Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected with safesear.ch


  • This topic is locked This topic is locked
15 replies to this topic

#1 redglare

redglare

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:50 AM

Posted 21 May 2014 - 12:09 AM

My computer is infected with the browser hijacker - www.safesear.ch. All I know to do is to run the Malwarebytes Anti-Malware and SuperAntiSpyware programs. I know it requires more than this and need your help. I am running Windows 8. Please share with me how to remove this browser hijacker. Thanks, Redglare.



BC AdBot (Login to Remove)

 


m

#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:50 AM

Posted 21 May 2014 - 03:25 AM

Hello -

Please try this - Dowmload all programs to desktop, Temporarily Disable Your Anti-virus if needed, and Copy and Paste all logs

 

Note : when you install VPlay, and a few other programs, you will also agree to change your browser homepage and the default search engine to SafeSearch.net.

 

 

First -

Please download and run RKill by Grinler.
A black DOS box will briefly flash and then disappear.
This is normal and indicates the tool ran successfully.

Post the small log back here

 

Next -

Download download AdwCleaner to your desktop.
* Important! Before starting AdCleaner, close all open programs and internet browsers.
* Double click on adwcleaner.exe to run the tool.
* * Vista / Windows 7 / 8 Right click on the icon and select Run as Administrator
* Click on Search (only once) to look for any adware programs installed
* If you are happy to remove the listed programs, then continue
* Click on Delete, then confirm each time with Ok.
* Your desktop icons will be disappear, this is normal so don’t be worry about that.
* Your computer will be rebooted automatically.
* A notepad text file will open after the restart.

 

Next -
Update and Re-Run your Malwarebytes Anti-Malware program, and post the log back here.



#3 redglare

redglare
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:50 AM

Posted 21 May 2014 - 10:08 PM

  1. Below are the logs. Thanks for your help.
  2. Rkill 2.6.2 by Lawrence Abrams (Grinler)
    http://www.bleepingcomputer.com/
    Copyright 2008-2014 BleepingComputer.com
    More Information about Rkill can be found at this link:
     http://www.bleepingcomputer.com/forums/topic308364.html

    Program started at: 05/21/2014 09:20:15 PM in x64 mode.
    Windows Version: Windows 8.1

    Checking for Windows services to stop:

     * No malware services found to stop.

    Checking for processes to terminate:

     * C:\Windows\jmesoft\hotkey.exe (PID: 6672) [WD-HEUR]
     * C:\Windows\jmesoft\ServiceLoader.exe (PID: 6272) [WD-HEUR]

    2 proccesses terminated!

    Checking Registry for malware related settings:

     * No issues found in the Registry.

    Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

    Performing miscellaneous checks:

     * Windows Defender Disabled

       [HKLM\SOFTWARE\Microsoft\Windows Defender]
       "DisableAntiSpyware" = dword:00000001

     * Windows Firewall Disabled

       [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
       "EnableFirewall" = dword:00000000

    Checking Windows Service Integrity:

     * AllUserInstallAgent [Missing Service]
     * SDRSVC [Missing Service]
     * adp94xx [Missing Service]
     * adpahci [Missing Service]
     * adpu320 [Missing Service]
     * arc [Missing Service]
     * AsyncMac [Missing Service]
     * discache [Missing Service]
     * iirsp [Missing Service]
     * LSI_SCSI [Missing Service]
     * nfrd960 [Missing Service]
     * PptpMiniport [Missing Service]
     * RasAgileVpn [Missing Service]
     * Rasl2tp [Missing Service]
     * RasSstp [Missing Service]
     * Wanarp [Missing Service]
     * Wanarpv6 [Missing Service]
     * Wd [Missing Service]
     * AppMgmt [Missing Service]
     * CSC [Missing Service]
     * CscService [Missing Service]
     * PeerDistSvc [Missing Service]

     * SystemEventsBroker => %SystemRoot%\system32\svchost.exe -k DcomLaunch [Incorrect ImagePath]
     * WSService => %SystemRoot%\System32\svchost.exe -k wsappx [Incorrect ImagePath]

    Searching for Missing Digital Signatures:

     * No issues found.

    Checking HOSTS File:

     * No issues found.

    Program finished at: 05/21/2014 09:20:54 PM
    Execution time: 0 hours(s), 0 minute(s), and 38 seconds(s)

  3. # AdwCleaner v3.210 - Report created 21/05/2014 at 21:25:10
    # Updated 19/05/2014 by Xplode
    # Operating System : Windows 8.1  (64 bits)
    # Username : HAL 2000 - LENOVO-PC
    # Running from : C:\Users\HAL 2000\Downloads\adwcleaner_3.210.exe
    # Option : Clean

    ***** [ Services ] *****

    [#] Service Deleted : vToolbarUpdater18.0.5

    ***** [ Files / Folders ] *****

    Folder Deleted : C:\Program Files (x86)\SearchProtect
    Folder Deleted : C:\Users\HAL 2000\AppData\Local\SearchProtect
    Folder Deleted : C:\Users\HAL 2000\AppData\Roaming\Activeris
    Folder Deleted : C:\Users\HAL 2000\AppData\Roaming\key-find
    Folder Deleted : C:\Users\Public\Pokki
    Folder Deleted : C:\Users\HAL 2000\AppData\Roaming\Mozilla\Firefox\Profiles\kaw167kg.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
    File Deleted : C:\Users\HAL 2000\AppData\Roaming\Microsoft\Windows\Start Menu\Facebook.lnk
    File Deleted : C:\Users\HAL 2000\AppData\Roaming\Microsoft\Windows\Start Menu\Youtube.lnk
    File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\safesearch.xml
    File Deleted : C:\windows\Tasks\PCHelpers_period.job
    File Deleted : C:\windows\System32\Tasks\PCHelpers_period
    File Deleted : C:\windows\Tasks\PCHelpers1st.job
    File Deleted : C:\windows\System32\Tasks\PCHelpers1st

    ***** [ Shortcuts ] *****

    ***** [ Registry ] *****

    Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{635abd67-4fe9-1b23-4f01-e679fa7484c1}]
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ActiverisAntiMalware_RASAPI32
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ActiverisAntiMalware_RASMANCS
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Websteroids_RASAPI32
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\Websteroids_RASMANCS
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebsteroidsService_RASAPI32
    Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebsteroidsService_RASMANCS
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
    Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}
    Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{E5A7A645-8318-4895-B85C-EDC606B80DB6}
    Key Deleted : HKLM\Software\Trymedia Systems

    ***** [ Browsers ] *****

    -\\ Internet Explorer v11.0.9600.17037

    Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
    Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
    Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
    Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
    Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

    -\\ Mozilla Firefox v30.0 (en-US)

    [ File : C:\Users\HAL 2000\AppData\Roaming\Mozilla\Firefox\Profiles\kaw167kg.default\prefs.js ]

    Line Deleted : user_pref("{21EAF666-26B3-4a3c-ABD0-CA2F5A326744}.ScriptData_VBATES_partn_time_www.key-find.com", "not set");

    *************************

    AdwCleaner[R0].txt - [11029 octets] - [29/03/2014 23:10:25]
    AdwCleaner[R1].txt - [4376 octets] - [21/05/2014 21:23:15]
    AdwCleaner[S0].txt - [10723 octets] - [29/03/2014 23:14:36]
    AdwCleaner[S1].txt - [3607 octets] - [21/05/2014 21:25:10]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [3667 octets] ##########

  4. Malwarebytes Anti-Malware 1.75.0.1300
    www.malwarebytes.org

    Database version: v2014.05.20.11

    Windows 8 x64 NTFS
    Internet Explorer 11.0.9600.17107
    HAL 2000 :: LENOVO-PC [administrator]

    5/21/2014 9:28:21 PM
    mbam-log-2014-05-21 (21-28-21).txt

    Scan type: Quick scan
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 283013
    Time elapsed: 11 minute(s), 40 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 0
    (No malicious items detected)

    (end)



#4 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:50 AM

Posted 22 May 2014 - 05:37 PM

The result from Rkill seemed to be very odd so I asked Lawrence Abrams (Grinler) for any ideas on the problem.

You seem to have too many "Missing Service" items listed, and they would like to help you .....

The reply I had is below (and is also listed in the Antivirus area of the forum) ...... Can you follow this advice ??
 

 

Not sure..doesnt looks right for sure. Will need to see their services export.

Have them download and run http://download.bleepingcomputer.com/bats/getserv.bat and submit the %temp%\bcserv.txt to http://www.bleepingcomputer.com/submit-malware.php?channel=3 .......

 

This is a secure link for checking problems / infections etc ...



#5 redglare

redglare
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:50 AM

Posted 22 May 2014 - 07:41 PM

I downloaded getserv onto my computer. When I open it, a black window with "C:\windows\system\cmd.exe" across the top opens for several seconds then closes without running.

 

 

 

 



#6 redglare

redglare
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:50 AM

Posted 22 May 2014 - 07:44 PM

I downloaded getserv onto my computer. When I open it, a black window appears with "C:\windows\system\cmd.exe" across the top opens for several seconds then closes without running.



#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:50 AM

Posted 22 May 2014 - 07:57 PM

Below is where I posted the question, could you please reply
http://www.bleepingcomputer.com/forums/t/308364/rkill-what-it-does-and-what-it-doesnt-a-brief-introduction-to-the-program/page-54#entry3375608

 

Include ....... "" I attempted your reply, and this was the result ""
Please post the result to the link above, and include this link to your topic ........
http://www.bleepingcomputer.com/forums/t/535028/infected-with-safesearch/#entry3375181



#8 redglare

redglare
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:50 AM

Posted 22 May 2014 - 10:39 PM

Will do. Thank you.



#9 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:50 AM

Posted 30 May 2014 - 08:33 PM

Hi -

Sorry for the delay, but I was waiting for Grinler to add to his 1st reply.

 

* Download Malwarebytes Anti-Malware Free and save it to your desktop
* Double click the desktop icon, click Run, then OK
* Click Next
* Select I accept the agreement then continue to click Next then finally click Install
** Uncheck Enable free trial of Malwarebytes Anti-Malware Premium if you do not want the free trial of the paid version, then click Finish
* If you are notified the Database is out of date click Update Now
* Click Scan Now >>
----------
** Note: If Malwarebytes will not launch please do the following to launch Malwarebytes Chameleon:
* Click Start (Start, Search, All files and folders for Windows XP) then type mbam
* Double click one of the four following files (if one does not work try the next one, and so on) - A black command window will open. Follow those instructions until the Malwarebytes program starts the scan

mbam-chameleon.scr
mbam-chameleon
mbam-chameleon.exe
mbam-chameleon.com
----------
** When completed click the down arrow on Export Log and select Text file (*.txt)
* Save the file to your desktop as MBAM
* Click Apply Actions then restart your computer if requested
* Copy and past the contents of MBAM.txt in your reply

 

 

Next -

Download TDSSKiller in Zip form, and save it to your desktop.

* Extract (unzip) its contents to your desktop.
* Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
* If an infected file is detected, the default action will be Cure, click on Continue.
* If a suspicious file is detected, the default action will be Skip, click on Continue.
* It may ask you to reboot the computer to complete the process. Click on Reboot Now.
* If no reboot is require, click on Report. A log file should appear.

* Please copy and paste the contents of that file here.
* If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.



#10 redglare

redglare
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:50 AM

Posted 30 May 2014 - 09:33 PM

Thanks Noknojon, I look forward to getting rid of this virus!

 

Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Database version: v2014.05.30.11

Windows 8 x64 NTFS
Internet Explorer 11.0.9600.17107
HAL 2000 :: LENOVO-PC [administrator]

5/30/2014 9:02:40 PM
mbam-log-2014-05-30 (21-02-40).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 289220
Time elapsed: 11 minute(s), 29 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

 

 

TDSSKiller Report:

 

