Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Undetectable Virus Prevents Programs from Opening


  • This topic is locked This topic is locked
15 replies to this topic

#1 Artemis850

Artemis850

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 29 May 2014 - 05:18 PM

I don't know where I got the virus from but slowly my computer stopped opening programs, specifically games and extra applications like adobe creative cloud or steam, and also pictures. But it still opens internet browsers, microsoft office, system mechanic, kapersky antivirus, and many other programs that are not games. When trying to open something, it will say the program has stopped working and check for a solution, or it will show loading and then never open. I did a full virus scan with kapersky and system mechanic but came up with nothing. I can still download anything and update anything. The virus also causes my computer to skip any system maintenance I have scheduled on start up. The virus is not masquerading as anything and remains entirely invisible. I do not have any back ups available to turn to, so I need a program I can download that will detect and remove the virus. I'm guessing it is a trojan.


Edited by Artemis850, 29 May 2014 - 05:24 PM.


BC AdBot (Login to Remove)

 


#2 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:46 AM

Posted 29 May 2014 - 06:06 PM

Hello Artemis850
 

First please remove (uninstall) System Mechanic by iolo as this will never help your computer
Why you should not use Registry Cleaners and Optimization Tools
Bleeping Computer DOES NOT recommend the use of registry cleaners/optimizers for several reasons:
 

Please try to download these tools to your desktop to run them.

Download Security Check by Screen317 from HERE
* Save it to your Desktop.
* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.
Note: If a security program requests permission to access the Internet, allow it to do so.

 

Next -

Download MiniToolBox, Save it to your desktop and run it.
Close any Firefox browsers you may have open
Checkmark the following boxes:
• Flush DNS
• Report IE Proxy Settings
• Reset IE Proxy Settings
• Report FF Proxy Settings
• Reset FF Proxy Settings
• List last 10 Event Viewer log
• List Installed Programs
• List Users, Partitions and Memory size.
Click Go and copy / paste the result (Result.txt).

 

 

Next -

Please download and run RKill by Grinler.
A black DOS box will briefly flash and then disappear.
This is normal and indicates the tool ran successfully.

Please post the small log back here

 

Important: Do not reboot your computer until you complete the next step.

 

Now:

Please download AdwCleaner by Xplode and save to your Desktop.
NOTE : Please close or save all work, as the computer will be Rebooted
Double-click on AdwCleaner.exe to run the tool.
Vista/Windows 7/8 users right-click and select Run As Administrator.
Click on the Scan button. (
only once)
AdwCleaner will begin...be patient as the scan may take some time to complete.
After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review. 
If you see any which you do not want removed, remove the check mark next to it. 
Next: Click on the Clean button (
only once) to remove the selected items. 
You will receive a message telling you that all programs will be close so that the infections can be removed. 
Click on OK, and then OK again to confirm the reboot.
When cleaning process is complete a log (AdwCleaner[S0].txt ) of what was removed will be on your desktop. 
Please copy and the paste this log in your next post.

 

A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.



#3 Artemis850

Artemis850
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 29 May 2014 - 07:10 PM

 Results of screen317's Security Check version 0.99.83  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Disabled!  
Kaspersky PURE 3.0   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Java™ 6 Update 45  
 Java 7 Update 25  
 Java™ SE Runtime Environment 6
 Java™ SE Development Kit 6
 Java™ SE Development Kit 6 Update 45
 Java SE Development Kit 7 Update 25
 Java version out of Date!
 Adobe Flash Player 13.0.0.214  
 Adobe Reader XI  
 Mozilla Firefox (29.0.1)
 Google Chrome 35.0.1916.114  
````````Process Check: objlist.exe by Laurent````````  
 Kaspersky Lab Kaspersky PURE 3.0 avp.exe  
 Kaspersky Lab Kaspersky PURE 3.0 klwtblfs.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0%
````````````````````End of Log``````````````````````



#4 Artemis850

Artemis850
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 29 May 2014 - 07:17 PM

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Fry's Electronics (administrator) on 29-05-2014 at 19:13:20
Running from "C:\Users\Fry's Electronics\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.


========================= Event log errors: ===============================

Application errors:
==================
Error: (05/29/2014 06:57:22 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/29/2014 05:15:37 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\windows\system32\msiexec.exe /V; Description = Installed iTunes; Error = 0x80070422).

Error: (05/29/2014 05:15:35 PM) (Source: Application Error) (User: )
Description: Faulting application name: aom.exe, version: 3.2004.4.2300, time stamp: 0x40897503
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521ea8e7
Exception code: 0xc0000005
Fault offset: 0x000332b0
Faulting process id: 0x1260
Faulting application start time: 0xaom.exe0
Faulting application path: aom.exe1
Faulting module path: aom.exe2
Report Id: aom.exe3

Error: (05/29/2014 05:15:29 PM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\windows\system32\msiexec.exe /V; Description = Installed iTunes; Error = 0x80070422).

Error: (05/29/2014 04:58:49 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2014 01:57:04 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 00:00:00 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).

Error: (05/25/2014 01:00:02 AM) (Source: Application Error) (User: )
Description: Faulting application name: taskhost.exe, version: 6.1.7601.18010, time stamp: 0x50aee9f3
Faulting module name: ntdll.dll, version: 6.1.7601.18247, time stamp: 0x521eaf24
Exception code: 0xc0000374
Fault offset: 0x00000000000c4102
Faulting process id: 0x1930
Faulting application start time: 0xtaskhost.exe0
Faulting application path: taskhost.exe1
Faulting module path: taskhost.exe2
Report Id: taskhost.exe3

Error: (05/25/2014 00:00:00 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).

Error: (05/24/2014 08:52:03 AM) (Source: System Restore) (User: )
Description: Failed to create restore point (Process = C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation; Description = Scheduled Checkpoint; Error = 0x80070422).


System errors:
=============
Error: (05/29/2014 04:58:56 PM) (Source: Service Control Manager) (User: )
Description: The LitModeCtrl service has reported an invalid current state 32.

Error: (05/23/2014 11:18:15 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (05/23/2014 11:18:15 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (05/23/2014 10:47:42 PM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (05/23/2014 10:47:09 PM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (05/23/2014 10:46:42 PM) (Source: cdrom) (User: )
Description: The device, \Device\CdRom0, has a bad block.

Error: (05/23/2014 09:46:42 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (05/23/2014 09:46:42 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated with service-specific error %%-2147218173.

Error: (05/23/2014 09:45:52 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 9:26:11 PM on ?5/?23/?2014 was unexpected.

Error: (05/23/2014 09:13:18 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error:
%%1056


Microsoft Office Sessions:
=========================
Error: (05/29/2014 06:57:22 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/29/2014 05:15:37 PM) (Source: System Restore)(User: )
Description: C:\windows\system32\msiexec.exe /VInstalled iTunes0x80070422

Error: (05/29/2014 05:15:35 PM) (Source: Application Error)(User: )
Description: aom.exe3.2004.4.230040897503ntdll.dll6.1.7601.18247521ea8e7c0000005000332b0126001cf7b8b82119eadC:\Program Files (x86)\Microsoft Games\Age of Mythology\aom.exeC:\windows\SysWOW64\ntdll.dllc10f8516-e77e-11e3-b4ab-00038a000015

Error: (05/29/2014 05:15:29 PM) (Source: System Restore)(User: )
Description: C:\windows\system32\msiexec.exe /VInstalled iTunes0x80070422

Error: (05/29/2014 04:58:49 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/27/2014 01:57:04 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (05/26/2014 00:00:00 AM) (Source: System Restore)(User: )
Description: C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreationScheduled Checkpoint0x80070422

Error: (05/25/2014 01:00:02 AM) (Source: Application Error)(User: )
Description: taskhost.exe6.1.7601.1801050aee9f3ntdll.dll6.1.7601.18247521eaf24c000037400000000000c4102193001cf77de90403dd8C:\windows\system32\taskhost.exeC:\windows\SYSTEM32\ntdll.dllcf1191f9-e3d1-11e3-b4ce-00038a000015

Error: (05/25/2014 00:00:00 AM) (Source: System Restore)(User: )
Description: C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreationScheduled Checkpoint0x80070422

Error: (05/24/2014 08:52:03 AM) (Source: System Restore)(User: )
Description: C:\windows\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreationScheduled Checkpoint0x80070422


CodeIntegrity Errors:
===================================
  Date: 2013-09-11 00:30:37.736
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-09-11 00:30:37.734
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-09-11 00:30:37.731
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-09-11 00:30:37.716
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-09-11 00:30:37.714
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-09-11 00:30:37.711
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-09-10 00:30:25.782
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-09-10 00:30:25.781
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-09-10 00:30:25.779
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.

  Date: 2013-09-10 00:30:25.772
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Adobe AIR (Version: 13.0.0.111)
Adobe Community Help (Version: 3.4.980)
Adobe Flash Player 13 ActiveX (Version: 13.0.0.214)
Adobe Flash Player 13 Plugin (Version: 13.0.0.214)
Adobe Photoshop CS5.1 (Version: 12.1)
Adobe Reader XI (11.0.07) (Version: 11.0.07)
Age of Empires II - the Conquerors WideScreen Patcher (Version: 1.0.40)
Age of Empires III - The Asian Dynasties (Version: 1.00.0000)
Age of Empires III - The WarChiefs (Version: 1.00.0000)
Age of Empires III (Version: 1.00.0000)
Age of Mythology
Akamai NetSession Interface
AMD Accelerated Video Transcoding (Version: 13.20.100.31206)
AMD APP SDK Runtime (Version: 2.4.650.9)
AMD Catalyst Control Center (Version: 2013.1206.1603.28764)
AMD Catalyst Install Manager (Version: 8.0.915.0)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD Media Foundation Decoders (Version: 1.0.81206.1620)
AMD Wireless Display v3.0 (Version: 1.0.0.14)
AOL Uninstaller (Choose which Products to Remove)
Apple Application Support (Version: 3.0.3)
Apple Mobile Device Support (Version: 7.1.1.3)
Apple Software Update (Version: 2.1.3.127)
Bonjour (Version: 3.0.0.10)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (Version: 2013.1206.1603.28764)
Catalyst Control Center InstallProxy (Version: 2013.1206.1603.28764)
Catalyst Control Center Localization All (Version: 2013.1206.1603.28764)
CCC Help Chinese Standard (Version: 2013.1206.1602.28764)
CCC Help Chinese Traditional (Version: 2013.1206.1602.28764)
CCC Help Czech (Version: 2013.1206.1602.28764)
CCC Help Danish (Version: 2013.1206.1602.28764)
CCC Help Dutch (Version: 2013.1206.1602.28764)
CCC Help English (Version: 2013.1206.1602.28764)
CCC Help Finnish (Version: 2013.1206.1602.28764)
CCC Help French (Version: 2013.1206.1602.28764)
CCC Help German (Version: 2013.1206.1602.28764)
CCC Help Greek (Version: 2013.1206.1602.28764)
CCC Help Hungarian (Version: 2013.1206.1602.28764)
CCC Help Italian (Version: 2013.1206.1602.28764)
CCC Help Japanese (Version: 2013.1206.1602.28764)
CCC Help Korean (Version: 2013.1206.1602.28764)
CCC Help Norwegian (Version: 2013.1206.1602.28764)
CCC Help Polish (Version: 2013.1206.1602.28764)
CCC Help Portuguese (Version: 2013.1206.1602.28764)
CCC Help Russian (Version: 2013.1206.1602.28764)
CCC Help Spanish (Version: 2013.1206.1602.28764)
CCC Help Swedish (Version: 2013.1206.1602.28764)
CCC Help Thai (Version: 2013.1206.1602.28764)
CCC Help Turkish (Version: 2013.1206.1602.28764)
ccc-utility64 (Version: 2013.1206.1603.28764)
Cisco Connect (Version: 1.4.11287.0)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Download Updater (AOL Inc.)
EPSON Artisan 810 Series Printer Uninstall
Epson Event Manager (Version: 2.30.01)
Epson FAX Utility (Version: 1.00.01)
Epson PC-FAX Driver
Epson Print CD (Version: 2.00.00)
EPSON Scan
EpsonNet Print (Version: 2.5.00)
EpsonNet Setup (Version: 3.1c)
Free MP4 Video Converter version 5.0.40.514 (Version: 5.0.40.514)
Free Studio version 2014 (Version: 6.2.16.327)
GameRanger
Google Chrome (Version: 35.0.1916.114)
Google Update Helper (Version: 1.3.24.7)
Grand Ages Rome 1.02 (Version: 1.02)
Horizon v2.7.9.0 (Version: 2.7.9.0)
IB Updater Service (Version: 4.0.8.8)
Intel® Management Engine Components (Version: 7.0.0.1118)
Intel® Rapid Storage Technology (Version: 10.0.0.1046)
iTunes (Version: 11.2.2.3)
Java 7 Update 25 (Version: 7.0.250)
Java SE Development Kit 7 Update 25 (Version: 1.7.0.250)
Java™ 6 Update 45 (Version: 6.0.450)
Java™ SE Development Kit 6 (Version: 1.6.0.0)
Java™ SE Development Kit 6 Update 45 (Version: 1.6.0.450)
Java™ SE Runtime Environment 6 (Version: 1.6.0.0)
JCreator LE 4.00
Junk Mail filter update (Version: 15.4.3502.0922)
Kaspersky PURE 3.0 (Version: 13.0.2.558)
Lenovo Driver and Application Installation (Version: 5.10.1809)
Lenovo Dynamic Brightness System (Version: 4.0.00.22080)
Lenovo Eye Distance System (Version: 4.0.00.21090)
Lenovo Power2Go (Version: 6.0.3720)
Lenovo Rescue System (Version: 3.0.1409)
Lenovo Screensaver (Version: 1.0.5.100928)
Lenovo Tinian Fn PS/2 Keyboard Driver (Version: V1.0.11.0321)
LTCM Client (Version: 1.20.3792)
LVT (Version: 4.1.2.0919)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Age of Empires Gold
Microsoft Age of Empires II
Microsoft Age of Empires II: The Conquerors Expansion
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.30214.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft VC9 runtime libraries (Version: 1.0.0)
Microsoft VC9 runtime libraries (Version: 2.0.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (Version: 11.0.60610.1)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (Version: 11.0.61030.0)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (Version: 11.0.60610.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (Version: 11.0.61030.0)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (Version: 11.0.61030)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (Version: 11.0.50727)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (Version: 11.0.61030)
Microsoft WSE 3.0 Runtime (Version: 3.0.5305.0)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_ATL_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86_x64 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86_x64 (Version: 80.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_ATL_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86_x64 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86 (Version: 1.00.0000)
Microsoft_VC90_MFCLOC_x86_x64 (Version: 1.00.0000)
Miro (Version: 5.0.4)
Mozilla Firefox 29.0.1 (x86 en-US) (Version: 29.0.1)
Mozilla Maintenance Service (Version: 29.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML4 Parser (Version: 1.0.0)
MuseScore 1.3 (Version: 1.3.0)
Origin (Version: 9.0.14.2148)
Pandora (Version: 2.0.8)
PDF Settings CS5 (Version: 10.0)
Photo Story 3 for Windows (Version: 3.0.1115.11)
Power Dial (Version: 3.0.1.2126)
QuickTime 7 (Version: 7.75.80.95)
Realtek High Definition Audio Driver (Version: 6.0.1.6151)
Realtek USB 2.0 Card Reader (Version: 6.1.7600.30123)
REALTEK Wireless LAN Driver (Version: 1.00.0159)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.26.0)
Rise of Nations (Version: 1.0)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
Sims2Pack Clean Installer
Skype™ 6.14 (Version: 6.14.104)
Steam
The Rise of Atlantis
The Sims 2 Nightlife
The Sims 2 Open For Business
The Sims 2 Pets
The Sims 2 University
The Sims Makin' Magic
The Sims™ 2 Bon Voyage
The Sims™ 2 FreeTime
The Sims™ 2 Seasons
The Sims™ 3 (Version: 1.67.2)
The Sims™ 3 Ambitions (Version: 4.10.1)
The Sims™ 3 Seasons (Version: 16.0.136)
The Sims™ 3 Supernatural (Version: 15.0.135)
The Sims™ 3 World Adventures (Version: 2.17.2)
ThemeWallpaper (Version: 1.2.0.101108)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition
Update for Microsoft Office 2010 (KB2494150)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition
Viewpoint Media Player
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
YTD Video Downloader 4.8.1 (Version: 4.8.1)

========================= Memory info: ===================================

Percentage of memory in use: 18%
Total physical RAM: 12268.96 MB
Available physical RAM: 9979.89 MB
Total Pagefile: 24536.1 MB
Available Pagefile: 22145.35 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.84 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:1372.09 GB) (Free:1097.63 GB) NTFS

========================= Users: ========================================

User accounts for \\HOMECOMPUTER

Administrator            Fry's Electronics        Guest                    


**** End of log ****
 



#5 Artemis850

Artemis850
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 29 May 2014 - 07:20 PM

Rkill 2.6.6 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 05/29/2014 07:18:40 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

 * No malware services found to stop.

Checking for processes to terminate:

 * C:\Windows\jmesoft\Service.exe (PID: 1076) [WD-HEUR]
 * C:\Windows\jmesoft\hotkey.exe (PID: 3612) [WD-HEUR]

2 proccesses terminated!

Checking Registry for malware related settings:

 * No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

 * Windows Defender Disabled

   [HKLM\SOFTWARE\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001

 * Windows Firewall Disabled

   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000

Checking Windows Service Integrity:

 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual

 * WMPNetworkSvc [Missing Service]

Searching for Missing Digital Signatures:

 * No issues found.

Checking HOSTS File:

 * No issues found.

Program finished at: 05/29/2014 07:18:56 PM
Execution time: 0 hours(s), 0 minute(s), and 15 seconds(s)



#6 Artemis850

Artemis850
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 29 May 2014 - 07:30 PM

# AdwCleaner v3.211 - Report created 29/05/2014 at 19:24:26
# Updated 26/05/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Fry's Electronics - HOMECOMPUTER
# Running from : C:\Users\Fry's Electronics\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Conduit
Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\Viewpoint
Folder Deleted : C:\Program Files (x86)\BearShare Applications
Folder Deleted : C:\Program Files (x86)\BrowseMark
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Optimizer Pro
Folder Deleted : C:\Program Files (x86)\Viewpoint
Folder Deleted : C:\Program Files (x86)\Common Files\Software Update Utility
Folder Deleted : C:\Program Files (x86)\Common Files\Spigot
Folder Deleted : C:\windows\SysWOW64\ARFC
Folder Deleted : C:\windows\SysWOW64\jmdp
Folder Deleted : C:\windows\SysWOW64\WNLT
Folder Deleted : C:\windows\System32\ljkb
Folder Deleted : C:\Users\Fry's Electronics\AppData\Local\Conduit
Folder Deleted : C:\Users\Fry's Electronics\AppData\Local\Slick Savings
Folder Deleted : C:\Users\Fry's Electronics\AppData\Local\TBHostSupport
Folder Deleted : C:\Users\Fry's Electronics\AppData\Local\WhiteListing
Folder Deleted : C:\Users\Fry's Electronics\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Fry's Electronics\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Fry's Electronics\AppData\Roaming\OpenCandy
Folder Deleted : C:\Users\Fry's Electronics\AppData\Roaming\SearchProtect
Folder Deleted : C:\Users\Fry's Electronics\AppData\Roaming\Mozilla\Firefox\Profiles\w4suis0d.default\Smartbar
Folder Deleted : C:\Users\Fry's Electronics\AppData\Roaming\Mozilla\Firefox\Profiles\w4suis0d.default\ValueApps
Folder Deleted : C:\Users\Fry's Electronics\AppData\Roaming\Mozilla\Firefox\Profiles\w4suis0d.default\CT538894
Folder Deleted : C:\Users\Fry's Electronics\AppData\Roaming\Mozilla\Firefox\Profiles\w4suis0d.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
Folder Deleted : C:\Users\Fry's Electronics\AppData\Roaming\Mozilla\Firefox\Profiles\w4suis0d.default\Extensions\{98faecd5-7c62-44d4-9b9f-91b6db7cbb73}
File Deleted : C:\END
File Deleted : C:\windows\System32\dmwu.exe
File Deleted : C:\windows\System32\ImhxxpComm.dll
File Deleted : C:\Users\Fry's Electronics\AppData\LocalLow\SkwConfig.bin
File Deleted : C:\Users\Fry's Electronics\AppData\Roaming\Mozilla\Firefox\Profiles\w4suis0d.default\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\mhkaekfpcppmmioggniknbnbdbcigpkk
Key Deleted : HKCU\Software\Google\Chrome\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\conduit.com
Value Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [TBHostSupport]
Key Deleted : HKLM\SOFTWARE\Classes\AppID\dnu.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtl.1
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary
Key Deleted : HKLM\SOFTWARE\Classes\AxMetaStream.MetaStreamCtlSecondary.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdate
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUIBrowser.1
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController
Key Deleted : HKLM\SOFTWARE\Classes\dnUpdater.DownloadUpdController.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Microsoft\Active Setup\Installed Components\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@viewpoint.com/VMP
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{6C259840-5BA8-46E6-8ED1-EF3BA47D8BA1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F998B2-0E00-11D3-A498-00104B6EB52E}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1B00725B-C455-4DE6-BFB6-AD540AD427CD}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E15A9BFD-D16D-496D-8222-44CADF316E70}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{92380354-381A-471F-BE2E-DD9ACD9777EA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7B089B94-D1DC-4C6B-87E1-8156E22C1D96}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{660E6F4F-840D-436D-B668-433D9591BAC5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E7435878-65B9-44D1-A443-81754E5DFC90}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\IM
Key Deleted : HKCU\Software\ImInstaller
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\WNLT
Key Deleted : HKCU\Software\AppDataLow\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKCU\Software\AppDataLow\Software
Key Deleted : HKLM\Software\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\Software\{6791A2F3-FC80-475C-A002-C014AF797E9C}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\firstsearch
Key Deleted : HKLM\Software\MetaStream
Key Deleted : HKLM\Software\Viewpoint
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SoftwareUpdUtility
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ViewpointMediaPlayer
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT
Key Deleted : [x64] HKLM\SOFTWARE\Tarma Installer
Key Deleted : [x64] HKLM\SOFTWARE\WNLT

