  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\windows\system32\drivers\adpahci.sys

22:54:17.0629 0x0a90  adpahci - ok

22:54:17.0669 0x0a90  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\windows\system32\drivers\adpu320.sys

22:54:17.0682 0x0a90  adpu320 - ok

22:54:17.0796 0x0a90  [ 7579943FAA36C7F4C15AB368FDB7DB23, 23D7A9C60DFA397E026C24EDAE952164BA524BEA468D408B6D257C3DB1B59D7C ] adusbser        C:\windows\system32\DRIVERS\adusbser.sys

22:54:17.0807 0x0a90  adusbser - ok

22:54:17.0842 0x0a90  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll

22:54:17.0850 0x0a90  AeLookupSvc - ok

22:54:18.0022 0x0a90  [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe

22:54:18.0029 0x0a90  AESTFilters - ok

22:54:18.0126 0x0a90  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\windows\system32\drivers\afd.sys

22:54:18.0158 0x0a90  AFD - ok

22:54:18.0264 0x0a90  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\windows\system32\drivers\agp440.sys

22:54:18.0283 0x0a90  agp440 - ok

22:54:18.0324 0x0a90  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\windows\System32\alg.exe

22:54:18.0342 0x0a90  ALG - ok

22:54:18.0445 0x0a90  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\windows\system32\drivers\aliide.sys

22:54:18.0449 0x0a90  aliide - ok

22:54:18.0516 0x0a90  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\windows\system32\drivers\amdide.sys

22:54:18.0519 0x0a90  amdide - ok

22:54:18.0577 0x0a90  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\windows\system32\drivers\amdk8.sys

22:54:18.0585 0x0a90  AmdK8 - ok

22:54:18.0615 0x0a90  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys

22:54:18.0623 0x0a90  AmdPPM - ok

22:54:18.0708 0x0a90  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\windows\system32\drivers\amdsata.sys

22:54:18.0717 0x0a90  amdsata - ok

22:54:18.0785 0x0a90  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys

22:54:18.0805 0x0a90  amdsbs - ok

22:54:18.0840 0x0a90  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\windows\system32\drivers\amdxata.sys

22:54:18.0843 0x0a90  amdxata - ok

22:54:18.0944 0x0a90  [ 6690E42CED5D067233ABAD42DA141213, 7FECA42624513E6C3216E91F708E97101CCFC252F925A3707EA8560D8059CBE3 ] ApfiltrService  C:\windows\system32\DRIVERS\Apfiltr.sys

22:54:18.0966 0x0a90  ApfiltrService - ok

22:54:18.0994 0x0a90  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\windows\system32\drivers\appid.sys

22:54:19.0000 0x0a90  AppID - ok

22:54:19.0027 0x0a90  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\windows\System32\appidsvc.dll

22:54:19.0031 0x0a90  AppIDSvc - ok

22:54:19.0103 0x0a90  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\windows\System32\appinfo.dll

22:54:19.0109 0x0a90  Appinfo - ok

22:54:19.0211 0x0a90  [ F518545E5B7623AD49ABE7F8776EFA46, CD39B6EC0D80C6DB857F34D4AC5C31085271B51B8851A56FEFC052B20B7CC40C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

22:54:19.0216 0x0a90  Apple Mobile Device - ok

22:54:19.0241 0x0a90  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\windows\system32\drivers\arc.sys

22:54:19.0249 0x0a90  arc - ok

22:54:19.0280 0x0a90  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\windows\system32\drivers\arcsas.sys

22:54:19.0288 0x0a90  arcsas - ok

22:54:19.0456 0x0a90  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

22:54:19.0470 0x0a90  aspnet_state - ok

22:54:19.0493 0x0a90  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys

22:54:19.0496 0x0a90  AsyncMac - ok

22:54:19.0527 0x0a90  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\windows\system32\drivers\atapi.sys

22:54:19.0530 0x0a90  atapi - ok

22:54:19.0618 0x0a90  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll

22:54:19.0636 0x0a90  AudioEndpointBuilder - ok

22:54:19.0662 0x0a90  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\windows\System32\Audiosrv.dll

22:54:19.0677 0x0a90  AudioSrv - ok

22:54:19.0759 0x0a90  [ BE5047191368D2C014202AB2775768B7, 5EC5B88B7FA7F9A9A6A665FD8638A3DF8030D6CD72C15C53CC3C34A88C1B9B27 ] Avgdiska        C:\windows\system32\DRIVERS\avgdiska.sys

22:54:19.0769 0x0a90  Avgdiska - ok

22:54:20.0038 0x0a90  [ 9D5EA7BD5E29F404CD158AED17B40A15, BC38F90AD8BBB51C27D9D325E400DF10B8A8BE34A497A7207F2E73E46E9AB3EE ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe

22:54:20.0117 0x0a90  AVGIDSAgent - ok

22:54:20.0188 0x0a90  [ EE48CA8AB25E2B0EE3D3E5A463C5A37E, 06A0AF4CB8D3715701ABD272E42F7CCF406C61AF838F5F53A7F6630D4A600905 ] AVGIDSDriver    C:\windows\system32\DRIVERS\avgidsdrivera.sys

22:54:20.0203 0x0a90  AVGIDSDriver - ok

22:54:20.0237 0x0a90  [ 494D668B4CB866A1D6835E5F01B13EF1, A2989DB82F31F9B30E4DC1F814BD0D7E286B33DB033C63796E2020BD18648EF3 ] AVGIDSHA        C:\windows\system32\DRIVERS\avgidsha.sys

22:54:20.0251 0x0a90  AVGIDSHA - ok

22:54:20.0347 0x0a90  [ 4BE8BB177B4C2BC3564845EF6D1073F1, 4ACA54EA54F5ABA96A73BD83C0C5A83C37090FEB7CBE67AE94E9CD3E364931C8 ] Avgldx64        C:\windows\system32\DRIVERS\avgldx64.sys

22:54:20.0361 0x0a90  Avgldx64 - ok

22:54:20.0440 0x0a90  [ D3772CC086FB81F76B5A82C85E1C7C8E, B1BEFD7AC658F28AECEF5468F5815504BDDC8A4203207B6F0CA53C5B216F782D ] Avgloga         C:\windows\system32\DRIVERS\avgloga.sys

22:54:20.0461 0x0a90  Avgloga - ok

22:54:20.0503 0x0a90  [ A0BCE5DC2C1F1EE5C1CA19A33375AC23, 517663AEDD7A45607E17910DE60B2847E521472F9C0AB56034617BE2F351DE8D ] Avgmfx64        C:\windows\system32\DRIVERS\avgmfx64.sys

22:54:20.0507 0x0a90  Avgmfx64 - ok

22:54:20.0565 0x0a90  [ 12FAAF366975B2BF2E93F1866C0E480D, 559480A1434E6805CF4F3DB5352E98387053194BB7B0DB18099B53D306D9951D ] Avgrkx64        C:\windows\system32\DRIVERS\avgrkx64.sys

22:54:20.0568 0x0a90  Avgrkx64 - ok

22:54:20.0604 0x0a90  [ 4E364FABBD147F59E5D524C9EA86D772, 5D2B1E35EDBF68C23C5BF38B8B7AC484E3430219E0072C4831F58A9E8386A5FD ] Avgtdia         C:\windows\system32\DRIVERS\avgtdia.sys

22:54:20.0620 0x0a90  Avgtdia - ok

22:54:20.0694 0x0a90  [ B747B6BB015E552F49C634BB19540F3D, 5000AD41BD101BC06D595484B6E58DEEBB962939ACF4B24DE515771D1C4AE3ED ] avgwd           C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe

22:54:20.0702 0x0a90  avgwd - ok

22:54:20.0797 0x0a90  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\windows\System32\AxInstSV.dll

22:54:20.0807 0x0a90  AxInstSV - ok

22:54:20.0866 0x0a90  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys

22:54:20.0898 0x0a90  b06bdrv - ok

22:54:20.0951 0x0a90  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys

22:54:20.0970 0x0a90  b57nd60a - ok

22:54:21.0198 0x0a90  [ 783F1C7ED6B39454A8D1028D4F30768D, 75049DDF709896FAAA8EA52A689EC846EBD5BFB4F8FE53EF59B2C471AA2A644E ] BCM43XX         C:\windows\system32\DRIVERS\bcmwl664.sys

22:54:21.0297 0x0a90  BCM43XX - ok

22:54:21.0341 0x0a90  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\windows\System32\bdesvc.dll

22:54:21.0345 0x0a90  BDESVC - ok

22:54:21.0361 0x0a90  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\windows\system32\drivers\Beep.sys

22:54:21.0362 0x0a90  Beep - ok

22:54:21.0444 0x0a90  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\windows\System32\bfe.dll

22:54:21.0486 0x0a90  BFE - ok

22:54:21.0528 0x0a90  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\windows\System32\qmgr.dll

22:54:21.0551 0x0a90  BITS - ok

22:54:21.0580 0x0a90  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys

22:54:21.0582 0x0a90  blbdrive - ok

22:54:21.0613 0x0a90  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\windows\system32\DRIVERS\bowser.sys

22:54:21.0620 0x0a90  bowser - ok

22:54:21.0639 0x0a90  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys

22:54:21.0643 0x0a90  BrFiltLo - ok

22:54:21.0665 0x0a90  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys

22:54:21.0667 0x0a90  BrFiltUp - ok

22:54:21.0744 0x0a90  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\windows\System32\browser.dll

