Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Slow booting and general lag


  • Please log in to reply
12 replies to this topic

#1 Esotericman

Esotericman

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:07 AM

Posted 23 March 2014 - 12:52 PM

My Win 7 Enterprise laptop has been quite slow to boot in the last month or so.  I was hit with some malware and followed several threads on this forum to clean up the mess, but I am unsure if the remnants of that issue is the problem or not.  I do realize this may or may not be the correct forum, but to the best of my knowledge, everything is clean, so I am starting here. 

 

I went ahead and ran Speccy and here is the snapshot link:

 

http://speccy.piriform.com/results/JOv5PeG4KUWpn3aajQsChUN

 

Any and all assistance is greatly appreciated.

 

Thanks.


Edited by hamluis, 24 March 2014 - 08:15 AM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


m

#2 Esotericman

Esotericman
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:07 AM

Posted 26 March 2014 - 12:19 AM

Thank you Hamluis for the move. 



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,240 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:07 AM

Posted 30 March 2014 - 05:34 PM

Hello and sorry for the delay. Let's run these and see how it is.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Esotericman

Esotericman
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:07 AM

Posted 30 March 2014 - 11:01 PM

The ESET is taking a great deal of time to run, I will post what I have thus far.  I understand you need the entire picture to proceed.

 

Thank you for the reply and starter aid.  Below are the logs.

 

minitoolbox:

MiniToolBox by Farbar  Version: 23-01-2014
Ran by us (administrator) on 30-03-2014 at 21:19:43
Running from "C:\Users\us\Desktop"
Microsoft Windows 7 Enterprise  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

127.0.0.1       localhost

========================= IP Configuration: ================================

Atheros AR9002WB-1NG Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : them
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : neb.rr.com

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 14-DA-E9-CE-DC-72
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . : neb.rr.com
   Description . . . . . . . . . . . : Atheros AR9002WB-1NG Wireless Network Adapter
   Physical Address. . . . . . . . . : 74-2F-68-9F-98-F6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::e9d2:4c9:ca7e:e8f%11(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.103(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Sunday, March 30, 2014 9:13:43 PM
   Lease Expires . . . . . . . . . . : Monday, March 31, 2014 9:13:43 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 242495336
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-16-99-02-32-74-2F-68-9F-98-F6
   DNS Servers . . . . . . . . . . . : 209.18.47.61
                                       209.18.47.62
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:24a5:591:3f57:fe98(Preferred)
   Link-local IPv6 Address . . . . . : fe80::24a5:591:3f57:fe98%15(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter 6TO4 Adapter:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 15:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : neb.rr.com
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.neb.rr.com:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61

Name:    google.com
Addresses:  2607:f8b0:4000:804::1003
      74.125.227.98
      74.125.227.99
      74.125.227.100
      74.125.227.101
      74.125.227.102
      74.125.227.103
      74.125.227.104
      74.125.227.105
      74.125.227.110
      74.125.227.96
      74.125.227.97


Pinging google.com [173.194.115.4] with 32 bytes of data:
Reply from 173.194.115.4: bytes=32 time=24ms TTL=53
Reply from 173.194.115.4: bytes=32 time=25ms TTL=53

Ping statistics for 173.194.115.4:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 24ms, Maximum = 25ms, Average = 24ms
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61

Name:    yahoo.com
Addresses:  98.139.183.24
      206.190.36.45
      98.138.253.109


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=109ms TTL=45
Request timed out.

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
    Minimum = 109ms, Maximum = 109ms, Average = 109ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 16...14 da e9 ce dc 72 ......Realtek PCIe GBE Family Controller
 11...74 2f 68 9f 98 f6 ......Atheros AR9002WB-1NG Wireless Network Adapter
  1...........................Software Loopback Interface 1
 15...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 12...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 22...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 18...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.103     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.103    281
    192.168.1.103  255.255.255.255         On-link     192.168.1.103    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.103    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.103    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.103    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 15     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 15     58 2001::/32                On-link
 15    306 2001:0:9d38:6abd:24a5:591:3f57:fe98/128
                                    On-link
 11    281 fe80::/64                On-link
 15    306 fe80::/64                On-link
 15    306 fe80::24a5:591:3f57:fe98/128
                                    On-link
 11    281 fe80::e9d2:4c9:ca7e:e8f/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    306 ff00::/8                 On-link
 11    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145648] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171760] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/30/2014 09:14:31 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/30/2014 03:28:20 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.

Error: (03/30/2014 11:32:07 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/29/2014 00:27:03 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/28/2014 08:34:59 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/27/2014 06:54:58 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/26/2014 06:02:14 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/25/2014 08:23:59 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/24/2014 08:56:22 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/23/2014 11:39:38 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (03/30/2014 09:16:05 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (03/30/2014 09:16:05 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (03/30/2014 09:16:05 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (03/30/2014 09:16:05 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (03/30/2014 09:16:05 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (03/30/2014 09:16:05 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (03/30/2014 09:15:54 PM) (Source: Service Control Manager) (User: )
Description: The Peer Networking Grouping service depends on the Peer Name Resolution Protocol service which failed to start because of the following error:
%%-2140993535

Error: (03/30/2014 09:15:54 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535

Error: (03/30/2014 09:15:54 PM) (Source: PNRPSvc) (User: )
Description: 0x80630801

Error: (03/30/2014 09:11:58 PM) (Source: Service Control Manager) (User: )
Description: The Peer Name Resolution Protocol service terminated with the following error:
%%-2140993535


Microsoft Office Sessions:
=========================
Error: (03/30/2014 09:14:31 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/30/2014 03:28:20 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestC:\$RECYCLE.BIN\S-1-5-21-387227441-2374797220-3376888333-1000\$RKP3NGJ.exe

Error: (03/30/2014 11:32:07 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/29/2014 00:27:03 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/28/2014 08:34:59 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/27/2014 06:54:58 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/26/2014 06:02:14 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/25/2014 08:23:59 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/24/2014 08:56:22 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (03/23/2014 11:39:38 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity Errors:
===================================
  Date: 2014-02-17 21:36:35.972
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-02-17 21:36:35.925
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-02-17 21:36:35.878
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-02-17 21:36:35.847
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-12-17 19:32:19.429
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-12-17 19:32:19.414
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


=========================== Installed Programs ============================

7-Zip 9.20 (x64 edition) (Version: 9.20.00.0)
Adobe Acrobat X Pro - English, Français, Deutsch (Version: 10.1.9)
Adobe AIR (Version: 4.0.0.1390)
Adobe Bridge 1.0 (Version: 001.000.000)
Adobe Common File Installer (Version: 1.00.0000)
Adobe Flash Player 12 ActiveX (Version: 12.0.0.77)
Adobe Flash Player 12 Plugin (Version: 12.0.0.77)
Adobe Help Center 1.0 (Version: 001.000.000)
Adobe PDF iFilter 11 for 64-bit platforms (Version: 11.0.00)
Adobe Photoshop CS2 (Version: 9.0)
Adobe Photoshop Lightroom 3.2 64-bit (Version: 3.2.1)
Adobe Reader XI (11.0.06) (Version: 11.0.06)
Adobe Stock Photos 1.0 (Version: 001.000.000)
Amazon Unbox Video (Version: 2.2.0.153)
ArcGIS 10.1 Desktop Tutorial Data (Version: 10.1.3035)
ArcGIS 10.1 for Desktop (Version: 10.1.3035)
Atheros Bluetooth Suite (64) (Version: 7.04.000.98)
ATK Package (Version: 1.0.0015)
Auslogics Disk Defrag (Version: 3.5)
avast! Free Antivirus (Version: 9.0.2013)
Cisco Connect (Version: 1.3.11006.1)
Clones
CPUID ROG CPU-Z 1.59 (Version: 1.59)
D3DX10 (Version: 15.4.2368.0902)
Dear Esther
DeepBurner v1.9.0.228
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
DVD Shrink 3.2
EndNote X5 (Version: 15.0.0.5478)
Epic Privacy Browser (Version: 31.0.1650.57)
Eraser 6.0.10.2620 (Version: 6.0.2620)
eReg (Version: 1.20.138.34)
ESET Online Scanner v3
FileZilla Client 3.5.3 (Version: 3.5.3)
FINAL FANTASY XIV (Version: 1.0.0000)
Finger Sensing Pad Driver (Version: 9.1.3.5)
FLAC 1.2.1b (remove only) (Version: 1.2.1b)
foobar2000 v1.2.3 (Version: 1.2.3)
Fresco Logic USB3.0 Host Controller (Version: 3.5.24.0)
Getting to Know ArcGIS Desktop - Exercise Data (Version: 1.00.0000)
GIMP 2.8.2 (Version: 2.8.2)
Google Chrome (Version: 33.0.1750.154)
Google Drive (Version: 1.14.6059.644)
Google Earth (Version: 7.1.2.2041)
Google Talk Plugin (Version: 5.2.4.18058)
Google Update Helper (Version: 1.3.22.5)
HandBrake 0.9.9.1 (Version: 0.9.9.1)
Harzing's Publish or Perish 4.0.18.4859 (Version: 4.0.18.4859)
HiJackThis (Version: 1.0.0)
ImageJ 1.45s
ImgBurn (Version: 2.5.8.0)
INFINITY Software (Version: 6.0.0)
IrfanView (remove only) (Version: 4.32)
Java 7 Update 51 (Version: 7.0.510)
Java Auto Updater (Version: 2.1.9.8)
Java™ 6 Update 37 (Version: 6.0.370)
Logitech SetPoint 6.32 (Version: 6.32.20)
MakeMKV v1.8.8 (Version: v1.8.8)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
MATLAB R2012b (Version: 8.0)
Media Player Classic - Home Cinema 1.6.1.4235 x64 (Version: 1.6.1.4235)
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Movie Maker (Version: 16.4.3522.0110)
Mozilla Firefox 28.0 (x86 en-US) (Version: 28.0)
Mozilla Maintenance Service (Version: 28.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Mumble 1.2.3 (Version: 1.2.3)
Novacomd (Version: 1.0.0.73)
NVIDIA 3D Vision Driver 296.10 (Version: 296.10)
NVIDIA Control Panel 296.10 (Version: 296.10)
NVIDIA Graphics Driver 296.10 (Version: 296.10)
NVIDIA HD Audio Driver 1.3.12.0 (Version: 1.3.12.0)
NVIDIA Install Application (Version: 2.1002.62.312)
NVIDIA PhysX (Version: 9.11.0621)
NVIDIA PhysX System Software 9.11.0621 (Version: 9.11.0621)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.9610)
OpenAL
Pando Media Booster (Version: 2.6.0.1)
Photo Gallery (Version: 16.4.3522.0110)
Pidgin (Version: 2.10.7)
Portrait Professional 10.8 (Version: 10.8)
PortraitPro 12.1 (Version: 12.1)
Qualcomm Atheros WiFi Driver Installation (Version: 9.2)
ReadCube (Version: 1.1.011)
Realtek Ethernet Controller All-In-One Windows Driver (Version: 7.46.610.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6526)
Realtek USB 2.0 Reader Driver (Version: 6.1.7600.10001)
ResearchSoft Direct Export Helper
Revo Uninstaller 1.94 (Version: 1.94)
RtkDashClientInstaller (Version: 1.0.9)
Skype Click to Call (Version: 7.1.15383.6004)
Skype™ 6.1 (Version: 6.1.129)
Speccy (Version: 1.25)
Steam (Version: 1.0.0.0)
System Requirements Lab
The Lord of the Rings Online™ v03.04.04.8012 (Version: 03.04.04.8012)
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597091) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2589345) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2553248) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Ventrilo Client for Windows x64 (Version: 3.0.8.0)
VLC media player 2.1.3 (Version: 2.1.3)
Windows Driver Package - Lumenera (luldr0a0) Image  (10/12/2011 ) (Version: 10/12/2011 )
Windows Driver Package - Palm (WinUSB) Palm Devices  (10/09/2009 1.0.1) (Version: 10/09/2009 1.0.1)
Windows Live Communications Platform (Version: 16.4.3522.0110)
Windows Live Essentials (Version: 16.4.3522.0110)
Windows Live ID Sign-in Assistant (Version: 7.250.4311.0)
Windows Live Installer (Version: 16.4.3522.0110)
Windows Live Photo Common (Version: 16.4.3522.0110)
Windows Live PIMT Platform (Version: 16.4.3522.0110)
Windows Live SOXE (Version: 16.4.3522.0110)
Windows Live SOXE Definitions (Version: 16.4.3522.0110)
Windows Live UX Platform (Version: 16.4.3522.0110)
Windows Live UX Platform Language Pack (Version: 16.4.3522.0110)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Zerene Stacker 1.04

