Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Laptop typing continuous plus signs


  • Please log in to reply
10 replies to this topic

#1 D45ist

D45ist

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 21 July 2014 - 11:34 AM

Toshiba Satellite C855 - Windows 8

 

Initially some keys would not type then the laptop would type continuous plus signs in every available  box.  Thinking it was the keyboard I plugged in an external USB keyboard. Everything was fine for a week, then the plus signs returned.

 

I think it may be a virus or malware although Malware Bytes and MSE find nothing.

 

What do you suggest?



BC AdBot (Login to Remove)

 


#2 D45ist

D45ist
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 22 July 2014 - 02:55 PM

Also, no response to control alt delete - task mgr does not pop up. Cannot use control panel. when I click anything i.e. devices it gives me the message "no search results found". I think It's paying attention to the plus signs in the search box and not the mouse.

 

Started laptop today. No plus signs for the first 10 minutes. then they were back.

 

Since the key is a plus sign, the plus key and the shift would have to be stuck. Odds? This began with many random keys not working at all.


Edited by D45ist, 22 July 2014 - 03:17 PM.


#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:50 PM

Posted 25 July 2014 - 12:26 PM

Hello please run these .

Please download Rkill by Grinler and save it to your desktop.
  • Link 1
  • Link 2
    • Double-click on the Rkill desktop icon to run the tool.
    • If using Vista, right-click on it and Run As Administrator.
    • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
    • If not, delete the file, then download and use the one provided in Link 2.
    • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
    • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.
>>

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

Edited by boopme, 25 July 2014 - 12:27 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 D45ist

D45ist
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 25 July 2014 - 06:52 PM

Rkill 2.6.7 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2014 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 07/25/2014 02:58:28 PM in x64 mode.
Windows Version: Windows 8

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* Windows Defender Disabled

[HKLM\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware" = dword:00000001

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* No issues found.

Program finished at: 07/25/2014 02:59:30 PM
Execution time: 0 hours(s), 1 minute(s), and 2 seconds(s)
----------------------------------------------------------





MiniToolBox by Farbar Version: 21-07-2014
Ran by Moxie (administrator) on 25-07-2014 at 14:59:54
Running from "C:\Users\Moxie\Downloads"
Microsoft Windows 8 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC = Wi-Fi (Connected)
Qualcomm Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.30) = Ethernet (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : glaptop
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
Physical Address. . . . . . . . . : 20-16-D8-D2-09-A5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
Physical Address. . . . . . . . . : 20-16-D8-D2-09-A5
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::150b:f985:7f80:ffb1%13(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.4(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Friday, July 25, 2014 2:51:28 PM
Lease Expires . . . . . . . . . . : Friday, July 25, 2014 3:51:34 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 320870104
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-F3-6E-91-00-8C-FA-46-81-92
DNS Servers . . . . . . . . . . . : 65.32.5.111
65.32.5.112
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Ethernet:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Qualcomm Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.30)
Physical Address. . . . . . . . . : 00-8C-FA-46-81-92
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{61D34245-6F4E-4102-A57A-533BF7975154}:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft 6to4 Adapter
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fb:3c48:c61:3f57:fffb(Preferred)
Link-local IPv6 Address . . . . . : fe80::3c48:c61:3f57:fffb%17(Preferred)
Default Gateway . . . . . . . . . : ::
NetBIOS over Tcpip. . . . . . . . : Disabled
Server: dns-redir-lb-01.tampabay.rr.com
Address: 65.32.5.111

Name: google.com
Addresses: 2607:f8b0:400d:c06::8b
74.125.29.102
74.125.29.113
74.125.29.138
74.125.29.139
74.125.29.100
74.125.29.101


Pinging google.com [64.233.171.101] with 32 bytes of data:
Reply from 64.233.171.101: bytes=32 time=41ms TTL=42
Reply from 64.233.171.101: bytes=32 time=40ms TTL=42

Ping statistics for 64.233.171.101:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 40ms, Maximum = 41ms, Average = 40ms
Server: dns-redir-lb-01.tampabay.rr.com
Address: 65.32.5.111

Name: yahoo.com
Addresses: 98.139.183.24
206.190.36.45
98.138.253.109


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=51ms TTL=44
Reply from 98.139.183.24: bytes=32 time=52ms TTL=44

Ping statistics for 98.139.183.24:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 51ms, Maximum = 52ms, Average = 51ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
14...20 16 d8 d2 09 a5 ......Microsoft Wi-Fi Direct Virtual Adapter
13...20 16 d8 d2 09 a5 ......Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
12...00 8c fa 46 81 92 ......Qualcomm Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.30)
1...........................Software Loopback Interface 1
15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
16...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
17...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.4 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
192.168.0.0 255.255.255.0 On-link 192.168.0.4 281
192.168.0.4 255.255.255.255 On-link 192.168.0.4 281
192.168.0.255 255.255.255.255 On-link 192.168.0.4 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.4 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.4 281
===========================================================================
Persistent Routes:
None

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
17 306 ::/0 On-link
1 306 ::1/128 On-link
17 306 2001::/32 On-link
17 306 2001:0:5ef5:79fb:3c48:c61:3f57:fffb/128
On-link
13 281 fe80::/64 On-link
17 306 fe80::/64 On-link
13 281 fe80::150b:f985:7f80:ffb1/128
On-link
17 306 fe80::3c48:c61:3f57:fffb/128
On-link
1 306 ff00::/8 On-link
17 306 ff00::/8 On-link
13 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/25/2014 02:54:02 PM) (Source: Application Error) (User: )
Description: Faulting application name: ccSvcHst.exe, version: 12.3.3.2, time stamp: 0x519ab0d3
Faulting module name: SYMHTMDX.DLL, version: 7.4.0.10, time stamp: 0x51a45fb3
Exception code: 0xc0000005
Fault offset: 0x000390cc
Faulting process id: 0x1014
Faulting application start time: 0xccSvcHst.exe0
Faulting application path: ccSvcHst.exe1
Faulting module path: ccSvcHst.exe2
Report Id: ccSvcHst.exe3
Faulting package full name: ccSvcHst.exe4
Faulting package-relative application ID: ccSvcHst.exe5


System errors:
=============
Error: (07/25/2014 02:51:17 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 2:41:55 PM on ‎7/‎25/‎2014 was unexpected.

Error: (07/25/2014 02:41:55 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 10:29:58 PM on ‎7/‎24/‎2014 was unexpected.

Error: (07/24/2014 09:05:00 PM) (Source: Service Control Manager) (User: )
Description: The Windows Modules Installer service did not shut down properly after receiving a preshutdown control.

Error: (07/24/2014 08:47:10 PM) (Source: Service Control Manager) (User: )
Description: The Windows Modules Installer service did not shut down properly after receiving a preshutdown control.

Error: (07/24/2014 08:23:25 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (07/24/2014 08:21:25 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: {752073A1-23F2-4396-85F0-8FDB879ED0ED}

Error: (07/23/2014 08:32:04 PM) (Source: disk) (User: )
Description: The driver detected a controller error on \Device\Harddisk0\DR0.

Error: (07/22/2014 05:05:29 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service hung on starting.


Microsoft Office Sessions:
=========================
Error: (07/25/2014 02:54:02 PM) (Source: Application Error)(User: )
Description: ccSvcHst.exe12.3.3.2519ab0d3SYMHTMDX.DLL7.4.0.1051a45fb3c0000005000390cc101401cfa852d3ad6eb4C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exeC:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\SYMHTMDX.DLL2fd83b8d-1446-11e4-be7a-008cfa468192



=========================== Installed Programs ============================
Adobe Reader X (10.1.3) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AA1000000001}) (Version: 10.1.3 - Adobe Systems Incorporated)
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.6 - Atheros Communications Inc.)
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
Gardenscapes: Mansion Makeover (x32 Version: 3.0.2.32 - WildTangent) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.2828 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.2.1001 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.24.388.1 - Intel Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT110 (x32 Version: 16.4.1108.0727 - Microsoft) Hidden
MSVCRT110_amd64 (Version: 16.4.1108.0727 - Microsoft) Hidden
Norton Anti-Theft (HKLM-x32\...\NAT) (Version: 1.10.0.9 - Symantec Corporation)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 20.5.0.28 - Symantec Corporation)
Norton Online Backup (HKLM-x32\...\{40A66DF6-22D3-44B5-A7D3-83B118A2C0DC}) (Version: 2.2.3.45 - Symantec Corporation)
Norton Online Backup ARA (x32 Version: 4.1.0.11 - Symantec Corporation) Hidden
Norton PC Checkup (HKLM-x32\...\NortonPCCheckup) (Version: 2.0.18.15 - Symantec Corporation)
Norton Security Dashboard (HKLM-x32\...\NortonSD) (Version: 1.1.1.9 - Symantec Corporation)
Origin (HKLM-x32\...\Origin) (Version: 9.0.15.60 - Electronic Arts, Inc.)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Photo Gallery (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6794 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.8400.39030 - Realtek Semiconductor Corp.)
Realtek WLAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173001290E16}) (Version: 2.00.0020 - REALTEK Semiconductor Corp.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.2.10.5 - Synaptics Incorporated)
Toshiba App Place (HKLM-x32\...\{ED3CBA78-488F-4E8C-B33F-8E3BF4DDB4D2}) (Version: 1.0.6.3 - Toshiba)
TOSHIBA Application Installer (HKLM-x32\...\{970472D0-F5F9-4158-A6E3-1AE49EFEF2D3}) (Version: 9.0.1.4 - TOSHIBA)
TOSHIBA Audio Enhancement (HKLM\...\{F2DE0088-CF05-4DAB-AC4D-9D2C4D657456}) (Version: 1.0.2.8 - TOSHIBA Corporation)
Toshiba Book Place (HKLM-x32\...\{24B45620-22B6-4E4A-B836-FF30A0B0404E}) (Version: 3.1.9534 - K-NFB Reading Technology, Inc.)
TOSHIBA Desktop Assist (HKLM\...\{95CCACF0-010D-45F0-82BF-858643D8BC02}) (Version: 1.00.08.6402 - Toshiba Corporation)
TOSHIBA eco Utility (HKLM\...\{5944B9D4-3C2A-48DE-931E-26B31714A2F7}) (Version: 2.0.0.6415 - Toshiba Corporation)
TOSHIBA Function Key (HKLM\...\{16562A90-71BC-41A0-B890-D91B0C267120}) (Version: 1.00.6425.01 - Toshiba Corporation)
TOSHIBA HDD Accelerator (HKLM\...\{DB4D9937-0B14-4EF1-BF9A-BB7E3B9DCB04}) (Version: 1.1.0001 - Toshiba Corporation)
TOSHIBA Password Utility (HKLM-x32\...\{B1786E63-2127-42C9-95A3-146E5F727BF1}) (Version: v1.0.0.8 - TOSHIBA Corporation)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.8.17.640104 - Toshiba Corporation)
TOSHIBA Quality Application (HKLM-x32\...\{E69992ED-A7F6-406C-9280-1C156417BC49}) (Version: 1.0.8 - TOSHIBA)
TOSHIBA Recovery Media Creator (HKLM-x32\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.2.0.54043005 - Toshiba Corporation)
TOSHIBA Resolution+ Plug-in for Windows Media Player (HKLM-x32\...\{6CB76C9D-80C2-4CB3-A4CD-D96B239E3F94}) (Version: 1.2.2.00 - TOSHIBA Corporation)
TOSHIBA Service Station (HKLM\...\{B8C8422F-01F1-4791-B084-047AAFF9BFCC}) (Version: 2.4.4 - TOSHIBA)
TOSHIBA System Driver (HKLM-x32\...\{1E6A96A1-2BAB-43EF-8087-30437593C66C}) (Version: 1.00.0014 - Toshiba Corporation)
TOSHIBA System Settings (HKLM-x32\...\{05A55927-DB9B-4E26-BA44-828EBFF829F0}) (Version: 1.00.0002.32002 - Toshiba Corporation)
TOSHIBA User's Guide (HKLM-x32\...\{3384E1D9-3F18-4A98-8655-180FEF0DFC02}) (Version: 1.00.02 - TOSHIBA)
TOSHIBA VIDEO PLAYER (HKLM\...\{FF07604E-C860-40E9-A230-E37FA41F103A}) (Version: 5.1.0.12-A - Toshiba Corporation)
TOSHIBARegistration (HKLM-x32\...\{5AF550B4-BB67-4E7E-82F1-2C4300279050}) (Version: 1.1.6 - TOSHIBA)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Vacation Quest™ - Australia (x32 Version: 3.0.2.32 - WildTangent) Hidden
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.3.0 - WildTangent)
WildTangent Games App (Toshiba Games) (x32 Version: 4.0.9.7 - WildTangent) Hidden
Windows Live Communications Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3503.0728 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 16.4.3503.0728 - Microsoft Corporation) Hidden
Youda Jewel Shop (x32 Version: 3.0.2.32 - WildTangent) Hidden

