Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Roguekiller-Safesearch Malware


  • This topic is locked This topic is locked
14 replies to this topic

#1 Johnp12

Johnp12

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:58 PM

Posted 04 April 2014 - 01:53 AM

I have several of these latest anti-malware type programs. Roguekiller keeps on picking up these(see report). It is the only one that is first to pick up on this problem. What starts the whole process is internet explorer ver 11.

 

Any help would be appreciated,

Thanks.

Attached Files


Edited by hamluis, 04 April 2014 - 07:23 AM.
Moved from Win 7 to Malware Removal Logs - Hamluis.


BC AdBot (Login to Remove)

 


#2 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,743 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:58 PM

Posted 09 April 2014 - 01:55 AM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/529882 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new DDS log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download DDS by sUBs from the following link if you no longer have it available and save it to your destop.

    DDS.com Download Link
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control can be found HERE.

As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#3 Johnp12

Johnp12
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:58 PM

Posted 09 April 2014 - 09:16 AM

Thanks for the reply.

Win7 Home Premium SP1 64bit,

Internet Explorer 11,

Google Chrome,

Have Original Windows 7 disk.

 

 

I'm getting very radicle results from a number of different malware programs. Roguekiller keeps is reporting different drivers are attached with api's. Malawarebytes keeps on digging-up various malware after running it every couple of days. I've never experienced anything like it. I also ran a program called Hidden File Finder that produced over 400 hidden files and that program locks-up most of the time after running it.

Anyway, I've tried various ways to try and solve this but to no avail- I'll attach the DDS Report plus another Roguekiller report, as it is different to the first report I attached.

 

Thanks ahead and thanks for the reply.

 

EDIT I also managed to get a file from Hidden File Finder on my System32 Folder attached.

 

Attached Files


Edited by Johnp12, 09 April 2014 - 09:31 AM.


#4 nasdaq

nasdaq

  • Malware Response Team
  • 40,227 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:58 PM

Posted 11 April 2014 - 08:36 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps in the order listed.
===

Nothing suspicious was found in your logs.

Download Malwarebytes' Anti-Malware from Here

Double-click mbam-setup-2.X.X.XXXX.exe to install the application (X's are the current version number).
  • Make sure a checkmark is placed next to Launch Malwarebytes' Anti-Malware, then click Finish.
  • Once MBAM opens, when it says Your databases are out of date, click the Fix Now button.
  • Click the Settings tab at the top, and then in the left column, select Detections and Protections, and if not already checked place a checkmark in the selection box for Scan for rootkits.
  • Click the Scan tab at the top of the program window, select Threat Scan and click the Scan Now button.
  • If you receive a message that updates are available, click the Update Now button (the update will be downloaded, installed, and the scan will start).
  • The scan may take some time to finish,so please be patient.
  • If potential threats are detected, ensure that Quarantine is selected as the Action for all the listed items, and click the Apply Actions button.
  • While still on the Scan tab, click the link for View detailed log, and in the window that opens click the Export button, select Text file (*.txt), and save the log to your Desktop.
  • The log is automatically saved by MBAM and can also be viewed by clicking the History tab and then selecting Application Logs.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.

===

Please download AdwCleaner by Xplode onto your Desktop.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Click the Report button and the report will open in Notepad.
IMPORTANT
  • If you click the Clean button all items listed in the report will be removed.
If you find some false positive items or programs that you wish to keep, Close the AdwCleaner windows.
  • Close all open programs and internet browsers.
  • Double click on AdwCleaner.exe to run the tool.
  • Click the Scan button and wait for the process to complete.
  • Check off the element(s) you wish to keep.
  • Click on the Clean button follow the prompts.
  • A log file will automatically open after the scan has finished.
  • Please post the content of that log file with your next answer.
  • You can find the log file at C:\AdwCleaner[Sn].txt (n is a number).
===

Download the correct version of this tool for your operating system.
Farbar Recovery Scan Tool (64 bit)
Farbar Recovery Scan Tool (32 bit)
and save it to a folder on your computer's Desktop.
Double-click to run it. When the tool opens click Yes to disclaimer.
Press Scan button.
It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

===

Please paste the logs in your next reply DO NOT ATTACH THEM unless specified.

Let me know what problem persists.

#5 Johnp12

Johnp12
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:58 PM

Posted 12 April 2014 - 02:21 AM

Hello

I appreciate your help and time but I'm a bit surprised that your said that everything is okay when Roguekiller is picking up hooks in several drivers. Could you possibly explain how Roguekiller is doing this thanks. When this problem started (with Roguekiler) I ran scandisk and it reported problems. I'm also picking up malware with Malawarebytes every few days up until recently.


frst log

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 11-04-2014
Ran by john (administrator) on JOHN-PC on 12-04-2014 16:58:06
Running from C:\Users\john\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: English(US)
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe
(iolo technologies, LLC) C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(iolo technologies, LLC) C:\Program Files (x86)\iolo\System Mechanic Professional\SystemGuardAlerter.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
(Google Inc.) C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Google Inc.) C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
(Microsoft Corporation) C:\Windows\System32\MsSpellCheckingFacility.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Bdagent] - C:\Program Files\Bitdefender\Bitdefender 2013\bdagent.exe [1571072 2013-12-01] (Bitdefender)
HKLM\...\Run: [Acronis Scheduler2 Service] - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [403328 2012-08-23] (Acronis)
HKLM-x32\...\Run: [Syslog] - [X]
HKLM-x32\...\Run: [TrueImageMonitor.exe] - C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [6010264 2012-08-23] (Acronis)
HKLM-x32\...\Run: [ControlCenter3] - C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-25] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] - C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [941440 2012-07-25] (Acronis)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-01] (Apple Inc.)
HKLM-x32\...\Run: [Live! Central 3] - C:\Program Files (x86)\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe [503955 2011-04-08] (Creative Technology Ltd)
HKU\S-1-5-21-366503658-1597434619-481558210-1000\...\Run: [swg] - C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2012-10-06] (Google Inc.)
HKU\S-1-5-21-366503658-1597434619-481558210-1000\...\Run: [RoboForm] - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [109784 2013-12-17] ()
HKU\S-1-5-21-366503658-1597434619-481558210-1000\...\Run: [iCloudServices] - C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [59720 2013-11-20] (Apple Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ncr
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://iat.ninemsn.com.au/tickler/default.aspx?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xEA20E1E36397CD01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
URLSearchHook: HKLM-x32 - (No Name) - {3bbd3c14-4c16-4989-8366-95bc9179779d} - No File
URLSearchHook: HKCU - (No Name) - {3bbd3c14-4c16-4989-8366-95bc9179779d} - No File
BHO: RoboForm Toolbar Helper - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll ()
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll ()
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - &RoboForm Toolbar - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files (x86)\Siber Systems\AI RoboForm\roboform.dll ()
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - No File
Toolbar: HKCU - &RoboForm Toolbar - {724D43A0-0D85-11D4-9908-00400523E39A} - C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboForm-x64.dll ()
Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: HKLM-x32 {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {E705A591-DA3C-4228-B0D5-A356DBA42FBF} http://ccfiles.creative.com/Web/softwareupdate/su2/ocx/20015/CTSUEng.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 211.29.132.12 198.142.0.51

FireFox:
========
FF ProfilePath: C:\Users\john\AppData\Roaming\Mozilla\Firefox\Profiles\t75uypb5.default
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin - C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.7.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.7.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext
FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2013-09-23]
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext
FF Extension: bdToolbar - C:\Program Files\Bitdefender\Bitdefender 2013\bdtbext [2013-09-23]

Chrome:
=======
CHR DefaultSearchKeyword: google.com.au
CHR Extension: (Google Docs) - C:\Users\john\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-08]
CHR Extension: (Google Drive) - C:\Users\john\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-08]
CHR Extension: (YouTube) - C:\Users\john\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-08]
CHR Extension: (Google Search) - C:\Users\john\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-08]
CHR Extension: (Google Wallet) - C:\Users\john\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-14]
CHR Extension: (Gmail) - C:\Users\john\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-08]

==================== Services (Whitelisted) =================

S4 BdDesktopParental; C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe [69392 2013-12-01] (Bitdefender)
S4 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393080 2012-09-24] (BlueStack Systems, Inc.)
S4 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384888 2012-09-24] (BlueStack Systems, Inc.)
R2 GsServer; C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe [5725840 2013-02-01] ()
R2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [127752 2014-04-10] (SurfRight B.V.)
R2 ioloSystemService; C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe [1070080 2013-03-17] (iolo technologies, LLC)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-04-03] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [857912 2014-04-03] (Malwarebytes Corporation)
S2 SafeBox; C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe [95184 2013-09-23] (Bitdefender)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe [67320 2013-09-23] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe [1645256 2013-12-01] (Bitdefender)
S3 rpcapd; "%ProgramFiles(x86)%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles(x86)%\WinPcap\rpcapd.ini" [X]

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [893440 2014-01-17] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [261056 2013-01-11] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [635392 2014-01-17] (BitDefender)
R1 BdfNdisf; c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [93600 2013-09-23] (BitDefender LLC)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC)
U5 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-12-01] (BitDefender SRL)
R1 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [76944 2012-04-18] (BitDefender)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [71032 2012-09-24] (BlueStack Systems)
R1 ElRawDisk; C:\Windows\system32\drivers\ElRawDsk.sys [30752 2012-08-03] (EldoS Corporation)
S1 FileDisk; No ImagePath
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-10-04] (BitDefender LLC)
R3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [17920 2010-06-19] (Siliten)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-04-03] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [119512 2014-04-12] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63192 2014-04-03] (Malwarebytes Corporation)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2011-02-12] (CACE Technologies, Inc.)
S3 pbfilter; C:\Program Files\PeerBlock\pbfilter.sys [24176 2010-11-07] ()
S3 RTTEAMPT; C:\Windows\System32\DRIVERS\RtTeam620.sys [58512 2012-07-03] (Realtek Corporation)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [1093256 2012-09-23] (Acronis)
R2 trufos; C:\Windows\System32\DRIVERS\trufos.sys [389240 2013-10-04] (BitDefender S.R.L.)
R3 V0720Vid; C:\Windows\System32\DRIVERS\V0720Vid.sys [334048 2011-05-31] (Creative Technology Ltd.)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [166024 2012-09-23] (Acronis)
S3 DUMeterDrv; \??\C:\Program Files (x86)\DU Meter\DUMETR64.SYS [X]
U0 Partizan; system32\drivers\Partizan.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-12 16:58 - 2014-04-12 16:58 - 00015459 _____ () C:\Users\john\Desktop\FRST.txt
2014-04-12 16:42 - 2014-04-12 16:58 - 00000000 ____D () C:\FRST
2014-04-12 16:41 - 2014-04-12 16:41 - 02157056 _____ (Farbar) C:\Users\john\Desktop\FRST64.exe
2014-04-12 16:41 - 2014-04-12 16:41 - 00038616 _____ () C:\Users\john\Desktop\RKreport0_S_04092014_234852.txt
2014-04-12 16:02 - 2014-04-12 16:02 - 99741696 ___SH () C:\tnd.dat
2014-04-12 15:37 - 2014-04-12 15:37 - 00000000 ____D () C:\Users\john\Desktop\JavaRa-1.16-28-5-13
2014-04-12 15:35 - 2014-04-12 00:36 - 00165483 _____ () C:\Users\john\Desktop\JavaRa-1.16-28-5-13.zip
2014-04-12 15:33 - 2014-04-12 15:33 - 913305735 _____ () C:\Windows\MEMORY.DMP
2014-04-12 15:33 - 2014-04-12 15:33 - 00296944 _____ () C:\Windows\Minidump\041214-20092-01.dmp
2014-04-10 23:53 - 2014-04-10 23:53 - 00001116 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-10 23:53 - 2014-04-10 23:53 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-10 23:53 - 2014-04-03 09:51 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-10 23:53 - 2014-04-03 09:51 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-10 23:53 - 2014-04-03 09:50 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-10 22:02 - 2014-04-10 23:09 - 00000440 _____ () C:\Windows\system32\.crusader
2014-04-10 21:58 - 2014-04-10 21:58 - 00001907 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-04-10 21:58 - 2014-04-10 21:58 - 00000000 ____D () C:\Program Files\HitmanPro
2014-04-10 21:57 - 2014-04-10 22:02 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-04-10 20:42 - 2014-04-10 20:42 - 00000000 ____D () C:\Windows\ERUNT
2014-04-10 20:16 - 2014-04-10 20:16 - 00001237 _____ () C:\Users\UpdatusUser\Desktop\StreamArmor.lnk
2014-04-10 20:16 - 2014-04-10 20:16 - 00001237 _____ () C:\Users\john\Desktop\StreamArmor.lnk
2014-04-10 13:21 - 2014-04-10 13:21 - 00047161 _____ () C:\Users\john\Desktop\HiddenFileReport2.html
2014-04-10 00:37 - 2014-04-10 00:37 - 00026055 _____ () C:\Users\john\Desktop\attach2.txt
2014-04-10 00:27 - 2014-04-10 00:27 - 00014612 _____ () C:\Users\john\Desktop\HiddenFileReport.html
2014-04-08 21:09 - 2014-04-10 20:16 - 00000000 ____D () C:\Program Files (x86)\SecurityXploded
2014-04-08 21:09 - 2014-04-08 21:09 - 00001297 _____ () C:\Users\UpdatusUser\Desktop\HiddenFileFinder.lnk
2014-04-08 21:09 - 2014-04-08 21:09 - 00001297 _____ () C:\Users\john\Desktop\HiddenFileFinder.lnk
2014-04-08 17:12 - 2014-04-12 16:41 - 00304151 _____ () C:\Windows\WindowsUpdate.log
2014-04-08 17:12 - 2014-04-12 16:13 - 00000728 _____ () C:\Windows\setupact.log
2014-04-08 17:12 - 2014-04-08 17:12 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-08 17:11 - 2014-04-11 13:57 - 00002766 _____ () C:\Windows\PFRO.log
2014-04-08 17:11 - 2014-04-08 17:11 - 00268856 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-06 23:14 - 2014-04-06 23:14 - 00058488 _____ () C:\Users\john\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-06 21:42 - 2014-04-11 00:10 - 00000000 ____D () C:\Users\john\Desktop\RK_Quarantine
2014-04-06 02:19 - 2014-04-06 02:19 - 00287304 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\TrufosAlt.sys
2014-04-06 00:02 - 2014-04-12 16:46 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-03 01:00 - 2014-04-03 01:00 - 00000000 ____D () C:\SUPERDelete
2014-04-02 23:37 - 2014-04-02 23:37 - 00000000 ____D () C:\Users\john\AppData\Roaming\SUPERAntiSpyware.com
2014-04-02 20:36 - 2014-04-02 20:47 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-04-02 20:14 - 2014-04-02 20:14 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-24 14:02 - 2014-03-24 15:14 - 00020044 _____ () C:\Users\john\Documents\uni.wlmp
2014-03-19 23:21 - 2014-03-19 23:21 - 37594492 _____ () C:\Users\john\Documents\rob3.wav
2014-03-19 23:14 - 2014-03-20 00:04 - 03145780 _____ () C:\Users\john\Documents\rob3.reason
2014-03-19 22:46 - 2014-03-19 23:14 - 03145780 _____ () C:\Users\john\Documents\rob2.reason
2014-03-18 23:14 - 2014-03-18 23:14 - 00786484 _____ () C:\Users\john\Documents\Document 1..reason
2014-03-18 17:38 - 2014-03-18 17:51 - 03145780 _____ () C:\Users\john\Documents\Abi002.reason
2014-03-18 17:24 - 2014-03-19 22:46 - 03145780 _____ () C:\Users\john\Documents\Abi- Evolution.reason
2014-03-18 17:07 - 2014-03-18 17:24 - 03145780 _____ () C:\Users\john\Documents\Abiram 5- Evolution.reason
2014-03-18 15:45 - 2014-03-18 17:07 - 03145780 _____ () C:\Users\john\Documents\Abiram Briz4 - Evolution.reason
2014-03-15 16:13 - 2014-03-15 16:13 - 00000000 ____D () C:\Program Files (x86)\Lame For Audacity
2014-03-15 15:14 - 2014-04-03 18:44 - 00000000 ____D () C:\Users\john\AppData\Roaming\Audacity
2014-03-15 15:14 - 2014-03-15 15:14 - 00000000 ____D () C:\Program Files (x86)\Audacity
2014-03-15 15:00 - 2014-03-15 15:50 - 00004190 _____ () C:\Users\john\Documents\My Movieb.wlmp