========================= Memory info: ===================================

Percentage of memory in use: 16%
Total physical RAM: 12265.16 MB
Available physical RAM: 10271.4 MB
Total Pagefile: 24528.5 MB
Available Pagefile: 22518.93 MB
Total Virtual: 4095.88 MB
Available Virtual: 3959.48 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:319.28 GB) (Free:134.28 GB) NTFS
2 Drive d: () (Fixed) (Total:146.39 GB) (Free:78.36 GB) NTFS
4 Drive f: () (Removable) (Total:14.63 GB) (Free:8.1 GB) FAT32
5 Drive h: (SP PHD U3) (Fixed) (Total:931.28 GB) (Free:535.32 GB) FAT32

========================= Users: ========================================

User accounts for \\THEM

Administrator            ASPNET                   Guest                    
us                       


**** End of log ****
 

 

tdsskiller:

21:22:10.0296 0x0a68  TDSS rootkit removing tool 3.0.0.26 Mar 24 2014 07:28:43
21:22:14.0710 0x0a68  ============================================================
21:22:14.0710 0x0a68  Current date / time: 2014/03/30 21:22:14.0710
21:22:14.0710 0x0a68  SystemInfo:
21:22:14.0710 0x0a68  
21:22:14.0710 0x0a68  OS Version: 6.1.7601 ServicePack: 1.0
21:22:14.0710 0x0a68  Product type: Workstation
21:22:14.0710 0x0a68  ComputerName: THEM
21:22:14.0710 0x0a68  UserName: us
21:22:14.0710 0x0a68  Windows directory: C:\Windows
21:22:14.0710 0x0a68  System windows directory: C:\Windows
21:22:14.0710 0x0a68  Running under WOW64
21:22:14.0710 0x0a68  Processor architecture: Intel x64
21:22:14.0710 0x0a68  Number of processors: 8
21:22:14.0710 0x0a68  Page size: 0x1000
21:22:14.0710 0x0a68  Boot type: Normal boot
21:22:14.0710 0x0a68  ============================================================
21:22:18.0080 0x0a68  KLMD registered as C:\Windows\system32\drivers\41614522.sys
21:22:18.0205 0x0a68  System UUID: {5A533B58-521B-211C-2538-07F55894EFE0}
21:22:18.0564 0x0a68  Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:22:18.0579 0x0a68  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:22:18.0579 0x0a68  Drive \Device\Harddisk2\DR2 - Size: 0x3A8F80000 (14.64 Gb), SectorSize: 0x200, Cylinders: 0x777, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:22:18.0579 0x0a68  ============================================================
21:22:18.0579 0x0a68  \Device\Harddisk0\DR0:
21:22:18.0579 0x0a68  MBR partitions:
21:22:18.0579 0x0a68  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:22:18.0579 0x0a68  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x124C6000
21:22:18.0579 0x0a68  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x124F8800, BlocksNum 0x27E8D000
21:22:18.0579 0x0a68  \Device\Harddisk1\DR1:
21:22:18.0579 0x0a68  MBR partitions:
21:22:18.0579 0x0a68  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x40, BlocksNum 0x74705980
21:22:18.0579 0x0a68  \Device\Harddisk2\DR2:
21:22:18.0595 0x0a68  MBR partitions:
21:22:18.0595 0x0a68  \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x2000, BlocksNum 0x1D45C00
21:22:18.0595 0x0a68  ============================================================
21:22:18.0610 0x0a68  C: <-> \Device\Harddisk0\DR0\Partition3
21:22:18.0673 0x0a68  D: <-> \Device\Harddisk0\DR0\Partition2
21:22:18.0673 0x0a68  H: <-> \Device\Harddisk1\DR1\Partition1
21:22:18.0673 0x0a68  ============================================================
21:22:18.0673 0x0a68  Initialize success
21:22:18.0673 0x0a68  ============================================================
21:22:21.0980 0x0dc8  ============================================================
21:22:21.0980 0x0dc8  Scan started
21:22:21.0980 0x0dc8  Mode: Manual;
21:22:21.0980 0x0dc8  ============================================================
21:22:21.0980 0x0dc8  KSN ping started
21:22:24.0960 0x0dc8  KSN ping finished: true
21:22:25.0381 0x0dc8  ================ Scan system memory ========================
21:22:25.0381 0x0dc8  System memory - ok
21:22:25.0381 0x0dc8  ================ Scan services =============================
21:22:25.0521 0x0dc8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
21:22:25.0537 0x0dc8  1394ohci - ok
21:22:25.0552 0x0dc8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
21:22:25.0568 0x0dc8  ACPI - ok
21:22:25.0568 0x0dc8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
21:22:25.0568 0x0dc8  AcpiPmi - ok
21:22:25.0630 0x0dc8  [ 8B46D5A1D3EF08232C04D0EAFB871FB2, 5306F8452EF675851CB0015F9E5C5EB750137D6D65C9CB7E47F8EF5B10A44D10 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
21:22:25.0646 0x0dc8  Adobe LM Service - ok
21:22:25.0755 0x0dc8  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:22:25.0755 0x0dc8  AdobeARMservice - ok
21:22:25.0880 0x0dc8  [ 9D96B0D5855FD1B98023B3EEC9F06786, E4C79233158BE8AA4E9C6DD71585E5D2703A5156531EB3D692D7D81BC443E844 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:22:25.0896 0x0dc8  AdobeFlashPlayerUpdateSvc - ok
21:22:25.0974 0x0dc8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
21:22:25.0989 0x0dc8  adp94xx - ok
21:22:26.0020 0x0dc8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
21:22:26.0052 0x0dc8  adpahci - ok
21:22:26.0067 0x0dc8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
21:22:26.0083 0x0dc8  adpu320 - ok
21:22:26.0130 0x0dc8  [ 96A0FF09E226B023DC6ACA253AACEE2E, FCA21BE869329E5479A8FBB0EC6D585C1D7DCC80F36C32928FC4E93D6E409FE3 ] ADVService      C:\Program Files (x86)\Amazon\Amazon Unbox Video\ADVWindowsClientService.exe
21:22:26.0130 0x0dc8  ADVService - ok
21:22:26.0161 0x0dc8  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
21:22:26.0161 0x0dc8  AeLookupSvc - ok
21:22:26.0239 0x0dc8  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
21:22:26.0254 0x0dc8  AFD - ok
21:22:26.0286 0x0dc8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
21:22:26.0286 0x0dc8  agp440 - ok
21:22:26.0301 0x0dc8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
21:22:26.0301 0x0dc8  ALG - ok
21:22:26.0332 0x0dc8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
21:22:26.0348 0x0dc8  aliide - ok
21:22:26.0364 0x0dc8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
21:22:26.0364 0x0dc8  amdide - ok
21:22:26.0395 0x0dc8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
21:22:26.0395 0x0dc8  AmdK8 - ok
21:22:26.0395 0x0dc8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
21:22:26.0410 0x0dc8  AmdPPM - ok
21:22:26.0442 0x0dc8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
21:22:26.0457 0x0dc8  amdsata - ok
21:22:26.0473 0x0dc8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
21:22:26.0488 0x0dc8  amdsbs - ok
21:22:26.0504 0x0dc8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
21:22:26.0504 0x0dc8  amdxata - ok
21:22:26.0520 0x0dc8  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
21:22:26.0520 0x0dc8  AppID - ok
21:22:26.0535 0x0dc8  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
21:22:26.0535 0x0dc8  AppIDSvc - ok
21:22:26.0566 0x0dc8  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
21:22:26.0582 0x0dc8  Appinfo - ok
21:22:26.0598 0x0dc8  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
21:22:26.0598 0x0dc8  AppMgmt - ok
21:22:26.0613 0x0dc8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
21:22:26.0613 0x0dc8  arc - ok
21:22:26.0629 0x0dc8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
21:22:26.0629 0x0dc8  arcsas - ok
21:22:26.0676 0x0dc8  [ A3626C6D3F2DC95497F3F61842D7FD89, BB95BAFD3BE22136595D889DADAD67C68ACE6A6EAB02B026C254D97C9E9F2E62 ] ASLDRService    C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
21:22:26.0676 0x0dc8  ASLDRService - ok
21:22:26.0691 0x0dc8  [ 4C016FD76ED5C05E84CA8CAB77993961, 025E7BE9FCEFD6A83F4471BBA0C11F1C11BD5047047D26626DA24EE9A419CDC4 ] ASMMAP64        C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
21:22:26.0691 0x0dc8  ASMMAP64 - ok
21:22:26.0832 0x0dc8  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:22:26.0832 0x0dc8  aspnet_state - ok
21:22:26.0878 0x0dc8  [ 0ACC3F49015E628590CA4372322EB46B, EB4E22EB4E840261168AF750E878E7A28CC080A89CEF77B5037C2897C40D1DE3 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
21:22:26.0894 0x0dc8  aswMonFlt - ok
21:22:26.0972 0x0dc8  [ 679712B7A353EE665B9301592164A172, CA3C918106A355BAFD0833BB493DF2CCBC2D0F90CA7EBF5E27CC088C7170B0E0 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
21:22:26.0972 0x0dc8  aswRdr - ok
21:22:27.0003 0x0dc8  [ C04F7B373881009D7994D9BF55D24AB4, 5DEEA804F4F9862024F40A204E88DBCFFBDD2DC87CA86145E3FB649CFCCDC624 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
21:22:27.0019 0x0dc8  aswRvrt - ok
21:22:27.0081 0x0dc8  [ 43599E630DFC30AD4E6A2B4B269EB1C0, DA6C7FDC1F6A57117B17F697A94190CC0BB9E32B8CBB4F8C042AA461361CC74C ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
21:22:27.0112 0x0dc8  aswSnx - ok
21:22:27.0175 0x0dc8  [ F22DE5F5BA8ADA0A861441B624B51EB5, 58EF9FB3328B6B470F3652DBCE8ACEDAEE6839AC393889A02052298CA204689B ] aswSP           C:\Windows\system32\drivers\aswSP.sys
21:22:27.0190 0x0dc8  aswSP - ok
21:22:27.0237 0x0dc8  [ FD3EA14ADF6216BDF4030DB2EFD43D96, 2D3009008AAE93285301B5844DC214D6B05ECB05D37AE08895D8E7187A0BB619 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
21:22:27.0237 0x0dc8  aswStm - ok
21:22:27.0268 0x0dc8  [ 367CF04C38DFF33368FCDBBF71C96297, B533833A9592FCE2B665B7E98AACC8D699845B14B7473710A333FC1E0AC0BB2F ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
21:22:27.0268 0x0dc8  aswTdi - ok
21:22:27.0315 0x0dc8  [ 90399625F341AB76BA4B85A5E860EB1F, 92DD461B14240222F451F971642844A4DAD9DF4FFEAA8F12D16EA117822BEEF3 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
21:22:27.0331 0x0dc8  aswVmm - ok
21:22:27.0331 0x0dc8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
21:22:27.0346 0x0dc8  AsyncMac - ok
21:22:27.0362 0x0dc8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
21:22:27.0378 0x0dc8  atapi - ok
21:22:27.0424 0x0dc8  [ 185F180536188C1A4ED605234721A5B9, FF06E13656E3442D66F8092CA2CF5AC474EFF7DC9C530E8DD87843E8322EF5C5 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys
21:22:27.0424 0x0dc8  AthBTPort - ok
21:22:27.0549 0x0dc8  [ 397748353925A6602A6097FA92AF23BF, 6962E497E449C27A07FFE7A167CC89604E1E0E16203FF30D44E7C3F99727A90F ] AtherosSvc      C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
21:22:27.0549 0x0dc8  AtherosSvc - ok
21:22:27.0674 0x0dc8  [ 7D0398396727195CC73D703001D3CFF4, 5175C5061AB201F688538E1C6849F42BB987121C0FB9189BB8616E8573522969 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
21:22:27.0752 0x0dc8  athr - ok
21:22:27.0783 0x0dc8  [ DBC598E47E7A382E60E2A4745D41FEF9, A810AC197CA456B0285E2CAE6986D38B31F4ADA32BEB47EC7A48A2B2196BA639 ] ATKGFNEXSrv     C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
