Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Browser May Be Hyjacked


  • Please log in to reply
9 replies to this topic

#1 samone4

samone4

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 18 June 2014 - 07:55 AM

I am using Windows 8.1 os. Recently windows updates were downloaded but failed to install. The updates would eventually uninstall but this process loop would take about 90 frustrating minutes.

Anyhow, yesterday I contacted "Microsoft support" via the internet and started to chat with a tech rep. He asked for my phone number and called me back. But it was a scam. He was not a Microsoft tech and he wanted me to download a program to "fix" my computer. Luckily I hung up before the damage was done.

 

However, I am concerned that my web browser both Chrome and Explorer have been hijacked as I have been redirected to illegitimate web sites

 

I would greatly appreciate your help in determining whether or not my computer is clean.

 

Also, I use ESET anti-virus and Malwarebytes Pro 


Edited by hamluis, 18 June 2014 - 09:39 AM.
Moved from MRL to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 wpgwpg

wpgwpg

  • Members
  • 1,149 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:US of A
  • Local time:08:46 PM

Posted 18 June 2014 - 10:04 AM

 If you've done scans with Malwarebytes and ESET, I'd think you'd be pretty well off.  It's easy enough to reset your home page to whatever you want.  In IE navigate to the page(s) you want, then click the gear -> Internet options, then "Use current" and OK.  In Chrome navigate to what you want, click the 3 bars -> Settings -> Set Pages -> Use current pages.

 

Good luck.


Everyone with a computer should back his system up to an external hard drive regularly.  :thumbsup:

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:46 PM

Posted 18 June 2014 - 03:32 PM

Lets see what these show us.


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 samone4

samone4
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 18 June 2014 - 04:09 PM

iniToolBox by Farbar  Version: 13-06-2014
Ran by John (administrator) on 18-06-2014 at 16:54:24
Running from "C:\Users\John\Desktop"
Microsoft Windows 8.1 Pro with Media Center  (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
D-Link DWA-160 Xtreme N Dual Band USB Adapter(rev.B) = Wi-Fi (Connected)
Realtek PCIe GBE Family Controller = Ethernet (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : office-pc
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home
 
Wireless LAN adapter Local Area Connection* 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 00-21-91-58-9C-2A
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Ethernet:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 90-2B-34-A0-65-CC
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wi-Fi:
 
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : D-Link DWA-160 Xtreme N Dual Band USB Adapter(rev.B)
   Physical Address. . . . . . . . . : 00-21-91-58-9C-28
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::75b9:222d:c795:728e%3(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.24(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Wednesday, June 18, 2014 4:40:43 PM
   Lease Expires . . . . . . . . . . : Thursday, June 19, 2014 4:40:42 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 50340241
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-6A-16-25-90-2B-34-A0-65-CC
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.home:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6ab8:7d:62:93e1:5efc(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::7d:62:93e1:5efc%7(Preferred) 
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 318767104
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-6A-16-25-90-2B-34-A0-65-CC
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1
 
Name:    google.com
Addresses:  2607:f8b0:4006:802::1004
 173.194.43.9
 173.194.43.7
 173.194.43.3
 173.194.43.2
 173.194.43.8
 173.194.43.0
 173.194.43.5
 173.194.43.1
 173.194.43.4
 173.194.43.14
 173.194.43.6
 
 
Pinging google.com [173.194.43.7] with 32 bytes of data:
Reply from 173.194.43.7: bytes=32 time=9ms TTL=250
Reply from 173.194.43.7: bytes=32 time=11ms TTL=250
 
Ping statistics for 173.194.43.7:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 9ms, Maximum = 11ms, Average = 10ms
Server:  Wireless_Broadband_Router.home
Address:  192.168.1.1
 
Name:    yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=95ms TTL=239
Reply from 206.190.36.45: bytes=32 time=98ms TTL=239
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 95ms, Maximum = 98ms, Average = 96ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  5...00 21 91 58 9c 2a ......Microsoft Wi-Fi Direct Virtual Adapter
  4...90 2b 34 a0 65 cc ......Realtek PCIe GBE Family Controller
  3...00 21 91 58 9c 28 ......D-Link DWA-160 Xtreme N Dual Band USB Adapter(rev.B)
  1...........................Software Loopback Interface 1
  6...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
  7...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.24     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.24    281
     192.168.1.24  255.255.255.255         On-link      192.168.1.24    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.24    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.24    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.24    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  7    306 ::/0                     On-link
  1    306 ::1/128                  On-link
  7    306 2001::/32                On-link
  7    306 2001:0:9d38:6ab8:7d:62:93e1:5efc/128
                                    On-link
  3    281 fe80::/64                On-link
  7    306 fe80::/64                On-link
  7    306 fe80::7d:62:93e1:5efc/128
                                    On-link
  3    281 fe80::75b9:222d:c795:728e/128
                                    On-link
  1    306 ff00::/8                 On-link
  3    281 ff00::/8                 On-link
  7    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/18/2014 03:33:32 PM) (Source: Perflib) (User: )
Description: rdyboost4
 
Error: (06/18/2014 03:33:32 PM) (Source: Perflib) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
 
Error: (06/18/2014 05:53:22 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.
 
Error: (06/18/2014 05:53:21 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
 
Error: (06/18/2014 05:52:40 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.
 
Error: (06/18/2014 05:52:36 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
 
Error: (06/17/2014 03:10:24 PM) (Source: Perflib) (User: )
Description: rdyboost4
 
Error: (06/17/2014 03:10:23 PM) (Source: Perflib) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
 
Error: (06/16/2014 03:37:27 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "assemblyIdentity1".Error in manifest or policy file "assemblyIdentity2" on line assemblyIdentity3.
The value "*" of attribute "language" in element "assemblyIdentity" is invalid.
 
Error: (06/16/2014 03:37:25 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifest.
 
 
System errors:
=============
Error: (06/18/2014 04:40:43 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.2.0 service failed to start due to the following error: 
%%3
 
Error: (06/18/2014 04:40:36 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume \\?\Volume{6e890fed-7fe4-11e3-8269-806e6f6e6963} encountered a non-retryable error and could not start.  The data contains the error code.
 
Error: (06/18/2014 04:33:39 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x800f0922: Windows 8.1 Update for x64-based Systems (KB2919355).
 
Error: (06/18/2014 04:22:47 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}
 
Error: (06/18/2014 04:20:47 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}
 
Error: (06/18/2014 04:18:47 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}
 
Error: (06/18/2014 04:17:25 PM) (Source: Microsoft-Windows-Eventlog) (User: NT AUTHORITY)
Description: The event logging service encountered an error (5) while enabling publisher {0BF2FB94-7B60-4B4D-9766-E82F658DF540} to channel Microsoft-Windows-Kernel-ShimEngine/Operational. This does not affect channel operation, but does affect the ability of the publisher to raise events to the channel. One common reason for this error is that the Provider is using ETW Provider Security and has not granted enable permissions to the Event Log service identity.
 
Error: (06/18/2014 04:17:22 PM) (Source: Microsoft-Windows-Eventlog) (User: NT AUTHORITY)
Description: The event logging service encountered an error (5) while enabling publisher {0BF2FB94-7B60-4B4D-9766-E82F658DF540} to channel Microsoft-Windows-Kernel-ShimEngine/Operational. This does not affect channel operation, but does affect the ability of the publisher to raise events to the channel. One common reason for this error is that the Provider is using ETW Provider Security and has not granted enable permissions to the Event Log service identity.
 
Error: (06/18/2014 04:16:44 PM) (Source: Service Control Manager) (User: )
Description: The AODDriver4.2.0 service failed to start due to the following error: 
%%3
 
Error: (06/18/2014 04:16:18 PM) (Source: Ntfs) (User: )
Description: The default transaction resource manager on volume \\?\Volume{6e890fed-7fe4-11e3-8269-806e6f6e6963} encountered a non-retryable error and could not start.  The data contains the error code.
 
 
Microsoft Office Sessions:
=========================
Error: (06/18/2014 03:33:32 PM) (Source: Perflib)(User: )
Description: rdyboost4
 
Error: (06/18/2014 03:33:32 PM) (Source: Perflib)(User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
 
Error: (06/18/2014 05:53:22 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dllC:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll8
 
Error: (06/18/2014 05:53:21 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\dragon_support_packager.exe
 
Error: (06/18/2014 05:52:40 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dllC:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll8
 
Error: (06/18/2014 05:52:36 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\dragon_support_packager.exe
 
Error: (06/17/2014 03:10:24 PM) (Source: Perflib)(User: )
Description: rdyboost4
 
Error: (06/17/2014 03:10:23 PM) (Source: Perflib)(User: )
Description: BITSC:\Windows\System32\bitsperf.dll4
 
Error: (06/16/2014 03:37:27 AM) (Source: SideBySide)(User: )
Description: assemblyIdentitylanguage*C:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dllC:\Program Files (x86)\Spybot - Search & Destroy\DelZip179.dll8
 
Error: (06/16/2014 03:37:25 AM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_62475f7becb72503.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.16384_none_a9f4965301334e09.manifestC:\Program Files (x86)\Nuance\NaturallySpeaking12\Program\dragon_support_packager.exe
 
 
CodeIntegrity Errors:
===================================
  Date: 2014-01-18 18:25:40.154
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2014-01-18 18:25:40.134
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2014-01-18 18:25:39.549
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2014-01-18 18:25:39.478
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2014-01-18 18:25:39.407
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2014-01-18 18:25:39.335
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2014-01-18 18:25:39.264
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2014-01-18 18:25:39.187
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2014-01-17 09:14:46.861
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
  Date: 2014-01-17 09:14:46.768
  Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 
 
 
=========================== Installed Programs ============================
Acronis True Image 2014 (HKLM-x32\...\{6B38A7DF-F641-45D5-BBCA-3E676ABCF5C8}Visible) (Version: 17.0.6673 - Acronis)
Acronis True Image 2014 (x32 Version: 17.0.6673 - Acronis) Hidden
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 4.0.0.1390 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 4.0.0.1390 - Adobe Systems Incorporated) Hidden
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Community Help (x32 Version: 3.5.23 - Adobe Systems Incorporated.) Hidden
Adobe Flash Player 11 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 11.7.700.260 - Adobe Systems Incorporated)
Adobe Photoshop Elements 10 (HKLM-x32\...\Adobe Photoshop Elements 10) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Photoshop Elements 10 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Adobe Photoshop.com Inspiration Browser (HKLM-x32\...\PhotoshopdotcomInspirationBrowser.4C35C4D325D350FE0114230CBADCA2DDD0AC8D25.1) (Version: 3.07 - Adobe Systems Incorporated)
Adobe Photoshop.com Inspiration Browser (x32 Version: 3.07 - Adobe Systems Incorporated) Hidden
Adobe Reader XI (11.0.06) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
AMD APP SDK Runtime (Version: 10.0.1016.4 - Advanced Micro Devices Inc.) Hidden
AMD Catalyst Install Manager (HKLM\...\{BBA54B9E-681B-1DD5-F60D-D5DFCAD669F6}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{D9DAD0FF-495A-472B-9F10-BAE430A26682}) (Version: 3.0.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS Product Register Program (HKLM-x32\...\{C87D79F6-F813-4812-B7A9-CCCAAB8B1188}) (Version: 1.0.025 - ASUSTek Computer Inc.)
Belarc Advisor 8.4 (HKLM-x32\...\Belarc Advisor) (Version: 8.4.0.0 - Belarc Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Bonjour Print Services (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
Catalyst Control Center (HKLM-x32\...\{8B1A559A-FB9D-42F5-A8A7-2F132CF28414}) (Version: 1.00.0000 - )
Catalyst Control Center InstallProxy (x32 Version: 2013.0830.147.1272 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center InstallProxy (x32 Version: 2013.1206.1603.28764 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.10 - Piriform)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{CA75CBF9-B078-47CB-ABA3-74EFD4FC9A43}) (Version:  - Microsoft)
Dragon NaturallySpeaking 12 (HKLM-x32\...\{D5D422B9-6976-4E98-8DDF-9632CB515D7E}) (Version: 12.50.000 - Nuance Communications Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 2.8.2 - Dropbox, Inc.)
Elements 10 Organizer (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
emWave2 (HKLM-x32\...\emWave23.2.0.6867) (Version: 3.2.0.6867 - Heartmath Inc.)
ESET Smart Security (HKLM\...\{F7C525E7-659A-47F6-A25A-7A63FA10E767}) (Version: 7.0.302.26 - ESET, spol s r. o.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 35.0.1916.153 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.5111.1712 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
GPUTweakStreaming (HKLM-x32\...\InstallShield_{D2A41AA7-4313-43D5-AA39-7E3FBBE0556D}) (Version: 1.0.3.5 - ASUS)
GPUTweakStreaming (x32 Version: 1.0.3.5 - ASUS) Hidden
HP Photosmart 7520 series Basic Device Software (HKLM\...\{27ABA988-D480-4F44-B0FD-45E5656D2CFE}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Photosmart 7520 series Help (HKLM-x32\...\{08295D09-E002-48F8-905D-34E4B08509BA}) (Version: 28.0.0 - Hewlett Packard)
HP Support Solutions Framework (HKLM-x32\...\{86FD8326-909D-45F5-BB61-0619D0D31293}) (Version: 11.50.0011 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden
iCloud (HKLM\...\{81E20D41-C277-4526-934D-F2380AF91B78}) (Version: 3.1.0.40 - Apple Inc.)
iTunes (HKLM\...\{5A68A656-979F-4168-8795-E2E368AA4DC2}) (Version: 11.2.2.3 - Apple Inc.)
Java 7 Update 51 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
KeePass Password Safe 2.26 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.26 - Dominik Reichl)
Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM-x32\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PSE10 STI Installer (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
QuickBooks (x32 Version: 22.0.4005.2206 - Intuit Inc.) Hidden
QuickBooks Pro 2012 (HKLM-x32\...\{22057D8D-7CC8-46FF-AD8C-9BD24F9014F3}) (Version: 22.0.4005.2206 - Intuit Inc.)
QuickTime 7 (HKLM-x32\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)
RAPID Mode (Version: 1.0.1.42 - Samsung Electronics Co., Ltd.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7101 - Realtek Semiconductor Corp.)
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.0 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.3.0 - Samsung Electronics)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden
TurboTax 2013 (HKLM-x32\...\TurboTax 2013) (Version: 2013.0 - Intuit, Inc)
TurboTax 2013 wctpbpm (x32 Version: 013.000.0308 - Intuit Inc.) Hidden
TurboTax 2013 WinBizFedFormset (x32 Version: 013.000.1328 - Intuit Inc.) Hidden
TurboTax 2013 WinBizReleaseEngine (x32 Version: 013.000.0460 - Intuit Inc.) Hidden
TurboTax 2013 WinBizTaxSupport (x32 Version: 013.000.0981 - Intuit Inc.) Hidden
TurboTax 2013 WinPerFedFormset (x32 Version: 013.000.1986 - Intuit Inc.) Hidden
TurboTax 2013 WinPerReleaseEngine (x32 Version: 013.000.0492 - Intuit Inc.) Hidden
TurboTax 2013 WinPerTaxSupport (x32 Version: 013.000.0168 - Intuit Inc.) Hidden
TurboTax 2013 wnyiper (x32 Version: 013.000.1366 - Intuit Inc.) Hidden
TurboTax 2013 wnypbpm (x32 Version: 013.000.0359 - Intuit Inc.) Hidden
TurboTax 2013 wrapper (x32 Version: 013.000.0135 - Intuit Inc.) Hidden
TurboTax Business 2013 (HKLM-x32\...\TurboTax Business 2013) (Version: 2013.0 - Intuit, Inc)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.SingleImage_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.SingleImage_{5E8EB600-8B94-429E-873E-98369C6DC1BC}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.SingleImage_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.SingleImage_{334AA0A1-2BB1-4D74-B66A-2B2C4D9C2C87}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.SingleImage_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)
Update for Microsoft Word 2010 (KB2880529) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{B9B89E01-5B6B-4F73-BC34-B2C0D8ACB4CD}) (Version:  - Microsoft)
WD Discovery (HKLM-x32\...\{02DC675D-4BA4-40D9-A94D-6895D07C7419}) (Version: 102.0.0.116 - Western Digital Technologies, Inc.)
WD My Cloud (HKLM\...\{94F0573B-6856-4361-9E8D-2405349C44E1}) (Version: 1.0.3.12 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{324C58C7-A292-4523-A943-91DE1EB6A1FE}) (Version: 2.4.1.9 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{F6ABA2F3-9759-48CD-B25B-A07A811E92E4}) (Version: 2.4.1.9 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{72fda14f-5a07-49d5-b7f7-202377e9b522}) (Version: 2.4.1.9 - Western Digital Technologies, Inc.)
Yahoo! Messenger (HKLM-x32\...\Yahoo! Messenger) (Version:  - Yahoo! Inc.)
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version:  - )
 