==================== One Month Modified Files and Folders =======

2014-04-12 16:58 - 2014-04-12 16:58 - 00015459 _____ () C:\Users\john\Desktop\FRST.txt
2014-04-12 16:58 - 2014-04-12 16:42 - 00000000 ____D () C:\FRST
2014-04-12 16:46 - 2014-04-06 00:02 - 00119512 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-12 16:41 - 2014-04-12 16:41 - 02157056 _____ (Farbar) C:\Users\john\Desktop\FRST64.exe
2014-04-12 16:41 - 2014-04-12 16:41 - 00038616 _____ () C:\Users\john\Desktop\RKreport0_S_04092014_234852.txt
2014-04-12 16:41 - 2014-04-08 17:12 - 00304151 _____ () C:\Windows\WindowsUpdate.log
2014-04-12 16:20 - 2009-07-14 14:45 - 00013952 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-12 16:20 - 2009-07-14 14:45 - 00013952 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-12 16:14 - 2013-12-27 21:00 - 00000000 ____D () C:\AdwCleaner
2014-04-12 16:13 - 2014-04-08 17:12 - 00000728 _____ () C:\Windows\setupact.log
2014-04-12 16:13 - 2012-09-25 15:31 - 00000890 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-12 16:13 - 2009-07-14 15:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-12 16:02 - 2014-04-12 16:02 - 99741696 ___SH () C:\tnd.dat
2014-04-12 15:52 - 2012-09-21 04:17 - 00000000 ____D () C:\Users\john\AppData\Local\VirtualStore
2014-04-12 15:41 - 2013-12-08 00:39 - 00000000 ____D () C:\Users\john\AppData\Local\Adobe
2014-04-12 15:41 - 2012-09-21 08:10 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-04-12 15:41 - 2012-09-21 08:10 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-04-12 15:37 - 2014-04-12 15:37 - 00000000 ____D () C:\Users\john\Desktop\JavaRa-1.16-28-5-13
2014-04-12 15:37 - 2012-10-12 18:21 - 00000000 ____D () C:\Windows\System32\Tasks\NCH Software
2014-04-12 15:37 - 2012-10-12 18:21 - 00000000 ____D () C:\Program Files (x86)\NCH Software
2014-04-12 15:33 - 2014-04-12 15:33 - 913305735 _____ () C:\Windows\MEMORY.DMP
2014-04-12 15:33 - 2014-04-12 15:33 - 00296944 _____ () C:\Windows\Minidump\041214-20092-01.dmp
2014-04-12 15:33 - 2012-10-23 11:39 - 00000000 ____D () C:\Windows\Minidump
2014-04-12 00:36 - 2014-04-12 15:35 - 00165483 _____ () C:\Users\john\Desktop\JavaRa-1.16-28-5-13.zip
2014-04-11 13:57 - 2014-04-08 17:11 - 00002766 _____ () C:\Windows\PFRO.log
2014-04-11 00:12 - 2012-09-25 15:31 - 00000894 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-11 00:10 - 2014-04-06 21:42 - 00000000 ____D () C:\Users\john\Desktop\RK_Quarantine
2014-04-10 23:53 - 2014-04-10 23:53 - 00001116 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-04-10 23:53 - 2014-04-10 23:53 - 00000000 ____D () C:\Program Files (x86)\Malwarebytes Anti-Malware
2014-04-10 23:52 - 2012-09-22 05:38 - 00000000 ____D () C:\Users\john\AppData\Local\CrashDumps
2014-04-10 23:28 - 2009-07-14 13:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-10 23:09 - 2014-04-10 22:02 - 00000440 _____ () C:\Windows\system32\.crusader
2014-04-10 22:02 - 2014-04-10 21:57 - 00000000 ____D () C:\ProgramData\HitmanPro
2014-04-10 21:58 - 2014-04-10 21:58 - 00001907 _____ () C:\Users\Public\Desktop\HitmanPro.lnk
2014-04-10 21:58 - 2014-04-10 21:58 - 00000000 ____D () C:\Program Files\HitmanPro
2014-04-10 20:42 - 2014-04-10 20:42 - 00000000 ____D () C:\Windows\ERUNT
2014-04-10 20:27 - 2013-09-25 21:29 - 00000000 ____D () C:\R
2014-04-10 20:26 - 2012-10-14 17:50 - 00000000 ____D () C:\Program Files (x86)\VideoLAN
2014-04-10 20:16 - 2014-04-10 20:16 - 00001237 _____ () C:\Users\UpdatusUser\Desktop\StreamArmor.lnk
2014-04-10 20:16 - 2014-04-10 20:16 - 00001237 _____ () C:\Users\john\Desktop\StreamArmor.lnk
2014-04-10 20:16 - 2014-04-08 21:09 - 00000000 ____D () C:\Program Files (x86)\SecurityXploded
2014-04-10 20:15 - 2012-09-27 09:59 - 00000000 ____D () C:\ProgramData\Freemake
2014-04-10 13:21 - 2014-04-10 13:21 - 00047161 _____ () C:\Users\john\Desktop\HiddenFileReport2.html
2014-04-10 00:37 - 2014-04-10 00:37 - 00026055 _____ () C:\Users\john\Desktop\attach2.txt
2014-04-10 00:27 - 2014-04-10 00:27 - 00014612 _____ () C:\Users\john\Desktop\HiddenFileReport.html
2014-04-08 21:09 - 2014-04-08 21:09 - 00001297 _____ () C:\Users\UpdatusUser\Desktop\HiddenFileFinder.lnk
2014-04-08 21:09 - 2014-04-08 21:09 - 00001297 _____ () C:\Users\john\Desktop\HiddenFileFinder.lnk
2014-04-08 17:12 - 2014-04-08 17:12 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-08 17:11 - 2014-04-08 17:11 - 00268856 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-06 23:14 - 2014-04-06 23:14 - 00058488 _____ () C:\Users\john\AppData\Local\GDIPFONTCACHEV1.DAT
2014-04-06 22:54 - 2012-09-24 18:14 - 00000000 ____D () C:\Users\john\AppData\Roaming\TuneUpMedia
2014-04-06 22:53 - 2012-09-24 19:23 - 00000000 ____D () C:\Users\john\AppData\Roaming\Mozilla
2014-04-06 20:38 - 2012-10-06 20:36 - 00000000 ____D () C:\Program Files (x86)\FrostWire 5
2014-04-06 20:12 - 2012-09-25 14:22 - 00000000 ___RD () C:\Users\john\Desktop\Folder`s
2014-04-06 19:06 - 2012-09-21 04:17 - 00000000 ____D () C:\Users\john
2014-04-06 02:19 - 2014-04-06 02:19 - 00287304 _____ (BitDefender S.R.L.) C:\Windows\system32\Drivers\TrufosAlt.sys
2014-04-05 18:23 - 2013-01-23 20:48 - 00000481 _____ () C:\Windows\system32\checkdnsid.xml
2014-04-03 18:44 - 2014-03-15 15:14 - 00000000 ____D () C:\Users\john\AppData\Roaming\Audacity
2014-04-03 18:44 - 2013-10-06 17:11 - 00000000 ____D () C:\Users\john\AppData\Roaming\BleachBit
2014-04-03 18:44 - 2009-07-14 13:20 - 00000000 ____D () C:\Windows\registration
2014-04-03 09:51 - 2014-04-10 23:53 - 00088280 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-10 23:53 - 00063192 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-10 23:53 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-03 01:57 - 2009-07-14 15:08 - 00032594 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-04-03 01:48 - 2012-09-25 15:36 - 00000000 ____D () C:\Users\john\.frostwire5
2014-04-03 01:28 - 2012-09-25 15:31 - 00000000 ____D () C:\Users\john\AppData\Local\Google
2014-04-03 01:07 - 2012-09-25 15:31 - 00003890 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-04-03 01:07 - 2012-09-25 15:31 - 00003638 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-04-03 01:00 - 2014-04-03 01:00 - 00000000 ____D () C:\SUPERDelete
2014-04-02 23:37 - 2014-04-02 23:37 - 00000000 ____D () C:\Users\john\AppData\Roaming\SUPERAntiSpyware.com
2014-04-02 20:47 - 2014-04-02 20:36 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-04-02 20:14 - 2014-04-02 20:14 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-03-24 15:48 - 2012-09-24 17:52 - 00000000 ____D () C:\Users\john\AppData\Local\Apple Computer
2014-03-24 15:14 - 2014-03-24 14:02 - 00020044 _____ () C:\Users\john\Documents\uni.wlmp
2014-03-20 22:23 - 2012-09-25 16:01 - 00000000 ____D () C:\Users\john\AppData\Local\Shareaza
2014-03-20 00:04 - 2014-03-19 23:14 - 03145780 _____ () C:\Users\john\Documents\rob3.reason
2014-03-19 23:21 - 2014-03-19 23:21 - 37594492 _____ () C:\Users\john\Documents\rob3.wav
2014-03-19 23:14 - 2014-03-19 22:46 - 03145780 _____ () C:\Users\john\Documents\rob2.reason
2014-03-19 22:46 - 2014-03-18 17:24 - 03145780 _____ () C:\Users\john\Documents\Abi- Evolution.reason
2014-03-18 23:14 - 2014-03-18 23:14 - 00786484 _____ () C:\Users\john\Documents\Document 1..reason
2014-03-18 17:51 - 2014-03-18 17:38 - 03145780 _____ () C:\Users\john\Documents\Abi002.reason
2014-03-18 17:24 - 2014-03-18 17:07 - 03145780 _____ () C:\Users\john\Documents\Abiram 5- Evolution.reason
2014-03-18 17:07 - 2014-03-18 15:45 - 03145780 _____ () C:\Users\john\Documents\Abiram Briz4 - Evolution.reason
2014-03-15 16:13 - 2014-03-15 16:13 - 00000000 ____D () C:\Program Files (x86)\Lame For Audacity
2014-03-15 15:50 - 2014-03-15 15:00 - 00004190 _____ () C:\Users\john\Documents\My Movieb.wlmp
2014-03-15 15:14 - 2014-03-15 15:14 - 00000000 ____D () C:\Program Files (x86)\Audacity

Some content of TEMP:
====================
C:\Users\john\AppData\Local\Temp\ntdll_dump.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-04 15:20

==================== End Of Log ============================

Attached Files


Edited by Johnp12, 12 April 2014 - 03:00 AM.


#6 nasdaq

nasdaq

  • Malware Response Team
  • 40,227 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:58 PM

Posted 12 April 2014 - 10:20 AM

Open notepad (Start =>All Programs => Accessories => Notepad). Please copy the entire contents of the code box below.
 
start

HKLM-x32\...\Run: [Syslog] - [X]
URLSearchHook: HKLM-x32 - (No Name) - {3bbd3c14-4c16-4989-8366-95bc9179779d} - No File
URLSearchHook: HKCU - (No Name) - {3bbd3c14-4c16-4989-8366-95bc9179779d} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
S3 rpcapd; "%ProgramFiles(x86)%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles(x86)%\WinPcap\rpcapd.ini" [X]
S1 FileDisk; No ImagePath
S3 DUMeterDrv; \??\C:\Program Files (x86)\DU Meter\DUMETR64.SYS [X]
U0 Partizan; system32\drivers\Partizan.sys [X]

end

Save the files as fixlist.txt in to the same folder as FRST
Run FRST and click Fix only once and wait
The tool will create a log (Fixlog.txt) please post it to your reply.

===

I do think that the Hooks reported by the RogueKiller are set by your Bitdefender suite.

If you wish to check for Rootkit in your Master Boot record run these tools.

Read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • Double-click on TDSSKiller.exe to run the application.
    tdss1.png
  • Click Change parameters
    settings20121003115955.png
  • Check the boxes next to Verify Driver Digital Signature and Detect TDLFS file system, then click OK
    tdss3.png
  • Click on the Start Scan button to begin the scan and wait for it to finish.
    NOTE: Do not use the computer during the scan!
  • During the scan it will look similar to the image below:
    tdss4.jpg
  • When it finishes, you will either see a report that no threats were found like below:
    tdss5.jpg
    If no threats are found at this point, just click the Report selection on the top right of the form to generate a log. A log file report will pop which you can just close since the report file is already saved.
  • If any infection or suspected items are found, you will see a window similar to below:
    tdss7.jpg
    • If you have files that are shown to fail signature check do not take any action on these. Make sure you select Skip. I will tell you what to do with these later. They may not be issues at all.
    • If Suspicious objects are detected, the default action will be Skip. Leave the default set to Skip.
    • If Malicious objects are detected, they will show in the Scan results. TDSSKiller automatically selects an action (Cure or Delete) for malicious objects
    • Make sure that Cure is selected. Important! - If Cure is not available, please choose Skip instead. Do not choose Delete unless instructed to do so.
  • Click Continue to apply selected actions.
  • A reboot may be required to complete disinfection. A window like the below will appear:
    tdss6.jpg
    Reboot immediately if TDSSKiller states that one is needed.
  • Whether an infection is found or not, a log file should have already been created on your C: drive (or whatever drive you boot from) in the root folder named something like TDSSKiller.2.1.1_27.12.2009_14.17.04_log.txt which is based on the program version # and date and time run.
  • Paste the log to your next reply, DO NOT ATTACH IT.
===

Download http://public.avast.com/~gmerek/aswMBR.exe (aswMBR.exe) to your desktop. Double click the aswMBR.exe to run it.
  • Click the "Scan" button to start scan.
  • Upon completion of the scan, click Save log, and save it to your desktop. (Note - do not select any Fix at this time) <- IMPORTANT
  • Please paste the contents of that log in your next reply.
There shall also be a file on your desktop named MBR.dat. Right click that file and select Send To>Compressed (zipped) folder. Please attach that zipped file in your next reply.
===

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
p.s.
If the SecurityCheck program fails to run for any reason, run it as an Administrator.
===

#7 Johnp12

Johnp12
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:58 PM

Posted 13 April 2014 - 02:03 AM

Yeah, you are right about Bitdefender. Installed it on another machine(32bit) and got very similar results. Thanks.
 
 
**  Actually, just as I'm typing here- Malawarebytes just completed an auto-scan and found these: both are Broken. OpenCommands   HKCR\scrfile\shell\open\command| and HKCR\regfile\shell\open\command| **
 
It finds this or these from time-2-time, but not for about a week, until now.
 
 
Another thing is I've been having some trouble copying and pasting on here ATM.
 
My computer has completely lost the plot ATM . I cannot get here through internet explorer.Copying and pasting is a nightmare. I'm using Chrome that is operating very jumpy.
 
Please excuse if the posts might be disjointed but the computer is acting strangely.
 
Fixlist:
 
 
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 12-04-2014 01
Ran by john at 2014-04-13 15:30:08 Run:1
Running from C:\Users\john\Desktop
Boot Mode: Normal
==============================================
 
Content of fixlist:
*****************
start
 
HKLM-x32\...\Run: [Syslog] - [X]
URLSearchHook: HKLM-x32 - (No Name) - {3bbd3c14-4c16-4989-8366-95bc9179779d} - No File
URLSearchHook: HKCU - (No Name) - {3bbd3c14-4c16-4989-8366-95bc9179779d} - No File
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
S3 rpcapd; "%ProgramFiles(x86)%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles(x86)%\WinPcap\rpcapd.ini" [X]
S1 FileDisk; No ImagePath
S3 DUMeterDrv; \??\C:\Program Files (x86)\DU Meter\DUMETR64.SYS [X]
U0 Partizan; system32\drivers\Partizan.sys [X]
 
end
*****************
 
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Syslog => Value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\URLSearchHooks\\{3bbd3c14-4c16-4989-8366-95bc9179779d} => Value deleted successfully.
HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks\\{3bbd3c14-4c16-4989-8366-95bc9179779d} => Value deleted successfully.
HKLM\Software\MozillaPlugins\FF Plugin: @microsoft.com/GENUINE - disabled No File => Key not found.
"FF Plugin: @microsoft.com/GENUINE - disabled No File" => not found.
HKLM\Software\Wow6432Node\MozillaPlugins\FF Plugin-x32: @microsoft.com/GENUINE - disabled No File => Key not found.
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File not found.
rpcapd => Service deleted successfully.
FileDisk => Service deleted successfully.
DUMeterDrv => Service deleted successfully.
Partizan => Service deleted successfully.
 
==== End of Fixlog ====
 
 
 
 
TDDS:
 
