Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

what is KILLED [Term Thr] from RogueKiller


  • Please log in to reply
11 replies to this topic

#1 seraphin

seraphin

  • Members
  • 102 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 05 June 2014 - 11:03 PM

Through CNET bundled download, I got into trouble with adware.

Running RogueKiller and Malwarebyte anti-malware and adwCleaner seems to do the job. Today I re-ran RogueKiller and Malwarebyte anti-malware, they found "PUM.Policies" and "PUP.Optional.OutBrowse.A", respectively. In addition, RogueKiller showed the following in "Process"

 

Status                                     Type                               PID

KILLED[Term Thr]                   Hidden                           1184

 

I remove/delete/quarantine EVERYTHING through the program's build-in functions but for RogueKiller, some of the things it flagged could NOT be removed (showing ERROR(2), including, for example,

under Web Browser,

User                                        ID                                                                   Object

Chrome@Default                    idhngdhcfkoamngbedgpaokgjbnpdini            Real Downloader

 

I read it that PUM = potentially unwanted modification and PUP = potentially unwanted program. I am almost certain I did not download anything since my last cleanup, but cannot find any info of RogueKiller's "KILLED [Term Thr]" status

 

Am I infected ????



BC AdBot (Login to Remove)

 


m

#2 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:10:12 PM

Posted 06 June 2014 - 05:11 AM

Hi seraphin and welcome to Bleepingcomputer.

 

For chrome entry, open google chrome > settings > Extension then click the bin button next to Real Downloader will get the job done.

 

For another entry I will need to ask other people first, but now please do this:

 

Download MiniToolBox, Save it to your desktop and run it.
Close any Firefox browsers you may have open
Checkmark the following boxes:
• Flush DNS
• Report IE Proxy Settings
• Reset IE Proxy Settings
• Report FF Proxy Settings
• Reset FF Proxy Settings
• List last 10 Event Viewer log
• List Installed Programs
• List Users, Partitions and Memory size.
Click Go and copy / paste the result (Result.txt).

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#3 seraphin

seraphin
  • Topic Starter

  • Members
  • 102 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 06 June 2014 - 09:07 AM

Thanks a lot for the help. Will follow the instructions and provide the update. Perhaps I am being a bit paranoid, but given your feedback, I am putting up all info that was detected by the programs just in case it helps.

 

Malwarebytes Anti-malware program

Vendor                                 Type                       Location                  

PUP.Optional.OutBrowse.A   Registry Key          HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{ ... same as below }

PUP.Optional.OutBrowse.A   Registry Key          HKLM\SOFTWARE\CLASSES\TYPELIB\{03771AEF-400D-4A13-B712-25878EC4A3F5

PUP.Optional.OutBrowse.A   File                        C:\Users\Admin\AppData\Local\temp\f.exe

 

Q - should I delete ALL that Malwarebyte found ? Because I have been just quarantining them.

Mod Edit:  Removed unrequested Rogue Killer data, not allowed in this forum _ Hamluis.

 

What's "weird (?)" is under Web browsers, it's also shown 0 (perhaps the "ERROR(2)" is not considered a threat ???).

¤¤¤ Web browsers : 0 ¤¤¤

 

Will put up the Minitoolbox result when I have it. Thanks again for the help.


Edited by hamluis, 06 June 2014 - 11:09 AM.


#4 seraphin

seraphin
  • Topic Starter

  • Members
  • 102 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 06 June 2014 - 09:21 AM

Below is the FULL result. (please feel free to delete the answer if it's too long and let me know. I will then try to put up the result as an attachment, if such a function is available).

 

ps. I saw from the log that perhaps I did some damage to my computer myself by using ComboFix a while back WITHOUT the proper instruction ??

 

Thanks again.

 

 

MiniToolBox by Farbar  Version: 23-01-2014
Ran by Brenden (ATTENTION: The logged in user is not administrator) on 06-06-2014 at 10:10:19
Running from "C:\Users\Brenden\Desktop"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.


========================= Event log errors: ===============================

Application errors:
==================
Error: (06/06/2014 10:05:40 AM) (Source: PlsvcV2) (User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 10:00:41 AM) (Source: PlsvcV2) (User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 09:55:40 AM) (Source: PlsvcV2) (User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 09:50:40 AM) (Source: PlsvcV2) (User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 09:45:40 AM) (Source: PlsvcV2) (User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 09:40:38 AM) (Source: PlsvcV2) (User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 00:03:24 AM) (Source: PlsvcV2) (User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/05/2014 11:58:24 PM) (Source: PlsvcV2) (User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/05/2014 11:53:24 PM) (Source: PlsvcV2) (User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/05/2014 11:48:24 PM) (Source: PlsvcV2) (User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).


System errors:
=============
Error: (06/06/2014 09:39:30 AM) (Source: Service Control Manager) (User: )
Description: The PlsvcV2 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.

Error: (06/05/2014 11:32:05 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)

Error: (06/05/2014 11:30:43 PM) (Source: Service Control Manager) (User: )
Description: The plsapp service failed to start due to the following error:
%%1053

Error: (06/05/2014 11:30:43 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the plsapp service to connect.

Error: (06/05/2014 11:22:48 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the PlsvcV1 service.

Error: (06/05/2014 11:22:18 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the PlsvcV1 service.


Microsoft Office Sessions:
=========================
Error: (06/06/2014 10:05:40 AM) (Source: PlsvcV2)(User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 10:00:41 AM) (Source: PlsvcV2)(User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 09:55:40 AM) (Source: PlsvcV2)(User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 09:50:40 AM) (Source: PlsvcV2)(User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 09:45:40 AM) (Source: PlsvcV2)(User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 09:40:38 AM) (Source: PlsvcV2)(User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/06/2014 00:03:24 AM) (Source: PlsvcV2)(User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/05/2014 11:58:24 PM) (Source: PlsvcV2)(User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/05/2014 11:53:24 PM) (Source: PlsvcV2)(User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).

Error: (06/05/2014 11:48:24 PM) (Source: PlsvcV2)(User: )
Description: In the enable methodRetrieving the COM class factory for component with CLSID {6EEBC7FF-67DA-4B90-9251-C2C5696E4B48} failed due to the following error: 80040154 Class not registered (Exception from HRESULT: 0x80040154 (REGDB_E_CLASSNOTREG)).


CodeIntegrity Errors:
===================================
  Date: 2014-05-23 01:17:42.873
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix_52314\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-05-23 01:17:42.753
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix_52314\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-21 17:37:16.410
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-21 17:37:16.176
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-21 17:37:15.896
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2014-04-21 17:37:15.662
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-11-04 20:35:37.131
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2013-11-04 20:35:36.944
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

  Date: 2012-11-22 14:31:17.051
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.

  Date: 2012-11-22 14:31:16.991
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\cryptnet.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Adobe AIR (Version: 3.6.0.5970)
Adobe Anchor Service CS3 (Version: 1.0)
Adobe Asset Services CS3 (Version: 3)
Adobe Bridge CS3 (Version: 2)
Adobe Bridge Start Meeting (Version: 1.0)
Adobe Camera Raw 4.0 (Version: 4.0)
Adobe CMaps (Version: 1.0)
Adobe Color - Photoshop Specific (Version: 1.0)
Adobe Color Common Settings (Version: 1.0)
Adobe Color EU Extra Settings (Version: 1.0)
Adobe Color JA Extra Settings (Version: 1.0)
Adobe Color NA Recommended Settings (Version: 1.0)
Adobe Default Language CS3 (Version: 1.0)
Adobe Device Central CS3 (Version: 1.0)
Adobe ExtendScript Toolkit 2 (Version: 2.0)
Adobe Flash Player 13 ActiveX (Version: 13.0.0.214)
Adobe Flash Player 13 Plugin (Version: 13.0.0.214)
Adobe Fonts All (Version: 1.0)
Adobe Help Viewer CS3 (Version: 1)
Adobe Linguistics CS3 (Version: 3.0.0)
Adobe PDF Library Files (Version: 8.0)
Adobe Photoshop CS3 (Version: 10)
Adobe Photoshop CS3 (Version: 10.0)
Adobe Reader XI (11.0.07) (Version: 11.0.07)
Adobe Setup (Version: 1.0)
Adobe Stock Photos CS3 (Version: 1.5)
Adobe Type Support (Version: 1.0)
Adobe Update Manager CS3 (Version: 5.1.0)
Adobe Version Cue CS3 Client (Version: 3)
Adobe WinSoft Linguistics Plugin (Version: 1.0)
Adobe XMP Panels CS3 (Version: 1.0)
Agilent Genomic Workbench 7.0.4.0 (Version: 7.0.4.0)
AVS Audio Converter 7.2 (Version: 7.2.2.529)
AVS Video Converter 8.5 (Version: 8.5.1.551)
B1 Free Archiver (Version: 1.5.86.4889)
Bing Bar (Version: 7.3.132.0)
Burn.Now 4.5 (Version: 4.5.0)
calibre (Version: 1.36.0)
CCleaner (Version: 4.13)
CGoban 3-NFA
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Citrix Online Launcher (Version: 1.0.141)
Conexant 20671 SmartAudio HD (Version: 8.32.14.51)
Corel Burn.Now Lenovo Edition (Version: 4.5.0)
Corel DVD MovieFactory 7 (Version: 7.0.0)
Corel DVD MovieFactory Lenovo Edition (Version: 7.0.0)
Corel WinDVD (Version: 10.0.5.828)
Create Recovery Media (Version: 1.20.0.00)
Cyberduck 14140 (4.4.3) (Version: 14140 (4.4.3))
D3DX10 (Version: 15.4.2368.0902)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
Direct DiscRecorder (Version: 1.00.0000)
DiskCheckup v3.2 (Version: 3.2.1000)
DjVuLibre+DjView (Version: 3.5.25.3+4.9)
Dropbox (Version: 2.8.2)
Expression Console v1.3.1 (Version: 1.3.1)
Expression2Kinases 1.6-SNAPSHOT (Version: 1.6-SNAPSHOT)
External Tools Installer (Version: 3.2.0000)
FileZilla Client 3.7.0.2 (Version: 3.7.0.2)
foobar2000 v0.9.6.9 (Version: 0.9.6.9)
Google Chrome (Version: 35.0.1916.114)
Google Update Helper (Version: 1.3.24.7)
GoPanda
GoToMeeting 5.9.0.1216 (Version: 5.9.0.1216)
iDailyDiary 3.85
ImageJ 1.47t
Integrated Camera Driver Installer Package Ver.1.1.0.1147 (Version: 1.1.0.1147)
Integrated Camera TWAIN (Version: 1.0.11.1223)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Identity Protection Technology 1.1.2.0 (Version: 1.1.2.0)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2342)
Japanese Fonts Support For Adobe Reader X (Version: 10.0.0)
Java 7 Update 55 (Version: 7.0.550)
Java Auto Updater (Version: 2.1.9.8)
Junk Mail filter update (Version: 15.4.3502.0922)
Kits Configuration Installer (Version: 8.59.25584)
Lenovo Auto Scroll Utility (Version: 1.00)
Lenovo System Interface Driver (Version: 1.05)
Lenovo ThinkVantage Toolbox (Version: 6.0.5717.35)
Lenovo User Guide (Version: 1.0.0008.00)
Lenovo Warranty Information (Version: 1.0.0005.00)
Lenovo Welcome (Version: 2.02.003.0)
Malwarebytes Anti-Malware version 2.0.2.1012 (Version: 2.0.2.1012)
McAfee Security Scan Plus (Version: 3.8.141.11)
Mesh Runtime (Version: 15.4.5722.2)
Message Center Plus (Version: 2.0.0012.00)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft PowerPoint Viewer (Version: 14.0.7015.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (Version: 8.0.51011)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
MiKTeX 2.9 (Version: 2.9)
Mozilla Firefox 29.0.1 (x86 en-US) (Version: 29.0.1)
Mozilla Maintenance Service (Version: 29.0.1)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Notepad++ (Version: 6.3.2)
NTREGOPT 1.1j
On Screen Display (Version: 6.23.00)
Opera Stable 21.0.1432.67 (Version: 21.0.1432.67)
Oracle VM VirtualBox 4.1.18 (Version: 4.1.18)
Padre on Strawberry Perl version 0.05 (Version: 0.05)
PANDA-glGo (Version: 1.4)
PDF reDirect (remove only) (Version: v2.5.2)
PDF Settings (Version: 1.0)
PureLeads (Version: 2.0.17)
R for Windows 2.15.1 (Version: 2.15.1)
RapidBoot (Version: 1.00)
RealDownloader (Version: 1.3.1)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0)
RealPlayer (Version: 16.0.0)
Realtek Ethernet Controller Driver (Version: 7.35.1206.2010)
RealUpgrade 1.1 (Version: 1.1.0)
Registry Patch to Enable Maximum Power Saving on WiFi Adapters for Windows 7 (Version: 1.00)
Revo Uninstaller 1.95 (Version: 1.95)
RICOH Media Driver v2.10.18.02 (Version: 2.10.18.02)
Sansa Updater (Version: 1.313)
SeaTools for Windows
Sequencher 5.1 Demo (Version: 5.1)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition
SignalMap (Version: 1.9.0.5)
SpywareBlaster 5.0 (Version: 5.0.0)
Step1MCQ (Version: 1.00.000)
System Update (Version: 4.00.0039)
ThinkPad Power Management Driver (Version: 1.61.00.11)
ThinkPad Power Manager (Version: 3.44)
ThinkPad UltraNav Driver (Version: 15.2.19.0)
ThinkPad Wireless LAN Adapter Software (Version: 1.00.0029.5)
ThinkVantage Active Protection System (Version: 1.74)
ThinkVantage AutoLock (Version: 1.00)
ThinkVantage Communications Utility (Version: 2.03)
Ubuntu (Version: 12.04-rev266)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition
Update for Microsoft Office 2010 (KB2837583) 32-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition
VIP Access (Version: 2.1.1.34)
Windows Driver Frameworks Update Packages (Version: 8.0.0.0)
Windows Driver Kit (Version: 8.59.29757)
Windows Driver Package - Intel (iaStor) hdc  (11/06/2010 10.1.0.1008) (Version: 11/06/2010 10.1.0.1008)
Windows Driver Package - Lenovo 1.61.00.11 (11/11/2010 1.61.00.11) (Version: 11/11/2010 1.61.00.11)
Windows Driver Package - Realtek (RTL8167) Net  (12/06/2010 7.035.1206.2010) (Version: 12/06/2010 7.035.1206.2010)
Windows Driver Package - Synaptics (SynTP) Mouse  (03/24/2011 15.2.19.0) (Version: 03/24/2011 15.2.19.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3508.1109)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Player Firefox Plugin (Version: 1.0.0.8)
Windows XP Mode (Version: 1.3.7600.16423)
WinRAR 4.11 (32-bit) (Version: 4.11.0)
WinRAR 5.10 beta 4 (64-bit) (Version: 5.10.4)
WinSCP 5.1.5 (Version: 5.1.5)

========================= Memory info: ===================================

Percentage of memory in use: 32%
Total physical RAM: 4007.23 MB
Available physical RAM: 2708.32 MB
Total Pagefile: 8012.65 MB
Available Pagefile: 6220.25 MB
Total Virtual: 4095.88 MB
Available Virtual: 3972.83 MB

========================= Partitions: =====================================

1 Drive c: (Windows7_OS) (Fixed) (Total:287.15 GB) (Free:54.47 GB) NTFS
4 Drive q: (Lenovo_Recovery) (Fixed) (Total:9.77 GB) (Free:0.96 GB) NTFS

========================= Users: ========================================

User accounts for \\ADMIN-THINK

Admin                    Administrator            Brenden                  
Guest                    


**** End of log ****
 



#5 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:10:12 PM

Posted 06 June 2014 - 12:27 PM

If items are in MBAM's quarantined list there's nothing to worry.

 

Please don't run CF on your own since CF is powerful tool and can damage your computer if not use correctly.

 

Please run another full scan with MBAM just to be sure and post the FULL log here.

 

Can you log in as administrator?

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#6 seraphin

seraphin
  • Topic Starter

  • Members
  • 102 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 06 June 2014 - 03:27 PM

Will run it as the admin and post the results, although I usually don't use the admin account.



#7 seraphin

seraphin
  • Topic Starter

  • Members
  • 102 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 06 June 2014 - 06:01 PM

Before I put the full log (hopefully I know what I am doing), I wonder if I could learn of the explanation why we should not put unrequested RogueKiller data onto the forum (a security risk, a data dump, some other reasons?). It's perfectly fine if no explanations could be provided. I am just trying to learn as much as I could.

 

Below is the FULL log (if it's NOT full, please let me know. I will dig further to find it. Hopefully mbam does store the FULL log automatically at the end of the scan).

 

One side question, the log shows that Rootkits are disabled. Should I somehow enable it ??? Or run a rootkits specific tool (I seem to remember somewhere that there are rootkits specific tools)

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 6/6/2014
Scan Time: 6:13:22 PM
Logfile: mbam_060614.txt
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.06.09
Rootkit Database: v2014.06.02.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Admin

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 356591
Time Elapsed: 26 min, 41 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)



#8 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:10:12 PM

Posted 07 June 2014 - 01:40 AM

OK, the most perfect reason for it is the specialized tool that allowed only in Malware Removal Log forum.

Please also read this topic for more details: http://www.bleepingcomputer.com/forums/t/250928/

 

If you have access to admin account please use that account instead.

 

Yes this is full log, and it didn't detect anything. Now we will run rootkit detection tool:

 

lease download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!

  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply. Don't worry about the long log data since we didn't limit that. Also attaching is not allow in this section.

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#9 seraphin

seraphin
  • Topic Starter

  • Members
  • 102 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 10 June 2014 - 12:30 AM

Thanks.

One question - any explanation why it's IMPORTANT to save TDSS Rootkit to Desktop, especially when we run it as Admin.

Below is the Log (I will split the Log as it is said to be too long). A cursory look says everything seems to check out fine.

 

Please advise.