========================= Memory info: ===================================
 
Percentage of memory in use: 32%
Total physical RAM: 8189.52 MB
Available physical RAM: 5552.23 MB
Total Pagefile: 16381.52 MB
Available Pagefile: 13652.43 MB
Total Virtual: 4095.88 MB
Available Virtual: 3973.72 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:698.54 GB) (Free:628.95 GB) NTFS
3 Drive e: (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.02 GB) NTFS
4 Drive f: () (Fixed) (Total:931.41 GB) (Free:873.27 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\OFFICE-PC
 
Administrator            Guest                    John                     
 
 
**** End of log ****
16:56:16.0699 0x0664  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
16:56:20.0715 0x0664  ============================================================
16:56:20.0715 0x0664  Current date / time: 2014/06/18 16:56:20.0715
16:56:20.0715 0x0664  SystemInfo:
16:56:20.0716 0x0664  
16:56:20.0716 0x0664  OS Version: 6.3.9600 ServicePack: 0.0
16:56:20.0716 0x0664  Product type: Workstation
16:56:20.0716 0x0664  ComputerName: OFFICE-PC
16:56:20.0716 0x0664  UserName: John
16:56:20.0716 0x0664  Windows directory: C:\Windows
16:56:20.0716 0x0664  System windows directory: C:\Windows
16:56:20.0716 0x0664  Running under WOW64
16:56:20.0716 0x0664  Processor architecture: Intel x64
16:56:20.0716 0x0664  Number of processors: 4
16:56:20.0716 0x0664  Page size: 0x1000
16:56:20.0716 0x0664  Boot type: Normal boot
16:56:20.0716 0x0664  ============================================================
16:56:20.0873 0x0664  KLMD registered as C:\Windows\system32\drivers\91632104.sys
16:56:21.0023 0x0664  System UUID: {18B610C1-5DD8-A421-E39E-52B06E4606E5}
16:56:21.0455 0x0664  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:56:21.0456 0x0664  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:56:21.0474 0x0664  ============================================================
16:56:21.0474 0x0664  \Device\Harddisk0\DR0:
16:56:21.0474 0x0664  MBR partitions:
16:56:21.0474 0x0664  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:56:21.0474 0x0664  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x57512B01
16:56:21.0474 0x0664  \Device\Harddisk1\DR1:
16:56:21.0474 0x0664  MBR partitions:
16:56:21.0474 0x0664  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:56:21.0474 0x0664  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
16:56:21.0474 0x0664  ============================================================
16:56:21.0476 0x0664  C: <-> \Device\Harddisk0\DR0\Partition2
16:56:21.0477 0x0664  E: <-> \Device\Harddisk1\DR1\Partition1
16:56:21.0486 0x0664  F: <-> \Device\Harddisk1\DR1\Partition2
16:56:21.0486 0x0664  ============================================================
16:56:21.0486 0x0664  Initialize success
16:56:21.0486 0x0664  ============================================================
16:56:46.0928 0x04c8  ============================================================
16:56:46.0928 0x04c8  Scan started
16:56:46.0928 0x04c8  Mode: Manual; 
16:56:46.0928 0x04c8  ============================================================
16:56:46.0928 0x04c8  KSN ping started
16:56:49.0467 0x04c8  KSN ping finished: true
16:56:50.0560 0x04c8  ================ Scan system memory ========================
16:56:50.0560 0x04c8  System memory - ok
16:56:50.0560 0x04c8  ================ Scan services =============================
16:56:50.0610 0x04c8  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
16:56:50.0621 0x04c8  1394ohci - ok
16:56:50.0638 0x04c8  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\Windows\system32\drivers\3ware.sys
16:56:50.0645 0x04c8  3ware - ok
16:56:50.0673 0x04c8  [ 3D30878A269D934100FA5F972E53AF39, 3D2D22D1A9D80DB94D6059C789FBD04DC945722B8644DF6DAA73D5713A10EC52 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:56:50.0695 0x04c8  ACPI - ok
16:56:50.0705 0x04c8  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
16:56:50.0707 0x04c8  acpiex - ok
16:56:50.0711 0x04c8  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
16:56:50.0713 0x04c8  acpipagr - ok
16:56:50.0717 0x04c8  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
16:56:50.0718 0x04c8  AcpiPmi - ok
16:56:50.0723 0x04c8  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
16:56:50.0725 0x04c8  acpitime - ok
16:56:50.0770 0x04c8  [ 8325369F44A16CE4261CE268818A1F53, FE0B51D6976D5A39146469E046C8AEE7504A4AE9C948CE861371379D100D20CC ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
16:56:50.0810 0x04c8  AcrSch2Svc - ok
16:56:50.0827 0x04c8  [ C245E08EC469A52A622EFDC9787A0DCC, 378EFDFA1CC133123464F820805212ED73264EFD78511F1A0DDC8DCEEC176759 ] AdobeActiveFileMonitor10.0 C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
16:56:50.0835 0x04c8  AdobeActiveFileMonitor10.0 - ok
16:56:50.0843 0x04c8  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:56:50.0844 0x04c8  AdobeARMservice - ok
16:56:50.0872 0x04c8  [ B7BE9F856689CCA868515416044EA4B2, 65F0A7016766F070DF086052D97474D189CD2244CF2BFE136D4DD611B16F08FA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:56:50.0884 0x04c8  AdobeFlashPlayerUpdateSvc - ok
16:56:50.0933 0x04c8  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
16:56:50.0976 0x04c8  ADP80XX - ok
16:56:50.0993 0x04c8  [ B19CA8E441D35AA2B1EE51C10B27DA1B, EBEB96EA44E665B2D4FCD1CC58621A20A17F036EA4A695340A2B65F94F69CDDC ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:56:50.0997 0x04c8  AeLookupSvc - ok
16:56:51.0015 0x04c8  [ ABCF9C80EAACE03021BB7F450EB8993F, 8E38726C423E82954CA85266D6F38B605D010A659420A4EF99D29035A9474BFB ] afcdp           C:\Windows\system32\DRIVERS\afcdp.sys
16:56:51.0029 0x04c8  afcdp - ok
16:56:51.0184 0x04c8  [ E23A18DE1A4715A225B899143BD38CD7, B18AB314423467B94D72F154804DED69BA4A99AE1349C8383ADBF19186D897C9 ] afcdpsrv        C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
16:56:51.0322 0x04c8  afcdpsrv - ok
16:56:51.0365 0x04c8  [ 239268BAB58EAE9A3FF4E08334C00451, 13F927730DF9BAEDB3A7AB6F7238270A20E4CDEB3D5324A1C471DF2209F3D239 ] AFD             C:\Windows\system32\drivers\afd.sys
16:56:51.0394 0x04c8  AFD - ok
16:56:51.0401 0x04c8  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\Windows\system32\drivers\agp440.sys
16:56:51.0404 0x04c8  agp440 - ok
16:56:51.0412 0x04c8  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
16:56:51.0414 0x04c8  ahcache - ok
16:56:51.0423 0x04c8  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\Windows\System32\alg.exe
16:56:51.0425 0x04c8  ALG - ok
16:56:51.0434 0x04c8  [ D018A3F6010E644595BE139FBB827D5E, D224D9B289C4E7BE733B86E6D7E2D1605207B14AC2DB1AE9394EF835C0D5B101 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:56:51.0442 0x04c8  AMD External Events Utility - ok
16:56:51.0452 0x04c8  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
16:56:51.0459 0x04c8  AmdK8 - ok
16:56:51.0464 0x04c8  [ F2FF8C1B41B3784EDBD5C6D5397F403C, 104873700D2BDF4812DC48200B4609F46A63E7A50594A0599100EF1438863708 ] amdkmafd        C:\Windows\system32\drivers\amdkmafd.sys
16:56:51.0466 0x04c8  amdkmafd - ok
16:56:51.0749 0x04c8  [ 64F79795D91CCA5FFC2694975AAED35F, 5B6A0004EA051FB3195BE060697300540D03EF18041D369E78814E6E12BBF700 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:56:52.0018 0x04c8  amdkmdag - ok
16:56:52.0052 0x04c8  [ DDB6A787E34A158B684CE2389894EB96, 1610A9BB301889AA4DD7CE256EF710CDEB03F01B4DF23D01495515740CE44BC6 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
16:56:52.0066 0x04c8  amdkmdap - ok
16:56:52.0075 0x04c8  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
16:56:52.0080 0x04c8  AmdPPM - ok
16:56:52.0088 0x04c8  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:56:52.0093 0x04c8  amdsata - ok
16:56:52.0112 0x04c8  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:56:52.0125 0x04c8  amdsbs - ok
16:56:52.0130 0x04c8  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:56:52.0132 0x04c8  amdxata - ok
16:56:52.0135 0x04c8  AODDriver4.2.0 - ok
16:56:52.0143 0x04c8  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\Windows\system32\drivers\appid.sys
16:56:52.0147 0x04c8  AppID - ok
16:56:52.0152 0x04c8  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:56:52.0155 0x04c8  AppIDSvc - ok
16:56:52.0164 0x04c8  [ 7E790DE2487CEDB349D1750B9E47F090, EDA4A87EA2F89ABD174E9590DD46E70B9E7E4B35BDFC3ED90D79CD594F8CB2CD ] Appinfo         C:\Windows\System32\appinfo.dll
16:56:52.0172 0x04c8  Appinfo - ok
16:56:52.0178 0x04c8  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:56:52.0180 0x04c8  Apple Mobile Device - ok
16:56:52.0192 0x04c8  [ 8176FBA685178FB0F52D46693474FA50, 69FE3692C7FE24289A479ADD74F2C782B59A099B7B07FE5ACFC4DA899E40BFDE ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:56:52.0196 0x04c8  AppMgmt - ok
16:56:52.0226 0x04c8  [ 4B964AE0DF433A3BFA7BD24713BC2E9B, DC8933265E67E43CAE96EA64B146CB9067B536A4DA2C90EDCB38302BBFA1CE6B ] AppReadiness    C:\Windows\system32\AppReadiness.dll
16:56:52.0250 0x04c8  AppReadiness - ok
16:56:52.0316 0x04c8  [ 0B726D9ED75C787D6FFAF1E3873BCC70, DC3822B35FB65D53CC5D0E3982C326C5F47F0911BEB1F66DCC84A79C84621E1E ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
16:56:52.0339 0x04c8  AppXSvc - ok
16:56:52.0349 0x04c8  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:56:52.0355 0x04c8  arcsas - ok
16:56:52.0360 0x04c8  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:56:52.0361 0x04c8  atapi - ok
16:56:52.0366 0x04c8  AtiDCM - ok
16:56:52.0376 0x04c8  [ D805D796F6F4ECB3D9F76F649AACD265, B73A7BA25F8945CD568743075C9E5FCBF45E21B7E87F383B14B37B60E301471E ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW86.sys
16:56:52.0382 0x04c8  AtiHDAudioService - ok
16:56:52.0398 0x04c8  [ 4903CBC14742B5AB4DCF7A92F7DEC483, B8491FDA1D1E767658ECC5C3C3DDFB3EB12A969F0F6ACF116C18300FF54075D5 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
16:56:52.0402 0x04c8  AudioEndpointBuilder - ok
16:56:52.0521 0x04c8  [ EF276593AD1BDF5A99032F62D6272848, 3961689B34A6BCD891FF48A044ABD184F5D7320AE882DF79E5ADC57B08205BA9 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
16:56:52.0536 0x04c8  Audiosrv - ok
16:56:52.0546 0x04c8  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:56:52.0552 0x04c8  AxInstSV - ok
16:56:52.0581 0x04c8  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:56:52.0603 0x04c8  b06bdrv - ok
16:56:52.0611 0x04c8  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
16:56:52.0614 0x04c8  BasicDisplay - ok
16:56:52.0620 0x04c8  [ 2748E116F8621A4DB0D39FCDD7318C01, DA2DEB7FE1D887B1EF5E2B5103270B72268D8ABDDA36C396627305C0BA90FC20 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
16:56:52.0622 0x04c8  BasicRender - ok
16:56:52.0629 0x04c8  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
16:56:52.0631 0x04c8  bcmfn2 - ok
16:56:52.0653 0x04c8  [ BBE61A40665B83488901E41082A6097D, ADF750DB32E1295C57C03D587A60194529C8B83F90F433C3458288FB5E8F475B ] BDESVC          C:\Windows\System32\bdesvc.dll
16:56:52.0670 0x04c8  BDESVC - ok
16:56:52.0676 0x04c8  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\Windows\system32\drivers\Beep.sys
16:56:52.0676 0x04c8  Beep - ok
16:56:52.0719 0x04c8  [ 6468B696C65775D51A06615830E0E79D, CC4081B3A4895192B4796A745F0BCE8C9C3149B854A7B9BEF84668A2E1D074B5 ] BFE             C:\Windows\System32\bfe.dll
16:56:52.0758 0x04c8  BFE - ok
16:56:52.0821 0x04c8  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\Windows\System32\qmgr.dll
16:56:52.0849 0x04c8  BITS - ok
16:56:52.0874 0x04c8  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:56:52.0894 0x04c8  Bonjour Service - ok
16:56:52.0903 0x04c8  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:56:52.0905 0x04c8  bowser - ok


#5 samone4

samone4
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 18 June 2014 - 04:22 PM

# AdwCleaner v3.212 - Report created 18/06/2014 at 17:06:10
# Updated 05/06/2014 by Xplode
# Operating System : Windows 8.1 Pro with Media Center  (64 bits)
# Username : John - OFFICE-PC
# Running from : C:\Users\John\Downloads\AdwCleaner (2).exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.16518
 
 
-\\ Google Chrome v35.0.1916.153
 
[ File : C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Found [Startup_urls] : hxxp://search.conduit.com/?ctid=CT3314759&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPBBE3DF70-6E8F-4735-82D9-610987A634F1&SSPV=
 
*************************
 
AdwCleaner[R0].txt - [787 octets] - [18/06/2014 17:06:10]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [846 octets] ##########


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:46 PM

Posted 18 June 2014 - 07:13 PM

Looks like the bottom of the TDSS log was cut off. Please look at it if it said 0 infections found then don't fret it . If something is there please post the last  or  lines/


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 samone4

samone4
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 18 June 2014 - 07:24 PM

sorry about that

 