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17041


-\\ Mozilla Firefox v29.0.1 (en-US)

[ File : C:\Users\Fry's Electronics\AppData\Roaming\Mozilla\Firefox\Profiles\w4suis0d.default\prefs.js ]

Line Deleted : user_pref("CT3310511_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1382736658544,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Deleted : user_pref("CT538894.1000082.isPlayDisplay", "true");
Line Deleted : user_pref("CT538894.1000082.state", "{\"state\":\"stopped\",\"text\":\"1.FM (Cou...\",\"description\":\"1.FM (Country)\",\"url\":\"hxxp://1.fm/wm/energycountry32k.asx\"}");
Line Deleted : user_pref("CT538894.1000234.TWC_TMP_city", "HOUSTON");
Line Deleted : user_pref("CT538894.1000234.TWC_TMP_country", "US");
Line Deleted : user_pref("CT538894.1000234.TWC_country", "UNITED STATES");
Line Deleted : user_pref("CT538894.1000234.TWC_locId", "USTX0617");
Line Deleted : user_pref("CT538894.1000234.TWC_location", "Houston, TX");
Line Deleted : user_pref("CT538894.1000234.TWC_region", "US");
Line Deleted : user_pref("CT538894.1000234.TWC_temp_dis", "f");
Line Deleted : user_pref("CT538894.1000234.TWC_wind_dis", "mph");
Line Deleted : user_pref("CT538894.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT538894.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT538894.FF19Solved", "true");
Line Deleted : user_pref("CT538894.Facebbok_user_cuid_1384205870.enc", "NGUyZTAwMDEtNTI4MS0wMDAwLTAwMDAtMDAwMDAwMDAwMDAw");
Line Deleted : user_pref("CT538894.Facebbok_user_id.enc", "MTM4NDIwNTg3MA==");
Line Deleted : user_pref("CT538894.FacebookNotifications.enc", "MQ==");
Line Deleted : user_pref("CT538894.Facebook_Conduit_Social_SSKEY_1384205870.enc", "UkxUQ2VKSjJEUHRCUmhHMHUzRUQ2UF9RUDY0NXJaaS50MFFKaDBBSg==");
Line Deleted : user_pref("CT538894.Facebook_First_Visit.enc", "bm90Rmlyc3Q=");
Line Deleted : user_pref("CT538894.Facebook_Last_Message_Choice.enc", "dW5yZWFk");
Line Deleted : user_pref("CT538894.Facebook_Last_Visit_Tab.enc", "bmV3c0ZlZWRMaQ==");
Line Deleted : user_pref("CT538894.Facebook_LoggedIn.enc", "eWVz");
Line Deleted : user_pref("CT538894.Facebook_Login_Refresh.enc", "MC41NTMxMjU1OTI1NTc0ODU0");
Line Deleted : user_pref("CT538894.Facebook_Login_Status.enc", "Mw==");
Line Deleted : user_pref("CT538894.Facebook_Lust_RecieveGadet.enc", "MTA4NTQyNDU2LDEwODU0MjA2OSw=");
Line Deleted : user_pref("CT538894.Facebook_Mode.enc", "Mg==");
Line Deleted : user_pref("CT538894.Facebook_User_Locale.enc", "ZW4=");
Line Deleted : user_pref("CT538894.Facebook_User_token.enc", "Q0FBR2E4ZlV5V05FQkFOYjh1MDY0MmFreHhSS0VKM3hXMmtxSGU4NUliZEM2cFFaQkdGN0lkSG96RkhCY1pDTE1KZHlLaDBFbnNIdmxKellZSHNCRXRzTlpDRFVaQzRsb0xxY0FLMFNEeW1OcXMzNTI2b[...]
Line Deleted : user_pref("CT538894.Facebook_ctid_Connect_send_n.enc", "c2VuZGVk");
Line Deleted : user_pref("CT538894.Facebook_ctid_Connect_send_new.enc", "c2VuZGVk");
Line Deleted : user_pref("CT538894.Facebook_user_name.enc", "MHgwMDQxLDB4MDA2RCwweDAwNjEsMHgwMDZFLDB4MDA2NCwweDAwNjEsMHgwMDIwLDB4MDA1MCwweDAwNjEsMHgwMDc0LDB4MDA3MywweDAwNjMsMHgwMDY4LDB4MDA2QiwweDAwNjU=");
Line Deleted : user_pref("CT538894.FirstTime", "true");
Line Deleted : user_pref("CT538894.FirstTimeFF3", "true");
Line Deleted : user_pref("CT538894.RestartDialogFirstTime", "false");
Line Deleted : user_pref("CT538894.RestartDialogShouldDisplay", "false");
Line Deleted : user_pref("CT538894.UserID", "UN25864262602378630");
Line Deleted : user_pref("CT538894.addressBarTakeOverEnabledInHidden", "true");
Line Deleted : user_pref("CT538894.appOptions", "{\"128081140150944034\":{\"render\":true,\"disabled\":true,\"appGuid\":\"\",\"appClientGuid\":\"\",\"isPersonalApp\":false},\"1000082\":{\"render\":true,\"appGuid\":\[...]
Line Deleted : user_pref("CT538894.countryCode", "US");
Line Deleted : user_pref("CT538894.defaultSearch", "false");
Line Deleted : user_pref("CT538894.dum", "1");
Line Deleted : user_pref("CT538894.embeddedsData", "[{\"appId\":\"128081131806569220\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"instan[...]
Line Deleted : user_pref("CT538894.enableSearchFromAddressBar", "true");
Line Deleted : user_pref("CT538894.facebook_toolbar_Not_Numer.enc", "Mg==");
Line Deleted : user_pref("CT538894.firstTimeDialogOpened", "true");
Line Deleted : user_pref("CT538894.fixPageNotFoundErrorByUser", "TRUE");
Line Deleted : user_pref("CT538894.fixPageNotFoundErrorInHidden", "true");
Line Deleted : user_pref("CT538894.fullUserID", "UN25864262602378630.IN.20140414165940");
Line Deleted : user_pref("CT538894.hxxps___facebook_conduitapps_com.APP_WIN_FEATURES.enc", "cmVzaXphYmxlPTAsaHNjcm9sbD0wLHZzY3JvbGw9MCx0aXRsZWJhcj0xLGNsb3NlYnV0dG9uPTEsc2F2ZXJlc2l6ZWRzaXplPTAsb3BlbnBvc2l0aW9uPWFsaWd[...]
Line Deleted : user_pref("CT538894.installDate", "14/04/2014 16:59:41");
Line Deleted : user_pref("CT538894.installSessionId", "dc047806-4d78-4a0f-82d6-ffbb0895e4d0");
Line Deleted : user_pref("CT538894.installSp", "false");
Line Deleted : user_pref("CT538894.installType", "xpe");
Line Deleted : user_pref("CT538894.installUsage", "2014-04-15T00:59:55.7061104+03:00");
Line Deleted : user_pref("CT538894.installUsageEarly", "2014-04-15T00:59:55.2849023+03:00");
Line Deleted : user_pref("CT538894.installerVersion", "1.10.0.6");
Line Deleted : user_pref("CT538894.isCheckedStartAsHidden", true);
Line Deleted : user_pref("CT538894.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT538894.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Line Deleted : user_pref("CT538894.isWelcomPage", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Deleted : user_pref("CT538894.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit.com/?gd=&ctid=CT538894&octid=CT538894&ISID=ISID_ID&SearchSource=15&CUI=UN25864262602378630&Lay=1&UM=[...]
Line Deleted : user_pref("CT538894.lastVersion", "10.31.0.526");
Line Deleted : user_pref("CT538894.mam_gk_installer_preapproved.enc", "dHJ1ZQ==");
Line Deleted : user_pref("CT538894.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxp%3A%2F%2Fwww.bleepingcomputer.com%2Fforums%2Ft%2F535967%2Fundetectable-virus-prevents-programs-from-opening%2F\",\"EB_MAIN_FRA[...]
Line Deleted : user_pref("CT538894.openThankYouPage", "true");
Line Deleted : user_pref("CT538894.openUninstallPage", "true");
Line Deleted : user_pref("CT538894.originalHomepage", "chrome://branding/locale/browserconfig.properties");
Line Deleted : user_pref("CT538894.performedDomainChangesMigration", "true");
Line Deleted : user_pref("CT538894.revertSettingsEnabled", "false");
Line Deleted : user_pref("CT538894.search.searchAppId", "128081131806569220");
Line Deleted : user_pref("CT538894.search.searchCount", "1");
Line Deleted : user_pref("CT538894.searchInNewTabEnabledByUser", "true");
Line Deleted : user_pref("CT538894.searchInNewTabEnabledInHidden", "true");
Line Deleted : user_pref("CT538894.searchRevert", "false");
Line Deleted : user_pref("CT538894.searchSuggestEnabledByUser", "true");
Line Deleted : user_pref("CT538894.searchUninstallUserMode", "4");
Line Deleted : user_pref("CT538894.searchUserMode", "4");
Line Deleted : user_pref("CT538894.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT538894.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
Line Deleted : user_pref("CT538894.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"4\"}");
Line Deleted : user_pref("CT538894.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT538894\"}");
Line Deleted : user_pref("CT538894.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://PandoraRadio.OurToolbar.com//xpi\"}");
Line Deleted : user_pref("CT538894.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"Pandora Radio \"}");
Line Deleted : user_pref("CT538894.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
Line Deleted : user_pref("CT538894.serviceLayer_service_usage_toolbarUsageCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
Line Deleted : user_pref("CT538894.serviceLayer_services_Configuration_lastUpdate", "1401400697599");
Line Deleted : user_pref("CT538894.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1401400696323");
Line Deleted : user_pref("CT538894.serviceLayer_services_appsMetadata_lastUpdate", "1401400698596");
Line Deleted : user_pref("CT538894.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1401400696281");
Line Deleted : user_pref("CT538894.serviceLayer_services_installUsage_ToolbarInstallEarly_lastUpdate", "1397512794867");
Line Deleted : user_pref("CT538894.serviceLayer_services_installUsage_ToolbarInstall_lastUpdate", "1397512795324");
Line Deleted : user_pref("CT538894.serviceLayer_services_login_10.29.0.20_lastUpdate", "1397527831367");
Line Deleted : user_pref("CT538894.serviceLayer_services_login_10.29.0.520_lastUpdate", "1399431369189");
Line Deleted : user_pref("CT538894.serviceLayer_services_login_10.30.1.502_lastUpdate", "1400794553019");
Line Deleted : user_pref("CT538894.serviceLayer_services_login_10.31.0.526_lastUpdate", "1400895112319");
Line Deleted : user_pref("CT538894.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1401400696305");
Line Deleted : user_pref("CT538894.serviceLayer_services_searchAPI_lastUpdate", "1401400697471");
Line Deleted : user_pref("CT538894.serviceLayer_services_serviceMap_lastUpdate", "1401400696221");
Line Deleted : user_pref("CT538894.serviceLayer_services_toolbarContextMenu_lastUpdate", "1401400696258");
Line Deleted : user_pref("CT538894.serviceLayer_services_toolbarSettings_lastUpdate", "1401407961590");
Line Deleted : user_pref("CT538894.serviceLayer_services_translation_lastUpdate", "1401400696353");
Line Deleted : user_pref("CT538894.settingsINI", true);
Line Deleted : user_pref("CT538894.shouldFirstTimeDialog", "false");
Line Deleted : user_pref("CT538894.smartbar.CTID", "CT538894");
Line Deleted : user_pref("CT538894.smartbar.Uninstall", "0");
Line Deleted : user_pref("CT538894.smartbar.homepage", true);
Line Deleted : user_pref("CT538894.smartbar.toolbarName", "Pandora Radio ");
Line Deleted : user_pref("CT538894.startPage", "false");
Line Deleted : user_pref("CT538894.toolbarBornServerTime", "15-4-2014");
Line Deleted : user_pref("CT538894.toolbarCurrentServerTime", "24-5-2014");
Line Deleted : user_pref("CT538894.toolbarInstallDate", "14-04-2014 16:59:40");
Line Deleted : user_pref("CT538894.toolbarLoginClientTime", "Mon Apr 14 2014 16:59:55 GMT-0500 (Central Standard Time)");
Line Deleted : user_pref("CT538894.versionFromInstaller", "10.29.0.20");
Line Deleted : user_pref("CT538894.xpeMode", "1");
Line Deleted : user_pref("CT538894_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1401409001400,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
Line Deleted : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3310511&octid=CT3310511&SearchSource=61&CUI=UN40694913522269631&UM=2&UP=SP3C1C9C52-CD06-43F8-B8E9-0A4AEFBFC8E2");
Line Deleted : user_pref("Smartbar.ConduitSearchEngineList", "");
Line Deleted : user_pref("Smartbar.ConduitSearchUrlList", "");
Line Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "hxxp://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p=");
Line Deleted : user_pref("Smartbar.TBHomepagesList", "hxxp://search.conduit.com/?ctid=CT3310511&octid=CT3310511&SearchSource=61&CUI=UN40694913522269631&UM=2&UP=SP3C1C9C52-CD06-43F8-B8E9-0A4AEFBFC8E2");
Line Deleted : user_pref("Smartbar.TBSearchEngineList", "");
Line Deleted : user_pref("Smartbar.TBSearchUrlList", "");
Line Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT3310511");
Line Deleted : user_pref("browser.newtab.url", "hxxp://search.conduit.com/?gd=&ctid=CT3321972&octid=EB_ORIGINAL_CTID&ISID=MF93A8610-EACB-4FD0-AD24-AD1DD0BE4285&SearchSource=69&CUI=&SSPV=&Lay=1&UM=5&UP=SP45F3A9EF-51D[...]
Line Deleted : user_pref("plugin.blocklisted.npviewpoint", true);
Line Deleted : user_pref("plugin.state.npconduitfirefoxplugin", 2);
Line Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT538894&octid=CT538894&CUI=UN25864262602378630&UM=4&SearchSource=13");
Line Deleted : user_pref("smartbar.homePageOwnerCTID", "CT538894");
Line Deleted : user_pref("smartbar.homepageList", "hxxp://search.conduit.com/?ctid=CT538894&octid=CT538894&CUI=UN25864262602378630&UM=4&SearchSource=13");
Line Deleted : user_pref("smartbar.machineId", "FFWNSLTWAQC4K0L9J3TCXS6G2FL8OAMLDW+A/7OV4DYKLVBYTC9IY3OWKSU5IDVUP8Z8LUYD6FQFX9V/KU1NDQ");
Line Deleted : user_pref("valueApps.CT538894.mam_gk_currentVersion", "312E31332E302E3137");
Line Deleted : user_pref("valueApps.CT538894.mam_gk_currentVersion.storedInFile", false);
Line Deleted : user_pref("valueApps.CT538894.mam_gk_migrated_from_ls", "31");
Line Deleted : user_pref("valueApps.CT538894.mam_gk_migrated_from_ls.storedInFile", false);
Line Deleted : user_pref("valueApps.CT538894.mam_gk_userBornDate", "4E2F41");
Line Deleted : user_pref("valueApps.CT538894.mam_gk_userBornDate.storedInFile", false);

-\\ Google Chrome v35.0.1916.114

[ File : C:\Users\Kiosk\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [21777 octets] - [29/05/2014 19:22:23]
AdwCleaner[S0].txt - [21379 octets] - [29/05/2014 19:24:26]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [21440 octets] ##########



#7 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:46 AM

Posted 29 May 2014 - 08:08 PM

That has ripped a lot of small problems out for you. Lets give it another hit -

 

Java™ 6 Update 45 
 Java 7 Update 25 
 Java™ SE Runtime Environment 6
 Java™ SE Development Kit 6
 Java™ SE Development Kit 6 Update 45
 Java SE Development Kit 7 Update 25 All Java versions out of Date!
Go Here to update your Jave to 7 Update60 (current)
Do not install any Add-ons or Extras offered with the download, as they are advertising versions only.
All existing installs Must be removed via Control Panel > Programs and Features.

 

Now -

* Download Malwarebytes Anti-Malware Free and save it to your desktop
* Double click the desktop icon, click Run, then OK
* Click Next
* Select I accept the agreement then continue to click Next then finally click Install
** Uncheck Enable free trial of Malwarebytes Anti-Malware Premium if you do not want the free trial of the paid version, then click Finish
* If you are notified the Database is out of date click Update Now
* Click Scan Now >>

----------
** When completed click the down arrow on Export Log and select Text file (*.txt)
* Save the file to your desktop as MBAM
* Click Apply Actions then restart your computer if requested
* Copy and past the contents of MBAM.txt in your reply

 

EDIT - Once completed, please post a report on your computer problems -


Edited by noknojon, 29 May 2014 - 08:11 PM.


#8 Artemis850

Artemis850
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 30 May 2014 - 04:47 PM

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 5/30/2014
Scan Time: 4:31:03 PM
Logfile: MBAM.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.05.30.10
Rootkit Database: v2014.05.21.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Fry's Electronics

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 307806
Time Elapsed: 5 min, 46 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 5
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\hbcennhacfaagdopikcegfcobcadeocj, , [f89a3b1cadce2412e2b5bcd81ee447b9],
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\icdlfehblmklkikfigmjhbmmpmkmpooj, , [2d6599beb7c4e6500b8d8d0760a29868],
PUP.Optional.Spigot.A, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\pfndaklgolladniicklehhancnlgocpp, , [2f6367f088f3082e5d3dcdc749b91fe1],
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM, , [7b17114694e744f201f205bdbb48956b],
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT, , [543e3f18fc7f181e809cf0d99073ac54],

Registry Values: 3
PUP.Optional.SweetIM.A, HKLM\SOFTWARE\WOW6432NODE\SWEETIM|simapp_id, {A1BA6993-1C33-11E3-B723-00038A000015}, , [7b17114694e744f201f205bdbb48956b]
PUP.Optional.InstallBrain.A, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\WNLT|URL, MYSTART, , [543e3f18fc7f181e809cf0d99073ac54]
Hijack.FolderOptions, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NoFolderOptions, 1, , [b1e181d61f5c072ff8a663b9e61d8977]

Registry Data: 12
PUM.Hijack.Run, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NoRun, 1, Good: (0), Bad: (1),,[42500156cab11521da42baa00301b14f]
PUM.Hijack.Drives, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER|NoDrives, 7, Good: (0), Bad: (7),,[9cf6f562205b33037b35adac59ab58a8]
PUM.Hijack.Regedit, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM|DisableRegistryTools, 1, Good: (0), Bad: (1),,[4a48ba9d0f6ce55146d34317b94b27d9]
PUM.Hijack.DisplayProperties, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM|NoDispScrSavPage, 1, Good: (0), Bad: (1),,[543e79deaecdfa3ce6b9a5b4897b5ca4]
PUM.Hijack.DisplayProperties, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM|NoDispCPL, 1, Good: (0), Bad: (1),,[078b2a2d5d1ef6404558bb9e48bc50b0]
PUM.Hijack.DisplayProperties, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM|NoDispBackgroundPage, 1, Good: (0), Bad: (1),,[6b278fc8ea9138fe386494c5b74da957]
PUM.Hijack.DisplayProperties, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM|NoDispAppearancePage, 1, Good: (0), Bad: (1),,[8b07a0b76a11c076c3d7e7726d97f907]
PUM.Hijack.TaskManager, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\SYSTEM|DisableTaskMgr, 1, Good: (0), Bad: (1),,[a8ea86d1a0db85b1e19abc9ff50fe818]
PUM.Hijack.HomePageControl, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\POLICIES\MICROSOFT\INTERNET EXPLORER\CONTROL PANEL|HomePage, 1, Good: (0), Bad: (1),,[8111ec6b2a519d99697b5305c63e20e0]
PUM.Hijack.CMDPrompt, HKU\S-1-5-21-528498831-319965440-437876355-1002-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\POLICIES\MICROSOFT\WINDOWS\SYSTEM|DisableCMD, 1, Good: (0), Bad: (1),,[8a089cbbb0cb3df9f59ee772e61e7a86]
Broken.OpenCommand, HKCR\scrfile\shell\open\command, NOTEPAD.EXE "Good: ("Bad: (NOTEPAD.EXE "%1"),,[ffffffffffffffffffffffffffffffff]" /S)", %4, %5
Broken.OpenCommand, HKCR\regfile\shell\open\command, NOTEPAD.EXE "Good: (regedit.exe "Bad: (NOTEPAD.EXE "%1"),,[ffffffffffffffffffffffffffffffff]")", %4, %5

Folders: 0
(No malicious items detected)

Files: 1
PUP.Optional.Spigot.A, C:\ProgramData\YouTube Downloader\ytd_installer.exe, , [326088cfea9142f434bb33f2dc259c64],

Physical Sectors: 0
(No malicious items detected)


(end)



#9 Artemis850

Artemis850
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 30 May 2014 - 05:10 PM

The same programs won't open.