========================= Devices: ================================

Name: Numeric data processor
Description: Numeric data processor
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft Wi-Fi Direct Virtual Adapter
Description: Microsoft Wi-Fi Direct Virtual Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vwifimp

Name: System board
Description: System board
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: 3rd Gen Core processor DRAM Controller - 0154
Description: 3rd Gen Core processor DRAM Controller - 0154
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service:

Name: Microsoft ACPI-Compliant Control Method Battery
Description: Microsoft ACPI-Compliant Control Method Battery
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: CmBatt

Name: ACPI Fan
Description: ACPI Fan
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Intel® Core™ i3-3120M CPU @ 2.50GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: Intel® Core™ i3-3120M CPU @ 2.50GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: Intel® Core™ i3-3120M CPU @ 2.50GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: Intel® Core™ i3-3120M CPU @ 2.50GHz
Description: Intel Processor
Class Guid: {50127dc3-0f36-415e-a6cc-4cb3be910b65}
Manufacturer: Intel
Service: intelppm

Name: Root Print Queue
Description: Local Print Queue
Class Guid: {1ed2bbf9-11f0-4084-b21f-ad83a8e6dcdc}
Manufacturer: Microsoft
Service:

Name: Volume Manager
Description: Volume Manager
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: volmgr

Name: Intel® 82802 Firmware Hub Device
Description: Intel® 82802 Firmware Hub Device
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service:

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: USB Root Hub (xHCI)
Description: USB Root Hub (xHCI)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB HUBs)
Service: USBHUB3

Name: Microsoft Basic Display Driver
Description: Microsoft Basic Display Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard display types)
Service: BasicDisplay

Name: ACPI Thermal Zone
Description: ACPI Thermal Zone
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 2 - 1E12
Description: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 2 - 1E12
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: USB Input Device
Description: USB Input Device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service: HidUsb

Name: USB Composite Device
Description: USB Composite Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbccgp

Name: WAN Miniport (IP)
Description: WAN Miniport (IP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: WAN Miniport (SSTP)
Description: WAN Miniport (SSTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasSstp

Name: WAN Miniport (IKEv2)
Description: WAN Miniport (IKEv2)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasAgileVpn

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: Standard PS/2 Keyboard
Description: Standard PS/2 Keyboard
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: i8042prt

Name: High precision event timer
Description: High precision event timer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: System timer
Description: System timer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Composite Bus Enumerator
Description: Composite Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: CompositeBus

Name: Microsoft Virtual Drive Enumerator
Description: Microsoft Virtual Drive Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: vdrvroot

Name: Qualcomm Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.30)
Description: Qualcomm Atheros AR8162/8166/8168 PCI-E Fast Ethernet Controller (NDIS 6.30)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros
Service: L1C

Name: Microsoft Storage Spaces Controller
Description: Microsoft Storage Spaces Controller
Class Guid: {4d36e97b-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: spaceport

Name: TOSHIBA Firmware Linkage Driver
Description: TOSHIBA Firmware Linkage Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: TOSHIBA
Service: FwLnk

Name: Intel® 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E2D
Description: Intel® 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E2D
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbehci

Name: Microsoft Kernel Debug Network Adapter
Description: Microsoft Kernel Debug Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: kdnic

Name: Microsoft XPS Document Writer
Description: Local Print Queue
Class Guid: {1ed2bbf9-11f0-4084-b21f-ad83a8e6dcdc}
Manufacturer: Microsoft
Service:

Name: Generic volume shadow copy
Description: Generic volume shadow copy
Class Guid: {533c5b84-ec70-11d2-9505-00c04f79deaf}
Manufacturer: Microsoft
Service:

Name: Toshiba Hotkey Driver
Description: Toshiba Hotkey Driver
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Toshiba
Service: Thotkey

Name: ACPI Lid
Description: ACPI Lid
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: WAN Miniport (IPv6)
Description: WAN Miniport (IPv6)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: HID-compliant consumer control device
Description: HID-compliant consumer control device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:

Name: Microphone (Realtek High Definition Audio)
Description: Audio Endpoint
Class Guid: {c166523c-fe0c-4a94-a586-f1a80cfbbf3e}
Manufacturer: Microsoft
Service:

Name: HID-compliant device
Description: HID-compliant device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service:

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: Generic USB Hub
Description: Generic USB Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Generic USB Hub)
Service: usbhub

Name: HID-compliant consumer control device
Description: HID-compliant consumer control device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: Microsoft
Service:

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: HID Keyboard Device
Description: HID Keyboard Device
Class Guid: {4d36e96b-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard keyboards)
Service: kbdhid

Name: Realtek High Definition Audio
Description: Realtek High Definition Audio
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: IntcAzAudAddService

Name: UMBus Root Bus Enumerator
Description: UMBus Root Bus Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: umbus

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: Microsoft Device Association Root Enumerator
Description: Generic software device
Class Guid: {62f9c741-b25a-46ce-b54c-9bccce08b6f2}
Manufacturer: Microsoft
Service:

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: Intel® HD Graphics 4000
Description: Intel® HD Graphics 4000
Class Guid: {4d36e968-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: igfx

Name: ACPI x64-based PC
Description: ACPI x64-based PC
Class Guid: {4d36e966-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard computers)
Service: \Driver\ACPI_HAL

Name: Intel® 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E26
Description: Intel® 7 Series/C216 Chipset Family USB Enhanced Host Controller - 1E26
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Intel
Service: usbehci

Name: TOSHIBA x64 ACPI-Compliant Value Added Logical and General Purpose Device
Description: TOSHIBA x64 ACPI-Compliant Value Added Logical and General Purpose Device
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: TOSHIBA
Service: TVALZ

Name: PCI Express Root Complex
Description: PCI Express Root Complex
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: pci

Name: USB Input Device
Description: USB Input Device
Class Guid: {745a17a0-74d3-11d0-b6fe-00a0c90f57da}
Manufacturer: (Standard system devices)
Service: HidUsb

Name: ACPI Power Button
Description: ACPI Power Button
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft ACPI-Compliant System
Description: Microsoft ACPI-Compliant System
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: ACPI

Name: Speakers (Realtek High Definition Audio)
Description: Audio Endpoint
Class Guid: {c166523c-fe0c-4a94-a586-f1a80cfbbf3e}
Manufacturer: Microsoft
Service:

Name: Microsoft Basic Render Driver
Description: Microsoft Basic Render Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BasicRender

Name: TSSTcorp CDDVDW SN-208DN
Description: CD-ROM Drive
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard CD-ROM drives)
Service: cdrom

Name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: PptpMiniport

Name: Intel® HM76 Express Chipset LPC Controller - 1E59
Description: Intel® HM76 Express Chipset LPC Controller - 1E59
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: msisadrv

Name: ACPI Fixed Feature Button
Description: ACPI Fixed Feature Button
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: WAN Miniport (Network Monitor)
Description: WAN Miniport (Network Monitor)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan

Name: HGST HTS545050A7E380
Description: Disk drive
Class Guid: {4d36e967-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard disk drives)
Service: disk

Name: TOSHIBA Web Camera - HD
Description: USB Video Device
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: usbvideo

Name: Intel® Display Audio
Description: Intel® Display Audio
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel® Corporation
Service: IntcDAud

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: System CMOS/real time clock
Description: System CMOS/real time clock
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Generic USB Hub
Description: Generic USB Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Generic USB Hub)
Service: usbhub

Name: Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
Description: Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek Semiconductor Corp.
Service: RTWlanE

Name: USB Root Hub
Description: USB Root Hub
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard USB Host Controller)
Service: usbhub

Name: Generic volume
Description: Generic volume
Class Guid: {71a27cdd-812a-11d0-bec7-08002be2092f}
Manufacturer: Microsoft
Service: volsnap

Name: Programmable interrupt controller
Description: Programmable interrupt controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: High Definition Audio Controller
Description: High Definition Audio Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HDAudBus

Name: Microsoft Watchdog Timer
Description: Microsoft Watchdog Timer
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Wd