22:54:21.0755 0x0a90  Browser - ok

22:54:21.0795 0x0a90  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\windows\System32\Drivers\Brserid.sys

22:54:21.0816 0x0a90  Brserid - ok

22:54:21.0844 0x0a90  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys

22:54:21.0847 0x0a90  BrSerWdm - ok

22:54:21.0858 0x0a90  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys

22:54:21.0859 0x0a90  BrUsbMdm - ok

22:54:21.0866 0x0a90  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys

22:54:21.0868 0x0a90  BrUsbSer - ok

22:54:21.0933 0x0a90  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\windows\system32\drivers\BthEnum.sys

22:54:21.0937 0x0a90  BthEnum - ok

22:54:21.0975 0x0a90  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys

22:54:21.0982 0x0a90  BTHMODEM - ok

22:54:22.0021 0x0a90  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\windows\system32\DRIVERS\bthpan.sys

22:54:22.0026 0x0a90  BthPan - ok

22:54:22.0122 0x0a90  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\windows\System32\Drivers\BTHport.sys

22:54:22.0149 0x0a90  BTHPORT - ok

22:54:22.0185 0x0a90  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\windows\system32\bthserv.dll

22:54:22.0188 0x0a90  bthserv - ok

22:54:22.0204 0x0a90  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\windows\System32\Drivers\BTHUSB.sys

22:54:22.0210 0x0a90  BTHUSB - ok

22:54:22.0265 0x0a90  [ A0DFB69ADE3444C78B17636FCF28E898, 21B1E76F056C2AFD5DEAFD620D2F90F4F617F8E76A88CEA2196E69D2CFBEE88B ] BTWAMPFL        C:\windows\system32\DRIVERS\btwampfl.sys

22:54:22.0286 0x0a90  BTWAMPFL - ok

22:54:22.0319 0x0a90  [ F6135859A582A7294BA7A3336E08BAA1, DE30457F91C25950C2713CE3A2AE1F1EFFBB068DD3B0BCC87700E7CBAF73C818 ] btwaudio        C:\windows\system32\drivers\btwaudio.sys

22:54:22.0327 0x0a90  btwaudio - ok

22:54:22.0348 0x0a90  [ 3DEF2370E414B4E299673558BA171A51, 5A0923D9F941ABD34EC9BEE0EB62A62F135CBF128061239CC6EA0E6752791636 ] btwavdt         C:\windows\system32\drivers\btwavdt.sys

22:54:22.0358 0x0a90  btwavdt - ok

22:54:22.0440 0x0a90  [ B7DEA77EE893806859072274EE8EC8FC, E58AB4AE9A6FB4112814305D28BA7A060EAB92F98328737A7E719B3AFFE24383 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

22:54:22.0490 0x0a90  btwdins - ok

22:54:22.0516 0x0a90  [ 9AD0FA253ED531D39FB2D74FE12A5FA9, 74AC5ECB4F770274BBA8EBC584A0F08FDDDA21C4BB2A2DDD4BB871DC47B1447C ] btwl2cap        C:\windows\system32\DRIVERS\btwl2cap.sys

22:54:22.0517 0x0a90  btwl2cap - ok

22:54:22.0535 0x0a90  [ 9937E0E4DFC0030560A6DFE9D3A94B39, 0B9CF1932D4534BD7B1F5D7B7BD5FBF9C8D156838D24ABBDE475E79EEF1150F1 ] btwrchid        C:\windows\system32\DRIVERS\btwrchid.sys

22:54:22.0536 0x0a90  btwrchid - ok

22:54:22.0764 0x0a90  [ BE531939BB6D153DB63DBBFBD398A713, CB63FD4051198A89EDB3CF45199F99F5816A672FA9374E166ED7A5D17ED47468 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe

22:54:22.0819 0x0a90  c2cautoupdatesvc - ok

22:54:22.0984 0x0a90  [ 33E9F08F675EF94633C8EF8A7C4EADF3, E1556CF27F7FB3B03EE63F3464F5EE92E7B09E67C5D8AA4A9346FEEBD716A152 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe

22:54:23.0021 0x0a90  c2cpnrsvc - ok

22:54:23.0037 0x0a90  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys

22:54:23.0040 0x0a90  cdfs - ok

22:54:23.0067 0x0a90  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys

22:54:23.0072 0x0a90  cdrom - ok

22:54:23.0099 0x0a90  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\windows\System32\certprop.dll

22:54:23.0102 0x0a90  CertPropSvc - ok

22:54:23.0120 0x0a90  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\windows\system32\drivers\circlass.sys

22:54:23.0125 0x0a90  circlass - ok

22:54:23.0166 0x0a90  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\windows\system32\CLFS.sys

22:54:23.0176 0x0a90  CLFS - ok

22:54:23.0247 0x0a90  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

22:54:23.0254 0x0a90  clr_optimization_v2.0.50727_32 - ok

22:54:23.0303 0x0a90  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

22:54:23.0313 0x0a90  clr_optimization_v2.0.50727_64 - ok

22:54:23.0373 0x0a90  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

22:54:23.0402 0x0a90  clr_optimization_v4.0.30319_32 - ok

22:54:23.0431 0x0a90  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

22:54:23.0443 0x0a90  clr_optimization_v4.0.30319_64 - ok

22:54:23.0471 0x0a90  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys

22:54:23.0474 0x0a90  CmBatt - ok

22:54:23.0535 0x0a90  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\windows\system32\drivers\cmdide.sys

22:54:23.0539 0x0a90  cmdide - ok

22:54:23.0637 0x0a90  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\windows\system32\Drivers\cng.sys

22:54:23.0668 0x0a90  CNG - ok

22:54:23.0691 0x0a90  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\windows\system32\drivers\compbatt.sys

22:54:23.0693 0x0a90  Compbatt - ok

22:54:23.0711 0x0a90  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys

22:54:23.0713 0x0a90  CompositeBus - ok

22:54:23.0717 0x0a90  COMSysApp - ok

22:54:23.0740 0x0a90  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys

22:54:23.0741 0x0a90  crcdisk - ok

22:54:23.0808 0x0a90  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\windows\system32\cryptsvc.dll

22:54:23.0820 0x0a90  CryptSvc - ok

22:54:23.0861 0x0a90  [ BC3D4F90978CD7C8EABD1BAF3BF7873A, 5978139650FC51BE0CAB12061702C7BC7BEDF6E7C3A047FF0A6328AA674E4226 ] CtClsFlt        C:\windows\system32\DRIVERS\CtClsFlt.sys

22:54:23.0874 0x0a90  CtClsFlt - ok

22:54:23.0942 0x0a90  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\windows\system32\rpcss.dll

22:54:23.0978 0x0a90  DcomLaunch - ok

22:54:24.0024 0x0a90  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\windows\System32\defragsvc.dll

22:54:24.0033 0x0a90  defragsvc - ok

22:54:24.0074 0x0a90  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\windows\system32\Drivers\dfsc.sys

22:54:24.0082 0x0a90  DfsC - ok

22:54:24.0126 0x0a90  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\windows\system32\dhcpcore.dll

22:54:24.0147 0x0a90  Dhcp - ok

22:54:24.0179 0x0a90  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\windows\system32\drivers\discache.sys

22:54:24.0183 0x0a90  discache - ok

22:54:24.0204 0x0a90  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\windows\system32\drivers\disk.sys

22:54:24.0210 0x0a90  Disk - ok

22:54:24.0243 0x0a90  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\windows\System32\dnsrslvr.dll

22:54:24.0248 0x0a90  Dnscache - ok

22:54:24.0265 0x0a90  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\windows\System32\dot3svc.dll

22:54:24.0273 0x0a90  dot3svc - ok

22:54:24.0285 0x0a90  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\windows\system32\dps.dll

22:54:24.0290 0x0a90  DPS - ok

22:54:24.0317 0x0a90  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys

22:54:24.0318 0x0a90  drmkaud - ok

22:54:24.0400 0x0a90  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys

22:54:24.0436 0x0a90  DXGKrnl - ok

22:54:24.0457 0x0a90  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\windows\System32\eapsvc.dll

22:54:24.0460 0x0a90  EapHost - ok

22:54:24.0628 0x0a90  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\windows\system32\drivers\evbda.sys

22:54:24.0778 0x0a90  ebdrv - ok

22:54:24.0841 0x0a90  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\windows\System32\lsass.exe

22:54:24.0843 0x0a90  EFS - ok

22:54:24.0950 0x0a90  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\windows\ehome\ehRecvr.exe

22:54:24.0975 0x0a90  ehRecvr - ok

22:54:24.0997 0x0a90  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\windows\ehome\ehsched.exe

22:54:25.0001 0x0a90  ehSched - ok

22:54:25.0059 0x0a90  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\windows\system32\drivers\elxstor.sys

22:54:25.0096 0x0a90  elxstor - ok

22:54:25.0119 0x0a90  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\windows\system32\drivers\errdev.sys

22:54:25.0122 0x0a90  ErrDev - ok

22:54:25.0175 0x0a90  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\windows\system32\es.dll