#10 Artemis850

Artemis850
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 30 May 2014 - 05:12 PM

I'm going to try reinstalling a game again, and see if it opens later.

 

8:48 PM

That didn't work.


Edited by Artemis850, 30 May 2014 - 08:49 PM.


#11 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:46 AM

Posted 30 May 2014 - 08:00 PM

Download TDSSKiller in Zip form, and save it to your desktop.

 

* Extract (unzip) its contents to your desktop.
* Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
* If an infected file is detected, the default action will be Cure, click on Continue.
* If a suspicious file is detected, the default action will be Skip, click on Continue.
* It may ask you to reboot the computer to complete the process. Click on Reboot Now.
* If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
 

* If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.



#12 Artemis850

Artemis850
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 30 May 2014 - 08:53 PM

20:50:14.0020 0x0b9c  TDSS rootkit removing tool 3.0.0.37 May 30 2014 13:12:03
20:50:27.0165 0x0b9c  ============================================================
20:50:27.0165 0x0b9c  Current date / time: 2014/05/30 20:50:27.0165
20:50:27.0165 0x0b9c  SystemInfo:
20:50:27.0165 0x0b9c  
20:50:27.0165 0x0b9c  OS Version: 6.1.7601 ServicePack: 1.0
20:50:27.0165 0x0b9c  Product type: Workstation
20:50:27.0165 0x0b9c  ComputerName: HOMECOMPUTER
20:50:27.0165 0x0b9c  UserName: Fry's Electronics
20:50:27.0165 0x0b9c  Windows directory: C:\windows
20:50:27.0165 0x0b9c  System windows directory: C:\windows
20:50:27.0165 0x0b9c  Running under WOW64
20:50:27.0165 0x0b9c  Processor architecture: Intel x64
20:50:27.0165 0x0b9c  Number of processors: 8
20:50:27.0165 0x0b9c  Page size: 0x1000
20:50:27.0165 0x0b9c  Boot type: Normal boot
20:50:27.0165 0x0b9c  ============================================================
20:50:27.0479 0x0b9c  KLMD registered as C:\windows\system32\drivers\80609055.sys
20:50:27.0638 0x0b9c  System UUID: {C155BFBF-ABA4-2A4B-53B9-0E52237C6A3E}
20:50:27.0974 0x0b9c  Drive \Device\Harddisk0\DR0 - Size: 0x15D50F66000 ( 1397.27 Gb ), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:50:27.0979 0x0b9c  ============================================================
20:50:27.0979 0x0b9c  \Device\Harddisk0\DR0:
20:50:27.0979 0x0b9c  MBR partitions:
20:50:27.0979 0x0b9c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
20:50:27.0979 0x0b9c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0xAB82F800
20:50:27.0979 0x0b9c  ============================================================
20:50:27.0996 0x0b9c  C: <-> \Device\Harddisk0\DR0\Partition2
20:50:27.0996 0x0b9c  ============================================================
20:50:27.0996 0x0b9c  Initialize success
20:50:27.0996 0x0b9c  ============================================================
20:50:29.0567 0x0ad8  ============================================================
20:50:29.0567 0x0ad8  Scan started
20:50:29.0568 0x0ad8  Mode: Manual;
20:50:29.0568 0x0ad8  ============================================================
20:50:29.0568 0x0ad8  KSN ping started
20:50:32.0349 0x0ad8  KSN ping finished: true
20:50:32.0530 0x0ad8  ================ Scan system memory ========================
20:50:32.0530 0x0ad8  System memory - ok
20:50:32.0531 0x0ad8  ================ Scan services =============================
20:50:32.0725 0x0ad8  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
20:50:32.0734 0x0ad8  1394ohci - ok
20:50:32.0781 0x0ad8  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\windows\system32\drivers\ACPI.sys
20:50:32.0793 0x0ad8  ACPI - ok
20:50:32.0799 0x0ad8  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
20:50:32.0800 0x0ad8  AcpiPmi - ok
20:50:32.0899 0x0ad8  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:50:32.0901 0x0ad8  AdobeARMservice - ok
20:50:32.0976 0x0ad8  [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:50:32.0984 0x0ad8  AdobeFlashPlayerUpdateSvc - ok
20:50:33.0002 0x0ad8  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
20:50:33.0015 0x0ad8  adp94xx - ok
20:50:33.0024 0x0ad8  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\windows\system32\drivers\adpahci.sys
20:50:33.0032 0x0ad8  adpahci - ok
20:50:33.0037 0x0ad8  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\windows\system32\drivers\adpu320.sys
20:50:33.0041 0x0ad8  adpu320 - ok
20:50:33.0063 0x0ad8  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
20:50:33.0064 0x0ad8  AeLookupSvc - ok
20:50:33.0121 0x0ad8  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\windows\system32\drivers\afd.sys
20:50:33.0135 0x0ad8  AFD - ok
20:50:33.0160 0x0ad8  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\windows\system32\drivers\agp440.sys
20:50:33.0163 0x0ad8  agp440 - ok
20:50:33.0181 0x0ad8  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\windows\System32\alg.exe
20:50:33.0185 0x0ad8  ALG - ok
20:50:33.0200 0x0ad8  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\windows\system32\drivers\aliide.sys
20:50:33.0202 0x0ad8  aliide - ok
20:50:33.0208 0x0ad8  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\windows\system32\drivers\amdide.sys
20:50:33.0210 0x0ad8  amdide - ok
20:50:33.0214 0x0ad8  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
20:50:33.0217 0x0ad8  AmdK8 - ok
20:50:33.0469 0x0ad8  [ CC21DD0277EB60A509FB7C88C512E852, 4895A7279FDD7CE866A4F8CC106896E71DCA1DB7FBAA689ECB7A186647C71E30 ] amdkmdag        C:\windows\system32\DRIVERS\atikmdag.sys
20:50:33.0706 0x0ad8  amdkmdag - ok
20:50:33.0752 0x0ad8  [ F3DE27FEC3C674FF24104673682B7B31, EB41331F15CCF48EBB2086F3FD964C529A0BEA8356B9D5A923418F8C384CE61C ] amdkmdap        C:\windows\system32\DRIVERS\atikmpag.sys
20:50:33.0756 0x0ad8  amdkmdap - ok
20:50:33.0766 0x0ad8  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
20:50:33.0768 0x0ad8  AmdPPM - ok
20:50:33.0772 0x0ad8  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\windows\system32\drivers\amdsata.sys
20:50:33.0775 0x0ad8  amdsata - ok
20:50:33.0789 0x0ad8  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
20:50:33.0793 0x0ad8  amdsbs - ok
20:50:33.0804 0x0ad8  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\windows\system32\drivers\amdxata.sys
20:50:33.0805 0x0ad8  amdxata - ok
20:50:34.0044 0x0ad8  [ D98690625EF5C1CEE8C7479C3FB784AC, 845FE40B663EC7882ACDDF78B0E06036A1F1F7BB4F175EECD4AF8D8C7189A5EC ] ANSYS, Inc. License Manager C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe
20:50:34.0115 0x0ad8  ANSYS, Inc. License Manager - ok
20:50:34.0208 0x0ad8  [ 85180CF88C5EBAD73B452A43A004CA51, 24D25495DC21293FC1F37EE7E7C2A4725E66D3D25BE05D7EDF4BB4F444C65526 ] AOL ACS         C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe
20:50:34.0212 0x0ad8  AOL ACS - ok
20:50:34.0236 0x0ad8  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\windows\system32\drivers\appid.sys
20:50:34.0239 0x0ad8  AppID - ok
20:50:34.0248 0x0ad8  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\windows\System32\appidsvc.dll
20:50:34.0250 0x0ad8  AppIDSvc - ok
20:50:34.0273 0x0ad8  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\windows\System32\appinfo.dll
20:50:34.0276 0x0ad8  Appinfo - ok
20:50:34.0342 0x0ad8  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:50:34.0344 0x0ad8  Apple Mobile Device - ok
20:50:34.0351 0x0ad8  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\windows\system32\drivers\arc.sys
20:50:34.0356 0x0ad8  arc - ok
20:50:34.0361 0x0ad8  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\windows\system32\drivers\arcsas.sys
20:50:34.0365 0x0ad8  arcsas - ok
20:50:34.0442 0x0ad8  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:50:34.0446 0x0ad8  aspnet_state - ok
20:50:34.0450 0x0ad8  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
20:50:34.0453 0x0ad8  AsyncMac - ok
20:50:34.0486 0x0ad8  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\windows\system32\drivers\atapi.sys
20:50:34.0487 0x0ad8  atapi - ok
20:50:34.0506 0x0ad8  [ 770A3B0D78232B0C1054495392A1FBA3, 733BB08BAFE42E848F3A3CDFD80A2C37DB829CAD2E18B3D6299FDEE6EF30C9CD ] AtiHDAudioService C:\windows\system32\drivers\AtihdW76.sys
20:50:34.0511 0x0ad8  AtiHDAudioService - ok
20:50:34.0751 0x0ad8  [ CC21DD0277EB60A509FB7C88C512E852, 4895A7279FDD7CE866A4F8CC106896E71DCA1DB7FBAA689ECB7A186647C71E30 ] atikmdag        C:\windows\system32\DRIVERS\atikmdag.sys
20:50:34.0872 0x0ad8  atikmdag - ok
20:50:34.0903 0x0ad8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
20:50:34.0916 0x0ad8  AudioEndpointBuilder - ok
20:50:34.0930 0x0ad8  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\windows\System32\Audiosrv.dll
20:50:34.0939 0x0ad8  AudioSrv - ok
20:50:34.0982 0x0ad8  avp - ok
20:50:34.0997 0x0ad8  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\windows\System32\AxInstSV.dll
20:50:35.0003 0x0ad8  AxInstSV - ok
20:50:35.0029 0x0ad8  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
20:50:35.0046 0x0ad8  b06bdrv - ok
20:50:35.0061 0x0ad8  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
20:50:35.0068 0x0ad8  b57nd60a - ok
20:50:35.0078 0x0ad8  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\windows\System32\bdesvc.dll
20:50:35.0081 0x0ad8  BDESVC - ok
20:50:35.0093 0x0ad8  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\windows\system32\drivers\Beep.sys
20:50:35.0095 0x0ad8  Beep - ok
20:50:35.0151 0x0ad8  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\windows\System32\bfe.dll
20:50:35.0170 0x0ad8  BFE - ok
20:50:35.0210 0x0ad8  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\windows\System32\qmgr.dll
20:50:35.0225 0x0ad8  BITS - ok
20:50:35.0245 0x0ad8  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
20:50:35.0247 0x0ad8  blbdrive - ok
20:50:35.0285 0x0ad8  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:50:35.0299 0x0ad8  Bonjour Service - ok
20:50:35.0332 0x0ad8  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
20:50:35.0338 0x0ad8  bowser - ok
20:50:35.0342 0x0ad8  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
20:50:35.0344 0x0ad8  BrFiltLo - ok
20:50:35.0348 0x0ad8  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
20:50:35.0350 0x0ad8  BrFiltUp - ok
20:50:35.0401 0x0ad8  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\windows\System32\browser.dll
20:50:35.0407 0x0ad8  Browser - ok
20:50:35.0419 0x0ad8  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\windows\System32\Drivers\Brserid.sys
20:50:35.0430 0x0ad8  Brserid - ok
20:50:35.0434 0x0ad8  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
20:50:35.0436 0x0ad8  BrSerWdm - ok
20:50:35.0439 0x0ad8  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
20:50:35.0440 0x0ad8  BrUsbMdm - ok
20:50:35.0442 0x0ad8  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
20:50:35.0444 0x0ad8  BrUsbSer - ok
20:50:35.0447 0x0ad8  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
20:50:35.0449 0x0ad8  BTHMODEM - ok
20:50:35.0459 0x0ad8  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\windows\system32\bthserv.dll
20:50:35.0464 0x0ad8  bthserv - ok
20:50:35.0475 0x0ad8  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
20:50:35.0478 0x0ad8  cdfs - ok
20:50:35.0488 0x0ad8  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
20:50:35.0491 0x0ad8  cdrom - ok
20:50:35.0499 0x0ad8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\windows\System32\certprop.dll
20:50:35.0502 0x0ad8  CertPropSvc - ok
20:50:35.0505 0x0ad8  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\windows\system32\drivers\circlass.sys
20:50:35.0507 0x0ad8  circlass - ok
20:50:35.0525 0x0ad8  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\windows\system32\CLFS.sys
20:50:35.0533 0x0ad8  CLFS - ok
20:50:35.0585 0x0ad8  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:50:35.0590 0x0ad8  clr_optimization_v2.0.50727_32 - ok
20:50:35.0622 0x0ad8  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:50:35.0627 0x0ad8  clr_optimization_v2.0.50727_64 - ok
20:50:35.0703 0x0ad8  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:50:35.0708 0x0ad8  clr_optimization_v4.0.30319_32 - ok
20:50:35.0722 0x0ad8  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:50:35.0729 0x0ad8  clr_optimization_v4.0.30319_64 - ok
20:50:35.0734 0x0ad8  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\windows\system32\drivers\CmBatt.sys
20:50:35.0736 0x0ad8  CmBatt - ok
20:50:35.0747 0x0ad8  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\windows\system32\drivers\cmdide.sys
20:50:35.0749 0x0ad8  cmdide - ok
20:50:35.0802 0x0ad8  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\windows\system32\Drivers\cng.sys
20:50:35.0818 0x0ad8  CNG - ok
20:50:35.0823 0x0ad8  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
20:50:35.0825 0x0ad8  Compbatt - ok
20:50:35.0848 0x0ad8  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
20:50:35.0850 0x0ad8  CompositeBus - ok
20:50:35.0852 0x0ad8  COMSysApp - ok
20:50:35.0855 0x0ad8  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
20:50:35.0856 0x0ad8  crcdisk - ok
20:50:35.0885 0x0ad8  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\windows\system32\cryptsvc.dll
20:50:35.0890 0x0ad8  CryptSvc - ok
20:50:35.0945 0x0ad8  [ 04199CA5C4A6F6E935906A74EAFCA8E7, F02E807E04DA16117E9E4D183186DF9425E9E1AD7CBC34AEED63A38F7D1E75E6 ] CSCrySec        C:\windows\system32\DRIVERS\CSCrySec.sys
20:50:35.0949 0x0ad8  CSCrySec - ok
20:50:36.0017 0x0ad8  [ 0F9FE82E229C039F0AC1996E44059653, BE925C118A7620259724B0750681C83DC14BC78620FB217025F46E4441C55F3A ] CSObjectsSrv    C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
20:50:36.0038 0x0ad8  CSObjectsSrv - ok
20:50:36.0073 0x0ad8  [ 7D7F90460F1309B5205BF8CDFAD63E42, 885B9EA530E7B6D51DC24A5009F37A2D4CCACAFCA0A7CB693F4320E110AFFA4F ] CSVirtualDiskDrv C:\windows\system32\DRIVERS\CSVirtualDiskDrv.sys
20:50:36.0076 0x0ad8  CSVirtualDiskDrv - ok
20:50:36.0114 0x0ad8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\windows\system32\rpcss.dll
20:50:36.0129 0x0ad8  DcomLaunch - ok
20:50:36.0173 0x0ad8  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\windows\System32\defragsvc.dll
20:50:36.0184 0x0ad8  defragsvc - ok
20:50:36.0197 0x0ad8  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\windows\system32\Drivers\dfsc.sys
20:50:36.0204 0x0ad8  DfsC - ok
20:50:36.0235 0x0ad8  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\windows\system32\dhcpcore.dll
20:50:36.0245 0x0ad8  Dhcp - ok
20:50:36.0257 0x0ad8  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\windows\system32\drivers\discache.sys
20:50:36.0261 0x0ad8  discache - ok
20:50:36.0286 0x0ad8  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\windows\system32\drivers\disk.sys
20:50:36.0290 0x0ad8  Disk - ok
20:50:36.0303 0x0ad8  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\windows\System32\dnsrslvr.dll
20:50:36.0309 0x0ad8  Dnscache - ok
20:50:36.0328 0x0ad8  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\windows\System32\dot3svc.dll
20:50:36.0337 0x0ad8  dot3svc - ok
20:50:36.0354 0x0ad8  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\windows\system32\dps.dll
20:50:36.0361 0x0ad8  DPS - ok
20:50:36.0383 0x0ad8  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
20:50:36.0385 0x0ad8  drmkaud - ok
20:50:36.0432 0x0ad8  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
20:50:36.0456 0x0ad8  DXGKrnl - ok
20:50:36.0498 0x0ad8  [ 6BAFD9819D9FEC2EDBAEBC8493C711A4, 689A30C9F881D8C49F90A6C75DA816055B43B84776E815C1DE80B3933ADBB174 ] e1cexpress      C:\windows\system32\DRIVERS\e1c62x64.sys
20:50:36.0510 0x0ad8  e1cexpress - ok
20:50:36.0522 0x0ad8  EagleX64 - ok
20:50:36.0549 0x0ad8  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\windows\System32\eapsvc.dll
20:50:36.0555 0x0ad8  EapHost - ok
20:50:36.0658 0x0ad8  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\windows\system32\drivers\evbda.sys
20:50:36.0754 0x0ad8  ebdrv - ok
20:50:36.0787 0x0ad8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\windows\System32\lsass.exe
20:50:36.0790 0x0ad8  EFS - ok
20:50:36.0851 0x0ad8  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
20:50:36.0876 0x0ad8  ehRecvr - ok
20:50:36.0899 0x0ad8  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\windows\system32\drivers\elxstor.sys
20:50:36.0909 0x0ad8  elxstor - ok
20:50:36.0912 0x0ad8  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\windows\system32\drivers\errdev.sys
20:50:36.0913 0x0ad8  ErrDev - ok
20:50:36.0953 0x0ad8  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\windows\system32\es.dll
20:50:36.0961 0x0ad8  EventSystem - ok
20:50:36.0985 0x0ad8  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\windows\system32\drivers\exfat.sys
20:50:36.0989 0x0ad8  exfat - ok
20:50:37.0010 0x0ad8  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\windows\system32\drivers\fastfat.sys
20:50:37.0015 0x0ad8  fastfat - ok
20:50:37.0037 0x0ad8  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\windows\system32\fxssvc.exe
20:50:37.0049 0x0ad8  Fax - ok
20:50:37.0055 0x0ad8  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\windows\system32\drivers\fdc.sys
20:50:37.0057 0x0ad8  fdc - ok
20:50:37.0066 0x0ad8  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\windows\system32\fdPHost.dll
20:50:37.0067 0x0ad8  fdPHost - ok
20:50:37.0076 0x0ad8  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\windows\system32\fdrespub.dll
20:50:37.0079 0x0ad8  FDResPub - ok
20:50:37.0090 0x0ad8  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
20:50:37.0093 0x0ad8  FileInfo - ok
20:50:37.0105 0x0ad8  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
20:50:37.0106 0x0ad8  Filetrace - ok
20:50:37.0176 0x0ad8  [ BB0667B0171B632B97EA759515476F07, 07A123B2182D5813D2898928C231638353CF086606E9D5A5AF4A2A73E17CEC27 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:50:37.0192 0x0ad8  FLEXnet Licensing Service - ok
20:50:37.0198 0x0ad8  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
20:50:37.0201 0x0ad8  flpydisk - ok
20:50:37.0235 0x0ad8  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
20:50:37.0246 0x0ad8  FltMgr - ok
20:50:37.0284 0x0ad8  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\windows\system32\FntCache.dll
20:50:37.0322 0x0ad8  FontCache - ok
20:50:37.0368 0x0ad8  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:50:37.0371 0x0ad8  FontCache3.0.0.0 - ok
20:50:37.0397 0x0ad8  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
20:50:37.0404 0x0ad8  FsDepends - ok
20:50:37.0446 0x0ad8  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
20:50:37.0448 0x0ad8  Fs_Rec - ok
20:50:37.0482 0x0ad8  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
20:50:37.0490 0x0ad8  fvevol - ok
20:50:37.0496 0x0ad8  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
20:50:37.0500 0x0ad8  gagp30kx - ok
20:50:37.0551 0x0ad8  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
20:50:37.0553 0x0ad8  GEARAspiWDM - ok
20:50:37.0585 0x0ad8  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\windows\System32\gpsvc.dll
20:50:37.0602 0x0ad8  gpsvc - ok
20:50:37.0630 0x0ad8  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
20:50:37.0632 0x0ad8  hcw85cir - ok
20:50:37.0654 0x0ad8  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
20:50:37.0670 0x0ad8  HdAudAddService - ok
20:50:37.0700 0x0ad8  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
20:50:37.0703 0x0ad8  HDAudBus - ok
20:50:37.0706 0x0ad8  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
20:50:37.0707 0x0ad8  HidBatt - ok
20:50:37.0711 0x0ad8  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\windows\system32\drivers\hidbth.sys
20:50:37.0714 0x0ad8  HidBth - ok
20:50:37.0716 0x0ad8  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\windows\system32\drivers\hidir.sys
20:50:37.0718 0x0ad8  HidIr - ok
20:50:37.0747 0x0ad8  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\windows\system32\hidserv.dll
20:50:37.0750 0x0ad8  hidserv - ok
20:50:37.0803 0x0ad8  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\windows\system32\drivers\hidusb.sys
20:50:37.0806 0x0ad8  HidUsb - ok
20:50:37.0838 0x0ad8  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\windows\system32\kmsvc.dll
20:50:37.0843 0x0ad8  hkmsvc - ok
20:50:37.0859 0x0ad8  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
20:50:37.0867 0x0ad8  HomeGroupListener - ok
20:50:37.0890 0x0ad8  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
20:50:37.0896 0x0ad8  HomeGroupProvider - ok
20:50:37.0900 0x0ad8  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
20:50:37.0903 0x0ad8  HpSAMD - ok
20:50:37.0929 0x0ad8  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\windows\system32\drivers\HTTP.sys
20:50:37.0947 0x0ad8  HTTP - ok
20:50:37.0974 0x0ad8  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
20:50:37.0975 0x0ad8  hwpolicy - ok
20:50:37.0984 0x0ad8  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
20:50:37.0989 0x0ad8  i8042prt - ok
20:50:38.0017 0x0ad8  [ F7CE9BE72EDAC499B713ECA6DAE5D26F, AF158C8ADF0815C406435AB051C8D8DD0ECBDBA8644CB75D7611980D70662193 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
20:50:38.0028 0x0ad8  iaStor - ok
20:50:38.0099 0x0ad8  [ B25F192EA1F84A316EB7C19EFCCCF33D, 00BACE87CCA40722FF3AD7243439201CDCC23D0BA01E25F928BF63DA12816F8F ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:50:38.0101 0x0ad8  IAStorDataMgrSvc - ok
20:50:38.0119 0x0ad8  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
20:50:38.0135 0x0ad8  iaStorV - ok
20:50:38.0206 0x0ad8  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:50:38.0211 0x0ad8  IDriverT - ok
20:50:38.0286 0x0ad8  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:50:38.0303 0x0ad8  idsvc - ok
20:50:38.0323 0x0ad8  IEEtwCollectorService - ok
20:50:38.0326 0x0ad8  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\windows\system32\drivers\iirsp.sys
20:50:38.0329 0x0ad8  iirsp - ok
20:50:38.0397 0x0ad8  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\windows\System32\ikeext.dll
20:50:38.0416 0x0ad8  IKEEXT - ok
20:50:38.0511 0x0ad8  [ F5872A11EB4F6DB170D636CD4E53CA9F, 6FCD488E56816AE4203D989CD22E3FB266F1DB6598EA52A526D6A35712610EDE ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
20:50:38.0543 0x0ad8  IntcAzAudAddService - ok
20:50:38.0570 0x0ad8  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\windows\system32\drivers\intelide.sys
20:50:38.0571 0x0ad8  intelide - ok
20:50:38.0582 0x0ad8  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
20:50:38.0583 0x0ad8  intelppm - ok
20:50:38.0606 0x0ad8  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\windows\system32\ipbusenum.dll
20:50:38.0612 0x0ad8  IPBusEnum - ok
20:50:38.0619 0x0ad8  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
20:50:38.0623 0x0ad8  IpFilterDriver - ok
20:50:38.0698 0x0ad8  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
20:50:38.0711 0x0ad8  iphlpsvc - ok
20:50:38.0723 0x0ad8  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
20:50:38.0726 0x0ad8  IPMIDRV - ok
20:50:38.0740 0x0ad8  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\windows\system32\drivers\ipnat.sys
20:50:38.0744 0x0ad8  IPNAT - ok
20:50:38.0826 0x0ad8  [ 835FC2EA0631B734BB06C12B0665F01D, B8A8B0148C6C3AFC40835B44E3D6508CB9EEE8AC430A7904711C8B51C2116A8D ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
20:50:38.0836 0x0ad8  iPod Service - ok
20:50:38.0855 0x0ad8  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\windows\system32\drivers\irenum.sys
20:50:38.0857 0x0ad8  IRENUM - ok
20:50:38.0860 0x0ad8  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\windows\system32\drivers\isapnp.sys
20:50:38.0861 0x0ad8  isapnp - ok
20:50:38.0881 0x0ad8  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
20:50:38.0887 0x0ad8  iScsiPrt - ok
20:50:38.0930 0x0ad8  [ 1DED0D0AA513E2A5862B20A520D3A1E1, F592F890B8B4F8A152ABE395AA851AE46AFC4C447DADB38816344F9E0C4826B9 ] JME Keyboard    C:\Windows\jmesoft\Service.exe
20:50:38.0931 0x0ad8  JME Keyboard - ok
20:50:38.0955 0x0ad8  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
20:50:38.0958 0x0ad8  kbdclass - ok
20:50:38.0966 0x0ad8  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys
20:50:38.0969 0x0ad8  kbdhid - ok
20:50:38.0993 0x0ad8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\windows\system32\lsass.exe
20:50:38.0995 0x0ad8  KeyIso - ok
20:50:39.0053 0x0ad8  [ 795EC29BA21F1D948FD6FD740C00B599, 780900717A812C5DB78C67057010BD62DF2C756C087599A6F8C67CB4EFA7518C ] kl1             C:\windows\system32\DRIVERS\kl1.sys
20:50:39.0066 0x0ad8  kl1 - ok
20:50:39.0111 0x0ad8  [ 788E5F92721849A17BD64883C49EB825, CEBCE3D9A84D31F597F8592F0E62C2E6ED8A492087F121B151E64903A86CAC52 ] KLIF            C:\windows\system32\DRIVERS\klif.sys
20:50:39.0128 0x0ad8  KLIF - ok