Name: Intel® USB 3.0 eXtensible Host Controller - 0100 (Microsoft)
Description: USB xHCI Compliant Host Controller
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Generic USB xHCI Host Controller
Service: USBXHCI

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Rasl2tp

Name: Intel® 7 Series Chipset Family SATA AHCI Controller
Description: Intel® 7 Series Chipset Family SATA AHCI Controller
Class Guid: {4d36e96a-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel Corporation
Service: iaStorA

Name: Realtek USB 2.0 Card Reader
Description: Realtek USB 2.0 Card Reader
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: Realtek
Service: RSUSBVSTOR

Name: Direct memory access controller
Description: Direct memory access controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: WAN Miniport (PPPOE)
Description: WAN Miniport (PPPOE)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasPppoe

Name: Generic PnP Monitor
Description: Generic PnP Monitor
Class Guid: {4d36e96e-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard monitor types)
Service: monitor

Name: Intel® Management Engine Interface
Description: Intel® Management Engine Interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: MEIx64

Name: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 1 - 1E10
Description: Intel® 7 Series/C216 Chipset Family PCI Express Root Port 1 - 1E10
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: pci

Name: Microsoft System Management BIOS Driver
Description: Microsoft System Management BIOS Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: mssmbios

Name: Motherboard resources
Description: Motherboard resources
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service:

Name: Synaptics PS/2 Port TouchPad
Description: Synaptics PS/2 Port TouchPad
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Synaptics
Service: i8042prt

Name: Microsoft 6to4 Adapter
Description: Microsoft 6to4 Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel

Name: TOSHIBA tos_sps64 Driver
Description: TOSHIBA tos_sps64 Driver
Class Guid: {8bbd94a0-a150-11d4-a878-0040265b73ee}
Manufacturer: TOSHIBA Corporation
Service: tos_sps64

Name: Microsoft AC Adapter
Description: Microsoft AC Adapter
Class Guid: {72631e54-78a4-11d0-bcf7-00aa00b7b32a}
Manufacturer: Microsoft
Service: CmBatt

Name: Plug and Play Software Device Enumerator
Description: Plug and Play Software Device Enumerator
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard system devices)
Service: swenum

Name: Fax
Description: Local Print Queue
Class Guid: {1ed2bbf9-11f0-4084-b21f-ad83a8e6dcdc}
Manufacturer: Microsoft
Service:

Name: Microsoft Windows Management Interface for ACPI
Description: Microsoft Windows Management Interface for ACPI
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: WmiAcpi

Name: Remote Desktop Device Redirector Bus
Description: Remote Desktop Device Redirector Bus
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: rdpbus

Name: HID-compliant mouse
Description: HID-compliant mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: mouhid

Name: Synaptics SMBus Driver
Description: Synaptics SMBus Driver
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Synaptics
Service: SmbDrvI


========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 3980.21 MB
Available physical RAM: 2311.56 MB
Total Pagefile: 7564.21 MB
Available Pagefile: 6031.55 MB
Total Virtual: 4095.88 MB
Available Virtual: 3982.93 MB