22:54:25.0184 0x0a90  EventSystem - ok

22:54:25.0266 0x0a90  [ 62D6246A3E6AB69690F08F1BD1706F3D, 8472D014971C1E71A23DD05D9A46CD6B980633F953B261E3A0A448897FC571F8 ] ewusbmbb        C:\windows\system32\DRIVERS\ewusbwwan.sys

22:54:25.0296 0x0a90  ewusbmbb - ok

22:54:25.0367 0x0a90  [ 86F7951BBCEE4A86E79A97306BD14318, 84B52A0392DA53ED71A2C4D483DD93DDF552BF8AC764C7BD47BE0EB58C7C8219 ] ew_hwusbdev     C:\windows\system32\DRIVERS\ew_hwusbdev.sys

22:54:25.0371 0x0a90  ew_hwusbdev - ok

22:54:25.0428 0x0a90  [ 55E0EDA185869F7EA67EA97FD0655B39, D4A51E383102AA48F022EFCA08FAC389336A22C1DF60E17815117EFA60716964 ] ew_usbenumfilter C:\windows\system32\DRIVERS\ew_usbenumfilter.sys

22:54:25.0431 0x0a90  ew_usbenumfilter - ok

22:54:25.0465 0x0a90  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\windows\system32\drivers\exfat.sys

22:54:25.0480 0x0a90  exfat - ok

22:54:25.0533 0x0a90  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\windows\system32\drivers\fastfat.sys

22:54:25.0540 0x0a90  fastfat - ok

22:54:25.0594 0x0a90  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\windows\system32\fxssvc.exe

22:54:25.0616 0x0a90  Fax - ok

22:54:25.0622 0x0a90  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\windows\system32\drivers\fdc.sys

22:54:25.0626 0x0a90  fdc - ok

22:54:25.0650 0x0a90  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\windows\system32\fdPHost.dll

22:54:25.0652 0x0a90  fdPHost - ok

22:54:25.0662 0x0a90  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\windows\system32\fdrespub.dll

22:54:25.0666 0x0a90  FDResPub - ok

22:54:25.0677 0x0a90  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\windows\system32\drivers\fileinfo.sys

22:54:25.0680 0x0a90  FileInfo - ok

22:54:25.0697 0x0a90  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\windows\system32\drivers\filetrace.sys

22:54:25.0699 0x0a90  Filetrace - ok

22:54:25.0781 0x0a90  [ BB0667B0171B632B97EA759515476F07, 07A123B2182D5813D2898928C231638353CF086606E9D5A5AF4A2A73E17CEC27 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

22:54:25.0803 0x0a90  FLEXnet Licensing Service - ok

22:54:25.0838 0x0a90  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\windows\system32\drivers\flpydisk.sys

22:54:25.0840 0x0a90  flpydisk - ok

22:54:25.0878 0x0a90  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys

22:54:25.0887 0x0a90  FltMgr - ok

22:54:25.0995 0x0a90  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\windows\system32\FntCache.dll

22:54:26.0023 0x0a90  FontCache - ok

22:54:26.0068 0x0a90  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

22:54:26.0071 0x0a90  FontCache3.0.0.0 - ok

22:54:26.0099 0x0a90  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys

22:54:26.0102 0x0a90  FsDepends - ok

22:54:26.0137 0x0a90  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys

22:54:26.0140 0x0a90  Fs_Rec - ok

22:54:26.0189 0x0a90  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys

22:54:26.0196 0x0a90  fvevol - ok

22:54:26.0209 0x0a90  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys

22:54:26.0212 0x0a90  gagp30kx - ok

22:54:26.0264 0x0a90  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys

22:54:26.0268 0x0a90  GEARAspiWDM - ok

22:54:26.0347 0x0a90  [ B1C9B932F5A728800AB9C2C88C92594A, 74290A76EECB5B25C1F36DC9FD20EC80E9C60E569D42BA02F6568F75D0269EEA ] Gizmo Central   C:\Program Files (x86)\Gizmo\gservice.exe

22:54:26.0351 0x0a90  Gizmo Central - ok

22:54:26.0367 0x0a90  [ 4CF044DB46F79BFA47FBDFD35192D765, 8520DBAAB9BD148296B468D972BA51B3B2C829355E6109EE190CB7965873DF8D ] GizmoDrv        C:\windows\system32\drivers\GizmoDrv.sys

22:54:26.0370 0x0a90  GizmoDrv - ok

22:54:26.0449 0x0a90  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\windows\System32\gpsvc.dll

22:54:26.0476 0x0a90  gpsvc - ok

22:54:26.0630 0x0a90  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

22:54:26.0638 0x0a90  gupdate - ok

22:54:26.0651 0x0a90  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

22:54:26.0659 0x0a90  gupdatem - ok

22:54:26.0692 0x0a90  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

22:54:26.0704 0x0a90  gusvc - ok

22:54:26.0738 0x0a90  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys

22:54:26.0739 0x0a90  hcw85cir - ok

22:54:26.0762 0x0a90  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys

22:54:26.0786 0x0a90  HdAudAddService - ok

22:54:26.0819 0x0a90  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys

22:54:26.0825 0x0a90  HDAudBus - ok

22:54:26.0830 0x0a90  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\windows\system32\drivers\HidBatt.sys

22:54:26.0832 0x0a90  HidBatt - ok

22:54:26.0838 0x0a90  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\windows\system32\drivers\hidbth.sys

22:54:26.0842 0x0a90  HidBth - ok

22:54:26.0848 0x0a90  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\windows\system32\drivers\hidir.sys

22:54:26.0851 0x0a90  HidIr - ok

22:54:26.0881 0x0a90  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\windows\system32\hidserv.dll

22:54:26.0883 0x0a90  hidserv - ok

22:54:26.0949 0x0a90  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys

22:54:26.0955 0x0a90  HidUsb - ok

22:54:26.0996 0x0a90  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\windows\system32\kmsvc.dll

22:54:27.0005 0x0a90  hkmsvc - ok

22:54:27.0020 0x0a90  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll

22:54:27.0028 0x0a90  HomeGroupListener - ok

22:54:27.0062 0x0a90  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll

22:54:27.0068 0x0a90  HomeGroupProvider - ok

22:54:27.0098 0x0a90  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys

22:54:27.0101 0x0a90  HpSAMD - ok

22:54:27.0163 0x0a90  [ D2C564436B4CBDCDB43793A1B9DEC5E7, 213F75EB3DCFE1053A704D162AC11E6823102C7AB0DD6ED29E55B0761D1ED4D5 ] HPSIService     C:\windows\system32\HPSIsvc.exe

22:54:27.0167 0x0a90  HPSIService - ok

22:54:27.0232 0x0a90  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\windows\system32\drivers\HTTP.sys

22:54:27.0279 0x0a90  HTTP - ok

22:54:27.0350 0x0a90  [ CCE3DB0BA3C615CAA321EB1301532688, A1E2B635BAA50D4A59207EC4ADA5EA0C54F91D03721B648D4905FEEE4B6F79A6 ] huawei_enumerator C:\windows\system32\DRIVERS\ew_jubusenum.sys

22:54:27.0353 0x0a90  huawei_enumerator - ok

22:54:27.0419 0x0a90  [ CE93B8AF848FE2AA44455A4769C1BC8A, 4344ED4179025E65F5386B97B63EB46E85CA62AA54C314B9894F2E65100EC86C ] hwdatacard      C:\windows\system32\DRIVERS\ewusbmdm.sys

22:54:27.0426 0x0a90  hwdatacard - ok

22:54:27.0547 0x0a90  [ E90DA42B87D684DEBFB73B38A718A006, BB18C63C1982F5CB99C9B65D2B801E8C1909AD7CD0171326DC0015D6B781B451 ] HWDeviceService64.exe C:\ProgramData\DatacardService\HWDeviceService64.exe

22:54:27.0570 0x0a90  HWDeviceService64.exe - ok

22:54:27.0593 0x0a90  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys

22:54:27.0595 0x0a90  hwpolicy - ok

22:54:27.0621 0x0a90  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys

22:54:27.0625 0x0a90  i8042prt - ok

22:54:27.0663 0x0a90  [ D469B77687E12FE43E344806740B624D, DFDD486FD040813BF4E5DDB504CF9E0BFBF6D4E540DDDA4829F9B675ACF63E89 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys

22:54:27.0690 0x0a90  iaStor - ok

22:54:27.0744 0x0a90  [ 983FC69644DDF0486C8DFEA262948D1A, 329EC95117C31E61F6D22D79CFF339D70A70522710E7DC0CED06EC95E6D4B34F ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

22:54:27.0746 0x0a90  IAStorDataMgrSvc - ok

22:54:27.0775 0x0a90  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys

22:54:27.0792 0x0a90  iaStorV - ok

22:54:27.0875 0x0a90  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

22:54:27.0899 0x0a90  idsvc - ok

22:54:27.0906 0x0a90  IEEtwCollectorService - ok

22:54:28.0331 0x0a90  [ 795C99DC4F574C97C03D0BB39CF099EE, 67310B52F7A1B83A66872B961F347B1BD104C8A83A01F60507705B2ACEA76B71 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys

22:54:28.0758 0x0a90  igfx - ok

22:54:28.0811 0x0a90  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\windows\system32\drivers\iirsp.sys

22:54:28.0814 0x0a90  iirsp - ok

22:54:28.0978 0x0a90  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\windows\System32\ikeext.dll