21:22:27.0783 0x0dc8  ATKGFNEXSrv - ok
21:22:27.0814 0x0dc8  [ 41CEAFFCF3550785E59E3EC9BEE8D97A, 89FE604088B65B82AA794E1DA8429033CD2F05FFB2D7EFAAC7B967C7A83D1B1E ] ATKWMIACPIIO    C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
21:22:27.0830 0x0dc8  ATKWMIACPIIO - ok
21:22:27.0892 0x0dc8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
21:22:27.0924 0x0dc8  AudioEndpointBuilder - ok
21:22:27.0939 0x0dc8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
21:22:27.0955 0x0dc8  AudioSrv - ok
21:22:28.0048 0x0dc8  [ CC42F104172B4A62793083D380867317, 0B09823419B328E29EB9FFBD033B3295590E414F31E7B37F11F62BD4B7EBAF06 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
21:22:28.0048 0x0dc8  avast! Antivirus - ok
21:22:28.0095 0x0dc8  [ A1F53D2A00E64679A1D81B61D2333D06, 41D4F252693A2382A1C1FB85A49DF5AAB5B21620DC09A0E1A7F66A437E3A0B3B ] avgtp           C:\Windows\system32\drivers\avgtpx64.sys
21:22:28.0095 0x0dc8  avgtp - ok
21:22:28.0126 0x0dc8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
21:22:28.0126 0x0dc8  AxInstSV - ok
21:22:28.0142 0x0dc8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
21:22:28.0158 0x0dc8  b06bdrv - ok
21:22:28.0204 0x0dc8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
21:22:28.0220 0x0dc8  b57nd60a - ok
21:22:28.0236 0x0dc8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
21:22:28.0236 0x0dc8  BDESVC - ok
21:22:28.0251 0x0dc8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
21:22:28.0251 0x0dc8  Beep - ok
21:22:28.0314 0x0dc8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
21:22:28.0345 0x0dc8  BFE - ok
21:22:28.0392 0x0dc8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
21:22:28.0423 0x0dc8  BITS - ok
21:22:28.0454 0x0dc8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
21:22:28.0454 0x0dc8  blbdrive - ok
21:22:28.0485 0x0dc8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
21:22:28.0501 0x0dc8  bowser - ok
21:22:28.0501 0x0dc8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
21:22:28.0501 0x0dc8  BrFiltLo - ok
21:22:28.0516 0x0dc8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
21:22:28.0516 0x0dc8  BrFiltUp - ok
21:22:28.0548 0x0dc8  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
21:22:28.0563 0x0dc8  BridgeMP - ok
21:22:28.0610 0x0dc8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
21:22:28.0626 0x0dc8  Browser - ok
21:22:28.0657 0x0dc8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
21:22:28.0672 0x0dc8  Brserid - ok
21:22:28.0672 0x0dc8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
21:22:28.0672 0x0dc8  BrSerWdm - ok
21:22:28.0688 0x0dc8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
21:22:28.0688 0x0dc8  BrUsbMdm - ok
21:22:28.0688 0x0dc8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
21:22:28.0688 0x0dc8  BrUsbSer - ok
21:22:28.0766 0x0dc8  [ B5D8C2E82F33E2385FA9F309B6356715, 59726D203B808C43B2DF29BEC677B675798219B801877373358BA327E9C4DE18 ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys
21:22:28.0782 0x0dc8  BTATH_A2DP - ok
21:22:28.0797 0x0dc8  [ 3118072D09DAA1961A9F6549A4E8433A, 19159A2D424362BAF84D98AA95E0F3F517FE46726B4A1E19DFE0B62D17DE6227 ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys
21:22:28.0797 0x0dc8  btath_avdt - ok
21:22:28.0844 0x0dc8  [ E6B734A37ADE36FE1A77035F4E484C8C, 7F3AB1E0CF9F348633B3B325F5F365CCD4C7FF7E4564BDE02C2DA27A499D0234 ] BTATH_BUS       C:\Windows\system32\DRIVERS\btath_bus.sys
21:22:28.0844 0x0dc8  BTATH_BUS - ok
21:22:28.0891 0x0dc8  [ FB3833E63FF602B69C2FF085846DCF43, 468BC9580341AD4C65F0BBB3A11F3E39C1DD0F9694D098AB3647A181C03E4E11 ] BTATH_HCRP      C:\Windows\system32\DRIVERS\btath_hcrp.sys
21:22:28.0891 0x0dc8  BTATH_HCRP - ok
21:22:28.0938 0x0dc8  [ 8008D892A2BDA67EEFBE25E14EB5DC83, 765FBBF0E58D0FA61A11AA888AB168314622572BB0F73E44FC4F88ACAF1ECB32 ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys
21:22:28.0938 0x0dc8  BTATH_LWFLT - ok
21:22:28.0984 0x0dc8  [ ABCD3C16CA850A7594CEB9AD5D966810, DB0EAF000BB6F12F2AA550B66F5C61E08F2C6E58A18DA40BE69DD2B662D1EC60 ] BTATH_RCP       C:\Windows\system32\DRIVERS\btath_rcp.sys
21:22:29.0016 0x0dc8  BTATH_RCP - ok
21:22:29.0125 0x0dc8  [ 0C3825703B5E4ADB5FB75A651E4682B7, 6DFFB545EB2F01B5EC41FA6D5F01E65406BA25CAA862F9C3D2283CE5E32085A2 ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys
21:22:29.0140 0x0dc8  BtFilter - ok
21:22:29.0172 0x0dc8  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
21:22:29.0172 0x0dc8  BthEnum - ok
21:22:29.0187 0x0dc8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
21:22:29.0187 0x0dc8  BTHMODEM - ok
21:22:29.0234 0x0dc8  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
21:22:29.0234 0x0dc8  BthPan - ok
21:22:29.0296 0x0dc8  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
21:22:29.0312 0x0dc8  BTHPORT - ok
21:22:29.0343 0x0dc8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
21:22:29.0359 0x0dc8  bthserv - ok
21:22:29.0359 0x0dc8  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
21:22:29.0359 0x0dc8  BTHUSB - ok
21:22:29.0624 0x0dc8  [ BE531939BB6D153DB63DBBFBD398A713, CB63FD4051198A89EDB3CF45199F99F5816A672FA9374E166ED7A5D17ED47468 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
21:22:29.0640 0x0dc8  c2cautoupdatesvc - ok
21:22:29.0796 0x0dc8  [ 33E9F08F675EF94633C8EF8A7C4EADF3, E1556CF27F7FB3B03EE63F3464F5EE92E7B09E67C5D8AA4A9346FEEBD716A152 ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
21:22:29.0889 0x0dc8  c2cpnrsvc - ok
21:22:29.0920 0x0dc8  catchme - ok
21:22:29.0952 0x0dc8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
21:22:29.0952 0x0dc8  cdfs - ok
21:22:29.0983 0x0dc8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
21:22:29.0998 0x0dc8  cdrom - ok
21:22:30.0014 0x0dc8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
21:22:30.0030 0x0dc8  CertPropSvc - ok
21:22:30.0061 0x0dc8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
21:22:30.0076 0x0dc8  circlass - ok
21:22:30.0108 0x0dc8  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
21:22:30.0154 0x0dc8  CLFS - ok
21:22:30.0217 0x0dc8  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:22:30.0217 0x0dc8  clr_optimization_v2.0.50727_32 - ok
21:22:30.0264 0x0dc8  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:22:30.0279 0x0dc8  clr_optimization_v2.0.50727_64 - ok
21:22:30.0357 0x0dc8  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:22:30.0357 0x0dc8  clr_optimization_v4.0.30319_32 - ok
21:22:30.0388 0x0dc8  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:22:30.0404 0x0dc8  clr_optimization_v4.0.30319_64 - ok
21:22:30.0420 0x0dc8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
21:22:30.0435 0x0dc8  CmBatt - ok
21:22:30.0466 0x0dc8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
21:22:30.0466 0x0dc8  cmdide - ok
21:22:30.0544 0x0dc8  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
21:22:30.0576 0x0dc8  CNG - ok
21:22:30.0591 0x0dc8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
21:22:30.0591 0x0dc8  Compbatt - ok
21:22:30.0622 0x0dc8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
21:22:30.0622 0x0dc8  CompositeBus - ok
21:22:30.0622 0x0dc8  COMSysApp - ok
21:22:30.0685 0x0dc8  [ C08063F052308B6F5882482615387F30, 523D1D43E896077F32CD9ACAA8E85B513BFB7B013A625E56F0D4E9675D9822BA ] cpuz135         C:\Windows\system32\drivers\cpuz135_x64.sys
21:22:30.0685 0x0dc8  cpuz135 - ok
21:22:30.0716 0x0dc8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
21:22:30.0716 0x0dc8  crcdisk - ok
21:22:30.0763 0x0dc8  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
21:22:30.0778 0x0dc8  CryptSvc - ok
21:22:30.0810 0x0dc8  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
21:22:30.0841 0x0dc8  CSC - ok
21:22:30.0872 0x0dc8  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
21:22:30.0903 0x0dc8  CscService - ok
21:22:30.0934 0x0dc8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
21:22:30.0950 0x0dc8  DcomLaunch - ok
21:22:30.0966 0x0dc8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
21:22:30.0981 0x0dc8  defragsvc - ok
21:22:30.0981 0x0dc8  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
21:22:30.0997 0x0dc8  DfsC - ok
21:22:31.0028 0x0dc8  [ 73BDD44A6088916964945886F9025409, 8E2ECC9AAEF3C6EBA2E61D25F657FDFCC72AB517CC4FD5FFF992E1F9EB942662 ] dg_ssudbus      C:\Windows\system32\DRIVERS\ssudbus.sys
21:22:31.0044 0x0dc8  dg_ssudbus - ok
21:22:31.0059 0x0dc8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
21:22:31.0075 0x0dc8  Dhcp - ok
21:22:31.0090 0x0dc8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
21:22:31.0090 0x0dc8  discache - ok
21:22:31.0106 0x0dc8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
21:22:31.0106 0x0dc8  Disk - ok
21:22:31.0122 0x0dc8  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
21:22:31.0122 0x0dc8  dmvsc - ok
21:22:31.0153 0x0dc8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
21:22:31.0153 0x0dc8  Dnscache - ok
21:22:31.0168 0x0dc8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
21:22:31.0168 0x0dc8  dot3svc - ok
21:22:31.0200 0x0dc8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
21:22:31.0215 0x0dc8  DPS - ok
21:22:31.0262 0x0dc8  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
21:22:31.0262 0x0dc8  drmkaud - ok
21:22:31.0371 0x0dc8  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
21:22:31.0387 0x0dc8  DXGKrnl - ok
21:22:31.0418 0x0dc8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
21:22:31.0418 0x0dc8  EapHost - ok
21:22:31.0512 0x0dc8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
21:22:31.0605 0x0dc8  ebdrv - ok
21:22:31.0636 0x0dc8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
21:22:31.0652 0x0dc8  EFS - ok
21:22:31.0746 0x0dc8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
21:22:31.0761 0x0dc8  ehRecvr - ok
21:22:31.0792 0x0dc8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
21:22:31.0792 0x0dc8  ehSched - ok
21:22:31.0839 0x0dc8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
21:22:31.0855 0x0dc8  elxstor - ok
21:22:31.0870 0x0dc8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
21:22:31.0870 0x0dc8  ErrDev - ok
21:22:31.0917 0x0dc8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
21:22:31.0933 0x0dc8  EventSystem - ok
21:22:31.0948 0x0dc8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
21:22:31.0948 0x0dc8  exfat - ok
21:22:31.0964 0x0dc8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
21:22:31.0980 0x0dc8  fastfat - ok
21:22:32.0011 0x0dc8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
21:22:32.0042 0x0dc8  Fax - ok
21:22:32.0042 0x0dc8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
21:22:32.0042 0x0dc8  fdc - ok