20:50:39.0172 0x0ad8  [ 31B69BFF28348503E4BD10C2A4F66D05, 891318C2DDF85E43DFCEE73717AEFCE79BC3DCD83FCD58E6F794AB6BF1739688 ] KLIM6           C:\windows\system32\DRIVERS\klim6.sys
20:50:39.0175 0x0ad8  KLIM6 - ok
20:50:39.0185 0x0ad8  [ AEB50941C6D67128B14F88DB9917C4E0, 2ACE46665DE298CC197660A442A3172B1FB460A40BD18AECEA786ACB011FDA43 ] klkbdflt        C:\windows\system32\DRIVERS\klkbdflt.sys
20:50:39.0187 0x0ad8  klkbdflt - ok
20:50:39.0200 0x0ad8  [ 72CF64FBF38CD681FA7F37176047E967, BE5683C119DCEF7E678EE477D6CADF873E32D42372A253B7E86B8C335DF28E1C ] klmouflt        C:\windows\system32\DRIVERS\klmouflt.sys
20:50:39.0202 0x0ad8  klmouflt - ok
20:50:39.0213 0x0ad8  [ 45ECF097BC6330C2054D7D43B7AD822B, 41684ED54E75FE6BEEA322E7CE888DFDD53EE1F45016E01CE10B84ABB02CBDA8 ] kltdi           C:\windows\system32\DRIVERS\kltdi.sys
20:50:39.0215 0x0ad8  kltdi - ok
20:50:39.0236 0x0ad8  [ 1FCB657B581CC4DF17FD6571F93602DE, D5D95773D19AA47BA619D149FD6068198E2AA05C219C3936E327B3DFFDE6B10C ] kneps           C:\windows\system32\DRIVERS\kneps.sys
20:50:39.0241 0x0ad8  kneps - ok
20:50:39.0272 0x0ad8  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
20:50:39.0276 0x0ad8  KSecDD - ok
20:50:39.0296 0x0ad8  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
20:50:39.0302 0x0ad8  KSecPkg - ok
20:50:39.0307 0x0ad8  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
20:50:39.0309 0x0ad8  ksthunk - ok
20:50:39.0344 0x0ad8  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\windows\system32\msdtckrm.dll
20:50:39.0356 0x0ad8  KtmRm - ok
20:50:39.0383 0x0ad8  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\windows\system32\srvsvc.dll
20:50:39.0389 0x0ad8  LanmanServer - ok
20:50:39.0408 0x0ad8  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
20:50:39.0412 0x0ad8  LanmanWorkstation - ok
20:50:39.0458 0x0ad8  [ 57EAD1CA5C1FFC88905FD96B119BB286, 784C78CEA5C0C388EC358DD6158AD0EB26699ED0DAAA162CD4C69947D941A9EB ] LenovoCOMSvc    C:\Program Files\Lenovo\Power Dial\LenovoCOMSvc.exe
20:50:39.0460 0x0ad8  LenovoCOMSvc - ok
20:50:39.0476 0x0ad8  [ E5BEC70311434BA4BD87CD64F2B24356, B74E2C9BAD7F8658C8060F9E41E7C310AE0A18A9F0EE30B9A1A32238B454807B ] LitModeCtrl     C:\Program Files\Lenovo\Power Dial\LitModeCtrl.exe
20:50:39.0479 0x0ad8  LitModeCtrl - ok
20:50:39.0504 0x0ad8  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
20:50:39.0508 0x0ad8  lltdio - ok
20:50:39.0564 0x0ad8  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\windows\System32\lltdsvc.dll
20:50:39.0576 0x0ad8  lltdsvc - ok
20:50:39.0599 0x0ad8  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\windows\System32\lmhsvc.dll
20:50:39.0602 0x0ad8  lmhosts - ok
20:50:39.0628 0x0ad8  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
20:50:39.0634 0x0ad8  LSI_FC - ok
20:50:39.0641 0x0ad8  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
20:50:39.0646 0x0ad8  LSI_SAS - ok
20:50:39.0652 0x0ad8  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
20:50:39.0656 0x0ad8  LSI_SAS2 - ok
20:50:39.0666 0x0ad8  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
20:50:39.0671 0x0ad8  LSI_SCSI - ok
20:50:39.0689 0x0ad8  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\windows\system32\drivers\luafv.sys
20:50:39.0694 0x0ad8  luafv - ok
20:50:39.0717 0x0ad8  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
20:50:39.0722 0x0ad8  Mcx2Svc - ok
20:50:39.0729 0x0ad8  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\windows\system32\drivers\megasas.sys
20:50:39.0732 0x0ad8  megasas - ok
20:50:39.0743 0x0ad8  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
20:50:39.0756 0x0ad8  MegaSR - ok
20:50:39.0776 0x0ad8  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
20:50:39.0778 0x0ad8  MEIx64 - ok
20:50:39.0792 0x0ad8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\windows\system32\mmcss.dll
20:50:39.0795 0x0ad8  MMCSS - ok
20:50:39.0798 0x0ad8  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\windows\system32\drivers\modem.sys
20:50:39.0800 0x0ad8  Modem - ok
20:50:39.0803 0x0ad8  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\windows\system32\DRIVERS\monitor.sys
20:50:39.0804 0x0ad8  monitor - ok
20:50:39.0813 0x0ad8  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
20:50:39.0814 0x0ad8  mouclass - ok
20:50:39.0830 0x0ad8  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
20:50:39.0832 0x0ad8  mouhid - ok
20:50:39.0846 0x0ad8  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
20:50:39.0850 0x0ad8  mountmgr - ok
20:50:39.0891 0x0ad8  [ E1B6FCAE82474FC071155263E2841D54, 341E2CEB1A86586730130311C4FAF86851151D5F08EF915A5F89B6C4094AE1F4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:50:39.0896 0x0ad8  MozillaMaintenance - ok
20:50:39.0920 0x0ad8  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\windows\system32\drivers\mpio.sys
20:50:39.0927 0x0ad8  mpio - ok
20:50:39.0939 0x0ad8  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
20:50:39.0943 0x0ad8  mpsdrv - ok
20:50:39.0985 0x0ad8  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\windows\system32\mpssvc.dll
20:50:40.0003 0x0ad8  MpsSvc - ok
20:50:40.0048 0x0ad8  [ 9BD4DCB5412921864A7AACDEDFBD1923, 46DEE9B9414D26203B62F0D6CAEBF37A3CEFD118556129547B2C5FC7B6FDBA05 ] MREMP50         C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS
20:50:40.0050 0x0ad8  MREMP50 - ok
20:50:40.0080 0x0ad8  MREMP50a64 - ok
20:50:40.0082 0x0ad8  MREMPR5 - ok
20:50:40.0086 0x0ad8  MRENDIS5 - ok
20:50:40.0090 0x0ad8  [ 07C02C892E8E1A72D6BF35004F0E9C5E, 09ECD59AADF08E2AA0C1BAF5D3D7CBB0948153E531E1F82ECACD43F14F88106B ] MRESP50         C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS
20:50:40.0092 0x0ad8  MRESP50 - ok
20:50:40.0094 0x0ad8  MRESP50a64 - ok
20:50:40.0109 0x0ad8  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
20:50:40.0114 0x0ad8  MRxDAV - ok
20:50:40.0122 0x0ad8  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
20:50:40.0127 0x0ad8  mrxsmb - ok
20:50:40.0158 0x0ad8  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
20:50:40.0166 0x0ad8  mrxsmb10 - ok
20:50:40.0183 0x0ad8  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
20:50:40.0188 0x0ad8  mrxsmb20 - ok
20:50:40.0202 0x0ad8  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\windows\system32\drivers\msahci.sys
20:50:40.0204 0x0ad8  msahci - ok
20:50:40.0211 0x0ad8  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\windows\system32\drivers\msdsm.sys
20:50:40.0216 0x0ad8  msdsm - ok
20:50:40.0237 0x0ad8  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\windows\System32\msdtc.exe
20:50:40.0242 0x0ad8  MSDTC - ok
20:50:40.0271 0x0ad8  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\windows\system32\drivers\Msfs.sys
20:50:40.0273 0x0ad8  Msfs - ok
20:50:40.0283 0x0ad8  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
20:50:40.0286 0x0ad8  mshidkmdf - ok
20:50:40.0291 0x0ad8  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
20:50:40.0292 0x0ad8  msisadrv - ok
20:50:40.0323 0x0ad8  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
20:50:40.0329 0x0ad8  MSiSCSI - ok
20:50:40.0333 0x0ad8  msiserver - ok
20:50:40.0338 0x0ad8  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
20:50:40.0340 0x0ad8  MSKSSRV - ok
20:50:40.0344 0x0ad8  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
20:50:40.0345 0x0ad8  MSPCLOCK - ok
20:50:40.0351 0x0ad8  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
20:50:40.0352 0x0ad8  MSPQM - ok
20:50:40.0390 0x0ad8  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
20:50:40.0403 0x0ad8  MsRPC - ok
20:50:40.0448 0x0ad8  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
20:50:40.0450 0x0ad8  mssmbios - ok
20:50:40.0454 0x0ad8  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
20:50:40.0456 0x0ad8  MSTEE - ok
20:50:40.0460 0x0ad8  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
20:50:40.0462 0x0ad8  MTConfig - ok
20:50:40.0471 0x0ad8  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\windows\system32\Drivers\mup.sys
20:50:40.0474 0x0ad8  Mup - ok
20:50:40.0523 0x0ad8  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\windows\system32\qagentRT.dll
20:50:40.0538 0x0ad8  napagent - ok
20:50:40.0581 0x0ad8  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
20:50:40.0593 0x0ad8  NativeWifiP - ok
20:50:40.0655 0x0ad8  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\windows\system32\drivers\ndis.sys
20:50:40.0672 0x0ad8  NDIS - ok
20:50:40.0677 0x0ad8  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
20:50:40.0679 0x0ad8  NdisCap - ok
20:50:40.0729 0x0ad8  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
20:50:40.0732 0x0ad8  NdisTapi - ok
20:50:40.0754 0x0ad8  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
20:50:40.0758 0x0ad8  Ndisuio - ok
20:50:40.0770 0x0ad8  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
20:50:40.0777 0x0ad8  NdisWan - ok
20:50:40.0788 0x0ad8  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
20:50:40.0792 0x0ad8  NDProxy - ok
20:50:40.0800 0x0ad8  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
20:50:40.0803 0x0ad8  NetBIOS - ok
20:50:40.0824 0x0ad8  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
20:50:40.0833 0x0ad8  NetBT - ok
20:50:40.0842 0x0ad8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\windows\system32\lsass.exe
20:50:40.0844 0x0ad8  Netlogon - ok
20:50:40.0862 0x0ad8  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\windows\System32\netman.dll
20:50:40.0874 0x0ad8  Netman - ok
20:50:40.0907 0x0ad8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:50:40.0913 0x0ad8  NetMsmqActivator - ok
20:50:40.0926 0x0ad8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:50:40.0929 0x0ad8  NetPipeActivator - ok
20:50:40.0955 0x0ad8  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\windows\System32\netprofm.dll
20:50:40.0970 0x0ad8  netprofm - ok
20:50:40.0977 0x0ad8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:50:40.0981 0x0ad8  NetTcpActivator - ok
20:50:40.0986 0x0ad8  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:50:40.0989 0x0ad8  NetTcpPortSharing - ok
20:50:41.0002 0x0ad8  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
20:50:41.0004 0x0ad8  nfrd960 - ok
20:50:41.0028 0x0ad8  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\windows\System32\nlasvc.dll
20:50:41.0035 0x0ad8  NlaSvc - ok
20:50:41.0041 0x0ad8  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\windows\system32\drivers\Npfs.sys
20:50:41.0043 0x0ad8  Npfs - ok
20:50:41.0051 0x0ad8  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\windows\system32\nsisvc.dll
20:50:41.0052 0x0ad8  nsi - ok
20:50:41.0060 0x0ad8  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
20:50:41.0062 0x0ad8  nsiproxy - ok
20:50:41.0145 0x0ad8  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
20:50:41.0189 0x0ad8  Ntfs - ok
20:50:41.0211 0x0ad8  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\windows\system32\drivers\Null.sys
20:50:41.0212 0x0ad8  Null - ok
20:50:41.0229 0x0ad8  [ 786DB821BFD57C0551DBBE4F75384A7D, F956D636F834F2BA5F019E187FDB9CC33940363C75A60E53CD81310A4DB6A6AB ] nusb3hub        C:\windows\system32\DRIVERS\nusb3hub.sys
20:50:41.0233 0x0ad8  nusb3hub - ok
20:50:41.0254 0x0ad8  [ DAA8005CAF745042BB427A1ED7433354, 3019002F174783B76D5D8AA47F7A465B7FEC7C14235B70E5C9277FE534839226 ] nusb3xhc        C:\windows\system32\DRIVERS\nusb3xhc.sys
20:50:41.0262 0x0ad8  nusb3xhc - ok
20:50:41.0280 0x0ad8  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\windows\system32\drivers\nvraid.sys
20:50:41.0286 0x0ad8  nvraid - ok
20:50:41.0319 0x0ad8  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\windows\system32\drivers\nvstor.sys
20:50:41.0325 0x0ad8  nvstor - ok
20:50:41.0339 0x0ad8  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
20:50:41.0345 0x0ad8  nv_agp - ok
20:50:41.0351 0x0ad8  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
20:50:41.0355 0x0ad8  ohci1394 - ok
20:50:41.0399 0x0ad8  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:50:41.0405 0x0ad8  ose - ok
20:50:41.0568 0x0ad8  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:50:41.0781 0x0ad8  osppsvc - ok
20:50:41.0805 0x0ad8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
20:50:41.0812 0x0ad8  p2pimsvc - ok
20:50:41.0831 0x0ad8  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\windows\system32\p2psvc.dll
20:50:41.0840 0x0ad8  p2psvc - ok
20:50:41.0850 0x0ad8  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\windows\system32\drivers\parport.sys
20:50:41.0853 0x0ad8  Parport - ok
20:50:41.0880 0x0ad8  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\windows\system32\drivers\partmgr.sys
20:50:41.0883 0x0ad8  partmgr - ok
20:50:41.0900 0x0ad8  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\windows\System32\pcasvc.dll
20:50:41.0909 0x0ad8  PcaSvc - ok
20:50:41.0926 0x0ad8  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\windows\system32\drivers\pci.sys
20:50:41.0933 0x0ad8  pci - ok
20:50:41.0950 0x0ad8  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\windows\system32\drivers\pciide.sys
20:50:41.0952 0x0ad8  pciide - ok
20:50:41.0964 0x0ad8  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
20:50:41.0973 0x0ad8  pcmcia - ok
20:50:42.0023 0x0ad8  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\windows\system32\drivers\pcw.sys
20:50:42.0026 0x0ad8  pcw - ok
20:50:42.0062 0x0ad8  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\windows\system32\drivers\peauth.sys
20:50:42.0077 0x0ad8  PEAUTH - ok
20:50:42.0133 0x0ad8  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\windows\SysWow64\perfhost.exe
20:50:42.0137 0x0ad8  PerfHost - ok
20:50:42.0204 0x0ad8  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\windows\system32\pla.dll
20:50:42.0246 0x0ad8  pla - ok
20:50:42.0293 0x0ad8  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
20:50:42.0306 0x0ad8  PlugPlay - ok
20:50:42.0324 0x0ad8  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
20:50:42.0326 0x0ad8  PNRPAutoReg - ok
20:50:42.0335 0x0ad8  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
20:50:42.0340 0x0ad8  PNRPsvc - ok
20:50:42.0357 0x0ad8  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
20:50:42.0368 0x0ad8  PolicyAgent - ok
20:50:42.0382 0x0ad8  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\windows\system32\umpo.dll
20:50:42.0386 0x0ad8  Power - ok
20:50:42.0410 0x0ad8  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
20:50:42.0413 0x0ad8  PptpMiniport - ok
20:50:42.0417 0x0ad8  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\windows\system32\drivers\processr.sys
20:50:42.0419 0x0ad8  Processor - ok
20:50:42.0447 0x0ad8  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\windows\system32\profsvc.dll
20:50:42.0452 0x0ad8  ProfSvc - ok
20:50:42.0458 0x0ad8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\windows\system32\lsass.exe
20:50:42.0459 0x0ad8  ProtectedStorage - ok
20:50:42.0475 0x0ad8  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
20:50:42.0478 0x0ad8  Psched - ok
20:50:42.0549 0x0ad8  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\windows\system32\drivers\ql2300.sys
20:50:42.0599 0x0ad8  ql2300 - ok
20:50:42.0605 0x0ad8  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
20:50:42.0608 0x0ad8  ql40xx - ok
20:50:42.0628 0x0ad8  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\windows\system32\qwave.dll
20:50:42.0634 0x0ad8  QWAVE - ok
20:50:42.0647 0x0ad8  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
20:50:42.0650 0x0ad8  QWAVEdrv - ok
20:50:42.0653 0x0ad8  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
20:50:42.0654 0x0ad8  RasAcd - ok
20:50:42.0675 0x0ad8  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
20:50:42.0681 0x0ad8  RasAgileVpn - ok
20:50:42.0695 0x0ad8  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\windows\System32\rasauto.dll
20:50:42.0700 0x0ad8  RasAuto - ok
20:50:42.0714 0x0ad8  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
20:50:42.0719 0x0ad8  Rasl2tp - ok
20:50:42.0737 0x0ad8  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\windows\System32\rasmans.dll
20:50:42.0747 0x0ad8  RasMan - ok
20:50:42.0758 0x0ad8  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
20:50:42.0762 0x0ad8  RasPppoe - ok
20:50:42.0773 0x0ad8  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
20:50:42.0776 0x0ad8  RasSstp - ok
20:50:42.0795 0x0ad8  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
20:50:42.0804 0x0ad8  rdbss - ok
20:50:42.0807 0x0ad8  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
20:50:42.0809 0x0ad8  rdpbus - ok
20:50:42.0815 0x0ad8  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
20:50:42.0816 0x0ad8  RDPCDD - ok
20:50:42.0837 0x0ad8  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
20:50:42.0839 0x0ad8  RDPENCDD - ok
20:50:42.0851 0x0ad8  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
20:50:42.0854 0x0ad8  RDPREFMP - ok
20:50:42.0895 0x0ad8  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
20:50:42.0898 0x0ad8  RdpVideoMiniport - ok
20:50:42.0909 0x0ad8  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
20:50:42.0918 0x0ad8  RDPWD - ok
20:50:42.0949 0x0ad8  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
20:50:42.0957 0x0ad8  rdyboost - ok
20:50:42.0974 0x0ad8  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\windows\System32\mprdim.dll
20:50:42.0980 0x0ad8  RemoteAccess - ok
20:50:42.0999 0x0ad8  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\windows\system32\regsvc.dll
20:50:43.0007 0x0ad8  RemoteRegistry - ok
20:50:43.0042 0x0ad8  [ 7B04C9843921AB1F695FB395422C5360, C9B02BE0384357FD242613C2A12029B45322AF9A795CD69F33500CA7530899A7 ] RimUsb          C:\windows\system32\Drivers\RimUsb_AMD64.sys
20:50:43.0045 0x0ad8  RimUsb - ok
20:50:43.0060 0x0ad8  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
20:50:43.0064 0x0ad8  RpcEptMapper - ok
20:50:43.0075 0x0ad8  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\windows\system32\locator.exe
20:50:43.0078 0x0ad8  RpcLocator - ok
20:50:43.0110 0x0ad8  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\windows\system32\rpcss.dll
20:50:43.0122 0x0ad8  RpcSs - ok
20:50:43.0132 0x0ad8  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
20:50:43.0136 0x0ad8  rspndr - ok
20:50:43.0166 0x0ad8  [ 9BEB5F18A418FF70659CE2E356829568, 8E327A99E68B5F9028778F5845719D00C590882B8609AF66D97DA880D537C937 ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
20:50:43.0172 0x0ad8  RSUSBSTOR - ok
20:50:43.0238 0x0ad8  [ 09A8BA290DB61D2D5C419A06A2E54D20, CE2C7FD288055526F708E751E9A837B04CE6213DD2294C4D9D535A2A8A94639A ] RTL8192Ce       C:\windows\system32\DRIVERS\rtl8192Ce.sys
20:50:43.0253 0x0ad8  RTL8192Ce - ok
20:50:43.0274 0x0ad8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\windows\system32\lsass.exe
20:50:43.0275 0x0ad8  SamSs - ok
20:50:43.0279 0x0ad8  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
20:50:43.0282 0x0ad8  sbp2port - ok
20:50:43.0291 0x0ad8  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\windows\System32\SCardSvr.dll
20:50:43.0296 0x0ad8  SCardSvr - ok
20:50:43.0307 0x0ad8  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
20:50:43.0309 0x0ad8  scfilter - ok
20:50:43.0338 0x0ad8  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\windows\system32\schedsvc.dll
20:50:43.0358 0x0ad8  Schedule - ok
20:50:43.0387 0x0ad8  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\windows\System32\certprop.dll
20:50:43.0390 0x0ad8  SCPolicySvc - ok
20:50:43.0404 0x0ad8  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\windows\System32\SDRSVC.dll
20:50:43.0412 0x0ad8  SDRSVC - ok
20:50:43.0430 0x0ad8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys
20:50:43.0432 0x0ad8  secdrv - ok
20:50:43.0441 0x0ad8  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\windows\system32\seclogon.dll
20:50:43.0444 0x0ad8  seclogon - ok
20:50:43.0457 0x0ad8  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\windows\System32\sens.dll
20:50:43.0462 0x0ad8  SENS - ok
20:50:43.0482 0x0ad8  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\windows\system32\sensrsvc.dll
20:50:43.0486 0x0ad8  SensrSvc - ok
20:50:43.0513 0x0ad8  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\windows\system32\DRIVERS\serenum.sys
20:50:43.0515 0x0ad8  Serenum - ok
20:50:43.0526 0x0ad8  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\windows\system32\DRIVERS\serial.sys
20:50:43.0531 0x0ad8  Serial - ok
20:50:43.0540 0x0ad8  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\windows\system32\drivers\sermouse.sys
20:50:43.0543 0x0ad8  sermouse - ok
20:50:43.0566 0x0ad8  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\windows\system32\sessenv.dll
20:50:43.0573 0x0ad8  SessionEnv - ok
20:50:43.0577 0x0ad8  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
20:50:43.0579 0x0ad8  sffdisk - ok
20:50:43.0583 0x0ad8  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
20:50:43.0585 0x0ad8  sffp_mmc - ok
20:50:43.0589 0x0ad8  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
20:50:43.0591 0x0ad8  sffp_sd - ok
20:50:43.0594 0x0ad8  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
20:50:43.0598 0x0ad8  sfloppy - ok
20:50:43.0640 0x0ad8  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\windows\System32\ipnathlp.dll
20:50:43.0654 0x0ad8  SharedAccess - ok
20:50:43.0725 0x0ad8  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
20:50:43.0739 0x0ad8  ShellHWDetection - ok
20:50:43.0750 0x0ad8  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
20:50:43.0752 0x0ad8  SiSRaid2 - ok
20:50:43.0755 0x0ad8  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
20:50:43.0758 0x0ad8  SiSRaid4 - ok
20:50:43.0772 0x0ad8  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\windows\system32\DRIVERS\smb.sys
20:50:43.0775 0x0ad8  Smb - ok
20:50:43.0779 0x0ad8  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
20:50:43.0781 0x0ad8  SNMPTRAP - ok
20:50:43.0795 0x0ad8  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\windows\system32\drivers\spldr.sys
20:50:43.0796 0x0ad8  spldr - ok
20:50:43.0826 0x0ad8  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\windows\System32\spoolsv.exe
20:50:43.0836 0x0ad8  Spooler - ok
20:50:43.0933 0x0ad8  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\windows\system32\sppsvc.exe
20:50:44.0115 0x0ad8  sppsvc - ok
20:50:44.0163 0x0ad8  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\windows\system32\sppuinotify.dll
20:50:44.0167 0x0ad8  sppuinotify - ok
20:50:44.0194 0x0ad8  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\windows\system32\DRIVERS\srv.sys
20:50:44.0206 0x0ad8  srv - ok
20:50:44.0229 0x0ad8  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
20:50:44.0240 0x0ad8  srv2 - ok
20:50:44.0259 0x0ad8  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
20:50:44.0264 0x0ad8  srvnet - ok
20:50:44.0278 0x0ad8  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
20:50:44.0284 0x0ad8  SSDPSRV - ok
20:50:44.0298 0x0ad8  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\windows\system32\sstpsvc.dll
20:50:44.0301 0x0ad8  SstpSvc - ok
20:50:44.0373 0x0ad8  [ 6E1A473DD2A4714EAF7D11E2315DF794, 4460546191072C7DF8B2E5A00577BA8E4FF5A1B2EA399DDF65EBE1AE4A5A5C84 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
20:50:44.0392 0x0ad8  Steam Client Service - ok
20:50:44.0407 0x0ad8  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\windows\system32\drivers\stexstor.sys
20:50:44.0410 0x0ad8  stexstor - ok
20:50:44.0449 0x0ad8  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\windows\System32\wiaservc.dll
20:50:44.0467 0x0ad8  stisvc - ok
20:50:44.0481 0x0ad8  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
20:50:44.0481 0x0ad8  swenum - ok
20:50:44.0513 0x0ad8  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\windows\System32\swprv.dll
20:50:44.0528 0x0ad8  swprv - ok
20:50:44.0580 0x0ad8  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\windows\system32\sysmain.dll
20:50:44.0630 0x0ad8  SysMain - ok
20:50:44.0641 0x0ad8  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
20:50:44.0644 0x0ad8  TabletInputService - ok
20:50:44.0662 0x0ad8  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\windows\System32\tapisrv.dll
20:50:44.0669 0x0ad8  TapiSrv - ok
20:50:44.0682 0x0ad8  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\windows\System32\tbssvc.dll
20:50:44.0684 0x0ad8  TBS - ok
20:50:44.0749 0x0ad8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\windows\system32\drivers\tcpip.sys
20:50:44.0796 0x0ad8  Tcpip - ok
20:50:44.0868 0x0ad8  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
20:50:44.0892 0x0ad8  TCPIP6 - ok
20:50:44.0905 0x0ad8  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
20:50:44.0907 0x0ad8  tcpipreg - ok
20:50:44.0924 0x0ad8  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
20:50:44.0925 0x0ad8  TDPIPE - ok
20:50:44.0941 0x0ad8  [ 51C5ECEB1CDEE2468A1748BE550CFBC8,
 