22:54:29.0005 0x0a90  IKEEXT - ok

22:54:29.0040 0x0a90  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys

22:54:29.0049 0x0a90  IntcDAud - ok

22:54:29.0112 0x0a90  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\windows\system32\drivers\intelide.sys

22:54:29.0117 0x0a90  intelide - ok

22:54:29.0147 0x0a90  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys

22:54:29.0152 0x0a90  intelppm - ok

22:54:29.0186 0x0a90  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\windows\system32\ipbusenum.dll

22:54:29.0190 0x0a90  IPBusEnum - ok

22:54:29.0213 0x0a90  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys

22:54:29.0216 0x0a90  IpFilterDriver - ok

22:54:29.0319 0x0a90  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\windows\System32\iphlpsvc.dll

22:54:29.0351 0x0a90  iphlpsvc - ok

22:54:29.0358 0x0a90  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys

22:54:29.0361 0x0a90  IPMIDRV - ok

22:54:29.0370 0x0a90  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\windows\system32\drivers\ipnat.sys

22:54:29.0375 0x0a90  IPNAT - ok

22:54:29.0421 0x0a90  [ 7E4F8065367AE5BA387262D57B868DF5, 3D09A778748D30AFD37B23603CCC151B028D505FF3CB7763CE393F6CFAED3A9E ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe

22:54:29.0440 0x0a90  iPod Service - ok

22:54:29.0454 0x0a90  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\windows\system32\drivers\irenum.sys

22:54:29.0456 0x0a90  IRENUM - ok

22:54:29.0473 0x0a90  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\windows\system32\drivers\isapnp.sys

22:54:29.0475 0x0a90  isapnp - ok

22:54:29.0517 0x0a90  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys

22:54:29.0527 0x0a90  iScsiPrt - ok

22:54:29.0546 0x0a90  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys

22:54:29.0548 0x0a90  kbdclass - ok

22:54:29.0559 0x0a90  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\windows\system32\DRIVERS\kbdhid.sys

22:54:29.0562 0x0a90  kbdhid - ok

22:54:29.0578 0x0a90  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\windows\system32\lsass.exe

22:54:29.0580 0x0a90  KeyIso - ok

22:54:29.0640 0x0a90  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys

22:54:29.0644 0x0a90  KSecDD - ok

22:54:29.0660 0x0a90  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys

22:54:29.0665 0x0a90  KSecPkg - ok

22:54:29.0674 0x0a90  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\windows\system32\drivers\ksthunk.sys

22:54:29.0677 0x0a90  ksthunk - ok

22:54:29.0723 0x0a90  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\windows\system32\msdtckrm.dll

22:54:29.0735 0x0a90  KtmRm - ok

22:54:29.0780 0x0a90  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\windows\system32\srvsvc.dll

22:54:29.0800 0x0a90  LanmanServer - ok

22:54:29.0838 0x0a90  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll

22:54:29.0842 0x0a90  LanmanWorkstation - ok

22:54:29.0856 0x0a90  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys

22:54:29.0858 0x0a90  lltdio - ok

22:54:29.0902 0x0a90  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\windows\System32\lltdsvc.dll

22:54:29.0925 0x0a90  lltdsvc - ok

22:54:29.0943 0x0a90  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\windows\System32\lmhsvc.dll

22:54:29.0949 0x0a90  lmhosts - ok

22:54:30.0026 0x0a90  [ 98B16E756243BEA9410E32025B19C06F, C4F8663FF4C2F1123CC92D88004090AD06ED12FCD07706AE168333A33B269A53 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

22:54:30.0036 0x0a90  LMS - ok

22:54:30.0065 0x0a90  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys

22:54:30.0069 0x0a90  LSI_FC - ok

22:54:30.0089 0x0a90  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys

22:54:30.0094 0x0a90  LSI_SAS - ok

22:54:30.0101 0x0a90  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys

22:54:30.0104 0x0a90  LSI_SAS2 - ok

22:54:30.0126 0x0a90  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys

22:54:30.0131 0x0a90  LSI_SCSI - ok

22:54:30.0154 0x0a90  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\windows\system32\drivers\luafv.sys

22:54:30.0158 0x0a90  luafv - ok

22:54:30.0195 0x0a90  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll

22:54:30.0218 0x0a90  Mcx2Svc - ok

22:54:30.0240 0x0a90  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\windows\system32\drivers\megasas.sys

22:54:30.0242 0x0a90  megasas - ok

22:54:30.0285 0x0a90  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys

22:54:30.0309 0x0a90  MegaSR - ok

22:54:30.0349 0x0a90  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys

22:54:30.0350 0x0a90  MEIx64 - ok

22:54:30.0487 0x0a90  [ 123271BD5237AB991DC5C21FDF8835EB, 004F8F9228EE291A0E36CE33078D572D61733516F9AA5CFC832AF204C6869E89 ] Microsoft Office Groove Audit Service C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe

22:54:30.0494 0x0a90  Microsoft Office Groove Audit Service - ok

22:54:30.0523 0x0a90  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\windows\system32\mmcss.dll

22:54:30.0531 0x0a90  MMCSS - ok

22:54:30.0705 0x0a90  [ 625C98D60AD5AB1FCCBD0E2C0AC0D905, 13015E18450F817DAA2A1383999A78A21EC1CBF6FD8F2CACD6E022BB75BBF18C ] Mobile Partner. RunOuc C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe

22:54:30.0732 0x0a90  Mobile Partner. RunOuc - ok

22:54:30.0754 0x0a90  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\windows\system32\drivers\modem.sys

22:54:30.0755 0x0a90  Modem - ok

22:54:30.0790 0x0a90  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\windows\system32\DRIVERS\monitor.sys

22:54:30.0793 0x0a90  monitor - ok

22:54:30.0823 0x0a90  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys

22:54:30.0827 0x0a90  mouclass - ok

22:54:30.0846 0x0a90  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys

22:54:30.0852 0x0a90  mouhid - ok

22:54:30.0891 0x0a90  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys

22:54:30.0899 0x0a90  mountmgr - ok

22:54:30.0962 0x0a90  [ 528A5C2570F468155A1B3CF0A2FF5EBD, 473EEE97A4690A919DE05C525F0858DA9A5BD30072383D81F096F82DDFC93BAB ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

22:54:30.0972 0x0a90  MozillaMaintenance - ok

22:54:31.0002 0x0a90  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\windows\system32\drivers\mpio.sys

22:54:31.0014 0x0a90  mpio - ok

22:54:31.0038 0x0a90  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys

22:54:31.0045 0x0a90  mpsdrv - ok

22:54:31.0133 0x0a90  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\windows\system32\mpssvc.dll

22:54:31.0159 0x0a90  MpsSvc - ok

22:54:31.0218 0x0a90  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys

22:54:31.0233 0x0a90  MRxDAV - ok

22:54:31.0280 0x0a90  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys

22:54:31.0284 0x0a90  mrxsmb - ok

22:54:31.0307 0x0a90  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys

22:54:31.0316 0x0a90  mrxsmb10 - ok

22:54:31.0330 0x0a90  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys

22:54:31.0334 0x0a90  mrxsmb20 - ok

22:54:31.0393 0x0a90  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\windows\system32\drivers\msahci.sys

22:54:31.0396 0x0a90  msahci - ok

22:54:31.0419 0x0a90  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\windows\system32\drivers\msdsm.sys

22:54:31.0424 0x0a90  msdsm - ok

22:54:31.0448 0x0a90  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\windows\System32\msdtc.exe

22:54:31.0454 0x0a90  MSDTC - ok

22:54:31.0463 0x0a90  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\windows\system32\drivers\Msfs.sys

22:54:31.0465 0x0a90  Msfs - ok

22:54:31.0480 0x0a90  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys

22:54:31.0482 0x0a90  mshidkmdf - ok

22:54:31.0490 0x0a90  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys

22:54:31.0491 0x0a90  msisadrv - ok

22:54:31.0516 0x0a90  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\windows\system32\iscsiexe.dll

22:54:31.0522 0x0a90  MSiSCSI - ok

22:54:31.0525 0x0a90  msiserver - ok

22:54:31.0545 0x0a90  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys

22:54:31.0547 0x0a90  MSKSSRV - ok

22:54:31.0550 0x0a90  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys

22:54:31.0552 0x0a90  MSPCLOCK - ok

22:54:31.0588 0x0a90  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\windows\system32\drivers\MSPQM.sys

22:54:31.0590 0x0a90  MSPQM - ok

22:54:31.0610 0x0a90  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys

22:54:31.0620 0x0a90  MsRPC - ok

22:54:31.0641 0x0a90  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys

22:54:31.0644 0x0a90  mssmbios - ok

22:54:31.0663 0x0a90  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\windows\system32\drivers\MSTEE.sys

22:54:31.0666 0x0a90  MSTEE - ok

22:54:31.0675 0x0a90  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\windows\system32\drivers\MTConfig.sys

22:54:31.0678 0x0a90  MTConfig - ok

22:54:31.0704 0x0a90  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\windows\system32\Drivers\mup.sys

22:54:31.0706 0x0a90  Mup - ok

22:54:31.0773 0x0a90  [ E5C81AB15F35901D542696C4719264BC, B7C4B7EE10D613EDB26CACF01E2905058F4F9CAE008CBBDDBCFD73DD8E703272 ] mvusbews        C:\windows\system32\Drivers\mvusbews.sys