21:20:07.0298 0x0398  TDSS rootkit removing tool 3.0.0.37 May 30 2014 13:12:03
21:20:07.0298 0x0398  UEFI system
21:20:36.0993 0x0398  ============================================================
21:20:36.0993 0x0398  Current date / time: 2014/05/30 21:20:36.0993
21:20:36.0993 0x0398  SystemInfo:
21:20:36.0993 0x0398  
21:20:36.0993 0x0398  OS Version: 6.3.9600 ServicePack: 0.0
21:20:36.0993 0x0398  Product type: Workstation
21:20:36.0993 0x0398  ComputerName: LENOVO-PC
21:20:36.0993 0x0398  UserName: HAL 2000
21:20:36.0993 0x0398  Windows directory: C:\windows
21:20:36.0993 0x0398  System windows directory: C:\windows
21:20:36.0993 0x0398  Running under WOW64
21:20:36.0993 0x0398  Processor architecture: Intel x64
21:20:36.0993 0x0398  Number of processors: 4
21:20:36.0993 0x0398  Page size: 0x1000
21:20:36.0993 0x0398  Boot type: Normal boot
21:20:36.0993 0x0398  ============================================================
21:20:37.0212 0x0398  KLMD registered as C:\windows\system32\drivers\99129129.sys
21:20:37.0384 0x0398  System UUID: {904C569F-8019-486D-1A3A-E401F563204E}
21:20:48.0525 0x0398  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:20:48.0571 0x0398  ============================================================
21:20:48.0571 0x0398  \Device\Harddisk0\DR0:
21:20:48.0571 0x0398  GPT partitions:
21:20:48.0587 0x0398  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {0A4F08B5-BC62-438F-96B6-41DCC8D27817}, Name: , StartLBA 0x800, BlocksNum 0x1F4000
21:20:48.0587 0x0398  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {2D2C84B9-D9D9-43F3-9044-63861B8D9263}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000
21:20:48.0587 0x0398  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {BFBFAFE7-A34F-448A-9A5B-6213EB736C22}, UniqueGUID: {18E0951B-A84F-4971-A498-B50C0B81EFC4}, Name: , StartLBA 0x276800, BlocksNum 0xFA000
21:20:48.0587 0x0398  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {FDBCF887-0360-4F32-9B01-EF0B79F43B16}, Name: Microsoft reserved partition, StartLBA 0x370800, BlocksNum 0x40000
21:20:48.0587 0x0398  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {ECB28C00-8710-43EE-B3CF-7D5C41F77A88}, Name: Basic data partition, StartLBA 0x3B0800, BlocksNum 0x71282000
21:20:48.0587 0x0398  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {3A7764F6-1586-4668-A351-D94E0D7B8740}, Name: , StartLBA 0x71632800, BlocksNum 0x30D4000
21:20:48.0587 0x0398  MBR partitions:
21:20:48.0587 0x0398  ============================================================
21:20:48.0618 0x0398  C: <-> \Device\Harddisk0\DR0\Partition5
21:20:48.0618 0x0398  ============================================================
21:20:48.0618 0x0398  Initialize success
21:20:48.0618 0x0398  ============================================================
21:20:59.0340 0x0728  ============================================================
21:20:59.0340 0x0728  Scan started
21:20:59.0340 0x0728  Mode: Manual;
21:20:59.0340 0x0728  ============================================================
21:20:59.0340 0x0728  KSN ping started
21:21:01.0778 0x0728  KSN ping finished: true
21:21:02.0684 0x0728  ================ Scan system memory ========================
21:21:02.0684 0x0728  System memory - ok
21:21:02.0684 0x0728  ================ Scan services =============================
21:21:02.0762 0x0728  [ 620C92D6EEFA9853A3EAD41B5EB9B5FD, 72DD7297179AC6629B816DD9656D5EC3F02BE677EA01A05A5EB808180F0D775F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
21:21:02.0778 0x0728  !SASCORE - ok
21:21:02.0903 0x0728  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\windows\System32\drivers\1394ohci.sys
21:21:02.0919 0x0728  1394ohci - ok
21:21:02.0950 0x0728  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\windows\system32\drivers\3ware.sys
21:21:02.0950 0x0728  3ware - ok
21:21:03.0012 0x0728  [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI            C:\windows\system32\drivers\ACPI.sys
21:21:03.0059 0x0728  ACPI - ok
21:21:03.0075 0x0728  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\windows\system32\Drivers\acpiex.sys
21:21:03.0075 0x0728  acpiex - ok
21:21:03.0090 0x0728  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\windows\System32\drivers\acpipagr.sys
21:21:03.0090 0x0728  acpipagr - ok
21:21:03.0106 0x0728  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\windows\System32\drivers\acpipmi.sys
21:21:03.0106 0x0728  AcpiPmi - ok
21:21:03.0122 0x0728  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\windows\System32\drivers\acpitime.sys
21:21:03.0122 0x0728  acpitime - ok
21:21:03.0200 0x0728  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:21:03.0200 0x0728  AdobeARMservice - ok
21:21:03.0294 0x0728  [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:21:03.0309 0x0728  AdobeFlashPlayerUpdateSvc - ok
21:21:03.0356 0x0728  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\windows\system32\drivers\ADP80XX.SYS
21:21:03.0419 0x0728  ADP80XX - ok
21:21:03.0450 0x0728  [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
21:21:03.0465 0x0728  AeLookupSvc - ok
21:21:03.0512 0x0728  [ 239268BAB58EAE9A3FF4E08334C00451, 13F927730DF9BAEDB3A7AB6F7238270A20E4CDEB3D5324A1C471DF2209F3D239 ] AFD             C:\windows\system32\drivers\afd.sys
21:21:03.0544 0x0728  AFD - ok
21:21:03.0559 0x0728  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\windows\system32\drivers\agp440.sys
21:21:03.0575 0x0728  agp440 - ok
21:21:03.0575 0x0728  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\windows\system32\DRIVERS\ahcache.sys
21:21:03.0590 0x0728  ahcache - ok
21:21:03.0606 0x0728  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\windows\System32\alg.exe
21:21:03.0622 0x0728  ALG - ok
21:21:03.0653 0x0728  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\windows\System32\drivers\amdk8.sys
21:21:03.0653 0x0728  AmdK8 - ok
21:21:03.0700 0x0728  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\windows\System32\drivers\amdppm.sys
21:21:03.0700 0x0728  AmdPPM - ok
21:21:03.0715 0x0728  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\windows\system32\drivers\amdsata.sys
21:21:03.0715 0x0728  amdsata - ok
21:21:03.0747 0x0728  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
21:21:03.0747 0x0728  amdsbs - ok
21:21:03.0762 0x0728  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\windows\system32\drivers\amdxata.sys
21:21:03.0762 0x0728  amdxata - ok
21:21:03.0794 0x0728  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\windows\system32\drivers\appid.sys
21:21:03.0794 0x0728  AppID - ok
21:21:03.0809 0x0728  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\windows\System32\appidsvc.dll
21:21:03.0825 0x0728  AppIDSvc - ok
21:21:03.0856 0x0728  [ 8D6F535461F6CFF75A8ADDF83024C904, F2A97EC4A6284F28B685A3CE2D450F61E75EE8692D718A6AA352D5734BBBAD7B ] Appinfo         C:\windows\System32\appinfo.dll
21:21:03.0872 0x0728  Appinfo - ok
21:21:03.0919 0x0728  [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness    C:\windows\system32\AppReadiness.dll
21:21:03.0965 0x0728  AppReadiness - ok
21:21:04.0059 0x0728  [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc         C:\windows\system32\appxdeploymentserver.dll
21:21:04.0137 0x0728  AppXSvc - ok
21:21:04.0153 0x0728  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\windows\system32\drivers\arcsas.sys
21:21:04.0153 0x0728  arcsas - ok
21:21:04.0169 0x0728  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\windows\system32\drivers\atapi.sys
21:21:04.0169 0x0728  atapi - ok
21:21:04.0215 0x0728  [ F83D49F4B10E813A1F9AC8B92F16592D, E7B2F508D33861A9826F2C7B2087F14F6937C9B8F660D6363F737BAC60BD4578 ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
21:21:04.0231 0x0728  AudioEndpointBuilder - ok
21:21:04.0294 0x0728  [ 9A71BD2E4B8EB550D0022AFDF8616014, 34D595684624114F23265CE8031ADC9E03AD374A5AFEEBB794AC57796A3CDA2F ] Audiosrv        C:\windows\System32\Audiosrv.dll
21:21:04.0340 0x0728  Audiosrv - ok
21:21:04.0372 0x0728  [ EA2D28BBE98256654397CD1F6EAEBDD8, 97BBE5A2C9F2AE4675E6652AD79B1FCAEA76064FB37DBF238947ACA81D3017DF ] Autodesk Licensing Service C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe
21:21:04.0387 0x0728  Autodesk Licensing Service - ok
21:21:04.0403 0x0728  [ 4EB2E8EE8BA47B58E08B67139C31CB41, 196F759A2BC3E978C3FDB1E37E0D40D56D43CB0004D5333E787CD4727A46F06C ] Avgboota        C:\windows\system32\DRIVERS\avgboota.sys
21:21:04.0419 0x0728  Avgboota - ok
21:21:04.0465 0x0728  [ D89F8E4E025DAA0C39FF61AC0199E101, 0A80A572D93DBDE14CD5494EF3F866B44E9BC259D43EE23185E4FC227D08DE69 ] Avgdiska        C:\windows\system32\DRIVERS\avgdiska.sys
21:21:04.0465 0x0728  Avgdiska - ok
21:21:04.0715 0x0728  [ 561CE09C52F6E945ED4CE7E173D1F542, 25FB1B55E22D4DF3B03B6D395B6C4749C03B950139767FA095C24234BD962782 ] AVGIDSAgent     C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
21:21:04.0903 0x0728  AVGIDSAgent - ok
21:21:04.0950 0x0728  [ F9984B8432204D000E15DE0A40D6F9AD, EBF0AAAFC9793F1EDCF3502CAE265CC012A60FA2B5DAD35A66DAD19ACFE206FC ] AVGIDSDriver    C:\windows\system32\DRIVERS\avgidsdrivera.sys
21:21:04.0965 0x0728  AVGIDSDriver - ok
21:21:04.0997 0x0728  [ 73B684F26AD82BABC2A1B3E539ED027A, B164C0C395FF285ED31615E7DB5F43B31A2F1CB6156A68BB5F3802AFCA7B8887 ] AVGIDSHA        C:\windows\system32\DRIVERS\avgidsha.sys
21:21:05.0012 0x0728  AVGIDSHA - ok
21:21:05.0044 0x0728  [ 18A542A22A31DFFEA51666E75393E7A5, 7EFA508ECE7266446B2A5E12DB7461D328F2B47E2A70A8AA2C9D0E42898C71AC ] Avgldx64        C:\windows\system32\DRIVERS\avgldx64.sys
21:21:05.0059 0x0728  Avgldx64 - ok
21:21:05.0107 0x0728  [ EC0E347F6C95541504CCF1B85D74F91F, F0819BF489C8776696D9DD89AC9673717BAF957DFAA071DA3911560172C6D952 ] Avgloga         C:\windows\system32\DRIVERS\avgloga.sys
21:21:05.0123 0x0728  Avgloga - ok
21:21:05.0154 0x0728  [ ADC65C6074A994D91CA9C6339C3DC978, A736BF94E41B9B06E826E3F2BBA7B305990DF68CF17DA8F661AE952FB240DDE1 ] Avgmfx64        C:\windows\system32\DRIVERS\avgmfx64.sys
21:21:05.0170 0x0728  Avgmfx64 - ok
21:21:05.0186 0x0728  [ 7D206FA06603E95984EFF9822C9FC958, 11863D7A5A14C852594F90FD3A54E55CBE8C27075E640C9B222102AD9DA91F35 ] Avgrkx64        C:\windows\system32\DRIVERS\avgrkx64.sys
21:21:05.0186 0x0728  Avgrkx64 - ok
21:21:05.0217 0x0728  [ CFD0AABD50BF9BEDF550618E48CF7CB7, EAF2EAA3A7ED99A2870FCFB578A556190FA2977F2DC041C8EFA3AE13C05AC74B ] avgtp           C:\windows\system32\drivers\avgtpx64.sys
21:21:05.0217 0x0728  avgtp - ok
21:21:05.0248 0x0728  [ E5C581D358B62CF65776B8E4E17B9E5C, 955E4ECFD036330B139476CCCC7564B082C197D5E7577853E0C3D7B707EDB090 ] avgwd           C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
21:21:05.0264 0x0728  avgwd - ok
21:21:05.0295 0x0728  [ AE2B554B1A12A7737158B96E050C8A2E, CA406CFD98B8D898AFD66DF5D45E3E4594664C50CC9CE711BEB6C56D4B01EC2E ] Avgwfpa         C:\windows\system32\DRIVERS\avgwfpa.sys
21:21:05.0342 0x0728  Avgwfpa - ok
21:21:05.0358 0x0728  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\windows\System32\AxInstSV.dll
21:21:05.0373 0x0728  AxInstSV - ok
21:21:05.0420 0x0728  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
21:21:05.0451 0x0728  b06bdrv - ok
21:21:05.0467 0x0728  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\windows\System32\drivers\BasicDisplay.sys
21:21:05.0467 0x0728  BasicDisplay - ok
21:21:05.0514 0x0728  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\windows\System32\drivers\BasicRender.sys
21:21:05.0514 0x0728  BasicRender - ok
21:21:05.0529 0x0728  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\windows\System32\drivers\bcmfn2.sys
21:21:05.0529 0x0728  bcmfn2 - ok
21:21:05.0576 0x0728  [ 5BD3A2351BEFCAC8757626271F8EFA89, 6508673210129CF7EFCA93EC7874208FAD361E37814EB4FE9E0EC034E73D5F16 ] BDESVC          C:\windows\System32\bdesvc.dll
21:21:05.0608 0x0728  BDESVC - ok
21:21:05.0639 0x0728  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\windows\system32\drivers\Beep.sys
21:21:05.0639 0x0728  Beep - ok
21:21:05.0701 0x0728  [ BBE15881FE11BE37112F8320C41DAFB9, 5CE92563628812FF6E00556D8E2DAD6ADCAAF0F4C3B90123F1D98ED6E3BB6DAD ] BFE             C:\windows\System32\bfe.dll
21:21:05.0748 0x0728  BFE - ok
21:21:05.0842 0x0728  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\windows\System32\qmgr.dll
21:21:05.0904 0x0728  BITS - ok
21:21:05.0920 0x0728  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\windows\system32\DRIVERS\bowser.sys
21:21:05.0920 0x0728  bowser - ok
21:21:05.0967 0x0728  [ F2559A492AF8D653D1F47ADABA4C3E97, 77347915FB433023769699DFC9511F54E69C7FC7AB75F57FDC1A58E64A7126DE ] BrokerInfrastructure C:\windows\System32\bisrv.dll
21:21:05.0983 0x0728  BrokerInfrastructure - ok
21:21:06.0014 0x0728  [ D528D6A92D187777691993DD757AF19A, 2C79978310193431E5FC462368424A172858D5351C92D4815C2A7E35B5DDE50C ] Browser         C:\windows\System32\browser.dll
21:21:06.0014 0x0728  Browser - ok
21:21:06.0045 0x0728  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\windows\System32\drivers\BthAvrcpTg.sys
21:21:06.0045 0x0728  BthAvrcpTg - ok
21:21:06.0061 0x0728  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\windows\System32\drivers\bthhfenum.sys
21:21:06.0076 0x0728  BthHFEnum - ok
21:21:06.0076 0x0728  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\windows\System32\drivers\BthHFHid.sys
21:21:06.0092 0x0728  bthhfhid - ok
21:21:06.0108 0x0728  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\windows\System32\drivers\bthmodem.sys
21:21:06.0108 0x0728  BTHMODEM - ok
21:21:06.0123 0x0728  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\windows\system32\bthserv.dll
21:21:06.0123 0x0728  bthserv - ok