21:22:32.0058 0x0dc8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
21:22:32.0058 0x0dc8  fdPHost - ok
21:22:32.0073 0x0dc8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
21:22:32.0073 0x0dc8  FDResPub - ok
21:22:32.0089 0x0dc8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
21:22:32.0089 0x0dc8  FileInfo - ok
21:22:32.0104 0x0dc8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
21:22:32.0104 0x0dc8  Filetrace - ok
21:22:32.0229 0x0dc8  [ ACEFEEA621DCA62EFB7A7EEA59F5E91B, 1D998E25B2C4C2DB51BF5E76BD0EFCA172CFC9BC16AFE7044BFC7A9FCF346154 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
21:22:32.0260 0x0dc8  FLEXnet Licensing Service - ok
21:22:32.0276 0x0dc8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
21:22:32.0276 0x0dc8  flpydisk - ok
21:22:32.0292 0x0dc8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
21:22:32.0307 0x0dc8  FltMgr - ok
21:22:32.0354 0x0dc8  [ D1F3B32C69AE1366C62D23C8D2B66C74, E6B291BE6A19F9F4955B0047F2E84EF43ED6BAE244F1792C0D746F1D381D9CDA ] FLxHCIc         C:\Windows\system32\DRIVERS\FLxHCIc.sys
21:22:32.0354 0x0dc8  FLxHCIc - ok
21:22:32.0370 0x0dc8  [ 8FA683D2F75B1DC1A68FE7C1B05A1A39, 08AE002CAF06184666737FFA76E45148DBB32B1F5CFE3B6DA285746528B05098 ] FLxHCIh         C:\Windows\system32\DRIVERS\FLxHCIh.sys
21:22:32.0370 0x0dc8  FLxHCIh - ok
21:22:32.0479 0x0dc8  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
21:22:32.0557 0x0dc8  FontCache - ok
21:22:32.0604 0x0dc8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:22:32.0604 0x0dc8  FontCache3.0.0.0 - ok
21:22:32.0619 0x0dc8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
21:22:32.0635 0x0dc8  FsDepends - ok
21:22:32.0666 0x0dc8  [ 3DFA8D4E50D608F8F732014614C84DD2, 4927B200F1A4FF04C14347A744C878EB11A78AB356B814C196EB6DDF30DDD934 ] fspad_win764    C:\Windows\system32\DRIVERS\fspad_win764.sys
21:22:32.0666 0x0dc8  fspad_win764 - ok
21:22:32.0713 0x0dc8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
21:22:32.0713 0x0dc8  Fs_Rec - ok
21:22:32.0775 0x0dc8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
21:22:32.0791 0x0dc8  fvevol - ok
21:22:32.0822 0x0dc8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
21:22:32.0822 0x0dc8  gagp30kx - ok
21:22:32.0884 0x0dc8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
21:22:32.0931 0x0dc8  gpsvc - ok
21:22:33.0009 0x0dc8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:22:33.0025 0x0dc8  gupdate - ok
21:22:33.0040 0x0dc8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:22:33.0040 0x0dc8  gupdatem - ok
21:22:33.0056 0x0dc8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
21:22:33.0056 0x0dc8  hcw85cir - ok
21:22:33.0103 0x0dc8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
21:22:33.0118 0x0dc8  HdAudAddService - ok
21:22:33.0134 0x0dc8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
21:22:33.0150 0x0dc8  HDAudBus - ok
21:22:33.0150 0x0dc8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
21:22:33.0150 0x0dc8  HidBatt - ok
21:22:33.0150 0x0dc8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
21:22:33.0150 0x0dc8  HidBth - ok
21:22:33.0181 0x0dc8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
21:22:33.0181 0x0dc8  HidIr - ok
21:22:33.0196 0x0dc8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
21:22:33.0196 0x0dc8  hidserv - ok
21:22:33.0259 0x0dc8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
21:22:33.0259 0x0dc8  HidUsb - ok
21:22:33.0290 0x0dc8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
21:22:33.0290 0x0dc8  hkmsvc - ok
21:22:33.0321 0x0dc8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
21:22:33.0368 0x0dc8  HomeGroupListener - ok
21:22:33.0399 0x0dc8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
21:22:33.0415 0x0dc8  HomeGroupProvider - ok
21:22:33.0430 0x0dc8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
21:22:33.0446 0x0dc8  HpSAMD - ok
21:22:33.0493 0x0dc8  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
21:22:33.0508 0x0dc8  HTTP - ok
21:22:33.0524 0x0dc8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
21:22:33.0524 0x0dc8  hwpolicy - ok
21:22:33.0540 0x0dc8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
21:22:33.0555 0x0dc8  i8042prt - ok
21:22:33.0586 0x0dc8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
21:22:33.0602 0x0dc8  iaStorV - ok
21:22:33.0680 0x0dc8  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:22:33.0711 0x0dc8  idsvc - ok
21:22:33.0742 0x0dc8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
21:22:33.0742 0x0dc8  iirsp - ok
21:22:33.0805 0x0dc8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
21:22:33.0836 0x0dc8  IKEEXT - ok
21:22:34.0023 0x0dc8  [ 150AC23F21DBDBF8488408BA944B0D65, 77A3A0FB5208AA061224CFACC4D136A260132CC4BA01D105AE1532B749968708 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
21:22:34.0101 0x0dc8  IntcAzAudAddService - ok
21:22:34.0148 0x0dc8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
21:22:34.0148 0x0dc8  intelide - ok
21:22:34.0179 0x0dc8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
21:22:34.0179 0x0dc8  intelppm - ok
21:22:34.0210 0x0dc8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
21:22:34.0210 0x0dc8  IPBusEnum - ok
21:22:34.0242 0x0dc8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:22:34.0242 0x0dc8  IpFilterDriver - ok
21:22:34.0335 0x0dc8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
21:22:34.0351 0x0dc8  iphlpsvc - ok
21:22:34.0351 0x0dc8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
21:22:34.0366 0x0dc8  IPMIDRV - ok
21:22:34.0366 0x0dc8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
21:22:34.0366 0x0dc8  IPNAT - ok
21:22:34.0382 0x0dc8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
21:22:34.0382 0x0dc8  IRENUM - ok
21:22:34.0413 0x0dc8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
21:22:34.0413 0x0dc8  isapnp - ok
21:22:34.0444 0x0dc8  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
21:22:34.0476 0x0dc8  iScsiPrt - ok
21:22:34.0507 0x0dc8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
21:22:34.0507 0x0dc8  kbdclass - ok
21:22:34.0522 0x0dc8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
21:22:34.0522 0x0dc8  kbdhid - ok
21:22:34.0538 0x0dc8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
21:22:34.0554 0x0dc8  KeyIso - ok
21:22:34.0585 0x0dc8  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
21:22:34.0600 0x0dc8  KSecDD - ok
21:22:34.0616 0x0dc8  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
21:22:34.0632 0x0dc8  KSecPkg - ok
21:22:34.0632 0x0dc8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
21:22:34.0647 0x0dc8  ksthunk - ok
21:22:34.0678 0x0dc8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
21:22:34.0710 0x0dc8  KtmRm - ok
21:22:34.0741 0x0dc8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
21:22:34.0756 0x0dc8  LanmanServer - ok
21:22:34.0772 0x0dc8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
21:22:34.0788 0x0dc8  LanmanWorkstation - ok
21:22:34.0928 0x0dc8  [ 7772DFAB22611050B79504E671B06E6E, 331FE235EDBCF48EE96A5A9D5D0560457CD85FA3FD7BEACD3700055F815D9F13 ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe
21:22:34.0944 0x0dc8  LBTServ - ok
21:22:34.0990 0x0dc8  [ FA529FB35694C24BF98A9EF67C1CD9D0, 7B3C587C38CF13D514140F0A55E58997D6071D1DEFD97E274E3F490660AC6075 ] LGBusEnum       C:\Windows\system32\drivers\LGBusEnum.sys
21:22:35.0006 0x0dc8  LGBusEnum - ok
21:22:35.0053 0x0dc8  [ 1AF3A5A9BC310C88F2EFCEBD08D381AB, 9A4715EC2842DFD13353DAD79E1A1D2483333DA5EBBC1671767A2D09166E1EA7 ] LGSHidFilt      C:\Windows\system32\DRIVERS\LGSHidFilt.Sys
21:22:35.0068 0x0dc8  LGSHidFilt - ok
21:22:35.0100 0x0dc8  [ 94B29CE153765E768F004FB3440BE2B0, E74C01CEBDA589CDDE35CBCBAA18700E3742DD3B48A90DB3630992467FFC5024 ] LGVirHid        C:\Windows\system32\drivers\LGVirHid.sys
21:22:35.0100 0x0dc8  LGVirHid - ok
21:22:35.0146 0x0dc8  [ 241F2648ADF090E2A10095BD6D6F5DCB, D31F50F7A70A62E3CA45071F75C56FFA21464BFAF4CA4A3AD2482D7477D78D4E ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
21:22:35.0162 0x0dc8  LHidFilt - ok
21:22:35.0193 0x0dc8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
21:22:35.0193 0x0dc8  lltdio - ok
21:22:35.0240 0x0dc8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
21:22:35.0287 0x0dc8  lltdsvc - ok
21:22:35.0302 0x0dc8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
21:22:35.0302 0x0dc8  lmhosts - ok
21:22:35.0318 0x0dc8  [ 342ED5A4B3326014438F36D22D803737, 45488402BD919D84729A19E618B3595D615EB1F73FB9BC77675A21E7DB80AB6C ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
21:22:35.0334 0x0dc8  LMouFilt - ok
21:22:35.0365 0x0dc8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
21:22:35.0365 0x0dc8  LSI_FC - ok
21:22:35.0380 0x0dc8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
21:22:35.0380 0x0dc8  LSI_SAS - ok
21:22:35.0396 0x0dc8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
21:22:35.0396 0x0dc8  LSI_SAS2 - ok
21:22:35.0412 0x0dc8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
21:22:35.0412 0x0dc8  LSI_SCSI - ok
21:22:35.0427 0x0dc8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
21:22:35.0443 0x0dc8  luafv - ok
21:22:35.0443 0x0dc8  [ 29C733E1DE824670DC9315CFC9BDBCD3, 8CFC987FEB174D91E415DEC89437D31D7AA5F6B7685641372EF26790E1444610 ] LUsbFilt        C:\Windows\system32\Drivers\LUsbFilt.Sys
21:22:35.0443 0x0dc8  LUsbFilt - ok
21:22:35.0490 0x0dc8  [ E046EB2E82A967919210D6F8A65C1380, DD03F576DF46BC78CAD4533834C5EF1956B9C87A0A74315B60C37B03081E0939 ] lwldr1a9        C:\Windows\system32\Drivers\lwldr1a9.sys
21:22:35.0490 0x0dc8  lwldr1a9 - ok
21:22:35.0521 0x0dc8  [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
21:22:35.0521 0x0dc8  MBfilt - ok
21:22:35.0552 0x0dc8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
21:22:35.0568 0x0dc8  Mcx2Svc - ok
21:22:35.0583 0x0dc8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
21:22:35.0583 0x0dc8  megasas - ok
21:22:35.0630 0x0dc8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
21:22:35.0661 0x0dc8  MegaSR - ok
21:22:35.0739 0x0dc8  Microsoft SharePoint Workspace Audit Service - ok
21:22:35.0770 0x0dc8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
21:22:35.0786 0x0dc8  MMCSS - ok
21:22:35.0786 0x0dc8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
21:22:35.0802 0x0dc8  Modem - ok
21:22:35.0817 0x0dc8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
21:22:35.0833 0x0dc8  monitor - ok
21:22:35.0848 0x0dc8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
21:22:35.0848 0x0dc8  mouclass - ok
21:22:35.0864 0x0dc8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
21:22:35.0864 0x0dc8  mouhid - ok