22:54:31.0777 0x0a90  mvusbews - ok

22:54:31.0842 0x0a90  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\windows\system32\qagentRT.dll

22:54:31.0877 0x0a90  napagent - ok

22:54:31.0935 0x0a90  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys

22:54:31.0955 0x0a90  NativeWifiP - ok

22:54:32.0099 0x0a90  [ 934BB0D23A25C8C136570800A5A149B6, 15D99CE4E970FECE257F6D69810F8104720B26D8DC3787BC38CC8692ACEABD37 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe

22:54:32.0145 0x0a90  NAUpdate - ok

22:54:32.0284 0x0a90  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\windows\system32\drivers\ndis.sys

22:54:32.0309 0x0a90  NDIS - ok

22:54:32.0338 0x0a90  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys

22:54:32.0340 0x0a90  NdisCap - ok

22:54:32.0358 0x0a90  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys

22:54:32.0359 0x0a90  NdisTapi - ok

22:54:32.0369 0x0a90  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys

22:54:32.0371 0x0a90  Ndisuio - ok

22:54:32.0385 0x0a90  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys

22:54:32.0390 0x0a90  NdisWan - ok

22:54:32.0408 0x0a90  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys

22:54:32.0410 0x0a90  NDProxy - ok

22:54:32.0421 0x0a90  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys

22:54:32.0423 0x0a90  NetBIOS - ok

22:54:32.0445 0x0a90  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys

22:54:32.0452 0x0a90  NetBT - ok

22:54:32.0462 0x0a90  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\windows\system32\lsass.exe

22:54:32.0465 0x0a90  Netlogon - ok

22:54:32.0519 0x0a90  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\windows\System32\netman.dll

22:54:32.0546 0x0a90  Netman - ok

22:54:32.0603 0x0a90  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

22:54:32.0608 0x0a90  NetMsmqActivator - ok

22:54:32.0614 0x0a90  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

22:54:32.0618 0x0a90  NetPipeActivator - ok

22:54:32.0661 0x0a90  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\windows\System32\netprofm.dll

22:54:32.0694 0x0a90  netprofm - ok

22:54:32.0706 0x0a90  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

22:54:32.0709 0x0a90  NetTcpActivator - ok

22:54:32.0717 0x0a90  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

22:54:32.0721 0x0a90  NetTcpPortSharing - ok

22:54:32.0733 0x0a90  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys

22:54:32.0736 0x0a90  nfrd960 - ok

22:54:32.0759 0x0a90  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\windows\System32\nlasvc.dll

22:54:32.0767 0x0a90  NlaSvc - ok

22:54:32.0990 0x0a90  [ B9B72FAAAA41D59B73B88FE3DD737ED1, 050E741FB5313523340B19C9C168611222C4AE9A6084FE3E2F908A49EA909A29 ] NOBU            C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe

22:54:33.0055 0x0a90  NOBU - ok

22:54:33.0076 0x0a90  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\windows\system32\drivers\Npfs.sys

22:54:33.0078 0x0a90  Npfs - ok

22:54:33.0099 0x0a90  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\windows\system32\nsisvc.dll

22:54:33.0101 0x0a90  nsi - ok

22:54:33.0130 0x0a90  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys

22:54:33.0134 0x0a90  nsiproxy - ok

22:54:33.0264 0x0a90  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\windows\system32\drivers\Ntfs.sys

22:54:33.0339 0x0a90  Ntfs - ok

22:54:33.0353 0x0a90  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\windows\system32\drivers\Null.sys

22:54:33.0356 0x0a90  Null - ok

22:54:33.0381 0x0a90  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\windows\system32\drivers\nvraid.sys

22:54:33.0386 0x0a90  nvraid - ok

22:54:33.0418 0x0a90  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\windows\system32\drivers\nvstor.sys

22:54:33.0423 0x0a90  nvstor - ok

22:54:33.0439 0x0a90  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\windows\system32\drivers\nv_agp.sys

22:54:33.0449 0x0a90  nv_agp - ok

22:54:33.0613 0x0a90  [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

22:54:33.0643 0x0a90  odserv - ok

22:54:33.0668 0x0a90  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys

22:54:33.0675 0x0a90  ohci1394 - ok

22:54:33.0744 0x0a90  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

22:54:33.0756 0x0a90  ose - ok

22:54:33.0810 0x0a90  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll

22:54:33.0836 0x0a90  p2pimsvc - ok

22:54:33.0891 0x0a90  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\windows\system32\p2psvc.dll

22:54:33.0910 0x0a90  p2psvc - ok

22:54:33.0934 0x0a90  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\windows\system32\drivers\parport.sys

22:54:33.0938 0x0a90  Parport - ok

22:54:33.0991 0x0a90  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\windows\system32\drivers\partmgr.sys

22:54:33.0998 0x0a90  partmgr - ok

22:54:34.0030 0x0a90  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\windows\System32\pcasvc.dll

22:54:34.0045 0x0a90  PcaSvc - ok

22:54:34.0076 0x0a90  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\windows\system32\drivers\pci.sys

22:54:34.0086 0x0a90  pci - ok

22:54:34.0142 0x0a90  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\windows\system32\drivers\pciide.sys

22:54:34.0143 0x0a90  pciide - ok

22:54:34.0170 0x0a90  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys

22:54:34.0186 0x0a90  pcmcia - ok

22:54:34.0209 0x0a90  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\windows\system32\drivers\pcw.sys

22:54:34.0210 0x0a90  pcw - ok

22:54:34.0250 0x0a90  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\windows\system32\drivers\peauth.sys

22:54:34.0264 0x0a90  PEAUTH - ok

22:54:34.0334 0x0a90  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\windows\SysWow64\perfhost.exe

22:54:34.0336 0x0a90  PerfHost - ok

22:54:34.0450 0x0a90  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\windows\system32\pla.dll

22:54:34.0486 0x0a90  pla - ok

22:54:34.0523 0x0a90  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\windows\system32\umpnpmgr.dll

22:54:34.0533 0x0a90  PlugPlay - ok

22:54:34.0582 0x0a90  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll

22:54:34.0589 0x0a90  PNRPAutoReg - ok

22:54:34.0626 0x0a90  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll

22:54:34.0634 0x0a90  PNRPsvc - ok

22:54:34.0682 0x0a90  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll

22:54:34.0696 0x0a90  PolicyAgent - ok

22:54:34.0728 0x0a90  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\windows\system32\umpo.dll

22:54:34.0733 0x0a90  Power - ok

22:54:34.0770 0x0a90  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys

22:54:34.0774 0x0a90  PptpMiniport - ok

22:54:34.0792 0x0a90  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\windows\system32\drivers\processr.sys

22:54:34.0795 0x0a90  Processor - ok

22:54:34.0887 0x0a90  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\windows\system32\profsvc.dll

22:54:34.0902 0x0a90  ProfSvc - ok

22:54:34.0938 0x0a90  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\windows\system32\lsass.exe

22:54:34.0943 0x0a90  ProtectedStorage - ok

22:54:34.0970 0x0a90  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\windows\system32\DRIVERS\pacer.sys

22:54:34.0980 0x0a90  Psched - ok

22:54:35.0027 0x0a90  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\windows\system32\Drivers\PxHlpa64.sys

22:54:35.0032 0x0a90  PxHlpa64 - ok

22:54:35.0162 0x0a90  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\windows\system32\drivers\ql2300.sys

22:54:35.0202 0x0a90  ql2300 - ok

22:54:35.0210 0x0a90  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\windows\system32\drivers\ql40xx.sys

22:54:35.0214 0x0a90  ql40xx - ok

22:54:35.0248 0x0a90  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\windows\system32\qwave.dll

22:54:35.0256 0x0a90  QWAVE - ok

22:54:35.0283 0x0a90  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys

22:54:35.0289 0x0a90  QWAVEdrv - ok

22:54:35.0309 0x0a90  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys

22:54:35.0313 0x0a90  RasAcd - ok

22:54:35.0351 0x0a90  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys

22:54:35.0357 0x0a90  RasAgileVpn - ok

22:54:35.0382 0x0a90  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\windows\System32\rasauto.dll

22:54:35.0393 0x0a90  RasAuto - ok

22:54:35.0407 0x0a90  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys

22:54:35.0412 0x0a90  Rasl2tp - ok

22:54:35.0435 0x0a90  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\windows\System32\rasmans.dll

22:54:35.0446 0x0a90  RasMan - ok

22:54:35.0468 0x0a90  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys

22:54:35.0476 0x0a90  RasPppoe - ok

22:54:35.0501 0x0a90  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys

22:54:35.0509 0x0a90  RasSstp - ok

22:54:35.0538 0x0a90  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys

22:54:35.0547 0x0a90  rdbss - ok

22:54:35.0566 0x0a90  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\windows\system32\drivers\rdpbus.sys

22:54:35.0568 0x0a90  rdpbus - ok

22:54:35.0587 0x0a90  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys

22:54:35.0589 0x0a90  RDPCDD - ok

22:54:35.0611 0x0a90  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys

22:54:35.0613 0x0a90  RDPENCDD - ok

22:54:35.0632 0x0a90  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys

22:54:35.0634 0x0a90  RDPREFMP - ok

22:54:35.0707 0x0a90  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys

22:54:35.0722 0x0a90  RDPWD - ok

22:54:35.0760 0x0a90  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys

22:54:35.0775 0x0a90  rdyboost - ok

22:54:35.0820 0x0a90  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\windows\System32\mprdim.dll