21:21:06.0154 0x0728  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
21:21:06.0154 0x0728  cdfs - ok
21:21:06.0170 0x0728  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\windows\System32\drivers\cdrom.sys
21:21:06.0186 0x0728  cdrom - ok
21:21:06.0201 0x0728  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\windows\System32\certprop.dll
21:21:06.0217 0x0728  CertPropSvc - ok
21:21:06.0233 0x0728  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\windows\System32\drivers\circlass.sys
21:21:06.0233 0x0728  circlass - ok
21:21:06.0264 0x0728  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\windows\system32\drivers\CLFS.sys
21:21:06.0311 0x0728  CLFS - ok
21:21:06.0483 0x0728  [ 3982DB7C5C4D72EFCFCAE268FD592790, 844B2F9A3FCB30A3FC46C8B303C87A6D053E6AF4CE18A00188D6FFC9442A8C34 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
21:21:06.0592 0x0728  ClickToRunSvc - ok
21:21:06.0639 0x0728  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\windows\System32\drivers\CmBatt.sys
21:21:06.0639 0x0728  CmBatt - ok
21:21:06.0670 0x0728  [ 4627C1FBF2802425A408A2D2AF28CF85, 8B91C1BE1104BE93C0D689A20315FD106D89A076267493319B104EE73A90CDCB ] CNG             C:\windows\system32\Drivers\cng.sys
21:21:06.0701 0x0728  CNG - ok
21:21:06.0733 0x0728  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\windows\System32\drivers\CompositeBus.sys
21:21:06.0733 0x0728  CompositeBus - ok
21:21:06.0748 0x0728  COMSysApp - ok
21:21:06.0764 0x0728  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\windows\system32\drivers\condrv.sys
21:21:06.0764 0x0728  condrv - ok
21:21:06.0795 0x0728  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\windows\system32\cryptsvc.dll
21:21:06.0795 0x0728  CryptSvc - ok
21:21:06.0811 0x0728  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\windows\system32\drivers\dam.sys
21:21:06.0811 0x0728  dam - ok
21:21:06.0873 0x0728  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch      C:\windows\system32\rpcss.dll
21:21:06.0920 0x0728  DcomLaunch - ok
21:21:06.0967 0x0728  [ 78089FCDE082FD4FA471C30A7C2DC736, C4816D7125C39290C3B0B1F580CEE8BB7FFC004F727EA9E9767671D3EDB946AE ] defragsvc       C:\windows\System32\defragsvc.dll
21:21:06.0998 0x0728  defragsvc - ok
21:21:07.0045 0x0728  [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\windows\system32\das.dll
21:21:07.0076 0x0728  DeviceAssociationService - ok
21:21:07.0108 0x0728  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall   C:\windows\system32\umpnpmgr.dll
21:21:07.0123 0x0728  DeviceInstall - ok
21:21:07.0154 0x0728  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\windows\system32\Drivers\dfsc.sys
21:21:07.0154 0x0728  Dfsc - ok
21:21:07.0201 0x0728  [ 8B107F55FD61654A6C9F1B819AEC5FC4, 773B1B9D3583F17B7C89BDE1EC4487ABB0AE039DF4583F8746460425443DA291 ] Dhcp            C:\windows\system32\dhcpcore.dll
21:21:07.0233 0x0728  Dhcp - ok
21:21:07.0248 0x0728  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\windows\system32\drivers\disk.sys
21:21:07.0264 0x0728  disk - ok
21:21:07.0280 0x0728  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\windows\System32\drivers\dmvsc.sys
21:21:07.0280 0x0728  dmvsc - ok
21:21:07.0311 0x0728  [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache        C:\windows\System32\dnsrslvr.dll
21:21:07.0326 0x0728  Dnscache - ok
21:21:07.0358 0x0728  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\windows\System32\dot3svc.dll
21:21:07.0389 0x0728  dot3svc - ok
21:21:07.0405 0x0728  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\windows\system32\dps.dll
21:21:07.0405 0x0728  DPS - ok
21:21:07.0436 0x0728  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
21:21:07.0436 0x0728  drmkaud - ok
21:21:07.0451 0x0728  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\windows\System32\DeviceSetupManager.dll
21:21:07.0467 0x0728  DsmSvc - ok
21:21:07.0576 0x0728  [ C7D252742946DD395670649742FBD73D, 333CC984CF318D36EA8C5867077A1732A214445EB6B7CF7AC2E8F1C8259CD9C7 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
21:21:07.0670 0x0728  DXGKrnl - ok
21:21:07.0733 0x0728  [ FA988D76745C917CDFE20031C06DE860, B01AA3611869854D3BCA8B6CD7A6F48CC3537145DD3EBE50F5BEF72239924BF7 ] e1iexpress      C:\windows\system32\DRIVERS\e1i63x64.sys
21:21:07.0795 0x0728  e1iexpress - ok
21:21:07.0826 0x0728  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\windows\System32\eapsvc.dll
21:21:07.0842 0x0728  Eaphost - ok
21:21:08.0045 0x0728  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\windows\system32\drivers\evbda.sys
21:21:08.0217 0x0728  ebdrv - ok
21:21:08.0264 0x0728  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\windows\System32\lsass.exe
21:21:08.0264 0x0728  EFS - ok
21:21:08.0280 0x0728  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\windows\system32\drivers\EhStorClass.sys
21:21:08.0280 0x0728  EhStorClass - ok
21:21:08.0311 0x0728  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\windows\system32\drivers\EhStorTcgDrv.sys
21:21:08.0311 0x0728  EhStorTcgDrv - ok
21:21:08.0326 0x0728  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\windows\System32\drivers\errdev.sys
21:21:08.0326 0x0728  ErrDev - ok
21:21:08.0389 0x0728  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\windows\system32\es.dll
21:21:08.0420 0x0728  EventSystem - ok
21:21:08.0436 0x0728  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\windows\system32\drivers\exfat.sys
21:21:08.0451 0x0728  exfat - ok
21:21:08.0467 0x0728  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\windows\system32\drivers\fastfat.sys
21:21:08.0483 0x0728  fastfat - ok
21:21:08.0530 0x0728  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\windows\system32\fxssvc.exe
21:21:08.0576 0x0728  Fax - ok
21:21:08.0608 0x0728  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\windows\System32\drivers\fdc.sys
21:21:08.0608 0x0728  fdc - ok
21:21:08.0623 0x0728  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\windows\system32\fdPHost.dll
21:21:08.0623 0x0728  fdPHost - ok
21:21:08.0623 0x0728  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\windows\system32\fdrespub.dll
21:21:08.0639 0x0728  FDResPub - ok
21:21:08.0655 0x0728  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\windows\system32\fhsvc.dll
21:21:08.0655 0x0728  fhsvc - ok
21:21:08.0686 0x0728  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
21:21:08.0701 0x0728  FileInfo - ok
21:21:08.0701 0x0728  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\windows\system32\drivers\filetrace.sys
21:21:08.0717 0x0728  Filetrace - ok
21:21:08.0733 0x0728  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\windows\System32\drivers\flpydisk.sys
21:21:08.0733 0x0728  flpydisk - ok
21:21:08.0780 0x0728  [ 46D1DF775FFF14585218BBE16E5B2C9A, F39EF615B18CEC7BA3F68C7639B636C06812AD9DBEDE90EB7B2C04C64396FC9E ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
21:21:08.0811 0x0728  FltMgr - ok
21:21:08.0905 0x0728  [ 183CA7699474FDE235853967D1DA4D9B, 8FBD5997F1E39AFFD8C4322520DF4D2227279B5149017D825C188D7411BA99AF ] FontCache       C:\windows\system32\FntCache.dll
21:21:08.0983 0x0728  FontCache - ok
21:21:09.0030 0x0728  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:21:09.0030 0x0728  FontCache3.0.0.0 - ok
21:21:09.0045 0x0728  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
21:21:09.0045 0x0728  FsDepends - ok
21:21:09.0061 0x0728  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
21:21:09.0061 0x0728  Fs_Rec - ok
21:21:09.0108 0x0728  [ B2BD017231836DA9F63F41E3A075D73E, 31B1DD677FE8B4F90B8AB5A131DA0105439AC2D91BC0CEDC972D2D87E595A686 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
21:21:09.0155 0x0728  fvevol - ok
21:21:09.0170 0x0728  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\windows\System32\drivers\fxppm.sys
21:21:09.0170 0x0728  FxPPM - ok
21:21:09.0186 0x0728  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
21:21:09.0186 0x0728  gagp30kx - ok
21:21:09.0217 0x0728  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\windows\System32\drivers\vmgencounter.sys
21:21:09.0217 0x0728  gencounter - ok
21:21:09.0248 0x0728  [ EF3AE7773394DF49CE74AF78A1C8D23D, CB12FF004C460A89F12AFF2467512B479A07CA10D4280CD4E624A5A9CDAB9C1B ] GPIOClx0101     C:\windows\system32\Drivers\msgpioclx.sys
21:21:09.0264 0x0728  GPIOClx0101 - ok
21:21:09.0358 0x0728  [ 58C11DCCC6241CC13861A559E31A69F0, 78B38BBC362C9209B06849CC79301EC595AFCE3E2BDE402A0B1F2725D3EDEFA3 ] gpsvc           C:\windows\System32\gpsvc.dll
21:21:09.0451 0x0728  gpsvc - ok
21:21:09.0483 0x0728  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:21:09.0498 0x0728  gupdate - ok
21:21:09.0514 0x0728  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
21:21:09.0514 0x0728  gupdatem - ok
21:21:09.0561 0x0728  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
21:21:09.0592 0x0728  HdAudAddService - ok
21:21:09.0608 0x0728  [ 03909BDBFF0DCACCABF2B2D4ADEE44DC, 42E631B23BB004F5C2128BAD334C21AB20FAD08AFED9E8191AE9373531BC73DD ] HDAudBus        C:\windows\System32\drivers\HDAudBus.sys
21:21:09.0608 0x0728  HDAudBus - ok
21:21:09.0623 0x0728  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\windows\System32\drivers\HidBatt.sys
21:21:09.0639 0x0728  HidBatt - ok
21:21:09.0655 0x0728  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\windows\System32\drivers\hidbth.sys
21:21:09.0655 0x0728  HidBth - ok
21:21:09.0686 0x0728  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\windows\System32\drivers\hidi2c.sys
21:21:09.0686 0x0728  hidi2c - ok
21:21:09.0701 0x0728  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\windows\System32\drivers\hidir.sys
21:21:09.0701 0x0728  HidIr - ok
21:21:09.0717 0x0728  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\windows\system32\hidserv.dll
21:21:09.0717 0x0728  hidserv - ok
21:21:09.0764 0x0728  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\windows\System32\drivers\hidusb.sys
21:21:09.0764 0x0728  HidUsb - ok
21:21:09.0780 0x0728  [ FCE2251FE4464DCAA2F4684F19A8EE9B, 8062CD636DEFA8E160427BC2C61BC5C0DAA5396E16ABE9353B27C217FDE70B04 ] hitmanpro37     C:\windows\system32\drivers\hitmanpro37.sys
21:21:09.0795 0x0728  hitmanpro37 - ok
21:21:09.0811 0x0728  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\windows\system32\kmsvc.dll
21:21:09.0826 0x0728  hkmsvc - ok
21:21:09.0842 0x0728  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\windows\system32\ListSvc.dll
21:21:09.0858 0x0728  HomeGroupListener - ok
21:21:09.0905 0x0728  [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\windows\system32\provsvc.dll
21:21:09.0951 0x0728  HomeGroupProvider - ok
21:21:09.0967 0x0728  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
21:21:09.0967 0x0728  HpSAMD - ok
21:21:10.0061 0x0728  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\windows\system32\drivers\HTTP.sys
21:21:10.0108 0x0728  HTTP - ok
21:21:10.0123 0x0728  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
21:21:10.0123 0x0728  hwpolicy - ok
21:21:10.0123 0x0728  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\windows\System32\drivers\hyperkbd.sys
21:21:10.0139 0x0728  hyperkbd - ok
21:21:10.0139 0x0728  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\windows\system32\DRIVERS\HyperVideo.sys
21:21:10.0139 0x0728  HyperVideo - ok
21:21:10.0170 0x0728  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\windows\System32\drivers\i8042prt.sys
21:21:10.0170 0x0728  i8042prt - ok
21:21:10.0186 0x0728  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\windows\System32\drivers\iaLPSSi_GPIO.sys
21:21:10.0186 0x0728  iaLPSSi_GPIO - ok
21:21:10.0201 0x0728  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\windows\System32\drivers\iaLPSSi_I2C.sys
21:21:10.0201 0x0728  iaLPSSi_I2C - ok
21:21:10.0264 0x0728  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\windows\system32\drivers\iaStorA.sys
21:21:10.0295 0x0728  iaStorA - ok
21:21:10.0342 0x0728  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\windows\system32\drivers\iaStorAV.sys
21:21:10.0389 0x0728  iaStorAV - ok
21:21:10.0420 0x0728  [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
21:21:10.0420 0x0728  IAStorDataMgrSvc - ok
21:21:10.0451 0x0728  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
21:21:10.0483 0x0728  iaStorV - ok
21:21:10.0530 0x0728  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
21:21:10.0530 0x0728  IDriverT - ok
21:21:10.0545 0x0728  IEEtwCollectorService - ok
21:21:10.0623 0x0728  [ CFE7F0267B0C3077042FF291949B5546, 7B8C432632D0210119BFF57D4994F2B8F75307A9D6867353AF93BBA3F561595B ] IKEEXT          C:\windows\System32\ikeext.dll
21:21:10.0701 0x0728  IKEEXT - ok
21:21:10.0920 0x0728  [ 8EB4D1D7806D05E5AB39D96464D801CA, 73853F56CD05243B1CABED2CA2420DFC8BA53F951030EECCD0D2A0E26D8A0D1B ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
21:21:11.0123 0x0728  IntcAzAudAddService - ok
21:21:11.0201 0x0728  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
21:21:11.0233 0x0728  Intel® Capability Licensing Service Interface - ok
21:21:11.0295 0x0728  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
21:21:11.0342 0x0728  Intel® Capability Licensing Service TCP IP Interface - ok
21:21:11.0342 0x0728  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\windows\system32\drivers\intelide.sys
21:21:11.0358 0x0728  intelide - ok
21:21:11.0373 0x0728  [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep        C:\windows\system32\drivers\intelpep.sys
21:21:11.0389 0x0728  intelpep - ok
21:21:11.0389 0x0728  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\windows\System32\drivers\intelppm.sys
21:21:11.0405 0x0728  intelppm - ok