========================= Partitions: =====================================

1 Drive c: (TI10657300E) (Fixed) (Total:454.2 GB) (Free:407.82 GB) NTFS

========================= Users: ========================================

User accounts for \\GLAPTOP

Administrator Guest Moxie

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================

24-07-2014 05:57:15 Windows Update

**** End of log ****






15:03:01.0896 0x0c2c TDSS rootkit removing tool 3.0.0.40 Jul 10 2014 12:37:58
15:03:01.0896 0x0c2c UEFI system
15:03:06.0256 0x0c2c ============================================================
15:03:06.0256 0x0c2c Current date / time: 2014/07/25 15:03:06.0256
15:03:06.0256 0x0c2c SystemInfo:
15:03:06.0256 0x0c2c
15:03:06.0256 0x0c2c OS Version: 6.2.9200 ServicePack: 0.0
15:03:06.0256 0x0c2c Product type: Workstation
15:03:06.0256 0x0c2c ComputerName: GLAPTOP
15:03:06.0256 0x0c2c UserName: Moxie
15:03:06.0256 0x0c2c Windows directory: C:\windows
15:03:06.0256 0x0c2c System windows directory: C:\windows
15:03:06.0256 0x0c2c Running under WOW64
15:03:06.0256 0x0c2c Processor architecture: Intel x64
15:03:06.0256 0x0c2c Number of processors: 4
15:03:06.0256 0x0c2c Page size: 0x1000
15:03:06.0256 0x0c2c Boot type: Normal boot
15:03:06.0256 0x0c2c ============================================================
15:03:07.0756 0x0c2c KLMD registered as C:\windows\system32\drivers\04009209.sys
15:03:08.0084 0x0c2c System UUID: {A5585109-C6D1-A31F-363E-2C46F87928E5}
15:03:08.0600 0x0c2c Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:03:08.0600 0x0c2c ============================================================
15:03:08.0600 0x0c2c \Device\Harddisk0\DR0:
15:03:08.0600 0x0c2c GPT partitions:
15:03:08.0600 0x0c2c \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {C0D336E9-61E7-11E2-909C-FA2E9CB7D49C}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xE1000
15:03:08.0600 0x0c2c \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {C0D336EF-61E7-11E2-909C-FA2E9CB7D49C}, Name: Basic data partition, StartLBA 0xE1800, BlocksNum 0x82000
15:03:08.0600 0x0c2c \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {C0D336F1-61E7-11E2-909C-FA2E9CB7D49C}, Name: Basic data partition, StartLBA 0x163800, BlocksNum 0x40000
15:03:08.0600 0x0c2c \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {C0D336F9-61E7-11E2-909C-FA2E9CB7D49C}, Name: Basic data partition, StartLBA 0x1A3800, BlocksNum 0x38C67000
15:03:08.0600 0x0c2c \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {2EDEA9D6-B498-4024-90E6-D83252A2BB44}, Name: , StartLBA 0x38E0A800, BlocksNum 0xAF000
15:03:08.0600 0x0c2c \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {25270B0B-22F3-4D4F-AA41-8F9F4BECEDA1}, Name: Basic data partition, StartLBA 0x38EB9800, BlocksNum 0x14CC800
15:03:08.0600 0x0c2c MBR partitions:
15:03:08.0600 0x0c2c ============================================================
15:03:08.0631 0x0c2c C: <-> \Device\Harddisk0\DR0\Partition4
15:03:08.0631 0x0c2c ============================================================
15:03:08.0631 0x0c2c Initialize success
15:03:08.0631 0x0c2c ============================================================
15:04:11.0667 0x1290 ============================================================
15:04:11.0667 0x1290 Scan started
15:04:11.0667 0x1290 Mode: Manual;
15:04:11.0667 0x1290 ============================================================
15:04:11.0667 0x1290 KSN ping started
15:04:14.0042 0x1290 KSN ping finished: true
15:04:14.0526 0x1290 ================ Scan system memory ========================
15:04:14.0526 0x1290 System memory - ok
15:04:14.0526 0x1290 ================ Scan services =============================
15:04:14.0698 0x1290 [ E890C46E4754F0DF51BAFCC8D2E07498, E620D03030F3B65442E0A5CB8B59016A6E8DB3BCA52741977B8897B34438E902 ] 1394ohci C:\windows\System32\drivers\1394ohci.sys
15:04:14.0714 0x1290 1394ohci - ok
15:04:14.0761 0x1290 [ 4F18D4C7EA14F11A7211F60D553C03DB, 09AB6D2D8E9B7B6D6A97708551C0E4B34538947A15EA2A69C11764D7BC0BB7F6 ] 3ware C:\windows\system32\drivers\3ware.sys
15:04:14.0761 0x1290 3ware - ok
15:04:14.0808 0x1290 [ 975AABEB243B800C23626D6B652C5A9C, FB02336F26AF10BA2A0D1B97C33CB1D78BB90CA51EF008A613A0274779798FAD ] ACPI C:\windows\system32\drivers\ACPI.sys
15:04:14.0823 0x1290 ACPI - ok
15:04:14.0839 0x1290 [ DC968C37822117E576B933F34A2D130C, 4C94E00ADC242296D7CBBFC7346D5F9AE5FE1B0C616ECA3BDE10A7B34FD2040B ] acpiex C:\windows\system32\Drivers\acpiex.sys
15:04:14.0839 0x1290 acpiex - ok
15:04:14.0839 0x1290 [ 0CA9F7C3A78227C21A0A7854E245CFB2, D54147C9C1EE2F0098B863B0852E027DB89D6FA67F6B7FD54F609D9715A11442 ] acpipagr C:\windows\System32\drivers\acpipagr.sys
15:04:14.0839 0x1290 acpipagr - ok
15:04:14.0855 0x1290 [ 8EB8DA03B142D3DD1EB9ED8107A76C43, 24B9B24F9A5BDF3AAD13C4EE0638497D9CA4A100096C6EAE403E0215EA89C439 ] AcpiPmi C:\windows\System32\drivers\acpipmi.sys
15:04:14.0855 0x1290 AcpiPmi - ok
15:04:14.0855 0x1290 [ CBCE725C5D86ABA7D2604E22951AA9B8, DE0440F0E943F057EBCD01DB4B1E12DBC241FBF03C42021306D322AB88FF8F21 ] acpitime C:\windows\System32\drivers\acpitime.sys
15:04:14.0855 0x1290 acpitime - ok
15:04:14.0901 0x1290 [ 62B7936F9036DD6ED36E6A7EFA805DC0, C58EA1B46CB3595386C9217A7785F2A436916FB1E0BDC0E4BE484292C55AA455 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
15:04:14.0901 0x1290 AdobeARMservice - ok
15:04:14.0948 0x1290 [ 93C6388592B99925C1D1576E465BC80F, 4C48BE5471DA4788357D71E90DFEA20FE320C7AAE1F4C55AFBE2E46FEA5CF8FB ] adp94xx C:\windows\system32\drivers\adp94xx.sys
15:04:14.0964 0x1290 adp94xx - ok
15:04:14.0980 0x1290 [ D27763E0247292654E7F7D16444C7C72, 0314C713D31E2B34F215B52F804F014D876E6ED92DC656CC3E27920CCD36CF0E ] adpahci C:\windows\system32\drivers\adpahci.sys
15:04:14.0980 0x1290 adpahci - ok
15:04:14.0995 0x1290 [ 67B90070FF48F794AF19F9FCF0080D75, 5D0D352606D58D2CA0814F38EF7B1774C030BE44353DF5910CBFAAF4FDE64ED6 ] adpu320 C:\windows\system32\drivers\adpu320.sys
15:04:14.0995 0x1290 adpu320 - ok
15:04:15.0026 0x1290 [ 974AE60BF5B90E31412D93596C968E5B, 092B59C2B67C4618E7B1800615D1DF7199482F60D0D27BD91763F7F8D7FC883F ] AeLookupSvc C:\windows\System32\aelupsvc.dll
15:04:15.0042 0x1290 AeLookupSvc - ok
15:04:15.0058 0x1290 [ 9E975BDC89C83900B2C534C4E1B018F8, 5413577284FDD7840915CC29C3DD78E514F0E6227384636695CF8B46FAA541DC ] AFD C:\windows\system32\drivers\afd.sys
15:04:15.0073 0x1290 AFD - ok
15:04:15.0089 0x1290 [ 01590377A5AB19E792528C628A2A68F9, F3A4B6CA4E8D4436E44E36D7F7EEF3DC861D1EE50D41F4273226C4ED95674B84 ] agp440 C:\windows\system32\drivers\agp440.sys
15:04:15.0089 0x1290 agp440 - ok
15:04:15.0105 0x1290 [ D1BE8E6E5B3AF23A4393AF1BF867977A, B3AE97D35A9304198715D76F6C3F0545AA176FDEBA6C2055782558B11DFA14EB ] ALG C:\windows\System32\alg.exe
15:04:15.0120 0x1290 ALG - ok
15:04:15.0167 0x1290 [ 025E8C755BE293E50854D26D1BBE5133, 4373639689306A3D8FE0F862072711BAD5DBAA45E105CD3129586439A90EE070 ] AllUserInstallAgent C:\windows\system32\AUInstallAgent.dll
15:04:15.0183 0x1290 AllUserInstallAgent - ok
15:04:15.0230 0x1290 [ FB88D16B55F788EEB7590584FE2D8F1A, 96DDFF3D0139FC268E43C5CB2F1455BC1EAD99883453933B4B639166AAB0ED38 ] AmdK8 C:\windows\System32\drivers\amdk8.sys
15:04:15.0230 0x1290 AmdK8 - ok
15:04:15.0245 0x1290 [ 81402FF3373CE4DF77D5C874E369A985, 83F2091A6D97314CD3216176365ABD1D0FB74686BA457022712DE8F355AD1D90 ] AmdPPM C:\windows\System32\drivers\amdppm.sys
15:04:15.0261 0x1290 AmdPPM - ok
15:04:15.0261 0x1290 [ 35A0EB5AECB0FA3C41A2FB514A562304, 737783ABF348288471AC7051D4DC6CB336D686C94EC7B8938DCA74AFE9BECB1C ] amdsata C:\windows\system32\drivers\amdsata.sys
15:04:15.0277 0x1290 amdsata - ok
15:04:15.0292 0x1290 [ 00452671904F5EE94B50BF0219C97164, 99F9B86D3DB3E10B014120A63CD43CBAAB22C8E38851090ABE37D89ABD61F7B6 ] amdsbs C:\windows\system32\drivers\amdsbs.sys
15:04:15.0292 0x1290 amdsbs - ok