22:54:35.0831 0x0a90  RemoteAccess - ok

22:54:35.0877 0x0a90  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\windows\system32\regsvc.dll

22:54:35.0892 0x0a90  RemoteRegistry - ok

22:54:35.0921 0x0a90  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\windows\system32\DRIVERS\rfcomm.sys

22:54:35.0933 0x0a90  RFCOMM - ok

22:54:36.0089 0x0a90  [ 3C957189B31C34D3AD21967B12B6AED7, 878FE6EA03F60592D6D557B905A5119E2CC836C2A6A86ED2867C3C9B0F0FDBA2 ] RoxMediaDB12OEM c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxMediaDB12OEM.exe

22:54:36.0138 0x0a90  RoxMediaDB12OEM - ok

22:54:36.0181 0x0a90  [ 2B73088CC2CA757A172B425C9398E5BC, 3D296B4D6F66F7729CC48FE54456E6E6D8207DBA7E31D66653566C128E53163B ] RoxWatch12      c:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatch12OEM.exe

22:54:36.0194 0x0a90  RoxWatch12 - ok

22:54:36.0221 0x0a90  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll

22:54:36.0229 0x0a90  RpcEptMapper - ok

22:54:36.0260 0x0a90  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\windows\system32\locator.exe

22:54:36.0261 0x0a90  RpcLocator - ok

22:54:36.0293 0x0a90  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\windows\system32\rpcss.dll

22:54:36.0309 0x0a90  RpcSs - ok

22:54:36.0338 0x0a90  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys

22:54:36.0344 0x0a90  rspndr - ok

22:54:36.0386 0x0a90  [ BE29B0A3AC1E8BD02FFAB8CEE86BADFA, D6F76ECD30EDE1E5B1F01919B1492715947ACCA411D70BB2771427775736C055 ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys

22:54:36.0391 0x0a90  RSUSBSTOR - ok

22:54:36.0446 0x0a90  [ E50CFB92986DCAB49DE93788FD695813, EAE103008B967B0F064EDDA551AA553EE7C22D39D14FA0BBFEF41C4D1B6C99E5 ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys

22:54:36.0488 0x0a90  RTL8167 - ok

22:54:36.0501 0x0a90  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\windows\system32\lsass.exe

22:54:36.0503 0x0a90  SamSs - ok

22:54:36.0524 0x0a90  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys

22:54:36.0528 0x0a90  sbp2port - ok

22:54:36.0559 0x0a90  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\windows\System32\SCardSvr.dll

22:54:36.0568 0x0a90  SCardSvr - ok

22:54:36.0582 0x0a90  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys

22:54:36.0585 0x0a90  scfilter - ok

22:54:36.0641 0x0a90  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\windows\system32\schedsvc.dll

22:54:36.0666 0x0a90  Schedule - ok

22:54:36.0700 0x0a90  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\windows\System32\certprop.dll

22:54:36.0702 0x0a90  SCPolicySvc - ok

22:54:36.0735 0x0a90  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\windows\System32\SDRSVC.dll

22:54:36.0751 0x0a90  SDRSVC - ok

22:54:36.0780 0x0a90  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys

22:54:36.0784 0x0a90  secdrv - ok

22:54:36.0804 0x0a90  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\windows\system32\seclogon.dll

22:54:36.0810 0x0a90  seclogon - ok

22:54:36.0833 0x0a90  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\windows\System32\sens.dll

22:54:36.0841 0x0a90  SENS - ok

22:54:36.0847 0x0a90  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\windows\system32\sensrsvc.dll

22:54:36.0850 0x0a90  SensrSvc - ok

22:54:36.0872 0x0a90  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\windows\system32\drivers\serenum.sys

22:54:36.0874 0x0a90  Serenum - ok

22:54:36.0879 0x0a90  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\windows\system32\drivers\serial.sys

22:54:36.0883 0x0a90  Serial - ok

22:54:36.0887 0x0a90  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\windows\system32\drivers\sermouse.sys

22:54:36.0889 0x0a90  sermouse - ok

22:54:36.0909 0x0a90  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\windows\system32\sessenv.dll

22:54:36.0914 0x0a90  SessionEnv - ok

22:54:36.0918 0x0a90  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys

22:54:36.0920 0x0a90  sffdisk - ok

22:54:36.0924 0x0a90  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys

22:54:36.0926 0x0a90  sffp_mmc - ok

22:54:36.0929 0x0a90  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys

22:54:36.0932 0x0a90  sffp_sd - ok

22:54:36.0936 0x0a90  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys

22:54:36.0938 0x0a90  sfloppy - ok

22:54:37.0065 0x0a90  [ 74EC60E20516AAA573BE74F31175270F, 35A68231368DEE46FEF2A4E30BFAAC38F093FC5A362A7491ED38BDE11F0FC356 ] SftService      C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

22:54:37.0115 0x0a90  SftService - ok

22:54:37.0160 0x0a90  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\windows\System32\ipnathlp.dll

22:54:37.0170 0x0a90  SharedAccess - ok

22:54:37.0229 0x0a90  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll

22:54:37.0255 0x0a90  ShellHWDetection - ok

22:54:37.0275 0x0a90  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys

22:54:37.0278 0x0a90  SiSRaid2 - ok

22:54:37.0300 0x0a90  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys

22:54:37.0304 0x0a90  SiSRaid4 - ok

22:54:37.0438 0x0a90  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe

22:54:37.0450 0x0a90  SkypeUpdate - ok

22:54:37.0464 0x0a90  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\windows\system32\DRIVERS\smb.sys

22:54:37.0472 0x0a90  Smb - ok

22:54:37.0509 0x0a90  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\windows\System32\snmptrap.exe

22:54:37.0511 0x0a90  SNMPTRAP - ok

22:54:37.0545 0x0a90  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\windows\system32\drivers\spldr.sys

22:54:37.0546 0x0a90  spldr - ok

22:54:37.0629 0x0a90  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\windows\System32\spoolsv.exe

22:54:37.0642 0x0a90  Spooler - ok

22:54:37.0879 0x0a90  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\windows\system32\sppsvc.exe

22:54:37.0965 0x0a90  sppsvc - ok

22:54:37.0986 0x0a90  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\windows\system32\sppuinotify.dll

22:54:37.0991 0x0a90  sppuinotify - ok

22:54:38.0037 0x0a90  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\windows\system32\DRIVERS\srv.sys

22:54:38.0050 0x0a90  srv - ok

22:54:38.0071 0x0a90  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\windows\system32\DRIVERS\srv2.sys

22:54:38.0083 0x0a90  srv2 - ok

22:54:38.0108 0x0a90  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys

22:54:38.0114 0x0a90  srvnet - ok

22:54:38.0162 0x0a90  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll

22:54:38.0169 0x0a90  SSDPSRV - ok

22:54:38.0186 0x0a90  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\windows\system32\sstpsvc.dll

22:54:38.0190 0x0a90  SstpSvc - ok

22:54:38.0301 0x0a90  [ A6B2EC3A2B6AD7C3F7B2F3495CADE4C0, AD540FB4F300731DE403FB95F110A0F3DBA25917A91EAB23966286DD88C98D17 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe

22:54:38.0320 0x0a90  STacSV - ok

22:54:38.0351 0x0a90  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\windows\system32\drivers\stexstor.sys

22:54:38.0353 0x0a90  stexstor - ok

22:54:38.0389 0x0a90  [ EBA98394A7D58F7552C52192BD8FA7E6, 4238870E50132E87772300058B37E36973695CC1A5E62117EEF4B424C6A137E4 ] STHDA           C:\windows\system32\DRIVERS\stwrt64.sys

22:54:38.0403 0x0a90  STHDA - ok

22:54:38.0467 0x0a90  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\windows\System32\wiaservc.dll

22:54:38.0484 0x0a90  stisvc - ok

22:54:38.0523 0x0a90  [ 7731F46EC0D687A931CBA063E8F90EF0, 5CF996A209756B901316C4406C7D3E52ECC9C15A1BDB0D4D9C77846AB29FD040 ] stllssvr        c:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe

22:54:38.0526 0x0a90  stllssvr - ok

22:54:38.0549 0x0a90  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\windows\system32\DRIVERS\swenum.sys

22:54:38.0550 0x0a90  swenum - ok

22:54:38.0597 0x0a90  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\windows\System32\swprv.dll

22:54:38.0615 0x0a90  swprv - ok

22:54:38.0713 0x0a90  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\windows\system32\sysmain.dll

22:54:38.0759 0x0a90  SysMain - ok

22:54:38.0784 0x0a90  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll

22:54:38.0789 0x0a90  TabletInputService - ok

22:54:38.0834 0x0a90  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\windows\System32\tapisrv.dll

22:54:38.0861 0x0a90  TapiSrv - ok

22:54:38.0878 0x0a90  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\windows\System32\tbssvc.dll

22:54:38.0885 0x0a90  TBS - ok

22:54:39.0051 0x0a90  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\windows\system32\drivers\tcpip.sys