 

 

 

01:16:03.0916 0x159c  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
01:16:09.0253 0x159c  ============================================================
01:16:09.0254 0x159c  Current date / time: 2014/06/10 01:16:09.0253
01:16:09.0254 0x159c  SystemInfo:
01:16:09.0254 0x159c  
01:16:09.0254 0x159c  OS Version: 6.1.7601 ServicePack: 1.0
01:16:09.0254 0x159c  Product type: Workstation
01:16:09.0254 0x159c  ComputerName: ADMIN-THINK
01:16:09.0255 0x159c  UserName: Admin
01:16:09.0255 0x159c  Windows directory: C:\Windows
01:16:09.0255 0x159c  System windows directory: C:\Windows
01:16:09.0255 0x159c  Running under WOW64
01:16:09.0255 0x159c  Processor architecture: Intel x64
01:16:09.0255 0x159c  Number of processors: 4
01:16:09.0255 0x159c  Page size: 0x1000
01:16:09.0255 0x159c  Boot type: Normal boot
01:16:09.0255 0x159c  ============================================================
01:16:09.0613 0x159c  KLMD registered as C:\Windows\system32\drivers\25582820.sys
01:16:10.0353 0x159c  System UUID: {A3ADBDEC-60A1-4BA4-9D29-1CDC9BDDA3D8}
01:16:12.0800 0x159c  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:16:12.0812 0x159c  ============================================================
01:16:12.0812 0x159c  \Device\Harddisk0\DR0:
01:16:12.0812 0x159c  MBR partitions:
01:16:12.0812 0x159c  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x258000
01:16:12.0812 0x159c  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x258800, BlocksNum 0x23E4D7F8
01:16:12.0812 0x159c  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x240A6000, BlocksNum 0x1388000
01:16:12.0812 0x159c  ============================================================
01:16:12.0837 0x159c  C: <-> \Device\Harddisk0\DR0\Partition2
01:16:12.0886 0x159c  Q: <-> \Device\Harddisk0\DR0\Partition3
01:16:12.0886 0x159c  ============================================================
01:16:12.0886 0x159c  Initialize success
01:16:12.0886 0x159c  ============================================================
01:16:51.0888 0x13a4  ============================================================
01:16:51.0888 0x13a4  Scan started
01:16:51.0888 0x13a4  Mode: Manual;
01:16:51.0888 0x13a4  ============================================================
01:16:51.0888 0x13a4  KSN ping started
01:16:54.0774 0x13a4  KSN ping finished: true
01:16:55.0538 0x13a4  ================ Scan system memory ========================
01:16:55.0538 0x13a4  System memory - ok
01:16:55.0538 0x13a4  ================ Scan services =============================
01:16:55.0694 0x13a4  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
01:16:55.0710 0x13a4  1394ohci - ok
01:16:55.0757 0x13a4  [ F4AF97702BAD85BFEF64B9A557F11B6F, 8255B2FBE64C60562A7DAAAD575EED49EE0D23DD42E5C76C988B8A3673843EA6 ] 5U877           C:\Windows\system32\DRIVERS\5U877.sys
01:16:55.0772 0x13a4  5U877 - ok
01:16:55.0819 0x13a4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
01:16:55.0835 0x13a4  ACPI - ok
01:16:55.0850 0x13a4  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
01:16:55.0850 0x13a4  AcpiPmi - ok
01:16:55.0959 0x13a4  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
01:16:55.0959 0x13a4  AdobeARMservice - ok
01:16:56.0100 0x13a4  [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
01:16:56.0115 0x13a4  AdobeFlashPlayerUpdateSvc - ok
01:16:56.0162 0x13a4  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
01:16:56.0193 0x13a4  adp94xx - ok
01:16:56.0256 0x13a4  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
01:16:56.0271 0x13a4  adpahci - ok
01:16:56.0303 0x13a4  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
01:16:56.0318 0x13a4  adpu320 - ok
01:16:56.0349 0x13a4  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
01:16:56.0349 0x13a4  AeLookupSvc - ok
01:16:56.0443 0x13a4  [ 1C7857B62DE5994A75B054A9FD4C3825, 83F963D7E636532B1AD30B1E727EC429317CA540F6EB3BB268FCC0B163B67767 ] AFD             C:\Windows\system32\drivers\afd.sys
01:16:56.0474 0x13a4  AFD - ok
01:16:56.0490 0x13a4  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
01:16:56.0505 0x13a4  agp440 - ok
01:16:56.0521 0x13a4  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
01:16:56.0537 0x13a4  ALG - ok
01:16:56.0552 0x13a4  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
01:16:56.0552 0x13a4  aliide - ok
01:16:56.0568 0x13a4  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
01:16:56.0568 0x13a4  amdide - ok
01:16:56.0599 0x13a4  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
01:16:56.0615 0x13a4  AmdK8 - ok
01:16:56.0646 0x13a4  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
01:16:56.0661 0x13a4  AmdPPM - ok
01:16:56.0708 0x13a4  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
01:16:56.0708 0x13a4  amdsata - ok
01:16:56.0755 0x13a4  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
01:16:56.0771 0x13a4  amdsbs - ok
01:16:56.0786 0x13a4  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
01:16:56.0786 0x13a4  amdxata - ok
01:16:56.0802 0x13a4  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
01:16:56.0817 0x13a4  AppID - ok
01:16:56.0833 0x13a4  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
01:16:56.0833 0x13a4  AppIDSvc - ok
01:16:56.0880 0x13a4  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
01:16:56.0895 0x13a4  Appinfo - ok
01:16:56.0911 0x13a4  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
01:16:56.0927 0x13a4  AppMgmt - ok
01:16:56.0958 0x13a4  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
01:16:56.0958 0x13a4  arc - ok
01:16:56.0989 0x13a4  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
01:16:56.0989 0x13a4  arcsas - ok
01:16:57.0098 0x13a4  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
01:16:57.0098 0x13a4  aspnet_state - ok
01:16:57.0114 0x13a4  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
01:16:57.0114 0x13a4  AsyncMac - ok
01:16:57.0145 0x13a4  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
01:16:57.0145 0x13a4  atapi - ok
01:16:57.0223 0x13a4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
01:16:57.0270 0x13a4  AudioEndpointBuilder - ok
01:16:57.0317 0x13a4  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
01:16:57.0363 0x13a4  AudioSrv - ok
01:16:57.0379 0x13a4  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
01:16:57.0395 0x13a4  AxInstSV - ok
01:16:57.0441 0x13a4  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
01:16:57.0473 0x13a4  b06bdrv - ok
01:16:57.0519 0x13a4  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
01:16:57.0535 0x13a4  b57nd60a - ok
01:16:57.0597 0x13a4  [ 5F685973740F289BE3C809952DB8408B, 4C0A0C06BB2B6B1879A860B0D68289A55F80CF74947FCCE7815F1D8121232F62 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe
01:16:57.0613 0x13a4  BBSvc - ok
01:16:57.0644 0x13a4  [ 76F78018F45E7F92164CEA5020176933, 76E1CA6E198417F3749864721C43913189A7EA07B5ED320DE543B2037CEA3D65 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe
01:16:57.0660 0x13a4  BBUpdate - ok
01:16:57.0691 0x13a4  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
01:16:57.0691 0x13a4  BDESVC - ok
01:16:57.0707 0x13a4  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
01:16:57.0707 0x13a4  Beep - ok
01:16:57.0785 0x13a4  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
01:16:57.0831 0x13a4  BFE - ok
01:16:57.0925 0x13a4  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
01:16:57.0987 0x13a4  BITS - ok
01:16:58.0019 0x13a4  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
01:16:58.0019 0x13a4  blbdrive - ok
01:16:58.0081 0x13a4  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
01:16:58.0081 0x13a4  bowser - ok
01:16:58.0097 0x13a4  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
01:16:58.0097 0x13a4  BrFiltLo - ok
01:16:58.0112 0x13a4  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
01:16:58.0112 0x13a4  BrFiltUp - ok
01:16:58.0128 0x13a4  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
01:16:58.0143 0x13a4  BridgeMP - ok
01:16:58.0206 0x13a4  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
01:16:58.0221 0x13a4  Browser - ok
01:16:58.0253 0x13a4  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
01:16:58.0268 0x13a4  Brserid - ok
01:16:58.0299 0x13a4  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
01:16:58.0299 0x13a4  BrSerWdm - ok
01:16:58.0315 0x13a4  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
01:16:58.0315 0x13a4  BrUsbMdm - ok
01:16:58.0331 0x13a4  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
01:16:58.0331 0x13a4  BrUsbSer - ok
01:16:58.0362 0x13a4  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
01:16:58.0362 0x13a4  BTHMODEM - ok
01:16:58.0393 0x13a4  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
01:16:58.0409 0x13a4  bthserv - ok
01:16:58.0424 0x13a4  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
01:16:58.0440 0x13a4  cdfs - ok
01:16:58.0471 0x13a4  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
01:16:58.0487 0x13a4  cdrom - ok
01:16:58.0502 0x13a4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
01:16:58.0518 0x13a4  CertPropSvc - ok
01:16:58.0533 0x13a4  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
01:16:58.0533 0x13a4  circlass - ok
01:16:58.0580 0x13a4  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
01:16:58.0596 0x13a4  CLFS - ok
01:16:58.0658 0x13a4  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:16:58.0674 0x13a4  clr_optimization_v2.0.50727_32 - ok
01:16:58.0721 0x13a4  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:16:58.0721 0x13a4  clr_optimization_v2.0.50727_64 - ok
01:16:58.0783 0x13a4  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:16:58.0814 0x13a4  clr_optimization_v4.0.30319_32 - ok
01:16:58.0861 0x13a4  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:16:58.0861 0x13a4  clr_optimization_v4.0.30319_64 - ok
01:16:58.0892 0x13a4  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
01:16:58.0908 0x13a4  CmBatt - ok
01:16:58.0923 0x13a4  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
01:16:58.0923 0x13a4  cmdide - ok
01:16:59.0001 0x13a4  [ 9AC4F97C2D3E93367E2148EA940CD2CD, 530E089E5CF868AECDB2B5548EBE76E0CA98FC74A72897292AB2485734402E3B ] CNG             C:\Windows\system32\Drivers\cng.sys
01:16:59.0033 0x13a4  CNG - ok
01:16:59.0157 0x13a4  [ F50620115A751EFF437CBABA0403600A, CB684AA394FBAB2BFF8E5F04903D8C3947920BCA2A16E73629A9254BB51FEB40 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
01:16:59.0267 0x13a4  CnxtHdAudService - ok
01:16:59.0298 0x13a4  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
01:16:59.0298 0x13a4  Compbatt - ok
01:16:59.0313 0x13a4  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
01:16:59.0313 0x13a4  CompositeBus - ok
01:16:59.0329 0x13a4  COMSysApp - ok
01:16:59.0345 0x13a4  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
01:16:59.0345 0x13a4  crcdisk - ok
01:16:59.0438 0x13a4  [ D8129C49798CBBFB2E4351D4B7B8EF9C, 7C125DBA3F88E7C6D98AE0869EDB7995360904A913923528ABD0429B2608C313 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
01:16:59.0454 0x13a4  CryptSvc - ok
01:16:59.0501 0x13a4  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
01:16:59.0532 0x13a4  CSC - ok
01:16:59.0610 0x13a4  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
01:16:59.0657 0x13a4  CscService - ok
01:16:59.0719 0x13a4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
01:16:59.0750 0x13a4  DcomLaunch - ok
01:16:59.0813 0x13a4  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
01:16:59.0828 0x13a4  defragsvc - ok
01:16:59.0859 0x13a4  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
01:16:59.0875 0x13a4  DfsC - ok
01:16:59.0922 0x13a4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
01:16:59.0937 0x13a4  Dhcp - ok
01:16:59.0953 0x13a4  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
01:16:59.0953 0x13a4  discache - ok
01:16:59.0984 0x13a4  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
01:16:59.0984 0x13a4  Disk - ok
01:17:00.0000 0x13a4  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
01:17:00.0015 0x13a4  dmvsc - ok
01:17:00.0047 0x13a4  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
01:17:00.0062 0x13a4  Dnscache - ok
01:17:00.0109 0x13a4  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
01:17:00.0125 0x13a4  dot3svc - ok
01:17:00.0156 0x13a4  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
01:17:00.0171 0x13a4  DPS - ok
01:17:00.0187 0x13a4  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
01:17:00.0203 0x13a4  drmkaud - ok
01:17:00.0327 0x13a4  [ AF2E16242AA723F68F461B6EAE2EAD3D, 3973633C6D231DB8D92DE310D3A0836C64639B9A20C6C56385FB218A707C1BC3 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
01:17:00.0390 0x13a4  DXGKrnl - ok
01:17:00.0421 0x13a4  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
01:17:00.0437 0x13a4  EapHost - ok
01:17:00.0671 0x13a4  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
01:17:00.0873 0x13a4  ebdrv - ok
01:17:00.0951 0x13a4  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] EFS             C:\Windows\System32\lsass.exe
01:17:00.0967 0x13a4  EFS - ok
01:17:01.0061 0x13a4  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
01:17:01.0107 0x13a4  ehRecvr - ok
01:17:01.0139 0x13a4  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
01:17:01.0139 0x13a4  ehSched - ok
01:17:01.0217 0x13a4  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
01:17:01.0248 0x13a4  elxstor - ok
01:17:01.0263 0x13a4  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
01:17:01.0263 0x13a4  ErrDev - ok
01:17:01.0341 0x13a4  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
01:17:01.0373 0x13a4  EventSystem - ok
01:17:01.0404 0x13a4  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
01:17:01.0419 0x13a4  exfat - ok
01:17:01.0466 0x13a4  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
01:17:01.0466 0x13a4  fastfat - ok
01:17:01.0544 0x13a4  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
01:17:01.0591 0x13a4  Fax - ok
01:17:01.0607 0x13a4  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
01:17:01.0622 0x13a4  fdc - ok
01:17:01.0638 0x13a4  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
01:17:01.0638 0x13a4  fdPHost - ok
01:17:01.0653 0x13a4  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
01:17:01.0669 0x13a4  FDResPub - ok
01:17:01.0685 0x13a4  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
01:17:01.0700 0x13a4  FileInfo - ok
01:17:01.0716 0x13a4  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
01:17:01.0716 0x13a4  Filetrace - ok
01:17:01.0809 0x13a4  [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
01:17:01.0856 0x13a4  FLEXnet Licensing Service - ok
01:17:01.0887 0x13a4  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
01:17:01.0887 0x13a4  flpydisk - ok
01:17:01.0919 0x13a4  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
01:17:01.0934 0x13a4  FltMgr - ok
01:17:02.0075 0x13a4  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
01:17:02.0153 0x13a4  FontCache - ok
01:17:02.0199 0x13a4  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:17:02.0199 0x13a4  FontCache3.0.0.0 - ok
01:17:02.0231 0x13a4  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
01:17:02.0246 0x13a4  FsDepends - ok
01:17:02.0293 0x13a4  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
01:17:02.0293 0x13a4  Fs_Rec - ok
01:17:02.0371 0x13a4  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
01:17:02.0387 0x13a4  fvevol - ok
01:17:02.0402 0x13a4  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
01:17:02.0418 0x13a4  gagp30kx - ok
01:17:02.0465 0x13a4  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:17:02.0480 0x13a4  GEARAspiWDM - ok
01:17:02.0527 0x13a4  [ 14908F4F9005C29DE8F5587E271390EE, 43DDFA99F52467F91019DB858989F111EBE48A2BED8D43EA2C15D1FD3C104489 ] gfibto          C:\Windows\system32\drivers\gfibto.sys
01:17:02.0527 0x13a4  gfibto - ok
01:17:02.0652 0x13a4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
01:17:02.0699 0x13a4  gpsvc - ok
01:17:02.0823 0x13a4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:17:02.0823 0x13a4  gupdate - ok
01:17:02.0839 0x13a4  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:17:02.0855 0x13a4  gupdatem - ok
01:17:02.0886 0x13a4  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
01:17:02.0886 0x13a4  hcw85cir - ok
01:17:02.0933 0x13a4  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
01:17:02.0964 0x13a4  HdAudAddService - ok
01:17:02.0995 0x13a4  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
01:17:02.0995 0x13a4  HDAudBus - ok
01:17:03.0011 0x13a4  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
01:17:03.0026 0x13a4  HidBatt - ok
01:17:03.0057 0x13a4  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
01:17:03.0057 0x13a4  HidBth - ok
01:17:03.0073 0x13a4  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
01:17:03.0073 0x13a4  HidIr - ok
01:17:03.0120 0x13a4  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
01:17:03.0120 0x13a4  hidserv - ok
01:17:03.0151 0x13a4  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
01:17:03.0151 0x13a4  HidUsb - ok
01:17:03.0182 0x13a4  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
01:17:03.0198 0x13a4  hkmsvc - ok
01:17:03.0229 0x13a4  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
01:17:03.0245 0x13a4  HomeGroupListener - ok
01:17:03.0291 0x13a4  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
01:17:03.0307 0x13a4  HomeGroupProvider - ok
01:17:03.0323 0x13a4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
01:17:03.0338 0x13a4  HpSAMD - ok
01:17:03.0416 0x13a4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
01:17:03.0463 0x13a4  HTTP - ok
01:17:03.0479 0x13a4  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
01:17:03.0494 0x13a4  hwpolicy - ok
01:17:03.0572 0x13a4  [ 9149907FF8681AD6475607EEBF62DD2F, F3F766ED689BCD69DC8BC705FF08BE9830B562D8CB85AD74A12FE370F5DA9668 ] HyperW7Svc      C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
01:17:03.0588 0x13a4  HyperW7Svc - ok
01:17:03.0619 0x13a4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
01:17:03.0635 0x13a4  i8042prt - ok
01:17:03.0697 0x13a4  [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
01:17:03.0728 0x13a4  iaStor - ok
01:17:03.0775 0x13a4  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
01:17:03.0806 0x13a4  iaStorV - ok
01:17:03.0837 0x13a4  [ 29ED470689B7C597A9701D6A4C57A578, F8C8F92A6376A6C8F9A58618AA3F2280871632C13D7B92DB975EC20184228BF9 ] IBMPMDRV        C:\Windows\system32\DRIVERS\ibmpmdrv.sys
01:17:03.0853 0x13a4  IBMPMDRV - ok
01:17:03.0869 0x13a4  [ BC7AF43EEC24E995D770EC92A441D5D8, B3A0AF5D4156438148E9E0AF414698A927A826F4904C49691314E77265B5950F ] IBMPMSVC        C:\Windows\system32\ibmpmsvc.exe
01:17:03.0869 0x13a4  IBMPMSVC - ok
01:17:03.0978 0x13a4  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:17:04.0025 0x13a4  idsvc - ok
01:17:04.0898 0x13a4  [ 795C99DC4F574C97C03D0BB39CF099EE, 67310B52F7A1B83A66872B961F347B1BD104C8A83A01F60507705B2ACEA76B71 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
01:17:05.0741 0x13a4  igfx - ok
01:17:05.0834 0x13a4  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
01:17:05.0850 0x13a4  iirsp - ok
01:17:05.0928 0x13a4  [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT          C:\Windows\System32\ikeext.dll
01:17:05.0990 0x13a4  IKEEXT - ok
01:17:06.0053 0x13a4  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
01:17:06.0068 0x13a4  IntcDAud - ok
01:17:06.0084 0x13a4  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
01:17:06.0084 0x13a4  intelide - ok
01:17:06.0131 0x13a4  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
01:17:06.0131 0x13a4  intelppm - ok
01:17:06.0177 0x13a4  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
01:17:06.0177 0x13a4  IPBusEnum - ok
01:17:06.0209 0x13a4  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:17:06.0209 0x13a4  IpFilterDriver - ok
01:17:06.0302 0x13a4  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
01:17:06.0349 0x13a4  iphlpsvc - ok
01:17:06.0365 0x13a4  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
01:17:06.0380 0x13a4  IPMIDRV - ok
01:17:06.0411 0x13a4  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
01:17:06.0427 0x13a4  IPNAT - ok
01:17:06.0443 0x13a4  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
01:17:06.0443 0x13a4  IRENUM - ok
01:17:06.0474 0x13a4  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