15:04:15.0292 0x1290 [ EA3FFE53E92E59C87E3ECA9BEB20D9B7, DC0B8B798720F5F75F8AFD3383CF69194282AEEE84DCACB97382F4C86E1D3E49 ] amdxata C:\windows\system32\drivers\amdxata.sys
15:04:15.0308 0x1290 amdxata - ok
15:04:15.0308 0x1290 [ 83B3682CE922FB0F415734B26D9D6233, 9102E8B410BB1AE426770896B6AB584D1F02830337FBB2DEC182F3F19832F35F ] AppID C:\windows\system32\drivers\appid.sys
15:04:15.0308 0x1290 AppID - ok
15:04:15.0355 0x1290 [ CE2BEAD7F31816FF0AC490D048C969F9, 7D24C5A9E8F7C21CC6D8BF2CA29A8B79DDE7EEDE2F37D36B9071ECE1CF61371F ] AppIDSvc C:\windows\System32\appidsvc.dll
15:04:15.0355 0x1290 AppIDSvc - ok
15:04:15.0386 0x1290 [ D64C4AFEE8277F35EF729A2B924666B0, 543AA2B2CD09820437646CFE01AFDBA6B764AA588E663759DEB93CB4F25E09D7 ] Appinfo C:\windows\System32\appinfo.dll
15:04:15.0386 0x1290 Appinfo - ok
15:04:15.0402 0x1290 [ E933401B392387F4BE34DE8BAF1722A7, 57CC6DE31E2C82D2B12509F0A5EC9EC70DD2EF6A1F31A66ADF62DC6AE0A67323 ] arc C:\windows\system32\drivers\arc.sys
15:04:15.0402 0x1290 arc - ok
15:04:15.0417 0x1290 [ 07CA323EF2E8247A568AB0F3662AD644, 1224B41193F0E9B164732BA5BF707A13427C82C1D8C3EDC2AAE5C5C75454B9F6 ] arcsas C:\windows\system32\drivers\arcsas.sys
15:04:15.0417 0x1290 arcsas - ok
15:04:15.0433 0x1290 [ 74DBAEC35366C4EE7670428808715A6A, 3B3A7A81CD8038C4750560B94A9247C4409410780B312BA71EDF2E393DCA7474 ] AsyncMac C:\windows\system32\DRIVERS\asyncmac.sys
15:04:15.0433 0x1290 AsyncMac - ok
15:04:15.0433 0x1290 [ A721FF570C2387E383BDDEA9632863C9, 45DD7787F44A2C742560FEB03AB66910C2F0002D95BB02C55EEDE973AA92AD24 ] atapi C:\windows\system32\drivers\atapi.sys
15:04:15.0433 0x1290 atapi - ok
15:04:15.0464 0x1290 [ 8A814F4CBF6AA28A8F0212592824C927, 9688BA88E744B231CC13F28CE40AE64AA121F943BADE4D0BA5A83487AF6C01CF ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
15:04:15.0464 0x1290 AudioEndpointBuilder - ok
15:04:15.0495 0x1290 [ 01E8E96251900BCEFAB34FBC1FCEB552, 63D4B17967545586BEFD76FCB507AFDE3F7454CAADAE1EDE615D81204AF275CE ] Audiosrv C:\windows\System32\Audiosrv.dll
15:04:15.0511 0x1290 Audiosrv - ok
15:04:15.0527 0x1290 [ 89491EF71D5EA011127832C588002853, 05620E4235956D8446FB9604F930738C8AA97E3A74C907E37F7CC08B8EDA0461 ] AxInstSV C:\windows\System32\AxInstSV.dll
15:04:15.0527 0x1290 AxInstSV - ok
15:04:15.0558 0x1290 [ 87AB5BB072A3F128541D5B815F82FFDD, 186AF33D3DE90638C3E165CAC3DA17295E8A80CDB523F9BE4AF7D38CA6954905 ] b06bdrv C:\windows\system32\drivers\bxvbda.sys
15:04:15.0573 0x1290 b06bdrv - ok
15:04:15.0589 0x1290 [ 81703BC5D68DEDBB086C2368FBE7B334, CFD4A55C8045C482F8D410514F3211AEFA00097AB395F5A04BFE983ED6254F6B ] BasicDisplay C:\windows\System32\drivers\BasicDisplay.sys
15:04:15.0589 0x1290 BasicDisplay - ok
15:04:15.0605 0x1290 [ 5EC68164E14D25675C98BBB5F09E8606, 1D7EDB21C87039FC5F39F46460AD852BC4EC6B179B1C205D189DD3C397343435 ] BasicRender C:\windows\System32\drivers\BasicRender.sys
15:04:15.0605 0x1290 BasicRender - ok
15:04:15.0636 0x1290 [ 558F6EEF46EC2642C8F72D34CBB5612E, DA192AB0C645200E7135C994866589DB6ACA451CC3F2BC903C95E5ABCD7391CC ] BDESVC C:\windows\System32\bdesvc.dll
15:04:15.0636 0x1290 BDESVC - ok
15:04:15.0636 0x1290 [ 9E7AEA59776D904607985AFFE7E5E183, C3DB745A9F4DA7CB9628A7913DD52B2444B14FEB9D588FF6558CF52CEB8955EB ] Beep C:\windows\system32\drivers\Beep.sys
15:04:15.0636 0x1290 Beep - ok
15:04:15.0667 0x1290 [ 407F85D5387EDBB665A7969DF4D4712B, 56E103CDCDFB07E54ABF7F7AD898E7E989B0D9CD73352E6AB89D7AE52AA46C9D ] BFE C:\windows\System32\bfe.dll
15:04:15.0698 0x1290 BFE - ok
15:04:15.0839 0x1290 [ F10EFCE086C794F8A7C2C7A3EA52AC5F, 498C4A75DCC560CE1A6B7F671572A4CB2F4D5EA402E45399B7CF471CFBC48241 ] BHDrvx64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\BASHDefs\20140718.001\BHDrvx64.sys
15:04:15.0855 0x1290 BHDrvx64 - ok
15:04:15.0902 0x1290 [ D598C44A7072D3108D8D8102EC5E07F7, D7472E9BAAB7B6E1D30F4E153412E2A16EE5C08DE2BF8BFF4D65089825226FE0 ] BITS C:\windows\System32\qmgr.dll
15:04:15.0917 0x1290 BITS - ok
15:04:15.0948 0x1290 [ B17AC10B47C7FCB44D22A1F06415840E, 990D6F629D93F4F913D218ACE5187A26DCB762BAFB2BB279CCE8CAF2755D85A5 ] bowser C:\windows\system32\DRIVERS\bowser.sys
15:04:15.0948 0x1290 bowser - ok
15:04:15.0995 0x1290 [ 975398A3D2C1FEA73FC93931978DF354, 623E66E79BF16AC82E5DD579B1D50AA1A884FAFC042C3C8A1B503C97A84098DF ] BrokerInfrastructure C:\windows\System32\bisrv.dll
15:04:15.0995 0x1290 BrokerInfrastructure - ok
15:04:16.0027 0x1290 [ 310068BDA80B1D55C36580FD8A873FAF, A75412FF1F483461F526E9A359DCEECA5E683441514464D5ED82D1A9740D583E ] Browser C:\windows\System32\browser.dll
15:04:16.0027 0x1290 Browser - ok
15:04:16.0058 0x1290 [ FC79BE6D8FBC8699E9980F657D281BE9, 02D3233719E1DB059ABFB0F5D534114E70208D1339BC53EADC5C78424A3E7117 ] BthAvrcpTg C:\windows\System32\drivers\BthAvrcpTg.sys
15:04:16.0058 0x1290 BthAvrcpTg - ok
15:04:16.0089 0x1290 [ 616EB8748C988AEE98D93DA141C3D3B4, 15A055B0496BDB29CBCF6EEBF112D4BA1C7A2FF39124728830D0FD1FD7A404CB ] BthHFEnum C:\windows\System32\drivers\bthhfenum.sys
15:04:16.0105 0x1290 BthHFEnum - ok
15:04:16.0120 0x1290 [ 6F7368071FCDDB96C0527A6E5D7C1906, 0406CDEC064D644F38950FF26234F006D59F5E3265614D50F5D9C7CEC8475B48 ] bthhfhid C:\windows\System32\drivers\BthHFHid.sys
15:04:16.0136 0x1290 bthhfhid - ok
15:04:16.0136 0x1290 [ 033916CE8784A848B9A3D686B7F66D97, B4D0514D59646CF6B70D4FA488CF95C38EA38CC5C509329CC8753E897C640AFA ] BTHMODEM C:\windows\System32\drivers\bthmodem.sys
15:04:16.0136 0x1290 BTHMODEM - ok
15:04:16.0167 0x1290 [ A4387C3D271959313E2577DB7BE8BA7A, C71474802102102EBE04DF036EEB2F5FB3380BE288E3842F19F234EFAE977D70 ] bthserv C:\windows\system32\bthserv.dll
15:04:16.0183 0x1290 bthserv - ok
15:04:16.0230 0x1290 [ E41F70406C34F1CB667B4B27D81AD162, 8869C7EB9CBF68B90640765D15DB5B8DACEF45025C1E580AA94D96E32560274B ] ccSet_NARA C:\windows\system32\drivers\NARAx64\0401000.00B\ccSetx64.sys
15:04:16.0245 0x1290 ccSet_NARA - ok
15:04:16.0292 0x1290 [ A5C16A0BE89EE409732178BEB62F7EA7, D4B993F63CFD9B487BD53B532AB9435084B4C752F2731E189FA1420D516A4E95 ] ccSet_NAT C:\windows\system32\drivers\NATx64\010A000.009\ccSetx64.sys
15:04:16.0292 0x1290 ccSet_NAT - ok
15:04:16.0370 0x1290 [ 56685951208AC81CF923B9B08BEDF3B7, F5FF438B9A54AD8D54E82DE60E1771C9685A95D5E590D69EB1E4E78D3B9B7769 ] ccSet_NIS C:\windows\system32\drivers\NISx64\1405000.01C\ccSetx64.sys
15:04:16.0370 0x1290 ccSet_NIS - ok
15:04:16.0386 0x1290 [ 990B1BABE6E81FB18E65A87EBEFB1772, 1820D4AC57E1D4B7FB5AA89C277B16910ED73712878D2B43FE542CE16DFE16C3 ] cdfs C:\windows\system32\DRIVERS\cdfs.sys
15:04:16.0402 0x1290 cdfs - ok
15:04:16.0417 0x1290 [ 339BFF85D788268752DA8C9644B188EE, C2279F1A39AED39865A5027D2FD087F8E82F3ED8C94BA4D922855B98E792AFC5 ] cdrom C:\windows\System32\drivers\cdrom.sys
15:04:16.0433 0x1290 cdrom - ok
15:04:16.0464 0x1290 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] CertPropSvc C:\windows\System32\certprop.dll
15:04:16.0464 0x1290 CertPropSvc - ok
15:04:16.0480 0x1290 [ F64B7D1A37CC1D5F421D5359EEC81E2E, 2B4879DD32B2C20B94847755E22B1BCBE2B567B3989C57A9BA2DD783307EFFDB ] circlass C:\windows\System32\drivers\circlass.sys
15:04:16.0527 0x1290 circlass - ok
15:04:16.0573 0x1290 [ 9905168708DB68849B879B5548F68AB3, B7A495E57B9398704988DC472126CBC5B8D76761A34F51732FBF6CC88E3AB79A ] CLFS C:\windows\system32\drivers\CLFS.sys
15:04:16.0589 0x1290 CLFS - ok
15:04:16.0620 0x1290 [ 2DC8538A2260647484A6C921CA837313, 094059DD66B0C50A1CAE288F920107B0B6AD1AA5758284E35B92C131EDEA30EA ] CmBatt C:\windows\System32\drivers\CmBatt.sys
15:04:16.0636 0x1290 CmBatt - ok
15:04:16.0667 0x1290 [ 1894FD2D5966A81D3B07A7C4D8724D59, 18DCE6DF0DE39DFD1358A1E061AD97099699CE430BCB906AFB7F51277681461D ] CNG C:\windows\system32\Drivers\cng.sys
15:04:16.0698 0x1290 CNG - ok
15:04:16.0714 0x1290 [ 0E5B1E9E7122EDAAF1F6CE047965CA92, 803E585B92D1E2E5B6BF67BE511E88DC2629A12407C3E30F7AEFB544D390A9B8 ] CompositeBus C:\windows\System32\drivers\CompositeBus.sys