4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
20:50:44.0942 0x0ad8  TDTCP - ok
20:50:44.0957 0x0ad8  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
20:50:44.0963 0x0ad8  tdx - ok
20:50:44.0975 0x0ad8  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
20:50:44.0977 0x0ad8  TermDD - ok
20:50:45.0009 0x0ad8  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\windows\System32\termsrv.dll
20:50:45.0028 0x0ad8  TermService - ok
20:50:45.0039 0x0ad8  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\windows\system32\themeservice.dll
20:50:45.0040 0x0ad8  Themes - ok
20:50:45.0063 0x0ad8  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\windows\system32\mmcss.dll
20:50:45.0064 0x0ad8  THREADORDER - ok
20:50:45.0081 0x0ad8  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\windows\System32\trkwks.dll
20:50:45.0087 0x0ad8  TrkWks - ok
20:50:45.0126 0x0ad8  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
20:50:45.0136 0x0ad8  TrustedInstaller - ok
20:50:45.0171 0x0ad8  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
20:50:45.0173 0x0ad8  tssecsrv - ok
20:50:45.0218 0x0ad8  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
20:50:45.0222 0x0ad8  TsUsbFlt - ok
20:50:45.0230 0x0ad8  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
20:50:45.0232 0x0ad8  TsUsbGD - ok
20:50:45.0240 0x0ad8  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
20:50:45.0243 0x0ad8  tunnel - ok
20:50:45.0246 0x0ad8  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\windows\system32\drivers\uagp35.sys
20:50:45.0249 0x0ad8  uagp35 - ok
20:50:45.0270 0x0ad8  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
20:50:45.0276 0x0ad8  udfs - ok
20:50:45.0298 0x0ad8  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\windows\system32\UI0Detect.exe
20:50:45.0300 0x0ad8  UI0Detect - ok
20:50:45.0304 0x0ad8  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
20:50:45.0306 0x0ad8  uliagpkx - ok
20:50:45.0317 0x0ad8  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\windows\system32\DRIVERS\umbus.sys
20:50:45.0320 0x0ad8  umbus - ok
20:50:45.0327 0x0ad8  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\windows\system32\drivers\umpass.sys
20:50:45.0335 0x0ad8  UmPass - ok
20:50:45.0351 0x0ad8  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\windows\System32\upnphost.dll
20:50:45.0359 0x0ad8  upnphost - ok
20:50:45.0376 0x0ad8  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
20:50:45.0379 0x0ad8  USBAAPL64 - ok
20:50:45.0413 0x0ad8  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
20:50:45.0419 0x0ad8  usbccgp - ok
20:50:45.0439 0x0ad8  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\windows\system32\drivers\usbcir.sys
20:50:45.0444 0x0ad8  usbcir - ok
20:50:45.0491 0x0ad8  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\windows\system32\drivers\usbehci.sys
20:50:45.0495 0x0ad8  usbehci - ok
20:50:45.0518 0x0ad8  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
20:50:45.0530 0x0ad8  usbhub - ok
20:50:45.0549 0x0ad8  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\windows\system32\drivers\usbohci.sys
20:50:45.0551 0x0ad8  usbohci - ok
20:50:45.0556 0x0ad8  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\windows\system32\drivers\usbprint.sys
20:50:45.0558 0x0ad8  usbprint - ok
20:50:45.0570 0x0ad8  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
20:50:45.0575 0x0ad8  USBSTOR - ok
20:50:45.0588 0x0ad8  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
20:50:45.0590 0x0ad8  usbuhci - ok
20:50:45.0603 0x0ad8  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\windows\System32\uxsms.dll
20:50:45.0605 0x0ad8  UxSms - ok
20:50:45.0614 0x0ad8  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\windows\system32\lsass.exe
20:50:45.0616 0x0ad8  VaultSvc - ok
20:50:45.0641 0x0ad8  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
20:50:45.0643 0x0ad8  vdrvroot - ok
20:50:45.0668 0x0ad8  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\windows\System32\vds.exe
20:50:45.0684 0x0ad8  vds - ok
20:50:45.0690 0x0ad8  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
20:50:45.0692 0x0ad8  vga - ok
20:50:45.0701 0x0ad8  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\windows\System32\drivers\vga.sys
20:50:45.0703 0x0ad8  VgaSave - ok
20:50:45.0709 0x0ad8  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
20:50:45.0714 0x0ad8  vhdmp - ok
20:50:45.0733 0x0ad8  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\windows\system32\drivers\viaide.sys
20:50:45.0735 0x0ad8  viaide - ok
20:50:45.0749 0x0ad8  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\windows\system32\drivers\volmgr.sys
20:50:45.0751 0x0ad8  volmgr - ok
20:50:45.0769 0x0ad8  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
20:50:45.0777 0x0ad8  volmgrx - ok
20:50:45.0785 0x0ad8  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\windows\system32\drivers\volsnap.sys
20:50:45.0790 0x0ad8  volsnap - ok
20:50:45.0817 0x0ad8  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
20:50:45.0821 0x0ad8  vsmraid - ok
20:50:45.0866 0x0ad8  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\windows\system32\vssvc.exe
20:50:45.0909 0x0ad8  VSS - ok
20:50:45.0921 0x0ad8  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
20:50:45.0924 0x0ad8  vwifibus - ok
20:50:45.0930 0x0ad8  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
20:50:45.0932 0x0ad8  vwififlt - ok
20:50:45.0963 0x0ad8  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
20:50:45.0965 0x0ad8  vwifimp - ok
20:50:45.0986 0x0ad8  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\windows\system32\w32time.dll
20:50:45.0998 0x0ad8  W32Time - ok
20:50:46.0006 0x0ad8  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\windows\system32\drivers\wacompen.sys
20:50:46.0007 0x0ad8  WacomPen - ok
20:50:46.0021 0x0ad8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
20:50:46.0024 0x0ad8  WANARP - ok
20:50:46.0028 0x0ad8  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
20:50:46.0030 0x0ad8  Wanarpv6 - ok
20:50:46.0060 0x0ad8  [ ECEB715BECE47E101DDEC06B11126066, 6BD577D6EABD48B1BA31955DB3DEEE68528EA54375CA64D233B723D161B45CBA ] wanatw          C:\windows\system32\DRIVERS\wanatw64.sys
20:50:46.0062 0x0ad8  wanatw - ok
20:50:46.0145 0x0ad8  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
20:50:46.0182 0x0ad8  WatAdminSvc - ok
20:50:46.0266 0x0ad8  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\windows\system32\wbengine.exe
20:50:46.0307 0x0ad8  wbengine - ok
20:50:46.0321 0x0ad8  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
20:50:46.0326 0x0ad8  WbioSrvc - ok
20:50:46.0342 0x0ad8  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\windows\System32\wcncsvc.dll
20:50:46.0350 0x0ad8  wcncsvc - ok
20:50:46.0361 0x0ad8  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
20:50:46.0363 0x0ad8  WcsPlugInService - ok
20:50:46.0366 0x0ad8  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\windows\system32\drivers\wd.sys
20:50:46.0367 0x0ad8  Wd - ok
20:50:46.0410 0x0ad8  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
20:50:46.0425 0x0ad8  Wdf01000 - ok
20:50:46.0438 0x0ad8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\windows\system32\wdi.dll
20:50:46.0441 0x0ad8  WdiServiceHost - ok
20:50:46.0444 0x0ad8  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\windows\system32\wdi.dll
20:50:46.0446 0x0ad8  WdiSystemHost - ok
20:50:46.0479 0x0ad8  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\windows\System32\webclnt.dll
20:50:46.0491 0x0ad8  WebClient - ok
20:50:46.0522 0x0ad8  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\windows\system32\wecsvc.dll
20:50:46.0533 0x0ad8  Wecsvc - ok
20:50:46.0553 0x0ad8  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\windows\System32\wercplsupport.dll
20:50:46.0558 0x0ad8  wercplsupport - ok
20:50:46.0565 0x0ad8  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\windows\System32\WerSvc.dll
20:50:46.0569 0x0ad8  WerSvc - ok
20:50:46.0579 0x0ad8  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
20:50:46.0581 0x0ad8  WfpLwf - ok
20:50:46.0584 0x0ad8  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\windows\system32\drivers\wimmount.sys
20:50:46.0586 0x0ad8  WIMMount - ok
20:50:46.0607 0x0ad8  WinDefend - ok
20:50:46.0618 0x0ad8  WinHttpAutoProxySvc - ok
20:50:46.0639 0x0ad8  [ 66C365B542195C1F6E2FF4A7D8F3827C, FB43A64453283D1B236AFF73F010B8F6106B971047313B9B4EBE925C4DD325A2 ] WinI2C-DDC      C:\windows\system32\drivers\DDCDrv.sys
20:50:46.0640 0x0ad8  WinI2C-DDC - ok
20:50:46.0684 0x0ad8  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
20:50:46.0691 0x0ad8  Winmgmt - ok
20:50:46.0749 0x0ad8  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\windows\system32\WsmSvc.dll
20:50:46.0797 0x0ad8  WinRM - ok
20:50:46.0829 0x0ad8  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
20:50:46.0831 0x0ad8  WinUsb - ok
20:50:46.0856 0x0ad8  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\windows\System32\wlansvc.dll
20:50:46.0873 0x0ad8  Wlansvc - ok
20:50:46.0918 0x0ad8  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
20:50:46.0919 0x0ad8  WmiAcpi - ok
20:50:46.0934 0x0ad8  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
20:50:46.0942 0x0ad8  wmiApSrv - ok
20:50:46.0952 0x0ad8  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\windows\System32\wpcsvc.dll
20:50:46.0955 0x0ad8  WPCSvc - ok
20:50:46.0966 0x0ad8  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
20:50:46.0973 0x0ad8  WPDBusEnum - ok
20:50:46.0987 0x0ad8  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
20:50:46.0990 0x0ad8  ws2ifsl - ok
20:50:47.0005 0x0ad8  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\windows\System32\wscsvc.dll
20:50:47.0012 0x0ad8  wscsvc - ok
20:50:47.0015 0x0ad8  WSearch - ok
20:50:47.0032 0x0ad8  [ 83575C43B2BFE9AB0661A7F957E843C0, 6FCE62721902A4F35F1A4CED8AF60A0346CFAB657ED92DE4CEFF19BDB830D32D ] wsvd            C:\windows\system32\DRIVERS\wsvd.sys
20:50:47.0036 0x0ad8  wsvd - ok
20:50:47.0124 0x0ad8  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\windows\system32\wuaueng.dll
20:50:47.0186 0x0ad8  wuauserv - ok
20:50:47.0218 0x0ad8  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
20:50:47.0221 0x0ad8  WudfPf - ok
20:50:47.0241 0x0ad8  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
20:50:47.0249 0x0ad8  WUDFRd - ok
20:50:47.0268 0x0ad8  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
20:50:47.0275 0x0ad8  wudfsvc - ok
20:50:47.0319 0x0ad8  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\windows\System32\wwansvc.dll
20:50:47.0330 0x0ad8  WwanSvc - ok
20:50:47.0356 0x0ad8  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\windows\system32\DRIVERS\yk62x64.sys
20:50:47.0372 0x0ad8  yukonw7 - ok
20:50:47.0383 0x0ad8  ================ Scan global ===============================
20:50:47.0399 0x0ad8  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
20:50:47.0433 0x0ad8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
20:50:47.0451 0x0ad8  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
20:50:47.0477 0x0ad8  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
20:50:47.0508 0x0ad8  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
20:50:47.0521 0x0ad8  [ Global ] - ok
20:50:47.0521 0x0ad8  ================ Scan MBR ==================================
20:50:47.0529 0x0ad8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:50:47.0694 0x0ad8  \Device\Harddisk0\DR0 - ok
20:50:47.0695 0x0ad8  ================ Scan VBR ==================================
20:50:47.0698 0x0ad8  [ FEFAF9C35907AF74537DB54FA1D67784 ] \Device\Harddisk0\DR0\Partition1
20:50:47.0783 0x0ad8  \Device\Harddisk0\DR0\Partition1 - ok
20:50:47.0786 0x0ad8  [ 7753D5BDD09A404F25EAEE6351AF74E9 ] \Device\Harddisk0\DR0\Partition2
20:50:47.0844 0x0ad8  \Device\Harddisk0\DR0\Partition2 - ok
20:50:47.0845 0x0ad8  Waiting for KSN requests completion. In queue: 334
20:50:48.0846 0x0ad8  Waiting for KSN requests completion. In queue: 334
20:50:49.0846 0x0ad8  Waiting for KSN requests completion. In queue: 23
20:50:50.0846 0x0ad8  Waiting for KSN requests completion. In queue: 23
20:50:51.0893 0x0ad8  AV detected via SS2: Kaspersky PURE 3.0, C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\wmiav.exe ( 13.0.2.558 ), 0x41000 ( enabled : updated )
20:50:51.0904 0x0ad8  FW detected via SS2: Kaspersky PURE 3.0, C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\wmifw.exe ( 13.0.2.558 ), 0x41010 ( enabled )
20:50:55.0849 0x0ad8  ============================================================
20:50:55.0849 0x0ad8  Scan finished
20:50:55.0849 0x0ad8  ============================================================
20:50:55.0858 0x1034  Detected object count: 0
20:50:55.0858 0x1034  Actual detected object count: 0
20:51:36.0871 0x12a4  ============================================================
20:51:36.0871 0x12a4  Scan started
20:51:36.0871 0x12a4  Mode: Manual;
20:51:36.0871 0x12a4  ============================================================
20:51:36.0871 0x12a4  KSN ping started
20:51:39.0617 0x12a4  KSN ping finished: true
20:51:39.0820 0x12a4  ================ Scan system memory ========================
20:51:39.0820 0x12a4  System memory - ok
20:51:39.0820 0x12a4  ================ Scan services =============================
20:51:39.0913 0x12a4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
20:51:39.0929 0x12a4  1394ohci - ok
20:51:39.0944 0x12a4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\windows\system32\drivers\ACPI.sys
20:51:39.0960 0x12a4  ACPI - ok
20:51:39.0976 0x12a4  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
20:51:39.0976 0x12a4  AcpiPmi - ok
20:51:40.0054 0x12a4  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
20:51:40.0054 0x12a4  AdobeARMservice - ok
20:51:40.0116 0x12a4  [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
20:51:40.0116 0x12a4  AdobeFlashPlayerUpdateSvc - ok
20:51:40.0147 0x12a4  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
20:51:40.0147 0x12a4  adp94xx - ok
20:51:40.0163 0x12a4  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\windows\system32\drivers\adpahci.sys
20:51:40.0163 0x12a4  adpahci - ok
20:51:40.0163 0x12a4  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\windows\system32\drivers\adpu320.sys
20:51:40.0178 0x12a4  adpu320 - ok
20:51:40.0210 0x12a4  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
20:51:40.0210 0x12a4  AeLookupSvc - ok
20:51:40.0272 0x12a4  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\windows\system32\drivers\afd.sys
20:51:40.0288 0x12a4  AFD - ok
20:51:40.0319 0x12a4  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\windows\system32\drivers\agp440.sys
20:51:40.0319 0x12a4  agp440 - ok
20:51:40.0350 0x12a4  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\windows\System32\alg.exe
20:51:40.0350 0x12a4  ALG - ok
20:51:40.0366 0x12a4  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\windows\system32\drivers\aliide.sys
20:51:40.0366 0x12a4  aliide - ok
20:51:40.0381 0x12a4  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\windows\system32\drivers\amdide.sys
20:51:40.0381 0x12a4  amdide - ok
20:51:40.0381 0x12a4  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
20:51:40.0381 0x12a4  AmdK8 - ok
20:51:40.0600 0x12a4  [ CC21DD0277EB60A509FB7C88C512E852, 4895A7279FDD7CE866A4F8CC106896E71DCA1DB7FBAA689ECB7A186647C71E30 ] amdkmdag        C:\windows\system32\DRIVERS\atikmdag.sys
20:51:40.0724 0x12a4  amdkmdag - ok
20:51:40.0771 0x12a4  [ F3DE27FEC3C674FF24104673682B7B31, EB41331F15CCF48EBB2086F3FD964C529A0BEA8356B9D5A923418F8C384CE61C ] amdkmdap        C:\windows\system32\DRIVERS\atikmpag.sys
20:51:40.0771 0x12a4  amdkmdap - ok
20:51:40.0787 0x12a4  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
20:51:40.0787 0x12a4  AmdPPM - ok
20:51:40.0787 0x12a4  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\windows\system32\drivers\amdsata.sys
20:51:40.0787 0x12a4  amdsata - ok
20:51:40.0787 0x12a4  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
20:51:40.0787 0x12a4  amdsbs - ok
20:51:40.0802 0x12a4  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\windows\system32\drivers\amdxata.sys
20:51:40.0802 0x12a4  amdxata - ok
20:51:41.0036 0x12a4  [ D98690625EF5C1CEE8C7479C3FB784AC, 845FE40B663EC7882ACDDF78B0E06036A1F1F7BB4F175EECD4AF8D8C7189A5EC ] ANSYS, Inc. License Manager C:\Program Files\ANSYS Inc\Shared Files\Licensing\winx64\ansysli_server.exe
20:51:41.0099 0x12a4  ANSYS, Inc. License Manager - ok
20:51:41.0177 0x12a4  [ 85180CF88C5EBAD73B452A43A004CA51, 24D25495DC21293FC1F37EE7E7C2A4725E66D3D25BE05D7EDF4BB4F444C65526 ] AOL ACS         C:\Program Files (x86)\Common Files\AOL\ACS\AOLAcsd.exe
20:51:41.0177 0x12a4  AOL ACS - ok
20:51:41.0177 0x12a4  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\windows\system32\drivers\appid.sys
20:51:41.0177 0x12a4  AppID - ok
20:51:41.0192 0x12a4  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\windows\System32\appidsvc.dll
20:51:41.0192 0x12a4  AppIDSvc - ok
20:51:41.0239 0x12a4  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\windows\System32\appinfo.dll
20:51:41.0239 0x12a4  Appinfo - ok
20:51:41.0286 0x12a4  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
20:51:41.0286 0x12a4  Apple Mobile Device - ok
20:51:41.0302 0x12a4  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\windows\system32\drivers\arc.sys
20:51:41.0302 0x12a4  arc - ok
20:51:41.0302 0x12a4  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\windows\system32\drivers\arcsas.sys
20:51:41.0302 0x12a4  arcsas - ok
20:51:41.0411 0x12a4  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
20:51:41.0411 0x12a4  aspnet_state - ok
20:51:41.0411 0x12a4  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
20:51:41.0411 0x12a4  AsyncMac - ok
20:51:41.0426 0x12a4  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\windows\system32\drivers\atapi.sys
20:51:41.0426 0x12a4  atapi - ok
20:51:41.0458 0x12a4  [ 770A3B0D78232B0C1054495392A1FBA3, 733BB08BAFE42E848F3A3CDFD80A2C37DB829CAD2E18B3D6299FDEE6EF30C9CD ] AtiHDAudioService C:\windows\system32\drivers\AtihdW76.sys
20:51:41.0458 0x12a4  AtiHDAudioService - ok
20:51:41.0692 0x12a4  [ CC21DD0277EB60A509FB7C88C512E852, 4895A7279FDD7CE866A4F8CC106896E71DCA1DB7FBAA689ECB7A186647C71E30 ] atikmdag        C:\windows\system32\DRIVERS\atikmdag.sys
20:51:41.0801 0x12a4  atikmdag - ok
20:51:41.0832 0x12a4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
20:51:41.0848 0x12a4  AudioEndpointBuilder - ok
20:51:41.0863 0x12a4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\windows\System32\Audiosrv.dll
20:51:41.0879 0x12a4  AudioSrv - ok
20:51:41.0894 0x12a4  avp - ok
20:51:41.0894 0x12a4  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\windows\System32\AxInstSV.dll
20:51:41.0894 0x12a4  AxInstSV - ok
20:51:41.0910 0x12a4  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
20:51:41.0926 0x12a4  b06bdrv - ok
20:51:41.0941 0x12a4  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
20:51:41.0941 0x12a4  b57nd60a - ok
20:51:41.0957 0x12a4  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\windows\System32\bdesvc.dll
20:51:41.0957 0x12a4  BDESVC - ok
20:51:41.0957 0x12a4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\windows\system32\drivers\Beep.sys
20:51:41.0957 0x12a4  Beep - ok
20:51:42.0004 0x12a4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\windows\System32\bfe.dll
20:51:42.0019 0x12a4  BFE - ok
20:51:42.0066 0x12a4  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\windows\System32\qmgr.dll
20:51:42.0066 0x12a4  BITS - ok
20:51:42.0082 0x12a4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
20:51:42.0082 0x12a4  blbdrive - ok
20:51:42.0113 0x12a4  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
20:51:42.0113 0x12a4  Bonjour Service - ok
20:51:42.0128 0x12a4  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
20:51:42.0128 0x12a4  bowser - ok
20:51:42.0128 0x12a4  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
20:51:42.0128 0x12a4  BrFiltLo - ok
20:51:42.0128 0x12a4  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
20:51:42.0128 0x12a4  BrFiltUp - ok
20:51:42.0160 0x12a4  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\windows\System32\browser.dll
20:51:42.0160 0x12a4  Browser - ok
20:51:42.0160 0x12a4  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\windows\System32\Drivers\Brserid.sys
20:51:42.0160 0x12a4  Brserid - ok
20:51:42.0175 0x12a4  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
20:51:42.0175 0x12a4  BrSerWdm - ok
20:51:42.0175 0x12a4  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
20:51:42.0175 0x12a4  BrUsbMdm - ok
20:51:42.0175 0x12a4  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
20:51:42.0175 0x12a4  BrUsbSer - ok
20:51:42.0175 0x12a4  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\windows\system32\drivers\bthmodem.sys
20:51:42.0175 0x12a4  BTHMODEM - ok
20:51:42.0191 0x12a4  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\windows\system32\bthserv.dll
20:51:42.0191 0x12a4  bthserv - ok
20:51:42.0206 0x12a4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
20:51:42.0206 0x12a4  cdfs - ok
20:51:42.0222 0x12a4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
20:51:42.0222 0x12a4  cdrom - ok
20:51:42.0222 0x12a4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\windows\System32\certprop.dll
20:51:42.0222 0x12a4  CertPropSvc - ok
20:51:42.0238 0x12a4  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\windows\system32\drivers\circlass.sys
20:51:42.0238 0x12a4  circlass - ok
20:51:42.0253 0x12a4  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\windows\system32\CLFS.sys
20:51:42.0253 0x12a4  CLFS - ok
20:51:42.0300 0x12a4  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
20:51:42.0300 0x12a4  clr_optimization_v2.0.50727_32 - ok
20:51:42.0347 0x12a4  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
20:51:42.0347 0x12a4  clr_optimization_v2.0.50727_64 - ok
20:51:42.0394 0x12a4  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
20:51:42.0409 0x12a4  clr_optimization_v4.0.30319_32 - ok
20:51:42.0425 0x12a4  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
20:51:42.0425 0x12a4  clr_optimization_v4.0.30319_64 - ok
20:51:42.0425 0x12a4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\windows\system32\drivers\CmBatt.sys
20:51:42.0425 0x12a4  CmBatt - ok
20:51:42.0440 0x12a4  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\windows\system32\drivers\cmdide.sys
20:51:42.0440 0x12a4  cmdide - ok
20:51:42.0503 0x12a4  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\windows\system32\Drivers\cng.sys
20:51:42.0503 0x12a4  CNG - ok
20:51:42.0518 0x12a4  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\windows\system32\drivers\compbatt.sys
20:51:42.0518 0x12a4  Compbatt - ok
20:51:42.0534 0x12a4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
20:51:42.0534 0x12a4  CompositeBus - ok
20:51:42.0534 0x12a4  COMSysApp - ok
20:51:42.0534 0x12a4  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
20:51:42.0534 0x12a4  crcdisk - ok
20:51:42.0596 0x12a4  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\windows\system32\cryptsvc.dll
20:51:42.0596 0x12a4  CryptSvc - ok
20:51:42.0628 0x12a4  [ 04199CA5C4A6F6E935906A74EAFCA8E7, F02E807E04DA16117E9E4D183186DF9425E9E1AD7CBC34AEED63A38F7D1E75E6 ] CSCrySec        C:\windows\system32\DRIVERS\CSCrySec.sys
20:51:42.0643 0x12a4  CSCrySec - ok
20:51:42.0706 0x12a4  [ 0F9FE82E229C039F0AC1996E44059653, BE925C118A7620259724B0750681C83DC14BC78620FB217025F46E4441C55F3A ] CSObjectsSrv    C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
20:51:42.0737 0x12a4  CSObjectsSrv - ok
20:51:42.0737 0x12a4  [ 7D7F90460F1309B5205BF8CDFAD63E42, 885B9EA530E7B6D51DC24A5009F37A2D4CCACAFCA0A7CB693F4320E110AFFA4F ] CSVirtualDiskDrv C:\windows\system32\DRIVERS\CSVirtualDiskDrv.sys
20:51:42.0737 0x12a4  CSVirtualDiskDrv - ok
20:51:42.0752 0x12a4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\windows\system32\rpcss.dll