01:17:06.0474 0x13a4  isapnp - ok
01:17:06.0521 0x13a4  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
01:17:06.0536 0x13a4  iScsiPrt - ok
01:17:06.0645 0x13a4  [ 6C85719A21B3F62C2C76280F4BD36C7B, 471E333467937720EF9369419EEDE5C2246C976123B437E0AC66F394CF1C056A ] jhi_service     C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
01:17:06.0661 0x13a4  jhi_service - ok
01:17:06.0692 0x13a4  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
01:17:06.0692 0x13a4  kbdclass - ok
01:17:06.0723 0x13a4  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
01:17:06.0723 0x13a4  kbdhid - ok
01:17:06.0739 0x13a4  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] KeyIso          C:\Windows\system32\lsass.exe
01:17:06.0755 0x13a4  KeyIso - ok
01:17:06.0801 0x13a4  [ 97A7070AEA4C058B6418519E869A63B4, 15345C2D6CA159BD498002974A0BD21CAB611124D85E3320248B47652AEF23C8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
01:17:06.0817 0x13a4  KSecDD - ok
01:17:06.0848 0x13a4  [ 26C43A7C2862447EC59DEDA188D1DA07, 5363BF87E650FE2010ACA9417D6920FF4ED752256FF47732882E9B2BA1ED154B ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
01:17:06.0848 0x13a4  KSecPkg - ok
01:17:06.0879 0x13a4  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
01:17:06.0879 0x13a4  ksthunk - ok
01:17:06.0926 0x13a4  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
01:17:06.0957 0x13a4  KtmRm - ok
01:17:07.0004 0x13a4  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
01:17:07.0020 0x13a4  LanmanServer - ok
01:17:07.0067 0x13a4  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
01:17:07.0082 0x13a4  LanmanWorkstation - ok
01:17:07.0129 0x13a4  [ 646511B548D3799E576ECD46C6FE9AD3, 70F2AC16F028E6F1A4C8BD502CCEFE1576D24BDB7D90FC56EA897351D6162DAD ] LENOVO.CAMMUTE  C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
01:17:07.0129 0x13a4  LENOVO.CAMMUTE - ok
01:17:07.0176 0x13a4  [ FCE735941DA27929DBFC1918F286FFD8, 8532E5E0E2724A2A8B41A3F408911294E0147DE6728F066E9364246147D534D0 ] LENOVO.MICMUTE  C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
01:17:07.0176 0x13a4  LENOVO.MICMUTE - ok
01:17:07.0191 0x13a4  [ 2B9D8555DC004E240082D18E7725CE20, 9DEF9463CB099C0BC8782C1E5FCE62F038B971ABC12966774D1F83569B081A42 ] lenovo.smi      C:\Windows\system32\DRIVERS\smiifx64.sys
01:17:07.0191 0x13a4  lenovo.smi - ok
01:17:07.0223 0x13a4  [ 551E69C31EAF1577F1B2FA1681BA3078, EEBA249F74B6BC7F5B1BBB47457BF3F40BB7CEB307DB97007D62A85F0669CF93 ] LENOVO.TPKNRSVC C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
01:17:07.0223 0x13a4  LENOVO.TPKNRSVC - ok
01:17:07.0238 0x13a4  [ 6F2CC57EB5836D2AC9BD37F3554D55F8, C877F63AACA68AD3505EC4A8B8916FA2E07C2CB29E74FA368A103F612E18499E ] Lenovo.VIRTSCRLSVC C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
01:17:07.0254 0x13a4  Lenovo.VIRTSCRLSVC - ok
01:17:07.0269 0x13a4  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
01:17:07.0285 0x13a4  lltdio - ok
01:17:07.0316 0x13a4  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
01:17:07.0347 0x13a4  lltdsvc - ok
01:17:07.0379 0x13a4  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
01:17:07.0379 0x13a4  lmhosts - ok
01:17:07.0441 0x13a4  [ E7859BA062DB5E23C6DD34AD66B09F50, 6A702CBCC365233E7876BF79D84BB38C4A78C3D49DE51C04EECE5CD651B76686 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
01:17:07.0472 0x13a4  LMS - ok
01:17:07.0503 0x13a4  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
01:17:07.0519 0x13a4  LSI_FC - ok
01:17:07.0550 0x13a4  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
01:17:07.0566 0x13a4  LSI_SAS - ok
01:17:07.0581 0x13a4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
01:17:07.0597 0x13a4  LSI_SAS2 - ok
01:17:07.0628 0x13a4  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
01:17:07.0628 0x13a4  LSI_SCSI - ok
01:17:07.0659 0x13a4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
01:17:07.0675 0x13a4  luafv - ok
01:17:07.0784 0x13a4  [ 49F5B235EDC9C6AC0ABA44737B190317, 096D8D583ED024F1B3AD30DD5EBA38B1FEE518166E157C0E3890D80687181F60 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe
01:17:07.0815 0x13a4  McComponentHostService - ok
01:17:07.0847 0x13a4  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
01:17:07.0862 0x13a4  Mcx2Svc - ok
01:17:07.0878 0x13a4  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
01:17:07.0878 0x13a4  megasas - ok
01:17:07.0925 0x13a4  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
01:17:07.0940 0x13a4  MegaSR - ok
01:17:07.0987 0x13a4  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
01:17:08.0003 0x13a4  MEIx64 - ok
01:17:08.0096 0x13a4  Microsoft SharePoint Workspace Audit Service - ok
01:17:08.0143 0x13a4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
01:17:08.0159 0x13a4  MMCSS - ok
01:17:08.0174 0x13a4  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
01:17:08.0174 0x13a4  Modem - ok
01:17:08.0205 0x13a4  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
01:17:08.0221 0x13a4  monitor - ok
01:17:08.0252 0x13a4  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
01:17:08.0252 0x13a4  mouclass - ok
01:17:08.0283 0x13a4  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\drivers\mouhid.sys
01:17:08.0283 0x13a4  mouhid - ok
01:17:08.0315 0x13a4  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
01:17:08.0315 0x13a4  mountmgr - ok
01:17:08.0377 0x13a4  [ E1B6FCAE82474FC071155263E2841D54, 341E2CEB1A86586730130311C4FAF86851151D5F08EF915A5F89B6C4094AE1F4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
01:17:08.0377 0x13a4  MozillaMaintenance - ok
01:17:08.0471 0x13a4  [ C6B88D62F20AC646C6BD5C032EC2FAF9, 111A07939F3C5A46F0C51B9D6F5C1D8478099E32EFD88BC260467109ADD975F8 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
01:17:08.0486 0x13a4  MpFilter - ok
01:17:08.0517 0x13a4  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
01:17:08.0533 0x13a4  mpio - ok
01:17:08.0564 0x13a4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
01:17:08.0564 0x13a4  mpsdrv - ok
01:17:08.0658 0x13a4  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
01:17:08.0720 0x13a4  MpsSvc - ok
01:17:08.0767 0x13a4  [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
01:17:08.0767 0x13a4  MRxDAV - ok
01:17:08.0845 0x13a4  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
01:17:08.0845 0x13a4  mrxsmb - ok
01:17:08.0907 0x13a4  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:17:08.0923 0x13a4  mrxsmb10 - ok
01:17:08.0954 0x13a4  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:17:08.0970 0x13a4  mrxsmb20 - ok
01:17:09.0001 0x13a4  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
01:17:09.0001 0x13a4  msahci - ok
01:17:09.0048 0x13a4  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
01:17:09.0063 0x13a4  msdsm - ok
01:17:09.0110 0x13a4  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
01:17:09.0126 0x13a4  MSDTC - ok
01:17:09.0188 0x13a4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
01:17:09.0188 0x13a4  Msfs - ok
01:17:09.0204 0x13a4  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
01:17:09.0204 0x13a4  mshidkmdf - ok
01:17:09.0235 0x13a4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
01:17:09.0235 0x13a4  msisadrv - ok
01:17:09.0282 0x13a4  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
01:17:09.0282 0x13a4  MSiSCSI - ok
01:17:09.0297 0x13a4  msiserver - ok
01:17:09.0329 0x13a4  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
01:17:09.0329 0x13a4  MSKSSRV - ok
01:17:09.0407 0x13a4  [ 7675E15D1B2180745E4DA4D26AAD7385, 729AA6C610F67028CFFFF64B772FFA1CAE7581D37F8909BDA423D52AF85C92C8 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
01:17:09.0407 0x13a4  MsMpSvc - ok
01:17:09.0422 0x13a4  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
01:17:09.0422 0x13a4  MSPCLOCK - ok
01:17:09.0438 0x13a4  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
01:17:09.0453 0x13a4  MSPQM - ok
01:17:09.0500 0x13a4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
01:17:09.0516 0x13a4  MsRPC - ok
01:17:09.0563 0x13a4  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
01:17:09.0563 0x13a4  mssmbios - ok
01:17:09.0578 0x13a4  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
01:17:09.0578 0x13a4  MSTEE - ok
01:17:09.0594 0x13a4  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
01:17:09.0594 0x13a4  MTConfig - ok
01:17:09.0625 0x13a4  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
01:17:09.0641 0x13a4  Mup - ok
01:17:09.0719 0x13a4  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
01:17:09.0765 0x13a4  napagent - ok
01:17:09.0812 0x13a4  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
01:17:09.0828 0x13a4  NativeWifiP - ok
01:17:09.0953 0x13a4  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
01:17:10.0015 0x13a4  NDIS - ok
01:17:10.0062 0x13a4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
01:17:10.0062 0x13a4  NdisCap - ok
01:17:10.0093 0x13a4  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
01:17:10.0093 0x13a4  NdisTapi - ok
01:17:10.0109 0x13a4  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
01:17:10.0124 0x13a4  Ndisuio - ok
01:17:10.0155 0x13a4  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
01:17:10.0155 0x13a4  NdisWan - ok
01:17:10.0187 0x13a4  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
01:17:10.0187 0x13a4  NDProxy - ok
01:17:10.0202 0x13a4  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
01:17:10.0218 0x13a4  NetBIOS - ok
01:17:10.0265 0x13a4  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
01:17:10.0280 0x13a4  NetBT - ok
01:17:10.0311 0x13a4  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] Netlogon        C:\Windows\system32\lsass.exe
01:17:10.0311 0x13a4  Netlogon - ok
01:17:10.0374 0x13a4  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
01:17:10.0389 0x13a4  Netman - ok
01:17:10.0452 0x13a4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:17:10.0467 0x13a4  NetMsmqActivator - ok
01:17:10.0499 0x13a4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:17:10.0499 0x13a4  NetPipeActivator - ok
01:17:10.0561 0x13a4  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
01:17:10.0592 0x13a4  netprofm - ok
01:17:10.0623 0x13a4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:17:10.0623 0x13a4  NetTcpActivator - ok
01:17:10.0655 0x13a4  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:17:10.0655 0x13a4  NetTcpPortSharing - ok
01:17:10.0701 0x13a4  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
01:17:10.0701 0x13a4  nfrd960 - ok
01:17:10.0764 0x13a4  [ ACE8C64C57E4A711473C8BC10ADF692B, 53D8083CE78DB5527080B4570AC28ABAA262667744A319707AE0C46E46B297F9 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
01:17:10.0779 0x13a4  NisDrv - ok
01:17:10.0826 0x13a4  [ 6247E8B31ED0A9D6BC5A26276E49BEB3, 230C0C560492C454B9EB14B50EB4A78DC74FAB6B662449A0EA3114B3E671BFF3 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
01:17:10.0842 0x13a4  NisSrv - ok
01:17:10.0920 0x13a4  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
01:17:10.0951 0x13a4  NlaSvc - ok
01:17:10.0967 0x13a4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
01:17:10.0967 0x13a4  Npfs - ok
01:17:10.0998 0x13a4  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
01:17:11.0013 0x13a4  nsi - ok
01:17:11.0045 0x13a4  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
01:17:11.0045 0x13a4  nsiproxy - ok
01:17:11.0216 0x13a4  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
01:17:11.0310 0x13a4  Ntfs - ok
01:17:11.0341 0x13a4  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
01:17:11.0341 0x13a4  Null - ok
01:17:11.0403 0x13a4  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
01:17:11.0403 0x13a4  nvraid - ok
01:17:11.0450 0x13a4  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
01:17:11.0466 0x13a4  nvstor - ok
01:17:11.0513 0x13a4  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
01:17:11.0513 0x13a4  nv_agp - ok
01:17:11.0544 0x13a4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
01:17:11.0544 0x13a4  ohci1394 - ok
01:17:11.0637 0x13a4  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:17:11.0653 0x13a4  ose - ok
01:17:12.0043 0x13a4  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
01:17:12.0355 0x13a4  osppsvc - ok
01:17:12.0449 0x13a4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
01:17:12.0480 0x13a4  p2pimsvc - ok
01:17:12.0542 0x13a4  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
01:17:12.0573 0x13a4  p2psvc - ok
01:17:12.0605 0x13a4  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
01:17:12.0620 0x13a4  Parport - ok
01:17:12.0683 0x13a4  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
01:17:12.0683 0x13a4  partmgr - ok
01:17:12.0729 0x13a4  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
01:17:12.0745 0x13a4  PcaSvc - ok
01:17:12.0807 0x13a4  [ 7317A0B550F7AC0223B7070897670476, ABB0A1296BA267467C16CF99383EFCAB1732B07EE5B2494197A26B8432DD0A94 ] PCDSRVC{127174DC-C366ED8B-06020101}_0 c:\program files\pc-doctor\pcdsrvc_x64.pkms
01:17:12.0839 0x13a4  PCDSRVC{127174DC-C366ED8B-06020101}_0 - ok
01:17:12.0885 0x13a4  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
01:17:12.0901 0x13a4  pci - ok
01:17:12.0917 0x13a4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
01:17:12.0917 0x13a4  pciide - ok
01:17:12.0948 0x13a4  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
01:17:12.0963 0x13a4  pcmcia - ok
01:17:12.0995 0x13a4  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
01:17:12.0995 0x13a4  pcw - ok
01:17:13.0073 0x13a4  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
01:17:13.0119 0x13a4  PEAUTH - ok
01:17:13.0244 0x13a4  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
01:17:13.0338 0x13a4  PeerDistSvc - ok
01:17:13.0447 0x13a4  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
01:17:13.0447 0x13a4  PerfHost - ok
01:17:13.0541 0x13a4  [ 18EEA095AF22AC5FA16FC27FB98C82D3, B9E7D8D7172E873650FB61604F192958E86BE51EDCD22278995F4F0441167E39 ] PHCORE          C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS
01:17:13.0556 0x13a4  PHCORE - ok
01:17:13.0681 0x13a4  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
01:17:13.0775 0x13a4  pla - ok
01:17:14.0102 0x13a4  [ F3A511E63BB04EC243BC80F3C8633BF4, BF966E21352779A2F3333344446F4ADA9DBEC65D149707F15BB62262AFBE7ED6 ] plsapp          C:\Program Files (x86)\PureLeads\plsapp.exe
01:17:14.0321 0x13a4  plsapp - ok
01:17:14.0399 0x13a4  [ 0B994ED800D43AD91D752AE90ADAC8CC, FD0BFE2EDE172DD6CD69B3D5D4EA1E6721ADC53B92F9F7BE103E5E0EDCE48FF8 ] PlsvcV1         C:\Program Files (x86)\PureLeads\PureLeadsSvc.exe
01:17:14.0477 0x13a4  PlsvcV1 - ok
01:17:14.0539 0x13a4  [ 15288B17F0BF59C0F6C3E149392E194D, 7CD01DBBE5BEC9CE7361544EFBDBB906440AAAF6C8D59E746F38FA25DDDA4D79 ] PlsvcV2         C:\Program Files (x86)\PureLeads\PureLeads.Service.exe
01:17:14.0601 0x13a4  PlsvcV2 - ok
01:17:14.0679 0x13a4  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
01:17:14.0711 0x13a4  PlugPlay - ok
01:17:14.0742 0x13a4  [ F485770EEC8959684CC4C4786B63C06C, 34ECC6D83782A2F8E9E32456F3C6C527999283775626C772D0354D232A10604A ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
01:17:14.0757 0x13a4  Pml Driver HPZ12 - ok
01:17:14.0789 0x13a4  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
01:17:14.0789 0x13a4  PNRPAutoReg - ok
01:17:14.0835 0x13a4  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
01:17:14.0867 0x13a4  PNRPsvc - ok
01:17:14.0945 0x13a4  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
01:17:14.0976 0x13a4  PolicyAgent - ok
01:17:15.0038 0x13a4  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
01:17:15.0054 0x13a4  Power - ok
01:17:15.0116 0x13a4  [ 21059F7E07233A24394405A7075362A1, 92213F79F83448C85C0F33BEC7F141D2C20520E3592628249CC8B605DEDD2A8C ] Power Manager DBC Service C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
01:17:15.0116 0x13a4  Power Manager DBC Service - ok
01:17:15.0163 0x13a4  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
01:17:15.0163 0x13a4  PptpMiniport - ok
01:17:15.0194 0x13a4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
01:17:15.0194 0x13a4  Processor - ok
01:17:15.0272 0x13a4  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
01:17:15.0288 0x13a4  ProfSvc - ok
01:17:15.0303 0x13a4  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] ProtectedStorage C:\Windows\system32\lsass.exe
01:17:15.0319 0x13a4  ProtectedStorage - ok
01:17:15.0350 0x13a4  [ 515A7C5A0886FCC60901916785EFD549, B9B7C39CDBFC3860752C305433EADBC594AC2EEC66818E91F4AA779915A3A21C ] psadd           C:\Windows\system32\DRIVERS\psadd.sys
01:17:15.0366 0x13a4  psadd - ok
01:17:15.0397 0x13a4  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
01:17:15.0397 0x13a4  Psched - ok
01:17:15.0444 0x13a4  [ F036CFB275D0C55F4E45FBBF5F98B3C8, D8D1CA9F65B34A93AB9F7FD9BB6C453B2BF4E8320E620F56055B743DF1D56DE8 ] PSI_SVC_2       C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
01:17:15.0459 0x13a4  PSI_SVC_2 - ok
01:17:15.0600 0x13a4  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
01:17:15.0693 0x13a4  ql2300 - ok
01:17:15.0740 0x13a4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
01:17:15.0740 0x13a4  ql40xx - ok
01:17:15.0787 0x13a4  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
01:17:15.0818 0x13a4  QWAVE - ok
01:17:15.0849 0x13a4  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
01:17:15.0849 0x13a4  QWAVEdrv - ok
01:17:15.0881 0x13a4  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
01:17:15.0881 0x13a4  RasAcd - ok
01:17:15.0927 0x13a4  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
01:17:15.0927 0x13a4  RasAgileVpn - ok
01:17:15.0974 0x13a4  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
01:17:15.0990 0x13a4  RasAuto - ok
01:17:16.0037 0x13a4  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
01:17:16.0052 0x13a4  Rasl2tp - ok
01:17:16.0099 0x13a4  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
01:17:16.0130 0x13a4  RasMan - ok
01:17:16.0161 0x13a4  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
01:17:16.0161 0x13a4  RasPppoe - ok
01:17:16.0193 0x13a4  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
01:17:16.0208 0x13a4  RasSstp - ok
01:17:16.0255 0x13a4  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
01:17:16.0271 0x13a4  rdbss - ok
01:17:16.0317 0x13a4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
01:17:16.0317 0x13a4  rdpbus - ok
01:17:16.0333 0x13a4  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
01:17:16.0333 0x13a4  RDPCDD - ok
01:17:16.0380 0x13a4  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
01:17:16.0395 0x13a4  RDPDR - ok
01:17:16.0427 0x13a4  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
01:17:16.0427 0x13a4  RDPENCDD - ok
01:17:16.0458 0x13a4  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
01:17:16.0458 0x13a4  RDPREFMP - ok
01:17:16.0536 0x13a4  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
01:17:16.0551 0x13a4  RDPWD - ok
01:17:16.0614 0x13a4  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
01:17:16.0614 0x13a4  rdyboost - ok
01:17:16.0739 0x13a4  [ 89525CC2DBAD44F7199B9CC188B3F9C5, 09708EFA65BC1CCF92E6F2E143FCF88C645B1633AFE0DED833CDF945CB077D8C ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
01:17:16.0739 0x13a4  RealNetworks Downloader Resolver Service - ok
01:17:16.0801 0x13a4  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
01:17:16.0801 0x13a4  RemoteAccess - ok
01:17:16.0848 0x13a4  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
01:17:16.0863 0x13a4  RemoteRegistry - ok
01:17:16.0910 0x13a4  [ FF501F212E5D5A97F8339928320F269E, E148AD940FD274C8C5775F835C5E1FC61943BA648445C32432965B7B4AA5EA7E ] risdxc          C:\Windows\system32\DRIVERS\risdxc64.sys
01:17:16.0910 0x13a4  risdxc - ok
01:17:16.0957 0x13a4  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
01:17:16.0957 0x13a4  RpcEptMapper - ok
01:17:17.0004 0x13a4  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
01:17:17.0004 0x13a4  RpcLocator - ok
01:17:17.0066 0x13a4  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
01:17:17.0113 0x13a4  RpcSs - ok
01:17:17.0144 0x13a4  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
01:17:17.0160 0x13a4  rspndr - ok
01:17:17.0222 0x13a4  [ A0D5B3ADCD3FA83029C5E4D25E21AE93, 637549A91FC50D572F76D0E131AF4A767562FF8373601BDD1E6FE68FAB20609E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
01:17:17.0253 0x13a4  RTL8167 - ok