15:04:16.0714 0x1290 CompositeBus - ok
15:04:16.0730 0x1290 COMSysApp - ok
15:04:16.0730 0x1290 [ D9CB0782AF819548072AA45B70F8B22D, 04796F39ABB88759A534DE3D0C51F684BF2A8DE1F4028B657CCFDBDD39A6618C ] condrv C:\windows\system32\drivers\condrv.sys
15:04:16.0730 0x1290 condrv - ok
15:04:16.0824 0x1290 [ 9C2838A9F02BE7F3A1493498602448EE, 2A8338C41FDF2C5F2B4271F5B960502731DFECC7D3DE8312BD66CF0D7154BD76 ] cphs C:\windows\SysWow64\IntelCpHeciSvc.exe
15:04:16.0824 0x1290 cphs - ok
15:04:16.0855 0x1290 [ F0E78B119D12BA81F163D48C0FF30B9A, 9622A2F36F03A33E7D145C439BD62D5AEFD53064D60BCC787555D1AF8CB936A9 ] CryptSvc C:\windows\system32\cryptsvc.dll
15:04:16.0855 0x1290 CryptSvc - ok
15:04:16.0886 0x1290 [ A4CCA7289C1A6223D61FD27BF2FC413F, DCDA516FE602690802A8D2A854E607FFCB0BCFDFCDB1F1AC6B30CBAED2663726 ] dam C:\windows\system32\drivers\dam.sys
15:04:16.0886 0x1290 dam - ok
15:04:16.0949 0x1290 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] DcomLaunch C:\windows\system32\rpcss.dll
15:04:16.0964 0x1290 DcomLaunch - ok
15:04:16.0995 0x1290 [ C8650D1F61149AA546BDBC99172EBBC1, D9592ED1B6F23B6EC76A0B93635B6E38702311B0A6982F0F9DEC37FCDAF1288B ] defragsvc C:\windows\System32\defragsvc.dll
15:04:17.0011 0x1290 defragsvc - ok
15:04:17.0027 0x1290 [ 5EAEF67AE2AF4D2DC664B649DB7B2E16, ADAC7FD6AC12B50F4998C5EB0BD770DD4B80A94C4CC1B9376AD77648E48D012D ] DeviceAssociationService C:\windows\system32\das.dll
15:04:17.0058 0x1290 DeviceAssociationService - ok
15:04:17.0105 0x1290 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] DeviceInstall C:\windows\system32\umpnpmgr.dll
15:04:17.0105 0x1290 DeviceInstall - ok
15:04:17.0136 0x1290 [ 09D9EB9E7898F8E6561473A20CC808B9, 0F511593D36084843E5138AF6D55FE08D77803968AE12A236A02368DB364347E ] Dfsc C:\windows\system32\Drivers\dfsc.sys
15:04:17.0152 0x1290 Dfsc - ok
15:04:17.0167 0x1290 [ CFB72DF4B2364AF6D4D685DCD310E942, 89C72E1008B92B85A275B9F37D96481C3EFCABE9ACD28B698D5A04E0DDA0DF8F ] Dhcp C:\windows\system32\dhcpcore.dll
15:04:17.0183 0x1290 Dhcp - ok
15:04:17.0199 0x1290 [ 3C736FAE17BA6F91BA37594AAB139CD0, 34304A194105B19E7ADD80108DC85C3B7AA9E942C84A7EF93C475CE1D9AE4615 ] discache C:\windows\system32\drivers\discache.sys
15:04:17.0199 0x1290 discache - ok
15:04:17.0230 0x1290 [ 560495FF4CA22E1D9B1972FA18F43B6F, 41FFDD4C1097AA857A8177E34F101A1A9C1429A4E8DEC3D395C6135A9E112CD6 ] disk C:\windows\system32\drivers\disk.sys
15:04:17.0230 0x1290 disk - ok
15:04:17.0245 0x1290 [ 82A7C72593793FE1EADA7A305BD1567A, 75F432E4C75AE9EFF553BD860B3B250853BDDA85C17DBD9B7242D74593506A86 ] dmvsc C:\windows\System32\drivers\dmvsc.sys
15:04:17.0245 0x1290 dmvsc - ok
15:04:17.0277 0x1290 [ 066B9710B36AB550E01EEFCA52155968, DCA9F3F4856A6866D3F5A2EEE34E96A83F40198DB0B5AC6381A7568DE1F56FAB ] Dnscache C:\windows\System32\dnsrslvr.dll
15:04:17.0277 0x1290 Dnscache - ok
15:04:17.0308 0x1290 [ 9949AD2ABA168A618D46C799D6CC898C, DFAC86A0AEE83C9EFE1BEE9EC15C8CAF1D619D55AF3ACC3986057A5AC985D06A ] dot3svc C:\windows\System32\dot3svc.dll
15:04:17.0308 0x1290 dot3svc - ok
15:04:17.0339 0x1290 [ 109FC3F80BF4F4DC5A071058074F13C1, F30736F45BA1811D59E9CB1C172D8D1EA9F5A7D36DCFFBFC9E7E02448C1CF851 ] DPS C:\windows\system32\dps.dll
15:04:17.0355 0x1290 DPS - ok
15:04:17.0386 0x1290 [ 84D07E4E4FBE72DA3EC1C1E77C49B53C, 81846E3E91080EA3E21FDC1120B5CC2265258AC78AF654DCD1A05E3966AA923A ] drmkaud C:\windows\system32\drivers\drmkaud.sys
15:04:17.0386 0x1290 drmkaud - ok
15:04:17.0402 0x1290 [ BF48F32EE248C3D371DA5DC93BBEADA7, C8E9B685A8F2F99140382557F11E362D899E7EC6693ADEFE762F0A3850585C63 ] DsmSvc C:\windows\System32\DeviceSetupManager.dll
15:04:17.0417 0x1290 DsmSvc - ok
15:04:17.0636 0x1290 [ 898BF1647BBF012B38EF45C7F9F7A67E, 800EF0CF107B5F29702FA50D448E20D3EB19984C38D1AA0197636A80629A3160 ] DXGKrnl C:\windows\System32\drivers\dxgkrnl.sys
15:04:17.0699 0x1290 DXGKrnl - ok
15:04:17.0730 0x1290 [ 58BA473DD88F5FC1932282BA683AA03E, B8A4407D3006D91BE88F9C5389AC1CACC73BEBF6F66433A1E5EB8E58E8836C12 ] Eaphost C:\windows\System32\eapsvc.dll
15:04:17.0730 0x1290 Eaphost - ok
15:04:17.0871 0x1290 [ 5AB97B3282D7D6114949D1EB5C8598E4, FB9449CC1CDC12C12AA0469BB6ACC770CB011250EDFD86E9600E754610608EFD ] ebdrv C:\windows\system32\drivers\evbda.sys
15:04:17.0964 0x1290 ebdrv - ok
15:04:18.0042 0x1290 [ 5E346ADBAD5110EAB2E9808ABE877A00, 4B72C34E41B8AA15D166F65B5A037A1230A9FF65F827D18A57E2198573616EAD ] eeCtrl C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
15:04:18.0058 0x1290 eeCtrl - ok
15:04:18.0089 0x1290 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] EFS C:\windows\System32\lsass.exe
15:04:18.0089 0x1290 EFS - ok
15:04:18.0121 0x1290 [ 66D60BD9A4C05616ABECA2A901475098, 8111550DB03FFD72F1822F47B16F075DA92874B64F19342D7CF60B0EE648AFEF ] EhStorClass C:\windows\system32\drivers\EhStorClass.sys
15:04:18.0121 0x1290 EhStorClass - ok
15:04:18.0136 0x1290 [ A61D0F543024E458C0FE32352E1978E2, BDE6BC140300EAF790F16466C28897CE0BD7D94DCED13FDE20AA4AACA0F6A4FD ] EhStorTcgDrv C:\windows\system32\drivers\EhStorTcgDrv.sys
15:04:18.0167 0x1290 EhStorTcgDrv - ok
15:04:18.0214 0x1290 [ 773ACF5823046FA40D7FD898559A7228, 7DF39C42F781E7864CC791E3449CCDF0124930D128D168E8F9C80374640FFBE7 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
15:04:18.0214 0x1290 EraserUtilRebootDrv - ok
15:04:18.0230 0x1290 [ D790D058D67582DB9C84C2D33695FE6B, A5763D7F6D191EA4B290B3E92D842AC36FD46DF598472E70B46E45D8CCD2F912 ] ErrDev C:\windows\System32\drivers\errdev.sys
15:04:18.0230 0x1290 ErrDev - ok
15:04:18.0277 0x1290 [ F9E01C2D9F8BC049E04CF5DC24A5F638, CB6CCB59C77D4A59DDA846608AABEF1DFEC24C8422712AB8D59E27C13D731D2E ] EventSystem C:\windows\system32\es.dll
15:04:18.0292 0x1290 EventSystem - ok
15:04:18.0324 0x1290 [ 7A4D6FEB8C52B3FE855E4DCDF9107E03, 6B0146A4C9AD32DCDC2DEE8E8C5A29F687665458486449E0D37B151ED63B8ADC ] exfat C:\windows\system32\drivers\exfat.sys
15:04:18.0324 0x1290 exfat - ok
15:04:18.0339 0x1290 [ 60996602A7111FD2D086E803F33E4282, E62A91C90F8542990BEA4E6A5D9DD3D070F4EB23B4C13414C5DA2B0219509749 ] fastfat C:\windows\system32\drivers\fastfat.sys
15:04:18.0355 0x1290 fastfat - ok
15:04:18.0386 0x1290 [ F0E7F8382ED5E138B0DFA4CB5058BCFE, 6247C7B75F975F5AB080FFB9881EF58A6F360219F7AF2DE871F38E80CAF3B62C ] Fax C:\windows\system32\fxssvc.exe
15:04:18.0402 0x1290 Fax - ok
15:04:18.0417 0x1290 [ 73B2D11DF0B6E03A0CB0323218ACB3E4, BA9256919BAA2E0760F6A658B557FDC389ACE8F9820D1A41FD995FC5613F5AA6 ] fdc C:\windows\System32\drivers\fdc.sys
15:04:18.0417 0x1290 fdc - ok
15:04:18.0449 0x1290 [ 0828E3E7BD77C89149EAD3232BFD38DB, A6A296647A4EDBFF59124E3A9C0AB48759AA1738615ACFA5A454FF6BD3C31BA2 ] fdPHost C:\windows\system32\fdPHost.dll
15:04:18.0449 0x1290 fdPHost - ok
15:04:18.0464 0x1290 [ 872506AAB591E8908DF4461475AF92DF, 772F2D08CB95775E438822B9EA005CBA92ED4071ADAB2C0101156A7D037D4704 ] FDResPub C:\windows\system32\fdrespub.dll
15:04:18.0464 0x1290 FDResPub - ok
15:04:18.0480 0x1290 [ 0588950D93A426F97C7AAADB1A9B0458, ABCB3619BD58CAC438FC032495AE45A7B6FFDD4BD33C1B3D1BC7F9F13FCB727A ] fhsvc C:\windows\system32\fhsvc.dll
15:04:18.0480 0x1290 fhsvc - ok
15:04:18.0496 0x1290 [ 88A9EBACD1058ABB237A6B4E96E7F397, 263D25D33B679EB01D97763701347C31B2F72E28CE2C7EC8013EA77756D98BE1 ] FileInfo C:\windows\system32\drivers\fileinfo.sys
15:04:18.0496 0x1290 FileInfo - ok
15:04:18.0527 0x1290 [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02, 1D7BFB00D74A28AC13ECBA1E0036D50EE79266AC02CEDB2632466BF9DD46F211 ] Filetrace C:\windows\system32\drivers\filetrace.sys
15:04:18.0527 0x1290 Filetrace - ok
15:04:18.0527 0x1290 [ B1D4C168FF7B8579E3745888658FFB1D, 1A5C13E902A0C788A8B995ADD2FBC3303005911C0AA3F3F4497D3016AA0EF583 ] flpydisk C:\windows\System32\drivers\flpydisk.sys
15:04:18.0527 0x1290 flpydisk - ok
15:04:18.0542 0x1290 [ B33EC133AE4E6C1881D2302D93D2467D, 77E3A16257EA3698B3FCD947D004144E8D1EEE48EF5C82DF49B1B9B2B3C61DB2 ] FltMgr C:\windows\system32\drivers\fltmgr.sys