16:56:16.0699 0x0664  TDSS rootkit removing tool 3.0.0.39 Jun  5 2014 20:35:54
16:56:20.0715 0x0664  ============================================================
16:56:20.0715 0x0664  Current date / time: 2014/06/18 16:56:20.0715
16:56:20.0715 0x0664  SystemInfo:
16:56:20.0716 0x0664  
16:56:20.0716 0x0664  OS Version: 6.3.9600 ServicePack: 0.0
16:56:20.0716 0x0664  Product type: Workstation
16:56:20.0716 0x0664  ComputerName: OFFICE-PC
16:56:20.0716 0x0664  UserName: John
16:56:20.0716 0x0664  Windows directory: C:\Windows
16:56:20.0716 0x0664  System windows directory: C:\Windows
16:56:20.0716 0x0664  Running under WOW64
16:56:20.0716 0x0664  Processor architecture: Intel x64
16:56:20.0716 0x0664  Number of processors: 4
16:56:20.0716 0x0664  Page size: 0x1000
16:56:20.0716 0x0664  Boot type: Normal boot
16:56:20.0716 0x0664  ============================================================
16:56:20.0873 0x0664  KLMD registered as C:\Windows\system32\drivers\91632104.sys
16:56:21.0023 0x0664  System UUID: {18B610C1-5DD8-A421-E39E-52B06E4606E5}
16:56:21.0455 0x0664  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:56:21.0456 0x0664  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:56:21.0474 0x0664  ============================================================
16:56:21.0474 0x0664  \Device\Harddisk0\DR0:
16:56:21.0474 0x0664  MBR partitions:
16:56:21.0474 0x0664  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:56:21.0474 0x0664  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x57512B01
16:56:21.0474 0x0664  \Device\Harddisk1\DR1:
16:56:21.0474 0x0664  MBR partitions:
16:56:21.0474 0x0664  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:56:21.0474 0x0664  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
16:56:21.0474 0x0664  ============================================================
16:56:21.0476 0x0664  C: <-> \Device\Harddisk0\DR0\Partition2
16:56:21.0477 0x0664  E: <-> \Device\Harddisk1\DR1\Partition1
16:56:21.0486 0x0664  F: <-> \Device\Harddisk1\DR1\Partition2
16:56:21.0486 0x0664  ============================================================
16:56:21.0486 0x0664  Initialize success
16:56:21.0486 0x0664  ============================================================
16:56:46.0928 0x04c8  ============================================================
16:56:46.0928 0x04c8  Scan started
16:56:46.0928 0x04c8  Mode: Manual; 
16:56:46.0928 0x04c8  ============================================================
16:56:46.0928 0x04c8  KSN ping started
16:56:49.0467 0x04c8  KSN ping finished: true
16:56:50.0560 0x04c8  ================ Scan system memory ========================
16:56:50.0560 0x04c8  System memory - ok
16:56:50.0560 0x04c8  ================ Scan services =============================
16:56:50.0610 0x04c8  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
16:56:50.0621 0x04c8  1394ohci - ok
16:56:50.0638 0x04c8  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\Windows\system32\drivers\3ware.sys
16:56:50.0645 0x04c8  3ware - ok
16:56:50.0673 0x04c8  [ 3D30878A269D934100FA5F972E53AF39, 3D2D22D1A9D80DB94D6059C789FBD04DC945722B8644DF6DAA73D5713A10EC52 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:56:50.0695 0x04c8  ACPI - ok
16:56:50.0705 0x04c8  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
16:56:50.0707 0x04c8  acpiex - ok
16:56:50.0711 0x04c8  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
16:56:50.0713 0x04c8  acpipagr - ok
16:56:50.0717 0x04c8  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
16:56:50.0718 0x04c8  AcpiPmi - ok
16:56:50.0723 0x04c8  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
16:56:50.0725 0x04c8  acpitime - ok
16:56:50.0770 0x04c8  [ 8325369F44A16CE4261CE268818A1F53, FE0B51D6976D5A39146469E046C8AEE7504A4AE9C948CE861371379D100D20CC ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
16:56:50.0810 0x04c8  AcrSch2Svc - ok
16:56:50.0827 0x04c8  [ C245E08EC469A52A622EFDC9787A0DCC, 378EFDFA1CC133123464F820805212ED73264EFD78511F1A0DDC8DCEEC176759 ] AdobeActiveFileMonitor10.0 C:\Program Files (x86)\Adobe\Elements 10 Organizer\PhotoshopElementsFileAgent.exe
16:56:50.0835 0x04c8  AdobeActiveFileMonitor10.0 - ok
16:56:50.0843 0x04c8  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:56:50.0844 0x04c8  AdobeARMservice - ok
16:56:50.0872 0x04c8  [ B7BE9F856689CCA868515416044EA4B2, 65F0A7016766F070DF086052D97474D189CD2244CF2BFE136D4DD611B16F08FA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:56:50.0884 0x04c8  AdobeFlashPlayerUpdateSvc - ok
16:56:50.0933 0x04c8  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
16:56:50.0976 0x04c8  ADP80XX - ok
16:56:50.0993 0x04c8  [ B19CA8E441D35AA2B1EE51C10B27DA1B, EBEB96EA44E665B2D4FCD1CC58621A20A17F036EA4A695340A2B65F94F69CDDC ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:56:50.0997 0x04c8  AeLookupSvc - ok
16:56:51.0015 0x04c8  [ ABCF9C80EAACE03021BB7F450EB8993F, 8E38726C423E82954CA85266D6F38B605D010A659420A4EF99D29035A9474BFB ] afcdp           C:\Windows\system32\DRIVERS\afcdp.sys
16:56:51.0029 0x04c8  afcdp - ok
16:56:51.0184 0x04c8  [ E23A18DE1A4715A225B899143BD38CD7, B18AB314423467B94D72F154804DED69BA4A99AE1349C8383ADBF19186D897C9 ] afcdpsrv        C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
16:56:51.0322 0x04c8  afcdpsrv - ok
16:56:51.0365 0x04c8  [ 239268BAB58EAE9A3FF4E08334C00451, 13F927730DF9BAEDB3A7AB6F7238270A20E4CDEB3D5324A1C471DF2209F3D239 ] AFD             C:\Windows\system32\drivers\afd.sys
16:56:51.0394 0x04c8  AFD - ok
16:56:51.0401 0x04c8  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\Windows\system32\drivers\agp440.sys
16:56:51.0404 0x04c8  agp440 - ok
16:56:51.0412 0x04c8  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
16:56:51.0414 0x04c8  ahcache - ok
16:56:51.0423 0x04c8  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\Windows\System32\alg.exe
16:56:51.0425 0x04c8  ALG - ok
16:56:51.0434 0x04c8  [ D018A3F6010E644595BE139FBB827D5E, D224D9B289C4E7BE733B86E6D7E2D1605207B14AC2DB1AE9394EF835C0D5B101 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:56:51.0442 0x04c8  AMD External Events Utility - ok
16:56:51.0452 0x04c8  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
16:56:51.0459 0x04c8  AmdK8 - ok
16:56:51.0464 0x04c8  [ F2FF8C1B41B3784EDBD5C6D5397F403C, 104873700D2BDF4812DC48200B4609F46A63E7A50594A0599100EF1438863708 ] amdkmafd        C:\Windows\system32\drivers\amdkmafd.sys
16:56:51.0466 0x04c8  amdkmafd - ok
16:56:51.0749 0x04c8  [ 64F79795D91CCA5FFC2694975AAED35F, 5B6A0004EA051FB3195BE060697300540D03EF18041D369E78814E6E12BBF700 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:56:52.0018 0x04c8  amdkmdag - ok
16:56:52.0052 0x04c8  [ DDB6A787E34A158B684CE2389894EB96, 1610A9BB301889AA4DD7CE256EF710CDEB03F01B4DF23D01495515740CE44BC6 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
16:56:52.0066 0x04c8  amdkmdap - ok
16:56:52.0075 0x04c8  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
16:56:52.0080 0x04c8  AmdPPM - ok
16:56:52.0088 0x04c8  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:56:52.0093 0x04c8  amdsata - ok
16:56:52.0112 0x04c8  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:56:52.0125 0x04c8  amdsbs - ok
16:56:52.0130 0x04c8  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:56:52.0132 0x04c8  amdxata - ok
16:56:52.0135 0x04c8  AODDriver4.2.0 - ok
16:56:52.0143 0x04c8  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\Windows\system32\drivers\appid.sys
16:56:52.0147 0x04c8  AppID - ok
16:56:52.0152 0x04c8  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:56:52.0155 0x04c8  AppIDSvc - ok
16:56:52.0164 0x04c8  [ 7E790DE2487CEDB349D1750B9E47F090, EDA4A87EA2F89ABD174E9590DD46E70B9E7E4B35BDFC3ED90D79CD594F8CB2CD ] Appinfo         C:\Windows\System32\appinfo.dll
16:56:52.0172 0x04c8  Appinfo - ok
16:56:52.0178 0x04c8  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:56:52.0180 0x04c8  Apple Mobile Device - ok
16:56:52.0192 0x04c8  [ 8176FBA685178FB0F52D46693474FA50, 69FE3692C7FE24289A479ADD74F2C782B59A099B7B07FE5ACFC4DA899E40BFDE ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:56:52.0196 0x04c8  AppMgmt - ok
16:56:52.0226 0x04c8  [ 4B964AE0DF433A3BFA7BD24713BC2E9B, DC8933265E67E43CAE96EA64B146CB9067B536A4DA2C90EDCB38302BBFA1CE6B ] AppReadiness    C:\Windows\system32\AppReadiness.dll
16:56:52.0250 0x04c8  AppReadiness - ok
16:56:52.0316 0x04c8  [ 0B726D9ED75C787D6FFAF1E3873BCC70, DC3822B35FB65D53CC5D0E3982C326C5F47F0911BEB1F66DCC84A79C84621E1E ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
16:56:52.0339 0x04c8  AppXSvc - ok
16:56:52.0349 0x04c8  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:56:52.0355 0x04c8  arcsas - ok
16:56:52.0360 0x04c8  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:56:52.0361 0x04c8  atapi - ok
16:56:52.0366 0x04c8  AtiDCM - ok
16:56:52.0376 0x04c8  [ D805D796F6F4ECB3D9F76F649AACD265, B73A7BA25F8945CD568743075C9E5FCBF45E21B7E87F383B14B37B60E301471E ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW86.sys
16:56:52.0382 0x04c8  AtiHDAudioService - ok
16:56:52.0398 0x04c8  [ 4903CBC14742B5AB4DCF7A92F7DEC483, B8491FDA1D1E767658ECC5C3C3DDFB3EB12A969F0F6ACF116C18300FF54075D5 ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
16:56:52.0402 0x04c8  AudioEndpointBuilder - ok
16:56:52.0521 0x04c8  [ EF276593AD1BDF5A99032F62D6272848, 3961689B34A6BCD891FF48A044ABD184F5D7320AE882DF79E5ADC57B08205BA9 ] Audiosrv        C:\Windows\System32\Audiosrv.dll
16:56:52.0536 0x04c8  Audiosrv - ok
16:56:52.0546 0x04c8  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:56:52.0552 0x04c8  AxInstSV - ok
16:56:52.0581 0x04c8  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:56:52.0603 0x04c8  b06bdrv - ok
16:56:52.0611 0x04c8  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
16:56:52.0614 0x04c8  BasicDisplay - ok
16:56:52.0620 0x04c8  [ 2748E116F8621A4DB0D39FCDD7318C01, DA2DEB7FE1D887B1EF5E2B5103270B72268D8ABDDA36C396627305C0BA90FC20 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
16:56:52.0622 0x04c8  BasicRender - ok
16:56:52.0629 0x04c8  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
16:56:52.0631 0x04c8  bcmfn2 - ok
16:56:52.0653 0x04c8  [ BBE61A40665B83488901E41082A6097D, ADF750DB32E1295C57C03D587A60194529C8B83F90F433C3458288FB5E8F475B ] BDESVC          C:\Windows\System32\bdesvc.dll
16:56:52.0670 0x04c8  BDESVC - ok
16:56:52.0676 0x04c8  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\Windows\system32\drivers\Beep.sys
16:56:52.0676 0x04c8  Beep - ok
16:56:52.0719 0x04c8  [ 6468B696C65775D51A06615830E0E79D, CC4081B3A4895192B4796A745F0BCE8C9C3149B854A7B9BEF84668A2E1D074B5 ] BFE             C:\Windows\System32\bfe.dll
16:56:52.0758 0x04c8  BFE - ok
16:56:52.0821 0x04c8  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\Windows\System32\qmgr.dll
16:56:52.0849 0x04c8  BITS - ok
16:56:52.0874 0x04c8  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:56:52.0894 0x04c8  Bonjour Service - ok
16:56:52.0903 0x04c8  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:56:52.0905 0x04c8  bowser - ok
16:56:52.0920 0x04c8  [ A6207A88B596F726DE558425F3B7E592, 126375CC8EA101E0878728323B7EAA69DC8699AC04470FB95D482B1025E0FFB2 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
16:56:52.0931 0x04c8  BrokerInfrastructure - ok
16:56:52.0942 0x04c8  [ D528D6A92D187777691993DD757AF19A, 2C79978310193431E5FC462368424A172858D5351C92D4815C2A7E35B5DDE50C ] Browser         C:\Windows\System32\browser.dll
16:56:52.0945 0x04c8  Browser - ok
16:56:52.0950 0x04c8  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
16:56:52.0953 0x04c8  BthAvrcpTg - ok
16:56:52.0960 0x04c8  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
16:56:52.0964 0x04c8  BthHFEnum - ok
16:56:52.0970 0x04c8  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
16:56:52.0972 0x04c8  bthhfhid - ok
16:56:52.0979 0x04c8  [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
16:56:52.0982 0x04c8  BTHMODEM - ok
16:56:52.0993 0x04c8  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\Windows\system32\bthserv.dll
16:56:52.0996 0x04c8  bthserv - ok
16:56:53.0003 0x04c8  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:56:53.0005 0x04c8  cdfs - ok
16:56:53.0016 0x04c8  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\Windows\System32\drivers\cdrom.sys
16:56:53.0024 0x04c8  cdrom - ok
16:56:53.0035 0x04c8  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:56:53.0042 0x04c8  CertPropSvc - ok
16:56:53.0049 0x04c8  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\Windows\System32\drivers\circlass.sys
16:56:53.0052 0x04c8  circlass - ok
16:56:53.0068 0x04c8  [ B8B663BE41827211737F627473D6D192, E01FB67229FF962231637A4C07E19A29D1CD8ADEF6E5E177F136EC6572729EFF ] CLFS            C:\Windows\system32\drivers\CLFS.sys
16:56:53.0075 0x04c8  CLFS - ok
16:56:53.0087 0x04c8  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
16:56:53.0088 0x04c8  CmBatt - ok
16:56:53.0117 0x04c8  [ 825BE21E6395E00698D8A23955A87972, 303F10C3BA72ABB3BA27D08968B10E8EB03FFB6951943B0E9DD35CF48BB72578 ] CNG             C:\Windows\system32\Drivers\cng.sys
16:56:53.0143 0x04c8  CNG - ok
16:56:53.0151 0x04c8  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
16:56:53.0154 0x04c8  CompositeBus - ok
16:56:53.0157 0x04c8  COMSysApp - ok
16:56:53.0164 0x04c8  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\Windows\system32\drivers\condrv.sys
16:56:53.0165 0x04c8  condrv - ok
16:56:53.0178 0x04c8  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:56:53.0181 0x04c8  CryptSvc - ok
16:56:53.0209 0x04c8  [ EE2F3C0D6ADBC975D6B621EC15ACF4E2, D158C0FACA6344BCD77616EC3D23212F9FD76D7D0C834ACA51998B80162106D5 ] CSC             C:\Windows\system32\drivers\csc.sys
16:56:53.0219 0x04c8  CSC - ok
16:56:53.0270 0x04c8  [ 936D9E2871CEEFF6A33695D98374367B, C30D42E870F196C4FA20AF95C7B9D9C9C5414D6DDE71268F88C3FC5BF372E61B ] CscService      C:\Windows\System32\cscsvc.dll
16:56:53.0284 0x04c8  CscService - ok
16:56:53.0293 0x04c8  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\Windows\system32\drivers\dam.sys
16:56:53.0294 0x04c8  dam - ok
16:56:53.0332 0x04c8  [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:56:53.0346 0x04c8  DcomLaunch - ok
16:56:53.0375 0x04c8  [ F4CCAADC2C78F57E4F16B24C9201CE22, B76A5C487A814CB986FE8CC398FB7493C9EAB9ACC933A3C35384FA447092EF00 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:56:53.0384 0x04c8  defragsvc - ok
16:56:53.0410 0x04c8  [ 0BC71D4D3B5883903C37BF4E13B0F0C5, C5EC2AD001FB7E72D3D12DBADFE01C308ACCB7426E0B90CCB3ECE2DE49D5E7D4 ] DeviceAssociationService C:\Windows\system32\das.dll
16:56:53.0430 0x04c8  DeviceAssociationService - ok
16:56:53.0441 0x04c8  [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
16:56:53.0445 0x04c8  DeviceInstall - ok
16:56:53.0456 0x04c8  [ 5DB26D7E0216D0BF364A81D3829AD7B9, FD786D530EA9ADBCB48782FE091E926505A83F2BF3B4181A3D4EDFAA991C4E5E ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
16:56:53.0459 0x04c8  Dfsc - ok
16:56:53.0483 0x04c8  [ 8B107F55FD61654A6C9F1B819AEC5FC4, 773B1B9D3583F17B7C89BDE1EC4487ABB0AE039DF4583F8746460425443DA291 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:56:53.0501 0x04c8  Dhcp - ok
16:56:53.0510 0x04c8  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\Windows\system32\drivers\disk.sys
16:56:53.0515 0x04c8  disk - ok
16:56:53.0521 0x04c8  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
16:56:53.0523 0x04c8  dmvsc - ok
16:56:53.0540 0x04c8  [ 5BAF7714E68F93515A937A3FA8587EF9, DD9296F75341EF96D514139DD8A8680B332E9B9D476368AB897FDA2D5D674E60 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:56:53.0553 0x04c8  Dnscache - ok
16:56:53.0572 0x04c8  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\Windows\System32\dot3svc.dll
16:56:53.0577 0x04c8  dot3svc - ok
16:56:53.0591 0x04c8  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\Windows\system32\dps.dll
16:56:53.0595 0x04c8  DPS - ok
16:56:53.0614 0x04c8  [ 78675536D8B6E2D96B59196C2BE3EBF2, 77F0D0135B8CD0D1CB429D5778794807813AE032D12A40C912CD2E1AF614F317 ] DragonSvc       C:\Program Files (x86)\Common Files\Nuance\dgnsvc.exe
16:56:53.0628 0x04c8  DragonSvc - ok
16:56:53.0633 0x04c8  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:56:53.0634 0x04c8  drmkaud - ok
16:56:53.0648 0x04c8  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
16:56:53.0653 0x04c8  DsmSvc - ok
16:56:53.0702 0x04c8  [ 13B160C1913F012BD1615EB1398D3779, 2B5786AAEC845156D28ABDAA77347844D39F33DF53F2C96ACEF38A668ADFF422 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:56:53.0743 0x04c8  DXGKrnl - ok