21:22:35.0880 0x0dc8  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
21:22:35.0895 0x0dc8  mountmgr - ok
21:22:35.0958 0x0dc8  [ AEE4E9CC59CDEB55B1ECB0E596E796BE, 674F6F38D86D238AFD6223E03A862F8B43DD8499FBC2D4B7A04E510EC5EACF3B ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:22:35.0973 0x0dc8  MozillaMaintenance - ok
21:22:35.0989 0x0dc8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
21:22:36.0004 0x0dc8  mpio - ok
21:22:36.0036 0x0dc8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
21:22:36.0036 0x0dc8  mpsdrv - ok
21:22:36.0098 0x0dc8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
21:22:36.0129 0x0dc8  MpsSvc - ok
21:22:36.0176 0x0dc8  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
21:22:36.0192 0x0dc8  MRxDAV - ok
21:22:36.0223 0x0dc8  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
21:22:36.0223 0x0dc8  mrxsmb - ok
21:22:36.0238 0x0dc8  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:22:36.0238 0x0dc8  mrxsmb10 - ok
21:22:36.0270 0x0dc8  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:22:36.0270 0x0dc8  mrxsmb20 - ok
21:22:36.0301 0x0dc8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
21:22:36.0301 0x0dc8  msahci - ok
21:22:36.0316 0x0dc8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
21:22:36.0316 0x0dc8  msdsm - ok
21:22:36.0332 0x0dc8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
21:22:36.0348 0x0dc8  MSDTC - ok
21:22:36.0348 0x0dc8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
21:22:36.0348 0x0dc8  Msfs - ok
21:22:36.0363 0x0dc8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
21:22:36.0363 0x0dc8  mshidkmdf - ok
21:22:36.0379 0x0dc8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
21:22:36.0379 0x0dc8  msisadrv - ok
21:22:36.0394 0x0dc8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
21:22:36.0410 0x0dc8  MSiSCSI - ok
21:22:36.0410 0x0dc8  msiserver - ok
21:22:36.0441 0x0dc8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
21:22:36.0441 0x0dc8  MSKSSRV - ok
21:22:36.0457 0x0dc8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
21:22:36.0457 0x0dc8  MSPCLOCK - ok
21:22:36.0472 0x0dc8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
21:22:36.0488 0x0dc8  MSPQM - ok
21:22:36.0519 0x0dc8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
21:22:36.0535 0x0dc8  MsRPC - ok
21:22:36.0550 0x0dc8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
21:22:36.0550 0x0dc8  mssmbios - ok
21:22:36.0566 0x0dc8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
21:22:36.0566 0x0dc8  MSTEE - ok
21:22:36.0566 0x0dc8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
21:22:36.0566 0x0dc8  MTConfig - ok
21:22:36.0582 0x0dc8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
21:22:36.0582 0x0dc8  Mup - ok
21:22:36.0613 0x0dc8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
21:22:36.0613 0x0dc8  napagent - ok
21:22:36.0660 0x0dc8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
21:22:36.0660 0x0dc8  NativeWifiP - ok
21:22:36.0769 0x0dc8  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
21:22:36.0816 0x0dc8  NDIS - ok
21:22:36.0831 0x0dc8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
21:22:36.0831 0x0dc8  NdisCap - ok
21:22:36.0847 0x0dc8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
21:22:36.0847 0x0dc8  NdisTapi - ok
21:22:36.0862 0x0dc8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
21:22:36.0878 0x0dc8  Ndisuio - ok
21:22:36.0894 0x0dc8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
21:22:36.0909 0x0dc8  NdisWan - ok
21:22:36.0925 0x0dc8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
21:22:36.0925 0x0dc8  NDProxy - ok
21:22:36.0925 0x0dc8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
21:22:36.0940 0x0dc8  NetBIOS - ok
21:22:36.0940 0x0dc8  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
21:22:36.0956 0x0dc8  NetBT - ok
21:22:36.0972 0x0dc8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
21:22:36.0972 0x0dc8  Netlogon - ok
21:22:37.0003 0x0dc8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
21:22:37.0003 0x0dc8  Netman - ok
21:22:37.0081 0x0dc8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:22:37.0096 0x0dc8  NetMsmqActivator - ok
21:22:37.0128 0x0dc8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:22:37.0143 0x0dc8  NetPipeActivator - ok
21:22:37.0174 0x0dc8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
21:22:37.0206 0x0dc8  netprofm - ok
21:22:37.0206 0x0dc8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:22:37.0221 0x0dc8  NetTcpActivator - ok
21:22:37.0221 0x0dc8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:22:37.0221 0x0dc8  NetTcpPortSharing - ok
21:22:37.0237 0x0dc8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
21:22:37.0237 0x0dc8  nfrd960 - ok
21:22:37.0268 0x0dc8  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
21:22:37.0284 0x0dc8  NlaSvc - ok
21:22:37.0362 0x0dc8  [ 1E8281A0BC4358CF816754E0A195D329, A33C501BBCDF9BE40D178A0115983FD20D418878F74F046E5F3B4DE78308E969 ] NovacomD        C:\Program Files\Palm, Inc\novacomd\amd64\novacomd.exe
21:22:37.0377 0x0dc8  NovacomD - ok
21:22:37.0393 0x0dc8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
21:22:37.0393 0x0dc8  Npfs - ok
21:22:37.0424 0x0dc8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
21:22:37.0424 0x0dc8  nsi - ok
21:22:37.0440 0x0dc8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
21:22:37.0440 0x0dc8  nsiproxy - ok
21:22:37.0596 0x0dc8  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
21:22:37.0627 0x0dc8  Ntfs - ok
21:22:37.0642 0x0dc8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
21:22:37.0642 0x0dc8  Null - ok
21:22:37.0689 0x0dc8  [ 8D4AAC74B571FC356560E5B308955E93, C7F74F40D708D590EDB5D2ED064CF9C279FB1EBE33EDED073391E4D5E1CEE046 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
21:22:37.0705 0x0dc8  NVHDA - ok
21:22:38.0142 0x0dc8  [ 0EB204639119370F5F8F2871FBF4E14B, B83540AA66FD7558B9397C8FF2E939D281FFCCD23DE7AA73679883D3D2A76366 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:22:38.0360 0x0dc8  nvlddmkm - ok
21:22:38.0422 0x0dc8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
21:22:38.0438 0x0dc8  nvraid - ok
21:22:38.0485 0x0dc8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
21:22:38.0500 0x0dc8  nvstor - ok
21:22:38.0563 0x0dc8  [ 32FF8EE6DCEE5C0CB91FF892FB1CA364, 4C6FABC2B026558C8C654FAB01C3966ABF3A46E77BA13ADB1FD3E77032D6A4DF ] nvsvc           C:\Windows\system32\nvvsvc.exe
21:22:38.0656 0x0dc8  nvsvc - ok
21:22:38.0688 0x0dc8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
21:22:38.0688 0x0dc8  nv_agp - ok
21:22:38.0688 0x0dc8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
21:22:38.0688 0x0dc8  ohci1394 - ok
21:22:38.0734 0x0dc8  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:22:38.0750 0x0dc8  ose - ok
21:22:38.0953 0x0dc8  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:22:39.0078 0x0dc8  osppsvc - ok
21:22:39.0093 0x0dc8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
21:22:39.0109 0x0dc8  p2pimsvc - ok
21:22:39.0124 0x0dc8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
21:22:39.0140 0x0dc8  p2psvc - ok
21:22:39.0156 0x0dc8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
21:22:39.0156 0x0dc8  Parport - ok
21:22:39.0202 0x0dc8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
21:22:39.0202 0x0dc8  partmgr - ok
21:22:39.0234 0x0dc8  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
21:22:39.0249 0x0dc8  PcaSvc - ok
21:22:39.0280 0x0dc8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
21:22:39.0280 0x0dc8  pci - ok
21:22:39.0312 0x0dc8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
21:22:39.0312 0x0dc8  pciide - ok
21:22:39.0343 0x0dc8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
21:22:39.0343 0x0dc8  pcmcia - ok
21:22:39.0358 0x0dc8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
21:22:39.0358 0x0dc8  pcw - ok
21:22:39.0405 0x0dc8  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
21:22:39.0436 0x0dc8  PEAUTH - ok
21:22:39.0499 0x0dc8  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
21:22:39.0530 0x0dc8  PeerDistSvc - ok
21:22:39.0624 0x0dc8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
21:22:39.0624 0x0dc8  PerfHost - ok
21:22:39.0717 0x0dc8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
21:22:39.0811 0x0dc8  pla - ok
21:22:39.0842 0x0dc8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
21:22:39.0858 0x0dc8  PlugPlay - ok
21:22:39.0873 0x0dc8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
21:22:39.0873 0x0dc8  PNRPAutoReg - ok
21:22:39.0904 0x0dc8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
21:22:39.0904 0x0dc8  PNRPsvc - ok
21:22:39.0951 0x0dc8  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
21:22:39.0951 0x0dc8  PolicyAgent - ok
21:22:39.0967 0x0dc8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
21:22:39.0982 0x0dc8  Power - ok
21:22:39.0998 0x0dc8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
21:22:39.0998 0x0dc8  PptpMiniport - ok
21:22:40.0014 0x0dc8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
21:22:40.0014 0x0dc8  Processor - ok
21:22:40.0045 0x0dc8  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
21:22:40.0060 0x0dc8  ProfSvc - ok
21:22:40.0060 0x0dc8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
21:22:40.0076 0x0dc8  ProtectedStorage - ok
21:22:40.0076 0x0dc8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
21:22:40.0076 0x0dc8  Psched - ok
21:22:40.0138 0x0dc8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
21:22:40.0232 0x0dc8  ql2300 - ok
21:22:40.0248 0x0dc8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
21:22:40.0248 0x0dc8  ql40xx - ok
21:22:40.0263 0x0dc8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
21:22:40.0263 0x0dc8  QWAVE - ok
21:22:40.0279 0x0dc8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
21:22:40.0279 0x0dc8  QWAVEdrv - ok
21:22:40.0294 0x0dc8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
21:22:40.0294 0x0dc8  RasAcd - ok
21:22:40.0310 0x0dc8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
21:22:40.0326 0x0dc8  RasAgileVpn - ok
21:22:40.0326 0x0dc8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
21:22:40.0341 0x0dc8  RasAuto - ok
21:22:40.0341 0x0dc8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
21:22:40.0357 0x0dc8  Rasl2tp - ok
21:22:40.0372 0x0dc8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
21:22:40.0372 0x0dc8  RasMan - ok
21:22:40.0388 0x0dc8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
21:22:40.0388 0x0dc8  RasPppoe - ok
21:22:40.0388 0x0dc8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
21:22:40.0404 0x0dc8  RasSstp - ok