15:04:18.0542 0x1290 FltMgr - ok
15:04:18.0605 0x1290 [ 305CB1E16576F436BC8797E629A3D46D, E3644AE3FA8F755D306D9C4177262CEC451B33731074508B139F3F86AC1B5AE6 ] FontCache C:\windows\system32\FntCache.dll
15:04:18.0621 0x1290 FontCache - ok
15:04:18.0683 0x1290 [ 0B56259F5611787222A04A8F254E51D4, F77AEC0ACBFAF9154E32223B84B613229DACCD953AEBC3E96C27570F9AB10FD0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:04:18.0699 0x1290 FontCache3.0.0.0 - ok
15:04:18.0730 0x1290 [ A5F7873A39E4E9FAAAE59B7E9E36B705, 32036109F5A50E9F3BEF97C5B28AE8179B3A5E22517868A83CADE4671FF90DEC ] FsDepends C:\windows\system32\drivers\FsDepends.sys
15:04:18.0730 0x1290 FsDepends - ok
15:04:18.0761 0x1290 [ A6DD7D491F587F4BC13FB972977DC8E8, B86F97F17F6F443EC16DEF67CCA4EF78AFE56078D2877838A982FECB19557C87 ] Fs_Rec C:\windows\system32\drivers\Fs_Rec.sys
15:04:18.0761 0x1290 Fs_Rec - ok
15:04:18.0792 0x1290 [ FA228F4BB10DC7ED7E7D131C034E2331, 0463B1DB8BB2B5AF95EAD988EA9DEB5483D9E78C07E07BAC1E3CC46C086B3BB0 ] fvevol C:\windows\system32\DRIVERS\fvevol.sys
15:04:18.0808 0x1290 fvevol - ok
15:04:18.0824 0x1290 [ 40A5690A50D003429E6AF655D765AAF4, FAE92750AC7F3E8507D9AAA492253E386F807F254E03F412F035CC46412C0FA5 ] FwLnk C:\windows\System32\drivers\FwLnk.sys
15:04:18.0824 0x1290 FwLnk - ok
15:04:18.0839 0x1290 [ 3EF3FCCC0E70EEC5C2AD996F32BBA642, AC452FD68519DD1EFC971D223CBB3702F38146CB4203E2F6A4302EE3F76144EB ] FxPPM C:\windows\System32\drivers\fxppm.sys
15:04:18.0839 0x1290 FxPPM - ok
15:04:18.0855 0x1290 [ 52BC441E07A827EBAB70CDC7EAEDB28D, 8DECBD8E12EA52039742599CFBBF0D3B6610B57EF8D9DAEEEA33D202A478D286 ] gagp30kx C:\windows\system32\drivers\gagp30kx.sys
15:04:18.0871 0x1290 gagp30kx - ok
15:04:18.0917 0x1290 [ C403C5DB49A0F9AAF4F2128EDC0106D8, 3C6948B63278022D8182F773C5FA15784514F76C1546118DDBADBA322B962D12 ] GamesAppService C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
15:04:18.0949 0x1290 GamesAppService - ok
15:04:18.0980 0x1290 [ 721F8EEF5E9747F32670DEFF7FB92541, E0A8EF70753E260C2C7D93D316B5EF9589DB086FDF829BDA2958C6A09CE471A6 ] gencounter C:\windows\System32\drivers\vmgencounter.sys
15:04:18.0980 0x1290 gencounter - ok
15:04:19.0011 0x1290 [ CA18ECFCFFDD638ECE80799A9056B238, FEA6778443253CBAA9FF43A980D576A3F449B036151F91495F04CE0C54F02254 ] GPIOClx0101 C:\windows\system32\Drivers\msgpioclx.sys
15:04:19.0027 0x1290 GPIOClx0101 - ok
15:04:19.0105 0x1290 [ 5358678C6370F2ADC5291849F6503262, 841633D7A936C3889690C67E189BAD4C6B294C196FFFE5B564FCECDFE46A9E52 ] gpsvc C:\windows\System32\gpsvc.dll
15:04:19.0136 0x1290 gpsvc - ok
15:04:19.0167 0x1290 [ 9FC1F11D4D19F61DFE5CC878B4557D3A, 17A0EC253D04FBD25C2113FD96FBF9D822E8295623C1B1DDA712FB102D42E956 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
15:04:19.0183 0x1290 HdAudAddService - ok
15:04:19.0199 0x1290 [ 7D87B5B6C7188D553E11B59DC7F0B111, FC633DB71E1D72E8AD8F89BBB54324CC6ED17F5594EF55DD0BDB58EE1F601FF5 ] HDAudBus C:\windows\System32\drivers\HDAudBus.sys
15:04:19.0214 0x1290 HDAudBus - ok
15:04:19.0230 0x1290 [ 3F76BBA53D65E85A7F53E7A71082082C, D1E18815BB19CD11007C4A66162C76F55D4FE6B09B34ED45969C7ECC29D394AD ] HidBatt C:\windows\System32\drivers\HidBatt.sys
15:04:19.0230 0x1290 HidBatt - ok
15:04:19.0261 0x1290 [ A25BAE8C1F2830C8E5625EC7E4E968BE, 81D441B6616094C604453D8EC289C29D9B84A323B5C7C312C96C8380D51538DA ] HidBth C:\windows\System32\drivers\hidbth.sys
15:04:19.0277 0x1290 HidBth - ok
15:04:19.0277 0x1290 [ AC0526C4E3A7954F750B8F8D95EFB340, BE5180F60761F513B3CD5FC395BB8BCF6EAB6D7A910E0C824FFBEC128285F7A7 ] hidi2c C:\windows\System32\drivers\hidi2c.sys
15:04:19.0292 0x1290 hidi2c - ok
15:04:19.0324 0x1290 [ DC96F7DACB777CDEAEF9958A50BFDA06, 7CE79F32D5EE65C0178CFF56523825D3EE01095B2CE8C67634A6604A821A9086 ] HidIr C:\windows\System32\drivers\hidir.sys
15:04:19.0324 0x1290 HidIr - ok
15:04:19.0355 0x1290 [ FAC37D7B3D6354A5A5E19A45B50B4008, 2962B552A1DA545DFDEF0886582E82596FE8A3A19AAF989B025AFDA84D16D4EC ] hidserv C:\windows\system32\hidserv.dll
15:04:19.0355 0x1290 hidserv - ok
15:04:19.0371 0x1290 [ 590B6F71BCDA4368B4BF7D8DF22B60F7, 5CED8ACCBBF373607A8CEC81E9F9856C450A73A969E07DF3218B85F444CA7D3F ] HidUsb C:\windows\System32\drivers\hidusb.sys
15:04:19.0371 0x1290 HidUsb - ok
15:04:19.0402 0x1290 [ 43F884B61A24377567CD0FEB35236334, B3BA36B527C8D6D83DE2FBCD8D503B87FD2611BF15B07A7BC138DC8BAE6A50C1 ] hkmsvc C:\windows\system32\kmsvc.dll
15:04:19.0402 0x1290 hkmsvc - ok
15:04:19.0433 0x1290 [ 6CC1AD7B0E071C317B7FB8FC6AEF0EDA, 2A907E87E491F76B75F13CD921962EA4D1FF4C705E393F8FA3F48EC701E668F5 ] HomeGroupListener C:\windows\system32\ListSvc.dll
15:04:19.0433 0x1290 HomeGroupListener - ok
15:04:19.0480 0x1290 [ E0D9F6FE18FA7F53ADD29AF719CE2B7E, B965DCC72625188F3B896CB447B7696F22687266EAFC5AA270E2AD53DD9F324D ] HomeGroupProvider C:\windows\system32\provsvc.dll
15:04:19.0480 0x1290 HomeGroupProvider - ok
15:04:19.0527 0x1290 [ 64DB7A8D97CA53DCCF93D0A1E08342CF, 02CAB7F28D3830C482683425C60044239C6F1562556688A274CA2C237C846E76 ] HpSAMD C:\windows\system32\drivers\HpSAMD.sys
15:04:19.0543 0x1290 HpSAMD - ok
15:04:19.0574 0x1290 [ 47DBBF38E00C3F7404B71F6509241EF1, CBB3B3F46F702605DD47F12C318984937D7E8384C0A6B62556A6961F74305292 ] HTTP C:\windows\system32\drivers\HTTP.sys
15:04:19.0589 0x1290 HTTP - ok
15:04:19.0605 0x1290 [ 2A98301068801700906C06649860FE94, 664394A52326289DCA0828B0041A105653F4FEF3E3DCCC3787AAE0F6FDC73A14 ] hwpolicy C:\windows\system32\drivers\hwpolicy.sys
15:04:19.0605 0x1290 hwpolicy - ok
15:04:19.0605 0x1290 [ DC76901D82097C9E297F20C287CB9A27, 01A412D0D8A65050BE4250A7C4B9F98A4C43FD891827761E0C830369A5F9F09C ] hyperkbd C:\windows\System32\drivers\hyperkbd.sys
15:04:19.0605 0x1290 hyperkbd - ok
15:04:19.0605 0x1290 [ 716413AB3CA12DE0A7222D28C1C9352C, B82B586BD9DBD70DDA19A02504E8CB00DA53677703AB848B53387601C5BAD3D3 ] HyperVideo C:\windows\system32\DRIVERS\HyperVideo.sys
15:04:19.0605 0x1290 HyperVideo - ok
15:04:19.0621 0x1290 [ C9E9CBF73AFFBFE3E801EFB516787BA3, 1A850D614BDA6AA4195CC657702BC6242BA51B90131717743182AA160F65E72C ] i8042prt C:\windows\System32\drivers\i8042prt.sys
15:04:19.0621 0x1290 i8042prt - ok
15:04:19.0652 0x1290 [ 050F2539E14F9D5E90A4B61738EC29BD, 0E65468B9F452FA7DB6DF2C1B2B2E9439C79031E27054FBDBDFE28A9F98721D7 ] iaStorA C:\windows\system32\drivers\iaStorA.sys
15:04:19.0652 0x1290 iaStorA - ok
15:04:19.0699 0x1290 [ 5E394EBD26FD68AA9300332C46BEDD62, 56A5DA7CE08C07B519E55D0A46AA9D10B640349808EFE02B3278267B75B5F603 ] iaStorV C:\windows\system32\drivers\iaStorV.sys
15:04:19.0699 0x1290 iaStorV - ok
15:04:19.0793 0x1290 [ F6F8CDA3CC5207BFD0B319A26E33ACD3, 6630DEE80A85DA972D3734A5D67E274AEE7042A73AB45E19E15DC989AE88459E ] IDSVia64 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\IPSDefs\20140724.001\IDSvia64.sys
15:04:19.0824 0x1290 IDSVia64 - ok
15:04:20.0089 0x1290 [ 11A31FC2481BFE69B0507ED8C80215F4, 8A1E90611F749E8F04B6D86E835E981CAC16D0841305CADB19E58682DA006698 ] igfx C:\windows\system32\DRIVERS\igdkmd64.sys
15:04:20.0355 0x1290 igfx - ok
15:04:20.0386 0x1290 [ 24847A06B84339FEEDE5CABF3D27D320, 7727B1DAD0D4A1D474FBBEFCEBDF36A1F07D1AA300869AE57A24ED91BF84B6B4 ] iirsp C:\windows\system32\drivers\iirsp.sys
15:04:20.0386 0x1290 iirsp - ok
15:04:20.0433 0x1290 [ 45EACE8D94B9CEC746A85154892C4FDC, F2507F1AA4C5D54EC8151B44CD033B231C708B57761432E5EDEE6219122301C2 ] IKEEXT C:\windows\System32\ikeext.dll
15:04:20.0464 0x1290 IKEEXT - ok
15:04:20.0574 0x1290 [ 9FEAC097F98F883D0A389C1C36C5DFBD, D27FFCA99D527EFA1280E48B2D76ED614A5F1738D5995C007ECAA6A36B3E2E69 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
15:04:20.0668 0x1290 IntcAzAudAddService - ok
15:04:20.0699 0x1290 [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud C:\windows\system32\DRIVERS\IntcDAud.sys
15:04:20.0714 0x1290 IntcDAud - ok