16:56:53.0761 0x04c8  [ FE96AA1A36E76588C80DF1040286DDE1, 86EED8A0B59CD1930E6282997537ED94333FC7D45E3FE5A4D82057E1C8E5C2CD ] eamonm          C:\Windows\system32\DRIVERS\eamonm.sys
16:56:53.0774 0x04c8  eamonm - ok
16:56:53.0782 0x04c8  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\Windows\System32\eapsvc.dll
16:56:53.0785 0x04c8  Eaphost - ok
16:56:53.0918 0x04c8  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
16:56:54.0038 0x04c8  ebdrv - ok
16:56:54.0060 0x04c8  [ FD4BC52A6978A50A81B01E2C74D8737E, 5F12870CB83E7821F12A27E9BB30A80C58A7E81C36DA972194EBF333A5C90E62 ] edevmon         C:\Windows\system32\DRIVERS\edevmon.sys
16:56:54.0074 0x04c8  edevmon - ok
16:56:54.0081 0x04c8  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\Windows\System32\lsass.exe
16:56:54.0085 0x04c8  EFS - ok
16:56:54.0096 0x04c8  [ 807BA90D47F8885C09E1D6AFBB706E18, A803FE639C9C87733CA73D8F6C04A8CEB28DC45EEEA6CEC01ED3D4124C8E48EA ] ehdrv           C:\Windows\system32\DRIVERS\ehdrv.sys
16:56:54.0103 0x04c8  ehdrv - ok
16:56:54.0139 0x04c8  [ 44C5F3F4B70D1C8D21C90E724E249796, 49B31B9E7E45A2E42BDA803D9CDC3837E0CB73A1E1E6DA00CF4282573D60526F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:56:54.0171 0x04c8  ehRecvr - ok
16:56:54.0190 0x04c8  [ 8EFB35A528A48D682C5322A5A07D4352, 5886991ECA449C48A89A3BB2950468EA7CCBD0998774C4C77A1194866827D267 ] ehSched         C:\Windows\ehome\ehsched.exe
16:56:54.0199 0x04c8  ehSched - ok
16:56:54.0207 0x04c8  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
16:56:54.0210 0x04c8  EhStorClass - ok
16:56:54.0218 0x04c8  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
16:56:54.0223 0x04c8  EhStorTcgDrv - ok
16:56:54.0291 0x04c8  [ 4CB575D97653FA91FFB02DA3105EB084, 59FB4D2485EEDBCC56D92C1F5DF3FEAE67D751F3AD7AEA7590F3C73107C829E8 ] ekrn            C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
16:56:54.0353 0x04c8  ekrn - ok
16:56:54.0368 0x04c8  [ 00A81DC02BA17FB4BFCFA026DC47458F, 1B95BD51727E66B023BA4F2C9F57E69496790582CB272D57FE4BC15BA64952D8 ] epfw            C:\Windows\system32\DRIVERS\epfw.sys
16:56:54.0377 0x04c8  epfw - ok
16:56:54.0383 0x04c8  [ 3B085449438B2BCFD09CC84A0B90D1DB, 098DD64CC446E3960F93C0CDA495069DB6E7D9397CAC857E09E9FA323F5D31B2 ] EpfwLWF         C:\Windows\system32\DRIVERS\EpfwLWF.sys
16:56:54.0386 0x04c8  EpfwLWF - ok
16:56:54.0394 0x04c8  [ 91D54747A07F56ADCE1B6CFD3387AF60, 6F27AC896EA360284F6868BA1FEB55AE9325C914E54D73AECC5EBC8328650D41 ] epfwwfp         C:\Windows\system32\DRIVERS\epfwwfp.sys
16:56:54.0398 0x04c8  epfwwfp - ok
16:56:54.0403 0x04c8  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\Windows\System32\drivers\errdev.sys
16:56:54.0404 0x04c8  ErrDev - ok
16:56:54.0439 0x04c8  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\Windows\system32\es.dll
16:56:54.0448 0x04c8  EventSystem - ok
16:56:54.0459 0x04c8  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:56:54.0463 0x04c8  exfat - ok
16:56:54.0474 0x04c8  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:56:54.0479 0x04c8  fastfat - ok
16:56:54.0522 0x04c8  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\Windows\system32\fxssvc.exe
16:56:54.0534 0x04c8  Fax - ok
16:56:54.0541 0x04c8  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\Windows\System32\drivers\fdc.sys
16:56:54.0543 0x04c8  fdc - ok
16:56:54.0548 0x04c8  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\Windows\system32\fdPHost.dll
16:56:54.0549 0x04c8  fdPHost - ok
16:56:54.0556 0x04c8  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\Windows\system32\fdrespub.dll
16:56:54.0558 0x04c8  FDResPub - ok
16:56:54.0567 0x04c8  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\Windows\system32\fhsvc.dll
16:56:54.0571 0x04c8  fhsvc - ok
16:56:54.0578 0x04c8  [ 957A7A8F5ACCAF23DD9DFF6DAA393CE5, 85D1AC25CF8056FF303930A7E18DE5F7C3AEE429272CB791BD6F81F1DAFB7D8A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:56:54.0580 0x04c8  FileInfo - ok
16:56:54.0586 0x04c8  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:56:54.0587 0x04c8  Filetrace - ok
16:56:54.0593 0x04c8  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
16:56:54.0595 0x04c8  flpydisk - ok
16:56:54.0619 0x04c8  [ 60D5067FCE6D9433D35E04C01D8538B3, 2D97E9E8FF18CF564DE8E70F68B56F0177DC6C0E9EEB7E1C58BBDF42456CB0D8 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:56:54.0625 0x04c8  FltMgr - ok
16:56:54.0636 0x04c8  [ FDD776FAC4159A2983940D1E411FE9F3, 3B147B4D3C5CC67117D65152FA8BD3A603728C92B023AE45CD166E6FF3F474C5 ] fltsrv          C:\Windows\system32\DRIVERS\fltsrv.sys
16:56:54.0642 0x04c8  fltsrv - ok
16:56:54.0714 0x04c8  [ 183CA7699474FDE235853967D1DA4D9B, 8FBD5997F1E39AFFD8C4322520DF4D2227279B5149017D825C188D7411BA99AF ] FontCache       C:\Windows\system32\FntCache.dll
16:56:54.0744 0x04c8  FontCache - ok
16:56:54.0754 0x04c8  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:56:54.0758 0x04c8  FontCache3.0.0.0 - ok
16:56:54.0764 0x04c8  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:56:54.0765 0x04c8  FsDepends - ok
16:56:54.0770 0x04c8  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:56:54.0772 0x04c8  Fs_Rec - ok
16:56:54.0804 0x04c8  [ 83E1F0983B02A6F8EC764D18E24ECF10, B5CA3FCB442697681C513FB37C6BB74D7A72B67DC65E2FCA93A7F9E81B63EAAC ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:56:54.0832 0x04c8  fvevol - ok
16:56:54.0838 0x04c8  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
16:56:54.0840 0x04c8  FxPPM - ok
16:56:54.0846 0x04c8  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:56:54.0850 0x04c8  gagp30kx - ok
16:56:54.0855 0x04c8  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:56:54.0858 0x04c8  GEARAspiWDM - ok
16:56:54.0863 0x04c8  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
16:56:54.0864 0x04c8  gencounter - ok
16:56:54.0873 0x04c8  [ FDA72810CA2F8409D9B31E833C448E34, FC24350E875D2AF2A41DB5EF0BFE4F876DADEACCC0B34B9B9C9B2CA185CBAE87 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
16:56:54.0876 0x04c8  GPIOClx0101 - ok
16:56:54.0938 0x04c8  [ 0BDE0FCF597E9B65600121EF54FF8340, DA5C96E84E05AD09251C82B4BFEDE274342409803730CEBF24EEAD0DCD42DA7E ] gpsvc           C:\Windows\System32\gpsvc.dll
16:56:54.0992 0x04c8  gpsvc - ok
16:56:55.0003 0x04c8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:56:55.0005 0x04c8  gupdate - ok
16:56:55.0013 0x04c8  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:56:55.0015 0x04c8  gupdatem - ok
16:56:55.0030 0x04c8  [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
16:56:55.0038 0x04c8  gusvc - ok
16:56:55.0060 0x04c8  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:56:55.0077 0x04c8  HdAudAddService - ok
16:56:55.0085 0x04c8  [ 03909BDBFF0DCACCABF2B2D4ADEE44DC, 42E631B23BB004F5C2128BAD334C21AB20FAD08AFED9E8191AE9373531BC73DD ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
16:56:55.0090 0x04c8  HDAudBus - ok
16:56:55.0095 0x04c8  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
16:56:55.0097 0x04c8  HidBatt - ok
16:56:55.0105 0x04c8  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
16:56:55.0111 0x04c8  HidBth - ok
16:56:55.0116 0x04c8  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
16:56:55.0119 0x04c8  hidi2c - ok
16:56:55.0125 0x04c8  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\Windows\System32\drivers\hidir.sys
16:56:55.0127 0x04c8  HidIr - ok
16:56:55.0133 0x04c8  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\Windows\system32\hidserv.dll
16:56:55.0134 0x04c8  hidserv - ok
16:56:55.0139 0x04c8  [ F31397220D9687E11EB448649AA6E038, 671ACEAA8E00E0D4ED7E33D06A4558121DA4F56EB94F1CBC16FEB2EF3852F7A5 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
16:56:55.0140 0x04c8  HidUsb - ok
16:56:55.0148 0x04c8  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:56:55.0152 0x04c8  hkmsvc - ok
16:56:55.0170 0x04c8  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:56:55.0176 0x04c8  HomeGroupListener - ok
16:56:55.0202 0x04c8  [ BE5F89BAFBD4272D5A0C0A37B97865ED, 2F80CE6D123FEED9FA7B00ACF7547FF77E0E6FDC5243942E83BE308C46D414C6 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:56:55.0211 0x04c8  HomeGroupProvider - ok
16:56:55.0218 0x04c8  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:56:55.0221 0x04c8  HpSAMD - ok
16:56:55.0228 0x04c8  [ DF2D5FB7E9964C7E626ABE86ADA8C108, A0229405777513A6A1C5BDAA19C9FB837671B7BDA8DE2E4BA54443D041E297C4 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
16:56:55.0231 0x04c8  HPSupportSolutionsFrameworkService - ok
16:56:55.0284 0x04c8  [ 3502776E366C913D49C0DA928AE3E6CB, 3FB452F640B78AEDFBC09188F25C566949660163732A180331226A93DB08F26C ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:56:55.0301 0x04c8  HTTP - ok
16:56:55.0307 0x04c8  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:56:55.0308 0x04c8  hwpolicy - ok
16:56:55.0313 0x04c8  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
16:56:55.0315 0x04c8  hyperkbd - ok
16:56:55.0319 0x04c8  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
16:56:55.0322 0x04c8  HyperVideo - ok
16:56:55.0329 0x04c8  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
16:56:55.0332 0x04c8  i8042prt - ok
16:56:55.0336 0x04c8  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
16:56:55.0338 0x04c8  iaLPSSi_GPIO - ok
16:56:55.0347 0x04c8  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
16:56:55.0351 0x04c8  iaLPSSi_I2C - ok
16:56:55.0384 0x04c8  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
16:56:55.0410 0x04c8  iaStorAV - ok
16:56:55.0431 0x04c8  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:56:55.0447 0x04c8  iaStorV - ok
16:56:55.0450 0x04c8  IEEtwCollectorService - ok
16:56:55.0510 0x04c8  [ B82255670D270B75D2D2F0F8747D1443, C40E151AC3FBF289456A4AD9E5744B314067ADA03FE729970410931904305F51 ] IKEEXT          C:\Windows\System32\ikeext.dll
16:56:55.0563 0x04c8  IKEEXT - ok
16:56:55.0761 0x04c8  [ BAE0B4B8746166EA5558157ACB180675, 2189D89CAAB2398C31204574A1163C9A8A2C8AA40854C9420D1D8C9A41B52A11 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
16:56:55.0932 0x04c8  IntcAzAudAddService - ok
16:56:55.0942 0x04c8  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:56:55.0944 0x04c8  intelide - ok
16:56:55.0950 0x04c8  [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep        C:\Windows\system32\drivers\intelpep.sys
16:56:55.0952 0x04c8  intelpep - ok
16:56:55.0962 0x04c8  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
16:56:55.0968 0x04c8  intelppm - ok
16:56:55.0973 0x04c8  [ 0895CDD7F1542FFCC5BBB560EC78BC16, 383D9FFE7FB313EA201DE877F3D48B5116FFA261EDEF5D0D0FE79F14E9682D25 ] IntuitUpdateServiceV4 C:\Program Files (x86)\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe
16:56:55.0975 0x04c8  IntuitUpdateServiceV4 - ok
16:56:55.0983 0x04c8  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:56:55.0985 0x04c8  IpFilterDriver - ok
16:56:56.0031 0x04c8  [ DFC4050D58565ADBEE793A8D4AEBDAE6, 89B900408F030CD45753A11D6AE6CBAB87E8B0E3F8401402D2D8713C045BF488 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:56:56.0076 0x04c8  iphlpsvc - ok
16:56:56.0083 0x04c8  [ 9949A3C7590B8C536C05312205079A82, 9276A09D5F910AE8358A96505AB3F66C514870944D58B63B71D5E96567D1E6BB ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
16:56:56.0086 0x04c8  IPMIDRV - ok
16:56:56.0098 0x04c8  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:56:56.0105 0x04c8  IPNAT - ok
16:56:56.0121 0x04c8  [ 835FC2EA0631B734BB06C12B0665F01D, B8A8B0148C6C3AFC40835B44E3D6508CB9EEE8AC430A7904711C8B51C2116A8D ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:56:56.0135 0x04c8  iPod Service - ok
16:56:56.0141 0x04c8  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:56:56.0142 0x04c8  IRENUM - ok
16:56:56.0147 0x04c8  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:56:56.0148 0x04c8  isapnp - ok
16:56:56.0164 0x04c8  [ 034D4BD9DC67C64F3A4C8A049B5173BF, C68AF5A5AD4092AA1C871BD38473AEF84EC3ECF4D06FBEB5F6C09972EF1B8A81 ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
16:56:56.0177 0x04c8  iScsiPrt - ok
16:56:56.0185 0x04c8  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
16:56:56.0189 0x04c8  kbdclass - ok
16:56:56.0194 0x04c8  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
16:56:56.0197 0x04c8  kbdhid - ok
16:56:56.0202 0x04c8  [ DB7A09BC90DF20F44F16F8B0F9ED3491, 2DF5E042284D61368A5801B2557351B2C4B1044AA6F966DF4DDCE7B453D1B9AE ] kbldfltr        C:\Windows\system32\drivers\kbldfltr.sys
16:56:56.0202 0x04c8  kbldfltr - ok
16:56:56.0207 0x04c8  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
16:56:56.0209 0x04c8  kdnic - ok
16:56:56.0215 0x04c8  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\Windows\system32\lsass.exe
16:56:56.0217 0x04c8  KeyIso - ok
16:56:56.0226 0x04c8  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:56:56.0232 0x04c8  KSecDD - ok
16:56:56.0244 0x04c8  [ 7296EA420134EAC390798B3232D066A4, 1F5D51EEFD389706660DFB4DB4BF3EC570BEC7097CEB5CAE70EFFE35C3255346 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:56:56.0253 0x04c8  KSecPkg - ok
16:56:56.0258 0x04c8  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:56:56.0259 0x04c8  ksthunk - ok
16:56:56.0280 0x04c8  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:56:56.0297 0x04c8  KtmRm - ok
16:56:56.0316 0x04c8  [ 27B58E16CF895AC1F1A97C04814C2239, D4336155331DDBF91952CDC6C446C68FF524F979099BA8D9B3A578758F97B2BE ] LanmanServer    C:\Windows\system32\srvsvc.dll
16:56:56.0323 0x04c8  LanmanServer - ok
16:56:56.0343 0x04c8  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:56:56.0350 0x04c8  LanmanWorkstation - ok
16:56:56.0383 0x04c8  [ EE289BD147FDFF95EF1B9BD65D3B974A, EFD9D0F6C73E7D2D52DBE2E2A8D3009BFB6AB24776A100CA528A8365002C6105 ] lfsvc           C:\Windows\System32\GeofenceMonitorService.dll
16:56:56.0410 0x04c8  lfsvc - ok
16:56:56.0417 0x04c8  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:56:56.0419 0x04c8  lltdio - ok
16:56:56.0439 0x04c8  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:56:56.0445 0x04c8  lltdsvc - ok
16:56:56.0450 0x04c8  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:56:56.0453 0x04c8  lmhosts - ok
16:56:56.0462 0x04c8  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:56:56.0466 0x04c8  LSI_SAS - ok
16:56:56.0474 0x04c8  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:56:56.0478 0x04c8  LSI_SAS2 - ok
16:56:56.0484 0x04c8  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys
16:56:56.0488 0x04c8  LSI_SAS3 - ok
16:56:56.0494 0x04c8  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
16:56:56.0498 0x04c8  LSI_SSS - ok
16:56:56.0537 0x04c8  [ B6B69FF200F68888A7FAFDF204D00C91, 4C9BA7B8646C74AE1E49F513EF426930C09969F29F1533D84D020B414BB1609B ] LSM             C:\Windows\System32\lsm.dll
16:56:56.0550 0x04c8  LSM - ok
16:56:56.0561 0x04c8  [ 5EF604B0698F4FA962778285E8C5F1F2, 0465BDAB7EFBE9CC648E7E736B0B8BE152BD2FAB0917F6306675B9039C77F454 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:56:56.0563 0x04c8  luafv - ok
16:56:56.0571 0x04c8  [ 9D2252224DF2213E1B44FA608E6A1D14, E2C644C5FDCCA7BD2547ADC110FDDB26EA91C734AB53CD4196266C746BFDFAA4 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:56:56.0576 0x04c8  Mcx2Svc - ok
16:56:56.0582 0x04c8  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\Windows\system32\drivers\megasas.sys
16:56:56.0585 0x04c8  megasas - ok
16:56:56.0610 0x04c8  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\Windows\system32\drivers\megasr.sys
16:56:56.0630 0x04c8  megasr - ok
16:56:56.0638 0x04c8  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\Windows\system32\mmcss.dll
16:56:56.0641 0x04c8  MMCSS - ok
16:56:56.0646 0x04c8  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\Windows\system32\drivers\modem.sys
16:56:56.0647 0x04c8  Modem - ok
16:56:56.0652 0x04c8  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\Windows\System32\drivers\monitor.sys
16:56:56.0653 0x04c8  monitor - ok
16:56:56.0658 0x04c8  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
16:56:56.0660 0x04c8  mouclass - ok
16:56:56.0665 0x04c8  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\Windows\System32\drivers\mouhid.sys
16:56:56.0666 0x04c8  mouhid - ok
16:56:56.0675 0x04c8  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:56:56.0678 0x04c8  mountmgr - ok
16:56:56.0690 0x04c8  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:56:56.0692 0x04c8  mpsdrv - ok
16:56:56.0737 0x04c8  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:56:56.0753 0x04c8  MpsSvc - ok
16:56:56.0765 0x04c8  [ 59DCEC7499095DE5AED741358037AE2D, 60C4CEBCAE27C121E9D63BD2BC3E5863A91ABC77616C56C10618273A8F9B6F61 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:56:56.0768 0x04c8  MRxDAV - ok