20:51:42.0768 0x12a4  DcomLaunch - ok
20:51:42.0784 0x12a4  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\windows\System32\defragsvc.dll
20:51:42.0784 0x12a4  defragsvc - ok
20:51:42.0784 0x12a4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\windows\system32\Drivers\dfsc.sys
20:51:42.0799 0x12a4  DfsC - ok
20:51:42.0815 0x12a4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\windows\system32\dhcpcore.dll
20:51:42.0815 0x12a4  Dhcp - ok
20:51:42.0830 0x12a4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\windows\system32\drivers\discache.sys
20:51:42.0830 0x12a4  discache - ok
20:51:42.0830 0x12a4  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\windows\system32\drivers\disk.sys
20:51:42.0846 0x12a4  Disk - ok
20:51:42.0862 0x12a4  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\windows\System32\dnsrslvr.dll
20:51:42.0862 0x12a4  Dnscache - ok
20:51:42.0877 0x12a4  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\windows\System32\dot3svc.dll
20:51:42.0877 0x12a4  dot3svc - ok
20:51:42.0893 0x12a4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\windows\system32\dps.dll
20:51:42.0893 0x12a4  DPS - ok
20:51:42.0908 0x12a4  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
20:51:42.0908 0x12a4  drmkaud - ok
20:51:42.0971 0x12a4  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
20:51:42.0986 0x12a4  DXGKrnl - ok
20:51:43.0002 0x12a4  [ 6BAFD9819D9FEC2EDBAEBC8493C711A4, 689A30C9F881D8C49F90A6C75DA816055B43B84776E815C1DE80B3933ADBB174 ] e1cexpress      C:\windows\system32\DRIVERS\e1c62x64.sys
20:51:43.0002 0x12a4  e1cexpress - ok
20:51:43.0002 0x12a4  EagleX64 - ok
20:51:43.0002 0x12a4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\windows\System32\eapsvc.dll
20:51:43.0002 0x12a4  EapHost - ok
20:51:43.0080 0x12a4  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\windows\system32\drivers\evbda.sys
20:51:43.0127 0x12a4  ebdrv - ok
20:51:43.0158 0x12a4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\windows\System32\lsass.exe
20:51:43.0174 0x12a4  EFS - ok
20:51:43.0220 0x12a4  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
20:51:43.0236 0x12a4  ehRecvr - ok
20:51:43.0298 0x12a4  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\windows\system32\drivers\elxstor.sys
20:51:43.0314 0x12a4  elxstor - ok
20:51:43.0314 0x12a4  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\windows\system32\drivers\errdev.sys
20:51:43.0314 0x12a4  ErrDev - ok
20:51:43.0361 0x12a4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\windows\system32\es.dll
20:51:43.0376 0x12a4  EventSystem - ok
20:51:43.0392 0x12a4  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\windows\system32\drivers\exfat.sys
20:51:43.0408 0x12a4  exfat - ok
20:51:43.0423 0x12a4  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\windows\system32\drivers\fastfat.sys
20:51:43.0423 0x12a4  fastfat - ok
20:51:43.0454 0x12a4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\windows\system32\fxssvc.exe
20:51:43.0454 0x12a4  Fax - ok
20:51:43.0470 0x12a4  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\windows\system32\drivers\fdc.sys
20:51:43.0470 0x12a4  fdc - ok
20:51:43.0486 0x12a4  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\windows\system32\fdPHost.dll
20:51:43.0486 0x12a4  fdPHost - ok
20:51:43.0486 0x12a4  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\windows\system32\fdrespub.dll
20:51:43.0486 0x12a4  FDResPub - ok
20:51:43.0517 0x12a4  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
20:51:43.0517 0x12a4  FileInfo - ok
20:51:43.0532 0x12a4  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
20:51:43.0532 0x12a4  Filetrace - ok
20:51:43.0595 0x12a4  [ BB0667B0171B632B97EA759515476F07, 07A123B2182D5813D2898928C231638353CF086606E9D5A5AF4A2A73E17CEC27 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
20:51:43.0610 0x12a4  FLEXnet Licensing Service - ok
20:51:43.0610 0x12a4  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
20:51:43.0610 0x12a4  flpydisk - ok
20:51:43.0626 0x12a4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
20:51:43.0626 0x12a4  FltMgr - ok
20:51:43.0673 0x12a4  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\windows\system32\FntCache.dll
20:51:43.0688 0x12a4  FontCache - ok
20:51:43.0735 0x12a4  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
20:51:43.0735 0x12a4  FontCache3.0.0.0 - ok
20:51:43.0751 0x12a4  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
20:51:43.0751 0x12a4  FsDepends - ok
20:51:43.0766 0x12a4  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
20:51:43.0766 0x12a4  Fs_Rec - ok
20:51:43.0798 0x12a4  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
20:51:43.0798 0x12a4  fvevol - ok
20:51:43.0813 0x12a4  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
20:51:43.0813 0x12a4  gagp30kx - ok
20:51:43.0844 0x12a4  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
20:51:43.0844 0x12a4  GEARAspiWDM - ok
20:51:43.0891 0x12a4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\windows\System32\gpsvc.dll
20:51:43.0907 0x12a4  gpsvc - ok
20:51:43.0938 0x12a4  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
20:51:43.0938 0x12a4  hcw85cir - ok
20:51:43.0954 0x12a4  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
20:51:43.0969 0x12a4  HdAudAddService - ok
20:51:43.0985 0x12a4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
20:51:43.0985 0x12a4  HDAudBus - ok
20:51:43.0985 0x12a4  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
20:51:43.0985 0x12a4  HidBatt - ok
20:51:43.0985 0x12a4  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\windows\system32\drivers\hidbth.sys
20:51:43.0985 0x12a4  HidBth - ok
20:51:44.0000 0x12a4  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\windows\system32\drivers\hidir.sys
20:51:44.0000 0x12a4  HidIr - ok
20:51:44.0016 0x12a4  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\windows\system32\hidserv.dll
20:51:44.0016 0x12a4  hidserv - ok
20:51:44.0047 0x12a4  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\windows\system32\drivers\hidusb.sys
20:51:44.0047 0x12a4  HidUsb - ok
20:51:44.0063 0x12a4  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\windows\system32\kmsvc.dll
20:51:44.0063 0x12a4  hkmsvc - ok
20:51:44.0094 0x12a4  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
20:51:44.0094 0x12a4  HomeGroupListener - ok
20:51:44.0125 0x12a4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
20:51:44.0125 0x12a4  HomeGroupProvider - ok
20:51:44.0141 0x12a4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
20:51:44.0141 0x12a4  HpSAMD - ok
20:51:44.0172 0x12a4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\windows\system32\drivers\HTTP.sys
20:51:44.0203 0x12a4  HTTP - ok
20:51:44.0203 0x12a4  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
20:51:44.0203 0x12a4  hwpolicy - ok
20:51:44.0219 0x12a4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
20:51:44.0219 0x12a4  i8042prt - ok
20:51:44.0234 0x12a4  [ F7CE9BE72EDAC499B713ECA6DAE5D26F, AF158C8ADF0815C406435AB051C8D8DD0ECBDBA8644CB75D7611980D70662193 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
20:51:44.0234 0x12a4  iaStor - ok
20:51:44.0281 0x12a4  [ B25F192EA1F84A316EB7C19EFCCCF33D, 00BACE87CCA40722FF3AD7243439201CDCC23D0BA01E25F928BF63DA12816F8F ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
20:51:44.0281 0x12a4  IAStorDataMgrSvc - ok
20:51:44.0297 0x12a4  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
20:51:44.0297 0x12a4  iaStorV - ok
20:51:44.0328 0x12a4  [ 1CF03C69B49ACB70C722DF92755C0C8C, C227850C133F29BB9DED91A26A22AE077FD69629CEF35B67D305F016C4BDAA81 ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
20:51:44.0328 0x12a4  IDriverT - ok
20:51:44.0406 0x12a4  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
20:51:44.0406 0x12a4  idsvc - ok
20:51:44.0406 0x12a4  IEEtwCollectorService - ok
20:51:44.0422 0x12a4  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\windows\system32\drivers\iirsp.sys
20:51:44.0422 0x12a4  iirsp - ok
20:51:44.0468 0x12a4  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\windows\System32\ikeext.dll
20:51:44.0468 0x12a4  IKEEXT - ok
20:51:44.0546 0x12a4  [ F5872A11EB4F6DB170D636CD4E53CA9F, 6FCD488E56816AE4203D989CD22E3FB266F1DB6598EA52A526D6A35712610EDE ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
20:51:44.0578 0x12a4  IntcAzAudAddService - ok
20:51:44.0578 0x12a4  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\windows\system32\drivers\intelide.sys
20:51:44.0578 0x12a4  intelide - ok
20:51:44.0593 0x12a4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
20:51:44.0593 0x12a4  intelppm - ok
20:51:44.0624 0x12a4  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\windows\system32\ipbusenum.dll
20:51:44.0624 0x12a4  IPBusEnum - ok
20:51:44.0624 0x12a4  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
20:51:44.0624 0x12a4  IpFilterDriver - ok
20:51:44.0671 0x12a4  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
20:51:44.0687 0x12a4  iphlpsvc - ok
20:51:44.0687 0x12a4  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
20:51:44.0687 0x12a4  IPMIDRV - ok
20:51:44.0702 0x12a4  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\windows\system32\drivers\ipnat.sys
20:51:44.0702 0x12a4  IPNAT - ok
20:51:44.0765 0x12a4  [ 835FC2EA0631B734BB06C12B0665F01D, B8A8B0148C6C3AFC40835B44E3D6508CB9EEE8AC430A7904711C8B51C2116A8D ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
20:51:44.0780 0x12a4  iPod Service - ok
20:51:44.0796 0x12a4  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\windows\system32\drivers\irenum.sys
20:51:44.0796 0x12a4  IRENUM - ok
20:51:44.0796 0x12a4  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\windows\system32\drivers\isapnp.sys
20:51:44.0796 0x12a4  isapnp - ok
20:51:44.0827 0x12a4  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
20:51:44.0827 0x12a4  iScsiPrt - ok
20:51:44.0874 0x12a4  [ 1DED0D0AA513E2A5862B20A520D3A1E1, F592F890B8B4F8A152ABE395AA851AE46AFC4C447DADB38816344F9E0C4826B9 ] JME Keyboard    C:\Windows\jmesoft\Service.exe
20:51:44.0874 0x12a4  JME Keyboard - ok
20:51:44.0874 0x12a4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
20:51:44.0874 0x12a4  kbdclass - ok
20:51:44.0874 0x12a4  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys
20:51:44.0874 0x12a4  kbdhid - ok
20:51:44.0890 0x12a4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\windows\system32\lsass.exe
20:51:44.0890 0x12a4  KeyIso - ok
20:51:44.0936 0x12a4  [ 795EC29BA21F1D948FD6FD740C00B599, 780900717A812C5DB78C67057010BD62DF2C756C087599A6F8C67CB4EFA7518C ] kl1             C:\windows\system32\DRIVERS\kl1.sys
20:51:44.0952 0x12a4  kl1 - ok
20:51:44.0999 0x12a4  [ 788E5F92721849A17BD64883C49EB825, CEBCE3D9A84D31F597F8592F0E62C2E6ED8A492087F121B151E64903A86CAC52 ] KLIF            C:\windows\system32\DRIVERS\klif.sys
20:51:45.0014 0x12a4  KLIF - ok
20:51:45.0030 0x12a4  [ 31B69BFF28348503E4BD10C2A4F66D05, 891318C2DDF85E43DFCEE73717AEFCE79BC3DCD83FCD58E6F794AB6BF1739688 ] KLIM6           C:\windows\system32\DRIVERS\klim6.sys
20:51:45.0030 0x12a4  KLIM6 - ok
20:51:45.0046 0x12a4  [ AEB50941C6D67128B14F88DB9917C4E0, 2ACE46665DE298CC197660A442A3172B1FB460A40BD18AECEA786ACB011FDA43 ] klkbdflt        C:\windows\system32\DRIVERS\klkbdflt.sys
20:51:45.0046 0x12a4  klkbdflt - ok
20:51:45.0046 0x12a4  [ 72CF64FBF38CD681FA7F37176047E967, BE5683C119DCEF7E678EE477D6CADF873E32D42372A253B7E86B8C335DF28E1C ] klmouflt        C:\windows\system32\DRIVERS\klmouflt.sys
20:51:45.0046 0x12a4  klmouflt - ok
20:51:45.0061 0x12a4  [ 45ECF097BC6330C2054D7D43B7AD822B, 41684ED54E75FE6BEEA322E7CE888DFDD53EE1F45016E01CE10B84ABB02CBDA8 ] kltdi           C:\windows\system32\DRIVERS\kltdi.sys
20:51:45.0061 0x12a4  kltdi - ok
20:51:45.0077 0x12a4  [ 1FCB657B581CC4DF17FD6571F93602DE, D5D95773D19AA47BA619D149FD6068198E2AA05C219C3936E327B3DFFDE6B10C ] kneps           C:\windows\system32\DRIVERS\kneps.sys
20:51:45.0077 0x12a4  kneps - ok
20:51:45.0108 0x12a4  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
20:51:45.0108 0x12a4  KSecDD - ok
20:51:45.0124 0x12a4  [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
20:51:45.0124 0x12a4  KSecPkg - ok
20:51:45.0124 0x12a4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
20:51:45.0124 0x12a4  ksthunk - ok
20:51:45.0170 0x12a4  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\windows\system32\msdtckrm.dll
20:51:45.0170 0x12a4  KtmRm - ok
20:51:45.0202 0x12a4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\windows\system32\srvsvc.dll
20:51:45.0202 0x12a4  LanmanServer - ok
20:51:45.0217 0x12a4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
20:51:45.0217 0x12a4  LanmanWorkstation - ok
20:51:45.0264 0x12a4  [ 57EAD1CA5C1FFC88905FD96B119BB286, 784C78CEA5C0C388EC358DD6158AD0EB26699ED0DAAA162CD4C69947D941A9EB ] LenovoCOMSvc    C:\Program Files\Lenovo\Power Dial\LenovoCOMSvc.exe
20:51:45.0264 0x12a4  LenovoCOMSvc - ok
20:51:45.0264 0x12a4  [ E5BEC70311434BA4BD87CD64F2B24356, B74E2C9BAD7F8658C8060F9E41E7C310AE0A18A9F0EE30B9A1A32238B454807B ] LitModeCtrl     C:\Program Files\Lenovo\Power Dial\LitModeCtrl.exe
20:51:45.0264 0x12a4  LitModeCtrl - ok
20:51:45.0280 0x12a4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
20:51:45.0280 0x12a4  lltdio - ok
20:51:45.0342 0x12a4  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\windows\System32\lltdsvc.dll
20:51:45.0342 0x12a4  lltdsvc - ok
20:51:45.0358 0x12a4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\windows\System32\lmhsvc.dll
20:51:45.0358 0x12a4  lmhosts - ok
20:51:45.0389 0x12a4  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
20:51:45.0389 0x12a4  LSI_FC - ok
20:51:45.0389 0x12a4  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
20:51:45.0404 0x12a4  LSI_SAS - ok
20:51:45.0404 0x12a4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
20:51:45.0404 0x12a4  LSI_SAS2 - ok
20:51:45.0420 0x12a4  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
20:51:45.0420 0x12a4  LSI_SCSI - ok
20:51:45.0436 0x12a4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\windows\system32\drivers\luafv.sys
20:51:45.0436 0x12a4  luafv - ok
20:51:45.0467 0x12a4  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
20:51:45.0467 0x12a4  Mcx2Svc - ok
20:51:45.0467 0x12a4  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\windows\system32\drivers\megasas.sys
20:51:45.0467 0x12a4  megasas - ok
20:51:45.0482 0x12a4  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
20:51:45.0498 0x12a4  MegaSR - ok
20:51:45.0545 0x12a4  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
20:51:45.0545 0x12a4  MEIx64 - ok
20:51:45.0560 0x12a4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\windows\system32\mmcss.dll
20:51:45.0560 0x12a4  MMCSS - ok
20:51:45.0560 0x12a4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\windows\system32\drivers\modem.sys
20:51:45.0560 0x12a4  Modem - ok
20:51:45.0576 0x12a4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\windows\system32\DRIVERS\monitor.sys
20:51:45.0576 0x12a4  monitor - ok
20:51:45.0576 0x12a4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
20:51:45.0592 0x12a4  mouclass - ok
20:51:45.0592 0x12a4  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
20:51:45.0592 0x12a4  mouhid - ok
20:51:45.0607 0x12a4  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
20:51:45.0607 0x12a4  mountmgr - ok
20:51:45.0638 0x12a4  [ E1B6FCAE82474FC071155263E2841D54, 341E2CEB1A86586730130311C4FAF86851151D5F08EF915A5F89B6C4094AE1F4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
20:51:45.0654 0x12a4  MozillaMaintenance - ok
20:51:45.0654 0x12a4  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\windows\system32\drivers\mpio.sys
20:51:45.0670 0x12a4  mpio - ok
20:51:45.0685 0x12a4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
20:51:45.0685 0x12a4  mpsdrv - ok
20:51:45.0716 0x12a4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\windows\system32\mpssvc.dll
20:51:45.0748 0x12a4  MpsSvc - ok
20:51:45.0779 0x12a4  [ 9BD4DCB5412921864A7AACDEDFBD1923, 46DEE9B9414D26203B62F0D6CAEBF37A3CEFD118556129547B2C5FC7B6FDBA05 ] MREMP50         C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS
20:51:45.0779 0x12a4  MREMP50 - ok
20:51:45.0810 0x12a4  MREMP50a64 - ok
20:51:45.0810 0x12a4  MREMPR5 - ok
20:51:45.0810 0x12a4  MRENDIS5 - ok
20:51:45.0826 0x12a4  [ 07C02C892E8E1A72D6BF35004F0E9C5E, 09ECD59AADF08E2AA0C1BAF5D3D7CBB0948153E531E1F82ECACD43F14F88106B ] MRESP50         C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS
20:51:45.0826 0x12a4  MRESP50 - ok
20:51:45.0826 0x12a4  MRESP50a64 - ok
20:51:45.0841 0x12a4  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
20:51:45.0841 0x12a4  MRxDAV - ok
20:51:45.0857 0x12a4  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
20:51:45.0857 0x12a4  mrxsmb - ok
20:51:45.0888 0x12a4  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
20:51:45.0888 0x12a4  mrxsmb10 - ok
20:51:45.0919 0x12a4  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
20:51:45.0919 0x12a4  mrxsmb20 - ok
20:51:45.0935 0x12a4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\windows\system32\drivers\msahci.sys
20:51:45.0935 0x12a4  msahci - ok
20:51:45.0935 0x12a4  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\windows\system32\drivers\msdsm.sys
20:51:45.0950 0x12a4  msdsm - ok
20:51:45.0966 0x12a4  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\windows\System32\msdtc.exe
20:51:45.0966 0x12a4  MSDTC - ok
20:51:45.0982 0x12a4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\windows\system32\drivers\Msfs.sys
20:51:45.0982 0x12a4  Msfs - ok
20:51:45.0997 0x12a4  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
20:51:45.0997 0x12a4  mshidkmdf - ok
20:51:45.0997 0x12a4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
20:51:45.0997 0x12a4  msisadrv - ok
20:51:46.0028 0x12a4  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
20:51:46.0028 0x12a4  MSiSCSI - ok
20:51:46.0028 0x12a4  msiserver - ok
20:51:46.0060 0x12a4  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
20:51:46.0060 0x12a4  MSKSSRV - ok
20:51:46.0060 0x12a4  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
20:51:46.0060 0x12a4  MSPCLOCK - ok
20:51:46.0060 0x12a4  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
20:51:46.0060 0x12a4  MSPQM - ok
20:51:46.0091 0x12a4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
20:51:46.0106 0x12a4  MsRPC - ok
20:51:46.0122 0x12a4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
20:51:46.0122 0x12a4  mssmbios - ok
20:51:46.0122 0x12a4  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
20:51:46.0122 0x12a4  MSTEE - ok
20:51:46.0122 0x12a4  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
20:51:46.0122 0x12a4  MTConfig - ok
20:51:46.0138 0x12a4  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\windows\system32\Drivers\mup.sys
20:51:46.0138 0x12a4  Mup - ok
20:51:46.0169 0x12a4  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\windows\system32\qagentRT.dll
20:51:46.0169 0x12a4  napagent - ok
20:51:46.0184 0x12a4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
20:51:46.0200 0x12a4  NativeWifiP - ok
20:51:46.0231 0x12a4  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\windows\system32\drivers\ndis.sys
20:51:46.0247 0x12a4  NDIS - ok
20:51:46.0247 0x12a4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
20:51:46.0247 0x12a4  NdisCap - ok
20:51:46.0262 0x12a4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
20:51:46.0262 0x12a4  NdisTapi - ok
20:51:46.0262 0x12a4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
20:51:46.0262 0x12a4  Ndisuio - ok
20:51:46.0278 0x12a4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
20:51:46.0278 0x12a4  NdisWan - ok
20:51:46.0294 0x12a4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
20:51:46.0294 0x12a4  NDProxy - ok
20:51:46.0309 0x12a4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
20:51:46.0309 0x12a4  NetBIOS - ok
20:51:46.0325 0x12a4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
20:51:46.0325 0x12a4  NetBT - ok
20:51:46.0325 0x12a4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\windows\system32\lsass.exe
20:51:46.0325 0x12a4  Netlogon - ok
20:51:46.0340 0x12a4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\windows\System32\netman.dll
20:51:46.0356 0x12a4  Netman - ok
20:51:46.0403 0x12a4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:51:46.0403 0x12a4  NetMsmqActivator - ok
20:51:46.0403 0x12a4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:51:46.0418 0x12a4  NetPipeActivator - ok
20:51:46.0434 0x12a4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\windows\System32\netprofm.dll
20:51:46.0450 0x12a4  netprofm - ok
20:51:46.0465 0x12a4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:51:46.0465 0x12a4  NetTcpActivator - ok
20:51:46.0465 0x12a4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
20:51:46.0481 0x12a4  NetTcpPortSharing - ok
20:51:46.0481 0x12a4  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
20:51:46.0481 0x12a4  nfrd960 - ok
20:51:46.0512 0x12a4  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\windows\System32\nlasvc.dll
20:51:46.0528 0x12a4  NlaSvc - ok
20:51:46.0543 0x12a4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\windows\system32\drivers\Npfs.sys
20:51:46.0543 0x12a4  Npfs - ok
20:51:46.0543 0x12a4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\windows\system32\nsisvc.dll
20:51:46.0543 0x12a4  nsi - ok
20:51:46.0559 0x12a4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
20:51:46.0559 0x12a4  nsiproxy - ok
20:51:46.0637 0x12a4  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
20:51:46.0668 0x12a4  Ntfs - ok
20:51:46.0668 0x12a4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\windows\system32\drivers\Null.sys
20:51:46.0668 0x12a4  Null - ok
20:51:46.0684 0x12a4  [ 786DB821BFD57C0551DBBE4F75384A7D, F956D636F834F2BA5F019E187FDB9CC33940363C75A60E53CD81310A4DB6A6AB ] nusb3hub        C:\windows\system32\DRIVERS\nusb3hub.sys
20:51:46.0684 0x12a4  nusb3hub - ok
20:51:46.0699 0x12a4  [ DAA8005CAF745042BB427A1ED7433354, 3019002F174783B76D5D8AA47F7A465B7FEC7C14235B70E5C9277FE534839226 ] nusb3xhc        C:\windows\system32\DRIVERS\nusb3xhc.sys
20:51:46.0699 0x12a4  nusb3xhc - ok
20:51:46.0699 0x12a4  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\windows\system32\drivers\nvraid.sys
20:51:46.0699 0x12a4  nvraid - ok
20:51:46.0715 0x12a4  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\windows\system32\drivers\nvstor.sys
20:51:46.0715 0x12a4  nvstor - ok
20:51:46.0715 0x12a4  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
20:51:46.0715 0x12a4  nv_agp - ok
20:51:46.0730 0x12a4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
20:51:46.0730 0x12a4  ohci1394 - ok
20:51:46.0762 0x12a4  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
20:51:46.0762 0x12a4  ose - ok
20:51:46.0933 0x12a4  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
20:51:46.0996 0x12a4  osppsvc - ok
20:51:47.0011 0x12a4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
20:51:47.0027 0x12a4  p2pimsvc - ok
20:51:47.0042 0x12a4  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\windows\system32\p2psvc.dll
20:51:47.0042 0x12a4  p2psvc - ok
20:51:47.0058 0x12a4  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\windows\system32\drivers\parport.sys
20:51:47.0058 0x12a4  Parport - ok
20:51:47.0120 0x12a4  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\windows\system32\drivers\partmgr.sys
20:51:47.0120 0x12a4  partmgr - ok
20:51:47.0136 0x12a4  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\windows\System32\pcasvc.dll
20:51:47.0136 0x12a4  PcaSvc - ok
20:51:47.0152 0x12a4  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\windows\system32\drivers\pci.sys
20:51:47.0152 0x12a4  pci - ok
20:51:47.0167 0x12a4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\windows\system32\drivers\pciide.sys
20:51:47.0167 0x12a4  pciide - ok
20:51:47.0183 0x12a4  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
20:51:47.0183 0x12a4  pcmcia - ok
20:51:47.0198 0x12a4  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\windows\system32\drivers\pcw.sys