 
15:53:28.0977 0x0394  TDSS rootkit removing tool 3.0.0.31 Apr 11 2014 08:55:10
15:53:36.0575 0x0394  ============================================================
15:53:36.0575 0x0394  Current date / time: 2014/04/13 15:53:36.0575
15:53:36.0575 0x0394  SystemInfo:
15:53:36.0575 0x0394 
15:53:36.0575 0x0394  OS Version: 6.1.7601 ServicePack: 1.0
15:53:36.0575 0x0394  Product type: Workstation
15:53:36.0575 0x0394  ComputerName: JOHN-PC
15:53:36.0575 0x0394  UserName: john
15:53:36.0575 0x0394  Windows directory: C:\Windows
15:53:36.0575 0x0394  System windows directory: C:\Windows
15:53:36.0575 0x0394  Running under WOW64
15:53:36.0575 0x0394  Processor architecture: Intel x64
15:53:36.0575 0x0394  Number of processors: 8
15:53:36.0575 0x0394  Page size: 0x1000
15:53:36.0575 0x0394  Boot type: Normal boot
15:53:36.0575 0x0394  ============================================================
15:53:38.0540 0x0394  KLMD registered as C:\Windows\system32\drivers\28519361.sys
15:53:38.0743 0x0394  System UUID: {A7071709-D33C-BDB9-928E-DF52E589365F}
15:53:39.0289 0x0394  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:53:45.0108 0x0394  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:53:45.0155 0x0394  Drive \Device\Harddisk2\DR2 - Size: 0x1DD800000 (7.46 Gb), SectorSize: 0x200, Cylinders: 0x3CD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:53:45.0155 0x0394  ============================================================
15:53:45.0155 0x0394  \Device\Harddisk0\DR0:
15:53:45.0170 0x0394  MBR partitions:
15:53:45.0170 0x0394  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
15:53:45.0170 0x0394  \Device\Harddisk1\DR1:
15:53:45.0170 0x0394  MBR partitions:
15:53:45.0170 0x0394  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x4EE9D800
15:53:45.0186 0x0394  \Device\Harddisk2\DR2:
15:53:45.0186 0x0394  MBR partitions:
15:53:45.0186 0x0394  \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x1F80, BlocksNum 0xEEA080
15:53:45.0186 0x0394  ============================================================
15:53:45.0201 0x0394  C: <-> \Device\Harddisk0\DR0\Partition1
15:53:45.0295 0x0394  D: <-> \Device\Harddisk1\DR1\Partition1
15:53:45.0295 0x0394  ============================================================
15:53:45.0295 0x0394  Initialize success
15:53:45.0295 0x0394  ============================================================
15:57:45.0940 0x087c  ============================================================
15:57:45.0940 0x087c  Scan started
15:57:45.0940 0x087c  Mode: Manual; SigCheck; TDLFS;
15:57:45.0940 0x087c  ============================================================
15:57:45.0940 0x087c  KSN ping started
15:57:46.0548 0x087c  KSN ping finished: true
15:57:47.0141 0x087c  ================ Scan system memory ========================
15:57:47.0141 0x087c  System memory - ok
15:57:47.0141 0x087c  ================ Scan services =============================
15:57:47.0266 0x087c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
15:57:47.0344 0x087c  1394ohci - ok
15:57:47.0375 0x087c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
15:57:47.0406 0x087c  ACPI - ok
15:57:47.0422 0x087c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
15:57:47.0453 0x087c  AcpiPmi - ok
15:57:47.0531 0x087c  [ A475CCD9AC2FD156BBB993F5B5299609, 16E6322228DDFBE8CBBB91887FEEB4C52D205F7CF03D55DE0D0A5C860AF33F06 ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
15:57:47.0562 0x087c  AcrSch2Svc - ok
15:57:47.0593 0x087c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
15:57:47.0609 0x087c  adp94xx - ok
15:57:47.0625 0x087c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
15:57:47.0656 0x087c  adpahci - ok
15:57:47.0656 0x087c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
15:57:47.0671 0x087c  adpu320 - ok
15:57:47.0687 0x087c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
15:57:47.0749 0x087c  AeLookupSvc - ok
15:57:47.0781 0x087c  [ ABCF9C80EAACE03021BB7F450EB8993F, 8E38726C423E82954CA85266D6F38B605D010A659420A4EF99D29035A9474BFB ] afcdp           C:\Windows\system32\DRIVERS\afcdp.sys
15:57:47.0796 0x087c  afcdp - ok
15:57:47.0874 0x087c  [ 30346435058C56903C9F07BC7CABC9EA, 989A36D5DD62FCB4BAF8A0BA93D21C4BE81540D0A41FE4622002D9E5E54A8980 ] afcdpsrv        C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
15:57:47.0952 0x087c  afcdpsrv - ok
15:57:47.0983 0x087c  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
15:57:48.0030 0x087c  AFD - ok
15:57:48.0046 0x087c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
15:57:48.0061 0x087c  agp440 - ok
15:57:48.0061 0x087c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
15:57:48.0108 0x087c  ALG - ok
15:57:48.0108 0x087c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
15:57:48.0124 0x087c  aliide - ok
15:57:48.0124 0x087c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
15:57:48.0124 0x087c  amdide - ok
15:57:48.0155 0x087c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
15:57:48.0186 0x087c  AmdK8 - ok
15:57:48.0217 0x087c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
15:57:48.0249 0x087c  AmdPPM - ok
15:57:48.0295 0x087c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
15:57:48.0311 0x087c  amdsata - ok
15:57:48.0327 0x087c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
15:57:48.0358 0x087c  amdsbs - ok
15:57:48.0358 0x087c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
15:57:48.0389 0x087c  amdxata - ok
15:57:48.0405 0x087c  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
15:57:48.0467 0x087c  AppID - ok
15:57:48.0483 0x087c  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
15:57:48.0545 0x087c  AppIDSvc - ok
15:57:48.0576 0x087c  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
15:57:48.0623 0x087c  Appinfo - ok
15:57:48.0670 0x087c  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
15:57:48.0701 0x087c  Apple Mobile Device - ok
15:57:48.0717 0x087c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
15:57:48.0732 0x087c  arc - ok
15:57:48.0748 0x087c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
15:57:48.0763 0x087c  arcsas - ok
15:57:48.0826 0x087c  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
15:57:48.0841 0x087c  aspnet_state - ok
15:57:48.0857 0x087c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
15:57:48.0904 0x087c  AsyncMac - ok
15:57:48.0935 0x087c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
15:57:48.0951 0x087c  atapi - ok
15:57:49.0060 0x087c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
15:57:49.0122 0x087c  AudioEndpointBuilder - ok
15:57:49.0200 0x087c  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
15:57:49.0247 0x087c  AudioSrv - ok
15:57:49.0278 0x087c  [ 636B15879AE62E47444F99C60C900AA6, 335B1378037B2CFEBDAA95B1ABB619A4C18C5CD37A12688E606E7A12BE31735C ] avc3            C:\Windows\system32\DRIVERS\avc3.sys
15:57:49.0309 0x087c  avc3 - ok
15:57:49.0325 0x087c  [ 3B9549FEF98AB1768A1D6A919F355B70, 0014914051CB54CD7CC25561D29099A19DCFB2E1810FF635F9B6AD3D9C6FBC4B ] avchv           C:\Windows\system32\DRIVERS\avchv.sys
15:57:49.0341 0x087c  avchv - ok
15:57:49.0356 0x087c  [ 14023A39BC91AC5A2077766D28EBA7C5, 855FEE69105438ADE79C9389E0581C62FE1D134863F8D6FA27DE83737E4B4213 ] avckf           C:\Windows\system32\DRIVERS\avckf.sys
15:57:49.0387 0x087c  avckf - ok
15:57:49.0403 0x087c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
15:57:49.0465 0x087c  AxInstSV - ok
15:57:49.0512 0x087c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
15:57:49.0543 0x087c  b06bdrv - ok
15:57:49.0559 0x087c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
15:57:49.0621 0x087c  b57nd60a - ok
15:57:49.0699 0x087c  [ 8683C981D6B33A18E7BE7431CF9BE18E, 7C1A7BB5020DE6F61C8D259D7587B939A7645129B5A0EA543C7ED4805301206B ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe
15:57:49.0715 0x087c  BdDesktopParental - ok
15:57:49.0731 0x087c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
15:57:49.0777 0x087c  BDESVC - ok
15:57:49.0840 0x087c  [ 3FAFE12C5D1D4D5F3567E7A0A2F15A7C, B77455872683563C12963E1D8FC349FB33B048D615FD299571A2DCF1598C0A9F ] BdfNdisf        c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
15:57:49.0855 0x087c  BdfNdisf - ok
15:57:49.0871 0x087c  [ 4CE4B0098FC315C237FA8867F07886C4, 475B2D86EE7658372D868ABC9ACA965FDD8212D3AE2C6E4749DC53DBA3DC19D6 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
15:57:49.0887 0x087c  bdfwfpf - ok
15:57:49.0918 0x087c  [ 50F796CB1E8C80F3D19435CB50C3DAB5, 20CE5C1242F8D0DFEE13C8D07EF1A67F670A078BA44E810A3A042C6A060FACC9 ] BDVEDISK        C:\Windows\system32\DRIVERS\bdvedisk.sys
15:57:49.0918 0x087c  BDVEDISK - ok
15:57:49.0933 0x087c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
15:57:49.0996 0x087c  Beep - ok
15:57:50.0027 0x087c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
15:57:50.0074 0x087c  BFE - ok
15:57:50.0136 0x087c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
15:57:50.0230 0x087c  BITS - ok
15:57:50.0245 0x087c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
15:57:50.0277 0x087c  blbdrive - ok
15:57:50.0323 0x087c  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:57:50.0355 0x087c  Bonjour Service - ok
15:57:50.0355 0x087c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
15:57:50.0401 0x087c  bowser - ok
15:57:50.0417 0x087c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:57:50.0479 0x087c  BrFiltLo - ok
15:57:50.0511 0x087c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:57:50.0526 0x087c  BrFiltUp - ok
15:57:50.0542 0x087c  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
15:57:50.0604 0x087c  BridgeMP - ok
15:57:50.0651 0x087c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
15:57:50.0667 0x087c  Browser - ok
15:57:50.0698 0x087c  [ E5E9B1625A767CEB6F319C12D33EAB78, F49FF610C0712FAE4B69BD300C78D7DEA7C72DFC076323295779272D1E23D7CE ] BrSerIb         C:\Windows\system32\DRIVERS\BrSerIb.sys
15:57:50.0729 0x087c  BrSerIb - ok
15:57:50.0745 0x087c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
15:57:50.0760 0x087c  Brserid - ok
15:57:50.0776 0x087c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
15:57:50.0807 0x087c  BrSerWdm - ok
15:57:50.0807 0x087c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
15:57:50.0838 0x087c  BrUsbMdm - ok
15:57:50.0838 0x087c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
15:57:50.0838 0x087c  BrUsbSer - ok
15:57:50.0869 0x087c  [ D9F6B30AD93CBD165EC71FADF51DF25E, 9E38846451650F4F320CB1DEA9C010653A54D7419591719936BF53BEE269F1A8 ] BrUsbSIb        C:\Windows\system32\DRIVERS\BrUsbSIb.sys
15:57:50.0901 0x087c  BrUsbSIb - ok
15:57:50.0963 0x087c  [ A792736DB1A49A47F0A2C45D63683F0C, A12CFD897ED4090CF5F3AFEF030779D3047C8C3D71A821857593279C6D82A5C6 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
15:57:50.0994 0x087c  BstHdAndroidSvc - ok
15:57:51.0010 0x087c  [ DE6D8FC8F1534AEA59ECA1EADCBBAEB0, 1F0883F83BE7CAE60A7F3815576206086ABD03E678F135880F45E1DA8A8574FC ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
15:57:51.0025 0x087c  BstHdDrv - ok
15:57:51.0057 0x087c  [ 599243FC4D8BD5CF06FF5E3294B98D13, B2AD203BF25A75A3FDD8D33D814AC0A27287F7E99F40C8B328AB7BE3A76E50F1 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
15:57:51.0072 0x087c  BstHdLogRotatorSvc - ok
15:57:51.0072 0x087c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
15:57:51.0119 0x087c  BTHMODEM - ok
15:57:51.0150 0x087c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
15:57:51.0213 0x087c  bthserv - ok
15:57:51.0244 0x087c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
15:57:51.0322 0x087c  cdfs - ok
15:57:51.0353 0x087c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
15:57:51.0369 0x087c  cdrom - ok
15:57:51.0400 0x087c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
15:57:51.0431 0x087c  CertPropSvc - ok
15:57:51.0447 0x087c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
15:57:51.0478 0x087c  circlass - ok
15:57:51.0509 0x087c  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
15:57:51.0525 0x087c  CLFS - ok
15:57:51.0556 0x087c  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:57:51.0571 0x087c  clr_optimization_v2.0.50727_32 - ok
15:57:51.0603 0x087c  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
15:57:51.0618 0x087c  clr_optimization_v2.0.50727_64 - ok
15:57:51.0665 0x087c  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:57:51.0696 0x087c  clr_optimization_v4.0.30319_32 - ok
15:57:51.0712 0x087c  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
15:57:51.0743 0x087c  clr_optimization_v4.0.30319_64 - ok
15:57:51.0743 0x087c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
15:57:51.0774 0x087c  CmBatt - ok
15:57:51.0790 0x087c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
15:57:51.0805 0x087c  cmdide - ok
15:57:51.0852 0x087c  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
15:57:51.0868 0x087c  CNG - ok
15:57:51.0977 0x087c  [ 1C15404EA8FC42DAB8A7B3765ED53E58, 270338A946E73D27532D252C503E8653A49F97037050C1C913351457F6C1D71F ] CodeMeter.exe   C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
15:57:52.0055 0x087c  CodeMeter.exe - ok
15:57:52.0071 0x087c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
15:57:52.0071 0x087c  Compbatt - ok
15:57:52.0086 0x087c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
15:57:52.0117 0x087c  CompositeBus - ok
15:57:52.0117 0x087c  COMSysApp - ok
15:57:52.0149 0x087c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
15:57:52.0164 0x087c  crcdisk - ok
15:57:52.0180 0x087c  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
15:57:52.0211 0x087c  CryptSvc - ok
15:57:52.0211 0x087c  [ 754F0C7DFA63EED14CC465E654A469D3, 230009708BC9961A8750B27F3FCA4A1AD3BF2DBBD4FB7E73C4AB5C748472FA4C ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
15:57:52.0258 0x087c  CtClsFlt - ok
15:57:52.0305 0x087c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
15:57:52.0367 0x087c  DcomLaunch - ok
15:57:52.0414 0x087c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
15:57:52.0476 0x087c  defragsvc - ok
15:57:52.0507 0x087c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
15:57:52.0570 0x087c  DfsC - ok
15:57:52.0601 0x087c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
15:57:52.0632 0x087c  Dhcp - ok
15:57:52.0632 0x087c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
15:57:52.0679 0x087c  discache - ok
15:57:52.0679 0x087c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
15:57:52.0695 0x087c  Disk - ok
15:57:52.0710 0x087c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
15:57:52.0757 0x087c  Dnscache - ok
15:57:52.0788 0x087c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
15:57:52.0851 0x087c  dot3svc - ok
15:57:52.0866 0x087c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
15:57:52.0929 0x087c  DPS - ok
15:57:52.0944 0x087c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
15:57:52.0991 0x087c  drmkaud - ok
15:57:53.0053 0x087c  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
15:57:53.0085 0x087c  DXGKrnl - ok
15:57:53.0116 0x087c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
15:57:53.0163 0x087c  EapHost - ok
15:57:53.0256 0x087c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
15:57:53.0350 0x087c  ebdrv - ok
15:57:53.0381 0x087c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
15:57:53.0428 0x087c  EFS - ok
15:57:53.0475 0x087c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
15:57:53.0537 0x087c  ehRecvr - ok
15:57:53.0568 0x087c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
15:57:53.0615 0x087c  ehSched - ok
15:57:53.0615 0x087c  [ 627350A11295D82BF78D155B12FFD0EF, BF4A80A379803C765EF5163EE7422A30D8F35820E38690F11A27FA605DD20FFA ] ElRawDisk       C:\Windows\system32\drivers\ElRawDsk.sys
15:57:53.0631 0x087c  ElRawDisk - ok
15:57:53.0677 0x087c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
15:57:53.0709 0x087c  elxstor - ok
15:57:53.0724 0x087c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
15:57:53.0755 0x087c  ErrDev - ok
15:57:53.0818 0x087c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
15:57:53.0865 0x087c  EventSystem - ok
15:57:53.0880 0x087c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
15:57:53.0911 0x087c  exfat - ok
15:57:53.0911 0x087c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
15:57:53.0943 0x087c  fastfat - ok
15:57:53.0974 0x087c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
15:57:54.0036 0x087c  Fax - ok
15:57:54.0036 0x087c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
15:57:54.0083 0x087c  fdc - ok
15:57:54.0099 0x087c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
15:57:54.0145 0x087c  fdPHost - ok
15:57:54.0177 0x087c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
15:57:54.0239 0x087c  FDResPub - ok
15:57:54.0255 0x087c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
15:57:54.0270 0x087c  FileInfo - ok
15:57:54.0270 0x087c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
15:57:54.0333 0x087c  Filetrace - ok
15:57:54.0333 0x087c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
15:57:54.0348 0x087c  flpydisk - ok
15:57:54.0379 0x087c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
15:57:54.0395 0x087c  FltMgr - ok
15:57:54.0411 0x087c  [ F0CC1A9106F9FB0F704F6ED95622B43E, DE09E37619B91AD4F43B473A41E6563F4FCFB891A7F9665E8631131A49FA96A1 ] fltsrv          C:\Windows\system32\DRIVERS\fltsrv.sys
15:57:54.0426 0x087c  fltsrv - ok
15:57:54.0489 0x087c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
15:57:54.0520 0x087c  FontCache - ok
15:57:54.0535 0x087c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:57:54.0551 0x087c  FontCache3.0.0.0 - ok
15:57:54.0567 0x087c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
15:57:54.0567 0x087c  FsDepends - ok
15:57:54.0598 0x087c  [ C2E475625F2C6F7DCDE4E920523A0573, C316D2223008BD5EA022AFB79CC21B841939FA8D511729455E787E59A27A0DE6 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
15:57:54.0598 0x087c  fssfltr - ok
15:57:54.0676 0x087c  [ 812E1BA5C52A78F13EA6AA10DF708B1D, CF1C4D8E072CF0D66C977DFA4C852E5CE757843BEAF5D29454D26A9AC5766E61 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
15:57:54.0723 0x087c  fsssvc - ok
15:57:54.0738 0x087c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
15:57:54.0738 0x087c  Fs_Rec - ok
15:57:54.0769 0x087c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
15:57:54.0785 0x087c  fvevol - ok
15:57:54.0801 0x087c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
15:57:54.0801 0x087c  gagp30kx - ok
15:57:54.0832 0x087c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:57:54.0832 0x087c  GEARAspiWDM - ok
15:57:54.0879 0x087c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
15:57:54.0925 0x087c  gpsvc - ok
15:57:55.0097 0x087c  [ D01F0A06C1FC10C6AD0A49EC368B51EC, A1477D02BE7EB3703E42266A2571BC00646447C02387055958F3C82AD2D4E392 ] GsServer        C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe
15:57:55.0191 0x087c  GsServer - ok
15:57:55.0237 0x087c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:57:55.0269 0x087c  gupdate - ok
15:57:55.0269 0x087c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:57:55.0300 0x087c  gupdatem - ok
15:57:55.0315 0x087c  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
15:57:55.0331 0x087c  gusvc - ok
15:57:55.0347 0x087c  [ 0A9D58AABD01DA97B1D101473EFA7659, C18EA4F5BF569C230AD682A418F69B6E4209AD467BCCBDABD0515DBB582BF04B ] gzflt           C:\Windows\system32\DRIVERS\gzflt.sys
15:57:55.0362 0x087c  gzflt - ok
15:57:55.0362 0x087c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
15:57:55.0409 0x087c  hcw85cir - ok
15:57:55.0440 0x087c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
15:57:55.0487 0x087c  HdAudAddService - ok
15:57:55.0534 0x087c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
15:57:55.0581 0x087c  HDAudBus - ok
15:57:55.0612 0x087c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
15:57:55.0627 0x087c  HidBatt - ok
15:57:55.0643 0x087c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
15:57:55.0674 0x087c  HidBth - ok
15:57:55.0705 0x087c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
15:57:55.0721 0x087c  HidIr - ok
15:57:55.0737 0x087c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
15:57:55.0815 0x087c  hidserv - ok
15:57:55.0830 0x087c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
15:57:55.0846 0x087c  HidUsb - ok
15:57:55.0893 0x087c  [ CD3FE805E00666E4CDF6C92BD6F290ED, AC50896043396334413A0C08A10D08C7FCD09F1D573B50EF189BE0036E560089 ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe
15:57:55.0908 0x087c  HitmanProScheduler - ok
15:57:55.0924 0x087c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
15:57:55.0986 0x087c  hkmsvc - ok
15:57:56.0017 0x087c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
15:57:56.0080 0x087c  HomeGroupListener - ok
15:57:56.0111 0x087c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
15:57:56.0158 0x087c  HomeGroupProvider - ok
15:57:56.0173 0x087c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
15:57:56.0189 0x087c  HpSAMD - ok
15:57:56.0236 0x087c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
15:57:56.0298 0x087c  HTTP - ok
15:57:56.0329 0x087c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
15:57:56.0329 0x087c  hwpolicy - ok
15:57:56.0345 0x087c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
15:57:56.0345 0x087c  i8042prt - ok
15:57:56.0376 0x087c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
15:57:56.0392 0x087c  iaStorV - ok
15:57:56.0439 0x087c  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
15:57:56.0454 0x087c  idsvc - ok
15:57:56.0454 0x087c  IEEtwCollectorService - ok
15:57:56.0454 0x087c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
15:57:56.0470 0x087c  iirsp - ok
15:57:56.0501 0x087c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
15:57:56.0532 0x087c  IKEEXT - ok
15:57:56.0548 0x087c  [ CAA8BC6737DFA3BF1A50175CFB226788, F4453E136BDD3441A95972B217784EA3A7F914A0DDE3E9F503E107682B50E248 ] InputFilter_Hid_FlexDef2b C:\Windows\system32\DRIVERS\InputFilter_FlexDef2b.sys
15:57:56.0579 0x087c  InputFilter_Hid_FlexDef2b - ok
15:57:56.0657 0x087c  [ 13089F31AA37CDE1CE3784EE01A48484, 6AEA8380E5A673EEB307AF033C9F0A8E5EE9F6C41CF2352D37B101986F311352 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
15:57:56.0719 0x087c  IntcAzAudAddService - ok
15:57:56.0719 0x087c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
15:57:56.0735 0x087c  intelide - ok
15:57:56.0735 0x087c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
15:57:56.0766 0x087c  intelppm - ok
15:57:56.0860 0x087c  [ D07AD1A8FDD48E995E73D0732D8795AA, C1ABA667C6B3391EC9F50105B7E94C759AF4734D64B7D0DDB83EA9AFF557D881 ] ioloSystemService C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
15:57:57.0156 0x087c  ioloSystemService - ok