16:56:56.0789 0x04c8  [ 79B6F3DF7CDFD12159871FF71464F0CE, E01CDD5296237FB60D426784E1142B1AF2CEABDD7CB0B43C4798402C812A94D5 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:56:56.0807 0x04c8  mrxsmb - ok
16:56:56.0825 0x04c8  [ 295771B092D4F7FCF2B62F80CCD14320, 53655B5ABA43A6A9114FE545B88F84E52319B905B8393A51BD97678D3F94A178 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:56:56.0830 0x04c8  mrxsmb10 - ok
16:56:56.0843 0x04c8  [ AAF56E4E84D35411B4E446C445732DFE, 7AC41CAA0842AE4DA4EEF976202C58D7923DAA367F0D7E800D432323D5E7DE1A ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:56:56.0853 0x04c8  mrxsmb20 - ok
16:56:56.0863 0x04c8  [ 4E888019078AC363076A5433E89AA4F8, 3DEBDA290230B3E83F956C902C960E39463B7EFE86439199521356762769FD91 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
16:56:56.0866 0x04c8  MsBridge - ok
16:56:56.0879 0x04c8  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\Windows\System32\msdtc.exe
16:56:56.0890 0x04c8  MSDTC - ok
16:56:56.0900 0x04c8  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:56:56.0901 0x04c8  Msfs - ok
16:56:56.0906 0x04c8  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
16:56:56.0907 0x04c8  msgpiowin32 - ok
16:56:56.0911 0x04c8  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:56:56.0912 0x04c8  mshidkmdf - ok
16:56:56.0917 0x04c8  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
16:56:56.0918 0x04c8  mshidumdf - ok
16:56:56.0922 0x04c8  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:56:56.0925 0x04c8  msisadrv - ok
16:56:56.0937 0x04c8  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:56:56.0941 0x04c8  MSiSCSI - ok
16:56:56.0945 0x04c8  msiserver - ok
16:56:56.0953 0x04c8  [ D22AE5313F6B7EFDDD8C117B5501F4A3, 1937EEE33BF9C4485F172B10FB17AEF3F3B8978371307F49C3338D74D96A8389 ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll
16:56:56.0956 0x04c8  MsKeyboardFilter - ok
16:56:56.0961 0x04c8  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:56:56.0962 0x04c8  MSKSSRV - ok
16:56:56.0968 0x04c8  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
16:56:56.0970 0x04c8  MsLldp - ok
16:56:56.0974 0x04c8  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:56:56.0975 0x04c8  MSPCLOCK - ok
16:56:56.0979 0x04c8  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:56:56.0980 0x04c8  MSPQM - ok
16:56:57.0000 0x04c8  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:56:57.0014 0x04c8  MsRPC - ok
16:56:57.0021 0x04c8  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
16:56:57.0022 0x04c8  mssmbios - ok
16:56:57.0026 0x04c8  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:56:57.0027 0x04c8  MSTEE - ok
16:56:57.0032 0x04c8  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
16:56:57.0033 0x04c8  MTConfig - ok
16:56:57.0041 0x04c8  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\Windows\system32\Drivers\mup.sys
16:56:57.0043 0x04c8  Mup - ok
16:56:57.0049 0x04c8  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
16:56:57.0052 0x04c8  mvumis - ok
16:56:57.0075 0x04c8  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\Windows\system32\qagentRT.dll
16:56:57.0084 0x04c8  napagent - ok
16:56:57.0105 0x04c8  [ CF8B989D89D6807B887690F2CF24EFD9, 7A3ED124D8D7736F57CD687111C478A206422D117099B2F752B6D933D009BCAC ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:56:57.0123 0x04c8  NativeWifiP - ok
16:56:57.0135 0x04c8  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\Windows\System32\ncasvc.dll
16:56:57.0140 0x04c8  NcaSvc - ok
16:56:57.0150 0x04c8  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\Windows\System32\ncbservice.dll
16:56:57.0154 0x04c8  NcbService - ok
16:56:57.0159 0x04c8  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
16:56:57.0163 0x04c8  NcdAutoSetup - ok
16:56:57.0217 0x04c8  [ ED39D676080A1AEA755F1DEC1A8DF1A4, E413DA1113A51F3A68957147A50248AA98C0D365103D137D5AE8638C74E802D7 ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:56:57.0264 0x04c8  NDIS - ok
16:56:57.0271 0x04c8  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:56:57.0273 0x04c8  NdisCap - ok
16:56:57.0282 0x04c8  [ 9F1DA20E943BE7AA4ED5F3E1EBA78B37, CCD99962917BBE256F64AE14CCC9FD12433C72B5DB98E0E57CA8F212A11B3C8F ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
16:56:57.0284 0x04c8  NdisImPlatform - ok
16:56:57.0292 0x04c8  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:56:57.0293 0x04c8  NdisTapi - ok
16:56:57.0299 0x04c8  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:56:57.0301 0x04c8  Ndisuio - ok
16:56:57.0307 0x04c8  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
16:56:57.0308 0x04c8  NdisVirtualBus - ok
16:56:57.0318 0x04c8  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:56:57.0322 0x04c8  NdisWan - ok
16:56:57.0331 0x04c8  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
16:56:57.0335 0x04c8  NdisWanLegacy - ok
16:56:57.0342 0x04c8  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:56:57.0344 0x04c8  NDProxy - ok
16:56:57.0352 0x04c8  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
16:56:57.0355 0x04c8  Ndu - ok
16:56:57.0361 0x04c8  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:56:57.0363 0x04c8  NetBIOS - ok
16:56:57.0380 0x04c8  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:56:57.0392 0x04c8  NetBT - ok
16:56:57.0398 0x04c8  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\Windows\system32\lsass.exe
16:56:57.0401 0x04c8  Netlogon - ok
16:56:57.0416 0x04c8  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\Windows\System32\netman.dll
16:56:57.0422 0x04c8  Netman - ok
16:56:57.0452 0x04c8  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\Windows\System32\netprofmsvc.dll
16:56:57.0462 0x04c8  netprofm - ok
16:56:57.0579 0x04c8  [ 91307C4F3AA4E42404BC4F513CCD5430, FD829B655EFA813EA88AFFC0D8AB8E7924CC8456A063278F9490F055BC7874F0 ] netr28ux        C:\Windows\system32\DRIVERS\netr28ux.sys
16:56:57.0690 0x04c8  netr28ux - ok
16:56:57.0706 0x04c8  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:56:57.0716 0x04c8  NetTcpPortSharing - ok
16:56:57.0724 0x04c8  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\Windows\system32\DRIVERS\netvsc63.sys
16:56:57.0729 0x04c8  netvsc - ok
16:56:57.0749 0x04c8  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:56:57.0757 0x04c8  NlaSvc - ok
16:56:57.0764 0x04c8  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:56:57.0766 0x04c8  Npfs - ok
16:56:57.0771 0x04c8  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
16:56:57.0772 0x04c8  npsvctrig - ok
16:56:57.0777 0x04c8  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\Windows\system32\nsisvc.dll
16:56:57.0779 0x04c8  nsi - ok
16:56:57.0786 0x04c8  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:56:57.0790 0x04c8  nsiproxy - ok
16:56:57.0852 0x04c8  [ 725EF69B2DBEB7B33280019A556201BC, 210E816AA07AB4C294410B829A7165EEE056C72B4D846F11F18A9E80C4772BE5 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:56:57.0903 0x04c8  Ntfs - ok
16:56:57.0910 0x04c8  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\Windows\system32\drivers\Null.sys
16:56:57.0910 0x04c8  Null - ok
16:56:57.0923 0x04c8  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:56:57.0931 0x04c8  nvraid - ok
16:56:57.0945 0x04c8  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:56:57.0956 0x04c8  nvstor - ok
16:56:57.0966 0x04c8  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:56:57.0973 0x04c8  nv_agp - ok
16:56:57.0983 0x04c8  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:56:57.0990 0x04c8  ose - ok
16:56:58.0172 0x04c8  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:56:58.0345 0x04c8  osppsvc - ok
16:56:58.0369 0x04c8  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:56:58.0381 0x04c8  p2pimsvc - ok
16:56:58.0405 0x04c8  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\Windows\system32\p2psvc.dll
16:56:58.0414 0x04c8  p2psvc - ok
16:56:58.0423 0x04c8  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\Windows\System32\drivers\parport.sys
16:56:58.0425 0x04c8  Parport - ok
16:56:58.0433 0x04c8  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:56:58.0435 0x04c8  partmgr - ok
16:56:58.0460 0x04c8  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:56:58.0482 0x04c8  PcaSvc - ok
16:56:58.0498 0x04c8  [ C0D3F3BC1C84B4BA746D9847314C1164, 66FDF288ACAE021C5F63BCCC68D7534B4DB737E252AB16DFF746355D8BE7502D ] pci             C:\Windows\system32\drivers\pci.sys
16:56:58.0511 0x04c8  pci - ok
16:56:58.0516 0x04c8  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:56:58.0517 0x04c8  pciide - ok
16:56:58.0524 0x04c8  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:56:58.0527 0x04c8  pcmcia - ok
16:56:58.0533 0x04c8  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:56:58.0534 0x04c8  pcw - ok
16:56:58.0541 0x04c8  [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc             C:\Windows\system32\drivers\pdc.sys
16:56:58.0547 0x04c8  pdc - ok
16:56:58.0583 0x04c8  [ BA50CC0BD19004AAB88BE37338B6FA0D, 34D4720A621CCB4707F2EB929F6F44C317DBC6F055F7F34F3FAC68DFDAA00DEF ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:56:58.0616 0x04c8  PEAUTH - ok
16:56:58.0717 0x04c8  [ 084DE525DFE82AE7453DD527390FA110, 8216AE63AE740D97204CDED6543B66FC1FB55DB86D42FBA0EC629361C40F9EC0 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:56:58.0755 0x04c8  PeerDistSvc - ok
16:56:58.0805 0x04c8  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:56:58.0825 0x04c8  PerfHost - ok
16:56:58.0899 0x04c8  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\Windows\system32\pla.dll
16:56:58.0965 0x04c8  pla - ok
16:56:58.0978 0x04c8  [ 752A457320A946E03C3AA86C3ACD735E, 63946150581532D862F4220606E74FFC479209E1A36CD57AA78AC4AE34A26F49 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:56:58.0982 0x04c8  PlugPlay - ok
16:56:58.0987 0x04c8  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:56:58.0990 0x04c8  PNRPAutoReg - ok
16:56:59.0006 0x04c8  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:56:59.0014 0x04c8  PNRPsvc - ok
16:56:59.0035 0x04c8  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:56:59.0043 0x04c8  PolicyAgent - ok
16:56:59.0053 0x04c8  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\Windows\system32\umpo.dll
16:56:59.0056 0x04c8  Power - ok
16:56:59.0125 0x04c8  [ B7DB57A000D46D4DE75BC0C563E58072, 8183EB09DC4D44DFF027CA0AAA8C09921A14F088C1BC427B6ACA42340AAF69E6 ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
16:56:59.0185 0x04c8  PrintNotify - ok
16:56:59.0197 0x04c8  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\Windows\System32\drivers\processr.sys
16:56:59.0201 0x04c8  Processor - ok
16:56:59.0214 0x04c8  [ 8513A1E7AE4B9DC82C4B4F432C648A58, C0C629BF79722A12B35BDA6D5EF6FD2D96E013D80D8F17077E9137ED3988B452 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:56:59.0225 0x04c8  ProfSvc - ok
16:56:59.0236 0x04c8  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:56:59.0240 0x04c8  Psched - ok
16:56:59.0246 0x04c8  [ 87B04878A6D59D6C79251DC960C674C1, 3EB8DB0624E646F0A65D0381408D35CF9FDC5ABFC30DF6431F4070A8EB68447C ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
16:56:59.0250 0x04c8  PxHlpa64 - ok
16:56:59.0257 0x04c8  [ 4080E220EB20D87AE74D12570B8A8027, AD4D492A7F59E6D06D4EB42171C370967E2510B086EC373F96F6CDD8388DA263 ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
16:56:59.0260 0x04c8  QBCFMonitorService - ok
16:56:59.0266 0x04c8  [ 6BEE1814470DC12FA20C53DFC3C97EBB, 91E8C22E54A090966E9B96395392B2C03A32DB1AF8DB2289E2EA9460F0A76C0F ] QBFCService     C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
16:56:59.0271 0x04c8  QBFCService - ok
16:56:59.0324 0x04c8  [ 0C7B65C8743442A37152FCFAC5F7D16A, 7F237B886EAA69A0098204247DAA408E719DA23DDC3201723CCC1291FBC39E61 ] QBVSS           C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
16:56:59.0371 0x04c8  QBVSS - ok
16:56:59.0392 0x04c8  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\Windows\system32\qwave.dll
16:56:59.0399 0x04c8  QWAVE - ok
16:56:59.0405 0x04c8  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:56:59.0406 0x04c8  QWAVEdrv - ok
16:56:59.0411 0x04c8  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:56:59.0413 0x04c8  RasAcd - ok
16:56:59.0421 0x04c8  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\Windows\System32\rasauto.dll
16:56:59.0425 0x04c8  RasAuto - ok
16:56:59.0457 0x04c8  [ BF3B17016764F20F9D28CF1A8DC210C0, F64B410D444D4A3DFEE356EFC5B758781FA2612771EDCF72DB91D3120385D7DB ] RasMan          C:\Windows\System32\rasmans.dll
16:56:59.0468 0x04c8  RasMan - ok
16:56:59.0478 0x04c8  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:56:59.0480 0x04c8  RasPppoe - ok
16:56:59.0496 0x04c8  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:56:59.0507 0x04c8  rdbss - ok
16:56:59.0514 0x04c8  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
16:56:59.0515 0x04c8  rdpbus - ok
16:56:59.0529 0x04c8  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:56:59.0532 0x04c8  RDPDR - ok
16:56:59.0540 0x04c8  [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:56:59.0542 0x04c8  RdpVideoMiniport - ok
16:56:59.0556 0x04c8  [ 847C6A08912C3515807049C93E526D65, 74AFC58793B43E73614D2F49B19FB360091E208097696D9DF0B0354761E0B30F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:56:59.0568 0x04c8  rdyboost - ok
16:56:59.0619 0x04c8  [ 036746D54347FD2D0385668E2A4064E4, 7C670176176C86D6C3814367A6282A78F4E950F84DDEDA849829236C891F5BB9 ] ReFS            C:\Windows\system32\drivers\ReFS.sys
16:56:59.0635 0x04c8  ReFS - ok
16:56:59.0651 0x04c8  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:56:59.0656 0x04c8  RemoteAccess - ok
16:56:59.0669 0x04c8  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\Windows\system32\regsvc.dll
16:56:59.0673 0x04c8  RemoteRegistry - ok
16:56:59.0680 0x04c8  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:56:59.0686 0x04c8  RpcEptMapper - ok
16:56:59.0690 0x04c8  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\Windows\system32\locator.exe
16:56:59.0692 0x04c8  RpcLocator - ok
16:56:59.0726 0x04c8  [ 3FD5AE42EC87C6F532A931F96BE731DD, 8282823022391ACF65E23F461FCE5CAFFB5ADC077647FEF80B91BC4BC31EDFE2 ] RpcSs           C:\Windows\system32\rpcss.dll
16:56:59.0741 0x04c8  RpcSs - ok
16:56:59.0750 0x04c8  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:56:59.0752 0x04c8  rspndr - ok
16:56:59.0783 0x04c8  [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168         C:\Windows\system32\DRIVERS\Rt630x64.sys
16:56:59.0810 0x04c8  RTL8168 - ok
16:56:59.0816 0x04c8  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
16:56:59.0817 0x04c8  s3cap - ok
16:56:59.0822 0x04c8  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\Windows\system32\lsass.exe
16:56:59.0824 0x04c8  SamSs - ok
16:56:59.0843 0x04c8  [ CE57304512561458C6610C92A71C5C72, DAFF148FF36226F953E09BAE77F804401F9415D67AFAFA909C574F3E94AF40E4 ] SamsungRapidDiskFltr C:\Windows\system32\DRIVERS\SamsungRapidDiskFltr.sys
16:56:59.0858 0x04c8  SamsungRapidDiskFltr - ok
16:56:59.0868 0x04c8  [ D4F2ECFB2900CFDC0FE975049F30B98E, 9EEF8202FA628BAB97C99FC2DB8BCCDC01220E3FF81D966DEB5F3CAAD8953DDA ] SamsungRapidFSFltr C:\Windows\system32\DRIVERS\SamsungRapidFSFltr.sys
16:56:59.0875 0x04c8  SamsungRapidFSFltr - ok
16:56:59.0881 0x04c8  [ 1F0A636E89FE17882F62241B6AA143F9, 8BD1D4A7CC1D9E602833A5C114DDFEAE18B3BCDE7213DE894C2FF283EB282B28 ] SamsungRapidSvc C:\Windows\system32\RAPID\SamsungRapidSvc.exe
16:56:59.0883 0x04c8  SamsungRapidSvc - ok
16:56:59.0891 0x04c8  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:56:59.0894 0x04c8  sbp2port - ok
16:56:59.0905 0x04c8  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:56:59.0915 0x04c8  SCardSvr - ok
16:56:59.0926 0x04c8  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
16:56:59.0934 0x04c8  ScDeviceEnum - ok
16:56:59.0941 0x04c8  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:56:59.0943 0x04c8  scfilter - ok
16:56:59.0981 0x04c8  [ A95838FFFAEAA7500263D491575F7E0C, FEB79ECAE6D9AB0C29D9AFE12F60502A8357B3A382C0FACF4C6DA4852B6ECFA4 ] Schedule        C:\Windows\system32\schedsvc.dll
16:57:00.0018 0x04c8  Schedule - ok
16:57:00.0031 0x04c8  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:57:00.0035 0x04c8  SCPolicySvc - ok
16:57:00.0051 0x04c8  [ 2F9A3380B8C0380E5608E29C7AA66899, 56D1908437DD3791E54866819E39CC89586C5CD804F47B556416FA8642D88CBB ] sdbus           C:\Windows\System32\drivers\sdbus.sys
16:57:00.0056 0x04c8  sdbus - ok