20:51:47.0198 0x12a4  pcw - ok
20:51:47.0214 0x12a4  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\windows\system32\drivers\peauth.sys
20:51:47.0230 0x12a4  PEAUTH - ok
20:51:47.0292 0x12a4  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\windows\SysWow64\perfhost.exe
20:51:47.0292 0x12a4  PerfHost - ok
20:51:47.0354 0x12a4  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\windows\system32\pla.dll
20:51:47.0370 0x12a4  pla - ok
20:51:47.0401 0x12a4  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
20:51:47.0401 0x12a4  PlugPlay - ok
20:51:47.0417 0x12a4  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
20:51:47.0417 0x12a4  PNRPAutoReg - ok
20:51:47.0417 0x12a4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
20:51:47.0432 0x12a4  PNRPsvc - ok
20:51:47.0464 0x12a4  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
20:51:47.0464 0x12a4  PolicyAgent - ok
20:51:47.0479 0x12a4  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\windows\system32\umpo.dll
20:51:47.0479 0x12a4  Power - ok
20:51:47.0495 0x12a4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
20:51:47.0495 0x12a4  PptpMiniport - ok
20:51:47.0510 0x12a4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\windows\system32\drivers\processr.sys
20:51:47.0510 0x12a4  Processor - ok
20:51:47.0542 0x12a4  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\windows\system32\profsvc.dll
20:51:47.0542 0x12a4  ProfSvc - ok
20:51:47.0542 0x12a4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\windows\system32\lsass.exe
20:51:47.0542 0x12a4  ProtectedStorage - ok
20:51:47.0557 0x12a4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
20:51:47.0557 0x12a4  Psched - ok
20:51:47.0588 0x12a4  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\windows\system32\drivers\ql2300.sys
20:51:47.0620 0x12a4  ql2300 - ok
20:51:47.0620 0x12a4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
20:51:47.0620 0x12a4  ql40xx - ok
20:51:47.0651 0x12a4  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\windows\system32\qwave.dll
20:51:47.0651 0x12a4  QWAVE - ok
20:51:47.0666 0x12a4  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
20:51:47.0666 0x12a4  QWAVEdrv - ok
20:51:47.0666 0x12a4  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
20:51:47.0666 0x12a4  RasAcd - ok
20:51:47.0682 0x12a4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
20:51:47.0682 0x12a4  RasAgileVpn - ok
20:51:47.0698 0x12a4  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\windows\System32\rasauto.dll
20:51:47.0698 0x12a4  RasAuto - ok
20:51:47.0713 0x12a4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
20:51:47.0713 0x12a4  Rasl2tp - ok
20:51:47.0729 0x12a4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\windows\System32\rasmans.dll
20:51:47.0729 0x12a4  RasMan - ok
20:51:47.0744 0x12a4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
20:51:47.0744 0x12a4  RasPppoe - ok
20:51:47.0744 0x12a4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
20:51:47.0760 0x12a4  RasSstp - ok
20:51:47.0760 0x12a4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
20:51:47.0776 0x12a4  rdbss - ok
20:51:47.0776 0x12a4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
20:51:47.0776 0x12a4  rdpbus - ok
20:51:47.0776 0x12a4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
20:51:47.0776 0x12a4  RDPCDD - ok
20:51:47.0776 0x12a4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
20:51:47.0791 0x12a4  RDPENCDD - ok
20:51:47.0791 0x12a4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
20:51:47.0791 0x12a4  RDPREFMP - ok
20:51:47.0807 0x12a4  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
20:51:47.0807 0x12a4  RdpVideoMiniport - ok
20:51:47.0822 0x12a4  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
20:51:47.0838 0x12a4  RDPWD - ok
20:51:47.0854 0x12a4  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
20:51:47.0854 0x12a4  rdyboost - ok
20:51:47.0854 0x12a4  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\windows\System32\mprdim.dll
20:51:47.0854 0x12a4  RemoteAccess - ok
20:51:47.0869 0x12a4  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\windows\system32\regsvc.dll
20:51:47.0869 0x12a4  RemoteRegistry - ok
20:51:47.0885 0x12a4  [ 7B04C9843921AB1F695FB395422C5360, C9B02BE0384357FD242613C2A12029B45322AF9A795CD69F33500CA7530899A7 ] RimUsb          C:\windows\system32\Drivers\RimUsb_AMD64.sys
20:51:47.0885 0x12a4  RimUsb - ok
20:51:47.0900 0x12a4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
20:51:47.0900 0x12a4  RpcEptMapper - ok
20:51:47.0916 0x12a4  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\windows\system32\locator.exe
20:51:47.0916 0x12a4  RpcLocator - ok
20:51:47.0932 0x12a4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\windows\system32\rpcss.dll
20:51:47.0932 0x12a4  RpcSs - ok
20:51:47.0947 0x12a4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
20:51:47.0947 0x12a4  rspndr - ok
20:51:47.0963 0x12a4  [ 9BEB5F18A418FF70659CE2E356829568, 8E327A99E68B5F9028778F5845719D00C590882B8609AF66D97DA880D537C937 ] RSUSBSTOR       C:\windows\system32\Drivers\RtsUStor.sys
20:51:47.0963 0x12a4  RSUSBSTOR - ok
20:51:48.0025 0x12a4  [ 09A8BA290DB61D2D5C419A06A2E54D20, CE2C7FD288055526F708E751E9A837B04CE6213DD2294C4D9D535A2A8A94639A ] RTL8192Ce       C:\windows\system32\DRIVERS\rtl8192Ce.sys
20:51:48.0041 0x12a4  RTL8192Ce - ok
20:51:48.0056 0x12a4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\windows\system32\lsass.exe
20:51:48.0056 0x12a4  SamSs - ok
20:51:48.0056 0x12a4  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
20:51:48.0056 0x12a4  sbp2port - ok
20:51:48.0088 0x12a4  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\windows\System32\SCardSvr.dll
20:51:48.0088 0x12a4  SCardSvr - ok
20:51:48.0103 0x12a4  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
20:51:48.0103 0x12a4  scfilter - ok
20:51:48.0134 0x12a4  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\windows\system32\schedsvc.dll
20:51:48.0150 0x12a4  Schedule - ok
20:51:48.0166 0x12a4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\windows\System32\certprop.dll
20:51:48.0166 0x12a4  SCPolicySvc - ok
20:51:48.0181 0x12a4  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\windows\System32\SDRSVC.dll
20:51:48.0181 0x12a4  SDRSVC - ok
20:51:48.0197 0x12a4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys
20:51:48.0197 0x12a4  secdrv - ok
20:51:48.0197 0x12a4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\windows\system32\seclogon.dll
20:51:48.0197 0x12a4  seclogon - ok
20:51:48.0212 0x12a4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\windows\System32\sens.dll
20:51:48.0212 0x12a4  SENS - ok
20:51:48.0212 0x12a4  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\windows\system32\sensrsvc.dll
20:51:48.0228 0x12a4  SensrSvc - ok
20:51:48.0228 0x12a4  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\windows\system32\DRIVERS\serenum.sys
20:51:48.0228 0x12a4  Serenum - ok
20:51:48.0244 0x12a4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\windows\system32\DRIVERS\serial.sys
20:51:48.0244 0x12a4  Serial - ok
20:51:48.0244 0x12a4  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\windows\system32\drivers\sermouse.sys
20:51:48.0244 0x12a4  sermouse - ok
20:51:48.0259 0x12a4  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\windows\system32\sessenv.dll
20:51:48.0259 0x12a4  SessionEnv - ok
20:51:48.0259 0x12a4  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
20:51:48.0259 0x12a4  sffdisk - ok
20:51:48.0259 0x12a4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
20:51:48.0259 0x12a4  sffp_mmc - ok
20:51:48.0259 0x12a4  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
20:51:48.0259 0x12a4  sffp_sd - ok
20:51:48.0259 0x12a4  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
20:51:48.0259 0x12a4  sfloppy - ok
20:51:48.0290 0x12a4  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\windows\System32\ipnathlp.dll
20:51:48.0306 0x12a4  SharedAccess - ok
20:51:48.0322 0x12a4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
20:51:48.0322 0x12a4  ShellHWDetection - ok
20:51:48.0322 0x12a4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
20:51:48.0322 0x12a4  SiSRaid2 - ok
20:51:48.0322 0x12a4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
20:51:48.0337 0x12a4  SiSRaid4 - ok
20:51:48.0337 0x12a4  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\windows\system32\DRIVERS\smb.sys
20:51:48.0337 0x12a4  Smb - ok
20:51:48.0337 0x12a4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
20:51:48.0337 0x12a4  SNMPTRAP - ok
20:51:48.0353 0x12a4  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\windows\system32\drivers\spldr.sys
20:51:48.0353 0x12a4  spldr - ok
20:51:48.0384 0x12a4  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\windows\System32\spoolsv.exe
20:51:48.0400 0x12a4  Spooler - ok
20:51:48.0478 0x12a4  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\windows\system32\sppsvc.exe
20:51:48.0524 0x12a4  sppsvc - ok
20:51:48.0540 0x12a4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\windows\system32\sppuinotify.dll
20:51:48.0540 0x12a4  sppuinotify - ok
20:51:48.0556 0x12a4  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\windows\system32\DRIVERS\srv.sys
20:51:48.0571 0x12a4  srv - ok
20:51:48.0587 0x12a4  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
20:51:48.0587 0x12a4  srv2 - ok
20:51:48.0602 0x12a4  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
20:51:48.0602 0x12a4  srvnet - ok
20:51:48.0618 0x12a4  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
20:51:48.0618 0x12a4  SSDPSRV - ok
20:51:48.0618 0x12a4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\windows\system32\sstpsvc.dll
20:51:48.0618 0x12a4  SstpSvc - ok
20:51:48.0649 0x12a4  [ 6E1A473DD2A4714EAF7D11E2315DF794, 4460546191072C7DF8B2E5A00577BA8E4FF5A1B2EA399DDF65EBE1AE4A5A5C84 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
20:51:48.0665 0x12a4  Steam Client Service - ok
20:51:48.0680 0x12a4  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\windows\system32\drivers\stexstor.sys
20:51:48.0680 0x12a4  stexstor - ok
20:51:48.0712 0x12a4  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\windows\System32\wiaservc.dll
20:51:48.0727 0x12a4  stisvc - ok
20:51:48.0743 0x12a4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
20:51:48.0743 0x12a4  swenum - ok
20:51:48.0758 0x12a4  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\windows\System32\swprv.dll
20:51:48.0774 0x12a4  swprv - ok
20:51:48.0821 0x12a4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\windows\system32\sysmain.dll
20:51:48.0836 0x12a4  SysMain - ok
20:51:48.0868 0x12a4  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
20:51:48.0868 0x12a4  TabletInputService - ok
20:51:48.0899 0x12a4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\windows\System32\tapisrv.dll
20:51:48.0914 0x12a4  TapiSrv - ok
20:51:48.0930 0x12a4  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\windows\System32\tbssvc.dll
20:51:48.0930 0x12a4  TBS - ok
20:51:49.0024 0x12a4  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\windows\system32\drivers\tcpip.sys
20:51:49.0055 0x12a4  Tcpip - ok
20:51:49.0148 0x12a4  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
20:51:49.0164 0x12a4  TCPIP6 - ok
20:51:49.0211 0x12a4  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
20:51:49.0211 0x12a4  tcpipreg - ok
20:51:49.0242 0x12a4  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
20:51:49.0242 0x12a4  TDPIPE - ok
20:51:49.0258 0x12a4  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
20:51:49.0258 0x12a4  TDTCP - ok
20:51:49.0273 0x12a4  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
20:51:49.0273 0x12a4  tdx - ok
20:51:49.0289 0x12a4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
20:51:49.0289 0x12a4  TermDD - ok
20:51:49.0320 0x12a4  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\windows\System32\termsrv.dll
20:51:49.0336 0x12a4  TermService - ok
20:51:49.0351 0x12a4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\windows\system32\themeservice.dll
20:51:49.0351 0x12a4  Themes - ok
20:51:49.0367 0x12a4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\windows\system32\mmcss.dll
20:51:49.0367 0x12a4  THREADORDER - ok
20:51:49.0382 0x12a4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\windows\System32\trkwks.dll
20:51:49.0382 0x12a4  TrkWks - ok
20:51:49.0414 0x12a4  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
20:51:49.0429 0x12a4  TrustedInstaller - ok
20:51:49.0445 0x12a4  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
20:51:49.0460 0x12a4  tssecsrv - ok
20:51:49.0492 0x12a4  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
20:51:49.0492 0x12a4  TsUsbFlt - ok
20:51:49.0507 0x12a4  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
20:51:49.0507 0x12a4  TsUsbGD - ok
20:51:49.0507 0x12a4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
20:51:49.0523 0x12a4  tunnel - ok
20:51:49.0523 0x12a4  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\windows\system32\drivers\uagp35.sys
20:51:49.0523 0x12a4  uagp35 - ok
20:51:49.0554 0x12a4  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
20:51:49.0554 0x12a4  udfs - ok
20:51:49.0570 0x12a4  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\windows\system32\UI0Detect.exe
20:51:49.0570 0x12a4  UI0Detect - ok
20:51:49.0570 0x12a4  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
20:51:49.0570 0x12a4  uliagpkx - ok
20:51:49.0585 0x12a4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\windows\system32\DRIVERS\umbus.sys
20:51:49.0585 0x12a4  umbus - ok
20:51:49.0585 0x12a4  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\windows\system32\drivers\umpass.sys
20:51:49.0601 0x12a4  UmPass - ok
20:51:49.0601 0x12a4  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\windows\System32\upnphost.dll
20:51:49.0616 0x12a4  upnphost - ok
20:51:49.0632 0x12a4  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
20:51:49.0632 0x12a4  USBAAPL64 - ok
20:51:49.0648 0x12a4  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
20:51:49.0648 0x12a4  usbccgp - ok
20:51:49.0663 0x12a4  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\windows\system32\drivers\usbcir.sys
20:51:49.0663 0x12a4  usbcir - ok
20:51:49.0710 0x12a4  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\windows\system32\drivers\usbehci.sys
20:51:49.0710 0x12a4  usbehci - ok
20:51:49.0726 0x12a4  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
20:51:49.0741 0x12a4  usbhub - ok
20:51:49.0757 0x12a4  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\windows\system32\drivers\usbohci.sys
20:51:49.0757 0x12a4  usbohci - ok
20:51:49.0757 0x12a4  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\windows\system32\drivers\usbprint.sys
20:51:49.0757 0x12a4  usbprint - ok
20:51:49.0772 0x12a4  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
20:51:49.0772 0x12a4  USBSTOR - ok
20:51:49.0772 0x12a4  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
20:51:49.0772 0x12a4  usbuhci - ok
20:51:49.0788 0x12a4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\windows\System32\uxsms.dll
20:51:49.0788 0x12a4  UxSms - ok
20:51:49.0804 0x12a4  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\windows\system32\lsass.exe
20:51:49.0804 0x12a4  VaultSvc - ok
20:51:49.0819 0x12a4  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
20:51:49.0819 0x12a4  vdrvroot - ok
20:51:49.0835 0x12a4  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\windows\System32\vds.exe
20:51:49.0850 0x12a4  vds - ok
20:51:49.0850 0x12a4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
20:51:49.0850 0x12a4  vga - ok
20:51:49.0850 0x12a4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\windows\System32\drivers\vga.sys
20:51:49.0850 0x12a4  VgaSave - ok
20:51:49.0866 0x12a4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
20:51:49.0866 0x12a4  vhdmp - ok
20:51:49.0882 0x12a4  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\windows\system32\drivers\viaide.sys
20:51:49.0882 0x12a4  viaide - ok
20:51:49.0897 0x12a4  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\windows\system32\drivers\volmgr.sys
20:51:49.0897 0x12a4  volmgr - ok
20:51:49.0913 0x12a4  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
20:51:49.0913 0x12a4  volmgrx - ok
20:51:49.0928 0x12a4  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\windows\system32\drivers\volsnap.sys
20:51:49.0928 0x12a4  volsnap - ok
20:51:49.0944 0x12a4  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
20:51:49.0944 0x12a4  vsmraid - ok
20:51:49.0991 0x12a4  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\windows\system32\vssvc.exe
20:51:50.0006 0x12a4  VSS - ok
20:51:50.0006 0x12a4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
20:51:50.0006 0x12a4  vwifibus - ok
20:51:50.0022 0x12a4  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
20:51:50.0022 0x12a4  vwififlt - ok
20:51:50.0022 0x12a4  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
20:51:50.0038 0x12a4  vwifimp - ok
20:51:50.0038 0x12a4  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\windows\system32\w32time.dll
20:51:50.0053 0x12a4  W32Time - ok
20:51:50.0053 0x12a4  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\windows\system32\drivers\wacompen.sys
20:51:50.0053 0x12a4  WacomPen - ok
20:51:50.0069 0x12a4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
20:51:50.0069 0x12a4  WANARP - ok
20:51:50.0069 0x12a4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
20:51:50.0069 0x12a4  Wanarpv6 - ok
20:51:50.0084 0x12a4  [ ECEB715BECE47E101DDEC06B11126066, 6BD577D6EABD48B1BA31955DB3DEEE68528EA54375CA64D233B723D161B45CBA ] wanatw          C:\windows\system32\DRIVERS\wanatw64.sys
20:51:50.0084 0x12a4  wanatw - ok
20:51:50.0178 0x12a4  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
20:51:50.0194 0x12a4  WatAdminSvc - ok
20:51:50.0256 0x12a4  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\windows\system32\wbengine.exe
20:51:50.0287 0x12a4  wbengine - ok
20:51:50.0287 0x12a4  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
20:51:50.0303 0x12a4  WbioSrvc - ok
20:51:50.0318 0x12a4  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\windows\System32\wcncsvc.dll
20:51:50.0318 0x12a4  wcncsvc - ok
20:51:50.0318 0x12a4  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
20:51:50.0318 0x12a4  WcsPlugInService - ok
20:51:50.0334 0x12a4  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\windows\system32\drivers\wd.sys
20:51:50.0334 0x12a4  Wd - ok
20:51:50.0365 0x12a4  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
20:51:50.0365 0x12a4  Wdf01000 - ok
20:51:50.0381 0x12a4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\windows\system32\wdi.dll
20:51:50.0381 0x12a4  WdiServiceHost - ok
20:51:50.0396 0x12a4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\windows\system32\wdi.dll
20:51:50.0396 0x12a4  WdiSystemHost - ok
20:51:50.0428 0x12a4  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\windows\System32\webclnt.dll
20:51:50.0428 0x12a4  WebClient - ok
20:51:50.0443 0x12a4  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\windows\system32\wecsvc.dll
20:51:50.0443 0x12a4  Wecsvc - ok
20:51:50.0459 0x12a4  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\windows\System32\wercplsupport.dll
20:51:50.0459 0x12a4  wercplsupport - ok
20:51:50.0474 0x12a4  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\windows\System32\WerSvc.dll
20:51:50.0474 0x12a4  WerSvc - ok
20:51:50.0490 0x12a4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
20:51:50.0490 0x12a4  WfpLwf - ok
20:51:50.0490 0x12a4  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\windows\system32\drivers\wimmount.sys
20:51:50.0490 0x12a4  WIMMount - ok
20:51:50.0506 0x12a4  WinDefend - ok
20:51:50.0506 0x12a4  WinHttpAutoProxySvc - ok
20:51:50.0521 0x12a4  [ 66C365B542195C1F6E2FF4A7D8F3827C, FB43A64453283D1B236AFF73F010B8F6106B971047313B9B4EBE925C4DD325A2 ] WinI2C-DDC      C:\windows\system32\drivers\DDCDrv.sys
20:51:50.0521 0x12a4  WinI2C-DDC - ok
20:51:50.0568 0x12a4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
20:51:50.0584 0x12a4  Winmgmt - ok
20:51:50.0646 0x12a4  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\windows\system32\WsmSvc.dll
20:51:50.0677 0x12a4  WinRM - ok
20:51:50.0677 0x12a4  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
20:51:50.0693 0x12a4  WinUsb - ok
20:51:50.0708 0x12a4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\windows\System32\wlansvc.dll
20:51:50.0724 0x12a4  Wlansvc - ok
20:51:50.0740 0x12a4  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
20:51:50.0740 0x12a4  WmiAcpi - ok
20:51:50.0755 0x12a4  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
20:51:50.0755 0x12a4  wmiApSrv - ok
20:51:50.0771 0x12a4  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\windows\System32\wpcsvc.dll
20:51:50.0771 0x12a4  WPCSvc - ok
20:51:50.0771 0x12a4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
20:51:50.0786 0x12a4  WPDBusEnum - ok
20:51:50.0786 0x12a4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
20:51:50.0786 0x12a4  ws2ifsl - ok
20:51:50.0802 0x12a4  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\windows\System32\wscsvc.dll
20:51:50.0802 0x12a4  wscsvc - ok
20:51:50.0802 0x12a4  WSearch - ok
20:51:50.0833 0x12a4  [ 83575C43B2BFE9AB0661A7F957E843C0, 6FCE62721902A4F35F1A4CED8AF60A0346CFAB657ED92DE4CEFF19BDB830D32D ] wsvd            C:\windows\system32\DRIVERS\wsvd.sys
20:51:50.0833 0x12a4  wsvd - ok
20:51:50.0927 0x12a4  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\windows\system32\wuaueng.dll
20:51:50.0958 0x12a4  wuauserv - ok
20:51:50.0989 0x12a4  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
20:51:50.0989 0x12a4  WudfPf - ok
20:51:51.0005 0x12a4  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
20:51:51.0005 0x12a4  WUDFRd - ok
20:51:51.0020 0x12a4  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
20:51:51.0020 0x12a4  wudfsvc - ok
20:51:51.0067 0x12a4  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\windows\System32\wwansvc.dll
20:51:51.0083 0x12a4  WwanSvc - ok
20:51:51.0098 0x12a4  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\windows\system32\DRIVERS\yk62x64.sys
20:51:51.0114 0x12a4  yukonw7 - ok
20:51:51.0114 0x12a4  ================ Scan global ===============================
20:51:51.0130 0x12a4  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
20:51:51.0161 0x12a4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
20:51:51.0192 0x12a4  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
20:51:51.0208 0x12a4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
20:51:51.0223 0x12a4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
20:51:51.0239 0x12a4  [ Global ] - ok
20:51:51.0239 0x12a4  ================ Scan MBR ==================================
20:51:51.0239 0x12a4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
20:51:51.0426 0x12a4  \Device\Harddisk0\DR0 - ok
20:51:51.0426 0x12a4  ================ Scan VBR ==================================
20:51:51.0426 0x12a4  [ FEFAF9C35907AF74537DB54FA1D67784 ] \Device\Harddisk0\DR0\Partition1
20:51:51.0488 0x12a4  \Device\Harddisk0\DR0\Partition1 - ok
20:51:51.0488 0x12a4  [ 7753D5BDD09A404F25EAEE6351AF74E9 ] \Device\Harddisk0\DR0\Partition2
20:51:51.0535 0x12a4  \Device\Harddisk0\DR0\Partition2 - ok
20:51:51.0551 0x12a4  AV detected via SS2: Kaspersky PURE 3.0, C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\wmiav.exe ( 13.0.2.558 ), 0x41000 ( enabled : updated )
20:51:51.0551 0x12a4  FW detected via SS2: Kaspersky PURE 3.0, C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\wmifw.exe ( 13.0.2.558 ), 0x41010 ( enabled )
20:51:54.0421 0x12a4  ============================================================
20:51:54.0421 0x12a4  Scan finished
20:51:54.0421 0x12a4  ============================================================
20:51:54.0421 0x1024  Detected object count: 0
20:51:54.0421 0x1024  Actual detected object count: 0