21:22:40.0419 0x0dc8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
21:22:40.0419 0x0dc8  rdbss - ok
21:22:40.0435 0x0dc8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
21:22:40.0435 0x0dc8  rdpbus - ok
21:22:40.0466 0x0dc8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
21:22:40.0466 0x0dc8  RDPCDD - ok
21:22:40.0497 0x0dc8  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
21:22:40.0513 0x0dc8  RDPDR - ok
21:22:40.0528 0x0dc8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
21:22:40.0528 0x0dc8  RDPENCDD - ok
21:22:40.0528 0x0dc8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
21:22:40.0544 0x0dc8  RDPREFMP - ok
21:22:40.0575 0x0dc8  [ 70CBA1A0C98600A2AA1863479B35CB90, 91A133297921B4955817176251AFC5283DA3C7D2099700C4C92ECC94DBE9A99E ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
21:22:40.0575 0x0dc8  RdpVideoMiniport - ok
21:22:40.0606 0x0dc8  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
21:22:40.0622 0x0dc8  RDPWD - ok
21:22:40.0653 0x0dc8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
21:22:40.0653 0x0dc8  rdyboost - ok
21:22:40.0700 0x0dc8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
21:22:40.0700 0x0dc8  RemoteAccess - ok
21:22:40.0747 0x0dc8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
21:22:40.0762 0x0dc8  RemoteRegistry - ok
21:22:40.0825 0x0dc8  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
21:22:40.0825 0x0dc8  RFCOMM - ok
21:22:40.0840 0x0dc8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
21:22:40.0840 0x0dc8  RpcEptMapper - ok
21:22:40.0872 0x0dc8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
21:22:40.0872 0x0dc8  RpcLocator - ok
21:22:40.0903 0x0dc8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
21:22:40.0918 0x0dc8  RpcSs - ok
21:22:40.0934 0x0dc8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
21:22:40.0934 0x0dc8  rspndr - ok
21:22:40.0965 0x0dc8  [ E57FAC2CDB73F06586ED2ED310B80932, 9BFC866E8AF555810127D1B95D1950BAC645C2553A46620417F6BA19FF5706B7 ] RSUSBVSTOR      C:\Windows\system32\Drivers\RtsUVStor.sys
21:22:40.0965 0x0dc8  RSUSBVSTOR - ok
21:22:41.0012 0x0dc8  [ 4027B421EDB55BE6086F531234B57B0A, 1128B0ADE14FF9520E7DA3F91F05F8AF520EB41685691031D6B5CAC028E5158D ] RtDashPt        C:\Windows\system32\DRIVERS\RtDashPt.sys
21:22:41.0012 0x0dc8  RtDashPt - ok
21:22:41.0074 0x0dc8  [ EE082E06A82FF630351D1E0EBBD3D8D0, 537F1A4108BDA72E8DD271466E7B7FCF39D4D55E4129AB35A409AB7AF2E7D219 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
21:22:41.0090 0x0dc8  RTL8167 - ok
21:22:41.0137 0x0dc8  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
21:22:41.0137 0x0dc8  s3cap - ok
21:22:41.0152 0x0dc8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
21:22:41.0168 0x0dc8  SamSs - ok
21:22:41.0184 0x0dc8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
21:22:41.0184 0x0dc8  sbp2port - ok
21:22:41.0215 0x0dc8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
21:22:41.0215 0x0dc8  SCardSvr - ok
21:22:41.0230 0x0dc8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
21:22:41.0230 0x0dc8  scfilter - ok
21:22:41.0293 0x0dc8  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
21:22:41.0324 0x0dc8  Schedule - ok
21:22:41.0355 0x0dc8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
21:22:41.0355 0x0dc8  SCPolicySvc - ok
21:22:41.0371 0x0dc8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
21:22:41.0371 0x0dc8  SDRSVC - ok
21:22:41.0386 0x0dc8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
21:22:41.0386 0x0dc8  secdrv - ok
21:22:41.0402 0x0dc8  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
21:22:41.0402 0x0dc8  seclogon - ok
21:22:41.0418 0x0dc8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
21:22:41.0418 0x0dc8  SENS - ok
21:22:41.0433 0x0dc8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
21:22:41.0433 0x0dc8  SensrSvc - ok
21:22:41.0449 0x0dc8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
21:22:41.0449 0x0dc8  Serenum - ok
21:22:41.0464 0x0dc8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
21:22:41.0464 0x0dc8  Serial - ok
21:22:41.0464 0x0dc8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
21:22:41.0464 0x0dc8  sermouse - ok
21:22:41.0480 0x0dc8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
21:22:41.0496 0x0dc8  SessionEnv - ok
21:22:41.0496 0x0dc8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
21:22:41.0496 0x0dc8  sffdisk - ok
21:22:41.0496 0x0dc8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
21:22:41.0496 0x0dc8  sffp_mmc - ok
21:22:41.0496 0x0dc8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
21:22:41.0496 0x0dc8  sffp_sd - ok
21:22:41.0511 0x0dc8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
21:22:41.0511 0x0dc8  sfloppy - ok
21:22:41.0527 0x0dc8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
21:22:41.0542 0x0dc8  SharedAccess - ok
21:22:41.0558 0x0dc8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
21:22:41.0574 0x0dc8  ShellHWDetection - ok
21:22:41.0574 0x0dc8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
21:22:41.0574 0x0dc8  SiSRaid2 - ok
21:22:41.0589 0x0dc8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
21:22:41.0589 0x0dc8  SiSRaid4 - ok
21:22:41.0698 0x0dc8  [ 8C4F0DCC6A5100D48F9B2F950CDD220F, 7B66C259BEBFEA527BFEC2B69E8224EE2277CB736EF9E0F5A92C932657EC8351 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
21:22:41.0714 0x0dc8  SkypeUpdate - ok
21:22:41.0730 0x0dc8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
21:22:41.0745 0x0dc8  Smb - ok
21:22:41.0776 0x0dc8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
21:22:41.0776 0x0dc8  SNMPTRAP - ok
21:22:41.0792 0x0dc8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
21:22:41.0792 0x0dc8  spldr - ok
21:22:41.0823 0x0dc8  [ B96C17B5DC1424D56EEA3A99E97428CD, AF0A85066A7983878DC1C663811CE61C6CA1912DC956184F878B7B82DB93C651 ] Spooler         C:\Windows\System32\spoolsv.exe
21:22:41.0854 0x0dc8  Spooler - ok
21:22:42.0026 0x0dc8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
21:22:42.0198 0x0dc8  sppsvc - ok
21:22:42.0213 0x0dc8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
21:22:42.0213 0x0dc8  sppuinotify - ok
21:22:42.0244 0x0dc8  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
21:22:42.0244 0x0dc8  srv - ok
21:22:42.0260 0x0dc8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
21:22:42.0276 0x0dc8  srv2 - ok
21:22:42.0291 0x0dc8  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
21:22:42.0307 0x0dc8  srvnet - ok
21:22:42.0307 0x0dc8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
21:22:42.0322 0x0dc8  SSDPSRV - ok
21:22:42.0322 0x0dc8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
21:22:42.0322 0x0dc8  SstpSvc - ok
21:22:42.0369 0x0dc8  Steam Client Service - ok
21:22:42.0432 0x0dc8  [ FC0A58529A02B1EED55DDC58696B7908, C767E97C9E92C425FA5F1C63C69B5E491083AB361797C8D54D1958FEF9212D30 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
21:22:42.0447 0x0dc8  Stereo Service - ok
21:22:42.0463 0x0dc8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
21:22:42.0463 0x0dc8  stexstor - ok
21:22:42.0525 0x0dc8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
21:22:42.0588 0x0dc8  stisvc - ok
21:22:42.0619 0x0dc8  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
21:22:42.0619 0x0dc8  storflt - ok
21:22:42.0634 0x0dc8  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
21:22:42.0650 0x0dc8  StorSvc - ok
21:22:42.0681 0x0dc8  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
21:22:42.0681 0x0dc8  storvsc - ok
21:22:42.0697 0x0dc8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
21:22:42.0697 0x0dc8  swenum - ok
21:22:42.0728 0x0dc8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
21:22:42.0759 0x0dc8  swprv - ok
21:22:42.0775 0x0dc8  [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
21:22:42.0775 0x0dc8  Synth3dVsc - ok
21:22:42.0853 0x0dc8  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
21:22:42.0900 0x0dc8  SysMain - ok
21:22:42.0915 0x0dc8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
21:22:42.0915 0x0dc8  TabletInputService - ok
21:22:42.0931 0x0dc8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
21:22:42.0946 0x0dc8  TapiSrv - ok
21:22:42.0946 0x0dc8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
21:22:42.0962 0x0dc8  TBS - ok
21:22:43.0071 0x0dc8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
21:22:43.0134 0x0dc8  Tcpip - ok
21:22:43.0196 0x0dc8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
21:22:43.0212 0x0dc8  TCPIP6 - ok
21:22:43.0258 0x0dc8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
21:22:43.0258 0x0dc8  tcpipreg - ok
21:22:43.0290 0x0dc8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
21:22:43.0290 0x0dc8  TDPIPE - ok
21:22:43.0321 0x0dc8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
21:22:43.0321 0x0dc8  TDTCP - ok
21:22:43.0352 0x0dc8  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
21:22:43.0368 0x0dc8  tdx - ok
21:22:43.0399 0x0dc8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
21:22:43.0399 0x0dc8  TermDD - ok
21:22:43.0430 0x0dc8  [ 2B5BDFF688EC9871D7EC5837833374E9, BD6C629FA2938987ABF95B790B20F0B7D4D023D5013E575F343A802D6213074E ] terminpt        C:\Windows\system32\drivers\terminpt.sys
21:22:43.0430 0x0dc8  terminpt - ok
21:22:43.0477 0x0dc8  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
21:22:43.0508 0x0dc8  TermService - ok
21:22:43.0524 0x0dc8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
21:22:43.0524 0x0dc8  Themes - ok
21:22:43.0539 0x0dc8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
21:22:43.0539 0x0dc8  THREADORDER - ok
21:22:43.0555 0x0dc8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
21:22:43.0555 0x0dc8  TrkWks - ok
21:22:43.0586 0x0dc8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
21:22:43.0602 0x0dc8  TrustedInstaller - ok
21:22:43.0648 0x0dc8  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
21:22:43.0648 0x0dc8  tssecsrv - ok
21:22:43.0680 0x0dc8  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
21:22:43.0680 0x0dc8  TsUsbFlt - ok
21:22:43.0695 0x0dc8  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
21:22:43.0695 0x0dc8  TsUsbGD - ok
21:22:43.0711 0x0dc8  [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
21:22:43.0726 0x0dc8  tsusbhub - ok
21:22:43.0758 0x0dc8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
21:22:43.0773 0x0dc8  tunnel - ok
21:22:43.0820 0x0dc8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
21:22:43.0820 0x0dc8  uagp35 - ok
21:22:43.0851 0x0dc8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
21:22:43.0898 0x0dc8  udfs - ok
21:22:43.0914 0x0dc8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