01:17:17.0363 0x13a4  [ 7C44C9A974DE5508910BFDE4ABC2E16C, E90000FA95B211A51A0058460C0CA75D114C38D51766F7FB78A15AAA3B9BAEDB ] RTL8192Ce       C:\Windows\system32\DRIVERS\rtl8192Ce.sys
01:17:17.0425 0x13a4  RTL8192Ce - ok
01:17:17.0456 0x13a4  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
01:17:17.0456 0x13a4  s3cap - ok
01:17:17.0503 0x13a4  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] SamSs           C:\Windows\system32\lsass.exe
01:17:17.0503 0x13a4  SamSs - ok
01:17:17.0519 0x13a4  SAService - ok
01:17:17.0565 0x13a4  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
01:17:17.0565 0x13a4  sbp2port - ok
01:17:17.0612 0x13a4  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
01:17:17.0628 0x13a4  SCardSvr - ok
01:17:17.0675 0x13a4  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
01:17:17.0690 0x13a4  scfilter - ok
01:17:17.0784 0x13a4  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
01:17:17.0862 0x13a4  Schedule - ok
01:17:17.0924 0x13a4  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
01:17:17.0924 0x13a4  SCPolicySvc - ok
01:17:17.0971 0x13a4  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
01:17:17.0987 0x13a4  SDRSVC - ok
01:17:18.0033 0x13a4  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
01:17:18.0033 0x13a4  secdrv - ok
01:17:18.0080 0x13a4  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
01:17:18.0080 0x13a4  seclogon - ok
01:17:18.0111 0x13a4  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
01:17:18.0127 0x13a4  SENS - ok
01:17:18.0143 0x13a4  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
01:17:18.0158 0x13a4  SensrSvc - ok
01:17:18.0189 0x13a4  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
01:17:18.0189 0x13a4  Serenum - ok
01:17:18.0236 0x13a4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
01:17:18.0236 0x13a4  Serial - ok
01:17:18.0267 0x13a4  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
01:17:18.0267 0x13a4  sermouse - ok
01:17:18.0345 0x13a4  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
01:17:18.0361 0x13a4  SessionEnv - ok
01:17:18.0377 0x13a4  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
01:17:18.0377 0x13a4  sffdisk - ok
01:17:18.0408 0x13a4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
01:17:18.0408 0x13a4  sffp_mmc - ok
01:17:18.0439 0x13a4  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
01:17:18.0439 0x13a4  sffp_sd - ok
01:17:18.0470 0x13a4  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
01:17:18.0470 0x13a4  sfloppy - ok
01:17:18.0533 0x13a4  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
01:17:18.0564 0x13a4  SharedAccess - ok
01:17:18.0626 0x13a4  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
01:17:18.0657 0x13a4  ShellHWDetection - ok
01:17:18.0720 0x13a4  [ 380B52126E62C6C2D3C8BA805AADFDC7, 7F59B04A7449523838D9746AA8E3B38E8860FB8D0B62A0CA02358DC9A980BD18 ] Shockprf        C:\Windows\system32\DRIVERS\Apsx64.sys
01:17:18.0720 0x13a4  Shockprf - ok
01:17:18.0767 0x13a4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
01:17:18.0767 0x13a4  SiSRaid2 - ok
01:17:18.0798 0x13a4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
01:17:18.0798 0x13a4  SiSRaid4 - ok
01:17:18.0829 0x13a4  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
01:17:18.0845 0x13a4  Smb - ok
01:17:18.0907 0x13a4  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
01:17:18.0907 0x13a4  SNMPTRAP - ok
01:17:18.0938 0x13a4  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
01:17:18.0954 0x13a4  spldr - ok
01:17:19.0047 0x13a4  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
01:17:19.0094 0x13a4  Spooler - ok
01:17:19.0359 0x13a4  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
01:17:19.0593 0x13a4  sppsvc - ok
01:17:19.0671 0x13a4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
01:17:19.0687 0x13a4  sppuinotify - ok
01:17:19.0781 0x13a4  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
01:17:19.0812 0x13a4  srv - ok
01:17:19.0859 0x13a4  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
01:17:19.0890 0x13a4  srv2 - ok
01:17:19.0937 0x13a4  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
01:17:19.0952 0x13a4  srvnet - ok
01:17:19.0999 0x13a4  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
01:17:20.0015 0x13a4  SSDPSRV - ok
01:17:20.0046 0x13a4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
01:17:20.0061 0x13a4  SstpSvc - ok
01:17:20.0093 0x13a4  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
01:17:20.0093 0x13a4  stexstor - ok
01:17:20.0171 0x13a4  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
01:17:20.0217 0x13a4  stisvc - ok
01:17:20.0249 0x13a4  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
01:17:20.0264 0x13a4  storflt - ok
01:17:20.0295 0x13a4  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
01:17:20.0311 0x13a4  StorSvc - ok
01:17:20.0342 0x13a4  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
01:17:20.0342 0x13a4  storvsc - ok
01:17:20.0405 0x13a4  [ 0586A2E9D4E6E18933C9A7D6D6EEF70F, AA2134EC5632EB9A44EC5E92366459CA69D309ACDD3302126DB7067A4AD7871B ] SUService       C:\Program Files (x86)\Lenovo\System Update\SUService.exe
01:17:20.0405 0x13a4  SUService - ok
01:17:20.0436 0x13a4  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
01:17:20.0451 0x13a4  swenum - ok
01:17:20.0514 0x13a4  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
01:17:20.0561 0x13a4  swprv - ok
01:17:20.0717 0x13a4  [ 06D602A637E171E151853F1D8ECD34F1, 9867D130DED3220B223B0263C10C7586C2D9D9A86F0D1F1ADA236FEB6CF88763 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
01:17:20.0810 0x13a4  SynTP - ok
01:17:20.0966 0x13a4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
01:17:21.0091 0x13a4  SysMain - ok
01:17:21.0122 0x13a4  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
01:17:21.0138 0x13a4  TabletInputService - ok
01:17:21.0185 0x13a4  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
01:17:21.0216 0x13a4  TapiSrv - ok
01:17:21.0247 0x13a4  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
01:17:21.0263 0x13a4  TBS - ok
01:17:21.0450 0x13a4  [ 9849EA3843A2ADBDD1497E97A85D8CAE, 71984DB2555989A0934E158281EA5F966109EC925B064B2045469A0E77971A7C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
01:17:21.0575 0x13a4  Tcpip - ok
01:17:21.0731 0x13a4  [ 9849EA3843A2ADBDD1497E97A85D8CAE, 71984DB2555989A0934E158281EA5F966109EC925B064B2045469A0E77971A7C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
01:17:21.0840 0x13a4  TCPIP6 - ok
01:17:21.0918 0x13a4  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
01:17:21.0933 0x13a4  tcpipreg - ok
01:17:21.0996 0x13a4  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
01:17:21.0996 0x13a4  TDPIPE - ok
01:17:22.0058 0x13a4  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
01:17:22.0058 0x13a4  TDTCP - ok
01:17:22.0089 0x13a4  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
01:17:22.0105 0x13a4  tdx - ok
01:17:22.0277 0x13a4  [ BB676D2C7AD5E7131D12417E4691F9B9, C6DE7D8C08C2F059C696E9D63FC55692C8CB37FECF92F5A863D7D2C5AF3B425F ] Te.Service      C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe
01:17:22.0323 0x13a4  Te.Service - ok
01:17:22.0355 0x13a4  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
01:17:22.0370 0x13a4  TermDD - ok
01:17:22.0448 0x13a4  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
01:17:22.0495 0x13a4  TermService - ok
01:17:22.0526 0x13a4  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
01:17:22.0542 0x13a4  Themes - ok
01:17:22.0604 0x13a4  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
01:17:22.0604 0x13a4  THREADORDER - ok
01:17:22.0651 0x13a4  [ 5523C729F1ED31B63C88490AF3D220FA, 3172801BD47E053B2D6F94843342A7BB58EF3A5196F5F35E6A5FA331793C7004 ] TPDIGIMN        C:\Windows\system32\DRIVERS\ApsHM64.sys
01:17:22.0651 0x13a4  TPDIGIMN - ok
01:17:22.0682 0x13a4  [ ECB098A3404ACB8A05F0673DC086BB43, 46DC9CA4670A0A5D16703023CF40C82CDBF1789DD4AA664744E0941BD2FE9A2D ] TPHDEXLGSVC     C:\Windows\system32\TPHDEXLG64.exe
01:17:22.0682 0x13a4  TPHDEXLGSVC - ok
01:17:22.0745 0x13a4  [ 63626012E44CAAA162677B57B6DCB542, D83704F55EA191F93A3A6F5968610CC691F60774BF2BE4EB6B201DAC4EAB7ECE ] TPHKLOAD        C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
01:17:22.0760 0x13a4  TPHKLOAD - ok
01:17:22.0776 0x13a4  [ 9E6E4A9789F76593CC5A6A5AF8FC5929, B4648D1142799AE713C0AB98C4AD366C589B48C70E7B558BEFA045397D71054A ] TPHKSVC         C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
01:17:22.0791 0x13a4  TPHKSVC - ok
01:17:22.0838 0x13a4  [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM             C:\Windows\system32\drivers\tpm.sys
01:17:22.0838 0x13a4  TPM - ok
01:17:22.0885 0x13a4  [ 7165B5A9B4867F64A6D6935F57D4196B, 716BF044005E11A84D2B114E4DBCDA390C7842EBD4B6E8FA710D2D002BAE09DC ] TPPWRIF         C:\Windows\system32\drivers\Tppwr64v.sys
01:17:22.0885 0x13a4  TPPWRIF - ok
01:17:22.0932 0x13a4  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
01:17:22.0947 0x13a4  TrkWks - ok
01:17:23.0010 0x13a4  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
01:17:23.0025 0x13a4  TrustedInstaller - ok
01:17:23.0072 0x13a4  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
01:17:23.0072 0x13a4  tssecsrv - ok
01:17:23.0119 0x13a4  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
01:17:23.0119 0x13a4  TsUsbFlt - ok
01:17:23.0166 0x13a4  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
01:17:23.0166 0x13a4  TsUsbGD - ok
01:17:23.0197 0x13a4  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
01:17:23.0213 0x13a4  tunnel - ok
01:17:23.0244 0x13a4  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
01:17:23.0244 0x13a4  uagp35 - ok
01:17:23.0291 0x13a4  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
01:17:23.0322 0x13a4  udfs - ok
01:17:23.0400 0x13a4  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
01:17:23.0400 0x13a4  UI0Detect - ok
01:17:23.0462 0x13a4  [ BE788A747457E6916586C410EC0111E7, 525F9065270AF40FED854C5B3C7E690783F5169C2F9286EE225F6C817ED1E237 ] UleadBurningHelper C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
01:17:23.0478 0x13a4  UleadBurningHelper - ok
01:17:23.0525 0x13a4  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
01:17:23.0525 0x13a4  uliagpkx - ok
01:17:23.0556 0x13a4  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
01:17:23.0556 0x13a4  umbus - ok
01:17:23.0587 0x13a4  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
01:17:23.0587 0x13a4  UmPass - ok
01:17:23.0649 0x13a4  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
01:17:23.0681 0x13a4  UmRdpService - ok
01:17:23.0946 0x13a4  [ E91F8AFBD7FB96C94B266579D6BFA77A, 1931FA7C575DCC2FDDF4A8B88FC2718355539049A370985E7CF8906A389C4864 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
01:17:24.0133 0x13a4  UNS - ok
01:17:24.0242 0x13a4  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
01:17:24.0258 0x13a4  upnphost - ok
01:17:24.0336 0x13a4  [ 6F1A3157A1C89435352CEB543CDB359C, 325B46220779C5FE3B6F19FF794474837FAB9675D9C98ACB68CCE47B1CFE5F12 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
01:17:24.0336 0x13a4  usbccgp - ok
01:17:24.0383 0x13a4  [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
01:17:24.0383 0x13a4  usbcir - ok
01:17:24.0414 0x13a4  [ C025055FE7B87701EB042095DF1A2D7B, D7B34B6C2C5BD3C8141895AC21BB637EA5E3C4F7A85EEF4C4C36E6BB2045A3D9 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
01:17:24.0429 0x13a4  usbehci - ok
01:17:24.0476 0x13a4  [ 287C6C9410B111B68B52CA298F7B8C24, 98900C08FE662A00DF8B37837B2BEBF9ACB7989C387AF36B2109B05A4F462D4E ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
01:17:24.0507 0x13a4  usbhub - ok
01:17:24.0570 0x13a4  [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
01:17:24.0570 0x13a4  usbohci - ok
01:17:24.0632 0x13a4  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
01:17:24.0632 0x13a4  usbprint - ok
01:17:24.0679 0x13a4  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:17:24.0710 0x13a4  USBSTOR - ok
01:17:24.0773 0x13a4  [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
01:17:24.0788 0x13a4  usbuhci - ok
01:17:24.0819 0x13a4  [ 454800C2BC7F3927CE030141EE4F4C50, 10901E62DAA70657C499AD590DECCCA6E46FDDF4A193B2F19279E1B8ED7B1E44 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
01:17:24.0835 0x13a4  usbvideo - ok
01:17:24.0866 0x13a4  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
01:17:24.0882 0x13a4  UxSms - ok
01:17:24.0913 0x13a4  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] VaultSvc        C:\Windows\system32\lsass.exe
01:17:24.0913 0x13a4  VaultSvc - ok
01:17:24.0991 0x13a4  [ ED492636EE26EC43DAA4BAA7EF0DA7AD, 1F5D37F13EE4528B6B5339A304808904E2ADB9A3BC80DB3F8F0A193213797A5A ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
01:17:25.0007 0x13a4  VBoxDrv - ok
01:17:25.0053 0x13a4  [ 58E2365E7FD880624F648C63C5D22009, 9E00C2EF3488B7477AFF75FA62F2B66FD54166C19DCA594216B23EB046335FF0 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
01:17:25.0053 0x13a4  VBoxNetAdp - ok
01:17:25.0116 0x13a4  [ 5160910CE602710D7E87F1B35487E7DB, EB21837B9D482A5E3C63A67B46485628438F0E72863013458300B2FB31954222 ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
01:17:25.0131 0x13a4  VBoxNetFlt - ok
01:17:25.0178 0x13a4  [ 99906A079A6C24D4B8B0DBED02B7869B, 2AB7DCD157AA3A7FB76E66B5FE52491218B0BC8251942799FC2A0BEE024F60E0 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
01:17:25.0194 0x13a4  VBoxUSBMon - ok
01:17:25.0241 0x13a4  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
01:17:25.0241 0x13a4  vdrvroot - ok
01:17:25.0319 0x13a4  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
01:17:25.0365 0x13a4  vds - ok
01:17:25.0397 0x13a4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
01:17:25.0397 0x13a4  vga - ok
01:17:25.0428 0x13a4  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
01:17:25.0443 0x13a4  VgaSave - ok
01:17:25.0475 0x13a4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
01:17:25.0490 0x13a4  vhdmp - ok
01:17:25.0537 0x13a4  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
01:17:25.0553 0x13a4  viaide - ok
01:17:25.0709 0x13a4  [ 4C45D4A87BCCE811C0E00067A6EC1C02, C6DCB14B211D6AF8174E59B82FAC0843F6DA1984AA03EB96B9EA07AA71F9F818 ] VIPAppService   C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
01:17:25.0724 0x13a4  VIPAppService - ok
01:17:25.0787 0x13a4  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
01:17:25.0818 0x13a4  vmbus - ok
01:17:25.0849 0x13a4  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
01:17:25.0849 0x13a4  VMBusHID - ok
01:17:25.0911 0x13a4  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
01:17:25.0911 0x13a4  volmgr - ok
01:17:25.0974 0x13a4  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
01:17:25.0989 0x13a4  volmgrx - ok
01:17:26.0036 0x13a4  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
01:17:26.0067 0x13a4  volsnap - ok
01:17:26.0114 0x13a4  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
01:17:26.0114 0x13a4  vsmraid - ok
01:17:26.0270 0x13a4  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
01:17:26.0379 0x13a4  VSS - ok
01:17:26.0426 0x13a4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
01:17:26.0442 0x13a4  vwifibus - ok
01:17:26.0473 0x13a4  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
01:17:26.0489 0x13a4  vwififlt - ok
01:17:26.0551 0x13a4  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
01:17:26.0582 0x13a4  W32Time - ok
01:17:26.0645 0x13a4  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
01:17:26.0645 0x13a4  WacomPen - ok
01:17:26.0691 0x13a4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
01:17:26.0691 0x13a4  WANARP - ok
01:17:26.0723 0x13a4  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
01:17:26.0723 0x13a4  Wanarpv6 - ok
01:17:26.0894 0x13a4  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
01:17:26.0988 0x13a4  WatAdminSvc - ok
01:17:27.0144 0x13a4  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
01:17:27.0253 0x13a4  wbengine - ok
01:17:27.0300 0x13a4  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
01:17:27.0315 0x13a4  WbioSrvc - ok
01:17:27.0378 0x13a4  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
01:17:27.0409 0x13a4  wcncsvc - ok
01:17:27.0456 0x13a4  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
01:17:27.0456 0x13a4  WcsPlugInService - ok
01:17:27.0503 0x13a4  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
01:17:27.0503 0x13a4  Wd - ok
01:17:27.0627 0x13a4  [ 442783E2CB0DA19873B7A63833FF4CB4, 09254970265476214F3187CC22A4F9C7C2769D419600E83FBE302C3A103E527F ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
01:17:27.0690 0x13a4  Wdf01000 - ok
01:17:27.0737 0x13a4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
01:17:27.0737 0x13a4  WdiServiceHost - ok
01:17:27.0768 0x13a4  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
01:17:27.0783 0x13a4  WdiSystemHost - ok
01:17:27.0830 0x13a4  [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient       C:\Windows\System32\webclnt.dll
01:17:27.0846 0x13a4  WebClient - ok
01:17:27.0893 0x13a4  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
01:17:27.0924 0x13a4  Wecsvc - ok
01:17:27.0955 0x13a4  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
01:17:27.0971 0x13a4  wercplsupport - ok
01:17:28.0017 0x13a4  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
01:17:28.0033 0x13a4  WerSvc - ok
01:17:28.0064 0x13a4  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
01:17:28.0080 0x13a4  WfpLwf - ok
01:17:28.0111 0x13a4  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
01:17:28.0111 0x13a4  WIMMount - ok
01:17:28.0158 0x13a4  WinDefend - ok
01:17:28.0220 0x13a4  WinHttpAutoProxySvc - ok
01:17:28.0298 0x13a4  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
01:17:28.0314 0x13a4  Winmgmt - ok
01:17:28.0517 0x13a4  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
01:17:28.0657 0x13a4  WinRM - ok
01:17:28.0829 0x13a4  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
01:17:28.0844 0x13a4  WinUsb - ok
01:17:28.0938 0x13a4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
01:17:29.0000 0x13a4  Wlansvc - ok
01:17:29.0063 0x13a4  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
01:17:29.0078 0x13a4  wlcrasvc - ok
01:17:29.0281 0x13a4  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:17:29.0437 0x13a4  wlidsvc - ok
01:17:29.0531 0x13a4  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
01:17:29.0531 0x13a4  WmiAcpi - ok
01:17:29.0609 0x13a4  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
01:17:29.0624 0x13a4  wmiApSrv - ok
01:17:29.0671 0x13a4  WMPNetworkSvc - ok
01:17:29.0718 0x13a4  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
01:17:29.0718 0x13a4  WPCSvc - ok
01:17:29.0765 0x13a4  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
01:17:29.0780 0x13a4  WPDBusEnum - ok
01:17:29.0827 0x13a4  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
01:17:29.0827 0x13a4  ws2ifsl - ok
01:17:29.0874 0x13a4  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
01:17:29.0874 0x13a4  wscsvc - ok
01:17:29.0921 0x13a4  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
01:17:29.0936 0x13a4  WSDPrintDevice - ok
01:17:29.0952 0x13a4  WSearch - ok
01:17:30.0217 0x13a4  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
01:17:30.0389 0x13a4  wuauserv - ok
01:17:30.0482 0x13a4  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
01:17:30.0482 0x13a4  WudfPf - ok
01:17:30.0529 0x13a4  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
01:17:30.0545 0x13a4  WUDFRd - ok
01:17:30.0607 0x13a4  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
01:17:30.0623 0x13a4  wudfsvc - ok
01:17:30.0701 0x13a4  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
01:17:30.0716 0x13a4  WwanSvc - ok
01:17:30.0794 0x13a4  ================ Scan global ===============================
01:17:30.0841 0x13a4  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
01:17:30.0919 0x13a4  [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll
01:17:30.0950 0x13a4  [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll
01:17:30.0997 0x13a4  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
01:17:31.0028 0x13a4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
01:17:31.0059 0x13a4  [ Global ] - ok
01:17:31.0059 0x13a4  ================ Scan MBR ==================================
01:17:31.0059 0x13a4  [ EA332BDE2EC56584414AFFF54EB95DC5 ] \Device\Harddisk0\DR0
01:17:31.0356 0x13a4  \Device\Harddisk0\DR0 - ok
 