21:21:11.0420 0x0728  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
21:21:11.0420 0x0728  IpFilterDriver - ok
21:21:11.0483 0x0728  [ DFC4050D58565ADBEE793A8D4AEBDAE6, 89B900408F030CD45753A11D6AE6CBAB87E8B0E3F8401402D2D8713C045BF488 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
21:21:11.0545 0x0728  iphlpsvc - ok
21:21:11.0577 0x0728  [ FD9C9E9E3F0ED51502C7E8C066BE26B9, 290E74380F1543DD22C9F3821513B3E2FB42E995724238D8779CBBCB4FC386C8 ] IPMIDRV         C:\windows\System32\drivers\IPMIDrv.sys
21:21:11.0592 0x0728  IPMIDRV - ok
21:21:11.0623 0x0728  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
21:21:11.0639 0x0728  IPNAT - ok
21:21:11.0639 0x0728  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\windows\system32\drivers\irenum.sys
21:21:11.0639 0x0728  IRENUM - ok
21:21:11.0670 0x0728  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\windows\system32\drivers\isapnp.sys
21:21:11.0670 0x0728  isapnp - ok
21:21:11.0702 0x0728  [ 034D4BD9DC67C64F3A4C8A049B5173BF, C68AF5A5AD4092AA1C871BD38473AEF84EC3ECF4D06FBEB5F6C09972EF1B8A81 ] iScsiPrt        C:\windows\System32\drivers\msiscsi.sys
21:21:11.0717 0x0728  iScsiPrt - ok
21:21:11.0795 0x0728  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
21:21:11.0795 0x0728  jhi_service - ok
21:21:11.0811 0x0728  [ E2CFDA7E9606FD5ECAB93E4817414661, F60A1EFFD7EB9D69620E971AB30D3FF4138D233A6EDE51CFD1BE8CCB5776E321 ] JME Keyboard    C:\Windows\jmesoft\Service.exe
21:21:11.0827 0x0728  JME Keyboard - ok
21:21:11.0827 0x0728  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\windows\System32\drivers\kbdclass.sys
21:21:11.0842 0x0728  kbdclass - ok
21:21:11.0842 0x0728  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\windows\System32\drivers\kbdhid.sys
21:21:11.0858 0x0728  kbdhid - ok
21:21:11.0873 0x0728  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\windows\system32\DRIVERS\kdnic.sys
21:21:11.0873 0x0728  kdnic - ok
21:21:11.0889 0x0728  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\windows\system32\lsass.exe
21:21:11.0889 0x0728  KeyIso - ok
21:21:11.0920 0x0728  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
21:21:11.0936 0x0728  KSecDD - ok
21:21:11.0967 0x0728  [ F88CC88F4A6D8476F1664E805CA18CC2, 2C61EE5EEA4FD45AA3FA927CC16E34EF90BD44324EAB14198AF65C3A27617991 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
21:21:11.0983 0x0728  KSecPkg - ok
21:21:11.0983 0x0728  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
21:21:11.0998 0x0728  ksthunk - ok
21:21:12.0030 0x0728  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\windows\system32\msdtckrm.dll
21:21:12.0061 0x0728  KtmRm - ok
21:21:12.0108 0x0728  [ 27B58E16CF895AC1F1A97C04814C2239, D4336155331DDBF91952CDC6C446C68FF524F979099BA8D9B3A578758F97B2BE ] LanmanServer    C:\windows\system32\srvsvc.dll
21:21:12.0139 0x0728  LanmanServer - ok
21:21:12.0170 0x0728  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
21:21:12.0202 0x0728  LanmanWorkstation - ok
21:21:12.0264 0x0728  [ BC98B868809D95B504E47795B4994B6F, 842C713004A3B4AA67031809A3F188D900E688BE28CB060323997613883AE8B5 ] Lenovo System Agent Service C:\Program Files\lenovo\SystemAgent\SystemAgentService.exe
21:21:12.0295 0x0728  Lenovo System Agent Service - ok
21:21:12.0327 0x0728  [ A92EE98F78FFB2F7BAAD1AE55B61EEB4, CFA0171F8BF9F9F6FA2B79874FADDB40083F18447E2BF8349CC0C937B35E97F2 ] LenovoCOMSvc    C:\Program Files\lenovo\Power Control Switch\LenovoCOMSvc.exe
21:21:12.0327 0x0728  LenovoCOMSvc - ok
21:21:12.0373 0x0728  [ EE289BD147FDFF95EF1B9BD65D3B974A, EFD9D0F6C73E7D2D52DBE2E2A8D3009BFB6AB24776A100CA528A8365002C6105 ] lfsvc           C:\windows\System32\GeofenceMonitorService.dll
21:21:12.0405 0x0728  lfsvc - ok
21:21:12.0420 0x0728  [ C4F689D9EF1A2E549E52A8BEAD6502D0, F5E57DD8A2E2F766859430887E35265412618BCC40EB4F01C6CC6F5233B2DB07 ] LitModeCtrl     C:\Program Files\lenovo\Power Control Switch\LitModeCtrl.exe
21:21:12.0420 0x0728  LitModeCtrl - ok
21:21:12.0436 0x0728  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
21:21:12.0436 0x0728  lltdio - ok
21:21:12.0467 0x0728  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\windows\System32\lltdsvc.dll
21:21:12.0498 0x0728  lltdsvc - ok
21:21:12.0514 0x0728  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\windows\System32\lmhsvc.dll
21:21:12.0514 0x0728  lmhosts - ok
21:21:12.0545 0x0728  [ 6A35B295812CE7064CFBCD9F254169CF, 561DD131FED6F90686D8C031B45B87B6D065C7E0C8804AEFCDE239725AAEE43E ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:21:12.0577 0x0728  LMS - ok
21:21:12.0733 0x0728  [ 28B3A0275E6ADFA126874DD56C5A67E0, B7FCC23A8C4F7BC93AB9C7AC200A11AD9DA5A8ED1577B0F6C1013A7E2DA0F463 ] LSCWinService   C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
21:21:12.0811 0x0728  LSCWinService - ok
21:21:12.0842 0x0728  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
21:21:12.0842 0x0728  LSI_SAS - ok
21:21:12.0858 0x0728  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
21:21:12.0858 0x0728  LSI_SAS2 - ok
21:21:12.0873 0x0728  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\windows\system32\drivers\lsi_sas3.sys
21:21:12.0889 0x0728  LSI_SAS3 - ok
21:21:12.0889 0x0728  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\windows\system32\drivers\lsi_sss.sys
21:21:12.0905 0x0728  LSI_SSS - ok
21:21:12.0967 0x0728  [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM             C:\windows\System32\lsm.dll
21:21:13.0014 0x0728  LSM - ok
21:21:13.0045 0x0728  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\windows\system32\drivers\luafv.sys
21:21:13.0061 0x0728  luafv - ok
21:21:13.0155 0x0728  [ CE6E5146039D248FEB991FBC9E2B6A7B, 4F995D56AF651EB75E3FFC2E5B1551AB9447E81C4376101594D5A763A5ECC4E9 ] lvpopf64        C:\windows\system32\DRIVERS\lvpopf64.sys
21:21:13.0233 0x0728  lvpopf64 - ok
21:21:13.0280 0x0728  [ 6D5EA90F86F9B28CD44AF6BA9BE03BF9, 6A92EF21EB7543389649900BAB241A846DFE9CADF785D7352052C003AA717E5F ] LVUSBS64        C:\windows\system32\drivers\LVUSBS64.sys
21:21:13.0280 0x0728  LVUSBS64 - ok
21:21:13.0514 0x0728  [ EB12688842EDE30C843A123FA6855858, 24DD1E4F32CA08EF2263100A3C65BF8D904BB0FFC55025519C477E7BAA31E064 ] LVUVC64         C:\windows\system32\DRIVERS\lvuvc64.sys
21:21:13.0717 0x0728  LVUVC64 - ok
21:21:13.0764 0x0728  [ D0CD96F8BC03E9D90C494744AA0F9B70, 39C6B687280FA2372278A9AD50D2CA670FADD6E0F9F12E4912B807F5562546D0 ] MaxthonUpdateSvc C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
21:21:13.0764 0x0728  MaxthonUpdateSvc - ok
21:21:13.0780 0x0728  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\windows\system32\drivers\megasas.sys
21:21:13.0780 0x0728  megasas - ok
21:21:13.0827 0x0728  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\windows\system32\drivers\megasr.sys
21:21:13.0873 0x0728  megasr - ok
21:21:13.0889 0x0728  [ 926C135CFB0C75B32FB714B5C0C58FAA, AF627CD125794B69D450D298D5608D357F2C91FB89EBFAA0DA2A0F07C6A304A8 ] MEIx64          C:\windows\system32\DRIVERS\TeeDriverx64.sys
21:21:13.0889 0x0728  MEIx64 - ok
21:21:13.0920 0x0728  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\windows\system32\mmcss.dll
21:21:13.0920 0x0728  MMCSS - ok
21:21:13.0936 0x0728  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\windows\system32\drivers\modem.sys
21:21:13.0936 0x0728  Modem - ok
21:21:13.0952 0x0728  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\windows\System32\drivers\monitor.sys
21:21:13.0952 0x0728  monitor - ok
21:21:13.0952 0x0728  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\windows\System32\drivers\mouclass.sys
21:21:13.0967 0x0728  mouclass - ok
21:21:13.0967 0x0728  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\windows\System32\drivers\mouhid.sys
21:21:13.0983 0x0728  mouhid - ok
21:21:13.0998 0x0728  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
21:21:13.0998 0x0728  mountmgr - ok
21:21:14.0045 0x0728  [ 9F515639FDE133D63D4FCC15183E6E8C, 7F720999902261D5B26DB86D87355E65CAE38C1FE60439A9C18D54D1AEF66122 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:21:14.0061 0x0728  MozillaMaintenance - ok
21:21:14.0061 0x0728  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
21:21:14.0077 0x0728  mpsdrv - ok
21:21:14.0124 0x0728  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\windows\system32\mpssvc.dll
21:21:14.0171 0x0728  MpsSvc - ok
21:21:14.0233 0x0728  [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
21:21:14.0249 0x0728  MRxDAV - ok
21:21:14.0296 0x0728  [ C997E6A37BA8915224B3FB5024A34F69, 43E1B83072DF9E878151D276DDB6EB7B3801D72494C43E9B9ABECA4B2DCFD606 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
21:21:14.0327 0x0728  mrxsmb - ok
21:21:14.0389 0x0728  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
21:21:14.0421 0x0728  mrxsmb10 - ok
21:21:14.0452 0x0728  [ AAF56E4E84D35411B4E446C445732DFE, 7AC41CAA0842AE4DA4EEF976202C58D7923DAA367F0D7E800D432323D5E7DE1A ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
21:21:14.0468 0x0728  mrxsmb20 - ok
21:21:14.0483 0x0728  [ 4E888019078AC363076A5433E89AA4F8, 3DEBDA290230B3E83F956C902C960E39463B7EFE86439199521356762769FD91 ] MsBridge        C:\windows\system32\DRIVERS\bridge.sys
21:21:14.0499 0x0728  MsBridge - ok
21:21:14.0515 0x0728  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\windows\System32\msdtc.exe
21:21:14.0530 0x0728  MSDTC - ok
21:21:14.0546 0x0728  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\windows\system32\drivers\Msfs.sys
21:21:14.0546 0x0728  Msfs - ok
21:21:14.0561 0x0728  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\windows\System32\drivers\msgpiowin32.sys
21:21:14.0561 0x0728  msgpiowin32 - ok
21:21:14.0593 0x0728  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
21:21:14.0608 0x0728  mshidkmdf - ok
21:21:14.0608 0x0728  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\windows\System32\drivers\mshidumdf.sys
21:21:14.0608 0x0728  mshidumdf - ok
21:21:14.0624 0x0728  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
21:21:14.0624 0x0728  msisadrv - ok
21:21:14.0655 0x0728  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
21:21:14.0671 0x0728  MSiSCSI - ok
21:21:14.0686 0x0728  msiserver - ok
21:21:14.0686 0x0728  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
21:21:14.0686 0x0728  MSKSSRV - ok
21:21:14.0702 0x0728  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\windows\system32\DRIVERS\mslldp.sys
21:21:14.0702 0x0728  MsLldp - ok
21:21:14.0718 0x0728  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
21:21:14.0718 0x0728  MSPCLOCK - ok
21:21:14.0718 0x0728  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
21:21:14.0718 0x0728  MSPQM - ok
21:21:14.0749 0x0728  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
21:21:14.0764 0x0728  MsRPC - ok
21:21:14.0796 0x0728  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\windows\System32\drivers\mssmbios.sys
21:21:14.0796 0x0728  mssmbios - ok
21:21:14.0811 0x0728  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
21:21:14.0811 0x0728  MSTEE - ok
21:21:14.0827 0x0728  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\windows\System32\drivers\MTConfig.sys
21:21:14.0827 0x0728  MTConfig - ok
21:21:14.0843 0x0728  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\windows\system32\Drivers\mup.sys
21:21:14.0843 0x0728  Mup - ok
21:21:14.0858 0x0728  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\windows\system32\drivers\mvumis.sys
21:21:14.0858 0x0728  mvumis - ok
21:21:14.0905 0x0728  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\windows\system32\qagentRT.dll
21:21:14.0936 0x0728  napagent - ok
21:21:14.0983 0x0728  [ 647C7652FA19F98CADF2BFDA2164BFEC, 711A4A06309393922A70D7FBE5684938CD634F5DED158D847BFADDD5ACF9E44C ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
21:21:15.0030 0x0728  NativeWifiP - ok
21:21:15.0046 0x0728  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\windows\System32\ncasvc.dll
21:21:15.0061 0x0728  NcaSvc - ok
21:21:15.0077 0x0728  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\windows\System32\ncbservice.dll
21:21:15.0093 0x0728  NcbService - ok
21:21:15.0108 0x0728  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\windows\System32\NcdAutoSetup.dll
21:21:15.0108 0x0728  NcdAutoSetup - ok
21:21:15.0202 0x0728  [ F21B77B4D74092A543807D3CEB711A88, 5C3C17A10E990070FAB317C0C5333DE768E408CAF43EC4FA9D18116C6EE3B3DC ] NDIS            C:\windows\system32\drivers\ndis.sys
21:21:15.0265 0x0728  NDIS - ok
21:21:15.0280 0x0728  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
21:21:15.0280 0x0728  NdisCap - ok
21:21:15.0296 0x0728  [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37, CCD99962917BBE256F64AE14CCC9FD12433C72B5DB98E0E57CA8F212A11B3C8F ] NdisImPlatform  C:\windows\system32\DRIVERS\NdisImPlatform.sys
21:21:15.0311 0x0728  NdisImPlatform - ok
21:21:15.0327 0x0728  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
21:21:15.0327 0x0728  NdisTapi - ok
21:21:15.0343 0x0728  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
21:21:15.0343 0x0728  Ndisuio - ok
21:21:15.0343 0x0728  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\windows\System32\drivers\NdisVirtualBus.sys
21:21:15.0358 0x0728  NdisVirtualBus - ok
21:21:15.0374 0x0728  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
21:21:15.0389 0x0728  NdisWan - ok
21:21:15.0405 0x0728  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\windows\system32\DRIVERS\ndiswan.sys
21:21:15.0405 0x0728  NdisWanLegacy - ok
21:21:15.0421 0x0728  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
21:21:15.0421 0x0728  NDProxy - ok
21:21:15.0436 0x0728  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\windows\system32\drivers\Ndu.sys