15:57:57.0156 0x087c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
15:57:57.0187 0x087c  IPBusEnum - ok
15:57:57.0187 0x087c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:57:57.0234 0x087c  IpFilterDriver - ok
15:57:57.0297 0x087c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
15:57:57.0328 0x087c  iphlpsvc - ok
15:57:57.0343 0x087c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
15:57:57.0359 0x087c  IPMIDRV - ok
15:57:57.0359 0x087c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
15:57:57.0421 0x087c  IPNAT - ok
15:57:57.0468 0x087c  [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
15:57:57.0484 0x087c  iPod Service - ok
15:57:57.0499 0x087c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
15:57:57.0531 0x087c  IRENUM - ok
15:57:57.0546 0x087c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
15:57:57.0562 0x087c  isapnp - ok
15:57:57.0562 0x087c  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
15:57:57.0577 0x087c  iScsiPrt - ok
15:57:57.0593 0x087c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
15:57:57.0593 0x087c  kbdclass - ok
15:57:57.0609 0x087c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
15:57:57.0640 0x087c  kbdhid - ok
15:57:57.0655 0x087c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
15:57:57.0671 0x087c  KeyIso - ok
15:57:57.0687 0x087c  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
15:57:57.0702 0x087c  KSecDD - ok
15:57:57.0733 0x087c  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
15:57:57.0733 0x087c  KSecPkg - ok
15:57:57.0749 0x087c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
15:57:57.0811 0x087c  ksthunk - ok
15:57:57.0827 0x087c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
15:57:57.0874 0x087c  KtmRm - ok
15:57:57.0921 0x087c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
15:57:57.0967 0x087c  LanmanServer - ok
15:57:57.0999 0x087c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
15:57:58.0030 0x087c  LanmanWorkstation - ok
15:57:58.0030 0x087c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
15:57:58.0077 0x087c  lltdio - ok
15:57:58.0108 0x087c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
15:57:58.0186 0x087c  lltdsvc - ok
15:57:58.0201 0x087c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
15:57:58.0233 0x087c  lmhosts - ok
15:57:58.0248 0x087c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
15:57:58.0264 0x087c  LSI_FC - ok
15:57:58.0279 0x087c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
15:57:58.0295 0x087c  LSI_SAS - ok
15:57:58.0311 0x087c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:57:58.0326 0x087c  LSI_SAS2 - ok
15:57:58.0342 0x087c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:57:58.0357 0x087c  LSI_SCSI - ok
15:57:58.0373 0x087c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
15:57:58.0420 0x087c  luafv - ok
15:57:58.0467 0x087c  [ FD5465B876D55534117963FAAA4B9DFC, 63A822A1EEEC42C30CCC9477431E310E3D360489A68BBCD805124681F21C0B6B ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
15:57:58.0482 0x087c  MBAMProtector - ok
15:57:58.0576 0x087c  [ 0E08BDD7326E657D59DB40BAD23D8169, 428C6CCCC0BB540DFD35847776140D60C186B9D2D14F0ACCD1A4D42A8877BD98 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
15:57:58.0607 0x087c  MBAMScheduler - ok
15:57:58.0638 0x087c  [ A8E7F3DB083EB0839DFC1C763CDD2594, BDF416E360A52130B23B029C89E6406A97FB0516C52C7E63B94CAECEEB431A2E ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
15:57:58.0669 0x087c  MBAMService - ok
15:57:58.0732 0x087c  [ 6140163BFE9D8F2DFDBA088ED5521C13, B7B501F0D1527A15B1610D133E97AB431574502F0553734009627488D0007595 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
15:57:58.0747 0x087c  MBAMSwissArmy - ok
15:57:58.0779 0x087c  [ C49915271600CFC2305FAA4271D0002F, 8412989C50579C79F27E4F9B178B2FF944C8F221AD70D213279D888F5449F868 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
15:57:58.0794 0x087c  MBAMWebAccessControl - ok
15:57:58.0825 0x087c  [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
15:57:58.0825 0x087c  MBfilt - ok
15:57:58.0857 0x087c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
15:57:58.0888 0x087c  Mcx2Svc - ok
15:57:58.0919 0x087c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
15:57:58.0919 0x087c  megasas - ok
15:57:58.0950 0x087c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
15:57:58.0966 0x087c  MegaSR - ok
15:57:58.0966 0x087c  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
15:57:58.0981 0x087c  MEIx64 - ok
15:57:58.0997 0x087c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
15:57:59.0044 0x087c  MMCSS - ok
15:57:59.0075 0x087c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
15:57:59.0122 0x087c  Modem - ok
15:57:59.0122 0x087c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
15:57:59.0137 0x087c  monitor - ok
15:57:59.0169 0x087c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
15:57:59.0184 0x087c  mouclass - ok
15:57:59.0184 0x087c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
15:57:59.0215 0x087c  mouhid - ok
15:57:59.0247 0x087c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
15:57:59.0278 0x087c  mountmgr - ok
15:57:59.0293 0x087c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
15:57:59.0325 0x087c  mpio - ok
15:57:59.0340 0x087c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
15:57:59.0371 0x087c  mpsdrv - ok
15:57:59.0418 0x087c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
15:57:59.0449 0x087c  MpsSvc - ok
15:57:59.0465 0x087c  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
15:57:59.0512 0x087c  MRxDAV - ok
15:57:59.0543 0x087c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
15:57:59.0574 0x087c  mrxsmb - ok
15:57:59.0605 0x087c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:57:59.0637 0x087c  mrxsmb10 - ok
15:57:59.0668 0x087c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:57:59.0699 0x087c  mrxsmb20 - ok
15:57:59.0715 0x087c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
15:57:59.0730 0x087c  msahci - ok
15:57:59.0746 0x087c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
15:57:59.0761 0x087c  msdsm - ok
15:57:59.0777 0x087c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
15:57:59.0793 0x087c  MSDTC - ok
15:57:59.0808 0x087c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
15:57:59.0839 0x087c  Msfs - ok
15:57:59.0855 0x087c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
15:57:59.0886 0x087c  mshidkmdf - ok
15:57:59.0917 0x087c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
15:57:59.0933 0x087c  msisadrv - ok
15:57:59.0949 0x087c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
15:57:59.0980 0x087c  MSiSCSI - ok
15:57:59.0980 0x087c  msiserver - ok
15:57:59.0980 0x087c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
15:58:00.0011 0x087c  MSKSSRV - ok
15:58:00.0011 0x087c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
15:58:00.0058 0x087c  MSPCLOCK - ok
15:58:00.0058 0x087c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
15:58:00.0089 0x087c  MSPQM - ok
15:58:00.0120 0x087c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
15:58:00.0151 0x087c  MsRPC - ok
15:58:00.0183 0x087c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
15:58:00.0183 0x087c  mssmbios - ok
15:58:00.0198 0x087c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
15:58:00.0245 0x087c  MSTEE - ok
15:58:00.0245 0x087c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
15:58:00.0292 0x087c  MTConfig - ok
15:58:00.0323 0x087c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
15:58:00.0354 0x087c  Mup - ok
15:58:00.0370 0x087c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
15:58:00.0432 0x087c  napagent - ok
15:58:00.0479 0x087c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
15:58:00.0526 0x087c  NativeWifiP - ok
15:58:00.0588 0x087c  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
15:58:00.0619 0x087c  NDIS - ok
15:58:00.0635 0x087c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
15:58:00.0651 0x087c  NdisCap - ok
15:58:00.0666 0x087c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
15:58:00.0697 0x087c  NdisTapi - ok
15:58:00.0713 0x087c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
15:58:00.0744 0x087c  Ndisuio - ok
15:58:00.0775 0x087c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
15:58:00.0822 0x087c  NdisWan - ok
15:58:00.0853 0x087c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
15:58:00.0885 0x087c  NDProxy - ok
15:58:00.0900 0x087c  [ 6F4607E2333FE21E9E3FF8133A88B35B, F7B7B262D85D03552A8D0F3F91E795B31E3D09020DDA1E3D62A4A3209D916BB6 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
15:58:00.0900 0x087c  Netaapl - detected UnsignedFile.Multi.Generic ( 1 )
15:58:00.0947 0x087c  Netaapl ( UnsignedFile.Multi.Generic ) - warning
15:58:01.0711 0x087c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
15:58:01.0789 0x087c  NetBIOS - ok
15:58:01.0821 0x087c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
15:58:01.0883 0x087c  NetBT - ok
15:58:01.0899 0x087c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
15:58:01.0914 0x087c  Netlogon - ok
15:58:01.0930 0x087c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
15:58:01.0992 0x087c  Netman - ok
15:58:02.0023 0x087c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:58:02.0039 0x087c  NetMsmqActivator - ok
15:58:02.0055 0x087c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:58:02.0070 0x087c  NetPipeActivator - ok
15:58:02.0086 0x087c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
15:58:02.0117 0x087c  netprofm - ok
15:58:02.0133 0x087c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:58:02.0133 0x087c  NetTcpActivator - ok
15:58:02.0148 0x087c  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:58:02.0164 0x087c  NetTcpPortSharing - ok
15:58:02.0179 0x087c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
15:58:02.0179 0x087c  nfrd960 - ok
15:58:02.0195 0x087c  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
15:58:02.0242 0x087c  NlaSvc - ok
15:58:02.0273 0x087c  [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] npf             C:\Windows\system32\drivers\npf.sys
15:58:02.0273 0x087c  npf - ok
15:58:02.0289 0x087c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
15:58:02.0320 0x087c  Npfs - ok
15:58:02.0335 0x087c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
15:58:02.0367 0x087c  nsi - ok
15:58:02.0398 0x087c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
15:58:02.0429 0x087c  nsiproxy - ok
15:58:02.0507 0x087c  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
15:58:02.0554 0x087c  Ntfs - ok
15:58:02.0569 0x087c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
15:58:02.0585 0x087c  Null - ok
15:58:02.0616 0x087c  [ 158AD24745BD85BA9BE3C51C38F48C32, B053A3B5A5CAE2CBC47E2C19E636AD70F376334EFFBB391A76562E67CBF3AC86 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
15:58:02.0616 0x087c  nusb3hub - ok
15:58:02.0647 0x087c  [ D40A13B2C0891E218F9523B376955DB6, 9A2AAAF960868B860A65579EAD507B35C64CFD6C3581F8D731ADF975F778D10E ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
15:58:02.0679 0x087c  nusb3xhc - ok
15:58:02.0725 0x087c  [ 1F07B814C0BB5AABA703ABFF1F31F2E8, 07F578686CAE0FAB5462B472A03DD1BC5DFE0D5DA6307895534CECC330C3D220 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
15:58:02.0741 0x087c  NVHDA - ok
15:58:03.0006 0x087c  [ FCBA1C22727939E7CFF9EB08FE9692AB, 081FBF38EA17746C5CF2260AD32B62385D4A075476E30CBB9A2AA080F8AA0CA4 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:58:03.0193 0x087c  nvlddmkm - ok
15:58:03.0209 0x087c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
15:58:03.0209 0x087c  nvraid - ok
15:58:03.0240 0x087c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
15:58:03.0256 0x087c  nvstor - ok
15:58:03.0287 0x087c  [ 10C232F6CFFD51D2332898AE7AE0FF23, 92E5452D8467852C22D702ACAFB5DBFD312A8F72A4353B8D0A9C18AEFCE4B2B2 ] nvsvc           C:\Windows\system32\nvvsvc.exe
15:58:03.0303 0x087c  nvsvc - ok
15:58:03.0349 0x087c  [ 4789E020D2617046862D1790FC235FF6, FCFD56DF2CADA830E7B2D4B91D5A9D2FE783B1396CBA124000765168FA5B6574 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
15:58:03.0396 0x087c  nvUpdatusService - ok
15:58:03.0412 0x087c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
15:58:03.0412 0x087c  nv_agp - ok
15:58:03.0427 0x087c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
15:58:03.0443 0x087c  ohci1394 - ok
15:58:03.0459 0x087c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
15:58:03.0474 0x087c  p2pimsvc - ok
15:58:03.0490 0x087c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
15:58:03.0505 0x087c  p2psvc - ok
15:58:03.0521 0x087c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
15:58:03.0537 0x087c  Parport - ok
15:58:03.0552 0x087c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
15:58:03.0552 0x087c  partmgr - ok
15:58:03.0583 0x087c  [ 7C0582921913D00180EC2B8518BA135C, E44FA5FF498CC5C7E7CE120A6C5E1AAE206A450963335379FBE67C6B9E6F64B2 ] pbfilter        C:\Program Files\PeerBlock\pbfilter.sys
15:58:03.0583 0x087c  pbfilter - ok
15:58:03.0599 0x087c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
15:58:03.0630 0x087c  PcaSvc - ok
15:58:03.0661 0x087c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
15:58:03.0693 0x087c  pci - ok
15:58:03.0708 0x087c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
15:58:03.0724 0x087c  pciide - ok
15:58:03.0739 0x087c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
15:58:03.0755 0x087c  pcmcia - ok
15:58:03.0755 0x087c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
15:58:03.0755 0x087c  pcw - ok
15:58:03.0786 0x087c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
15:58:03.0833 0x087c  PEAUTH - ok
15:58:03.0895 0x087c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
15:58:03.0942 0x087c  PerfHost - ok
15:58:04.0036 0x087c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
15:58:04.0098 0x087c  pla - ok
15:58:04.0114 0x087c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
15:58:04.0161 0x087c  PlugPlay - ok
15:58:04.0176 0x087c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
15:58:04.0207 0x087c  PNRPAutoReg - ok
15:58:04.0254 0x087c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
15:58:04.0285 0x087c  PNRPsvc - ok
15:58:04.0332 0x087c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
15:58:04.0395 0x087c  PolicyAgent - ok
15:58:04.0426 0x087c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
15:58:04.0504 0x087c  Power - ok
15:58:04.0551 0x087c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
15:58:04.0675 0x087c  PptpMiniport - ok
15:58:04.0707 0x087c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
15:58:04.0738 0x087c  Processor - ok
15:58:04.0785 0x087c  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
15:58:04.0831 0x087c  ProfSvc - ok
15:58:04.0863 0x087c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
15:58:04.0878 0x087c  ProtectedStorage - ok
15:58:04.0894 0x087c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
15:58:04.0956 0x087c  Psched - ok
15:58:05.0034 0x087c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
15:58:05.0065 0x087c  ql2300 - ok
15:58:05.0081 0x087c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
15:58:05.0097 0x087c  ql40xx - ok
15:58:05.0112 0x087c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
15:58:05.0128 0x087c  QWAVE - ok
15:58:05.0143 0x087c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
15:58:05.0175 0x087c  QWAVEdrv - ok
15:58:05.0206 0x087c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
15:58:05.0253 0x087c  RasAcd - ok
15:58:05.0268 0x087c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
15:58:05.0299 0x087c  RasAgileVpn - ok
15:58:05.0315 0x087c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
15:58:05.0346 0x087c  RasAuto - ok
15:58:05.0362 0x087c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
15:58:05.0409 0x087c  Rasl2tp - ok
15:58:05.0440 0x087c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
15:58:05.0471 0x087c  RasMan - ok
15:58:05.0487 0x087c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
15:58:05.0518 0x087c  RasPppoe - ok
15:58:05.0549 0x087c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
15:58:05.0611 0x087c  RasSstp - ok
15:58:05.0627 0x087c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
15:58:05.0674 0x087c  rdbss - ok
15:58:05.0689 0x087c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
15:58:05.0721 0x087c  rdpbus - ok
15:58:05.0736 0x087c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
15:58:05.0767 0x087c  RDPCDD - ok
15:58:05.0783 0x087c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
15:58:05.0814 0x087c  RDPENCDD - ok
15:58:05.0830 0x087c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
15:58:05.0845 0x087c  RDPREFMP - ok
15:58:05.0877 0x087c  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
15:58:05.0908 0x087c  RdpVideoMiniport - ok
15:58:05.0955 0x087c  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
15:58:06.0001 0x087c  RDPWD - ok
15:58:06.0033 0x087c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
15:58:06.0064 0x087c  rdyboost - ok
15:58:06.0095 0x087c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
15:58:06.0142 0x087c  RemoteAccess - ok
15:58:06.0157 0x087c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
15:58:06.0204 0x087c  RemoteRegistry - ok
15:58:06.0235 0x087c  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
15:58:06.0235 0x087c  Revoflt - ok
15:58:06.0251 0x087c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
15:58:06.0298 0x087c  RpcEptMapper - ok
15:58:06.0329 0x087c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
15:58:06.0376 0x087c  RpcLocator - ok
15:58:06.0407 0x087c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
15:58:06.0454 0x087c  RpcSs - ok
15:58:06.0469 0x087c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
15:58:06.0485 0x087c  rspndr - ok
15:58:06.0516 0x087c  [ AFC12DFA4C7B089673AD67402CA19EDB, 9CA430E8DFAE9B7A245FCD766CB60245418C80CEBCD2E9FACA9DE62E3E60ADDF ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
15:58:06.0532 0x087c  RTL8167 - ok
15:58:06.0547 0x087c  [ E16B7C030A05EF649B18FAB0A93D871F, 0F532D534A93D71650E2F7AF677419A6B38CE3142C98983565F1D759E544A4ED ] RtNdPt60        C:\Windows\system32\DRIVERS\RtNdPt60.sys
15:58:06.0547 0x087c  RtNdPt60 - ok
15:58:06.0579 0x087c  [ 66B7587714BC9BD850D0A49041B90CA0, 48FCA14E6D4851BFA7C84536771F409CAD2EE7F5DE5F9EC01901B5A12E27BBA9 ] RTTEAMPT        C:\Windows\system32\DRIVERS\RtTeam620.sys
15:58:06.0594 0x087c  RTTEAMPT - ok
15:58:06.0610 0x087c  [ C74798D1A2743C102154BD7871D92833, 521A4C9D8E614F2C12E4435FFC8703F7AFA98B0A0DC64F6615ECB4FE62F422EC ] RTVLANPT        C:\Windows\system32\DRIVERS\RtVlan620.sys
15:58:06.0610 0x087c  RTVLANPT - ok
15:58:06.0641 0x087c  [ 6A28F5BB0F3CD035D12D8C105EA6ED3E, 81F7A56DA2544E8786970564026B1BEEAA72926E12FF02706D1788414D3C3909 ] SafeBox         C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
15:58:06.0657 0x087c  SafeBox - ok
15:58:06.0672 0x087c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
15:58:06.0672 0x087c  SamSs - ok
15:58:06.0703 0x087c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
15:58:06.0703 0x087c  sbp2port - ok
15:58:06.0719 0x087c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
15:58:06.0750 0x087c  SCardSvr - ok
15:58:06.0766 0x087c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
15:58:06.0813 0x087c  scfilter - ok
15:58:06.0859 0x087c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
15:58:06.0906 0x087c  Schedule - ok
15:58:06.0922 0x087c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
15:58:06.0953 0x087c  SCPolicySvc - ok
15:58:06.0969 0x087c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
15:58:06.0969 0x087c  SDRSVC - ok
15:58:06.0984 0x087c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
15:58:07.0015 0x087c  secdrv - ok
15:58:07.0031 0x087c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
15:58:07.0062 0x087c  seclogon - ok
15:58:07.0093 0x087c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
15:58:07.0125 0x087c  SENS - ok
15:58:07.0125 0x087c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
15:58:07.0140 0x087c  SensrSvc - ok
15:58:07.0156 0x087c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
15:58:07.0187 0x087c  Serenum - ok
15:58:07.0218 0x087c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
15:58:07.0265 0x087c  Serial - ok
15:58:07.0296 0x087c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
15:58:07.0343 0x087c  sermouse - ok
15:58:07.0390 0x087c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
15:58:07.0452 0x087c  SessionEnv - ok
15:58:07.0483 0x087c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
15:58:07.0530 0x087c  sffdisk - ok
15:58:07.0561 0x087c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
15:58:07.0577 0x087c  sffp_mmc - ok
15:58:07.0593 0x087c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
15:58:07.0624 0x087c  sffp_sd - ok
15:58:07.0655 0x087c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
15:58:07.0702 0x087c  sfloppy - ok
15:58:07.0780 0x087c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
15:58:07.0811 0x087c  SharedAccess - ok
15:58:07.0842 0x087c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
15:58:07.0873 0x087c  ShellHWDetection - ok
15:58:07.0889 0x087c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:58:07.0905 0x087c  SiSRaid2 - ok
15:58:07.0920 0x087c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
15:58:07.0920 0x087c  SiSRaid4 - ok
15:58:08.0061 0x087c  [ 753D254205E0A62100A050BD8B458D06, DFDFCC6FAE853C690DB11EC44E5C105C6B6A0302AFC92ADC62260E727E1987C1 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
15:58:08.0139 0x087c  Skype C2C Service - ok
15:58:08.0170 0x087c  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
15:58:08.0217 0x087c  SkypeUpdate - ok
15:58:08.0232 0x087c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
15:58:08.0263 0x087c  Smb - ok
15:58:08.0295 0x087c  [ FDB6E127DF739D4911319F0C8D339CAF, 8A61851C07F686838BD0816683620B5856D3F698E5F1AEC5ECD75F69817287B1 ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
15:58:08.0295 0x087c  snapman - ok
15:58:08.0310 0x087c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
15:58:08.0326 0x087c  SNMPTRAP - ok
15:58:08.0357 0x087c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
15:58:08.0373 0x087c  spldr - ok
15:58:08.0419 0x087c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
15:58:08.0466 0x087c  Spooler - ok
15:58:08.0591 0x087c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
15:58:08.0669 0x087c  sppsvc - ok
15:58:08.0685 0x087c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
15:58:08.0747 0x087c  sppuinotify - ok
15:58:08.0794 0x087c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