Second half of the Log

 

01:17:31.0356 0x13a4  ================ Scan VBR ==================================
01:17:31.0371 0x13a4  [ 6879DFA980690C91062748E30BF09E6D ] \Device\Harddisk0\DR0\Partition1
01:17:31.0403 0x13a4  \Device\Harddisk0\DR0\Partition1 - ok
01:17:31.0418 0x13a4  [ 4FC445DE1999E16217763F7C44D15169 ] \Device\Harddisk0\DR0\Partition2
01:17:31.0434 0x13a4  \Device\Harddisk0\DR0\Partition2 - ok
01:17:31.0465 0x13a4  [ 294C575BE7CFFC98A525FE2C3255DE8B ] \Device\Harddisk0\DR0\Partition3
01:17:31.0481 0x13a4  \Device\Harddisk0\DR0\Partition3 - ok
01:17:31.0481 0x13a4  ================ Scan generic autorun ======================
01:17:31.0481 0x13a4  SynTPEnh - ok
01:17:31.0543 0x13a4  [ DB0CE31BEBF21542890941744FC576D3, 6114512FA828D2CBA67C0742D2D8E6AC96E7DEFBC5BBA190D0446A877FE21077 ] C:\Windows\system32\TpShocks.exe
01:17:31.0559 0x13a4  TpShocks - ok
01:17:31.0605 0x13a4  [ 42361B4BD80768E82B80285851037665, A555A6BF8016645B838FEA993AD273D1F472586F3600619DC243B1C33438FA07 ] C:\Program Files\Conexant\ForteConfig\fmapp.exe
01:17:31.0605 0x13a4  ForteConfig - ok
01:17:31.0637 0x13a4  [ 1A51E9C642ED4658600F4DF4683EFAE9, 4219218534ACB330B044545EB8025C1A4B1C2BB5A9A25572D1770515BEA90309 ] C:\Program Files\CONEXANT\SAII\SAIICpl.exe
01:17:31.0668 0x13a4  SmartAudio - ok
01:17:31.0699 0x13a4  [ D043C2FD9484F5F8F24CCF1009FFC36B, B248456338602FF50CA5FA1084870A5127E03FB24B53D5E9523E04C3212A073B ] C:\Windows\system32\igfxtray.exe
01:17:31.0715 0x13a4  IgfxTray - ok
01:17:31.0761 0x13a4  [ D38447E271F869AEEC875E99A1487876, DFEBCB51F01FC4FBFE51EFE812E41B5FFFF28B6506DB4640A4B4B72E2484929F ] C:\Windows\system32\hkcmd.exe
01:17:31.0777 0x13a4  HotKeysCmds - ok
01:17:31.0824 0x13a4  [ 2F152F2231033F3D6E36D54D4550760C, 10C69AB3B0EC0F6CB2423AB7C6ECF8465D14E7D66FA031C6A017434A6B170762 ] C:\Windows\system32\igfxpers.exe
01:17:31.0855 0x13a4  Persistence - ok
01:17:31.0902 0x13a4  [ 070010472D683D76CB3EAF95911342B0, B3F163B12E045C8C898E7B16CD2DD8314E95BD8880B1AE8C50AD65D318EA431C ] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe
01:17:31.0902 0x13a4  LENOVO.TPKNRRES - ok
01:17:31.0964 0x13a4  [ D55B7BF09343335902AE9C2B2C0B8860, 2660E835AA8F7CE0950EA5678A6922781A61A5A8FDF2F754AA03F4CD0B04E7B2 ] C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE
01:17:31.0980 0x13a4  ALCKRESI.EXE - ok
01:17:32.0136 0x13a4  [ 6860E32B7335EC62295673AA2106A407, B375BFA92FB733347BF0A83DA55BA5E82D151C879B2E9B04FE926D2601462EC0 ] c:\Program Files\Microsoft Security Client\msseces.exe
01:17:32.0214 0x13a4  MSC - ok
01:17:32.0276 0x13a4  [ 0307536FD43CC7BFB92F9DAC8DB913F1, 6C8BEDA4ADFBEF28E647B39B3EEA37A20BFE5C93C7EDA79471EFB46156197843 ] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
01:17:32.0276 0x13a4  RotateImage - ok
01:17:32.0276 0x13a4  PWMTRV - ok
01:17:32.0385 0x13a4  [ 7F2691FD961C9A704DA221745CCE6295, E33F879D1F5E50DD5FC37754B717EA3EA269CC6809F00C5C5DA189545110BF8C ] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
01:17:32.0401 0x13a4  TkBellExe - ok
01:17:32.0526 0x13a4  [ 187F4C75A89E3F412322C94526320074, D78FA7EF93C8C7B4326A5B6DB04A92ADD091DF00658FA8731D07C5D3BE29ED04 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
01:17:32.0541 0x13a4  BCSSync - ok
01:17:32.0729 0x13a4  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
01:17:32.0791 0x13a4  Adobe ARM - ok
01:17:32.0853 0x13a4  [ 5B6E8E09BE6401A7E022F52FDFCB2FF8, 471C556CF9405BBB380A8CEFE945C126B954B7C94F79CC72441B51F80141FC5E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
01:17:32.0869 0x13a4  SunJavaUpdateSched - ok
01:17:32.0916 0x13a4  [ 51696FF2FA798F7CD3C1CB9A4EFBFAE9, A9DD7411E488FBF437ADFFE60C76A54275DFA6BAC08EC916E834800EB326F7FA ] C:\Program Files (x86)\PureLeads\PureLeadsTray.exe
01:17:32.0931 0x13a4  PureLeads Tray - ok
01:17:33.0087 0x13a4  [ C13B42E5692C98A2660135E4BEB26A1A, 13E5B4BEAE604BDCD514A6A960D9FBC5927A8AD1BB1BD0EA0049BA1B7165D939 ] C:\Users\Brenden\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe
01:17:33.0540 0x13a4  SansaDispatch - ok
01:17:33.0540 0x13a4  Waiting for KSN requests completion. In queue: 100
01:17:34.0554 0x13a4  Waiting for KSN requests completion. In queue: 100
01:17:35.0568 0x13a4  Waiting for KSN requests completion. In queue: 100
01:17:36.0582 0x13a4  Waiting for KSN requests completion. In queue: 100
01:17:37.0658 0x13a4  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.4.304.0 ), 0x61000 ( enabled : updated )
01:17:37.0674 0x13a4  Win FW state via NFP2: disabled
01:17:40.0560 0x13a4  ============================================================
01:17:40.0560 0x13a4  Scan finished
01:17:40.0560 0x13a4  ============================================================
01:17:40.0575 0x1c34  Detected object count: 0
01:17:40.0575 0x1c34  Actual detected object count: 0
01:17:49.0436 0x0648  ============================================================
01:17:49.0436 0x0648  Scan started
01:17:49.0436 0x0648  Mode: Manual;
01:17:49.0436 0x0648  ============================================================
01:17:49.0436 0x0648  KSN ping started
01:17:52.0603 0x0648  KSN ping finished: true
01:17:53.0009 0x0648  ================ Scan system memory ========================
01:17:53.0009 0x0648  System memory - ok
01:17:53.0009 0x0648  ================ Scan services =============================
01:17:53.0149 0x0648  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
01:17:53.0165 0x0648  1394ohci - ok
01:17:53.0196 0x0648  [ F4AF97702BAD85BFEF64B9A557F11B6F, 8255B2FBE64C60562A7DAAAD575EED49EE0D23DD42E5C76C988B8A3673843EA6 ] 5U877           C:\Windows\system32\DRIVERS\5U877.sys
01:17:53.0211 0x0648  5U877 - ok
01:17:53.0258 0x0648  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
01:17:53.0274 0x0648  ACPI - ok
01:17:53.0289 0x0648  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
01:17:53.0289 0x0648  AcpiPmi - ok
01:17:53.0383 0x0648  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
01:17:53.0399 0x0648  AdobeARMservice - ok
01:17:53.0523 0x0648  [ 09E7C37DF4A911C8A9AA8BF88ACD10AA, E881E0BBDCED58F28E0BA8DC27372EDFFFF2C57EE31CD13A032FDC9F7C831B5A ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
01:17:53.0539 0x0648  AdobeFlashPlayerUpdateSvc - ok
01:17:53.0586 0x0648  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
01:17:53.0617 0x0648  adp94xx - ok
01:17:53.0664 0x0648  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
01:17:53.0679 0x0648  adpahci - ok
01:17:53.0711 0x0648  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
01:17:53.0711 0x0648  adpu320 - ok
01:17:53.0757 0x0648  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
01:17:53.0757 0x0648  AeLookupSvc - ok
01:17:53.0835 0x0648  [ 1C7857B62DE5994A75B054A9FD4C3825, 83F963D7E636532B1AD30B1E727EC429317CA540F6EB3BB268FCC0B163B67767 ] AFD             C:\Windows\system32\drivers\afd.sys
01:17:53.0867 0x0648  AFD - ok
01:17:53.0898 0x0648  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
01:17:53.0898 0x0648  agp440 - ok
01:17:53.0929 0x0648  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
01:17:53.0945 0x0648  ALG - ok
01:17:53.0945 0x0648  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
01:17:53.0945 0x0648  aliide - ok
01:17:53.0976 0x0648  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
01:17:53.0976 0x0648  amdide - ok
01:17:53.0991 0x0648  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
01:17:53.0991 0x0648  AmdK8 - ok
01:17:54.0023 0x0648  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
01:17:54.0038 0x0648  AmdPPM - ok
01:17:54.0069 0x0648  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
01:17:54.0069 0x0648  amdsata - ok
01:17:54.0101 0x0648  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
01:17:54.0116 0x0648  amdsbs - ok
01:17:54.0132 0x0648  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
01:17:54.0132 0x0648  amdxata - ok
01:17:54.0147 0x0648  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
01:17:54.0163 0x0648  AppID - ok
01:17:54.0179 0x0648  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
01:17:54.0179 0x0648  AppIDSvc - ok
01:17:54.0225 0x0648  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
01:17:54.0241 0x0648  Appinfo - ok
01:17:54.0257 0x0648  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
01:17:54.0272 0x0648  AppMgmt - ok
01:17:54.0303 0x0648  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
01:17:54.0303 0x0648  arc - ok
01:17:54.0335 0x0648  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
01:17:54.0335 0x0648  arcsas - ok
01:17:54.0428 0x0648  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
01:17:54.0428 0x0648  aspnet_state - ok
01:17:54.0444 0x0648  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
01:17:54.0459 0x0648  AsyncMac - ok
01:17:54.0475 0x0648  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
01:17:54.0475 0x0648  atapi - ok
01:17:54.0537 0x0648  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
01:17:54.0584 0x0648  AudioEndpointBuilder - ok
01:17:54.0631 0x0648  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
01:17:54.0678 0x0648  AudioSrv - ok
01:17:54.0709 0x0648  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
01:17:54.0709 0x0648  AxInstSV - ok
01:17:54.0756 0x0648  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
01:17:54.0787 0x0648  b06bdrv - ok
01:17:54.0818 0x0648  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
01:17:54.0834 0x0648  b57nd60a - ok
01:17:54.0896 0x0648  [ 5F685973740F289BE3C809952DB8408B, 4C0A0C06BB2B6B1879A860B0D68289A55F80CF74947FCCE7815F1D8121232F62 ] BBSvc           C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe
01:17:54.0912 0x0648  BBSvc - ok
01:17:54.0943 0x0648  [ 76F78018F45E7F92164CEA5020176933, 76E1CA6E198417F3749864721C43913189A7EA07B5ED320DE543B2037CEA3D65 ] BBUpdate        C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe
01:17:54.0959 0x0648  BBUpdate - ok
01:17:54.0990 0x0648  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
01:17:55.0005 0x0648  BDESVC - ok
01:17:55.0021 0x0648  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
01:17:55.0021 0x0648  Beep - ok
01:17:55.0083 0x0648  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
01:17:55.0115 0x0648  BFE - ok
01:17:55.0208 0x0648  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
01:17:55.0271 0x0648  BITS - ok
01:17:55.0302 0x0648  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
01:17:55.0302 0x0648  blbdrive - ok
01:17:55.0349 0x0648  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
01:17:55.0364 0x0648  bowser - ok
01:17:55.0380 0x0648  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
01:17:55.0380 0x0648  BrFiltLo - ok
01:17:55.0395 0x0648  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
01:17:55.0395 0x0648  BrFiltUp - ok
01:17:55.0411 0x0648  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
01:17:55.0411 0x0648  BridgeMP - ok
01:17:55.0489 0x0648  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
01:17:55.0489 0x0648  Browser - ok
01:17:55.0536 0x0648  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
01:17:55.0551 0x0648  Brserid - ok
01:17:55.0583 0x0648  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
01:17:55.0583 0x0648  BrSerWdm - ok
01:17:55.0598 0x0648  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
01:17:55.0598 0x0648  BrUsbMdm - ok
01:17:55.0614 0x0648  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
01:17:55.0614 0x0648  BrUsbSer - ok
01:17:55.0629 0x0648  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
01:17:55.0645 0x0648  BTHMODEM - ok
01:17:55.0676 0x0648  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
01:17:55.0676 0x0648  bthserv - ok
01:17:55.0707 0x0648  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
01:17:55.0707 0x0648  cdfs - ok
01:17:55.0754 0x0648  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
01:17:55.0754 0x0648  cdrom - ok
01:17:55.0785 0x0648  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
01:17:55.0785 0x0648  CertPropSvc - ok
01:17:55.0801 0x0648  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
01:17:55.0817 0x0648  circlass - ok
01:17:55.0863 0x0648  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
01:17:55.0895 0x0648  CLFS - ok
01:17:55.0941 0x0648  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:17:55.0941 0x0648  clr_optimization_v2.0.50727_32 - ok
01:17:55.0988 0x0648  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:17:55.0988 0x0648  clr_optimization_v2.0.50727_64 - ok
01:17:56.0066 0x0648  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:17:56.0066 0x0648  clr_optimization_v4.0.30319_32 - ok
01:17:56.0097 0x0648  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:17:56.0097 0x0648  clr_optimization_v4.0.30319_64 - ok
01:17:56.0129 0x0648  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
01:17:56.0144 0x0648  CmBatt - ok
01:17:56.0160 0x0648  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
01:17:56.0160 0x0648  cmdide - ok
01:17:56.0238 0x0648  [ 9AC4F97C2D3E93367E2148EA940CD2CD, 530E089E5CF868AECDB2B5548EBE76E0CA98FC74A72897292AB2485734402E3B ] CNG             C:\Windows\system32\Drivers\cng.sys
01:17:56.0269 0x0648  CNG - ok
01:17:56.0409 0x0648  [ F50620115A751EFF437CBABA0403600A, CB684AA394FBAB2BFF8E5F04903D8C3947920BCA2A16E73629A9254BB51FEB40 ] CnxtHdAudService C:\Windows\system32\drivers\CHDRT64.sys
01:17:56.0503 0x0648  CnxtHdAudService - ok
01:17:56.0534 0x0648  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
01:17:56.0534 0x0648  Compbatt - ok
01:17:56.0550 0x0648  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
01:17:56.0550 0x0648  CompositeBus - ok
01:17:56.0565 0x0648  COMSysApp - ok
01:17:56.0597 0x0648  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
01:17:56.0597 0x0648  crcdisk - ok
01:17:56.0675 0x0648  [ D8129C49798CBBFB2E4351D4B7B8EF9C, 7C125DBA3F88E7C6D98AE0869EDB7995360904A913923528ABD0429B2608C313 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
01:17:56.0690 0x0648  CryptSvc - ok
01:17:56.0737 0x0648  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
01:17:56.0768 0x0648  CSC - ok
01:17:56.0831 0x0648  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
01:17:56.0877 0x0648  CscService - ok
01:17:56.0940 0x0648  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
01:17:56.0971 0x0648  DcomLaunch - ok
01:17:57.0033 0x0648  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
01:17:57.0049 0x0648  defragsvc - ok
01:17:57.0080 0x0648  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
01:17:57.0096 0x0648  DfsC - ok
01:17:57.0127 0x0648  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
01:17:57.0143 0x0648  Dhcp - ok
01:17:57.0174 0x0648  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
01:17:57.0174 0x0648  discache - ok
01:17:57.0189 0x0648  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
01:17:57.0189 0x0648  Disk - ok
01:17:57.0221 0x0648  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
01:17:57.0221 0x0648  dmvsc - ok
01:17:57.0252 0x0648  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
01:17:57.0267 0x0648  Dnscache - ok
01:17:57.0314 0x0648  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
01:17:57.0330 0x0648  dot3svc - ok
01:17:57.0361 0x0648  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
01:17:57.0361 0x0648  DPS - ok
01:17:57.0392 0x0648  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
01:17:57.0392 0x0648  drmkaud - ok
01:17:57.0501 0x0648  [ AF2E16242AA723F68F461B6EAE2EAD3D, 3973633C6D231DB8D92DE310D3A0836C64639B9A20C6C56385FB218A707C1BC3 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
01:17:57.0564 0x0648  DXGKrnl - ok
01:17:57.0611 0x0648  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
01:17:57.0611 0x0648  EapHost - ok
01:17:57.0876 0x0648  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
01:17:58.0063 0x0648  ebdrv - ok
01:17:58.0157 0x0648  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] EFS             C:\Windows\System32\lsass.exe
01:17:58.0157 0x0648  EFS - ok
01:17:58.0266 0x0648  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
01:17:58.0297 0x0648  ehRecvr - ok
01:17:58.0328 0x0648  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
01:17:58.0344 0x0648  ehSched - ok
01:17:58.0406 0x0648  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
01:17:58.0437 0x0648  elxstor - ok
01:17:58.0453 0x0648  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
01:17:58.0453 0x0648  ErrDev - ok
01:17:58.0531 0x0648  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
01:17:58.0547 0x0648  EventSystem - ok
01:17:58.0593 0x0648  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
01:17:58.0593 0x0648  exfat - ok
01:17:58.0671 0x0648  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
01:17:58.0687 0x0648  fastfat - ok
01:17:58.0765 0x0648  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
01:17:58.0812 0x0648  Fax - ok
01:17:58.0827 0x0648  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
01:17:58.0843 0x0648  fdc - ok
01:17:58.0859 0x0648  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
01:17:58.0874 0x0648  fdPHost - ok
01:17:58.0890 0x0648  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
01:17:58.0890 0x0648  FDResPub - ok
01:17:58.0921 0x0648  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
01:17:58.0921 0x0648  FileInfo - ok
01:17:58.0937 0x0648  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
01:17:58.0937 0x0648  Filetrace - ok
01:17:59.0046 0x0648  [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
01:17:59.0077 0x0648  FLEXnet Licensing Service - ok
01:17:59.0108 0x0648  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
01:17:59.0108 0x0648  flpydisk - ok
01:17:59.0139 0x0648  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
01:17:59.0155 0x0648  FltMgr - ok