22:54:39.0130 0x0a90  Tcpip - ok

22:54:39.0186 0x0a90  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys

22:54:39.0227 0x0a90  TCPIP6 - ok

22:54:39.0290 0x0a90  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys

22:54:39.0292 0x0a90  tcpipreg - ok

22:54:39.0323 0x0a90  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys

22:54:39.0326 0x0a90  TDPIPE - ok

22:54:39.0367 0x0a90  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys

22:54:39.0372 0x0a90  TDTCP - ok

22:54:39.0399 0x0a90  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\windows\system32\DRIVERS\tdx.sys

22:54:39.0410 0x0a90  tdx - ok

22:54:39.0432 0x0a90  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\windows\system32\DRIVERS\termdd.sys

22:54:39.0436 0x0a90  TermDD - ok

22:54:39.0511 0x0a90  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\windows\System32\termsrv.dll

22:54:39.0547 0x0a90  TermService - ok

22:54:39.0560 0x0a90  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\windows\system32\themeservice.dll

22:54:39.0562 0x0a90  Themes - ok

22:54:39.0585 0x0a90  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\windows\system32\mmcss.dll

22:54:39.0587 0x0a90  THREADORDER - ok

22:54:39.0614 0x0a90  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\windows\System32\trkwks.dll

22:54:39.0627 0x0a90  TrkWks - ok

22:54:39.0690 0x0a90  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe

22:54:39.0697 0x0a90  TrustedInstaller - ok

22:54:39.0763 0x0a90  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys

22:54:39.0768 0x0a90  tssecsrv - ok

22:54:39.0793 0x0a90  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys

22:54:39.0796 0x0a90  TsUsbFlt - ok

22:54:39.0818 0x0a90  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys

22:54:39.0820 0x0a90  TsUsbGD - ok

22:54:39.0833 0x0a90  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys

22:54:39.0837 0x0a90  tunnel - ok

22:54:39.0852 0x0a90  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\windows\system32\drivers\uagp35.sys

22:54:39.0856 0x0a90  uagp35 - ok

22:54:39.0880 0x0a90  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\windows\system32\DRIVERS\udfs.sys

22:54:39.0890 0x0a90  udfs - ok

22:54:39.0924 0x0a90  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\windows\system32\UI0Detect.exe

22:54:39.0929 0x0a90  UI0Detect - ok

22:54:39.0950 0x0a90  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys

22:54:39.0952 0x0a90  uliagpkx - ok

22:54:39.0967 0x0a90  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\windows\system32\DRIVERS\umbus.sys

22:54:39.0970 0x0a90  umbus - ok

22:54:39.0982 0x0a90  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\windows\system32\drivers\umpass.sys

22:54:39.0984 0x0a90  UmPass - ok

22:54:40.0170 0x0a90  [ 7A78ED1088890114DFDE2C4AB038D6B6, B52357594A90A8BCF5F96FA630F52BB1274A2FE814AF0270D21C892871D076FC ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

22:54:40.0277 0x0a90  UNS - ok

22:54:40.0310 0x0a90  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\windows\System32\upnphost.dll

22:54:40.0321 0x0a90  upnphost - ok

22:54:40.0371 0x0a90  [ FB251567F41BC61988B26731DEC19E4B, 6A535F5A18EB43DD2E18AF0A05301630A1D1484B7D85DA79A7CD122DA4D018E2 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys

22:54:40.0374 0x0a90  USBAAPL64 - ok

22:54:40.0445 0x0a90  [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys

22:54:40.0453 0x0a90  usbccgp - ok

22:54:40.0519 0x0a90  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\windows\system32\drivers\usbcir.sys

22:54:40.0523 0x0a90  usbcir - ok

22:54:40.0592 0x0a90  [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] usbehci         C:\windows\system32\drivers\usbehci.sys

22:54:40.0598 0x0a90  usbehci - ok

22:54:40.0671 0x0a90  [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys

22:54:40.0681 0x0a90  usbhub - ok

22:54:40.0742 0x0a90  [ C1A8966E0D09BFB501045105B30D86F2, 5BB95FBA441B898E258A3BFE174FC1042A04C19E25C59DE1FD90594290B11DA9 ] usbohci         C:\windows\system32\drivers\usbohci.sys

22:54:40.0747 0x0a90  usbohci - ok

22:54:40.0782 0x0a90  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\windows\system32\DRIVERS\usbprint.sys

22:54:40.0788 0x0a90  usbprint - ok

22:54:40.0857 0x0a90  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\windows\system32\drivers\usbscan.sys

22:54:40.0865 0x0a90  usbscan - ok

22:54:40.0899 0x0a90  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS

22:54:40.0907 0x0a90  USBSTOR - ok

22:54:40.0973 0x0a90  [ 2E682DCE4319A90E02A327F8A427544A, 3528C5A4669BAD53041085C3E72C64388D308E42AD9D1FAC85B6F2FFD81610FB ] usbuhci         C:\windows\system32\drivers\usbuhci.sys

22:54:40.0977 0x0a90  usbuhci - ok

22:54:41.0050 0x0a90  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys

22:54:41.0065 0x0a90  usbvideo - ok

22:54:41.0102 0x0a90  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\windows\System32\uxsms.dll

22:54:41.0107 0x0a90  UxSms - ok

22:54:41.0116 0x0a90  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\windows\system32\lsass.exe

22:54:41.0118 0x0a90  VaultSvc - ok

22:54:41.0125 0x0a90  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys

22:54:41.0127 0x0a90  vdrvroot - ok

22:54:41.0156 0x0a90  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\windows\System32\vds.exe

22:54:41.0173 0x0a90  vds - ok

22:54:41.0191 0x0a90  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys

22:54:41.0193 0x0a90  vga - ok

22:54:41.0213 0x0a90  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\windows\System32\drivers\vga.sys

22:54:41.0216 0x0a90  VgaSave - ok

22:54:41.0236 0x0a90  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\windows\system32\drivers\vhdmp.sys

22:54:41.0244 0x0a90  vhdmp - ok

22:54:41.0305 0x0a90  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\windows\system32\drivers\viaide.sys

22:54:41.0307 0x0a90  viaide - ok

22:54:41.0320 0x0a90  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\windows\system32\drivers\volmgr.sys

22:54:41.0322 0x0a90  volmgr - ok

22:54:41.0340 0x0a90  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\windows\system32\drivers\volmgrx.sys

22:54:41.0361 0x0a90  volmgrx - ok

22:54:41.0398 0x0a90  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\windows\system32\drivers\volsnap.sys

22:54:41.0410 0x0a90  volsnap - ok

22:54:41.0422 0x0a90  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\windows\system32\drivers\vsmraid.sys

22:54:41.0427 0x0a90  vsmraid - ok

22:54:41.0513 0x0a90  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\windows\system32\vssvc.exe

22:54:41.0554 0x0a90  VSS - ok

22:54:41.0580 0x0a90  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys

22:54:41.0581 0x0a90  vwifibus - ok

22:54:41.0599 0x0a90  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys

22:54:41.0602 0x0a90  vwififlt - ok

22:54:41.0654 0x0a90  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\windows\system32\w32time.dll

22:54:41.0683 0x0a90  W32Time - ok

22:54:41.0704 0x0a90  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\windows\system32\drivers\wacompen.sys

22:54:41.0706 0x0a90  WacomPen - ok

22:54:41.0726 0x0a90  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys

22:54:41.0729 0x0a90  WANARP - ok

22:54:41.0735 0x0a90  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys

22:54:41.0737 0x0a90  Wanarpv6 - ok

22:54:41.0839 0x0a90  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe

22:54:41.0888 0x0a90  WatAdminSvc - ok

22:54:41.0964 0x0a90  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\windows\system32\wbengine.exe

22:54:42.0004 0x0a90  wbengine - ok

22:54:42.0042 0x0a90  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\windows\System32\wbiosrvc.dll

22:54:42.0049 0x0a90  WbioSrvc - ok

22:54:42.0087 0x0a90  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\windows\System32\wcncsvc.dll

22:54:42.0119 0x0a90  wcncsvc - ok

22:54:42.0139 0x0a90  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll

22:54:42.0144 0x0a90  WcsPlugInService - ok

22:54:42.0166 0x0a90  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\windows\system32\drivers\wd.sys

22:54:42.0168 0x0a90  Wd - ok

22:54:42.0277 0x0a90  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys

22:54:42.0329 0x0a90  Wdf01000 - ok

22:54:42.0352 0x0a90  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\windows\system32\wdi.dll

22:54:42.0364 0x0a90  WdiServiceHost - ok

22:54:42.0368 0x0a90  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\windows\system32\wdi.dll

22:54:42.0372 0x0a90  WdiSystemHost - ok

22:54:42.0452 0x0a90  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\windows\System32\webclnt.dll

22:54:42.0474 0x0a90  WebClient - ok

22:54:42.0522 0x0a90  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\windows\system32\wecsvc.dll

22:54:42.0542 0x0a90  Wecsvc - ok

22:54:42.0556 0x0a90  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\windows\System32\wercplsupport.dll

22:54:42.0561 0x0a90  wercplsupport - ok

22:54:42.0573 0x0a90  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\windows\System32\WerSvc.dll