15:58:08.0856 0x087c  srv - ok
15:58:08.0903 0x087c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
15:58:08.0950 0x087c  srv2 - ok
15:58:08.0997 0x087c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
15:58:09.0012 0x087c  srvnet - ok
15:58:09.0028 0x087c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
15:58:09.0106 0x087c  SSDPSRV - ok
15:58:09.0137 0x087c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
15:58:09.0168 0x087c  SstpSvc - ok
15:58:09.0215 0x087c  [ 5A19667A580B1CE886EAF968B9743F45, 0A9EBE4057A0A6EF4732623794C2416A6BD8B87356DA46652BD92762505F57C7 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
15:58:09.0262 0x087c  Stereo Service - ok
15:58:09.0262 0x087c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
15:58:09.0277 0x087c  stexstor - ok
15:58:09.0309 0x087c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
15:58:09.0324 0x087c  stisvc - ok
15:58:09.0355 0x087c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
15:58:09.0355 0x087c  swenum - ok
15:58:09.0387 0x087c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
15:58:09.0433 0x087c  swprv - ok
15:58:09.0667 0x087c  [ 1D8C612D6589430AD8F981F615B7C528, 525CF53B7C45C8A28A355C6EFBD58DBC5DDD49A7AF30A67CF174A73AE474DF2A ] syncagentsrv    C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
15:58:09.0792 0x087c  syncagentsrv - ok
15:58:09.0855 0x087c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
15:58:09.0917 0x087c  SysMain - ok
15:58:09.0948 0x087c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
15:58:09.0979 0x087c  TabletInputService - ok
15:58:09.0995 0x087c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
15:58:10.0042 0x087c  TapiSrv - ok
15:58:10.0089 0x087c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
15:58:10.0135 0x087c  TBS - ok
15:58:10.0198 0x087c  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
15:58:10.0229 0x087c  Tcpip - ok
15:58:10.0276 0x087c  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
15:58:10.0323 0x087c  TCPIP6 - ok
15:58:10.0338 0x087c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
15:58:10.0354 0x087c  tcpipreg - ok
15:58:10.0401 0x087c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
15:58:10.0432 0x087c  TDPIPE - ok
15:58:10.0510 0x087c  [ 843DAFC2CD4ED5D57FA40FD2000C6296, 857749DCC061EDB423D1A5CB2DB394EE944FCBF3D729B52263F76D95F8AF3195 ] tdrpman         C:\Windows\system32\DRIVERS\tdrpman.sys
15:58:10.0541 0x087c  tdrpman - ok
15:58:10.0557 0x087c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
15:58:10.0572 0x087c  TDTCP - ok
15:58:10.0603 0x087c  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
15:58:10.0650 0x087c  tdx - ok
15:58:10.0650 0x087c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
15:58:10.0666 0x087c  TermDD - ok
15:58:10.0697 0x087c  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
15:58:10.0744 0x087c  TermService - ok
15:58:10.0744 0x087c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
15:58:10.0775 0x087c  Themes - ok
15:58:10.0822 0x087c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
15:58:10.0837 0x087c  THREADORDER - ok
15:58:10.0869 0x087c  [ 31C9790525705B292F3B30F6676873CD, 6D7DF2DB38DD0A32D0DB1031AFE65AA1FCA21C53FBBE292670A0E9806CE096EA ] tib_mounter     C:\Windows\system32\DRIVERS\tib_mounter.sys
15:58:10.0900 0x087c  tib_mounter - ok
15:58:10.0915 0x087c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
15:58:10.0962 0x087c  TrkWks - ok
15:58:11.0009 0x087c  [ 325A512F98BEB97B1FFBE88927B8090D, 2A0C10516E3506D63290345DFAC98D5A623584767E034EBF652B9DBE6CF70547 ] trufos          C:\Windows\system32\DRIVERS\trufos.sys
15:58:11.0025 0x087c  trufos - ok
15:58:11.0056 0x087c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
15:58:11.0134 0x087c  TrustedInstaller - ok
15:58:11.0181 0x087c  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
15:58:11.0212 0x087c  tssecsrv - ok
15:58:11.0259 0x087c  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
15:58:11.0305 0x087c  TsUsbFlt - ok
15:58:11.0337 0x087c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
15:58:11.0415 0x087c  tunnel - ok
15:58:11.0446 0x087c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
15:58:11.0446 0x087c  uagp35 - ok
15:58:11.0461 0x087c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
15:58:11.0508 0x087c  udfs - ok
15:58:11.0539 0x087c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
15:58:11.0555 0x087c  UI0Detect - ok
15:58:11.0571 0x087c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
15:58:11.0571 0x087c  uliagpkx - ok
15:58:11.0602 0x087c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
15:58:11.0633 0x087c  umbus - ok
15:58:11.0664 0x087c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
15:58:11.0711 0x087c  UmPass - ok
15:58:11.0758 0x087c  [ 745B247DFB4C2466B382AE4B2062EB02, A391BFC9A2AD02D2A23112F16FF3CE8E291CAAA93F7C91FB2B2C1A8E1853DA5F ] UPDATESRV       C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
15:58:11.0773 0x087c  UPDATESRV - ok
15:58:11.0805 0x087c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
15:58:11.0883 0x087c  upnphost - ok
15:58:11.0914 0x087c  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
15:58:11.0945 0x087c  USBAAPL64 - ok
15:58:11.0976 0x087c  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
15:58:12.0023 0x087c  usbaudio - ok
15:58:12.0054 0x087c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
15:58:12.0070 0x087c  usbccgp - ok
15:58:12.0085 0x087c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
15:58:12.0117 0x087c  usbcir - ok
15:58:12.0148 0x087c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
15:58:12.0148 0x087c  usbehci - ok
15:58:12.0179 0x087c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
15:58:12.0210 0x087c  usbhub - ok
15:58:12.0241 0x087c  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
15:58:12.0257 0x087c  usbohci - ok
15:58:12.0273 0x087c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
15:58:12.0319 0x087c  usbprint - ok
15:58:12.0335 0x087c  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
15:58:12.0382 0x087c  usbscan - ok
15:58:12.0413 0x087c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:58:12.0444 0x087c  USBSTOR - ok
15:58:12.0460 0x087c  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
15:58:12.0475 0x087c  usbuhci - ok
15:58:12.0491 0x087c  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
15:58:12.0538 0x087c  usbvideo - ok
15:58:12.0569 0x087c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
15:58:12.0631 0x087c  UxSms - ok
15:58:12.0663 0x087c  [ AA1E010E07E49AC7F3AEC8063AE1AFF8, 42C93D4D9952B38A5C55582FFBDCB04B24FB563353988D8F2AAAAC66E6B39431 ] V0720Vid        C:\Windows\system32\DRIVERS\V0720Vid.sys
15:58:12.0678 0x087c  V0720Vid - ok
15:58:12.0694 0x087c  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
15:58:12.0709 0x087c  VaultSvc - ok
15:58:12.0725 0x087c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
15:58:12.0725 0x087c  vdrvroot - ok
15:58:12.0756 0x087c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
15:58:12.0787 0x087c  vds - ok
15:58:12.0803 0x087c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
15:58:12.0819 0x087c  vga - ok
15:58:12.0819 0x087c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
15:58:12.0834 0x087c  VgaSave - ok
15:58:12.0865 0x087c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
15:58:12.0865 0x087c  vhdmp - ok
15:58:12.0897 0x087c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
15:58:12.0897 0x087c  viaide - ok
15:58:12.0928 0x087c  [ 927CBC96C4635F235301411E530FB56E, 2A942C64CB2970DDA23C72EB14A9541460369E97AC68BC11DC12E9D6B2ACAAAD ] vididr          C:\Windows\system32\DRIVERS\vididr.sys
15:58:12.0943 0x087c  vididr - ok
15:58:12.0959 0x087c  [ 88B4E5C396003BCF479CA4D9BE851D57, 3F381C92AA53DAC38DAACB971D0013D64527F3C2002BEAEBF9C4A5ED18CC0294 ] vidsflt         C:\Windows\system32\DRIVERS\vidsflt.sys
15:58:12.0975 0x087c  vidsflt - ok
15:58:12.0990 0x087c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
15:58:13.0006 0x087c  volmgr - ok
15:58:13.0021 0x087c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
15:58:13.0037 0x087c  volmgrx - ok
15:58:13.0053 0x087c  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
15:58:13.0068 0x087c  volsnap - ok
15:58:13.0084 0x087c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
15:58:13.0099 0x087c  vsmraid - ok
15:58:13.0146 0x087c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
15:58:13.0209 0x087c  VSS - ok
15:58:13.0255 0x087c  [ F16A970479C4747EC6E5DA793E4D63EC, B8FAFBF2EF19DCE3583EFD6D3F1FB5310DF548F9D9E7F9440F4A96638D28173A ] VSSERV          C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
15:58:13.0287 0x087c  VSSERV - ok
15:58:13.0302 0x087c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
15:58:13.0349 0x087c  vwifibus - ok
15:58:13.0380 0x087c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
15:58:13.0427 0x087c  W32Time - ok
15:58:13.0427 0x087c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
15:58:13.0443 0x087c  WacomPen - ok
15:58:13.0458 0x087c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
15:58:13.0505 0x087c  WANARP - ok
15:58:13.0536 0x087c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
15:58:13.0552 0x087c  Wanarpv6 - ok
15:58:13.0630 0x087c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
15:58:13.0661 0x087c  WatAdminSvc - ok
15:58:13.0723 0x087c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
15:58:13.0786 0x087c  wbengine - ok
15:58:13.0801 0x087c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
15:58:13.0817 0x087c  WbioSrvc - ok
15:58:13.0848 0x087c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
15:58:13.0879 0x087c  wcncsvc - ok
15:58:13.0911 0x087c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
15:58:13.0911 0x087c  WcsPlugInService - ok
15:58:13.0926 0x087c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
15:58:13.0942 0x087c  Wd - ok
15:58:13.0973 0x087c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
15:58:13.0989 0x087c  Wdf01000 - ok
15:58:14.0004 0x087c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
15:58:14.0051 0x087c  WdiServiceHost - ok
15:58:14.0082 0x087c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
15:58:14.0082 0x087c  WdiSystemHost - ok
15:58:14.0113 0x087c  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
15:58:14.0129 0x087c  WebClient - ok
15:58:14.0145 0x087c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
15:58:14.0191 0x087c  Wecsvc - ok
15:58:14.0223 0x087c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
15:58:14.0285 0x087c  wercplsupport - ok
15:58:14.0316 0x087c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
15:58:14.0379 0x087c  WerSvc - ok
15:58:14.0394 0x087c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
15:58:14.0425 0x087c  WfpLwf - ok
15:58:14.0425 0x087c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
15:58:14.0441 0x087c  WIMMount - ok
15:58:14.0457 0x087c  WinDefend - ok
15:58:14.0472 0x087c  WinHttpAutoProxySvc - ok
15:58:14.0503 0x087c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
15:58:14.0550 0x087c  Winmgmt - ok
15:58:14.0644 0x087c  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
15:58:14.0722 0x087c  WinRM - ok
15:58:14.0769 0x087c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
15:58:14.0784 0x087c  WinUsb - ok
15:58:14.0815 0x087c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
15:58:14.0862 0x087c  Wlansvc - ok
15:58:14.0971 0x087c  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:58:15.0018 0x087c  wlidsvc - ok
15:58:15.0034 0x087c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
15:58:15.0034 0x087c  WmiAcpi - ok
15:58:15.0065 0x087c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
15:58:15.0112 0x087c  wmiApSrv - ok
15:58:15.0112 0x087c  WMPNetworkSvc - ok
15:58:15.0143 0x087c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
15:58:15.0159 0x087c  WPCSvc - ok
15:58:15.0190 0x087c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
15:58:15.0205 0x087c  WPDBusEnum - ok
15:58:15.0252 0x087c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
15:58:15.0299 0x087c  ws2ifsl - ok
15:58:15.0315 0x087c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
15:58:15.0346 0x087c  wscsvc - ok
15:58:15.0346 0x087c  WSearch - ok
15:58:15.0455 0x087c  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
15:58:15.0502 0x087c  wuauserv - ok
15:58:15.0533 0x087c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
15:58:15.0533 0x087c  WudfPf - ok
15:58:15.0549 0x087c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
15:58:15.0580 0x087c  WUDFRd - ok
15:58:15.0611 0x087c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
15:58:15.0642 0x087c  wudfsvc - ok
15:58:15.0705 0x087c  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
15:58:15.0751 0x087c  WwanSvc - ok
15:58:15.0767 0x087c  ================ Scan global ===============================
15:58:15.0829 0x087c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
15:58:15.0845 0x087c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
15:58:15.0876 0x087c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
15:58:15.0892 0x087c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
15:58:15.0923 0x087c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
15:58:15.0939 0x087c  [ Global ] - ok
15:58:15.0939 0x087c  ================ Scan MBR ==================================
15:58:15.0939 0x087c  [ F2634EFAB9E22A7870007C2453CEFE38 ] \Device\Harddisk0\DR0
15:58:16.0141 0x087c  \Device\Harddisk0\DR0 - ok
15:58:16.0141 0x087c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
15:58:16.0251 0x087c  \Device\Harddisk1\DR1 - ok
15:58:16.0266 0x087c  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
15:58:16.0391 0x087c  \Device\Harddisk2\DR2 - ok
15:58:16.0391 0x087c  ================ Scan VBR ==================================
15:58:16.0391 0x087c  [ 95ED4289D09769BEFD3E56D87EF51364 ] \Device\Harddisk0\DR0\Partition1
15:58:16.0438 0x087c  \Device\Harddisk0\DR0\Partition1 - ok
15:58:16.0453 0x087c  [ 004BC6ED8EC6059D52BF3E1DA799E2BB ] \Device\Harddisk1\DR1\Partition1
15:58:16.0500 0x087c  \Device\Harddisk1\DR1\Partition1 - ok
15:58:16.0500 0x087c  [ 1A82C46F8A42ED7A2BD3B9E83ACD7FCC ] \Device\Harddisk2\DR2\Partition1
15:58:16.0500 0x087c  \Device\Harddisk2\DR2\Partition1 - ok
15:58:16.0578 0x087c  AV detected via SS2: Bitdefender Antivirus, C:\Program Files\Bitdefender\Bitdefender 2013\wscfix.exe ( 16.34.0.1909 ), 0x41000 ( enabled : updated )
15:58:16.0578 0x087c  FW detected via SS2: Bitdefender Firewall, C:\Program Files\Bitdefender\Bitdefender 2013\wscfix.exe ( 16.34.0.1909 ), 0x41010 ( enabled )
15:58:28.0356 0x087c  ============================================================
15:58:28.0356 0x087c  Scan finished
15:58:28.0356 0x087c  ============================================================
15:58:28.0356 0x1428  Detected object count: 1
15:58:28.0356 0x1428  Actual detected object count: 1
16:00:15.0420 0x1428  Netaapl ( UnsignedFile.Multi.Generic ) - skipped by user
16:00:15.0420 0x1428  Netaapl ( UnsignedFile.Multi.Generic ) - User select action: Skip
16:00:31.0856 0x00d8  ============================================================
16:00:31.0856 0x00d8  Scan started
16:00:31.0856 0x00d8  Mode: Manual; SigCheck; TDLFS;
16:00:31.0856 0x00d8  ============================================================
16:00:31.0856 0x00d8  KSN ping started
16:00:32.0422 0x00d8  KSN ping finished: true
16:00:33.0218 0x00d8  ================ Scan system memory ========================
16:00:33.0218 0x00d8  System memory - ok
16:00:33.0218 0x00d8  ================ Scan services =============================
16:00:33.0343 0x00d8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
16:00:33.0374 0x00d8  1394ohci - ok
16:00:33.0405 0x00d8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:00:33.0421 0x00d8  ACPI - ok
16:00:33.0436 0x00d8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:00:33.0436 0x00d8  AcpiPmi - ok
16:00:33.0514 0x00d8  [ A475CCD9AC2FD156BBB993F5B5299609, 16E6322228DDFBE8CBBB91887FEEB4C52D205F7CF03D55DE0D0A5C860AF33F06 ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
16:00:33.0546 0x00d8  AcrSch2Svc - ok
16:00:33.0577 0x00d8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
16:00:33.0592 0x00d8  adp94xx - ok
16:00:33.0608 0x00d8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
16:00:33.0624 0x00d8  adpahci - ok
16:00:33.0639 0x00d8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
16:00:33.0655 0x00d8  adpu320 - ok
16:00:33.0670 0x00d8  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:00:33.0702 0x00d8  AeLookupSvc - ok
16:00:33.0733 0x00d8  [ ABCF9C80EAACE03021BB7F450EB8993F, 8E38726C423E82954CA85266D6F38B605D010A659420A4EF99D29035A9474BFB ] afcdp           C:\Windows\system32\DRIVERS\afcdp.sys
16:00:33.0733 0x00d8  afcdp - ok
16:00:33.0826 0x00d8  [ 30346435058C56903C9F07BC7CABC9EA, 989A36D5DD62FCB4BAF8A0BA93D21C4BE81540D0A41FE4622002D9E5E54A8980 ] afcdpsrv        C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
16:00:33.0904 0x00d8  afcdpsrv - ok
16:00:33.0920 0x00d8  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
16:00:33.0951 0x00d8  AFD - ok
16:00:33.0982 0x00d8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
16:00:33.0998 0x00d8  agp440 - ok
16:00:34.0014 0x00d8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
16:00:34.0045 0x00d8  ALG - ok
16:00:34.0045 0x00d8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:00:34.0060 0x00d8  aliide - ok
16:00:34.0060 0x00d8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:00:34.0076 0x00d8  amdide - ok
16:00:34.0092 0x00d8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
16:00:34.0107 0x00d8  AmdK8 - ok
16:00:34.0107 0x00d8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
16:00:34.0123 0x00d8  AmdPPM - ok
16:00:34.0154 0x00d8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:00:34.0154 0x00d8  amdsata - ok
16:00:34.0170 0x00d8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
16:00:34.0185 0x00d8  amdsbs - ok
16:00:34.0201 0x00d8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:00:34.0216 0x00d8  amdxata - ok
16:00:34.0216 0x00d8  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
16:00:34.0248 0x00d8  AppID - ok
16:00:34.0248 0x00d8  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:00:34.0279 0x00d8  AppIDSvc - ok
16:00:34.0294 0x00d8  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
16:00:34.0310 0x00d8  Appinfo - ok
16:00:34.0333 0x00d8  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:00:34.0349 0x00d8  Apple Mobile Device - ok
16:00:34.0364 0x00d8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
16:00:34.0380 0x00d8  arc - ok
16:00:34.0380 0x00d8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
16:00:34.0396 0x00d8  arcsas - ok
16:00:34.0458 0x00d8  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:00:34.0474 0x00d8  aspnet_state - ok
16:00:34.0489 0x00d8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:00:34.0536 0x00d8  AsyncMac - ok
16:00:34.0536 0x00d8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:00:34.0552 0x00d8  atapi - ok
16:00:34.0567 0x00d8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:00:34.0614 0x00d8  AudioEndpointBuilder - ok
16:00:34.0630 0x00d8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:00:34.0661 0x00d8  AudioSrv - ok
16:00:34.0692 0x00d8  [ 636B15879AE62E47444F99C60C900AA6, 335B1378037B2CFEBDAA95B1ABB619A4C18C5CD37A12688E606E7A12BE31735C ] avc3            C:\Windows\system32\DRIVERS\avc3.sys
16:00:34.0723 0x00d8  avc3 - ok
16:00:34.0739 0x00d8  [ 3B9549FEF98AB1768A1D6A919F355B70, 0014914051CB54CD7CC25561D29099A19DCFB2E1810FF635F9B6AD3D9C6FBC4B ] avchv           C:\Windows\system32\DRIVERS\avchv.sys
16:00:34.0754 0x00d8  avchv - ok
16:00:34.0786 0x00d8  [ 14023A39BC91AC5A2077766D28EBA7C5, 855FEE69105438ADE79C9389E0581C62FE1D134863F8D6FA27DE83737E4B4213 ] avckf           C:\Windows\system32\DRIVERS\avckf.sys
16:00:34.0801 0x00d8  avckf - ok
16:00:34.0817 0x00d8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:00:34.0832 0x00d8  AxInstSV - ok
16:00:34.0848 0x00d8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
16:00:34.0864 0x00d8  b06bdrv - ok
16:00:34.0879 0x00d8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:00:34.0895 0x00d8  b57nd60a - ok
16:00:34.0973 0x00d8  [ 8683C981D6B33A18E7BE7431CF9BE18E, 7C1A7BB5020DE6F61C8D259D7587B939A7645129B5A0EA543C7ED4805301206B ] BdDesktopParental C:\Program Files\Bitdefender\Bitdefender 2013\bdparentalservice.exe
16:00:34.0988 0x00d8  BdDesktopParental - ok
16:00:35.0004 0x00d8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:00:35.0020 0x00d8  BDESVC - ok
16:00:35.0082 0x00d8  [ 3FAFE12C5D1D4D5F3567E7A0A2F15A7C, B77455872683563C12963E1D8FC349FB33B048D615FD299571A2DCF1598C0A9F ] BdfNdisf        c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys
16:00:35.0098 0x00d8  BdfNdisf - ok
16:00:35.0113 0x00d8  [ 4CE4B0098FC315C237FA8867F07886C4, 475B2D86EE7658372D868ABC9ACA965FDD8212D3AE2C6E4749DC53DBA3DC19D6 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
16:00:35.0129 0x00d8  bdfwfpf - ok
16:00:35.0144 0x00d8  [ 50F796CB1E8C80F3D19435CB50C3DAB5, 20CE5C1242F8D0DFEE13C8D07EF1A67F670A078BA44E810A3A042C6A060FACC9 ] BDVEDISK        C:\Windows\system32\DRIVERS\bdvedisk.sys
16:00:35.0160 0x00d8  BDVEDISK - ok
16:00:35.0176 0x00d8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:00:35.0207 0x00d8  Beep - ok
16:00:35.0222 0x00d8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
16:00:35.0254 0x00d8  BFE - ok
16:00:35.0285 0x00d8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
16:00:35.0332 0x00d8  BITS - ok
16:00:35.0332 0x00d8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:00:35.0347 0x00d8  blbdrive - ok
16:00:35.0394 0x00d8  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:00:35.0410 0x00d8  Bonjour Service - ok
16:00:35.0425 0x00d8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:00:35.0441 0x00d8  bowser - ok
16:00:35.0456 0x00d8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
16:00:35.0472 0x00d8  BrFiltLo - ok
16:00:35.0472 0x00d8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
16:00:35.0503 0x00d8  BrFiltUp - ok
16:00:35.0503 0x00d8  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
16:00:35.0534 0x00d8  BridgeMP - ok
16:00:35.0550 0x00d8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
16:00:35.0550 0x00d8  Browser - ok
16:00:35.0581 0x00d8  [ E5E9B1625A767CEB6F319C12D33EAB78, F49FF610C0712FAE4B69BD300C78D7DEA7C72DFC076323295779272D1E23D7CE ] BrSerIb         C:\Windows\system32\DRIVERS\BrSerIb.sys
16:00:35.0612 0x00d8  BrSerIb - ok
16:00:35.0628 0x00d8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:00:35.0644 0x00d8  Brserid - ok