01:17:59.0280 0x0648  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
01:17:59.0358 0x0648  FontCache - ok
01:17:59.0405 0x0648  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:17:59.0405 0x0648  FontCache3.0.0.0 - ok
01:17:59.0436 0x0648  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
01:17:59.0436 0x0648  FsDepends - ok
01:17:59.0498 0x0648  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
01:17:59.0498 0x0648  Fs_Rec - ok
01:17:59.0561 0x0648  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
01:17:59.0576 0x0648  fvevol - ok
01:17:59.0607 0x0648  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
01:17:59.0607 0x0648  gagp30kx - ok
01:17:59.0654 0x0648  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:17:59.0654 0x0648  GEARAspiWDM - ok
01:17:59.0717 0x0648  [ 14908F4F9005C29DE8F5587E271390EE, 43DDFA99F52467F91019DB858989F111EBE48A2BED8D43EA2C15D1FD3C104489 ] gfibto          C:\Windows\system32\drivers\gfibto.sys
01:17:59.0717 0x0648  gfibto - ok
01:17:59.0810 0x0648  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
01:17:59.0857 0x0648  gpsvc - ok
01:17:59.0966 0x0648  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:17:59.0982 0x0648  gupdate - ok
01:17:59.0997 0x0648  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:18:00.0013 0x0648  gupdatem - ok
01:18:00.0044 0x0648  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
01:18:00.0044 0x0648  hcw85cir - ok
01:18:00.0091 0x0648  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
01:18:00.0107 0x0648  HdAudAddService - ok
01:18:00.0138 0x0648  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
01:18:00.0138 0x0648  HDAudBus - ok
01:18:00.0169 0x0648  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
01:18:00.0169 0x0648  HidBatt - ok
01:18:00.0185 0x0648  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
01:18:00.0200 0x0648  HidBth - ok
01:18:00.0216 0x0648  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
01:18:00.0216 0x0648  HidIr - ok
01:18:00.0247 0x0648  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
01:18:00.0247 0x0648  hidserv - ok
01:18:00.0278 0x0648  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
01:18:00.0278 0x0648  HidUsb - ok
01:18:00.0309 0x0648  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
01:18:00.0325 0x0648  hkmsvc - ok
01:18:00.0356 0x0648  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
01:18:00.0372 0x0648  HomeGroupListener - ok
01:18:00.0419 0x0648  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
01:18:00.0434 0x0648  HomeGroupProvider - ok
01:18:00.0450 0x0648  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
01:18:00.0450 0x0648  HpSAMD - ok
01:18:00.0528 0x0648  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
01:18:00.0575 0x0648  HTTP - ok
01:18:00.0621 0x0648  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
01:18:00.0621 0x0648  hwpolicy - ok
01:18:00.0715 0x0648  [ 9149907FF8681AD6475607EEBF62DD2F, F3F766ED689BCD69DC8BC705FF08BE9830B562D8CB85AD74A12FE370F5DA9668 ] HyperW7Svc      C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe
01:18:00.0715 0x0648  HyperW7Svc - ok
01:18:00.0762 0x0648  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
01:18:00.0762 0x0648  i8042prt - ok
01:18:00.0840 0x0648  [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
01:18:00.0871 0x0648  iaStor - ok
01:18:00.0949 0x0648  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
01:18:00.0980 0x0648  iaStorV - ok
01:18:01.0011 0x0648  [ 29ED470689B7C597A9701D6A4C57A578, F8C8F92A6376A6C8F9A58618AA3F2280871632C13D7B92DB975EC20184228BF9 ] IBMPMDRV        C:\Windows\system32\DRIVERS\ibmpmdrv.sys
01:18:01.0011 0x0648  IBMPMDRV - ok
01:18:01.0027 0x0648  [ BC7AF43EEC24E995D770EC92A441D5D8, B3A0AF5D4156438148E9E0AF414698A927A826F4904C49691314E77265B5950F ] IBMPMSVC        C:\Windows\system32\ibmpmsvc.exe
01:18:01.0043 0x0648  IBMPMSVC - ok
01:18:01.0136 0x0648  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:18:01.0183 0x0648  idsvc - ok
01:18:02.0088 0x0648  [ 795C99DC4F574C97C03D0BB39CF099EE, 67310B52F7A1B83A66872B961F347B1BD104C8A83A01F60507705B2ACEA76B71 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
01:18:02.0852 0x0648  igfx - ok
01:18:02.0993 0x0648  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
01:18:02.0993 0x0648  iirsp - ok
01:18:03.0071 0x0648  [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT          C:\Windows\System32\ikeext.dll
01:18:03.0133 0x0648  IKEEXT - ok
01:18:03.0195 0x0648  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
01:18:03.0211 0x0648  IntcDAud - ok
01:18:03.0227 0x0648  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
01:18:03.0227 0x0648  intelide - ok
01:18:03.0258 0x0648  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
01:18:03.0273 0x0648  intelppm - ok
01:18:03.0305 0x0648  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
01:18:03.0320 0x0648  IPBusEnum - ok
01:18:03.0351 0x0648  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:18:03.0351 0x0648  IpFilterDriver - ok
01:18:03.0429 0x0648  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
01:18:03.0476 0x0648  iphlpsvc - ok
01:18:03.0492 0x0648  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
01:18:03.0507 0x0648  IPMIDRV - ok
01:18:03.0539 0x0648  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
01:18:03.0554 0x0648  IPNAT - ok
01:18:03.0570 0x0648  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
01:18:03.0570 0x0648  IRENUM - ok
01:18:03.0601 0x0648  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
01:18:03.0601 0x0648  isapnp - ok
01:18:03.0648 0x0648  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
01:18:03.0663 0x0648  iScsiPrt - ok
01:18:03.0710 0x0648  [ 6C85719A21B3F62C2C76280F4BD36C7B, 471E333467937720EF9369419EEDE5C2246C976123B437E0AC66F394CF1C056A ] jhi_service     C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe
01:18:03.0726 0x0648  jhi_service - ok
01:18:03.0757 0x0648  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
01:18:03.0757 0x0648  kbdclass - ok
01:18:03.0788 0x0648  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
01:18:03.0788 0x0648  kbdhid - ok
01:18:03.0804 0x0648  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] KeyIso          C:\Windows\system32\lsass.exe
01:18:03.0804 0x0648  KeyIso - ok
01:18:03.0866 0x0648  [ 97A7070AEA4C058B6418519E869A63B4, 15345C2D6CA159BD498002974A0BD21CAB611124D85E3320248B47652AEF23C8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
01:18:03.0882 0x0648  KSecDD - ok
01:18:03.0913 0x0648  [ 26C43A7C2862447EC59DEDA188D1DA07, 5363BF87E650FE2010ACA9417D6920FF4ED752256FF47732882E9B2BA1ED154B ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
01:18:03.0913 0x0648  KSecPkg - ok
01:18:03.0944 0x0648  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
01:18:03.0944 0x0648  ksthunk - ok
01:18:03.0991 0x0648  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
01:18:04.0022 0x0648  KtmRm - ok
01:18:04.0053 0x0648  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
01:18:04.0085 0x0648  LanmanServer - ok
01:18:04.0116 0x0648  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
01:18:04.0131 0x0648  LanmanWorkstation - ok
01:18:04.0178 0x0648  [ 646511B548D3799E576ECD46C6FE9AD3, 70F2AC16F028E6F1A4C8BD502CCEFE1576D24BDB7D90FC56EA897351D6162DAD ] LENOVO.CAMMUTE  C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe
01:18:04.0178 0x0648  LENOVO.CAMMUTE - ok
01:18:04.0225 0x0648  [ FCE735941DA27929DBFC1918F286FFD8, 8532E5E0E2724A2A8B41A3F408911294E0147DE6728F066E9364246147D534D0 ] LENOVO.MICMUTE  C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe
01:18:04.0225 0x0648  LENOVO.MICMUTE - ok
01:18:04.0241 0x0648  [ 2B9D8555DC004E240082D18E7725CE20, 9DEF9463CB099C0BC8782C1E5FCE62F038B971ABC12966774D1F83569B081A42 ] lenovo.smi      C:\Windows\system32\DRIVERS\smiifx64.sys
01:18:04.0241 0x0648  lenovo.smi - ok
01:18:04.0256 0x0648  [ 551E69C31EAF1577F1B2FA1681BA3078, EEBA249F74B6BC7F5B1BBB47457BF3F40BB7CEB307DB97007D62A85F0669CF93 ] LENOVO.TPKNRSVC C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe
01:18:04.0272 0x0648  LENOVO.TPKNRSVC - ok
01:18:04.0303 0x0648  [ 6F2CC57EB5836D2AC9BD37F3554D55F8, C877F63AACA68AD3505EC4A8B8916FA2E07C2CB29E74FA368A103F612E18499E ] Lenovo.VIRTSCRLSVC C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe
01:18:04.0303 0x0648  Lenovo.VIRTSCRLSVC - ok
01:18:04.0319 0x0648  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
01:18:04.0334 0x0648  lltdio - ok
01:18:04.0366 0x0648  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
01:18:04.0397 0x0648  lltdsvc - ok
01:18:04.0428 0x0648  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
01:18:04.0428 0x0648  lmhosts - ok
01:18:04.0475 0x0648  [ E7859BA062DB5E23C6DD34AD66B09F50, 6A702CBCC365233E7876BF79D84BB38C4A78C3D49DE51C04EECE5CD651B76686 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
01:18:04.0506 0x0648  LMS - ok
01:18:04.0537 0x0648  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
01:18:04.0537 0x0648  LSI_FC - ok
01:18:04.0584 0x0648  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
01:18:04.0584 0x0648  LSI_SAS - ok
01:18:04.0615 0x0648  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
01:18:04.0615 0x0648  LSI_SAS2 - ok
01:18:04.0646 0x0648  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
01:18:04.0662 0x0648  LSI_SCSI - ok
01:18:04.0693 0x0648  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
01:18:04.0693 0x0648  luafv - ok
01:18:04.0818 0x0648  [ 49F5B235EDC9C6AC0ABA44737B190317, 096D8D583ED024F1B3AD30DD5EBA38B1FEE518166E157C0E3890D80687181F60 ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.141\McCHSvc.exe
01:18:04.0834 0x0648  McComponentHostService - ok
01:18:04.0880 0x0648  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
01:18:04.0880 0x0648  Mcx2Svc - ok
01:18:04.0912 0x0648  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
01:18:04.0912 0x0648  megasas - ok
01:18:04.0958 0x0648  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
01:18:04.0974 0x0648  MegaSR - ok
01:18:05.0005 0x0648  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
01:18:05.0021 0x0648  MEIx64 - ok
01:18:05.0114 0x0648  Microsoft SharePoint Workspace Audit Service - ok
01:18:05.0161 0x0648  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
01:18:05.0177 0x0648  MMCSS - ok
01:18:05.0192 0x0648  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
01:18:05.0192 0x0648  Modem - ok
01:18:05.0224 0x0648  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
01:18:05.0224 0x0648  monitor - ok
01:18:05.0255 0x0648  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
01:18:05.0255 0x0648  mouclass - ok
01:18:05.0270 0x0648  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\drivers\mouhid.sys
01:18:05.0270 0x0648  mouhid - ok
01:18:05.0302 0x0648  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
01:18:05.0317 0x0648  mountmgr - ok
01:18:05.0364 0x0648  [ E1B6FCAE82474FC071155263E2841D54, 341E2CEB1A86586730130311C4FAF86851151D5F08EF915A5F89B6C4094AE1F4 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
01:18:05.0380 0x0648  MozillaMaintenance - ok
01:18:05.0458 0x0648  [ C6B88D62F20AC646C6BD5C032EC2FAF9, 111A07939F3C5A46F0C51B9D6F5C1D8478099E32EFD88BC260467109ADD975F8 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
01:18:05.0473 0x0648  MpFilter - ok
01:18:05.0504 0x0648  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
01:18:05.0520 0x0648  mpio - ok
01:18:05.0536 0x0648  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
01:18:05.0551 0x0648  mpsdrv - ok
01:18:05.0629 0x0648  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
01:18:05.0676 0x0648  MpsSvc - ok
01:18:05.0707 0x0648  [ DC722758B8261E1ABAFD31A3C0A66380, 88BBE073E2CCD1DAB4656DDC53D5161E8A91D035ADAC1465D0CEBA86F1BB6D9A ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
01:18:05.0723 0x0648  MRxDAV - ok
01:18:05.0785 0x0648  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
01:18:05.0801 0x0648  mrxsmb - ok
01:18:05.0848 0x0648  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:18:05.0863 0x0648  mrxsmb10 - ok
01:18:05.0894 0x0648  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:18:05.0894 0x0648  mrxsmb20 - ok
01:18:05.0941 0x0648  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
01:18:05.0941 0x0648  msahci - ok
01:18:05.0972 0x0648  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
01:18:05.0988 0x0648  msdsm - ok
01:18:06.0019 0x0648  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
01:18:06.0019 0x0648  MSDTC - ok
01:18:06.0082 0x0648  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
01:18:06.0082 0x0648  Msfs - ok
01:18:06.0113 0x0648  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
01:18:06.0113 0x0648  mshidkmdf - ok
01:18:06.0128 0x0648  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
01:18:06.0128 0x0648  msisadrv - ok
01:18:06.0175 0x0648  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
01:18:06.0191 0x0648  MSiSCSI - ok
01:18:06.0206 0x0648  msiserver - ok
01:18:06.0238 0x0648  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
01:18:06.0238 0x0648  MSKSSRV - ok
01:18:06.0300 0x0648  [ 7675E15D1B2180745E4DA4D26AAD7385, 729AA6C610F67028CFFFF64B772FFA1CAE7581D37F8909BDA423D52AF85C92C8 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
01:18:06.0300 0x0648  MsMpSvc - ok
01:18:06.0316 0x0648  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
01:18:06.0331 0x0648  MSPCLOCK - ok
01:18:06.0331 0x0648  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
01:18:06.0347 0x0648  MSPQM - ok
01:18:06.0378 0x0648  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
01:18:06.0409 0x0648  MsRPC - ok
01:18:06.0440 0x0648  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
01:18:06.0440 0x0648  mssmbios - ok
01:18:06.0472 0x0648  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
01:18:06.0472 0x0648  MSTEE - ok
01:18:06.0487 0x0648  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
01:18:06.0487 0x0648  MTConfig - ok
01:18:06.0503 0x0648  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
01:18:06.0518 0x0648  Mup - ok
01:18:06.0581 0x0648  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
01:18:06.0612 0x0648  napagent - ok
01:18:06.0674 0x0648  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
01:18:06.0690 0x0648  NativeWifiP - ok
01:18:06.0799 0x0648  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
01:18:06.0862 0x0648  NDIS - ok
01:18:06.0893 0x0648  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
01:18:06.0908 0x0648  NdisCap - ok
01:18:06.0924 0x0648  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
01:18:06.0924 0x0648  NdisTapi - ok
01:18:06.0955 0x0648  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
01:18:06.0955 0x0648  Ndisuio - ok
01:18:06.0986 0x0648  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
01:18:07.0002 0x0648  NdisWan - ok
01:18:07.0018 0x0648  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
01:18:07.0033 0x0648  NDProxy - ok
01:18:07.0049 0x0648  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
01:18:07.0049 0x0648  NetBIOS - ok
01:18:07.0096 0x0648  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
01:18:07.0111 0x0648  NetBT - ok
01:18:07.0142 0x0648  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] Netlogon        C:\Windows\system32\lsass.exe
01:18:07.0142 0x0648  Netlogon - ok
01:18:07.0189 0x0648  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
01:18:07.0220 0x0648  Netman - ok
01:18:07.0283 0x0648  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:18:07.0283 0x0648  NetMsmqActivator - ok
01:18:07.0314 0x0648  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:18:07.0314 0x0648  NetPipeActivator - ok
01:18:07.0361 0x0648  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
01:18:07.0392 0x0648  netprofm - ok
01:18:07.0423 0x0648  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:18:07.0423 0x0648  NetTcpActivator - ok
01:18:07.0454 0x0648  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:18:07.0470 0x0648  NetTcpPortSharing - ok
01:18:07.0501 0x0648  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
01:18:07.0501 0x0648  nfrd960 - ok
01:18:07.0564 0x0648  [ ACE8C64C57E4A711473C8BC10ADF692B, 53D8083CE78DB5527080B4570AC28ABAA262667744A319707AE0C46E46B297F9 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
01:18:07.0579 0x0648  NisDrv - ok
01:18:07.0610 0x0648  [ 6247E8B31ED0A9D6BC5A26276E49BEB3, 230C0C560492C454B9EB14B50EB4A78DC74FAB6B662449A0EA3114B3E671BFF3 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
01:18:07.0642 0x0648  NisSrv - ok
01:18:07.0704 0x0648  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
01:18:07.0735 0x0648  NlaSvc - ok
01:18:07.0751 0x0648  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
01:18:07.0766 0x0648  Npfs - ok
01:18:07.0782 0x0648  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
01:18:07.0798 0x0648  nsi - ok
01:18:07.0829 0x0648  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
01:18:07.0829 0x0648  nsiproxy - ok
01:18:08.0000 0x0648  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
01:18:08.0094 0x0648  Ntfs - ok
01:18:08.0125 0x0648  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
01:18:08.0125 0x0648  Null - ok
01:18:08.0172 0x0648  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
01:18:08.0188 0x0648  nvraid - ok
01:18:08.0234 0x0648  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
01:18:08.0250 0x0648  nvstor - ok
01:18:08.0281 0x0648  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
01:18:08.0297 0x0648  nv_agp - ok
01:18:08.0328 0x0648  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
01:18:08.0328 0x0648  ohci1394 - ok
01:18:08.0422 0x0648  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:18:08.0422 0x0648  ose - ok