16:57:00.0065 0x04c8  [ 4EAF4DCF9DBD9A56952A58F56D61C005, BCA42FD1553569D3603008CC97D88FD309E87F8A8B1522A4287A0E81CAE6C294 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
16:57:00.0067 0x04c8  sdstor - ok
16:57:00.0071 0x04c8  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:57:00.0074 0x04c8  secdrv - ok
16:57:00.0078 0x04c8  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\Windows\system32\seclogon.dll
16:57:00.0082 0x04c8  seclogon - ok
16:57:00.0089 0x04c8  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\Windows\System32\sens.dll
16:57:00.0092 0x04c8  SENS - ok
16:57:00.0107 0x04c8  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:57:00.0112 0x04c8  SensrSvc - ok
16:57:00.0120 0x04c8  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
16:57:00.0122 0x04c8  SerCx - ok
16:57:00.0134 0x04c8  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
16:57:00.0142 0x04c8  SerCx2 - ok
16:57:00.0148 0x04c8  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\Windows\System32\drivers\serenum.sys
16:57:00.0149 0x04c8  Serenum - ok
16:57:00.0155 0x04c8  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\Windows\System32\drivers\serial.sys
16:57:00.0157 0x04c8  Serial - ok
16:57:00.0162 0x04c8  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\Windows\System32\drivers\sermouse.sys
16:57:00.0163 0x04c8  sermouse - ok
16:57:00.0187 0x04c8  [ 441E6FF1F34D7A942946DB42A15FB519, A16BA505B74C7A2ADD08BD5B50728C2AD55062E0ABABAD7E3EE0EB97F3725523 ] SessionEnv      C:\Windows\system32\sessenv.dll
16:57:00.0202 0x04c8  SessionEnv - ok
16:57:00.0207 0x04c8  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
16:57:00.0209 0x04c8  sfloppy - ok
16:57:00.0234 0x04c8  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:57:00.0254 0x04c8  SharedAccess - ok
16:57:00.0285 0x04c8  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:57:00.0298 0x04c8  ShellHWDetection - ok
16:57:00.0314 0x04c8  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:57:00.0317 0x04c8  SiSRaid2 - ok
16:57:00.0325 0x04c8  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:57:00.0331 0x04c8  SiSRaid4 - ok
16:57:00.0335 0x04c8  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\Windows\System32\smphost.dll
16:57:00.0338 0x04c8  smphost - ok
16:57:00.0357 0x04c8  [ FBE0201AB61E18934C812C34D31A4403, 549E51FC11CCA30B21970C90F4799D6CB94481CDC623B8C319F16DAEFC8A190B ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
16:57:00.0369 0x04c8  snapman - ok
16:57:00.0374 0x04c8  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:57:00.0376 0x04c8  SNMPTRAP - ok
16:57:00.0396 0x04c8  [ F6EBE514D13ECE7EDC23440039CDF9AB, B58072BE7E4E52704C7B1D52DD49F469542B4B015C6D560369EEC1B046AFB254 ] spaceport       C:\Windows\system32\drivers\spaceport.sys
16:57:00.0403 0x04c8  spaceport - ok
16:57:00.0412 0x04c8  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
16:57:00.0414 0x04c8  SpbCx - ok
16:57:00.0458 0x04c8  [ FE0CB40F36D3FCDD3A1B312EF72C38D5, 42EA50869752164764DFE8CE7E1C247BE8342A0C15F39158DC808E8A692C460F ] Spooler         C:\Windows\System32\spoolsv.exe
16:57:00.0473 0x04c8  Spooler - ok
16:57:00.0707 0x04c8  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\Windows\system32\sppsvc.exe
16:57:00.0912 0x04c8  sppsvc - ok
16:57:00.0948 0x04c8  [ 2B78788A1485F9B99A578A299DF42C02, A87183A9B13585C9E850437A45237105D39D7F3212ADB079D6AB430B67A59643 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:57:00.0969 0x04c8  srv - ok
16:57:01.0002 0x04c8  [ C1AE59C0B0817236EC083A91C396005A, 26F05ECB44C300DA8F333B115727C31C5C8252C83F37F0AE7DFF89B267599CDF ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:57:01.0033 0x04c8  srv2 - ok
16:57:01.0048 0x04c8  [ 77195C32175FC63D6054EBA5A066D727, 22F5D26809BC9288021620040FC7B7BB76708D434C863B3C0C20F73200C1C6A9 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:57:01.0058 0x04c8  srvnet - ok
16:57:01.0073 0x04c8  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:57:01.0079 0x04c8  SSDPSRV - ok
16:57:01.0091 0x04c8  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:57:01.0096 0x04c8  SstpSvc - ok
16:57:01.0102 0x04c8  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:57:01.0104 0x04c8  stexstor - ok
16:57:01.0109 0x04c8  [ 2A997C64F9B2584D81FA6749FE36A887, D26F5BC591ED46B96B2ACFDF555C2BF42F4915A22B12E4139ACEF7DE7AC303A7 ] StillCam        C:\Windows\system32\DRIVERS\serscan.sys
16:57:01.0111 0x04c8  StillCam - ok
16:57:01.0150 0x04c8  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\Windows\System32\wiaservc.dll
16:57:01.0185 0x04c8  stisvc - ok
16:57:01.0195 0x04c8  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\Windows\system32\drivers\storahci.sys
16:57:01.0197 0x04c8  storahci - ok
16:57:01.0204 0x04c8  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
16:57:01.0208 0x04c8  storflt - ok
16:57:01.0215 0x04c8  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\Windows\system32\drivers\stornvme.sys
16:57:01.0216 0x04c8  stornvme - ok
16:57:01.0231 0x04c8  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\Windows\system32\storsvc.dll
16:57:01.0234 0x04c8  StorSvc - ok
16:57:01.0243 0x04c8  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:57:01.0259 0x04c8  storvsc - ok
16:57:01.0278 0x04c8  [ 03618F935379614837F915D04C45FC0E, 9CC0CBA7AFC58E7F921C13FA3F5269714F1F827535A311E11EA48689C4D539DE ] storvsp         C:\Windows\System32\drivers\storvsp.sys
16:57:01.0288 0x04c8  storvsp - ok
16:57:01.0303 0x04c8  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\Windows\system32\svsvc.dll
16:57:01.0306 0x04c8  svsvc - ok
16:57:01.0320 0x04c8  [ 9CFEFD62D86DABFAC12D1C5ED72BA6A4, 1FFE4371450F53FD774CA0349CC28F559695761C18759CEB04933FDF2FD98F65 ] SWDUMon         C:\Windows\system32\DRIVERS\SWDUMon.sys
16:57:01.0332 0x04c8  SWDUMon - ok
16:57:01.0344 0x04c8  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\Windows\System32\drivers\swenum.sys
16:57:01.0346 0x04c8  swenum - ok
16:57:01.0374 0x04c8  [ 99453C649DC4B0BE6D062B701CD2917F, 6E136BBF46E2E07635BEDC307A7F2E7C653DB45C055419DAB4878BF657B82058 ] swprv           C:\Windows\System32\swprv.dll
16:57:01.0398 0x04c8  swprv - ok
16:57:01.0638 0x04c8  [ 0882D89CD2FF3F4DA04FB76289204235, C9FACE631AC1EED5BF878A31A7D3D4C672408B2182A07ACE88388C8540926E3C ] syncagentsrv    C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
16:57:01.0870 0x04c8  syncagentsrv - ok
16:57:01.0944 0x04c8  [ E45DA7CBBA34510C8B9473AD7D4FFD0B, 89C2AED757D86C276D78D29D94DCBF9C1B6A244A2153EC85CCB2E86C5F078387 ] SysMain         C:\Windows\system32\sysmain.dll
16:57:02.0004 0x04c8  SysMain - ok
16:57:02.0024 0x04c8  [ D65B1C952AEB864C2BAC7A770B17ECCE, 3EFAAFFF73390D9CB660E0F42B305512396CF66ED06E4A20ED67E8722FB4355B ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
16:57:02.0041 0x04c8  SystemEventsBroker - ok
16:57:02.0054 0x04c8  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\Windows\System32\TabSvc.dll
16:57:02.0058 0x04c8  TabletInputService - ok
16:57:02.0079 0x04c8  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:57:02.0087 0x04c8  TapiSrv - ok
16:57:02.0178 0x04c8  [ ECC68BD5347BDE9631EE68274858A41F, F5274400312C776C13BCBC333AF20C29163FEBC7879E9C6AD45774A0C39F8A52 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:57:02.0264 0x04c8  Tcpip - ok
16:57:02.0358 0x04c8  [ ECC68BD5347BDE9631EE68274858A41F, F5274400312C776C13BCBC333AF20C29163FEBC7879E9C6AD45774A0C39F8A52 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:57:02.0400 0x04c8  TCPIP6 - ok
16:57:02.0411 0x04c8  [ 33A7D83EEB15431773A6E186CFAABA21, AC5100A76CA44BFADF4A54FDB09FF5D2FF13B9F8482DC1AE86C8C27005F77B0F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:57:02.0413 0x04c8  tcpipreg - ok
16:57:02.0481 0x04c8  [ 07330E30921C70E9D9B416EE43A06349, 398500C12E685BCF732C7F80A2C0E95181E5377A0E6C14CF9A3EE8580083A556 ] tdrpman         C:\Windows\system32\DRIVERS\tdrpman.sys
16:57:02.0535 0x04c8  tdrpman - ok
16:57:02.0546 0x04c8  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:57:02.0551 0x04c8  tdx - ok
16:57:02.0556 0x04c8  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
16:57:02.0557 0x04c8  terminpt - ok
16:57:02.0611 0x04c8  [ 2C77831737491F4D684D315B95C62883, 90A2574A281F19646CFCDA5FDF40063220058290D2D5523AD91B7E709EC36D3D ] TermService     C:\Windows\System32\termsrv.dll
16:57:02.0660 0x04c8  TermService - ok
16:57:02.0667 0x04c8  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\Windows\system32\themeservice.dll
16:57:02.0670 0x04c8  Themes - ok
16:57:02.0677 0x04c8  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\Windows\system32\mmcss.dll
16:57:02.0679 0x04c8  THREADORDER - ok
16:57:02.0724 0x04c8  [ DE604462206F7D8C203F767F425FCA8D, 149FBF6367C45415B939A9B1A7A10DA7A5E19F28CE533BCBE2B20DA4B78F8645 ] tib             C:\Windows\system32\DRIVERS\tib.sys
16:57:02.0762 0x04c8  tib - ok
16:57:02.0775 0x04c8  [ 3C29FB9FC9B4C511AD69DC50257FEC75, 4906DADE076FD363C53044C805602EEA4D0EF6E92041C693E1BED2286614B36E ] tib_mounter     C:\Windows\system32\DRIVERS\tib_mounter.sys
16:57:02.0783 0x04c8  tib_mounter - ok
16:57:02.0801 0x04c8  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
16:57:02.0808 0x04c8  TimeBroker - ok
16:57:02.0817 0x04c8  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\Windows\system32\drivers\tpm.sys
16:57:02.0821 0x04c8  TPM - ok
16:57:02.0831 0x04c8  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\Windows\System32\trkwks.dll
16:57:02.0840 0x04c8  TrkWks - ok
16:57:02.0848 0x04c8  [ DA56FFA46030E6FEB215E3D5DAA65B11, 36B5EED8F9044475000362DBFC8A2A40B889ED46382CCEFB6BA04BE0442F98C2 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:57:02.0850 0x04c8  TrustedInstaller - ok
16:57:02.0859 0x04c8  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:57:02.0861 0x04c8  TsUsbFlt - ok
16:57:02.0866 0x04c8  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
16:57:02.0867 0x04c8  TsUsbGD - ok
16:57:02.0878 0x04c8  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:57:02.0882 0x04c8  tunnel - ok
16:57:02.0888 0x04c8  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:57:02.0892 0x04c8  uagp35 - ok
16:57:02.0899 0x04c8  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
16:57:02.0901 0x04c8  UASPStor - ok
16:57:02.0913 0x04c8  [ 5D1B430EA11064C56E7C8F84B90DEB6A, 874D9EE807F16321C4857030F9C18D2B925785FD4BB7ED047AF9535BF3F30D84 ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
16:57:02.0916 0x04c8  UCX01000 - ok
16:57:02.0939 0x04c8  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:57:02.0945 0x04c8  udfs - ok
16:57:02.0972 0x04c8  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
16:57:02.0973 0x04c8  UEFI - ok
16:57:02.0982 0x04c8  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:57:02.0987 0x04c8  UI0Detect - ok
16:57:02.0993 0x04c8  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:57:02.0998 0x04c8  uliagpkx - ok
16:57:03.0003 0x04c8  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\Windows\System32\drivers\umbus.sys
16:57:03.0005 0x04c8  umbus - ok
16:57:03.0009 0x04c8  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\Windows\System32\drivers\umpass.sys
16:57:03.0010 0x04c8  UmPass - ok
16:57:03.0029 0x04c8  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\Windows\System32\umrdp.dll
16:57:03.0036 0x04c8  UmRdpService - ok
16:57:03.0062 0x04c8  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\Windows\System32\upnphost.dll
16:57:03.0072 0x04c8  upnphost - ok
16:57:03.0079 0x04c8  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\System32\Drivers\usbaapl64.sys
16:57:03.0083 0x04c8  USBAAPL64 - ok
16:57:03.0093 0x04c8  [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
16:57:03.0095 0x04c8  usbaudio - ok
16:57:03.0105 0x04c8  [ 433ECDE01A52691FA7ACA51C10C09B70, B896296A3F8EF2AF3AC5F0091B9848156608586F1E10A95D70700BAB51E8062A ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
16:57:03.0108 0x04c8  usbccgp - ok
16:57:03.0116 0x04c8  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
16:57:03.0119 0x04c8  usbcir - ok
16:57:03.0127 0x04c8  [ 5477D6E27C7D266EF8C152B9A25ADE5E, FEE81677D284A78A0C0FB60F887A952CFC759AE78B01206D73F59FE33612C519 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
16:57:03.0129 0x04c8  usbehci - ok
16:57:03.0151 0x04c8  [ DF56C2C04EFA328D7A66B69007130266, 719316EB25A8C7B82C7941D1C5B964CC4EDA4A997732F481526DE7356F6FC0D8 ] usbhub          C:\Windows\System32\drivers\usbhub.sys
16:57:03.0158 0x04c8  usbhub - ok
16:57:03.0181 0x04c8  [ C0E33820326199CE3CFD3B9F27F81D99, C67F55E7DD6F7FC4A96256A14A805D39C5CE8725FD86675C6C860B3DE8E4DBC3 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
16:57:03.0189 0x04c8  USBHUB3 - ok
16:57:03.0196 0x04c8  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
16:57:03.0197 0x04c8  usbohci - ok
16:57:03.0202 0x04c8  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
16:57:03.0203 0x04c8  usbprint - ok
16:57:03.0210 0x04c8  [ F04D164C4168701A4E7835607722E5F1, 6F743CF2CF73945B4A4B1C4402744BC2FE1624F1346C194493AD2F7110F9EB35 ] usbscan         C:\Windows\System32\drivers\usbscan.sys
16:57:03.0214 0x04c8  usbscan - ok
16:57:03.0225 0x04c8  [ 4628B415A84EA9D4D396A56F1D0CB6C6, 430F4C819BF958430FD0DEEFD5BA07F210E0541634811993090C039CB602622F ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
16:57:03.0228 0x04c8  USBSTOR - ok
16:57:03.0233 0x04c8  [ BA4FA655E0FC577DB7436FC963932CE4, 3336FDECD4AEC6B316D4C0803E22A12719EBEDD1A9427C0DF5D3B263BE600EE6 ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
16:57:03.0235 0x04c8  usbuhci - ok
16:57:03.0253 0x04c8  [ D22EB844EB57D016CC34178AC86456DF, C83440A44EA9CC3D1041AB966FFC423DD17FB25B42BA41BB36C109D16723BD5E ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
16:57:03.0260 0x04c8  USBXHCI - ok
16:57:03.0266 0x04c8  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\Windows\system32\lsass.exe
16:57:03.0268 0x04c8  VaultSvc - ok
16:57:03.0273 0x04c8  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:57:03.0274 0x04c8  vdrvroot - ok
16:57:03.0334 0x04c8  [ CFBAD6B48EDFAA0828A52646B7C4C08D, DDC7D607E784CE6FB5BC62E53E6309EB583D74425E6D3FC8F3D3EC705D69C075 ] vds             C:\Windows\System32\vds.exe
16:57:03.0357 0x04c8  vds - ok
16:57:03.0371 0x04c8  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
16:57:03.0379 0x04c8  VerifierExt - ok
16:57:03.0406 0x04c8  [ 041D3EF364E624DBB2703A64A5AADF89, 94A52A35AFDD09EBCC4266BD6D44014AAB4BBDFD3F6E8C997A1CA49DFB48F60D ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
16:57:03.0416 0x04c8  vhdmp - ok
16:57:03.0421 0x04c8  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:57:03.0423 0x04c8  viaide - ok
16:57:03.0440 0x04c8  [ 3CE922E34DB12D9F3C0EA856BC09687C, E50A1885FBC775E49614989ECFEA4ACBBDDA16AF459CC5361EED9E23CC7CD42C ] Vid             C:\Windows\System32\drivers\Vid.sys
16:57:03.0452 0x04c8  Vid - ok
16:57:03.0462 0x04c8  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:57:03.0468 0x04c8  vmbus - ok
16:57:03.0472 0x04c8  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
16:57:03.0474 0x04c8  VMBusHID - ok
16:57:03.0485 0x04c8  [ 68F8C26DEA2D42E8DEC0778943433C80, 81E8F9D62815F94952CEEABD0689473CC330F7890F66872DCD35A43C06ED33CD ] vmbusr          C:\Windows\System32\drivers\vmbusr.sys
16:57:03.0493 0x04c8  vmbusr - ok
16:57:03.0519 0x04c8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
16:57:03.0540 0x04c8  vmicguestinterface - ok
16:57:03.0563 0x04c8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
16:57:03.0573 0x04c8  vmicheartbeat - ok
16:57:03.0596 0x04c8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
16:57:03.0605 0x04c8  vmickvpexchange - ok
16:57:03.0629 0x04c8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\Windows\System32\ICSvc.dll
16:57:03.0639 0x04c8  vmicrdv - ok
16:57:03.0662 0x04c8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
16:57:03.0672 0x04c8  vmicshutdown - ok
16:57:03.0695 0x04c8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\Windows\System32\ICSvc.dll
16:57:03.0704 0x04c8  vmictimesync - ok
16:57:03.0728 0x04c8  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\Windows\System32\ICSvc.dll
16:57:03.0738 0x04c8  vmicvss - ok
16:57:03.0745 0x04c8  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:57:03.0747 0x04c8  volmgr - ok
16:57:03.0772 0x04c8  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:57:03.0779 0x04c8  volmgrx - ok
16:57:03.0796 0x04c8  [ C85C075DE5B6D0FE116043054DE8EE02, 8BB01DA3D63562F51BCCB5CC996F99A5CB0A8F89900045BBCF4115FD521A9706 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:57:03.0802 0x04c8  volsnap - ok