Attached Files

  • Attached File  MBR.zip   578bytes   0 downloads

Edited by Johnp12, 13 April 2014 - 02:15 AM.


#8 Johnp12

Johnp12
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:58 PM

Posted 13 April 2014 - 02:13 AM

16:00:35.0659 0x00d8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:00:35.0675 0x00d8  BrSerWdm - ok
16:00:35.0690 0x00d8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:00:35.0706 0x00d8  BrUsbMdm - ok
16:00:35.0706 0x00d8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:00:35.0706 0x00d8  BrUsbSer - ok
16:00:35.0722 0x00d8  [ D9F6B30AD93CBD165EC71FADF51DF25E, 9E38846451650F4F320CB1DEA9C010653A54D7419591719936BF53BEE269F1A8 ] BrUsbSIb        C:\Windows\system32\DRIVERS\BrUsbSIb.sys
16:00:35.0737 0x00d8  BrUsbSIb - ok
16:00:35.0784 0x00d8  [ A792736DB1A49A47F0A2C45D63683F0C, A12CFD897ED4090CF5F3AFEF030779D3047C8C3D71A821857593279C6D82A5C6 ] BstHdAndroidSvc C:\Program Files (x86)\BlueStacks\HD-Service.exe
16:00:35.0815 0x00d8  BstHdAndroidSvc - ok
16:00:35.0831 0x00d8  [ DE6D8FC8F1534AEA59ECA1EADCBBAEB0, 1F0883F83BE7CAE60A7F3815576206086ABD03E678F135880F45E1DA8A8574FC ] BstHdDrv        C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys
16:00:35.0846 0x00d8  BstHdDrv - ok
16:00:35.0862 0x00d8  [ 599243FC4D8BD5CF06FF5E3294B98D13, B2AD203BF25A75A3FDD8D33D814AC0A27287F7E99F40C8B328AB7BE3A76E50F1 ] BstHdLogRotatorSvc C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
16:00:35.0893 0x00d8  BstHdLogRotatorSvc - ok
16:00:35.0909 0x00d8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
16:00:35.0940 0x00d8  BTHMODEM - ok
16:00:35.0956 0x00d8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
16:00:36.0002 0x00d8  bthserv - ok
16:00:36.0018 0x00d8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:00:36.0065 0x00d8  cdfs - ok
16:00:36.0080 0x00d8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys
16:00:36.0096 0x00d8  cdrom - ok
16:00:36.0112 0x00d8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:00:36.0143 0x00d8  CertPropSvc - ok
16:00:36.0143 0x00d8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
16:00:36.0158 0x00d8  circlass - ok
16:00:36.0174 0x00d8  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
16:00:36.0174 0x00d8  CLFS - ok
16:00:36.0221 0x00d8  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:00:36.0252 0x00d8  clr_optimization_v2.0.50727_32 - ok
16:00:36.0283 0x00d8  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:00:36.0299 0x00d8  clr_optimization_v2.0.50727_64 - ok
16:00:36.0335 0x00d8  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:00:36.0366 0x00d8  clr_optimization_v4.0.30319_32 - ok
16:00:36.0382 0x00d8  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:00:36.0397 0x00d8  clr_optimization_v4.0.30319_64 - ok
16:00:36.0397 0x00d8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
16:00:36.0429 0x00d8  CmBatt - ok
16:00:36.0429 0x00d8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:00:36.0444 0x00d8  cmdide - ok
16:00:36.0475 0x00d8  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
16:00:36.0507 0x00d8  CNG - ok
16:00:36.0600 0x00d8  [ 1C15404EA8FC42DAB8A7B3765ED53E58, 270338A946E73D27532D252C503E8653A49F97037050C1C913351457F6C1D71F ] CodeMeter.exe   C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
16:00:36.0678 0x00d8  CodeMeter.exe - ok
16:00:36.0694 0x00d8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
16:00:36.0709 0x00d8  Compbatt - ok
16:00:36.0709 0x00d8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
16:00:36.0725 0x00d8  CompositeBus - ok
16:00:36.0725 0x00d8  COMSysApp - ok
16:00:36.0741 0x00d8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
16:00:36.0756 0x00d8  crcdisk - ok
16:00:36.0772 0x00d8  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:00:36.0787 0x00d8  CryptSvc - ok
16:00:36.0787 0x00d8  [ 754F0C7DFA63EED14CC465E654A469D3, 230009708BC9961A8750B27F3FCA4A1AD3BF2DBBD4FB7E73C4AB5C748472FA4C ] CtClsFlt        C:\Windows\system32\DRIVERS\CtClsFlt.sys
16:00:36.0803 0x00d8  CtClsFlt - ok
16:00:36.0834 0x00d8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:00:36.0865 0x00d8  DcomLaunch - ok
16:00:36.0897 0x00d8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:00:36.0928 0x00d8  defragsvc - ok
16:00:36.0943 0x00d8  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:00:36.0975 0x00d8  DfsC - ok
16:00:36.0990 0x00d8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:00:37.0006 0x00d8  Dhcp - ok
16:00:37.0021 0x00d8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
16:00:37.0037 0x00d8  discache - ok
16:00:37.0053 0x00d8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
16:00:37.0053 0x00d8  Disk - ok
16:00:37.0068 0x00d8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:00:37.0084 0x00d8  Dnscache - ok
16:00:37.0115 0x00d8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:00:37.0131 0x00d8  dot3svc - ok
16:00:37.0162 0x00d8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
16:00:37.0177 0x00d8  DPS - ok
16:00:37.0193 0x00d8  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:00:37.0209 0x00d8  drmkaud - ok
16:00:37.0255 0x00d8  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:00:37.0287 0x00d8  DXGKrnl - ok
16:00:37.0302 0x00d8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
16:00:37.0333 0x00d8  EapHost - ok
16:00:37.0411 0x00d8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
16:00:37.0489 0x00d8  ebdrv - ok
16:00:37.0505 0x00d8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
16:00:37.0521 0x00d8  EFS - ok
16:00:37.0536 0x00d8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:00:37.0567 0x00d8  ehRecvr - ok
16:00:37.0567 0x00d8  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
16:00:37.0583 0x00d8  ehSched - ok
16:00:37.0599 0x00d8  [ 627350A11295D82BF78D155B12FFD0EF, BF4A80A379803C765EF5163EE7422A30D8F35820E38690F11A27FA605DD20FFA ] ElRawDisk       C:\Windows\system32\drivers\ElRawDsk.sys
16:00:37.0599 0x00d8  ElRawDisk - ok
16:00:37.0630 0x00d8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
16:00:37.0645 0x00d8  elxstor - ok
16:00:37.0661 0x00d8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:00:37.0661 0x00d8  ErrDev - ok
16:00:37.0677 0x00d8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
16:00:37.0708 0x00d8  EventSystem - ok
16:00:37.0723 0x00d8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:00:37.0755 0x00d8  exfat - ok
16:00:37.0755 0x00d8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:00:37.0786 0x00d8  fastfat - ok
16:00:37.0817 0x00d8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
16:00:37.0833 0x00d8  Fax - ok
16:00:37.0848 0x00d8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
16:00:37.0864 0x00d8  fdc - ok
16:00:37.0864 0x00d8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
16:00:37.0895 0x00d8  fdPHost - ok
16:00:37.0911 0x00d8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:00:37.0942 0x00d8  FDResPub - ok
16:00:37.0957 0x00d8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:00:37.0957 0x00d8  FileInfo - ok
16:00:37.0957 0x00d8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:00:37.0989 0x00d8  Filetrace - ok
16:00:37.0989 0x00d8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
16:00:38.0004 0x00d8  flpydisk - ok
16:00:38.0020 0x00d8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:00:38.0035 0x00d8  FltMgr - ok
16:00:38.0051 0x00d8  [ F0CC1A9106F9FB0F704F6ED95622B43E, DE09E37619B91AD4F43B473A41E6563F4FCFB891A7F9665E8631131A49FA96A1 ] fltsrv          C:\Windows\system32\DRIVERS\fltsrv.sys
16:00:38.0067 0x00d8  fltsrv - ok
16:00:38.0098 0x00d8  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
16:00:38.0129 0x00d8  FontCache - ok
16:00:38.0145 0x00d8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:00:38.0160 0x00d8  FontCache3.0.0.0 - ok
16:00:38.0176 0x00d8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:00:38.0191 0x00d8  FsDepends - ok
16:00:38.0207 0x00d8  [ C2E475625F2C6F7DCDE4E920523A0573, C316D2223008BD5EA022AFB79CC21B841939FA8D511729455E787E59A27A0DE6 ] fssfltr         C:\Windows\system32\DRIVERS\fssfltr.sys
16:00:38.0223 0x00d8  fssfltr - ok
16:00:38.0285 0x00d8  [ 812E1BA5C52A78F13EA6AA10DF708B1D, CF1C4D8E072CF0D66C977DFA4C852E5CE757843BEAF5D29454D26A9AC5766E61 ] fsssvc          C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe
16:00:38.0321 0x00d8  fsssvc - ok
16:00:38.0337 0x00d8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:00:38.0352 0x00d8  Fs_Rec - ok
16:00:38.0368 0x00d8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:00:38.0384 0x00d8  fvevol - ok
16:00:38.0384 0x00d8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
16:00:38.0399 0x00d8  gagp30kx - ok
16:00:38.0415 0x00d8  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:00:38.0430 0x00d8  GEARAspiWDM - ok
16:00:38.0477 0x00d8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:00:38.0524 0x00d8  gpsvc - ok
16:00:38.0696 0x00d8  [ D01F0A06C1FC10C6AD0A49EC368B51EC, A1477D02BE7EB3703E42266A2571BC00646447C02387055958F3C82AD2D4E392 ] GsServer        C:\Program Files\Siber Systems\GoodSync\Gs-Server.exe
16:00:38.0789 0x00d8  GsServer - ok
16:00:38.0820 0x00d8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:00:38.0852 0x00d8  gupdate - ok
16:00:38.0867 0x00d8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:00:38.0898 0x00d8  gupdatem - ok
16:00:38.0914 0x00d8  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:00:38.0930 0x00d8  gusvc - ok
16:00:38.0961 0x00d8  [ 0A9D58AABD01DA97B1D101473EFA7659, C18EA4F5BF569C230AD682A418F69B6E4209AD467BCCBDABD0515DBB582BF04B ] gzflt           C:\Windows\system32\DRIVERS\gzflt.sys
16:00:38.0976 0x00d8  gzflt - ok
16:00:38.0992 0x00d8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:00:38.0992 0x00d8  hcw85cir - ok
16:00:39.0023 0x00d8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:00:39.0039 0x00d8  HdAudAddService - ok
16:00:39.0086 0x00d8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
16:00:39.0117 0x00d8  HDAudBus - ok
16:00:39.0132 0x00d8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
16:00:39.0164 0x00d8  HidBatt - ok
16:00:39.0179 0x00d8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
16:00:39.0195 0x00d8  HidBth - ok
16:00:39.0210 0x00d8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
16:00:39.0226 0x00d8  HidIr - ok
16:00:39.0257 0x00d8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
16:00:39.0288 0x00d8  hidserv - ok
16:00:39.0304 0x00d8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
16:00:39.0320 0x00d8  HidUsb - ok
16:00:39.0335 0x00d8  [ CD3FE805E00666E4CDF6C92BD6F290ED, AC50896043396334413A0C08A10D08C7FCD09F1D573B50EF189BE0036E560089 ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe
16:00:39.0351 0x00d8  HitmanProScheduler - ok
16:00:39.0366 0x00d8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:00:39.0382 0x00d8  hkmsvc - ok
16:00:39.0398 0x00d8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:00:39.0413 0x00d8  HomeGroupListener - ok
16:00:39.0444 0x00d8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:00:39.0460 0x00d8  HomeGroupProvider - ok
16:00:39.0476 0x00d8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:00:39.0491 0x00d8  HpSAMD - ok
16:00:39.0538 0x00d8  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:00:39.0585 0x00d8  HTTP - ok
16:00:39.0600 0x00d8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:00:39.0616 0x00d8  hwpolicy - ok
16:00:39.0616 0x00d8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:00:39.0632 0x00d8  i8042prt - ok
16:00:39.0663 0x00d8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:00:39.0694 0x00d8  iaStorV - ok
16:00:39.0741 0x00d8  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:00:39.0772 0x00d8  idsvc - ok
16:00:39.0772 0x00d8  IEEtwCollectorService - ok
16:00:39.0788 0x00d8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
16:00:39.0788 0x00d8  iirsp - ok
16:00:39.0834 0x00d8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
16:00:39.0850 0x00d8  IKEEXT - ok
16:00:39.0881 0x00d8  [ CAA8BC6737DFA3BF1A50175CFB226788, F4453E136BDD3441A95972B217784EA3A7F914A0DDE3E9F503E107682B50E248 ] InputFilter_Hid_FlexDef2b C:\Windows\system32\DRIVERS\InputFilter_FlexDef2b.sys
16:00:39.0881 0x00d8  InputFilter_Hid_FlexDef2b - ok
16:00:39.0975 0x00d8  [ 13089F31AA37CDE1CE3784EE01A48484, 6AEA8380E5A673EEB307AF033C9F0A8E5EE9F6C41CF2352D37B101986F311352 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:00:40.0022 0x00d8  IntcAzAudAddService - ok
16:00:40.0037 0x00d8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:00:40.0037 0x00d8  intelide - ok
16:00:40.0053 0x00d8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:00:40.0068 0x00d8  intelppm - ok
16:00:40.0115 0x00d8  [ D07AD1A8FDD48E995E73D0732D8795AA, C1ABA667C6B3391EC9F50105B7E94C759AF4734D64B7D0DDB83EA9AFF557D881 ] ioloSystemService C:\Program Files (x86)\iolo\Common\Lib\ioloServiceManager.exe
16:00:40.0417 0x00d8  ioloSystemService - ok
16:00:40.0432 0x00d8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:00:40.0463 0x00d8  IPBusEnum - ok
16:00:40.0463 0x00d8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:00:40.0495 0x00d8  IpFilterDriver - ok
16:00:40.0526 0x00d8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:00:40.0541 0x00d8  iphlpsvc - ok
16:00:40.0557 0x00d8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:00:40.0573 0x00d8  IPMIDRV - ok
16:00:40.0573 0x00d8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:00:40.0604 0x00d8  IPNAT - ok
16:00:40.0635 0x00d8  [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:00:40.0651 0x00d8  iPod Service - ok
16:00:40.0651 0x00d8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:00:40.0666 0x00d8  IRENUM - ok
16:00:40.0682 0x00d8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:00:40.0682 0x00d8  isapnp - ok
16:00:40.0697 0x00d8  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:00:40.0713 0x00d8  iScsiPrt - ok
16:00:40.0713 0x00d8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:00:40.0729 0x00d8  kbdclass - ok
16:00:40.0744 0x00d8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:00:40.0744 0x00d8  kbdhid - ok
16:00:40.0760 0x00d8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
16:00:40.0775 0x00d8  KeyIso - ok
16:00:40.0791 0x00d8  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:00:40.0807 0x00d8  KSecDD - ok
16:00:40.0838 0x00d8  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:00:40.0853 0x00d8  KSecPkg - ok
16:00:40.0869 0x00d8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:00:40.0900 0x00d8  ksthunk - ok
16:00:40.0931 0x00d8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:00:40.0963 0x00d8  KtmRm - ok
16:00:40.0978 0x00d8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
16:00:41.0009 0x00d8  LanmanServer - ok
16:00:41.0025 0x00d8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:00:41.0056 0x00d8  LanmanWorkstation - ok
16:00:41.0056 0x00d8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:00:41.0087 0x00d8  lltdio - ok
16:00:41.0103 0x00d8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:00:41.0134 0x00d8  lltdsvc - ok
16:00:41.0150 0x00d8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:00:41.0181 0x00d8  lmhosts - ok
16:00:41.0197 0x00d8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
16:00:41.0212 0x00d8  LSI_FC - ok
16:00:41.0212 0x00d8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
16:00:41.0228 0x00d8  LSI_SAS - ok
16:00:41.0243 0x00d8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
16:00:41.0243 0x00d8  LSI_SAS2 - ok
16:00:41.0259 0x00d8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
16:00:41.0275 0x00d8  LSI_SCSI - ok
16:00:41.0275 0x00d8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:00:41.0306 0x00d8  luafv - ok
16:00:41.0321 0x00d8  [ FD5465B876D55534117963FAAA4B9DFC, 63A822A1EEEC42C30CCC9477431E310E3D360489A68BBCD805124681F21C0B6B ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
16:00:41.0321 0x00d8  MBAMProtector - ok
16:00:41.0399 0x00d8  [ 0E08BDD7326E657D59DB40BAD23D8169, 428C6CCCC0BB540DFD35847776140D60C186B9D2D14F0ACCD1A4D42A8877BD98 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
16:00:41.0431 0x00d8  MBAMScheduler - ok
16:00:41.0477 0x00d8  [ A8E7F3DB083EB0839DFC1C763CDD2594, BDF416E360A52130B23B029C89E6406A97FB0516C52C7E63B94CAECEEB431A2E ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
16:00:41.0524 0x00d8  MBAMService - ok
16:00:41.0555 0x00d8  [ 6140163BFE9D8F2DFDBA088ED5521C13, B7B501F0D1527A15B1610D133E97AB431574502F0553734009627488D0007595 ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
16:00:41.0555 0x00d8  MBAMSwissArmy - ok
16:00:41.0587 0x00d8  [ C49915271600CFC2305FAA4271D0002F, 8412989C50579C79F27E4F9B178B2FF944C8F221AD70D213279D888F5449F868 ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
16:00:41.0602 0x00d8  MBAMWebAccessControl - ok
16:00:41.0618 0x00d8  [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
16:00:41.0633 0x00d8  MBfilt - ok
16:00:41.0649 0x00d8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:00:41.0665 0x00d8  Mcx2Svc - ok
16:00:41.0665 0x00d8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
16:00:41.0680 0x00d8  megasas - ok
16:00:41.0696 0x00d8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
16:00:41.0711 0x00d8  MegaSR - ok
16:00:41.0727 0x00d8  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
16:00:41.0727 0x00d8  MEIx64 - ok
16:00:41.0743 0x00d8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
16:00:41.0774 0x00d8  MMCSS - ok
16:00:41.0774 0x00d8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
16:00:41.0805 0x00d8  Modem - ok
16:00:41.0805 0x00d8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:00:41.0821 0x00d8  monitor - ok
16:00:41.0836 0x00d8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:00:41.0836 0x00d8  mouclass - ok
16:00:41.0852 0x00d8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:00:41.0867 0x00d8  mouhid - ok
16:00:41.0883 0x00d8  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:00:41.0899 0x00d8  mountmgr - ok
16:00:41.0945 0x00d8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:00:41.0961 0x00d8  mpio - ok
16:00:41.0977 0x00d8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:00:42.0008 0x00d8  mpsdrv - ok
16:00:42.0055 0x00d8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:00:42.0086 0x00d8  MpsSvc - ok
16:00:42.0101 0x00d8  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:00:42.0117 0x00d8  MRxDAV - ok
16:00:42.0148 0x00d8  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:00:42.0148 0x00d8  mrxsmb - ok
16:00:42.0164 0x00d8  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:00:42.0179 0x00d8  mrxsmb10 - ok
16:00:42.0195 0x00d8  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:00:42.0211 0x00d8  mrxsmb20 - ok
16:00:42.0226 0x00d8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:00:42.0242 0x00d8  msahci - ok
16:00:42.0257 0x00d8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:00:42.0273 0x00d8  msdsm - ok
16:00:42.0273 0x00d8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
16:00:42.0289 0x00d8  MSDTC - ok
16:00:42.0307 0x00d8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:00:42.0325 0x00d8  Msfs - ok
16:00:42.0340 0x00d8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:00:42.0356 0x00d8  mshidkmdf - ok
16:00:42.0387 0x00d8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:00:42.0403 0x00d8  msisadrv - ok
16:00:42.0434 0x00d8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:00:42.0481 0x00d8  MSiSCSI - ok
16:00:42.0481 0x00d8  msiserver - ok
16:00:42.0481 0x00d8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:00:42.0512 0x00d8  MSKSSRV - ok
16:00:42.0512 0x00d8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:00:42.0543 0x00d8  MSPCLOCK - ok
16:00:42.0543 0x00d8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:00:42.0559 0x00d8  MSPQM - ok
16:00:42.0590 0x00d8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:00:42.0606 0x00d8  MsRPC - ok
16:00:42.0621 0x00d8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
16:00:42.0621 0x00d8  mssmbios - ok
16:00:42.0621 0x00d8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:00:42.0652 0x00d8  MSTEE - ok
16:00:42.0652 0x00d8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
16:00:42.0668 0x00d8  MTConfig - ok
16:00:42.0668 0x00d8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
16:00:42.0684 0x00d8  Mup - ok
16:00:42.0699 0x00d8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
16:00:42.0746 0x00d8  napagent - ok
16:00:42.0746 0x00d8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:00:42.0762 0x00d8  NativeWifiP - ok
16:00:42.0808 0x00d8  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:00:42.0840 0x00d8  NDIS - ok
16:00:42.0840 0x00d8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:00:42.0871 0x00d8  NdisCap - ok
16:00:42.0886 0x00d8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:00:42.0902 0x00d8  NdisTapi - ok
16:00:42.0918 0x00d8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:00:42.0949 0x00d8  Ndisuio - ok
16:00:42.0949 0x00d8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:00:42.0980 0x00d8  NdisWan - ok
16:00:42.0996 0x00d8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:00:43.0011 0x00d8  NDProxy - ok
16:00:43.0027 0x00d8  [ 6F4607E2333FE21E9E3FF8133A88B35B, F7B7B262D85D03552A8D0F3F91E795B31E3D09020DDA1E3D62A4A3209D916BB6 ] Netaapl         C:\Windows\system32\DRIVERS\netaapl64.sys
16:00:43.0042 0x00d8  Netaapl - detected UnsignedFile.Multi.Generic ( 1 )
16:00:43.0042 0x00d8  Netaapl ( UnsignedFile.Multi.Generic ) - warning
16:00:43.0822 0x00d8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:00:43.0869 0x00d8  NetBIOS - ok
16:00:43.0885 0x00d8  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:00:43.0916 0x00d8  NetBT - ok
16:00:43.0916 0x00d8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
16:00:43.0932 0x00d8  Netlogon - ok
16:00:43.0947 0x00d8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
16:00:43.0978 0x00d8  Netman - ok
16:00:43.0994 0x00d8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:00:44.0010 0x00d8  NetMsmqActivator - ok
16:00:44.0025 0x00d8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:00:44.0041 0x00d8  NetPipeActivator - ok
16:00:44.0041 0x00d8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
16:00:44.0072 0x00d8  netprofm - ok
16:00:44.0088 0x00d8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:00:44.0103 0x00d8  NetTcpActivator - ok
16:00:44.0119 0x00d8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:00:44.0134 0x00d8  NetTcpPortSharing - ok
16:00:44.0134 0x00d8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
16:00:44.0150 0x00d8  nfrd960 - ok
16:00:44.0166 0x00d8  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:00:44.0181 0x00d8  NlaSvc - ok
16:00:44.0197 0x00d8  [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] npf             C:\Windows\system32\drivers\npf.sys
16:00:44.0212 0x00d8  npf - ok
16:00:44.0212 0x00d8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:00:44.0244 0x00d8  Npfs - ok
16:00:44.0259 0x00d8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
16:00:44.0290 0x00d8  nsi - ok
16:00:44.0311 0x00d8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:00:44.0327 0x00d8  nsiproxy - ok
16:00:44.0405 0x00d8  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:00:44.0436 0x00d8  Ntfs - ok
16:00:44.0451 0x00d8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
16:00:44.0467 0x00d8  Null - ok
16:00:44.0483 0x00d8  [ 158AD24745BD85BA9BE3C51C38F48C32, B053A3B5A5CAE2CBC47E2C19E636AD70F376334EFFBB391A76562E67CBF3AC86 ] nusb3hub        C:\Windows\system32\DRIVERS\nusb3hub.sys
16:00:44.0498 0x00d8  nusb3hub - ok
16:00:44.0514 0x00d8  [ D40A13B2C0891E218F9523B376955DB6, 9A2AAAF960868B860A65579EAD507B35C64CFD6C3581F8D731ADF975F778D10E ] nusb3xhc        C:\Windows\system32\DRIVERS\nusb3xhc.sys
16:00:44.0529 0x00d8  nusb3xhc - ok
16:00:44.0545 0x00d8  [ 1F07B814C0BB5AABA703ABFF1F31F2E8, 07F578686CAE0FAB5462B472A03DD1BC5DFE0D5DA6307895534CECC330C3D220 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
16:00:44.0561 0x00d8  NVHDA - ok
16:00:44.0810 0x00d8  [ FCBA1C22727939E7CFF9EB08FE9692AB, 081FBF38EA17746C5CF2260AD32B62385D4A075476E30CBB9A2AA080F8AA0CA4 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:00:45.0013 0x00d8  nvlddmkm - ok
16:00:45.0013 0x00d8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:00:45.0029 0x00d8  nvraid - ok
16:00:45.0060 0x00d8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:00:45.0060 0x00d8  nvstor - ok
16:00:45.0107 0x00d8  [ 10C232F6CFFD51D2332898AE7AE0FF23, 92E5452D8467852C22D702ACAFB5DBFD312A8F72A4353B8D0A9C18AEFCE4B2B2 ] nvsvc           C:\Windows\system32\nvvsvc.exe
16:00:45.0138 0x00d8  nvsvc - ok
16:00:45.0169 0x00d8  [ 4789E020D2617046862D1790FC235FF6, FCFD56DF2CADA830E7B2D4B91D5A9D2FE783B1396CBA124000765168FA5B6574 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
16:00:45.0216 0x00d8  nvUpdatusService - ok
16:00:45.0231 0x00d8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:00:45.0231 0x00d8  nv_agp - ok
16:00:45.0247 0x00d8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:00:45.0263 0x00d8  ohci1394 - ok