21:21:15.0452 0x0728  Ndu - ok
21:21:15.0452 0x0728  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
21:21:15.0468 0x0728  NetBIOS - ok
21:21:15.0483 0x0728  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
21:21:15.0499 0x0728  NetBT - ok
21:21:15.0515 0x0728  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\windows\system32\lsass.exe
21:21:15.0515 0x0728  Netlogon - ok
21:21:15.0546 0x0728  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\windows\System32\netman.dll
21:21:15.0577 0x0728  Netman - ok
21:21:15.0624 0x0728  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\windows\System32\netprofmsvc.dll
21:21:15.0655 0x0728  netprofm - ok
21:21:15.0702 0x0728  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:21:15.0702 0x0728  NetTcpPortSharing - ok
21:21:15.0718 0x0728  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\windows\system32\DRIVERS\netvsc63.sys
21:21:15.0718 0x0728  netvsc - ok
21:21:15.0921 0x0728  [ 3483D44E1B24F17E622870801403AD13, EF9C5290777A4E277D47C87A174FF9441BE23CAD2F456D35B808463041F4675C ] NETwNe64        C:\windows\system32\DRIVERS\NETwew00.sys
21:21:16.0108 0x0728  NETwNe64 - ok
21:21:16.0171 0x0728  [ 16D554B750B93034A3D89EC07895E414, F3BB2CF8E0EA07D50C2E99221AF0B2A0BDB6D835C0249D479DE8AFD94ADED674 ] NitroDriverReadSpool8 C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
21:21:16.0186 0x0728  NitroDriverReadSpool8 - ok
21:21:16.0218 0x0728  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\windows\System32\nlasvc.dll
21:21:16.0264 0x0728  NlaSvc - ok
21:21:16.0311 0x0728  [ 4EE0410161B7BE586302AFBEBBEB8AD6, A9A228C5B62D8DDC11F40FACB09540FE53D01F8882E7A4935152F60F04EA2DE3 ] nlsX86cc        C:\windows\SysWOW64\NLSSRV32.EXE
21:21:16.0311 0x0728  nlsX86cc - ok
21:21:16.0327 0x0728  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\windows\system32\drivers\Npfs.sys
21:21:16.0327 0x0728  Npfs - ok
21:21:16.0343 0x0728  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\windows\System32\drivers\npsvctrig.sys
21:21:16.0343 0x0728  npsvctrig - ok
21:21:16.0358 0x0728  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\windows\system32\nsisvc.dll
21:21:16.0358 0x0728  nsi - ok
21:21:16.0374 0x0728  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
21:21:16.0374 0x0728  nsiproxy - ok
21:21:16.0514 0x0728  [ 1C80517BE6836A812F6A9B99B8321351, 7DBED4633820E201C9C242D961EF6F25BA2B1D5593BA60F707CC71A4014C2D4B ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
21:21:16.0624 0x0728  Ntfs - ok
21:21:16.0639 0x0728  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\windows\system32\drivers\Null.sys
21:21:16.0639 0x0728  Null - ok
21:21:16.0671 0x0728  [ 554964B900AE2954B8B589B6287034AC, C6C9EA3ADAFEBBF2AF944E4A0656BD795AD37706008CC0CA3F2150BD709476E7 ] NVHDA           C:\windows\system32\drivers\nvhda64v.sys
21:21:16.0686 0x0728  NVHDA - ok
21:21:17.0327 0x0728  [ B27CA775F89C4157A0FEFC3B9B4F668C, DDE2EEF83E15FF771F97796B7F4197ABA88561189BFC4221A824C2E9C83D21A2 ] nvlddmkm        C:\windows\system32\DRIVERS\nvlddmkm.sys
21:21:17.0936 0x0728  nvlddmkm - ok
21:21:17.0983 0x0728  [ 6C0371A3E2447DB7A140F2A9E8AD5307, 7A3047936C1F281D196E93F14E6B36880875BDD8598CF5EA434508115E35C3AF ] nvpciflt        C:\windows\system32\DRIVERS\nvpciflt.sys
21:21:17.0983 0x0728  nvpciflt - ok
21:21:17.0999 0x0728  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\windows\system32\drivers\nvraid.sys
21:21:18.0015 0x0728  nvraid - ok
21:21:18.0030 0x0728  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\windows\system32\drivers\nvstor.sys
21:21:18.0046 0x0728  nvstor - ok
21:21:18.0108 0x0728  [ 10778F4D23EC2E93F2D59F94FCA5D455, 51F3C2A273534FD06FC4303B70695A48431EB09936484E428F7A09ABF8E636B8 ] nvsvc           C:\windows\system32\nvvsvc.exe
21:21:18.0155 0x0728  nvsvc - ok
21:21:18.0280 0x0728  [ BC6B2781AC2C44E7E666AEABB1E0FD4C, D176ADE87E366F49B5E6A2D56896DB8E4DFCC03EEFF8C90A95B425A1914FD0C3 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:21:18.0343 0x0728  nvUpdatusService - ok
21:21:18.0358 0x0728  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
21:21:18.0374 0x0728  nv_agp - ok
21:21:18.0405 0x0728  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:21:18.0405 0x0728  ose - ok
21:21:18.0468 0x0728  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
21:21:18.0499 0x0728  p2pimsvc - ok
21:21:18.0546 0x0728  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\windows\system32\p2psvc.dll
21:21:18.0577 0x0728  p2psvc - ok
21:21:18.0608 0x0728  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\windows\System32\drivers\parport.sys
21:21:18.0624 0x0728  Parport - ok
21:21:18.0640 0x0728  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\windows\system32\drivers\partmgr.sys
21:21:18.0640 0x0728  partmgr - ok
21:21:18.0686 0x0728  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\windows\System32\pcasvc.dll
21:21:18.0718 0x0728  PcaSvc - ok
21:21:18.0765 0x0728  [ 275AFE3FA35E8D78BE97695DF49817C6, 447CEBB16285AE073B4251D2DA71399306EF2DCB7F56286ABE2F0BD6C83EB489 ] pci             C:\windows\system32\drivers\pci.sys
21:21:18.0796 0x0728  pci - ok
21:21:18.0796 0x0728  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\windows\system32\drivers\pciide.sys
21:21:18.0811 0x0728  pciide - ok
21:21:18.0827 0x0728  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
21:21:18.0843 0x0728  pcmcia - ok
21:21:18.0843 0x0728  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\windows\system32\drivers\pcw.sys
21:21:18.0858 0x0728  pcw - ok
21:21:18.0874 0x0728  [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc             C:\windows\system32\drivers\pdc.sys
21:21:18.0890 0x0728  pdc - ok
21:21:18.0952 0x0728  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\windows\system32\drivers\peauth.sys
21:21:18.0999 0x0728  PEAUTH - ok
21:21:19.0030 0x0728  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\windows\SysWow64\perfhost.exe
21:21:19.0030 0x0728  PerfHost - ok
21:21:19.0124 0x0728  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\windows\system32\pla.dll
21:21:19.0202 0x0728  pla - ok
21:21:19.0233 0x0728  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
21:21:19.0249 0x0728  PlugPlay - ok
21:21:19.0265 0x0728  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
21:21:19.0265 0x0728  PNRPAutoReg - ok
21:21:19.0296 0x0728  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
21:21:19.0311 0x0728  PNRPsvc - ok
21:21:19.0358 0x0728  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
21:21:19.0390 0x0728  PolicyAgent - ok
21:21:19.0421 0x0728  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\windows\system32\umpo.dll
21:21:19.0421 0x0728  Power - ok
21:21:19.0624 0x0728  [ B7DB57A000D46D4DE75BC0C563E58072, 8183EB09DC4D44DFF027CA0AAA8C09921A14F088C1BC427B6ACA42340AAF69E6 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
21:21:19.0765 0x0728  PrintNotify - ok
21:21:19.0796 0x0728  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\windows\System32\drivers\processr.sys
21:21:19.0796 0x0728  Processor - ok
21:21:19.0827 0x0728  [ B2A890D96C05E33FDD2BF3F3D4D0DF92, 3A29E17424429A5654D906E420D938148F09F57457356EFA72DA003B73F2D81E ] ProfSvc         C:\windows\system32\profsvc.dll
21:21:19.0858 0x0728  ProfSvc - ok
21:21:19.0874 0x0728  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\windows\system32\DRIVERS\pacer.sys
21:21:19.0890 0x0728  Psched - ok
21:21:19.0921 0x0728  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\windows\system32\qwave.dll
21:21:19.0952 0x0728  QWAVE - ok
21:21:19.0983 0x0728  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
21:21:19.0983 0x0728  QWAVEdrv - ok
21:21:19.0999 0x0728  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
21:21:19.0999 0x0728  RasAcd - ok
21:21:20.0015 0x0728  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\windows\System32\rasauto.dll
21:21:20.0030 0x0728  RasAuto - ok
21:21:20.0077 0x0728  [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan          C:\windows\System32\rasmans.dll
21:21:20.0124 0x0728  RasMan - ok
21:21:20.0140 0x0728  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
21:21:20.0140 0x0728  RasPppoe - ok
21:21:20.0186 0x0728  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
21:21:20.0218 0x0728  rdbss - ok
21:21:20.0233 0x0728  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\windows\System32\drivers\rdpbus.sys
21:21:20.0233 0x0728  rdpbus - ok
21:21:20.0249 0x0728  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\windows\system32\drivers\rdpdr.sys
21:21:20.0265 0x0728  RDPDR - ok
21:21:20.0280 0x0728  [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
21:21:20.0280 0x0728  RdpVideoMiniport - ok
21:21:20.0311 0x0728  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
21:21:20.0327 0x0728  rdyboost - ok
21:21:20.0405 0x0728  [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS            C:\windows\system32\drivers\ReFS.sys
21:21:20.0468 0x0728  ReFS - ok
21:21:20.0499 0x0728  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\windows\System32\mprdim.dll
21:21:20.0530 0x0728  RemoteAccess - ok
21:21:20.0546 0x0728  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\windows\system32\regsvc.dll
21:21:20.0561 0x0728  RemoteRegistry - ok
21:21:20.0624 0x0728  [ FBA61BB4C484A01A655AFB18FF86C417, D53B2110CB09D0A909C4E330C468351BFE076BB056CCDDCB8ADA2FB91E96352E ] RichVideo64     C:\Program Files\CyberLink\Shared files\RichVideo64.exe
21:21:20.0640 0x0728  RichVideo64 - ok
21:21:20.0655 0x0728  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
21:21:20.0671 0x0728  RpcEptMapper - ok
21:21:20.0686 0x0728  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\windows\system32\locator.exe
21:21:20.0686 0x0728  RpcLocator - ok
21:21:20.0749 0x0728  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs           C:\windows\system32\rpcss.dll
21:21:20.0780 0x0728  RpcSs - ok
21:21:20.0796 0x0728  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
21:21:20.0796 0x0728  rspndr - ok
21:21:20.0843 0x0728  [ 9CF8593B62102545CB1652A1D8748FDD, 818639795720A7567CCE01EBC24A0119BFDCEA1B7A5ED4A11B5012D763C1B5CC ] RSUSBSTOR       C:\windows\System32\Drivers\RtsUStor.sys
21:21:20.0858 0x0728  RSUSBSTOR - ok
21:21:20.0921 0x0728  [ 948D5E71CF9DB59961353A355EA45139, A23D012B07A92CC217C67C904CDFBA2BCCDCC2BD49B24FB694BD230D000F2B7B ] RTL8168         C:\windows\system32\DRIVERS\Rt630x64.sys
21:21:20.0983 0x0728  RTL8168 - ok
21:21:21.0155 0x0728  [ 109B480DC954126DC272AFDB85C00C6C, 1EC9E071B586F758C4F142E3645E50C217CC6366C8D04AA74034FB0EAC8ACD43 ] RTWlanE         C:\windows\system32\DRIVERS\rtwlane.sys
21:21:21.0296 0x0728  RTWlanE - ok
21:21:21.0327 0x0728  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\windows\System32\drivers\vms3cap.sys
21:21:21.0343 0x0728  s3cap - ok
21:21:21.0358 0x0728  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\windows\system32\lsass.exe
21:21:21.0358 0x0728  SamSs - ok
21:21:21.0390 0x0728  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
21:21:21.0390 0x0728  SASDIFSV - ok
21:21:21.0405 0x0728  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
21:21:21.0405 0x0728  SASKUTIL - ok
21:21:21.0436 0x0728  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
21:21:21.0452 0x0728  sbp2port - ok
21:21:21.0468 0x0728  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\windows\System32\SCardSvr.dll
21:21:21.0483 0x0728  SCardSvr - ok
21:21:21.0499 0x0728  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\windows\System32\ScDeviceEnum.dll
21:21:21.0515 0x0728  ScDeviceEnum - ok
21:21:21.0515 0x0728  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
21:21:21.0530 0x0728  scfilter - ok
21:21:21.0624 0x0728  [ A95838FFFAEAA7500263D491575F7E0C, FEB79ECAE6D9AB0C29D9AFE12F60502A8357B3A382C0FACF4C6DA4852B6ECFA4 ] Schedule        C:\windows\system32\schedsvc.dll
21:21:21.0702 0x0728  Schedule - ok
21:21:21.0733 0x0728  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\windows\System32\certprop.dll
21:21:21.0733 0x0728  SCPolicySvc - ok
21:21:21.0780 0x0728  [ FDEC5799BA499D18AFA3A540538866E7, 551EE0945FE4EC213FFF623E524500B57531EFEA2D76FA7ED1D2D605E7E2168F ] sdbus           C:\windows\System32\drivers\sdbus.sys
21:21:21.0796 0x0728  sdbus - ok
21:21:21.0843 0x0728  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\windows\System32\drivers\sdstor.sys
21:21:21.0843 0x0728  sdstor - ok
21:21:21.0858 0x0728  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys
21:21:21.0858 0x0728  secdrv - ok
21:21:21.0874 0x0728  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\windows\system32\seclogon.dll
21:21:21.0874 0x0728  seclogon - ok
21:21:21.0890 0x0728  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\windows\System32\sens.dll
21:21:21.0905 0x0728  SENS - ok
21:21:21.0921 0x0728  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\windows\system32\sensrsvc.dll
21:21:21.0936 0x0728  SensrSvc - ok
21:21:21.0952 0x0728  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\windows\system32\drivers\SerCx.sys
21:21:21.0952 0x0728  SerCx - ok
21:21:21.0983 0x0728  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\windows\system32\drivers\SerCx2.sys
21:21:21.0999 0x0728  SerCx2 - ok
21:21:22.0015 0x0728  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\windows\System32\drivers\serenum.sys
21:21:22.0015 0x0728  Serenum - ok
21:21:22.0046 0x0728  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\windows\System32\drivers\serial.sys
21:21:22.0046 0x0728  Serial - ok
21:21:22.0061 0x0728  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\windows\System32\drivers\sermouse.sys