01:18:08.0827 0x0648  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
01:18:09.0124 0x0648  osppsvc - ok
01:18:09.0233 0x0648  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
01:18:09.0264 0x0648  p2pimsvc - ok
01:18:09.0311 0x0648  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
01:18:09.0342 0x0648  p2psvc - ok
01:18:09.0373 0x0648  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
01:18:09.0373 0x0648  Parport - ok
01:18:09.0436 0x0648  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
01:18:09.0451 0x0648  partmgr - ok
01:18:09.0498 0x0648  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
01:18:09.0498 0x0648  PcaSvc - ok
01:18:09.0576 0x0648  [ 7317A0B550F7AC0223B7070897670476, ABB0A1296BA267467C16CF99383EFCAB1732B07EE5B2494197A26B8432DD0A94 ] PCDSRVC{127174DC-C366ED8B-06020101}_0 c:\program files\pc-doctor\pcdsrvc_x64.pkms
01:18:09.0576 0x0648  PCDSRVC{127174DC-C366ED8B-06020101}_0 - ok
01:18:09.0623 0x0648  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
01:18:09.0638 0x0648  pci - ok
01:18:09.0654 0x0648  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
01:18:09.0654 0x0648  pciide - ok
01:18:09.0685 0x0648  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
01:18:09.0701 0x0648  pcmcia - ok
01:18:09.0732 0x0648  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
01:18:09.0732 0x0648  pcw - ok
01:18:09.0810 0x0648  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
01:18:09.0841 0x0648  PEAUTH - ok
01:18:09.0966 0x0648  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
01:18:10.0060 0x0648  PeerDistSvc - ok
01:18:10.0153 0x0648  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
01:18:10.0169 0x0648  PerfHost - ok
01:18:10.0262 0x0648  [ 18EEA095AF22AC5FA16FC27FB98C82D3, B9E7D8D7172E873650FB61604F192958E86BE51EDCD22278995F4F0441167E39 ] PHCORE          C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS
01:18:10.0262 0x0648  PHCORE - ok
01:18:10.0387 0x0648  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
01:18:10.0465 0x0648  pla - ok
01:18:10.0793 0x0648  [ F3A511E63BB04EC243BC80F3C8633BF4, BF966E21352779A2F3333344446F4ADA9DBEC65D149707F15BB62262AFBE7ED6 ] plsapp          C:\Program Files (x86)\PureLeads\plsapp.exe
01:18:10.0996 0x0648  plsapp - ok
01:18:11.0058 0x0648  [ 0B994ED800D43AD91D752AE90ADAC8CC, FD0BFE2EDE172DD6CD69B3D5D4EA1E6721ADC53B92F9F7BE103E5E0EDCE48FF8 ] PlsvcV1         C:\Program Files (x86)\PureLeads\PureLeadsSvc.exe
01:18:11.0074 0x0648  PlsvcV1 - ok
01:18:11.0105 0x0648  [ 15288B17F0BF59C0F6C3E149392E194D, 7CD01DBBE5BEC9CE7361544EFBDBB906440AAAF6C8D59E746F38FA25DDDA4D79 ] PlsvcV2         C:\Program Files (x86)\PureLeads\PureLeads.Service.exe
01:18:11.0105 0x0648  PlsvcV2 - ok
01:18:11.0183 0x0648  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
01:18:11.0214 0x0648  PlugPlay - ok
01:18:11.0261 0x0648  [ F485770EEC8959684CC4C4786B63C06C, 34ECC6D83782A2F8E9E32456F3C6C527999283775626C772D0354D232A10604A ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
01:18:11.0261 0x0648  Pml Driver HPZ12 - ok
01:18:11.0292 0x0648  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
01:18:11.0292 0x0648  PNRPAutoReg - ok
01:18:11.0339 0x0648  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
01:18:11.0370 0x0648  PNRPsvc - ok
01:18:11.0432 0x0648  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
01:18:11.0464 0x0648  PolicyAgent - ok
01:18:11.0526 0x0648  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
01:18:11.0542 0x0648  Power - ok
01:18:11.0604 0x0648  [ 21059F7E07233A24394405A7075362A1, 92213F79F83448C85C0F33BEC7F141D2C20520E3592628249CC8B605DEDD2A8C ] Power Manager DBC Service C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE
01:18:11.0604 0x0648  Power Manager DBC Service - ok
01:18:11.0651 0x0648  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
01:18:11.0666 0x0648  PptpMiniport - ok
01:18:11.0682 0x0648  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
01:18:11.0698 0x0648  Processor - ok
01:18:11.0760 0x0648  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
01:18:11.0776 0x0648  ProfSvc - ok
01:18:11.0807 0x0648  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] ProtectedStorage C:\Windows\system32\lsass.exe
01:18:11.0807 0x0648  ProtectedStorage - ok
01:18:11.0854 0x0648  [ 515A7C5A0886FCC60901916785EFD549, B9B7C39CDBFC3860752C305433EADBC594AC2EEC66818E91F4AA779915A3A21C ] psadd           C:\Windows\system32\DRIVERS\psadd.sys
01:18:11.0854 0x0648  psadd - ok
01:18:11.0885 0x0648  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
01:18:11.0900 0x0648  Psched - ok
01:18:11.0932 0x0648  [ F036CFB275D0C55F4E45FBBF5F98B3C8, D8D1CA9F65B34A93AB9F7FD9BB6C453B2BF4E8320E620F56055B743DF1D56DE8 ] PSI_SVC_2       C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
01:18:11.0947 0x0648  PSI_SVC_2 - ok
01:18:12.0088 0x0648  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
01:18:12.0181 0x0648  ql2300 - ok
01:18:12.0212 0x0648  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
01:18:12.0228 0x0648  ql40xx - ok
01:18:12.0275 0x0648  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
01:18:12.0290 0x0648  QWAVE - ok
01:18:12.0322 0x0648  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
01:18:12.0322 0x0648  QWAVEdrv - ok
01:18:12.0353 0x0648  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
01:18:12.0353 0x0648  RasAcd - ok
01:18:12.0400 0x0648  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
01:18:12.0400 0x0648  RasAgileVpn - ok
01:18:12.0431 0x0648  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
01:18:12.0446 0x0648  RasAuto - ok
01:18:12.0493 0x0648  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
01:18:12.0493 0x0648  Rasl2tp - ok
01:18:12.0540 0x0648  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
01:18:12.0571 0x0648  RasMan - ok
01:18:12.0618 0x0648  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
01:18:12.0618 0x0648  RasPppoe - ok
01:18:12.0665 0x0648  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
01:18:12.0665 0x0648  RasSstp - ok
01:18:12.0712 0x0648  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
01:18:12.0727 0x0648  rdbss - ok
01:18:12.0743 0x0648  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
01:18:12.0758 0x0648  rdpbus - ok
01:18:12.0774 0x0648  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
01:18:12.0774 0x0648  RDPCDD - ok
01:18:12.0836 0x0648  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
01:18:12.0836 0x0648  RDPDR - ok
01:18:12.0868 0x0648  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
01:18:12.0868 0x0648  RDPENCDD - ok
01:18:12.0899 0x0648  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
01:18:12.0899 0x0648  RDPREFMP - ok
01:18:12.0977 0x0648  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
01:18:12.0992 0x0648  RDPWD - ok
01:18:13.0039 0x0648  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
01:18:13.0055 0x0648  rdyboost - ok
01:18:13.0148 0x0648  [ 89525CC2DBAD44F7199B9CC188B3F9C5, 09708EFA65BC1CCF92E6F2E143FCF88C645B1633AFE0DED833CDF945CB077D8C ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe
01:18:13.0148 0x0648  RealNetworks Downloader Resolver Service - ok
01:18:13.0211 0x0648  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
01:18:13.0211 0x0648  RemoteAccess - ok
01:18:13.0258 0x0648  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
01:18:13.0273 0x0648  RemoteRegistry - ok
01:18:13.0320 0x0648  [ FF501F212E5D5A97F8339928320F269E, E148AD940FD274C8C5775F835C5E1FC61943BA648445C32432965B7B4AA5EA7E ] risdxc          C:\Windows\system32\DRIVERS\risdxc64.sys
01:18:13.0320 0x0648  risdxc - ok
01:18:13.0351 0x0648  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
01:18:13.0367 0x0648  RpcEptMapper - ok
01:18:13.0398 0x0648  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
01:18:13.0398 0x0648  RpcLocator - ok
01:18:13.0460 0x0648  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
01:18:13.0492 0x0648  RpcSs - ok
01:18:13.0538 0x0648  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
01:18:13.0538 0x0648  rspndr - ok
01:18:13.0601 0x0648  [ A0D5B3ADCD3FA83029C5E4D25E21AE93, 637549A91FC50D572F76D0E131AF4A767562FF8373601BDD1E6FE68FAB20609E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
01:18:13.0632 0x0648  RTL8167 - ok
01:18:13.0726 0x0648  [ 7C44C9A974DE5508910BFDE4ABC2E16C, E90000FA95B211A51A0058460C0CA75D114C38D51766F7FB78A15AAA3B9BAEDB ] RTL8192Ce       C:\Windows\system32\DRIVERS\rtl8192Ce.sys
01:18:13.0788 0x0648  RTL8192Ce - ok
01:18:13.0804 0x0648  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
01:18:13.0819 0x0648  s3cap - ok
01:18:13.0835 0x0648  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] SamSs           C:\Windows\system32\lsass.exe
01:18:13.0850 0x0648  SamSs - ok
01:18:13.0866 0x0648  SAService - ok
01:18:13.0897 0x0648  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
01:18:13.0897 0x0648  sbp2port - ok
01:18:13.0944 0x0648  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
01:18:13.0960 0x0648  SCardSvr - ok
01:18:13.0991 0x0648  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
01:18:13.0991 0x0648  scfilter - ok
01:18:14.0100 0x0648  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
01:18:14.0162 0x0648  Schedule - ok
01:18:14.0209 0x0648  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
01:18:14.0209 0x0648  SCPolicySvc - ok
01:18:14.0256 0x0648  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
01:18:14.0272 0x0648  SDRSVC - ok
01:18:14.0318 0x0648  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
01:18:14.0318 0x0648  secdrv - ok
01:18:14.0350 0x0648  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
01:18:14.0350 0x0648  seclogon - ok
01:18:14.0381 0x0648  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
01:18:14.0381 0x0648  SENS - ok
01:18:14.0396 0x0648  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
01:18:14.0412 0x0648  SensrSvc - ok
01:18:14.0428 0x0648  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
01:18:14.0443 0x0648  Serenum - ok
01:18:14.0459 0x0648  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
01:18:14.0474 0x0648  Serial - ok
01:18:14.0490 0x0648  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
01:18:14.0506 0x0648  sermouse - ok
01:18:14.0615 0x0648  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
01:18:14.0630 0x0648  SessionEnv - ok
01:18:14.0662 0x0648  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
01:18:14.0662 0x0648  sffdisk - ok
01:18:14.0693 0x0648  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
01:18:14.0693 0x0648  sffp_mmc - ok
01:18:14.0724 0x0648  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
01:18:14.0724 0x0648  sffp_sd - ok
01:18:14.0740 0x0648  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
01:18:14.0740 0x0648  sfloppy - ok
01:18:14.0802 0x0648  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
01:18:14.0818 0x0648  SharedAccess - ok
01:18:14.0880 0x0648  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
01:18:14.0896 0x0648  ShellHWDetection - ok
01:18:14.0958 0x0648  [ 380B52126E62C6C2D3C8BA805AADFDC7, 7F59B04A7449523838D9746AA8E3B38E8860FB8D0B62A0CA02358DC9A980BD18 ] Shockprf        C:\Windows\system32\DRIVERS\Apsx64.sys
01:18:14.0958 0x0648  Shockprf - ok
01:18:14.0989 0x0648  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
01:18:14.0989 0x0648  SiSRaid2 - ok
01:18:15.0020 0x0648  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
01:18:15.0036 0x0648  SiSRaid4 - ok
01:18:15.0067 0x0648  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
01:18:15.0083 0x0648  Smb - ok
01:18:15.0145 0x0648  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
01:18:15.0145 0x0648  SNMPTRAP - ok
01:18:15.0176 0x0648  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
01:18:15.0176 0x0648  spldr - ok
01:18:15.0286 0x0648  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
01:18:15.0332 0x0648  Spooler - ok
01:18:15.0582 0x0648  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
01:18:15.0800 0x0648  sppsvc - ok
01:18:15.0863 0x0648  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
01:18:15.0863 0x0648  sppuinotify - ok
01:18:15.0972 0x0648  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
01:18:15.0988 0x0648  srv - ok
01:18:16.0050 0x0648  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
01:18:16.0081 0x0648  srv2 - ok
01:18:16.0112 0x0648  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
01:18:16.0128 0x0648  srvnet - ok
01:18:16.0175 0x0648  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
01:18:16.0190 0x0648  SSDPSRV - ok
01:18:16.0222 0x0648  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
01:18:16.0237 0x0648  SstpSvc - ok
01:18:16.0268 0x0648  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
01:18:16.0268 0x0648  stexstor - ok
01:18:16.0362 0x0648  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
01:18:16.0393 0x0648  stisvc - ok
01:18:16.0440 0x0648  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
01:18:16.0440 0x0648  storflt - ok
01:18:16.0487 0x0648  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
01:18:16.0487 0x0648  StorSvc - ok
01:18:16.0534 0x0648  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
01:18:16.0534 0x0648  storvsc - ok
01:18:16.0627 0x0648  [ 0586A2E9D4E6E18933C9A7D6D6EEF70F, AA2134EC5632EB9A44EC5E92366459CA69D309ACDD3302126DB7067A4AD7871B ] SUService       C:\Program Files (x86)\Lenovo\System Update\SUService.exe
01:18:16.0627 0x0648  SUService - ok
01:18:16.0658 0x0648  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
01:18:16.0658 0x0648  swenum - ok
01:18:16.0736 0x0648  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
01:18:16.0768 0x0648  swprv - ok
01:18:16.0908 0x0648  [ 06D602A637E171E151853F1D8ECD34F1, 9867D130DED3220B223B0263C10C7586C2D9D9A86F0D1F1ADA236FEB6CF88763 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
01:18:16.0986 0x0648  SynTP - ok
01:18:17.0126 0x0648  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
01:18:17.0236 0x0648  SysMain - ok
01:18:17.0282 0x0648  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
01:18:17.0298 0x0648  TabletInputService - ok
01:18:17.0345 0x0648  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
01:18:17.0360 0x0648  TapiSrv - ok
01:18:17.0392 0x0648  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
01:18:17.0407 0x0648  TBS - ok
01:18:17.0594 0x0648  [ 9849EA3843A2ADBDD1497E97A85D8CAE, 71984DB2555989A0934E158281EA5F966109EC925B064B2045469A0E77971A7C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
01:18:17.0704 0x0648  Tcpip - ok
01:18:17.0844 0x0648  [ 9849EA3843A2ADBDD1497E97A85D8CAE, 71984DB2555989A0934E158281EA5F966109EC925B064B2045469A0E77971A7C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
01:18:17.0953 0x0648  TCPIP6 - ok
01:18:18.0047 0x0648  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
01:18:18.0062 0x0648  tcpipreg - ok
01:18:18.0125 0x0648  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
01:18:18.0125 0x0648  TDPIPE - ok
01:18:18.0187 0x0648  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
01:18:18.0187 0x0648  TDTCP - ok
01:18:18.0218 0x0648  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
01:18:18.0234 0x0648  tdx - ok
01:18:18.0406 0x0648  [ BB676D2C7AD5E7131D12417E4691F9B9, C6DE7D8C08C2F059C696E9D63FC55692C8CB37FECF92F5A863D7D2C5AF3B425F ] Te.Service      C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe
01:18:18.0421 0x0648  Te.Service - ok
01:18:18.0452 0x0648  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
01:18:18.0452 0x0648  TermDD - ok
01:18:18.0530 0x0648  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
01:18:18.0577 0x0648  TermService - ok
01:18:18.0608 0x0648  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
01:18:18.0624 0x0648  Themes - ok
01:18:18.0671 0x0648  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
01:18:18.0671 0x0648  THREADORDER - ok
01:18:18.0702 0x0648  [ 5523C729F1ED31B63C88490AF3D220FA, 3172801BD47E053B2D6F94843342A7BB58EF3A5196F5F35E6A5FA331793C7004 ] TPDIGIMN        C:\Windows\system32\DRIVERS\ApsHM64.sys
01:18:18.0718 0x0648  TPDIGIMN - ok
01:18:18.0749 0x0648  [ ECB098A3404ACB8A05F0673DC086BB43, 46DC9CA4670A0A5D16703023CF40C82CDBF1789DD4AA664744E0941BD2FE9A2D ] TPHDEXLGSVC     C:\Windows\system32\TPHDEXLG64.exe
01:18:18.0749 0x0648  TPHDEXLGSVC - ok
01:18:18.0811 0x0648  [ 63626012E44CAAA162677B57B6DCB542, D83704F55EA191F93A3A6F5968610CC691F60774BF2BE4EB6B201DAC4EAB7ECE ] TPHKLOAD        C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe
01:18:18.0811 0x0648  TPHKLOAD - ok
01:18:18.0842 0x0648  [ 9E6E4A9789F76593CC5A6A5AF8FC5929, B4648D1142799AE713C0AB98C4AD366C589B48C70E7B558BEFA045397D71054A ] TPHKSVC         C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe
01:18:18.0842 0x0648  TPHKSVC - ok
01:18:18.0889 0x0648  [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM             C:\Windows\system32\drivers\tpm.sys
01:18:18.0905 0x0648  TPM - ok
01:18:18.0952 0x0648  [ 7165B5A9B4867F64A6D6935F57D4196B, 716BF044005E11A84D2B114E4DBCDA390C7842EBD4B6E8FA710D2D002BAE09DC ] TPPWRIF         C:\Windows\system32\drivers\Tppwr64v.sys
01:18:18.0952 0x0648  TPPWRIF - ok
01:18:18.0983 0x0648  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
01:18:18.0998 0x0648  TrkWks - ok
01:18:19.0061 0x0648  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
01:18:19.0076 0x0648  TrustedInstaller - ok
01:18:19.0123 0x0648  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30, CA302C2ED6A6BF4670BAAA4F5C14C0238CF0C80316856AA0DB053F4D593033AC ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
01:18:19.0123 0x0648  tssecsrv - ok
01:18:19.0154 0x0648  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
01:18:19.0154 0x0648  TsUsbFlt - ok
01:18:19.0201 0x0648  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