21:22:43.0914 0x0dc8  UI0Detect - ok
21:22:43.0945 0x0dc8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
21:22:43.0945 0x0dc8  uliagpkx - ok
21:22:43.0960 0x0dc8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
21:22:43.0960 0x0dc8  umbus - ok
21:22:43.0976 0x0dc8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
21:22:43.0976 0x0dc8  UmPass - ok
21:22:43.0992 0x0dc8  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
21:22:44.0007 0x0dc8  UmRdpService - ok
21:22:44.0023 0x0dc8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
21:22:44.0070 0x0dc8  upnphost - ok
21:22:44.0163 0x0dc8  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
21:22:44.0179 0x0dc8  usbaudio - ok
21:22:44.0210 0x0dc8  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
21:22:44.0226 0x0dc8  usbccgp - ok
21:22:44.0272 0x0dc8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
21:22:44.0272 0x0dc8  usbcir - ok
21:22:44.0304 0x0dc8  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
21:22:44.0304 0x0dc8  usbehci - ok
21:22:44.0335 0x0dc8  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
21:22:44.0350 0x0dc8  usbhub - ok
21:22:44.0444 0x0dc8  [ BD6A2C9E6AB14948E5F4B1F7C5C88047, 30D69C5CF92424253E6B4E3EF385CC55770C42585353A6ABC4E2B9E5539C7F28 ] USBLucam1a9     C:\Windows\system32\Drivers\lwcam1a9.sys
21:22:44.0460 0x0dc8  USBLucam1a9 - ok
21:22:44.0460 0x0dc8  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
21:22:44.0475 0x0dc8  usbohci - ok
21:22:44.0491 0x0dc8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
21:22:44.0491 0x0dc8  usbprint - ok
21:22:44.0538 0x0dc8  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:22:44.0538 0x0dc8  USBSTOR - ok
21:22:44.0569 0x0dc8  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
21:22:44.0569 0x0dc8  usbuhci - ok
21:22:44.0600 0x0dc8  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
21:22:44.0631 0x0dc8  usbvideo - ok
21:22:44.0662 0x0dc8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
21:22:44.0678 0x0dc8  UxSms - ok
21:22:44.0694 0x0dc8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
21:22:44.0694 0x0dc8  VaultSvc - ok
21:22:44.0709 0x0dc8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
21:22:44.0709 0x0dc8  vdrvroot - ok
21:22:44.0772 0x0dc8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
21:22:44.0803 0x0dc8  vds - ok
21:22:44.0803 0x0dc8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
21:22:44.0803 0x0dc8  vga - ok
21:22:44.0803 0x0dc8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
21:22:44.0818 0x0dc8  VgaSave - ok
21:22:44.0818 0x0dc8  VGPU - ok
21:22:44.0834 0x0dc8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
21:22:44.0834 0x0dc8  vhdmp - ok
21:22:44.0881 0x0dc8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
21:22:44.0881 0x0dc8  viaide - ok
21:22:44.0896 0x0dc8  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
21:22:44.0928 0x0dc8  vmbus - ok
21:22:44.0943 0x0dc8  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
21:22:44.0959 0x0dc8  VMBusHID - ok
21:22:44.0974 0x0dc8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
21:22:44.0974 0x0dc8  volmgr - ok
21:22:45.0006 0x0dc8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
21:22:45.0037 0x0dc8  volmgrx - ok
21:22:45.0052 0x0dc8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
21:22:45.0068 0x0dc8  volsnap - ok
21:22:45.0099 0x0dc8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
21:22:45.0099 0x0dc8  vsmraid - ok
21:22:45.0177 0x0dc8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
21:22:45.0240 0x0dc8  VSS - ok
21:22:45.0255 0x0dc8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
21:22:45.0255 0x0dc8  vwifibus - ok
21:22:45.0302 0x0dc8  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
21:22:45.0302 0x0dc8  vwififlt - ok
21:22:45.0349 0x0dc8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
21:22:45.0380 0x0dc8  W32Time - ok
21:22:45.0396 0x0dc8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
21:22:45.0411 0x0dc8  WacomPen - ok
21:22:45.0427 0x0dc8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
21:22:45.0427 0x0dc8  WANARP - ok
21:22:45.0442 0x0dc8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
21:22:45.0442 0x0dc8  Wanarpv6 - ok
21:22:45.0505 0x0dc8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
21:22:45.0536 0x0dc8  WatAdminSvc - ok
21:22:45.0583 0x0dc8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
21:22:45.0645 0x0dc8  wbengine - ok
21:22:45.0676 0x0dc8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
21:22:45.0692 0x0dc8  WbioSrvc - ok
21:22:45.0723 0x0dc8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
21:22:45.0723 0x0dc8  wcncsvc - ok
21:22:45.0739 0x0dc8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
21:22:45.0754 0x0dc8  WcsPlugInService - ok
21:22:45.0754 0x0dc8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
21:22:45.0754 0x0dc8  Wd - ok
21:22:45.0864 0x0dc8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
21:22:45.0895 0x0dc8  Wdf01000 - ok
21:22:45.0910 0x0dc8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
21:22:45.0910 0x0dc8  WdiServiceHost - ok
21:22:45.0910 0x0dc8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
21:22:45.0926 0x0dc8  WdiSystemHost - ok
21:22:46.0004 0x0dc8  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
21:22:46.0035 0x0dc8  WebClient - ok
21:22:46.0098 0x0dc8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
21:22:46.0098 0x0dc8  Wecsvc - ok
21:22:46.0098 0x0dc8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
21:22:46.0113 0x0dc8  wercplsupport - ok
21:22:46.0113 0x0dc8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
21:22:46.0129 0x0dc8  WerSvc - ok
21:22:46.0129 0x0dc8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
21:22:46.0144 0x0dc8  WfpLwf - ok
21:22:46.0144 0x0dc8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
21:22:46.0144 0x0dc8  WIMMount - ok
21:22:46.0160 0x0dc8  WinDefend - ok
21:22:46.0176 0x0dc8  WinHttpAutoProxySvc - ok
21:22:46.0238 0x0dc8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
21:22:46.0254 0x0dc8  Winmgmt - ok
21:22:46.0378 0x0dc8  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
21:22:46.0441 0x0dc8  WinRM - ok
21:22:46.0488 0x0dc8  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUSB          C:\Windows\system32\DRIVERS\WinUSB.sys
21:22:46.0488 0x0dc8  WinUSB - ok
21:22:46.0566 0x0dc8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
21:22:46.0597 0x0dc8  Wlansvc - ok
21:22:46.0737 0x0dc8  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
21:22:46.0800 0x0dc8  wlidsvc - ok
21:22:46.0846 0x0dc8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
21:22:46.0846 0x0dc8  WmiAcpi - ok
21:22:46.0862 0x0dc8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
21:22:46.0862 0x0dc8  wmiApSrv - ok
21:22:46.0878 0x0dc8  WMPNetworkSvc - ok
21:22:46.0893 0x0dc8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
21:22:46.0893 0x0dc8  WPCSvc - ok
21:22:46.0909 0x0dc8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
21:22:46.0909 0x0dc8  WPDBusEnum - ok
21:22:46.0924 0x0dc8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
21:22:46.0924 0x0dc8  ws2ifsl - ok
21:22:46.0940 0x0dc8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
21:22:46.0956 0x0dc8  wscsvc - ok
21:22:46.0956 0x0dc8  WSearch - ok
21:22:47.0096 0x0dc8  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
21:22:47.0205 0x0dc8  wuauserv - ok
21:22:47.0236 0x0dc8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
21:22:47.0236 0x0dc8  WudfPf - ok
21:22:47.0283 0x0dc8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
21:22:47.0283 0x0dc8  WUDFRd - ok
21:22:47.0346 0x0dc8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
21:22:47.0361 0x0dc8  wudfsvc - ok
21:22:47.0408 0x0dc8  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
21:22:47.0439 0x0dc8  WwanSvc - ok
21:22:47.0517 0x0dc8  [ 28B051B78471FC290C1790623D5908E1, 01B711DAC7290B5DBBA5AF49E69FC906BE0A1BF40EFB372A0DA1FB59F0BA9983 ] ZAtheros Bt&Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
21:22:47.0533 0x0dc8  ZAtheros Bt&Wlan Coex Agent - ok
21:22:47.0533 0x0dc8  ================ Scan global ===============================
21:22:47.0548 0x0dc8  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
21:22:47.0611 0x0dc8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
21:22:47.0658 0x0dc8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
21:22:47.0704 0x0dc8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
21:22:47.0751 0x0dc8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
21:22:47.0798 0x0dc8  [ Global ] - ok
21:22:47.0798 0x0dc8  ================ Scan MBR ==================================
21:22:47.0814 0x0dc8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
21:22:48.0204 0x0dc8  \Device\Harddisk0\DR0 - ok
21:22:48.0204 0x0dc8  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
21:22:50.0169 0x0dc8  \Device\Harddisk1\DR1 - ok
21:22:50.0169 0x0dc8  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
21:22:50.0185 0x0dc8  \Device\Harddisk2\DR2 - ok
21:22:50.0185 0x0dc8  ================ Scan VBR ==================================
21:22:50.0216 0x0dc8  [ C846837BB8CA01E19C6B351D5575C150 ] \Device\Harddisk0\DR0\Partition1
21:22:50.0263 0x0dc8  \Device\Harddisk0\DR0\Partition1 - ok
21:22:50.0278 0x0dc8  [ 34CB5AE56F6C8246E479D72B4D80EEB4 ] \Device\Harddisk0\DR0\Partition2
21:22:50.0278 0x0dc8  \Device\Harddisk0\DR0\Partition2 - ok
21:22:50.0294 0x0dc8  [ ED659EB691AC687DC1F510209CF7B13E ] \Device\Harddisk0\DR0\Partition3
21:22:50.0294 0x0dc8  \Device\Harddisk0\DR0\Partition3 - ok
21:22:50.0310 0x0dc8  [ E66F39ED5B3D599F6B2F3EF3081E5690 ] \Device\Harddisk1\DR1\Partition1
21:22:50.0310 0x0dc8  \Device\Harddisk1\DR1\Partition1 - ok
21:22:50.0310 0x0dc8  [ C1573CFCCFC514D9725B53482A46455A ] \Device\Harddisk2\DR2\Partition1
21:22:50.0310 0x0dc8  \Device\Harddisk2\DR2\Partition1 - ok
21:22:50.0310 0x0dc8  Waiting for KSN requests completion. In queue: 92
21:22:51.0324 0x0dc8  Waiting for KSN requests completion. In queue: 92
21:22:52.0338 0x0dc8  Waiting for KSN requests completion. In queue: 92
21:22:53.0398 0x0dc8  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 9.0.2013.292 ), 0x41000 ( enabled : updated )
21:22:53.0445 0x0dc8  Win FW state via NFP2: enabled
21:22:56.0113 0x0dc8  ============================================================
21:22:56.0113 0x0dc8  Scan finished
21:22:56.0113 0x0dc8  ============================================================
21:22:56.0113 0x09cc  Detected object count: 0
21:22:56.0113 0x09cc  Actual detected object count: 0
 