16:00:45.0278 0x00d8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:00:45.0294 0x00d8  p2pimsvc - ok
16:00:45.0325 0x00d8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
16:00:45.0341 0x00d8  p2psvc - ok
16:00:45.0356 0x00d8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
16:00:45.0356 0x00d8  Parport - ok
16:00:45.0372 0x00d8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:00:45.0387 0x00d8  partmgr - ok
16:00:45.0403 0x00d8  [ 7C0582921913D00180EC2B8518BA135C, E44FA5FF498CC5C7E7CE120A6C5E1AAE206A450963335379FBE67C6B9E6F64B2 ] pbfilter        C:\Program Files\PeerBlock\pbfilter.sys
16:00:45.0419 0x00d8  pbfilter - ok
16:00:45.0419 0x00d8  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:00:45.0450 0x00d8  PcaSvc - ok
16:00:45.0450 0x00d8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
16:00:45.0465 0x00d8  pci - ok
16:00:45.0481 0x00d8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:00:45.0497 0x00d8  pciide - ok
16:00:45.0512 0x00d8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
16:00:45.0512 0x00d8  pcmcia - ok
16:00:45.0528 0x00d8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:00:45.0528 0x00d8  pcw - ok
16:00:45.0559 0x00d8  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:00:45.0590 0x00d8  PEAUTH - ok
16:00:45.0637 0x00d8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:00:45.0653 0x00d8  PerfHost - ok
16:00:45.0715 0x00d8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
16:00:45.0777 0x00d8  pla - ok
16:00:45.0793 0x00d8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:00:45.0809 0x00d8  PlugPlay - ok
16:00:45.0824 0x00d8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:00:45.0824 0x00d8  PNRPAutoReg - ok
16:00:45.0855 0x00d8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:00:45.0871 0x00d8  PNRPsvc - ok
16:00:45.0902 0x00d8  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:00:45.0933 0x00d8  PolicyAgent - ok
16:00:45.0949 0x00d8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
16:00:45.0980 0x00d8  Power - ok
16:00:45.0996 0x00d8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:00:46.0027 0x00d8  PptpMiniport - ok
16:00:46.0027 0x00d8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
16:00:46.0027 0x00d8  Processor - ok
16:00:46.0058 0x00d8  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:00:46.0074 0x00d8  ProfSvc - ok
16:00:46.0089 0x00d8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
16:00:46.0089 0x00d8  ProtectedStorage - ok
16:00:46.0105 0x00d8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:00:46.0136 0x00d8  Psched - ok
16:00:46.0167 0x00d8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
16:00:46.0199 0x00d8  ql2300 - ok
16:00:46.0214 0x00d8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
16:00:46.0230 0x00d8  ql40xx - ok
16:00:46.0245 0x00d8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
16:00:46.0261 0x00d8  QWAVE - ok
16:00:46.0277 0x00d8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:00:46.0292 0x00d8  QWAVEdrv - ok
16:00:46.0292 0x00d8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:00:46.0328 0x00d8  RasAcd - ok
16:00:46.0344 0x00d8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:00:46.0360 0x00d8  RasAgileVpn - ok
16:00:46.0375 0x00d8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
16:00:46.0406 0x00d8  RasAuto - ok
16:00:46.0422 0x00d8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:00:46.0438 0x00d8  Rasl2tp - ok
16:00:46.0453 0x00d8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
16:00:46.0484 0x00d8  RasMan - ok
16:00:46.0500 0x00d8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:00:46.0531 0x00d8  RasPppoe - ok
16:00:46.0531 0x00d8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:00:46.0562 0x00d8  RasSstp - ok
16:00:46.0578 0x00d8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:00:46.0609 0x00d8  rdbss - ok
16:00:46.0609 0x00d8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:00:46.0625 0x00d8  rdpbus - ok
16:00:46.0640 0x00d8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:00:46.0656 0x00d8  RDPCDD - ok
16:00:46.0672 0x00d8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:00:46.0703 0x00d8  RDPENCDD - ok
16:00:46.0703 0x00d8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:00:46.0734 0x00d8  RDPREFMP - ok
16:00:46.0750 0x00d8  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:00:46.0765 0x00d8  RdpVideoMiniport - ok
16:00:46.0781 0x00d8  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:00:46.0796 0x00d8  RDPWD - ok
16:00:46.0812 0x00d8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:00:46.0828 0x00d8  rdyboost - ok
16:00:46.0843 0x00d8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:00:46.0859 0x00d8  RemoteAccess - ok
16:00:46.0874 0x00d8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:00:46.0906 0x00d8  RemoteRegistry - ok
16:00:46.0906 0x00d8  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\Windows\system32\DRIVERS\revoflt.sys
16:00:46.0921 0x00d8  Revoflt - ok
16:00:46.0921 0x00d8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:00:46.0952 0x00d8  RpcEptMapper - ok
16:00:46.0952 0x00d8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
16:00:46.0968 0x00d8  RpcLocator - ok
16:00:46.0999 0x00d8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
16:00:47.0030 0x00d8  RpcSs - ok
16:00:47.0046 0x00d8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:00:47.0077 0x00d8  rspndr - ok
16:00:47.0093 0x00d8  [ AFC12DFA4C7B089673AD67402CA19EDB, 9CA430E8DFAE9B7A245FCD766CB60245418C80CEBCD2E9FACA9DE62E3E60ADDF ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
16:00:47.0108 0x00d8  RTL8167 - ok
16:00:47.0124 0x00d8  [ E16B7C030A05EF649B18FAB0A93D871F, 0F532D534A93D71650E2F7AF677419A6B38CE3142C98983565F1D759E544A4ED ] RtNdPt60        C:\Windows\system32\DRIVERS\RtNdPt60.sys
16:00:47.0124 0x00d8  RtNdPt60 - ok
16:00:47.0140 0x00d8  [ 66B7587714BC9BD850D0A49041B90CA0, 48FCA14E6D4851BFA7C84536771F409CAD2EE7F5DE5F9EC01901B5A12E27BBA9 ] RTTEAMPT        C:\Windows\system32\DRIVERS\RtTeam620.sys
16:00:47.0155 0x00d8  RTTEAMPT - ok
16:00:47.0155 0x00d8  [ C74798D1A2743C102154BD7871D92833, 521A4C9D8E614F2C12E4435FFC8703F7AFA98B0A0DC64F6615ECB4FE62F422EC ] RTVLANPT        C:\Windows\system32\DRIVERS\RtVlan620.sys
16:00:47.0171 0x00d8  RTVLANPT - ok
16:00:47.0202 0x00d8  [ 6A28F5BB0F3CD035D12D8C105EA6ED3E, 81F7A56DA2544E8786970564026B1BEEAA72926E12FF02706D1788414D3C3909 ] SafeBox         C:\Program Files\Bitdefender\Bitdefender SafeBox\safeboxservice.exe
16:00:47.0218 0x00d8  SafeBox - ok
16:00:47.0218 0x00d8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
16:00:47.0233 0x00d8  SamSs - ok
16:00:47.0249 0x00d8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:00:47.0264 0x00d8  sbp2port - ok
16:00:47.0280 0x00d8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:00:47.0311 0x00d8  SCardSvr - ok
16:00:47.0311 0x00d8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:00:47.0342 0x00d8  scfilter - ok
16:00:47.0374 0x00d8  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
16:00:47.0420 0x00d8  Schedule - ok
16:00:47.0452 0x00d8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:00:47.0467 0x00d8  SCPolicySvc - ok
16:00:47.0483 0x00d8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:00:47.0498 0x00d8  SDRSVC - ok
16:00:47.0514 0x00d8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:00:47.0530 0x00d8  secdrv - ok
16:00:47.0545 0x00d8  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
16:00:47.0561 0x00d8  seclogon - ok
16:00:47.0576 0x00d8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
16:00:47.0608 0x00d8  SENS - ok
16:00:47.0608 0x00d8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:00:47.0623 0x00d8  SensrSvc - ok
16:00:47.0639 0x00d8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
16:00:47.0639 0x00d8  Serenum - ok
16:00:47.0654 0x00d8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
16:00:47.0670 0x00d8  Serial - ok
16:00:47.0686 0x00d8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
16:00:47.0686 0x00d8  sermouse - ok
16:00:47.0717 0x00d8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
16:00:47.0748 0x00d8  SessionEnv - ok
16:00:47.0764 0x00d8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:00:47.0779 0x00d8  sffdisk - ok
16:00:47.0779 0x00d8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:00:47.0795 0x00d8  sffp_mmc - ok
16:00:47.0795 0x00d8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:00:47.0810 0x00d8  sffp_sd - ok
16:00:47.0810 0x00d8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
16:00:47.0826 0x00d8  sfloppy - ok
16:00:47.0857 0x00d8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:00:47.0888 0x00d8  SharedAccess - ok
16:00:47.0904 0x00d8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:00:47.0935 0x00d8  ShellHWDetection - ok
16:00:47.0951 0x00d8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
16:00:47.0951 0x00d8  SiSRaid2 - ok
16:00:47.0966 0x00d8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
16:00:47.0982 0x00d8  SiSRaid4 - ok
16:00:48.0107 0x00d8  [ 753D254205E0A62100A050BD8B458D06, DFDFCC6FAE853C690DB11EC44E5C105C6B6A0302AFC92ADC62260E727E1987C1 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
16:00:48.0169 0x00d8  Skype C2C Service - ok
16:00:48.0200 0x00d8  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
16:00:48.0247 0x00d8  SkypeUpdate - ok
16:00:48.0263 0x00d8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:00:48.0294 0x00d8  Smb - ok
16:00:48.0325 0x00d8  [ FDB6E127DF739D4911319F0C8D339CAF, 8A61851C07F686838BD0816683620B5856D3F698E5F1AEC5ECD75F69817287B1 ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
16:00:48.0330 0x00d8  snapman - ok
16:00:48.0346 0x00d8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:00:48.0346 0x00d8  SNMPTRAP - ok
16:00:48.0361 0x00d8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:00:48.0361 0x00d8  spldr - ok
16:00:48.0393 0x00d8  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
16:00:48.0424 0x00d8  Spooler - ok
16:00:48.0517 0x00d8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
16:00:48.0595 0x00d8  sppsvc - ok
16:00:48.0611 0x00d8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:00:48.0627 0x00d8  sppuinotify - ok
16:00:48.0658 0x00d8  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:00:48.0673 0x00d8  srv - ok
16:00:48.0689 0x00d8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:00:48.0705 0x00d8  srv2 - ok
16:00:48.0720 0x00d8  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:00:48.0736 0x00d8  srvnet - ok
16:00:48.0751 0x00d8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:00:48.0783 0x00d8  SSDPSRV - ok
16:00:48.0783 0x00d8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:00:48.0814 0x00d8  SstpSvc - ok
16:00:48.0861 0x00d8  [ 5A19667A580B1CE886EAF968B9743F45, 0A9EBE4057A0A6EF4732623794C2416A6BD8B87356DA46652BD92762505F57C7 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
16:00:48.0907 0x00d8  Stereo Service - ok
16:00:48.0907 0x00d8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
16:00:48.0923 0x00d8  stexstor - ok
16:00:48.0954 0x00d8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
16:00:48.0970 0x00d8  stisvc - ok
16:00:49.0001 0x00d8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
16:00:49.0017 0x00d8  swenum - ok
16:00:49.0032 0x00d8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
16:00:49.0063 0x00d8  swprv - ok
16:00:49.0266 0x00d8  [ 1D8C612D6589430AD8F981F615B7C528, 525CF53B7C45C8A28A355C6EFBD58DBC5DDD49A7AF30A67CF174A73AE474DF2A ] syncagentsrv    C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
16:00:49.0391 0x00d8  syncagentsrv - ok
16:00:49.0453 0x00d8  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
16:00:49.0500 0x00d8  SysMain - ok
16:00:49.0516 0x00d8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:00:49.0531 0x00d8  TabletInputService - ok
16:00:49.0547 0x00d8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:00:49.0578 0x00d8  TapiSrv - ok
16:00:49.0594 0x00d8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
16:00:49.0609 0x00d8  TBS - ok
16:00:49.0687 0x00d8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:00:49.0734 0x00d8  Tcpip - ok
16:00:49.0781 0x00d8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:00:49.0828 0x00d8  TCPIP6 - ok
16:00:49.0843 0x00d8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:00:49.0859 0x00d8  tcpipreg - ok
16:00:49.0859 0x00d8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:00:49.0875 0x00d8  TDPIPE - ok
16:00:49.0906 0x00d8  [ 843DAFC2CD4ED5D57FA40FD2000C6296, 857749DCC061EDB423D1A5CB2DB394EE944FCBF3D729B52263F76D95F8AF3195 ] tdrpman         C:\Windows\system32\DRIVERS\tdrpman.sys
16:00:49.0937 0x00d8  tdrpman - ok
16:00:49.0953 0x00d8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:00:49.0968 0x00d8  TDTCP - ok
16:00:49.0984 0x00d8  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:00:50.0015 0x00d8  tdx - ok
16:00:50.0015 0x00d8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
16:00:50.0031 0x00d8  TermDD - ok
16:00:50.0062 0x00d8  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
16:00:50.0109 0x00d8  TermService - ok
16:00:50.0109 0x00d8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
16:00:50.0124 0x00d8  Themes - ok
16:00:50.0155 0x00d8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
16:00:50.0171 0x00d8  THREADORDER - ok
16:00:50.0202 0x00d8  [ 31C9790525705B292F3B30F6676873CD, 6D7DF2DB38DD0A32D0DB1031AFE65AA1FCA21C53FBBE292670A0E9806CE096EA ] tib_mounter     C:\Windows\system32\DRIVERS\tib_mounter.sys
16:00:50.0233 0x00d8  tib_mounter - ok
16:00:50.0280 0x00d8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
16:00:50.0296 0x00d8  TrkWks - ok
16:00:50.0332 0x00d8  [ 325A512F98BEB97B1FFBE88927B8090D, 2A0C10516E3506D63290345DFAC98D5A623584767E034EBF652B9DBE6CF70547 ] trufos          C:\Windows\system32\DRIVERS\trufos.sys
16:00:50.0348 0x00d8  trufos - ok
16:00:50.0379 0x00d8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:00:50.0441 0x00d8  TrustedInstaller - ok
16:00:50.0472 0x00d8  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:00:50.0488 0x00d8  tssecsrv - ok
16:00:50.0504 0x00d8  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:00:50.0535 0x00d8  TsUsbFlt - ok
16:00:50.0550 0x00d8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:00:50.0582 0x00d8  tunnel - ok
16:00:50.0597 0x00d8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
16:00:50.0613 0x00d8  uagp35 - ok
16:00:50.0628 0x00d8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:00:50.0644 0x00d8  udfs - ok
16:00:50.0675 0x00d8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:00:50.0675 0x00d8  UI0Detect - ok
16:00:50.0691 0x00d8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:00:50.0706 0x00d8  uliagpkx - ok
16:00:50.0722 0x00d8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:00:50.0722 0x00d8  umbus - ok
16:00:50.0738 0x00d8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
16:00:50.0753 0x00d8  UmPass - ok
16:00:50.0784 0x00d8  [ 745B247DFB4C2466B382AE4B2062EB02, A391BFC9A2AD02D2A23112F16FF3CE8E291CAAA93F7C91FB2B2C1A8E1853DA5F ] UPDATESRV       C:\Program Files\Bitdefender\Bitdefender 2013\updatesrv.exe
16:00:50.0784 0x00d8  UPDATESRV - ok
16:00:50.0800 0x00d8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
16:00:50.0831 0x00d8  upnphost - ok
16:00:50.0847 0x00d8  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
16:00:50.0862 0x00d8  USBAAPL64 - ok
16:00:50.0878 0x00d8  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
16:00:50.0894 0x00d8  usbaudio - ok
16:00:50.0909 0x00d8  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:00:50.0925 0x00d8  usbccgp - ok
16:00:50.0940 0x00d8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:00:50.0940 0x00d8  usbcir - ok
16:00:50.0956 0x00d8  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:00:50.0972 0x00d8  usbehci - ok
16:00:50.0987 0x00d8  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:00:51.0003 0x00d8  usbhub - ok
16:00:51.0003 0x00d8  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:00:51.0018 0x00d8  usbohci - ok
16:00:51.0034 0x00d8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:00:51.0034 0x00d8  usbprint - ok
16:00:51.0050 0x00d8  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
16:00:51.0065 0x00d8  usbscan - ok
16:00:51.0081 0x00d8  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:00:51.0096 0x00d8  USBSTOR - ok
16:00:51.0112 0x00d8  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
16:00:51.0112 0x00d8  usbuhci - ok
16:00:51.0128 0x00d8  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
16:00:51.0143 0x00d8  usbvideo - ok
16:00:51.0159 0x00d8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
16:00:51.0174 0x00d8  UxSms - ok
16:00:51.0206 0x00d8  [ AA1E010E07E49AC7F3AEC8063AE1AFF8, 42C93D4D9952B38A5C55582FFBDCB04B24FB563353988D8F2AAAAC66E6B39431 ] V0720Vid        C:\Windows\system32\DRIVERS\V0720Vid.sys
16:00:51.0221 0x00d8  V0720Vid - ok
16:00:51.0237 0x00d8  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
16:00:51.0252 0x00d8  VaultSvc - ok
16:00:51.0252 0x00d8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:00:51.0268 0x00d8  vdrvroot - ok
16:00:51.0284 0x00d8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
16:00:51.0315 0x00d8  vds - ok
16:00:51.0330 0x00d8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:00:51.0346 0x00d8  vga - ok
16:00:51.0346 0x00d8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:00:51.0377 0x00d8  VgaSave - ok
16:00:51.0393 0x00d8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:00:51.0408 0x00d8  vhdmp - ok
16:00:51.0408 0x00d8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:00:51.0424 0x00d8  viaide - ok
16:00:51.0455 0x00d8  [ 927CBC96C4635F235301411E530FB56E, 2A942C64CB2970DDA23C72EB14A9541460369E97AC68BC11DC12E9D6B2ACAAAD ] vididr          C:\Windows\system32\DRIVERS\vididr.sys
16:00:51.0455 0x00d8  vididr - ok
16:00:51.0471 0x00d8  [ 88B4E5C396003BCF479CA4D9BE851D57, 3F381C92AA53DAC38DAACB971D0013D64527F3C2002BEAEBF9C4A5ED18CC0294 ] vidsflt         C:\Windows\system32\DRIVERS\vidsflt.sys
16:00:51.0471 0x00d8  vidsflt - ok
16:00:51.0486 0x00d8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:00:51.0502 0x00d8  volmgr - ok
16:00:51.0518 0x00d8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:00:51.0533 0x00d8  volmgrx - ok
16:00:51.0549 0x00d8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:00:51.0564 0x00d8  volsnap - ok
16:00:51.0580 0x00d8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
16:00:51.0580 0x00d8  vsmraid - ok
16:00:51.0642 0x00d8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
16:00:51.0705 0x00d8  VSS - ok
16:00:51.0752 0x00d8  [ F16A970479C4747EC6E5DA793E4D63EC, B8FAFBF2EF19DCE3583EFD6D3F1FB5310DF548F9D9E7F9440F4A96638D28173A ] VSSERV          C:\Program Files\Bitdefender\Bitdefender 2013\vsserv.exe
16:00:51.0783 0x00d8  VSSERV - ok
16:00:51.0798 0x00d8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
16:00:51.0814 0x00d8  vwifibus - ok
16:00:51.0830 0x00d8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
16:00:51.0861 0x00d8  W32Time - ok
16:00:51.0861 0x00d8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
16:00:51.0876 0x00d8  WacomPen - ok
16:00:51.0892 0x00d8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:00:51.0908 0x00d8  WANARP - ok
16:00:51.0923 0x00d8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:00:51.0954 0x00d8  Wanarpv6 - ok
16:00:52.0001 0x00d8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
16:00:52.0032 0x00d8  WatAdminSvc - ok
16:00:52.0095 0x00d8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
16:00:52.0126 0x00d8  wbengine - ok
16:00:52.0142 0x00d8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:00:52.0157 0x00d8  WbioSrvc - ok
16:00:52.0188 0x00d8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:00:52.0204 0x00d8  wcncsvc - ok
16:00:52.0235 0x00d8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:00:52.0251 0x00d8  WcsPlugInService - ok
16:00:52.0251 0x00d8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
16:00:52.0266 0x00d8  Wd - ok
16:00:52.0336 0x00d8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:00:52.0367 0x00d8  Wdf01000 - ok
16:00:52.0383 0x00d8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:00:52.0399 0x00d8  WdiServiceHost - ok
16:00:52.0430 0x00d8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:00:52.0445 0x00d8  WdiSystemHost - ok
16:00:52.0492 0x00d8  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
16:00:52.0523 0x00d8  WebClient - ok
16:00:52.0586 0x00d8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:00:52.0633 0x00d8  Wecsvc - ok
16:00:52.0648 0x00d8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:00:52.0664 0x00d8  wercplsupport - ok
16:00:52.0679 0x00d8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:00:52.0711 0x00d8  WerSvc - ok
16:00:52.0711 0x00d8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:00:52.0742 0x00d8  WfpLwf - ok
16:00:52.0742 0x00d8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:00:52.0757 0x00d8  WIMMount - ok
16:00:52.0773 0x00d8  WinDefend - ok
16:00:52.0789 0x00d8  WinHttpAutoProxySvc - ok
16:00:52.0820 0x00d8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:00:52.0851 0x00d8  Winmgmt - ok
16:00:52.0898 0x00d8  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:00:52.0960 0x00d8  WinRM - ok
16:00:52.0991 0x00d8  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:00:52.0991 0x00d8  WinUsb - ok
16:00:53.0023 0x00d8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:00:53.0054 0x00d8  Wlansvc - ok
16:00:53.0147 0x00d8  [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
16:00:53.0194 0x00d8  wlidsvc - ok
16:00:53.0225 0x00d8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:00:53.0225 0x00d8  WmiAcpi - ok
16:00:53.0257 0x00d8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:00:53.0272 0x00d8  wmiApSrv - ok
16:00:53.0272 0x00d8  WMPNetworkSvc - ok
16:00:53.0288 0x00d8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:00:53.0303 0x00d8  WPCSvc - ok
16:00:53.0319 0x00d8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:00:53.0335 0x00d8  WPDBusEnum - ok
16:00:53.0350 0x00d8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:00:53.0381 0x00d8  ws2ifsl - ok
16:00:53.0381 0x00d8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
16:00:53.0397 0x00d8  wscsvc - ok
16:00:53.0397 0x00d8  WSearch - ok
16:00:53.0475 0x00d8  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:00:53.0522 0x00d8  wuauserv - ok
16:00:53.0537 0x00d8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:00:53.0537 0x00d8  WudfPf - ok
16:00:53.0553 0x00d8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:00:53.0569 0x00d8  WUDFRd - ok
16:00:53.0584 0x00d8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:00:53.0584 0x00d8  wudfsvc - ok
16:00:53.0615 0x00d8  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:00:53.0631 0x00d8  WwanSvc - ok
16:00:53.0647 0x00d8  ================ Scan global ===============================
16:00:53.0678 0x00d8  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
16:00:53.0709 0x00d8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:00:53.0725 0x00d8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:00:53.0756 0x00d8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:00:53.0771 0x00d8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
16:00:53.0787 0x00d8  [ Global ] - ok
16:00:53.0787 0x00d8  ================ Scan MBR ==================================
16:00:53.0803 0x00d8  [ F2634EFAB9E22A7870007C2453CEFE38 ] \Device\Harddisk0\DR0
16:00:53.0990 0x00d8  \Device\Harddisk0\DR0 - ok
16:00:53.0990 0x00d8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
16:00:54.0068 0x00d8  \Device\Harddisk1\DR1 - ok
16:00:54.0083 0x00d8  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk2\DR2
16:00:54.0193 0x00d8  \Device\Harddisk2\DR2 - ok
16:00:54.0193 0x00d8  ================ Scan VBR ==================================
16:00:54.0193 0x00d8  [ 95ED4289D09769BEFD3E56D87EF51364 ] \Device\Harddisk0\DR0\Partition1
16:00:54.0224 0x00d8  \Device\Harddisk0\DR0\Partition1 - ok
16:00:54.0224 0x00d8  [ 004BC6ED8EC6059D52BF3E1DA799E2BB ] \Device\Harddisk1\DR1\Partition1
16:00:54.0239 0x00d8  \Device\Harddisk1\DR1\Partition1 - ok
16:00:54.0239 0x00d8  [ 1A82C46F8A42ED7A2BD3B9E83ACD7FCC ] \Device\Harddisk2\DR2\Partition1
16:00:54.0255 0x00d8  \Device\Harddisk2\DR2\Partition1 - ok
16:00:54.0255 0x00d8  AV detected via SS2: Bitdefender Antivirus, C:\Program Files\Bitdefender\Bitdefender 2013\wscfix.exe ( 16.34.0.1909 ), 0x41000 ( enabled : updated )
16:00:54.0255 0x00d8  FW detected via SS2: Bitdefender Firewall, C:\Program Files\Bitdefender\Bitdefender 2013\wscfix.exe ( 16.34.0.1909 ), 0x41010 ( enabled )
16:00:55.0056 0x00d8  ============================================================
16:00:55.0056 0x00d8  Scan finished
16:00:55.0056 0x00d8  ============================================================
16:00:55.0056 0x10c8  Detected object count: 1
16:00:55.0056 0x10c8  Actual detected object count: 1
 