#13 Artemis850

Artemis850
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 30 May 2014 - 08:56 PM

Maybe its not a virus but something is messed up in the computer.



#14 noknojon

noknojon

  • Banned
  • 10,871 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:11:46 AM

Posted 31 May 2014 - 06:08 AM

There are a few items in Malwarebytes report that concerns me - These 2 items are of particular concern to me. 

Broken.OpenCommand, HKCR\scrfile\shell\open\command, NOTEPAD.EXE "Good: ("Bad: (NOTEPAD.EXE "%1"),,[ffffffffffffffffffffffffffffffff]" /S)", %4, %5
Broken.OpenCommand, HKCR\regfile\shell\open\command, NOTEPAD.EXE "Good: (regedit.exe "Bad: (NOTEPAD.EXE "%1"),,[ffffffffffffffffffffffffffffffff]")", %4, %5

I would prefer you to post to the Experts area to have this checked -

 

Please follow the instructions in THE PREP GUIDE starting at Step #6.

NOTE : If you cannot complete a step, skip it and continue.

 

Once the proper logs are created, make a NEW TOPIC and post it to Virus, Trojan, Spyware, and Malware Removal Logs. Not back Here.

 

If Help Bot responds please follow its Step #1 and the Malware Response Team will be notified.

 

After you make the new post, please leave a link back here, and I can lock this topic, so that only the experts can hekp you -



#15 Artemis850

Artemis850
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 06 June 2014 - 12:41 PM

http://www.bleepingcomputer.com/forums/t/536866/undetectable-virus-prevents-programs-from-opening/






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users