21:21:22.0061 0x0728  sermouse - ok
21:21:22.0108 0x0728  [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv      C:\windows\system32\sessenv.dll
21:21:22.0155 0x0728  SessionEnv - ok
21:21:22.0171 0x0728  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\windows\System32\drivers\sfloppy.sys
21:21:22.0171 0x0728  sfloppy - ok
21:21:22.0218 0x0728  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\windows\System32\ipnathlp.dll
21:21:22.0249 0x0728  SharedAccess - ok
21:21:22.0296 0x0728  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\windows\System32\shsvcs.dll
21:21:22.0343 0x0728  ShellHWDetection - ok
21:21:22.0358 0x0728  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
21:21:22.0358 0x0728  SiSRaid2 - ok
21:21:22.0374 0x0728  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
21:21:22.0374 0x0728  SiSRaid4 - ok
21:21:22.0390 0x0728  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\windows\System32\smphost.dll
21:21:22.0405 0x0728  smphost - ok
21:21:22.0405 0x0728  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
21:21:22.0421 0x0728  SNMPTRAP - ok
21:21:22.0468 0x0728  [ 87765EF43C33BE342F4ACB0E3FBF89A6, 3C1DDED7F96F796702F1BC73D5CEE5251DD16011AA349FE4EE1D9C002E0171C6 ] spaceport       C:\windows\system32\drivers\spaceport.sys
21:21:22.0499 0x0728  spaceport - ok
21:21:22.0515 0x0728  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\windows\system32\drivers\SpbCx.sys
21:21:22.0515 0x0728  SpbCx - ok
21:21:22.0577 0x0728  [ FE0CB40F36D3FCDD3A1B312EF72C38D5, 42EA50869752164764DFE8CE7E1C247BE8342A0C15F39158DC808E8A692C460F ] Spooler         C:\windows\System32\spoolsv.exe
21:21:22.0624 0x0728  Spooler - ok
21:21:22.0999 0x0728  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\windows\system32\sppsvc.exe
21:21:23.0311 0x0728  sppsvc - ok
21:21:23.0358 0x0728  [ 2B78788A1485F9B99A578A299DF42C02, A87183A9B13585C9E850437A45237105D39D7F3212ADB079D6AB430B67A59643 ] srv             C:\windows\system32\DRIVERS\srv.sys
21:21:23.0390 0x0728  srv - ok
21:21:23.0436 0x0728  [ E62EAEF0BAC9DD61BF22D4A7F2F18571, 910D85FDDBAF0E003A0CA0C23D27615F1B7D6145FB9E3A1661E93498196B303A ] srv2            C:\windows\system32\DRIVERS\srv2.sys
21:21:23.0483 0x0728  srv2 - ok
21:21:23.0530 0x0728  [ 466BDC0006103F2547D308DD3CD64398, 334E0729B369C7F7CBB9878F423B53E05476D1288A8ECEB18240318ABF2370C1 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
21:21:23.0546 0x0728  srvnet - ok
21:21:23.0561 0x0728  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
21:21:23.0577 0x0728  SSDPSRV - ok
21:21:23.0593 0x0728  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\windows\system32\sstpsvc.dll
21:21:23.0608 0x0728  SstpSvc - ok
21:21:23.0624 0x0728  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\windows\system32\drivers\stexstor.sys
21:21:23.0624 0x0728  stexstor - ok
21:21:23.0671 0x0728  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\windows\System32\wiaservc.dll
21:21:23.0718 0x0728  stisvc - ok
21:21:23.0733 0x0728  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\windows\system32\drivers\storahci.sys
21:21:23.0733 0x0728  storahci - ok
21:21:23.0749 0x0728  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\windows\system32\DRIVERS\vmstorfl.sys
21:21:23.0765 0x0728  storflt - ok
21:21:23.0780 0x0728  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\windows\system32\drivers\stornvme.sys
21:21:23.0780 0x0728  stornvme - ok
21:21:23.0780 0x0728  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\windows\system32\storsvc.dll
21:21:23.0796 0x0728  StorSvc - ok
21:21:23.0811 0x0728  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\windows\system32\drivers\storvsc.sys
21:21:23.0811 0x0728  storvsc - ok
21:21:23.0827 0x0728  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\windows\system32\svsvc.dll
21:21:23.0827 0x0728  svsvc - ok
21:21:23.0843 0x0728  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\windows\System32\drivers\swenum.sys
21:21:23.0843 0x0728  swenum - ok
21:21:23.0921 0x0728  [ E3C92D60F6AD7763961D1E7628002844, A33EED7CB3EE0EF4890AAD095F989FCA7F44CA1055E03D3892AB543DEE74C9B6 ] swprv           C:\windows\System32\swprv.dll
21:21:23.0968 0x0728  swprv - ok
21:21:24.0046 0x0728  [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain         C:\windows\system32\sysmain.dll
21:21:24.0124 0x0728  SysMain - ok
21:21:24.0171 0x0728  [ D65B1C952AEB864C2BAC7A770B17ECCE, 3EFAAFFF73390D9CB660E0F42B305512396CF66ED06E4A20ED67E8722FB4355B ] SystemEventsBroker C:\windows\System32\SystemEventsBrokerServer.dll
21:21:24.0202 0x0728  SystemEventsBroker - ok
21:21:24.0218 0x0728  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\windows\System32\TabSvc.dll
21:21:24.0233 0x0728  TabletInputService - ok
21:21:24.0265 0x0728  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\windows\System32\tapisrv.dll
21:21:24.0296 0x0728  TapiSrv - ok
21:21:24.0452 0x0728  [ FEEFE783D87C9063CDAC6DBDCF95F533, EBD00EEE90AC657823A88190BBBED6DA47AF597510C201F3392F4325069D2669 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
21:21:24.0593 0x0728  Tcpip - ok
21:21:24.0749 0x0728  [ FEEFE783D87C9063CDAC6DBDCF95F533, EBD00EEE90AC657823A88190BBBED6DA47AF597510C201F3392F4325069D2669 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
21:21:24.0874 0x0728  TCPIP6 - ok
21:21:24.0921 0x0728  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
21:21:24.0936 0x0728  tcpipreg - ok
21:21:24.0952 0x0728  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\windows\system32\DRIVERS\tdx.sys
21:21:24.0968 0x0728  tdx - ok
21:21:25.0280 0x0728  [ 2B29FD3AF7B4FEB272CD1F6EEC8FE4BA, 2E3E775218F1A9DCD977C7D42D0AADDA83A76DCBF65FB25E0F0215ABE3D55C5B ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
21:21:25.0515 0x0728  TeamViewer9 - ok
21:21:25.0561 0x0728  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\windows\System32\drivers\terminpt.sys
21:21:25.0577 0x0728  terminpt - ok
21:21:25.0640 0x0728  [ 2C77831737491F4D684D315B95C62883, 90A2574A281F19646CFCDA5FDF40063220058290D2D5523AD91B7E709EC36D3D ] TermService     C:\windows\System32\termsrv.dll
21:21:25.0702 0x0728  TermService - ok
21:21:25.0702 0x0728  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\windows\system32\themeservice.dll
21:21:25.0718 0x0728  Themes - ok
21:21:25.0749 0x0728  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\windows\system32\mmcss.dll
21:21:25.0749 0x0728  THREADORDER - ok
21:21:25.0780 0x0728  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\windows\System32\TimeBrokerServer.dll
21:21:25.0796 0x0728  TimeBroker - ok
21:21:25.0827 0x0728  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\windows\system32\drivers\tpm.sys
21:21:25.0843 0x0728  TPM - ok
21:21:25.0858 0x0728  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\windows\System32\trkwks.dll
21:21:25.0874 0x0728  TrkWks - ok
21:21:25.0905 0x0728  [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
21:21:25.0905 0x0728  TrustedInstaller - ok
21:21:25.0921 0x0728  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
21:21:25.0921 0x0728  TsUsbFlt - ok
21:21:25.0952 0x0728  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\windows\System32\drivers\TsUsbGD.sys
21:21:25.0952 0x0728  TsUsbGD - ok
21:21:25.0968 0x0728  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
21:21:25.0983 0x0728  tunnel - ok
21:21:25.0999 0x0728  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\windows\system32\drivers\uagp35.sys
21:21:25.0999 0x0728  uagp35 - ok
21:21:26.0015 0x0728  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\windows\System32\drivers\uaspstor.sys
21:21:26.0030 0x0728  UASPStor - ok
21:21:26.0062 0x0728  [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000        C:\windows\System32\drivers\ucx01000.sys
21:21:26.0077 0x0728  UCX01000 - ok
21:21:26.0124 0x0728  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\windows\system32\DRIVERS\udfs.sys
21:21:26.0155 0x0728  udfs - ok
21:21:26.0155 0x0728  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\windows\System32\drivers\UEFI.sys
21:21:26.0171 0x0728  UEFI - ok
21:21:26.0186 0x0728  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\windows\system32\UI0Detect.exe
21:21:26.0186 0x0728  UI0Detect - ok
21:21:26.0202 0x0728  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
21:21:26.0202 0x0728  uliagpkx - ok
21:21:26.0218 0x0728  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\windows\System32\drivers\umbus.sys
21:21:26.0218 0x0728  umbus - ok
21:21:26.0233 0x0728  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\windows\System32\drivers\umpass.sys
21:21:26.0249 0x0728  UmPass - ok
21:21:26.0265 0x0728  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\windows\System32\umrdp.dll
21:21:26.0280 0x0728  UmRdpService - ok
21:21:26.0327 0x0728  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\windows\System32\upnphost.dll
21:21:26.0343 0x0728  upnphost - ok
21:21:26.0390 0x0728  [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio        C:\windows\system32\drivers\usbaudio.sys
21:21:26.0390 0x0728  usbaudio - ok
21:21:26.0436 0x0728  [ 433ECDE01A52691FA7ACA51C10C09B70, B896296A3F8EF2AF3AC5F0091B9848156608586F1E10A95D70700BAB51E8062A ] usbccgp         C:\windows\System32\drivers\usbccgp.sys
21:21:26.0436 0x0728  usbccgp - ok
21:21:26.0468 0x0728  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\windows\System32\drivers\usbcir.sys
21:21:26.0468 0x0728  usbcir - ok
21:21:26.0483 0x0728  [ 5477D6E27C7D266EF8C152B9A25ADE5E, FEE81677D284A78A0C0FB60F887A952CFC759AE78B01206D73F59FE33612C519 ] usbehci         C:\windows\System32\drivers\usbehci.sys
21:21:26.0499 0x0728  usbehci - ok
21:21:26.0546 0x0728  [ DF56C2C04EFA328D7A66B69007130266, 719316EB25A8C7B82C7941D1C5B964CC4EDA4A997732F481526DE7356F6FC0D8 ] usbhub          C:\windows\System32\drivers\usbhub.sys
21:21:26.0577 0x0728  usbhub - ok
21:21:26.0640 0x0728  [ CFC52C49BEFE4D70D87FFA900EAB9777, 09A2F5D8AB07C3AE3F2B092F4DD7AE5838736CDC263016F188B442B32EC928F8 ] USBHUB3         C:\windows\System32\drivers\UsbHub3.sys
21:21:26.0671 0x0728  USBHUB3 - ok
21:21:26.0687 0x0728  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\windows\System32\drivers\usbohci.sys
21:21:26.0687 0x0728  usbohci - ok
21:21:26.0702 0x0728  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\windows\System32\drivers\usbprint.sys
21:21:26.0702 0x0728  usbprint - ok
21:21:26.0733 0x0728  [ F04D164C4168701A4E7835607722E5F1, 6F743CF2CF73945B4A4B1C4402744BC2FE1624F1346C194493AD2F7110F9EB35 ] usbscan         C:\windows\system32\DRIVERS\usbscan.sys
21:21:26.0733 0x0728  usbscan - ok
21:21:26.0780 0x0728  [ EA23453240137F6773174E0D93F61A69, 579AD09FB428C2BB8B4055128620A7AADD1B606C1EA44B87A01D69A84232A5D9 ] USBSTOR         C:\windows\System32\drivers\USBSTOR.SYS
21:21:26.0780 0x0728  USBSTOR - ok
21:21:26.0811 0x0728  [ BA4FA655E0FC577DB7436FC963932CE4, 3336FDECD4AEC6B316D4C0803E22A12719EBEDD1A9427C0DF5D3B263BE600EE6 ] usbuhci         C:\windows\System32\drivers\usbuhci.sys
21:21:26.0811 0x0728  usbuhci - ok
21:21:26.0843 0x0728  [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
21:21:26.0858 0x0728  usbvideo - ok
21:21:26.0921 0x0728  [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI         C:\windows\System32\drivers\USBXHCI.SYS
21:21:26.0936 0x0728  USBXHCI - ok
21:21:26.0968 0x0728  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\windows\system32\lsass.exe
21:21:26.0968 0x0728  VaultSvc - ok
21:21:26.0983 0x0728  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
21:21:26.0983 0x0728  vdrvroot - ok
21:21:27.0077 0x0728  [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds             C:\windows\System32\vds.exe
21:21:27.0155 0x0728  vds - ok
21:21:27.0187 0x0728  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\windows\system32\drivers\VerifierExt.sys
21:21:27.0202 0x0728  VerifierExt - ok
21:21:27.0265 0x0728  [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp           C:\windows\System32\drivers\vhdmp.sys
21:21:27.0296 0x0728  vhdmp - ok
21:21:27.0311 0x0728  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\windows\system32\drivers\viaide.sys
21:21:27.0311 0x0728  viaide - ok
21:21:27.0327 0x0728  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\windows\system32\drivers\vmbus.sys
21:21:27.0343 0x0728  vmbus - ok
21:21:27.0343 0x0728  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\windows\System32\drivers\VMBusHID.sys
21:21:27.0343 0x0728  VMBusHID - ok
21:21:27.0390 0x0728  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\windows\System32\ICSvc.dll
21:21:27.0421 0x0728  vmicguestinterface - ok
21:21:27.0468 0x0728  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\windows\System32\ICSvc.dll
21:21:27.0499 0x0728  vmicheartbeat - ok
21:21:27.0530 0x0728  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\windows\System32\ICSvc.dll
21:21:27.0546 0x0728  vmickvpexchange - ok
21:21:27.0593 0x0728  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\windows\System32\ICSvc.dll
21:21:27.0608 0x0728  vmicrdv - ok
21:21:27.0640 0x0728  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\windows\System32\ICSvc.dll
21:21:27.0671 0x0728  vmicshutdown - ok
21:21:27.0702 0x0728  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\windows\System32\ICSvc.dll
21:21:27.0733 0x0728  vmictimesync - ok
21:21:27.0765 0x0728  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\windows\System32\ICSvc.dll
21:21:27.0796 0x0728  vmicvss - ok
21:21:27.0827 0x0728  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\windows\system32\drivers\volmgr.sys
21:21:27.0827 0x0728  volmgr - ok