AdwCleaner before reboot:

# AdwCleaner v3.022 - Report created 30/03/2014 at 21:24:39
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Enterprise Service Pack 1 (64 bits)
# Username : us - THEM
# Running from : C:\Users\us\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16843


-\\ Mozilla Firefox v28.0 (en-US)

[ File : C:\users\us\AppData\Roaming\Mozilla\Firefox\Profiles\ig4d9q2e.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\us\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [6379 octets] - [16/02/2014 22:31:00]
AdwCleaner[R1].txt - [2706 octets] - [23/03/2014 11:36:49]
AdwCleaner[R2].txt - [847 octets] - [30/03/2014 21:24:39]
AdwCleaner[S0].txt - [6188 octets] - [16/02/2014 22:31:55]
AdwCleaner[S1].txt - [2766 octets] - [23/03/2014 11:37:33]

 

########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1026 octets] ##########

 

AdwCleaner after reboot:

# AdwCleaner v3.022 - Report created 30/03/2014 at 21:27:04
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Enterprise Service Pack 1 (64 bits)
# Username : us - THEM
# Running from : C:\Users\us\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16843


-\\ Mozilla Firefox v28.0 (en-US)

[ File : C:\users\us\AppData\Roaming\Mozilla\Firefox\Profiles\ig4d9q2e.default\prefs.js ]


-\\ Google Chrome v

[ File : C:\Users\us\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [6379 octets] - [16/02/2014 22:31:00]
AdwCleaner[R1].txt - [2706 octets] - [23/03/2014 11:36:49]
AdwCleaner[R2].txt - [1106 octets] - [30/03/2014 21:24:39]
AdwCleaner[S0].txt - [6188 octets] - [16/02/2014 22:31:55]
AdwCleaner[S1].txt - [2766 octets] - [23/03/2014 11:37:33]
AdwCleaner[S2].txt - [1028 octets] - [30/03/2014 21:27:04]

########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1088 octets] ##########

 

 

JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.3 (03.23.2014:1)
OS: Windows 7 Enterprise x64
Ran by us on Sun 03/30/2014 at 21:33:00.43
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ FireFox

Emptied folder: C:\Users\us\AppData\Roaming\mozilla\firefox\profiles\ig4d9q2e.default\minidumps [7 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 03/30/2014 at 21:39:05.26
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

ESET:

 

C:\AdwCleaner\Quarantine\C\users\us\AppData\Local\FilesFrog Update Checker\update_checker.exe.vir    a variant of Win32/Somoto.D potentially unwanted application    deleted - quarantined
C:\Users\us\AppData\Local\Temp\OIC44BF.tmp    a variant of Win32/OpenInstall potentially unwanted application    deleted - quarantined
C:\Users\us\AppData\Local\Temp\oi_AIRppnt4Hf\OIAssistWTD.exe    a variant of Win32/OpenInstall potentially unwanted application    deleted - quarantined
D:\backup\phone back up march 2014\download\entomology books pdf.exe    Win32/InstalleRex.J potentially unwanted application    deleted - quarantined
 


Edited by Esotericman, 31 March 2014 - 08:35 AM.


#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,240 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:07 AM

Posted 31 March 2014 - 02:23 PM

Your welcome. In Control Panel Uninstall this... Java™ 6 Update 37 (Version: 6.0.370), now restart the machine..
Next do this and tell me how it is after.

Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.


Go to Step 2 and click on Check button next to 1. See If Check Disk Is Needed.
If the tool that the Check Disk is needed click on Do It button next to 2. Check Disk.
In that case make sure you restart computer.

p22004342.gif


Once the above is done go to Step 3 and allow it to run System File Check by clicking on Do It button:

p22004343.gif


Go to Step 4 and under "System Restore" click on Create button:

p22004346.gif


Go to Start Repairs tab and click Start button.

Leave all checkmarks as they're.
NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

Click on Start button.

p22004347.gif

Post Windows Repair log which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 Esotericman

Esotericman
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:07 AM

Posted 31 March 2014 - 09:03 PM

Thank you again and here is the repair log.

 

 

 

 

System Variables
--------------------------------------------------------------------------------
OS: Windows 7 Enterprise
OS Architecture: 64-bit
OS Version: 6.1.7601
OS Service Pack: Service Pack 1
Computer Name: THEM
Windows Drive: C:\
Windows Path: C:\Windows
Current Profile: C:\Users\us
Current Profile SID: S-1-5-21-387227441-2374797220-3376888333-1000
Current Profile Classes: S-1-5-21-387227441-2374797220-3376888333-1000_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\Windows\ServiceProfiles
Local Settings AppData: C:\Users\us\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 00:13:40

Process Count: 75
Commit Total: 2.26 GB
Commit Limit: 23.95 GB
Commit Peak: 2.45 GB
Handle Count: 23649
Kernel Total: 373.52 MB
Kernel Paged: 309.80 MB
Kernel Non Paged: 63.72 MB
System Cache: 1.93 GB
Thread Count: 955
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 11.98 GB
Memory Used: 2.17 GB(18.1029%)
Memory Avail.: 9.81 GB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 11.98 GB
Memory Used: 1.90 GB(15.8325%)
Memory Avail.: 10.08 GB
--------------------------------------------------------------------------------

Starting Repairs...
   Start (3/31/2014 8:42:45 PM)

01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (3/31/2014 8:42:45 PM)
   Running Repair Under Current User Account
   Done (3/31/2014 8:42:52 PM)

01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (3/31/2014 8:42:52 PM)
   Running Repair Under System Account
   Done (3/31/2014 8:45:27 PM)

01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (3/31/2014 8:45:28 PM)
   Running Repair Under System Account
   Done (3/31/2014 8:47:24 PM)

03 - Register System Files
   Start (3/31/2014 8:47:25 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:47:48 PM)

04 - Repair WMI
   Start (3/31/2014 8:47:48 PM)
   Running Repair Under Current User Account
   Done (3/31/2014 8:52:13 PM)

05 - Repair Windows Firewall
   Start (3/31/2014 8:52:13 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:52:46 PM)

06 - Repair Internet Explorer
   Start (3/31/2014 8:52:46 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:53:12 PM)

07 - Repair MDAC/MS Jet
   Start (3/31/2014 8:53:12 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:53:20 PM)

08 - Repair Hosts File
   Start (3/31/2014 8:53:20 PM)
   Running Repair Under System Account
   Done (3/31/2014 8:53:23 PM)

09 - Remove Policies Set By Infections
   Start (3/31/2014 8:53:23 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:53:28 PM)

11 - Repair Icons
   Start (3/31/2014 8:53:28 PM)
   Running Repair Under Current User Account
   Done (3/31/2014 8:53:30 PM)

12 - Repair Winsock & DNS Cache
   Start (3/31/2014 8:53:30 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:53:49 PM)

14 - Repair Proxy Settings
   Start (3/31/2014 8:53:49 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:53:54 PM)

16 - Repair Windows Updates
   Start (3/31/2014 8:53:54 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:54:25 PM)

17 - Repair CD/DVD Missing/Not Working
   Start (3/31/2014 8:54:25 PM)
   iTunes not found, not applying UpperFilters iTunes Reg Key
   Done (3/31/2014 8:54:25 PM)

18 - Repair Volume Shadow Copy Service
   Start (3/31/2014 8:54:25 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:54:34 PM)

20 - Repair MSI (Windows Installer)
   Start (3/31/2014 8:54:34 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:54:45 PM)

22.01 - Repair bat Association
   Start (3/31/2014 8:54:45 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:54:49 PM)

22.02 - Repair cmd Association
   Start (3/31/2014 8:54:49 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:54:54 PM)

22.03 - Repair com Association
   Start (3/31/2014 8:54:54 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:54:59 PM)

22.04 - Repair Directory Association
   Start (3/31/2014 8:54:59 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:03 PM)

22.05 - Repair Drive Association
   Start (3/31/2014 8:55:03 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:08 PM)

22.06 - Repair exe Association
   Start (3/31/2014 8:55:08 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:12 PM)

22.07 - Repair Folder Association
   Start (3/31/2014 8:55:12 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:17 PM)

22.08 - Repair inf Association
   Start (3/31/2014 8:55:17 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:22 PM)

22.09 - Repair lnk (Shortcuts) Association
   Start (3/31/2014 8:55:22 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:26 PM)

22.10 - Repair msc Association
   Start (3/31/2014 8:55:26 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:31 PM)

22.11 - Repair reg Association
   Start (3/31/2014 8:55:31 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:36 PM)

22.12 - Repair scr Association
   Start (3/31/2014 8:55:36 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:40 PM)

23 - Repair Windows Safe Mode
   Start (3/31/2014 8:55:40 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:45 PM)

24 - Repair Print Spooler
   Start (3/31/2014 8:55:45 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:55:58 PM)

25 - Restore Important Windows Services
   Start (3/31/2014 8:55:58 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:56:18 PM)

26 - Set Windows Services To Default Startup
   Start (3/31/2014 8:56:18 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (3/31/2014 8:56:27 PM)

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1

Cleaning up empty logs...

All Selected Repairs Done.
   Done (3/31/2014 8:56:27 PM)
   Total Repair Time: 00:13:43


...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under Current User Account
 



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,240 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:07 AM

Posted 31 March 2014 - 09:14 PM

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
See how it's running now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 Esotericman

Esotericman
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:07 AM

Posted 31 March 2014 - 09:27 PM

TFC managed to remove 3.3 gigs of temp garbage and that last reboot seemed much quicker.  Thank you for the assistance again.  I was sent to here due to a possible infection, I assume there may have been one?



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,240 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:07 AM

Posted 31 March 2014 - 09:33 PM

There were adwares,removed. but you had a bunch of system conflicts that should be fixed now. See how its running for a day.

Ooops I hit enter.. run MBAM and then see ....
  • Download Malwarebytes Anti-Malware Free and save it to your desktop
  • Double click the desktop icon, click Run, then OK
  • Click Next
  • Select I accept the agreement then continue to click Next then finally click Install
  • Uncheck Enable free trial of Malwarebytes Anti-Malware Premium if you do not want the free trial of the paid version, then click Finish
  • If you are notified the Database is out of date click Update Now
  • Click Scan Now >>
----------
  • Note: If Malwarebytes will not launch please do the following to launch Malwarebytes Chameleon:
  • Click Start (Start, Search, All files and folders for Windows XP) then type mbam
  • Double click one of the four following files (if one does not work try the next one, and so on) - A black command window will open. Follow those instructions until the Malwarebytes program starts the scan

mbam-chameleon.scr
mbam-chameleon
mbam-chameleon.exe
mbam-chameleon.com

----------
  • When completed click the down arrow on Export Log and select Text file (*.txt)
  • Save the file to your desktop as MBAM
  • Click Apply Actions then restart your computer if requested
  • Copy and past the contents of MBAM.txt in your reply

Edited by boopme, 31 March 2014 - 09:35 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 Esotericman

Esotericman
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:07 AM

Posted 01 April 2014 - 04:28 PM

Malawarebytes was clean and had no actions to take.

 

 

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.04.01.08

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 10.0.9200.16844
us :: THEM [administrator]

4/1/2014 2:46:36 PM
mbam-log-2014-04-01 (14-46-36).txt

Scan type: Full scan (C:\|D:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 669044
Time elapsed: 1 hour(s), 30 minute(s), 43 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

 

 

Thanks again for the efforts and input!

 

 



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,240 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:07 AM

Posted 01 April 2014 - 09:29 PM

If all is good now then,....

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 Esotericman

Esotericman
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:01:07 AM

Posted 02 April 2014 - 05:51 PM

TFC ran fine and removed around 500mb.

 

Thank you for all the aid with this. 



#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,240 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:07 AM

Posted 02 April 2014 - 06:50 PM

You're welcome rom us all !!


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users