22:54:42.0576 0x0a90  WerSvc - ok

22:54:42.0602 0x0a90  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys

22:54:42.0604 0x0a90  WfpLwf - ok

22:54:42.0640 0x0a90  [ B14EF15BD757FA488F9C970EEE9C0D35, F27DF2D47E7076786AE7C396583D7A1C56B93E766711066C900964FC7313E794 ] WimFltr         C:\windows\system32\DRIVERS\wimfltr.sys

22:54:42.0645 0x0a90  WimFltr - ok

22:54:42.0658 0x0a90  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\windows\system32\drivers\wimmount.sys

22:54:42.0659 0x0a90  WIMMount - ok

22:54:42.0687 0x0a90  WinDefend - ok

22:54:42.0705 0x0a90  WinHttpAutoProxySvc - ok

22:54:42.0780 0x0a90  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll

22:54:42.0799 0x0a90  Winmgmt - ok

22:54:42.0900 0x0a90  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\windows\system32\WsmSvc.dll

22:54:42.0955 0x0a90  WinRM - ok

22:54:43.0020 0x0a90  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys

22:54:43.0022 0x0a90  WinUsb - ok

22:54:43.0111 0x0a90  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\windows\System32\wlansvc.dll

22:54:43.0133 0x0a90  Wlansvc - ok

22:54:43.0178 0x0a90  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe

22:54:43.0181 0x0a90  wlcrasvc - ok

22:54:43.0344 0x0a90  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

22:54:43.0403 0x0a90  wlidsvc - ok

22:54:43.0431 0x0a90  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys

22:54:43.0432 0x0a90  WmiAcpi - ok

22:54:43.0471 0x0a90  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe

22:54:43.0477 0x0a90  wmiApSrv - ok

22:54:43.0508 0x0a90  WMPNetworkSvc - ok

22:54:43.0537 0x0a90  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\windows\System32\wpcsvc.dll

22:54:43.0559 0x0a90  WPCSvc - ok

22:54:43.0587 0x0a90  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll

22:54:43.0596 0x0a90  WPDBusEnum - ok

22:54:43.0610 0x0a90  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys

22:54:43.0612 0x0a90  ws2ifsl - ok

22:54:43.0623 0x0a90  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\windows\System32\wscsvc.dll

22:54:43.0627 0x0a90  wscsvc - ok

22:54:43.0630 0x0a90  WSearch - ok

22:54:43.0813 0x0a90  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\windows\system32\wuaueng.dll

22:54:43.0876 0x0a90  wuauserv - ok

22:54:43.0938 0x0a90  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys

22:54:43.0946 0x0a90  WudfPf - ok

22:54:43.0984 0x0a90  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys

22:54:43.0999 0x0a90  WUDFRd - ok

22:54:44.0022 0x0a90  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\windows\System32\WUDFSvc.dll

22:54:44.0033 0x0a90  wudfsvc - ok

22:54:44.0114 0x0a90  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\windows\System32\wwansvc.dll

22:54:44.0133 0x0a90  WwanSvc - ok

22:54:44.0164 0x0a90  ================ Scan global ===============================

22:54:44.0218 0x0a90  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll

22:54:44.0295 0x0a90  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll

22:54:44.0330 0x0a90  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll

22:54:44.0375 0x0a90  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll

22:54:44.0432 0x0a90  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe

22:54:44.0457 0x0a90  [ Global ] - ok

22:54:44.0460 0x0a90  ================ Scan MBR ==================================

22:54:44.0477 0x0a90  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

22:54:44.0728 0x0a90  \Device\Harddisk0\DR0 - ok

22:54:44.0729 0x0a90  ================ Scan VBR ==================================

22:54:44.0734 0x0a90  [ B4A651EA79A9998884DA67ECFFB5E2E7 ] \Device\Harddisk0\DR0\Partition1

22:54:44.0736 0x0a90  \Device\Harddisk0\DR0\Partition1 - ok

22:54:44.0760 0x0a90  [ 9353CF31A6EC515E78353D1600509A2F ] \Device\Harddisk0\DR0\Partition2

22:54:44.0791 0x0a90  \Device\Harddisk0\DR0\Partition2 - ok

22:54:44.0798 0x0a90  Waiting for KSN requests completion. In queue: 107

22:54:45.0798 0x0a90  Waiting for KSN requests completion. In queue: 107

22:54:46.0855 0x0a90  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files (x86)\AVG\AVG2014\avgwsc.exe ( 14.0.0.4110 ), 0x41000 ( enabled : updated )

22:54:46.0878 0x0a90  Win FW state via NFP2: enabled

22:54:47.0556 0x0a90  ============================================================

22:54:47.0556 0x0a90  Scan finished

22:54:47.0556 0x0a90  ============================================================

22:54:47.0577 0x03e0  Detected object count: 0

22:54:47.0577 0x03e0  Actual detected object count: 0

22:54:52.0708 0x0ee0  Deinitialize success

 

AdwCleaner:

 

# AdwCleaner v3.022 - Report created 26/03/2014 at 22:58:26

# Updated 13/03/2014 by Xplode

# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)

# Username : Allie - ALLIE-PC

# Running from : C:\Users\Allie\Desktop\AdwCleaner.exe

# Option : Scan

 

***** [ Services ] *****

 

 

***** [ Files / Folders ] *****

 

File Found : C:\Users\Allie\AppData\Roaming\Mozilla\Firefox\Profiles\vaj82a52.default\user.js

Folder Found : C:\Users\Allie\AppData\Roaming\Mozilla\Firefox\Profiles\vaj82a52.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}

Folder Found C:\windows\TempDir

 

***** [ Shortcuts ] *****

 

 

***** [ Registry ] *****

 

Key Found : HKCU\Software\Conduit

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Key Found : [x64] HKCU\Software\Conduit

Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}

Key Found : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}

Key Found : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}

Key Found : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Key Found : HKLM\Software\Conduit

Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS

Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

 

***** [ Browsers ] *****

 

-\\ Internet Explorer v11.0.9600.16521

 

 

-\\ Mozilla Firefox v22.0 (en-US)

 

[ File : C:\Users\Allie\AppData\Roaming\Mozilla\Firefox\Profiles\vaj82a52.default\prefs.js ]

 

 

-\\ Google Chrome v33.0.1750.154

 

[ File : C:\Users\Allie\AppData\Local\Google\Chrome\User Data\Default\preferences ]

 

 

*************************

 

AdwCleaner[R0].txt - [2442 octets] - [26/03/2014 22:58:26]

 

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [2502 octets] ##########

 

From JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Junkware Removal Tool (JRT) by Thisisu

Version: 6.1.3 (03.23.2014:1)

OS: Windows 7 Home Premium x64

Ran by Allie on Thu 03/27/2014 at  4:36:20.31

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

 

 

~~~ Services

 

 

 

~~~ Registry Values

 

 

 

~~~ Registry Keys

 

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}

Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\conduit

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\conduit

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}

 

 

 

~~~ Files

 

 

 

~~~ Folders

 

Successfully deleted: [Empty Folder] C:\Users\Allie\appdata\local\{0A6A4782-24CC-44D5-A9AF-63E620E3EA2A}

Successfully deleted: [Empty Folder] C:\Users\Allie\appdata\local\{18C67BF6-CD0C-49EC-83A1-A72C42B1617A}

Successfully deleted: [Empty Folder] C:\Users\Allie\appdata\local\{41EA376A-257D-44DE-962E-4FFE1EB0D92D}

Successfully deleted: [Empty Folder] C:\Users\Allie\appdata\local\{78B4EDC1-DFD0-448E-93F8-24B6F07A2B80}

Successfully deleted: [Empty Folder] C:\Users\Allie\appdata\local\{A97B993F-8513-42C1-ACAC-BBD3C9A5FE63}

Successfully deleted: [Empty Folder] C:\Users\Allie\appdata\local\{D88C698C-466B-4CDD-AFA8-1EEF13BF195F}

Successfully deleted: [Empty Folder] C:\Users\Allie\appdata\local\{DDA45892-7E87-4DA6-AEEA-7B348D5E8F90}

Successfully deleted: [Empty Folder] C:\Users\Allie\appdata\local\{FEB8B1F3-BFEF-4BC0-8997-A04F09A7F927}

 

 

 

~~~ FireFox

 

Successfully deleted: [File] C:\Users\Allie\AppData\Roaming\mozilla\firefox\profiles\vaj82a52.default\user.js

Emptied folder: C:\Users\Allie\AppData\Roaming\mozilla\firefox\profiles\vaj82a52.default\minidumps [444 files]

 

~~~ Event Viewer Logs were cleared

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Scan was completed on Thu 03/27/2014 at  4:45:15.74

End of JRT log



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,213 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:32 AM

Posted 27 March 2014 - 09:44 AM

Appears we need to start a new topic named "possible Zeroaccess"

Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Guest_sakartvelo_*

Guest_sakartvelo_*

  • Guests
  • OFFLINE
  •  

Posted 28 March 2014 - 06:53 AM

boopme,

 

I was able to do as you asked, but I did have a little difficulty running the DDS program.  I explained the problem in the new post.  Here is a link:

 

Possible Zeroaccess

 

Thank you for your time!



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,213 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA

Posted 28 March 2014 - 03:03 PM

Yes, that is the infection protecting itself.

Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.
From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.
Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.
The current wait time is 1 - 3 days and ALL logs are answered.
If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.
To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users