#9 Johnp12

Johnp12
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:58 PM

Posted 13 April 2014 - 02:28 AM

Ran as admin:

Results of screen317's Security Check version 0.99.81 
 Windows 7 Service Pack 1 x64 (UAC is enabled) 
 Internet Explorer 11 
``````````````Antivirus/Firewall Check:``````````````

Bitdefender Antivirus  
 Antivirus up to date!  
`````````Anti-malware/Other Utilities Check:`````````

 Java 7 Update 7 
 Java version out of Date!
 Google Chrome 33.0.1750.154 
 Google Chrome 34.0.1847.116 
````````Process Check: objlist.exe by Laurent````````
 
 Malwarebytes Anti-Malware mbamservice.exe 
 Malwarebytes Anti-Malware mbam.exe 
 Malwarebytes Anti-Malware mbamscheduler.exe  
 Bitdefender Bitdefender 2013 vsserv.exe 
 Bitdefender Bitdefender 2013 updatesrv.exe 
 Bitdefender Bitdefender 2013 bdagent.exe 
 iolo Common Lib ioloServiceManager.exe
 iolo System Mechanic Professional SystemGuardAlerter.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````

 



#10 nasdaq

nasdaq

  • Malware Response Team
  • 40,227 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:58 PM

Posted 13 April 2014 - 09:38 AM



Your version of Java is outdated and needs to be updated to take advantage of fixes that have eliminated security vulnerabilities.
Latest version is Java JRE 7u51.

You can manually check your present version and update as recommended.
https://www.java.com/en/download/installed.jsp

Be careful not to install malware posing as Java update!
Important read this blog.
http://blog.trendmicro.com/trendlabs-security-intelligence/malware-poses-as-an-update-for-java-0-day-fix/

Quoted from the page.
"In light of the recent events surrounding Java, users must seriously consider their use of Java. Do they really need it? If yes, make sure that users follow the steps we recommended and get the security update directly from the official oracle website." at:
http://www.oracle.com/technetwork/java/javase/downloads/index.html

How to disable Java in your browsers
http://www.infoworld.com/t/web-browsers/how-disable-java-in-your-browsers-210882


If present remove the old version(s) of Java using the Add/Remove Programs applet.

Java 7 Update 7

===

; Purpose: Repair some open command.
;
; Instructions: Copy and paste this text IN BOLD into a text editor such as Notepad.
;
; Save this text as Fix.reg. Make sure the "Save as type:" is "All Files (*.*)" and save it to your desktop.

Windows Registry Editor Version 5.00

[HKEY_CLASSES_ROOT\regfile\shell\open\command]
@="regedit.exe \"%1\""

[HKEY_CLASSES_ROOT\scrfile\shell\open\command]
@="\"%1\" /S"



; Double-click on Fix.reg. When it asks you to merge the information to the registry click Yes.

On a Vista or Windows 7 operating system, right click the Fix.reg and run as Administrator.

Delete the Fix.reg file when done.

===

Copy and paste in IE 11


Try this fix.
http://answers.microsoft.com/en-us/ie/forum/ie11-iewindows8_1/clipboard-access-in-ie-11/94ab3483-828a-4e55-974a-cb4cc98e94c7
===

Keep me posted.

#11 Johnp12

Johnp12
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:58 PM

Posted 15 April 2014 - 02:53 AM

Hi- did all that you said. Thanks for your help. ATM I've rolled it back to a previous back-up just for testing. There are three drivers here, and also on my current version that won't remove and are associated with malware\spyware (bad hashes) and I want to get them off. They are 1. pdfsfilter.sys 2.wscm64.dll 3.wscm32.dll
If you could help with these I decide what to do from here.



*this back-up version runs scandisk with no errors.
*The present system is overloaded with bootexe autoruns- this version has zero.
Can I just add also that I have a sandbox mode if that would help with driver uninstallation.
Thanks.

Edited by Johnp12, 15 April 2014 - 03:01 AM.


#12 nasdaq

nasdaq

  • Malware Response Team
  • 40,227 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:58 PM

Posted 15 April 2014 - 07:49 AM

Please run the Farbar Recovery Scan Tool on more time and post a fresh log.

If these file

They are 1. pdfsfilter.sys 2.wscm64.dll 3.wscm32.dll

are not showing in the log I need more information before delete anything related to them.

Please download SystemLook from one of the links below and save it to your Desktop.
Download Mirror #1
Download Mirror #2


If your operating system is 64 bit download this tool:
SystemLook_x64.exe
  • Double-click SystemLook.exe
  • to run it.
  • Copy and paste the content
  • of the following bold text into the main textfield:
    :filefind
    pdfsfilter.sys
    wscm64.dll
    wscm32.dll

  • Click the Look button to start the scan.
  • When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.
  • Note: The log can also be found on your Desktop entitled SystemLook.txt.


#13 Johnp12

Johnp12
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:01:58 PM

Posted 23 April 2014 - 08:15 AM

G'day. Sorry for the late reply I'll get around to this in the next couple of days.

Just to say I ran malwarebytes and picked up another. Is malware going crazy these days and is it normal to be picking it up like this when I only run this computer every now and then?

PUP.Optional Smartbar A c:\Windows\Installer\278dc7f.msi

Thanks.



#14 nasdaq

nasdaq

  • Malware Response Team
  • 40,227 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:58 PM

Posted 29 April 2014 - 07:37 AM

Are you still with me?

#15 nasdaq

nasdaq

  • Malware Response Team
  • 40,227 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:10:58 PM

Posted 05 May 2014 - 08:52 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days.

Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users