01:18:19.0201 0x0648  TsUsbGD - ok
01:18:19.0232 0x0648  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
01:18:19.0248 0x0648  tunnel - ok
01:18:19.0279 0x0648  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
01:18:19.0279 0x0648  uagp35 - ok
01:18:19.0326 0x0648  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
01:18:19.0357 0x0648  udfs - ok
01:18:19.0420 0x0648  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
01:18:19.0435 0x0648  UI0Detect - ok
01:18:19.0498 0x0648  [ BE788A747457E6916586C410EC0111E7, 525F9065270AF40FED854C5B3C7E690783F5169C2F9286EE225F6C817ED1E237 ] UleadBurningHelper C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
01:18:19.0498 0x0648  UleadBurningHelper - ok
01:18:19.0529 0x0648  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
01:18:19.0529 0x0648  uliagpkx - ok
01:18:19.0560 0x0648  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
01:18:19.0576 0x0648  umbus - ok
01:18:19.0607 0x0648  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
01:18:19.0607 0x0648  UmPass - ok
01:18:19.0654 0x0648  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
01:18:19.0669 0x0648  UmRdpService - ok
01:18:19.0888 0x0648  [ E91F8AFBD7FB96C94B266579D6BFA77A, 1931FA7C575DCC2FDDF4A8B88FC2718355539049A370985E7CF8906A389C4864 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
01:18:20.0044 0x0648  UNS - ok
01:18:20.0137 0x0648  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
01:18:20.0168 0x0648  upnphost - ok
01:18:20.0231 0x0648  [ 6F1A3157A1C89435352CEB543CDB359C, 325B46220779C5FE3B6F19FF794474837FAB9675D9C98ACB68CCE47B1CFE5F12 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
01:18:20.0246 0x0648  usbccgp - ok
01:18:20.0293 0x0648  [ AF0892A803FDDA7492F595368E3B68E7, F263346DEB4D742EB436CF578F187AC8521D84CED52E98475E6198EC52244F07 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
01:18:20.0293 0x0648  usbcir - ok
01:18:20.0324 0x0648  [ C025055FE7B87701EB042095DF1A2D7B, D7B34B6C2C5BD3C8141895AC21BB637EA5E3C4F7A85EEF4C4C36E6BB2045A3D9 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
01:18:20.0324 0x0648  usbehci - ok
01:18:20.0387 0x0648  [ 287C6C9410B111B68B52CA298F7B8C24, 98900C08FE662A00DF8B37837B2BEBF9ACB7989C387AF36B2109B05A4F462D4E ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
01:18:20.0402 0x0648  usbhub - ok
01:18:20.0465 0x0648  [ 9840FC418B4CBD632D3D0A667A725C31, 776D86A032DCA2842EF7AADB35473193CA80547223EFAA7F110F296C377077B0 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
01:18:20.0465 0x0648  usbohci - ok
01:18:20.0512 0x0648  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
01:18:20.0512 0x0648  usbprint - ok
01:18:20.0558 0x0648  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:18:20.0558 0x0648  USBSTOR - ok
01:18:20.0621 0x0648  [ 62069A34518BCF9C1FD9E74B3F6DB7CD, C58E21424718729324B285BEE1C96551540FCC3FD650B2D10895EBA48D981E25 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
01:18:20.0621 0x0648  usbuhci - ok
01:18:20.0668 0x0648  [ 454800C2BC7F3927CE030141EE4F4C50, 10901E62DAA70657C499AD590DECCCA6E46FDDF4A193B2F19279E1B8ED7B1E44 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
01:18:20.0683 0x0648  usbvideo - ok
01:18:20.0730 0x0648  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
01:18:20.0730 0x0648  UxSms - ok
01:18:20.0761 0x0648  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] VaultSvc        C:\Windows\system32\lsass.exe
01:18:20.0777 0x0648  VaultSvc - ok
01:18:20.0855 0x0648  [ ED492636EE26EC43DAA4BAA7EF0DA7AD, 1F5D37F13EE4528B6B5339A304808904E2ADB9A3BC80DB3F8F0A193213797A5A ] VBoxDrv         C:\Windows\system32\DRIVERS\VBoxDrv.sys
01:18:20.0870 0x0648  VBoxDrv - ok
01:18:20.0902 0x0648  [ 58E2365E7FD880624F648C63C5D22009, 9E00C2EF3488B7477AFF75FA62F2B66FD54166C19DCA594216B23EB046335FF0 ] VBoxNetAdp      C:\Windows\system32\DRIVERS\VBoxNetAdp.sys
01:18:20.0917 0x0648  VBoxNetAdp - ok
01:18:20.0964 0x0648  [ 5160910CE602710D7E87F1B35487E7DB, EB21837B9D482A5E3C63A67B46485628438F0E72863013458300B2FB31954222 ] VBoxNetFlt      C:\Windows\system32\DRIVERS\VBoxNetFlt.sys
01:18:20.0964 0x0648  VBoxNetFlt - ok
01:18:21.0011 0x0648  [ 99906A079A6C24D4B8B0DBED02B7869B, 2AB7DCD157AA3A7FB76E66B5FE52491218B0BC8251942799FC2A0BEE024F60E0 ] VBoxUSBMon      C:\Windows\system32\DRIVERS\VBoxUSBMon.sys
01:18:21.0011 0x0648  VBoxUSBMon - ok
01:18:21.0058 0x0648  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
01:18:21.0058 0x0648  vdrvroot - ok
01:18:21.0136 0x0648  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
01:18:21.0167 0x0648  vds - ok
01:18:21.0198 0x0648  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
01:18:21.0214 0x0648  vga - ok
01:18:21.0229 0x0648  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
01:18:21.0245 0x0648  VgaSave - ok
01:18:21.0276 0x0648  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
01:18:21.0292 0x0648  vhdmp - ok
01:18:21.0338 0x0648  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
01:18:21.0338 0x0648  viaide - ok
01:18:21.0479 0x0648  [ 4C45D4A87BCCE811C0E00067A6EC1C02, C6DCB14B211D6AF8174E59B82FAC0843F6DA1984AA03EB96B9EA07AA71F9F818 ] VIPAppService   C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
01:18:21.0479 0x0648  VIPAppService - ok
01:18:21.0510 0x0648  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
01:18:21.0526 0x0648  vmbus - ok
01:18:21.0557 0x0648  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
01:18:21.0557 0x0648  VMBusHID - ok
01:18:21.0588 0x0648  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
01:18:21.0604 0x0648  volmgr - ok
01:18:21.0650 0x0648  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
01:18:21.0682 0x0648  volmgrx - ok
01:18:21.0728 0x0648  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
01:18:21.0744 0x0648  volsnap - ok
01:18:21.0791 0x0648  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
01:18:21.0806 0x0648  vsmraid - ok
01:18:21.0947 0x0648  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
01:18:22.0040 0x0648  VSS - ok
01:18:22.0087 0x0648  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
01:18:22.0087 0x0648  vwifibus - ok
01:18:22.0134 0x0648  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
01:18:22.0134 0x0648  vwififlt - ok
01:18:22.0196 0x0648  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
01:18:22.0228 0x0648  W32Time - ok
01:18:22.0274 0x0648  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
01:18:22.0274 0x0648  WacomPen - ok
01:18:22.0321 0x0648  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
01:18:22.0321 0x0648  WANARP - ok
01:18:22.0352 0x0648  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
01:18:22.0352 0x0648  Wanarpv6 - ok
01:18:22.0508 0x0648  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
01:18:22.0586 0x0648  WatAdminSvc - ok
01:18:22.0742 0x0648  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
01:18:22.0836 0x0648  wbengine - ok
01:18:22.0883 0x0648  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
01:18:22.0898 0x0648  WbioSrvc - ok
01:18:22.0961 0x0648  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
01:18:22.0976 0x0648  wcncsvc - ok
01:18:23.0008 0x0648  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
01:18:23.0023 0x0648  WcsPlugInService - ok
01:18:23.0054 0x0648  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
01:18:23.0054 0x0648  Wd - ok
01:18:23.0179 0x0648  [ 442783E2CB0DA19873B7A63833FF4CB4, 09254970265476214F3187CC22A4F9C7C2769D419600E83FBE302C3A103E527F ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
01:18:23.0226 0x0648  Wdf01000 - ok
01:18:23.0273 0x0648  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
01:18:23.0273 0x0648  WdiServiceHost - ok
01:18:23.0304 0x0648  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
01:18:23.0320 0x0648  WdiSystemHost - ok
01:18:23.0366 0x0648  [ 3DB6D04E1C64272F8B14EB8BC4616280, 9138642B1C19F895D4ECFD930160C80FBF15813CE63BBF4C899842C300FD3026 ] WebClient       C:\Windows\System32\webclnt.dll
01:18:23.0382 0x0648  WebClient - ok
01:18:23.0429 0x0648  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
01:18:23.0460 0x0648  Wecsvc - ok
01:18:23.0491 0x0648  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
01:18:23.0491 0x0648  wercplsupport - ok
01:18:23.0538 0x0648  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
01:18:23.0554 0x0648  WerSvc - ok
01:18:23.0585 0x0648  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
01:18:23.0600 0x0648  WfpLwf - ok
01:18:23.0632 0x0648  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
01:18:23.0647 0x0648  WIMMount - ok
01:18:23.0663 0x0648  WinDefend - ok
01:18:23.0725 0x0648  WinHttpAutoProxySvc - ok
01:18:23.0819 0x0648  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
01:18:23.0834 0x0648  Winmgmt - ok
01:18:24.0006 0x0648  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
01:18:24.0131 0x0648  WinRM - ok
01:18:24.0256 0x0648  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
01:18:24.0271 0x0648  WinUsb - ok
01:18:24.0365 0x0648  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
01:18:24.0427 0x0648  Wlansvc - ok
01:18:24.0474 0x0648  [ 06C8FA1CF39DE6A735B54D906BA791C6, D8FEC7DE227781CDA876904701B2AA995268F74DCD6CB34AA0296C557FC283B6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
01:18:24.0474 0x0648  wlcrasvc - ok
01:18:24.0677 0x0648  [ 7E47C328FC4768CB8BEAFBCFAFA70362, C98BD6A0C2F70E069D5FD3BAB31BD028DFEAC0490D180BBC28A14BE375897D8C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
01:18:24.0817 0x0648  wlidsvc - ok
01:18:24.0880 0x0648  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
01:18:24.0880 0x0648  WmiAcpi - ok
01:18:24.0958 0x0648  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
01:18:24.0973 0x0648  wmiApSrv - ok
01:18:25.0020 0x0648  WMPNetworkSvc - ok
01:18:25.0067 0x0648  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
01:18:25.0067 0x0648  WPCSvc - ok
01:18:25.0098 0x0648  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
01:18:25.0114 0x0648  WPDBusEnum - ok
01:18:25.0176 0x0648  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
01:18:25.0176 0x0648  ws2ifsl - ok
01:18:25.0207 0x0648  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
01:18:25.0223 0x0648  wscsvc - ok
01:18:25.0270 0x0648  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\Windows\system32\DRIVERS\WSDPrint.sys
01:18:25.0270 0x0648  WSDPrintDevice - ok
01:18:25.0301 0x0648  WSearch - ok
01:18:25.0550 0x0648  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
01:18:25.0691 0x0648  wuauserv - ok
01:18:25.0784 0x0648  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
01:18:25.0800 0x0648  WudfPf - ok
01:18:25.0847 0x0648  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
01:18:25.0862 0x0648  WUDFRd - ok
01:18:25.0894 0x0648  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
01:18:25.0909 0x0648  wudfsvc - ok
01:18:25.0987 0x0648  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
01:18:26.0003 0x0648  WwanSvc - ok
01:18:26.0096 0x0648  ================ Scan global ===============================
01:18:26.0128 0x0648  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
01:18:26.0190 0x0648  [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll
01:18:26.0221 0x0648  [ 0C27239FEA4DB8A2AAC9E502186B7264, 102AA14D7A3CCCE913D9887AF4CCE87EA649A21BEF5196DFFCAD7E8F0B6A7293 ] C:\Windows\system32\winsrv.dll
01:18:26.0268 0x0648  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
01:18:26.0299 0x0648  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
01:18:26.0330 0x0648  [ Global ] - ok
01:18:26.0330 0x0648  ================ Scan MBR ==================================
01:18:26.0330 0x0648  [ EA332BDE2EC56584414AFFF54EB95DC5 ] \Device\Harddisk0\DR0
01:18:26.0689 0x0648  \Device\Harddisk0\DR0 - ok
01:18:26.0689 0x0648  ================ Scan VBR ==================================
01:18:26.0689 0x0648  [ 6879DFA980690C91062748E30BF09E6D ] \Device\Harddisk0\DR0\Partition1
01:18:26.0736 0x0648  \Device\Harddisk0\DR0\Partition1 - ok
01:18:26.0752 0x0648  [ 4FC445DE1999E16217763F7C44D15169 ] \Device\Harddisk0\DR0\Partition2
01:18:26.0767 0x0648  \Device\Harddisk0\DR0\Partition2 - ok
01:18:26.0798 0x0648  [ 294C575BE7CFFC98A525FE2C3255DE8B ] \Device\Harddisk0\DR0\Partition3
01:18:26.0814 0x0648  \Device\Harddisk0\DR0\Partition3 - ok
01:18:26.0814 0x0648  ================ Scan generic autorun ======================
01:18:26.0814 0x0648  SynTPEnh - ok
01:18:26.0876 0x0648  [ DB0CE31BEBF21542890941744FC576D3, 6114512FA828D2CBA67C0742D2D8E6AC96E7DEFBC5BBA190D0446A877FE21077 ] C:\Windows\system32\TpShocks.exe
01:18:26.0908 0x0648  TpShocks - ok
01:18:26.0939 0x0648  [ 42361B4BD80768E82B80285851037665, A555A6BF8016645B838FEA993AD273D1F472586F3600619DC243B1C33438FA07 ] C:\Program Files\Conexant\ForteConfig\fmapp.exe
01:18:26.0939 0x0648  ForteConfig - ok
01:18:26.0986 0x0648  [ 1A51E9C642ED4658600F4DF4683EFAE9, 4219218534ACB330B044545EB8025C1A4B1C2BB5A9A25572D1770515BEA90309 ] C:\Program Files\CONEXANT\SAII\SAIICpl.exe
01:18:27.0001 0x0648  SmartAudio - ok
01:18:27.0032 0x0648  [ D043C2FD9484F5F8F24CCF1009FFC36B, B248456338602FF50CA5FA1084870A5127E03FB24B53D5E9523E04C3212A073B ] C:\Windows\system32\igfxtray.exe
01:18:27.0048 0x0648  IgfxTray - ok
01:18:27.0079 0x0648  [ D38447E271F869AEEC875E99A1487876, DFEBCB51F01FC4FBFE51EFE812E41B5FFFF28B6506DB4640A4B4B72E2484929F ] C:\Windows\system32\hkcmd.exe
01:18:27.0110 0x0648  HotKeysCmds - ok
01:18:27.0142 0x0648  [ 2F152F2231033F3D6E36D54D4550760C, 10C69AB3B0EC0F6CB2423AB7C6ECF8465D14E7D66FA031C6A017434A6B170762 ] C:\Windows\system32\igfxpers.exe
01:18:27.0173 0x0648  Persistence - ok
01:18:27.0220 0x0648  [ 070010472D683D76CB3EAF95911342B0, B3F163B12E045C8C898E7B16CD2DD8314E95BD8880B1AE8C50AD65D318EA431C ] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe
01:18:27.0220 0x0648  LENOVO.TPKNRRES - ok
01:18:27.0266 0x0648  [ D55B7BF09343335902AE9C2B2C0B8860, 2660E835AA8F7CE0950EA5678A6922781A61A5A8FDF2F754AA03F4CD0B04E7B2 ] C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE
01:18:27.0282 0x0648  ALCKRESI.EXE - ok
01:18:27.0422 0x0648  [ 6860E32B7335EC62295673AA2106A407, B375BFA92FB733347BF0A83DA55BA5E82D151C879B2E9B04FE926D2601462EC0 ] c:\Program Files\Microsoft Security Client\msseces.exe
01:18:27.0500 0x0648  MSC - ok
01:18:27.0547 0x0648  [ 0307536FD43CC7BFB92F9DAC8DB913F1, 6C8BEDA4ADFBEF28E647B39B3EEA37A20BFE5C93C7EDA79471EFB46156197843 ] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe
01:18:27.0547 0x0648  RotateImage - ok
01:18:27.0547 0x0648  PWMTRV - ok
01:18:27.0656 0x0648  [ 7F2691FD961C9A704DA221745CCE6295, E33F879D1F5E50DD5FC37754B717EA3EA269CC6809F00C5C5DA189545110BF8C ] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe
01:18:27.0672 0x0648  TkBellExe - ok
01:18:27.0781 0x0648  [ 187F4C75A89E3F412322C94526320074, D78FA7EF93C8C7B4326A5B6DB04A92ADD091DF00658FA8731D07C5D3BE29ED04 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
01:18:27.0797 0x0648  BCSSync - ok
01:18:27.0922 0x0648  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
01:18:27.0984 0x0648  Adobe ARM - ok
01:18:28.0046 0x0648  [ 5B6E8E09BE6401A7E022F52FDFCB2FF8, 471C556CF9405BBB380A8CEFE945C126B954B7C94F79CC72441B51F80141FC5E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
01:18:28.0062 0x0648  SunJavaUpdateSched - ok
01:18:28.0109 0x0648  [ 51696FF2FA798F7CD3C1CB9A4EFBFAE9, A9DD7411E488FBF437ADFFE60C76A54275DFA6BAC08EC916E834800EB326F7FA ] C:\Program Files (x86)\PureLeads\PureLeadsTray.exe
01:18:28.0109 0x0648  PureLeads Tray - ok
01:18:28.0265 0x0648  [ C13B42E5692C98A2660135E4BEB26A1A, 13E5B4BEAE604BDCD514A6A960D9FBC5927A8AD1BB1BD0EA0049BA1B7165D939 ] C:\Users\Brenden\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe
01:18:28.0296 0x0648  SansaDispatch - ok
01:18:28.0312 0x0648  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.4.304.0 ), 0x61000 ( enabled : updated )
01:18:28.0327 0x0648  Win FW state via NFP2: disabled
01:18:31.0229 0x0648  ============================================================
01:18:31.0229 0x0648  Scan finished
01:18:31.0229 0x0648  ============================================================
01:18:31.0229 0x1d10  Detected object count: 0
01:18:31.0229 0x1d10  Actual detected object count: 0



#10 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:10:12 PM

Posted 10 June 2014 - 12:48 PM

Please download Rkill by Grinler and save it to your desktop.

  • Link 1
  • Link 2
    • Double-click on the Rkill desktop icon to run the tool.
    • If using Vista, right-click on it and Run As Administrator.
    • black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
    • If not, delete the file, then download and use the one provided in Link 2.
    • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
    • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.

The reason why we need to run tools from desktop is to ensure its running from local computer, this is important to some fixes.

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#11 seraphin

seraphin
  • Topic Starter

  • Members
  • 102 posts
  • OFFLINE
  •  
  • Local time:12:12 PM

Posted 10 June 2014 - 08:22 PM

Based on the description of RKill, I may need to run another scan after RKill stops potential malware process. Which program should I use to scan the computer after running RKill? Or is running RKill the end of the clean-up? (is my computer still under suspicion of infection) Please advise. Thank you.



#12 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,154 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:10:12 PM

Posted 10 June 2014 - 10:13 PM

No, just run rkill and post the result. I forgot to remove that line.

Thank you.

Edited by Sirawit, 10 June 2014 - 10:14 PM.

If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users