16:57:03.0810 0x04c8  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\Windows\System32\drivers\vpci.sys
16:57:03.0816 0x04c8  vpci - ok
16:57:03.0822 0x04c8  [ ADBE96C33D1A5BB1BBAF90B4BC84F523, 6E9C9ED3D51E4B6E494D42ECA6F824AD86D676C12C39BBE6B8BD96366BCB02DA ] vpcivsp         C:\Windows\System32\drivers\vpcivsp.sys
16:57:03.0826 0x04c8  vpcivsp - ok
16:57:03.0839 0x04c8  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:57:03.0847 0x04c8  vsmraid - ok
16:57:03.0913 0x04c8  [ D51D7EF1EA5ED2BB01E9D07E6E0533BC, E31118F42B316C9B6C9072D9628AA2801FC2519F1A46C9ED167843CD67183C19 ] VSS             C:\Windows\system32\vssvc.exe
16:57:03.0939 0x04c8  VSS - ok
16:57:03.0965 0x04c8  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
16:57:03.0980 0x04c8  VSTXRAID - ok
16:57:03.0986 0x04c8  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
16:57:03.0987 0x04c8  vwifibus - ok
16:57:03.0994 0x04c8  [ 6B26AD573CCDD5209DF4397438B76354, 2C8AC314EC471F6D8B0B12D49D621360A10DCADA7C52E73596730C954FF89FCF ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
16:57:03.0996 0x04c8  vwififlt - ok
16:57:04.0001 0x04c8  [ 0B48E0DFB44EE475F4FD8A8EE599AF30, 28271D4CA0C642304CD8826A3D514F44E3391F9D6D07A1595BB30CE65E7E3494 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
16:57:04.0002 0x04c8  vwifimp - ok
16:57:04.0021 0x04c8  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\Windows\system32\w32time.dll
16:57:04.0041 0x04c8  W32Time - ok
16:57:04.0045 0x04c8  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
16:57:04.0047 0x04c8  WacomPen - ok
16:57:04.0119 0x04c8  [ 92BF4B3EBD6F163B94B7A20C65E7B698, 293E6FEFA862690A7B75443D6495144313D759971B98B495A99AAB0D2CF1F350 ] wbengine        C:\Windows\system32\wbengine.exe
16:57:04.0146 0x04c8  wbengine - ok
16:57:04.0177 0x04c8  [ 58F28103889817C93E5B5AFABC87E709, 547381B10DAC8A3CC16FB5DE6DF2FDA3CCD8F45DF581959FFF6E30875419B011 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:57:04.0202 0x04c8  WbioSrvc - ok
16:57:04.0229 0x04c8  [ 772365894F14652D376B2E5030179DC9, 3D917CED040456EB269BE2B82315CEAE3589FEC016DAE37FC5BC1C3D66DE3140 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
16:57:04.0249 0x04c8  Wcmsvc - ok
16:57:04.0270 0x04c8  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:57:04.0293 0x04c8  wcncsvc - ok
16:57:04.0299 0x04c8  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:57:04.0302 0x04c8  WcsPlugInService - ok
16:57:04.0329 0x04c8  [ 75600442AF2C8303FC7199E360334873, C6290875C6C010E8754487BD74365874E316313B697D7ABBF4E85AA3C41ABE1A ] WDBackup        C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
16:57:04.0351 0x04c8  WDBackup - ok
16:57:04.0357 0x04c8  [ 241895E8A9C158DF86E12FDD21033A32, 46D4BF6319271AC33EC1C7283053B91D38A3D5443F3F749E640253FDC2819679 ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
16:57:04.0360 0x04c8  WdBoot - ok
16:57:04.0368 0x04c8  [ C50B1A397F35908EEA98C964E77A6A97, FBA623EE0C5A72836ED80C0ACA163461E9B1B601B99C35B9EEE36B07B7F0839E ] WDDriveService  C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
16:57:04.0375 0x04c8  WDDriveService - ok
16:57:04.0411 0x04c8  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:57:04.0426 0x04c8  Wdf01000 - ok
16:57:04.0440 0x04c8  [ C52148456E0F6EAD9E903020A79207FC, 7DEB2D7D09FB005A79E88FA8766B7EBE0396F0CA084D72269156874C727FBFF4 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
16:57:04.0449 0x04c8  WdFilter - ok
16:57:04.0458 0x04c8  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
16:57:04.0462 0x04c8  WdiServiceHost - ok
16:57:04.0469 0x04c8  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:57:04.0473 0x04c8  WdiSystemHost - ok
16:57:04.0480 0x04c8  [ 57F22324FAAF92ADF957B281E88F1743, 46CFBA6529E28756D73A00A211C3D72E9854E035EE6F2520066E074697A9745E ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
16:57:04.0484 0x04c8  WdNisDrv - ok
16:57:04.0486 0x04c8  WdNisSvc - ok
16:57:04.0505 0x04c8  [ 6588A957873326361AB1CAC4E76F8394, BE17880CEDCAE5ED3B983443E3777842646A3E48B661422A717656E11F6DBA94 ] WebClient       C:\Windows\System32\webclnt.dll
16:57:04.0511 0x04c8  WebClient - ok
16:57:04.0528 0x04c8  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:57:04.0534 0x04c8  Wecsvc - ok
16:57:04.0541 0x04c8  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
16:57:04.0553 0x04c8  WEPHOSTSVC - ok
16:57:04.0560 0x04c8  [ AA1315B87D9B2E39584165318A59F15D, CD19608BE1F6B7AECF802F8D2DD4FCBDAA29450ED37F7D040DC6453924C7B0FE ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:57:04.0564 0x04c8  wercplsupport - ok
16:57:04.0573 0x04c8  [ 22B4C24AB921BFF7827FFBCA1F4E1BB3, B634F7018097A8E4EECDD9F032DF6A0FB6817FC3DEB92BCE6A0965B5D71D8DFA ] WerSvc          C:\Windows\System32\WerSvc.dll
16:57:04.0577 0x04c8  WerSvc - ok
16:57:04.0586 0x04c8  [ 2E3E82D7B1076B90F4E228A8EF17B261, 0492F8E0BE09DAD9922E85CCA7BCB1548CB9DC5841F46174A0657FDC59AAC3CE ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
16:57:04.0593 0x04c8  WFPLWFS - ok
16:57:04.0600 0x04c8  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\Windows\System32\wiarpc.dll
16:57:04.0606 0x04c8  WiaRpc - ok
16:57:04.0612 0x04c8  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:57:04.0615 0x04c8  WIMMount - ok
16:57:04.0617 0x04c8  WinDefend - ok
16:57:04.0658 0x04c8  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
16:57:04.0674 0x04c8  WinHttpAutoProxySvc - ok
16:57:04.0690 0x04c8  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:57:04.0697 0x04c8  Winmgmt - ok
16:57:04.0816 0x04c8  [ 690C3FC5C9DBD6B9AEDF8341EC720E41, 0E4412BB6DEB5761F7A889FD90821FAFD7C6E173F449EAB3A0446BA653D6AD0C ] WinRM           C:\Windows\system32\WsmSvc.dll
16:57:04.0863 0x04c8  WinRM - ok
16:57:04.0878 0x04c8  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:57:04.0880 0x04c8  WinUsb - ok
16:57:04.0949 0x04c8  [ 728D3349FAB251B0265EFA55C67DCA2D, 676D2C9CF16DD333BF99FD5EC31B8F53E5295553E19BED5CF94620EE59345777 ] WlanSvc         C:\Windows\System32\wlansvc.dll
16:57:05.0011 0x04c8  WlanSvc - ok
16:57:05.0094 0x04c8  [ C2838466CCC44FAEF2C3D4C1E5971ECB, 4CA5B1632302E59E754CEA5B3CA3977D8CE9DC7B2E8673B450BBF0D646AD7AD8 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
16:57:05.0173 0x04c8  wlidsvc - ok
16:57:05.0182 0x04c8  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
16:57:05.0183 0x04c8  WmiAcpi - ok
16:57:05.0196 0x04c8  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:57:05.0200 0x04c8  wmiApSrv - ok
16:57:05.0205 0x04c8  WMPNetworkSvc - ok
16:57:05.0282 0x04c8  [ E178371E493BF17EB90FE71ABA8BE643, E6F96C62D6AD1FE65D54F6799ABC32D34DE8C6EBFF8A297CA3142EF096112FCE ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
16:57:05.0358 0x04c8  workfolderssvc - ok
16:57:05.0367 0x04c8  [ E746BCDBA2E02CF6B8D6B26FB167FBE0, 8875BBE444A33E0C477EF1A3899955501B7E0A9479CA8AA20DD8E6AA0D9A71E6 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
16:57:05.0368 0x04c8  wpcfltr - ok
16:57:05.0373 0x04c8  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:57:05.0375 0x04c8  WPCSvc - ok
16:57:05.0383 0x04c8  [ D27491CFCE452C154CECFA155AD0EBC8, 1F3F74C253E3B07DE7EFE27C34DD9AF08617C7B03BB44C2902F69BA9DA3F21F2 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:57:05.0390 0x04c8  WPDBusEnum - ok
16:57:05.0394 0x04c8  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
16:57:05.0396 0x04c8  WpdUpFltr - ok
16:57:05.0401 0x04c8  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:57:05.0402 0x04c8  ws2ifsl - ok
16:57:05.0414 0x04c8  [ 5CFA46C4ACB2FD70572017052378DAE5, F09134C4433A9E174889A16F29EA6628045B21BE4FA85275ACFD24D5DFB0D937 ] wscsvc          C:\Windows\System32\wscsvc.dll
16:57:05.0419 0x04c8  wscsvc - ok
16:57:05.0424 0x04c8  [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice  C:\Windows\System32\drivers\WSDPrint.sys
16:57:05.0424 0x04c8  WSDPrintDevice - ok
16:57:05.0429 0x04c8  [ D38297814FB6E33655342D869996E617, 3701892EEF87D1BF0E73322B90678802B6EA4AFA9CBF6111F39611C79DBA96C7 ] WSDScan         C:\Windows\System32\drivers\WSDScan.sys
16:57:05.0431 0x04c8  WSDScan - ok
16:57:05.0434 0x04c8  WSearch - ok
16:57:05.0608 0x04c8  [ D8E3A4701376CCFD0BE542D745FA4809, CF267B5507BD02EEB6BF051534E900D592682D11159A6A13C38AE70B3CCC081F ] WSService       C:\Windows\System32\WSService.dll
16:57:05.0758 0x04c8  WSService - ok
16:57:05.0926 0x04c8  [ 86D0BF4F792053A50D6EE43DFA5837A5, 5705DAB9C5896F10757630439AC8FEAB5754251C6C90E9E8449220A65D1E95D5 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:57:06.0080 0x04c8  wuauserv - ok
16:57:06.0096 0x04c8  [ 2FEAE33E9B2B56104596E1BA444405A9, 0A142F50E06F6224B9CB36B3CE62BE0B36DE8B8DB9F9E05D287DFB884CC7826E ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:57:06.0099 0x04c8  WudfPf - ok
16:57:06.0113 0x04c8  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
16:57:06.0118 0x04c8  WUDFRd - ok
16:57:06.0131 0x04c8  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFSensorLP    C:\Windows\System32\drivers\WUDFRd.sys
16:57:06.0136 0x04c8  WUDFSensorLP - ok
16:57:06.0147 0x04c8  [ BB73CBC65AABC4EA0A5C6A1474A0A743, D644B3C6A7202CADDADB3B68FE1B2A7C76B023FE58F667EED4D538C1F4A65D64 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:57:06.0151 0x04c8  wudfsvc - ok
16:57:06.0165 0x04c8  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
16:57:06.0169 0x04c8  WUDFWpdFs - ok
16:57:06.0183 0x04c8  [ 19240C13F526125554B5370566F21A0A, 1DD88B092451CEC309A390319342BB4D36CE938BBE6D09127BBAA53960DD8E94 ] WUDFWpdMtp      C:\Windows\system32\DRIVERS\WUDFRd.sys
16:57:06.0187 0x04c8  WUDFWpdMtp - ok
16:57:06.0217 0x04c8  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:57:06.0228 0x04c8  WwanSvc - ok
16:57:06.0252 0x04c8  [ DD0042F0C3B606A6A8B92D49AFB18AD6, 8D3BE4C93D02AF5F42EC46AF598D6DA40C61D467CB2FEE5E222F9C1E7A84B852 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
16:57:06.0267 0x04c8  YahooAUService - ok
16:57:06.0276 0x04c8  ================ Scan global ===============================
16:57:06.0281 0x04c8  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\Windows\system32\basesrv.dll
16:57:06.0296 0x04c8  [ 599F1244C60E3D6C28A8DA7FBA7A2C13, 992E5EB5E3ED6172DC986085532224A148A09A4E9A4DED9556F34533EE98E4D0 ] C:\Windows\system32\winsrv.dll
16:57:06.0307 0x04c8  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\Windows\system32\sxssrv.dll
16:57:06.0327 0x04c8  [ B4B610BBCB002EC478C6FD80CF915697, CE22B87A7C7C0D325CE66FB97E7318B4A41EE0BD14D902A410126A1EBBEAA6FB ] C:\Windows\system32\services.exe
16:57:06.0336 0x04c8  [ Global ] - ok
16:57:06.0337 0x04c8  ================ Scan MBR ==================================
16:57:06.0340 0x04c8  [ 52862B953D62F1CA71B6DC2AAEB7C4E4 ] \Device\Harddisk0\DR0
16:57:06.0590 0x04c8  \Device\Harddisk0\DR0 - ok
16:57:06.0623 0x04c8  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
16:57:06.0799 0x04c8  \Device\Harddisk1\DR1 - ok
16:57:06.0800 0x04c8  ================ Scan VBR ==================================
16:57:06.0802 0x04c8  [ 93416C4F4919DCB9E8913CB43345747D ] \Device\Harddisk0\DR0\Partition1
16:57:06.0804 0x04c8  \Device\Harddisk0\DR0\Partition1 - ok
16:57:06.0807 0x04c8  [ E04254F4A23DA1D783F06E08B7F1507F ] \Device\Harddisk0\DR0\Partition2
16:57:06.0810 0x04c8  \Device\Harddisk0\DR0\Partition2 - ok
16:57:06.0812 0x04c8  [ A743E2A3B1D5A4F7E3BBEA2148523E26 ] \Device\Harddisk1\DR1\Partition1
16:57:06.0922 0x04c8  \Device\Harddisk1\DR1\Partition1 - ok
16:57:06.0925 0x04c8  [ 331AD7A489D8FCBC4A026D96E6D0A95C ] \Device\Harddisk1\DR1\Partition2
16:57:06.0990 0x04c8  \Device\Harddisk1\DR1\Partition2 - ok
16:57:06.0990 0x04c8  ================ Scan generic autorun ======================
16:57:06.0997 0x04c8  [ 6E0BDFBEEED65B017F2E4C2C910B0520, 54D798C2E2804DCDB84E9650EA4A032C669B10C586B396D5505F16235D83882C ] C:\Windows\system32\rundll32.exe
16:57:07.0000 0x04c8  Logitech Download Assistant - ok
16:57:07.0655 0x04c8  [ 16438B000BF56F2CD7FDB5E6C3B38C7E, 32D6E69E6367D3ADB2189DA89103CB9910CE791EFB0879515DDD380A96D85BAE ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
16:57:08.0239 0x04c8  RtHDVCpl - ok
16:57:08.0273 0x04c8  [ 320681DF28D82CDCA7E3EED0846625DB, 7F709ADFB0FE36BEC857A928E9CB29BB5B6C0BAD98824D0302C7BB7185100CB9 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
16:57:08.0290 0x04c8  AdobeAAMUpdater-1.0 - ok
16:57:08.0298 0x04c8  [ 0C9E4FD7C897B58CA1E888A01B44FF64, 6393A5E815BD2EB92C2C2AC90DA04CADB45EDF9BE6B170B637AD067BEC05CD6E ] C:\Program Files (x86)\RAPID\CacheFilter\SamsungRapidApp.exe
16:57:08.0304 0x04c8  SamsungRapidApp - ok
16:57:08.0550 0x04c8  [ 5A2772DA712495F2A60348DE9F32D0A6, 8AAFB215D5EB5262B5606ACF6127A3F508361B15FD56AFE0D936DB25BFAE0886 ] C:\Program Files\ESET\ESET Smart Security\egui.exe
16:57:08.0769 0x04c8  egui - ok
16:57:08.0800 0x04c8  [ 62C16443C5997CD83DC382720F07C255, 89EFBCFADA01B431F4CC19AB2EFC5E56288A17BC9FB15A1209A0CBFE44B8D022 ] C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe
16:57:08.0820 0x04c8  Acronis Scheduler2 Service - ok
16:57:08.0940 0x04c8  [ 1732333C3C81A6B713355F052C060958, 28FB2A1ED2511994C0EA38A93374CA7293466F03D957968C5C8FACE94B64A4BE ] C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe
16:57:09.0053 0x04c8  WD Quick View - ok
16:57:09.0077 0x04c8  [ 5B6E8E09BE6401A7E022F52FDFCB2FF8, 471C556CF9405BBB380A8CEFE945C126B954B7C94F79CC72441B51F80141FC5E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
16:57:09.0094 0x04c8  SunJavaUpdateSched - ok
16:57:09.0149 0x04c8  [ F78E0F53F2C2A78EE8E2EABA72AAC8FE, 38E827F823871CF9A77E91C18CE71335D535F96725D0F375209ED830AB6286B6 ] C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe
16:57:09.0195 0x04c8  KeePass 2 PreLoad - ok
16:57:09.0295 0x04c8  [ 6F5C9785C05D23DABE407653C12B8A05, 3EC2AACE39D47BC3C34CC8F53DA652A5FFE3A09304AB77AFCF17D4E5CC10F82E ] C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe
16:57:09.0389 0x04c8  ISUSPM - ok
16:57:09.0417 0x04c8  [ 63C0C3C8A846CB655CD512234959196F, 1827892481A4670D3EAA055C22BDF5BB6EE41597EF0E8F076E42482FA4FC6401 ] C:\Program Files (x86)\Nuance\NaturallySpeaking12\Ereg\Ereg.exe
16:57:09.0441 0x04c8  DNS7reminder - ok
16:57:09.0490 0x04c8  [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
16:57:09.0535 0x04c8  Adobe ARM - ok
16:57:09.0635 0x04c8  [ 2FCA1E8A973E696DE994B17772A266CB, D51CE10387627E920D7D2DF2CA174293F93F4DD64FF226F9C25456517393A02E ] C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe
16:57:09.0729 0x04c8  Intuit SyncManager - ok
16:57:09.0737 0x04c8  [ CE5C9977DA751DDC30952AC4DCBCA788, 295172C4681E9AC27121122CDD2BA6F2A62435917A083CC8490D584CA0164BE6 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
16:57:09.0742 0x04c8  HP Software Update - ok
16:57:09.0839 0x04c8  [ 6F5C9785C05D23DABE407653C12B8A05, 3EC2AACE39D47BC3C34CC8F53DA652A5FFE3A09304AB77AFCF17D4E5CC10F82E ] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe
16:57:09.0873 0x04c8  ISUSPM - ok
16:57:09.0980 0x04c8  [ 22F7B9670AD770C7ED7F4738204C8E5C, 7B793AC094CB1B073419B5DAE09DFBB8EBED03D29301F490AA76EA0667613438 ] C:\Program Files\HP\HP Photosmart 7520 series\Bin\ScanToPCActivationApp.exe
16:57:10.0076 0x04c8  HP Photosmart 7520 series (NET) - ok
16:57:10.0100 0x04c8  [ 7668EDA2640A41559B2A09604CC9374D, E263464E11B597DB423653B09944A7AF9303FFC2AD67557683EE9DBAAAE4A8B3 ] C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe
16:57:10.0117 0x04c8  HydraVisionDesktopManager - ok
16:57:10.0328 0x04c8  [ 127CD00925C1A2B759765C5B9600DE30, 22A9710B84873622EB1027552F3E7CC3E054FF367010149822F476A143556335 ] C:\PROGRA~2\Yahoo!\Messenger\YahooMessenger.exe
16:57:10.0508 0x04c8  Messenger (Yahoo!) - ok
16:57:10.0523 0x04c8  Waiting for KSN requests completion. In queue: 72
16:57:11.0524 0x04c8  Waiting for KSN requests completion. In queue: 72
16:57:12.0525 0x04c8  Waiting for KSN requests completion. In queue: 72
16:57:13.0540 0x04c8  AV detected via SS2: ESET Smart Security 7.0, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 7.0.302.0 ), 0x41000 ( enabled : updated )
16:57:13.0542 0x04c8  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.4.304.0 ), 0x60100 ( disabled : updated )
16:57:13.0543 0x04c8  FW detected via SS2: ESET Personal firewall, C:\Program Files\ESET\ESET Smart Security\ecmd.exe ( 7.0.302.0 ), 0x41010 ( enabled )
16:57:15.0979 0x04c8  ============================================================
16:57:15.0979 0x04c8  Scan finished
16:57:15.0979 0x04c8  ============================================================
16:57:15.0985 0x0970  Detected object count: 0
16:57:15.0985 0x0970  Actual detected object count: 0
17:11:45.0333 0x0584  Deinitialize success