21:21:27.0858 0x0728  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
21:21:27.0874 0x0728  volmgrx - ok
21:21:27.0936 0x0728  [ 3595FBDF25F8BA6256072D103937D7D6, 547AA103804790E31F6E5658923627945948B48F36354EEA2FC0FE09098F9FD5 ] volsnap         C:\windows\system32\drivers\volsnap.sys
21:21:27.0952 0x0728  volsnap - ok
21:21:27.0968 0x0728  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\windows\System32\drivers\vpci.sys
21:21:27.0983 0x0728  vpci - ok
21:21:28.0046 0x0728  [ F8C69EB4CC46FD2681B65212CA20DD97, 290CC81B0F1C6EC26AD445442E1705710CFCCCB68D305205AE03A2DE49A6BEB3 ] Vsdatant        C:\windows\system32\drivers\vsdatant.sys
21:21:28.0093 0x0728  Vsdatant - ok
21:21:28.0155 0x0728  vsmon - ok
21:21:28.0186 0x0728  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
21:21:28.0186 0x0728  vsmraid - ok
21:21:28.0296 0x0728  [ 4957B27219515B93A508B91068B87BF5, 5B6B37A57FC8F4FC8B119C013338292550C63AB5295A596D382D8DCF26D751A2 ] VSS             C:\windows\system32\vssvc.exe
21:21:28.0390 0x0728  VSS - ok
21:21:28.0421 0x0728  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\windows\system32\drivers\vstxraid.sys
21:21:28.0436 0x0728  VSTXRAID - ok
21:21:28.0452 0x0728  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\windows\System32\drivers\vwifibus.sys
21:21:28.0452 0x0728  vwifibus - ok
21:21:28.0468 0x0728  [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
21:21:28.0468 0x0728  vwififlt - ok
21:21:28.0483 0x0728  [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
21:21:28.0483 0x0728  vwifimp - ok
21:21:28.0515 0x0728  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\windows\system32\w32time.dll
21:21:28.0561 0x0728  W32Time - ok
21:21:28.0577 0x0728  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\windows\System32\drivers\wacompen.sys
21:21:28.0577 0x0728  WacomPen - ok
21:21:28.0671 0x0728  [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine        C:\windows\system32\wbengine.exe
21:21:28.0765 0x0728  wbengine - ok
21:21:28.0827 0x0728  [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
21:21:28.0858 0x0728  WbioSrvc - ok
21:21:28.0905 0x0728  [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc          C:\windows\System32\wcmsvc.dll
21:21:28.0936 0x0728  Wcmsvc - ok
21:21:28.0983 0x0728  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\windows\System32\wcncsvc.dll
21:21:29.0030 0x0728  wcncsvc - ok
21:21:29.0046 0x0728  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
21:21:29.0046 0x0728  WcsPlugInService - ok
21:21:29.0093 0x0728  [ F5D4FA3E1F4879C361FFF3855259D2C2, 48C60FE4AAB011E2250157506FF0624031BFA346F8F2F8C6DFDF6F3CAA4F3F42 ] WdBoot          C:\windows\system32\drivers\WdBoot.sys
21:21:29.0093 0x0728  WdBoot - ok
21:21:29.0140 0x0728  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
21:21:29.0202 0x0728  Wdf01000 - ok
21:21:29.0233 0x0728  [ 019CC610AD95FF47EAD7C08B7A683B96, BB9D42F8ED90ECA2E7B8C906E06A1EA859FAD9BD1B3492BB1E28C0D00004812A ] WdFilter        C:\windows\system32\drivers\WdFilter.sys
21:21:29.0249 0x0728  WdFilter - ok
21:21:29.0265 0x0728  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\windows\system32\wdi.dll
21:21:29.0265 0x0728  WdiServiceHost - ok
21:21:29.0280 0x0728  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\windows\system32\wdi.dll
21:21:29.0296 0x0728  WdiSystemHost - ok
21:21:29.0311 0x0728  [ 6CC1BB8F6851A262E2E824F0E92D5EEF, 45A88A984179BBA38C1F4434C4D6C2823C1FE6AFBE8CB0F656DAE0092D1D5611 ] WdNisDrv        C:\windows\system32\Drivers\WdNisDrv.sys
21:21:29.0311 0x0728  WdNisDrv - ok
21:21:29.0327 0x0728  WdNisSvc - ok
21:21:29.0358 0x0728  [ 6588A957873326361AB1CAC4E76F8394, BE17880CEDCAE5ED3B983443E3777842646A3E48B661422A717656E11F6DBA94 ] WebClient       C:\windows\System32\webclnt.dll
21:21:29.0390 0x0728  WebClient - ok
21:21:29.0405 0x0728  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\windows\system32\wecsvc.dll
21:21:29.0421 0x0728  Wecsvc - ok
21:21:29.0436 0x0728  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\windows\system32\wephostsvc.dll
21:21:29.0436 0x0728  WEPHOSTSVC - ok
21:21:29.0468 0x0728  [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport   C:\windows\System32\wercplsupport.dll
21:21:29.0483 0x0728  wercplsupport - ok
21:21:29.0499 0x0728  [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc          C:\windows\System32\WerSvc.dll
21:21:29.0515 0x0728  WerSvc - ok
21:21:29.0546 0x0728  [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS         C:\windows\system32\DRIVERS\wfplwfs.sys
21:21:29.0561 0x0728  WFPLWFS - ok
21:21:29.0577 0x0728  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\windows\System32\wiarpc.dll
21:21:29.0593 0x0728  WiaRpc - ok
21:21:29.0624 0x0728  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
21:21:29.0624 0x0728  WIMMount - ok
21:21:29.0640 0x0728  WinDefend - ok
21:21:29.0702 0x0728  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\windows\system32\winhttp.dll
21:21:29.0749 0x0728  WinHttpAutoProxySvc - ok
21:21:29.0796 0x0728  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
21:21:29.0827 0x0728  Winmgmt - ok
21:21:29.0968 0x0728  [ C8D6344BDE2691A196E61C0D3372EAB7, FF8EB79D8A7E298343C22B83276FF68293D08A9DA438BB22600BEFC4CA93A91D ] WinRM           C:\windows\system32\WsmSvc.dll
21:21:30.0124 0x0728  WinRM - ok
21:21:30.0155 0x0728  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
21:21:30.0171 0x0728  WinUsb - ok
21:21:30.0265 0x0728  [ 5A917027826D759CC3238C7D3CEC3438, A8FFA28B6D8A314692AA08788FC9E2E0F03D8AD1FCD662826ABA71DB39C3605A ] WlanSvc         C:\windows\System32\wlansvc.dll
21:21:30.0358 0x0728  WlanSvc - ok
21:21:30.0485 0x0728  [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc         C:\windows\system32\wlidsvc.dll
21:21:30.0579 0x0728  wlidsvc - ok
21:21:30.0610 0x0728  [ 680A7846370000D20D7E74917D5B7936, 55B77B358039672845D361CA4205F3482D1F30A4654B610FD785A1337EFDC316 ] WmBEnum         C:\windows\system32\drivers\WmBEnum.sys
21:21:30.0610 0x0728  WmBEnum - ok
21:21:30.0625 0x0728  [ 14C35BA8189C6F65D839163AA285E954, 8981AA488320C75E26E1ABDF884B721A4065F5D28F54782598B03F21B8CDC020 ] WmFilter        C:\windows\system32\drivers\WmFilter.sys
21:21:30.0625 0x0728  WmFilter - ok
21:21:30.0657 0x0728  [ AC4331AF118A720F13C9C5CABBFE27BD, 2C5F453996B00078F3E8E731F6B3DD4529831BDA2146EAFC66727C9460E85112 ] WmHidLo         C:\windows\system32\drivers\WmHidLo.sys
21:21:30.0657 0x0728  WmHidLo - ok
21:21:30.0672 0x0728  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\windows\System32\drivers\wmiacpi.sys
21:21:30.0672 0x0728  WmiAcpi - ok
21:21:30.0704 0x0728  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
21:21:30.0719 0x0728  wmiApSrv - ok
21:21:30.0750 0x0728  WMPNetworkSvc - ok
21:21:30.0750 0x0728  [ 8488DD91A3EE54A8E29F02AD7BB8201E, D428ED991D9E4A8765C240B21884A262854278698D60862117AC5949713231F9 ] WmVirHid        C:\windows\system32\drivers\WmVirHid.sys
21:21:30.0750 0x0728  WmVirHid - ok
21:21:30.0766 0x0728  [ 14802B3A30AA849C97CB968CCC813BF3, 330AD828ABD040ECDBF58F7162978CD61BFC093CAD404FD2BCAC74E3F2EC542A ] WmXlCore        C:\windows\system32\drivers\WmXlCore.sys
21:21:30.0766 0x0728  WmXlCore - ok
21:21:30.0797 0x0728  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\windows\system32\drivers\Wof.sys
21:21:30.0797 0x0728  Wof - ok
21:21:30.0922 0x0728  [ 65C65F3BD784158C456E721DDC9F0EA2, CBD3ADFD960456BD4B9557BF691E12D31153499549F5D3D08258BD62013952ED ] workfolderssvc  C:\windows\system32\workfolderssvc.dll
21:21:31.0016 0x0728  workfolderssvc - ok
21:21:31.0063 0x0728  [ C1F564F324685C088ECAB1933576CF91, 022F0EC160352AB73AF7DA557D1A5798964231B82C556F22F4163E8B3E4088B2 ] wpcfltr         C:\windows\system32\DRIVERS\wpcfltr.sys
21:21:31.0063 0x0728  wpcfltr - ok
21:21:31.0094 0x0728  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
21:21:31.0094 0x0728  WPCSvc - ok
21:21:31.0110 0x0728  [ D27491CFCE452C154CECFA155AD0EBC8, 1F3F74C253E3B07DE7EFE27C34DD9AF08617C7B03BB44C2902F69BA9DA3F21F2 ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
21:21:31.0125 0x0728  WPDBusEnum - ok
21:21:31.0157 0x0728  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\windows\system32\drivers\WpdUpFltr.sys
21:21:31.0157 0x0728  WpdUpFltr - ok
21:21:31.0157 0x0728  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
21:21:31.0172 0x0728  ws2ifsl - ok
21:21:31.0204 0x0728  [ 515583507D3828E827FF6352C9ACCEFA, D0C42020FA787804DA26FE07D67C8880FE027A230BD9EB6A706862D89181F2BE ] wscsvc          C:\windows\System32\wscsvc.dll
21:21:31.0219 0x0728  wscsvc - ok
21:21:31.0219 0x0728  WSearch - ok
21:21:31.0438 0x0728  [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService       C:\windows\System32\WSService.dll
21:21:31.0641 0x0728  WSService - ok
21:21:31.0672 0x0728  [ 72B4E9DF6456C43C42A1419B09486045, 536BA7377B5BEA7EA46864453933111DB88DB8FB689C68915ACD7261A996E61D ] wsvd            C:\windows\system32\DRIVERS\wsvd.sys
21:21:31.0672 0x0728  wsvd - ok
21:21:31.0891 0x0728  [ 7E609FBF50774CC5A239420FE34EBB9C, 69B643B11717D51BC5D3F1CDE47D4C9E198AB8D9160C852DBE9B940E40AD8A57 ] wuauserv        C:\windows\system32\wuaueng.dll
21:21:32.0094 0x0728  wuauserv - ok
21:21:32.0110 0x0728  [ 2FEAE33E9B2B56104596E1BA444405A9, 0A142F50E06F6224B9CB36B3CE62BE0B36DE8B8DB9F9E05D287DFB884CC7826E ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
21:21:32.0110 0x0728  WudfPf - ok
21:21:32.0141 0x0728  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFRd          C:\windows\System32\drivers\WUDFRd.sys
21:21:32.0157 0x0728  WUDFRd - ok
21:21:32.0172 0x0728  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFSensorLP    C:\windows\System32\drivers\WUDFRd.sys
21:21:32.0172 0x0728  WUDFSensorLP - ok
21:21:32.0188 0x0728  [ BB73CBC65AABC4EA0A5C6A1474A0A743, D644B3C6A7202CADDADB3B68FE1B2A7C76B023FE58F667EED4D538C1F4A65D64 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
21:21:32.0204 0x0728  wudfsvc - ok
21:21:32.0219 0x0728  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdFs       C:\windows\system32\DRIVERS\WUDFRd.sys
21:21:32.0235 0x0728  WUDFWpdFs - ok
21:21:32.0250 0x0728  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdMtp      C:\windows\system32\DRIVERS\WUDFRd.sys
21:21:32.0266 0x0728  WUDFWpdMtp - ok
21:21:32.0313 0x0728  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\windows\System32\wwansvc.dll
21:21:32.0344 0x0728  WwanSvc - ok
21:21:32.0407 0x0728  [ DD0042F0C3B606A6A8B92D49AFB18AD6, 8D3BE4C93D02AF5F42EC46AF598D6DA40C61D467CB2FEE5E222F9C1E7A84B852 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
21:21:32.0438 0x0728  YahooAUService - ok
21:21:32.0469 0x0728  [ F0814A5318A534E4742F5358DF59F3AD, 4A8877987D9DFAD57AF409D9C35EAF480D5260730E392EF3CFA9725F46640086 ] ZAPrivacyService C:\Program Files (x86)\CheckPoint\ZoneAlarm\ZAPrivacyService.exe
21:21:32.0469 0x0728  ZAPrivacyService - ok
21:21:32.0485 0x0728  ================ Scan global ===============================
21:21:32.0516 0x0728  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\windows\system32\basesrv.dll
21:21:32.0547 0x0728  [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\windows\system32\winsrv.dll
21:21:32.0594 0x0728  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\windows\system32\sxssrv.dll
21:21:32.0625 0x0728  [ B4B610BBCB002EC478C6FD80CF915697, CE22B87A7C7C0D325CE66FB97E7318B4A41EE0BD14D902A410126A1EBBEAA6FB ] C:\windows\system32\services.exe
21:21:32.0657 0x0728  [ Global ] - ok
21:21:32.0657 0x0728  ================ Scan MBR ==================================
21:21:32.0688 0x0728  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
21:21:32.0704 0x0728  \Device\Harddisk0\DR0 - ok
21:21:32.0704 0x0728  ================ Scan VBR ==================================
21:21:32.0704 0x0728  [ D79E79C0975F4D82012D933654DB2680 ] \Device\Harddisk0\DR0\Partition1
21:21:32.0782 0x0728  \Device\Harddisk0\DR0\Partition1 - ok
21:21:32.0797 0x0728  [ A61379781D2B381AFD02A21C363BB32A ] \Device\Harddisk0\DR0\Partition2
21:21:32.0844 0x0728  \Device\Harddisk0\DR0\Partition2 - ok
21:21:32.0860 0x0728  [ 3EAB55458883104C90211C2041344BDA ] \Device\Harddisk0\DR0\Partition3
21:21:32.0923 0x0728  \Device\Harddisk0\DR0\Partition3 - ok
21:21:32.0938 0x0728  [ D5FB737F7370684EEB238DECB688B82D ] \Device\Harddisk0\DR0\Partition4
21:21:32.0938 0x0728  \Device\Harddisk0\DR0\Partition4 - ok
21:21:32.0954 0x0728  [ C0883978F4ED755C4F836A752C6D9702 ] \Device\Harddisk0\DR0\Partition5
21:21:33.0032 0x0728  \Device\Harddisk0\DR0\Partition5 - ok
21:21:33.0063 0x0728  [ 3D083CEF1DD88312ADB3418E06F4E4F7 ] \Device\Harddisk0\DR0\Partition6
21:21:33.0063 0x0728  \Device\Harddisk0\DR0\Partition6 - ok
21:21:33.0063 0x0728  Waiting for KSN requests completion. In queue: 114
21:21:34.0079 0x0728  Waiting for KSN requests completion. In queue: 114
21:21:35.0095 0x0728  Waiting for KSN requests completion. In queue: 114
21:21:36.0126 0x0728  AV detected via SS2: AVG AntiVirus Free Edition 2014, C:\Program Files (x86)\AVG\AVG2014\avgwsc.exe ( 14.0.0.4592 ), 0x42000 ( disabled : updated )
21:21:36.0141 0x0728  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.5.218.0 ), 0x60100 ( disabled : updated )
21:21:36.0157 0x0728  FW detected via SS2: ZoneAlarm Free Firewall Firewall, C:\Program Files (x86)\CheckPoint\ZoneAlarm\\MultiFix.exe ( 12.0.121.0 ), 0x41010 ( enabled )
21:21:38.0657 0x0728  ============================================================
21:21:38.0657 0x0728  Scan finished
21:21:38.0657 0x0728  ============================================================
21:21:38.0657 0x154c  Detected object count: 0
21:21:38.0657 0x154c  Actual detected object count: 0
 