#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:46 PM

Posted 18 June 2014 - 07:35 PM

Ok run Adwcleaner
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 samone4

samone4
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:08:46 PM

Posted 18 June 2014 - 08:01 PM

# AdwCleaner v3.212 - Report created 18/06/2014 at 20:57:10
# Updated 05/06/2014 by Xplode
# Operating System : Windows 8.1 Pro with Media Center  (64 bits)
# Username : John - OFFICE-PC
# Running from : C:\Users\John\Downloads\AdwCleaner (3).exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.16518
 
 
-\\ Google Chrome v35.0.1916.153
 
[ File : C:\Users\John\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
Found [Startup_urls] : hxxp://search.conduit.com/?ctid=CT3314759&octid=EB_ORIGINAL_CTID&SearchSource=55&CUI=&UM=2&UP=SPBBE3DF70-6E8F-4735-82D9-610987A634F1&SSPV=
 
*************************
 
AdwCleaner[R0].txt - [925 octets] - [18/06/2014 17:06:10]
AdwCleaner[R1].txt - [846 octets] - [18/06/2014 20:57:10]
AdwCleaner[S0].txt - [987 octets] - [18/06/2014 17:19:15]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [964 octets] ##########


#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,199 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:46 PM

Posted 18 June 2014 - 08:12 PM

Well that's clean enough.. lets disable extentions and add ons and see if it stops.

Temporarily disable extensions
 
Enable or Disable an Internet Explorer Toolbar and Extension Add-on
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users