#11 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:50 AM

Posted 31 May 2014 - 05:46 AM

OK -

 

We will just try one more scan, and you may need to post back to Wibdows 7 as a Program Install problem, rather than infection problem.

 

 

Re-open AdwCleaner and hit Uninstall to remove the program and anything in its Quarantine ......

Only reinstall and do a single run with it if later needed.

 

Now -

Shut down your protection software now to avoid potential conflicts.
* How To Temporarily Disable Your Anti-virus
* Please download Junkware Removal Tool or JRT by Thisisu to your desktop.
* Run the tool by double-clicking it.
* If you are using Windows Vista, 7, or 8, right click JRT.exe and select "Run as Administrator".
* The tool will open and start scanning your system.
* Please be patient as this can take a while to complete depending on your system's specifications.
* On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
* Post the contents of JRT.txt into your next message.



#12 redglare

redglare
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:50 AM

Posted 31 May 2014 - 04:21 PM

Thanks, here's the report:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8.1 x64
Ran by HAL 2000 on Sat 05/31/2014 at 15:38:53.51
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FB16E5C3-A9E2-47A2-8EFC-319E775E62CC}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\adtrustmedia"



~~~ FireFox

Emptied folder: C:\Users\HAL 2000\AppData\Roaming\mozilla\firefox\profiles\v7lzzwff.default-1401149071708\minidumps [1 files]



~~~ Event Viewer Logs were cleared
 



#13 redglare

redglare
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:50 AM

Posted 31 May 2014 - 04:31 PM

Another reason I believe its a virus is that the image of a gold padlock appears on the Firefox and Internet Explorer icons in the task bar at the bottom of the screen.



#14 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:01:50 AM

Posted 31 May 2014 - 06:17 PM

Another reason I believe its a virus is that the image of a gold padlock appears on the Firefox and Internet Explorer icons in the task bar at the bottom of the screen.

I have not seen that problem turm up. It may be better to send you to the Experts for a look.

 

Mention that in your post there -

 

Please follow the instructions in this Preparation Guide starting at Step #6.

NOTE - If you cannot complete any step, skip it and continue.

 

 Once the proper DDS logs are created, then make a NEW TOPIC and post it to => Virus, Trojan, Spyware, and Malware Removal Logs area - Not back here -

 

If HelpBot replies, please follow its Step #1 and the team will be notified.

 

Tell me when you post the new topic so we can close this one and only let the Experts fix your problem.



#15 redglare

redglare
  • Topic Starter

  • Members
  • 31 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:50 AM

Posted 31 May 2014 - 08:25 PM

I posted a new topic on the other forum. Thanks for your help.

 

RedGlare






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users