15:04:20.0808 0x1290 [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC, F791EE101EEF8B9F48102B6C63A89B78F7C0041C750C4F4C0D16D54B583B7B5C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
15:04:20.0824 0x1290 Intel® Capability Licensing Service Interface - ok
15:04:20.0886 0x1290 [ 9656F8E29F6C3161A3E99BCD3A472FF9, 30AD00B53CCB2E4121508729F3471D3C0568F1C32324C398382C97E8BC43ECF0 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe
15:04:20.0902 0x1290 Intel® ME Service - ok
15:04:20.0933 0x1290 [ 4F37726CF764CA18A8A84F85EF3A7F24, 6212B23917526E127CE641A11A58DA93651FFE70829C4079FE465DBDC81CF470 ] intelide C:\windows\system32\drivers\intelide.sys
15:04:20.0933 0x1290 intelide - ok
15:04:20.0949 0x1290 [ F9E126AA767E2E6E3128434A43C9F713, 1BF023083158DB1D76E89C77D383C082F1CA19F00C8FC3B0C30A93263A32BCEA ] intelppm C:\windows\System32\drivers\intelppm.sys
15:04:20.0964 0x1290 intelppm - ok
15:04:20.0964 0x1290 [ 8FCA66234A0933D796BB780B7953BAB9, 7DD677F5EE09A8D7A75C9E475B5E6B3DCA49D1E846C7D160B839D7029B1C5B6D ] IpFilterDriver C:\windows\system32\DRIVERS\ipfltdrv.sys
15:04:20.0964 0x1290 IpFilterDriver - ok
15:04:21.0027 0x1290 [ CAC5202757EF68C4849B0DFFA75F6D3C, D68EDCED68DB7755AA8BE5EC2784C124888BA4ED33B3E366FD83C3E64E42B770 ] iphlpsvc C:\windows\System32\iphlpsvc.dll
15:04:21.0058 0x1290 iphlpsvc - ok
15:04:21.0074 0x1290 [ 6E98A046A12AA113F8898AA5D612BD6E, 28816CC1F03F2BFBF099C087C0BB6949E959F44C888DD2D0528FF7ED5D665ECF ] IPMIDRV C:\windows\System32\drivers\IPMIDrv.sys
15:04:21.0089 0x1290 IPMIDRV - ok
15:04:21.0121 0x1290 [ 3969B9C218DD3FAA9F4ED2FFC3651C02, 93447F124CC55FB17055126432194153E1BB8F0FD95A47608494B6834A5F7089 ] IPNAT C:\windows\system32\drivers\ipnat.sys
15:04:21.0136 0x1290 IPNAT - ok
15:04:21.0168 0x1290 [ 25CD7C4BB2863FFC2B0B311F0AEBF77C, 4099BAA2DB4ADB93B878D71E241B7D9EB7E0EE7ED0FE2450CCB9E4718B3726EB ] IRENUM C:\windows\system32\drivers\irenum.sys
15:04:21.0168 0x1290 IRENUM - ok
15:04:21.0168 0x1290 [ D940C5BB9DC92E588533C19ABCC3D2C2, D1442854CEDE86F2C187A35851E74C873D34B772C60BC118FA1577F79C03364D ] isapnp C:\windows\system32\drivers\isapnp.sys
15:04:21.0168 0x1290 isapnp - ok
15:04:21.0214 0x1290 [ F5F0DE1B7F256997501EECECE9648108, F9B602EA6B278980A299BB7A393ED09388761DE56162AC998398AB95B5A4EC3E ] iScsiPrt C:\windows\System32\drivers\msiscsi.sys
15:04:21.0214 0x1290 iScsiPrt - ok
15:04:21.0261 0x1290 [ 78ABBE558F57144047F10A0F50FE4B2F, 6BE608F7697D83FD6C7E6EA422AC5637933BDC96B1044C12DE9A419CE7D6F6CE ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
15:04:21.0277 0x1290 jhi_service - ok
15:04:21.0293 0x1290 [ 8FBD94B69D6423E20ABCD59D86368B21, 218EF992095E365EC917413749856A64D55D8129D77098E24D670843233377F4 ] kbdclass C:\windows\System32\drivers\kbdclass.sys
15:04:21.0293 0x1290 kbdclass - ok
15:04:21.0324 0x1290 [ E88C932ABDF8185A62C8F2FC7B051FB6, 67F9AF58237A11F0BF3D15AA5B32E5CE66B7AA039B999D938F7F6E63DCEA7A6E ] kbdhid C:\windows\System32\drivers\kbdhid.sys
15:04:21.0324 0x1290 kbdhid - ok
15:04:21.0324 0x1290 [ FB6C185092E18011EF49989425C2AA87, 043524409E0A764201DD221C48B7DEEA0D161945EB37D4B88313BAB2299949DF ] kdnic C:\windows\system32\DRIVERS\kdnic.sys
15:04:21.0324 0x1290 kdnic - ok
15:04:21.0340 0x1290 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] KeyIso C:\windows\system32\lsass.exe
15:04:21.0355 0x1290 KeyIso - ok
15:04:21.0371 0x1290 [ DFA480F6DED551464F3A5B959F437800, C07AB6F28A09FCBE11EECAD03B06CEAE1016EC24031FCA0C092639E90FBA84CF ] KSecDD C:\windows\system32\Drivers\ksecdd.sys
15:04:21.0371 0x1290 KSecDD - ok
15:04:21.0371 0x1290 [ E427D299CFE267A2465D3AAF81440ED9, 78F2649FDFF78C358E4FF8EB9772F726A23457658C1CCEABA4D4DEF6927A0423 ] KSecPkg C:\windows\system32\Drivers\ksecpkg.sys
15:04:21.0386 0x1290 KSecPkg - ok
15:04:21.0402 0x1290 [ 81492FEEBF2F26455B00EE8DBAE8A1B0, E33AA2DFB2D3BB30B02CDADA2EC290F86329DA3198327A653F39A843D86390B9 ] ksthunk C:\windows\system32\drivers\ksthunk.sys
15:04:21.0402 0x1290 ksthunk - ok
15:04:21.0449 0x1290 [ 5825DBACEDC3812B5CF8D40B997BF210, 1C2997BCC707C1029B21876E093038CE3BBF6E6694B4CCF7EEDD47172ED9A541 ] KtmRm C:\windows\system32\msdtckrm.dll
15:04:21.0465 0x1290 KtmRm - ok
15:04:21.0496 0x1290 [ 917D9184F4D40A64410832CF68AC0508, 52EAF9CC16FA21D1609BC970692EB0FF66D232579093AA744A4A1FC9A1403BDA ] L1C C:\windows\system32\DRIVERS\L1C63x64.sys
15:04:21.0496 0x1290 L1C - ok
15:04:21.0558 0x1290 [ 256EE31588257E8A555DBFAA13F1908E, B6817F632EDEA483E35BF26846DCDD4E95E860620959179B2A5D8AD7EEDDB126 ] LanmanServer C:\windows\system32\srvsvc.dll
15:04:21.0574 0x1290 LanmanServer - ok
15:04:21.0605 0x1290 [ 16650912BE5A94B40E0B3B4C39652B56, 908C2C9367AE0AC9AECB5D91514BB33ACD746D99F19C1A8DD6A9550E9CAD9E00 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
15:04:21.0605 0x1290 LanmanWorkstation - ok
15:04:21.0636 0x1290 [ CEEFD29FC551F289810B0B9381B321DC, 900F206B487B2190D9363F28AA4BA0CD7DCFE1D005BE05A48AF74B1B81194691 ] lltdio C:\windows\system32\DRIVERS\lltdio.sys
15:04:21.0636 0x1290 lltdio - ok
15:04:21.0683 0x1290 [ BCF53485E0A94722CDE3C4A93CD8EB8C, D24E1066EB102245A89A5D17D608DB9DF6B71C99F1C77E070B95EFD17D268141 ] lltdsvc C:\windows\System32\lltdsvc.dll
15:04:21.0683 0x1290 lltdsvc - ok
15:04:21.0699 0x1290 [ 5A2F7F1CBC2E631A497DAD16164E06D2, 35274FC6C386380B01B5E8F467E71A2C4E2FB2AD701554F9B1A9B036B0340142 ] lmhosts C:\windows\System32\lmhsvc.dll
15:04:21.0699 0x1290 lmhosts - ok
15:04:21.0730 0x1290 [ 2C24DC448DBE8DB9BE1441B824C57E79, DA2257EEC964A47D03C2BB13317FD788E51D4685E2395B303ED7B2575FEF3B19 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
15:04:21.0746 0x1290 LMS - ok
15:04:21.0777 0x1290 [ 022CDD12161B063D7852B1075BF3FFF2, E21267243AF2FC208D27E67827B1264A762C99AECEDB7AD2C48A04F421A6B2F0 ] LSI_SAS C:\windows\system32\drivers\lsi_sas.sys
15:04:21.0777 0x1290 LSI_SAS - ok
15:04:21.0793 0x1290 [ 07AD59D669B996F29F91817F0ECFA34F, 026F332F862D142BFFC9D169CCD17A35BFB6B301EEC72AA13E16369B3520919C ] LSI_SAS2 C:\windows\system32\drivers\lsi_sas2.sys
15:04:21.0793 0x1290 LSI_SAS2 - ok
15:04:21.0793 0x1290 [ 216FB796AA4E252ACCE93B1BCB80B5EC, 5B1E49B5F7B9C7A778198D27F8EE500FE35DC32D40B22A3D6ED67560BEB04212 ] LSI_SCSI C:\windows\system32\drivers\lsi_scsi.sys
15:04:21.0808 0x1290 LSI_SCSI - ok
15:04:21.0808 0x1290 [ 5E80530AF37102488EE980B4A92AF99F, 364E18EAD9AC22F8A306B24C6C43E58224F6BE2744EFEAA2484696B8D9880851 ] LSI_SSS C:\windows\system32\drivers\lsi_sss.sys
15:04:21.0808 0x1290 LSI_SSS - ok
15:04:21.0840 0x1290 [ 8FEFDCEE40B75FD23B4BC60DA6576113, 1C3B690B00D95F6A4DB9225A42B1E5BF5A586785A3E097A9D46D35D580490924 ] LSM C:\windows\System32\lsm.dll
15:04:21.0840 0x1290 LSM - ok
15:04:21.0855 0x1290 [ 2BDC5D711FA61307CE6190D47C956368, 6BCDC6CBB9783F1ABE8957BDA94AF977DFB2A310BB6D19085EFC8609C97FD180 ] luafv C:\windows\system32\drivers\luafv.sys
15:04:21.0855 0x1290 luafv - ok
15:04:21.0886 0x1290 [ 9B0D829C3BE4E7472DB9DD2B79908E3C, ACED5806FFF39E84007B5A3DCB16315329DC53007F46B1BEEDC391CC659F7DD3 ] megasas C:\windows\system32\drivers\megasas.sys
15:04:21.0886 0x1290 megasas - ok
15:04:21.0902 0x1290 [ ECC3F54C7AFC318271C4F0B4606D8DB0, FD1ACB18B8C912C7A57DABCD5460800DD0721A82E09C8D79C47B3392D61CBEA6 ] MegaSR C:\windows\system32\drivers\MegaSR.sys
15:04:21.0902 0x1290 MegaSR - ok
15:04:21.0918 0x1290 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\windows\System32\drivers\HECIx64.sys
15:04:21.0918 0x1290 MEIx64 - ok
15:04:21.0949 0x1290 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] MMCSS C:\windows\system32\mmcss.dll
15:04:21.0949 0x1290 MMCSS - ok
15:04:21.0965 0x1290 [ 780098AD5DA8A4822E2563984C85EF7B, 29312970774E944B5ED388316CF3D350DCABF721F9695737B0AC56BE878B0446 ] Modem C:\windows\system32\drivers\modem.sys
15:04:21.0965 0x1290 Modem - ok
15:04:21.0996 0x1290 [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935, CC3F4E09F8834C7293B607446FECFE3CBB9B9151E65AAD38E2A4A8B30244DE14 ] monitor C:\windows\System32\drivers\monitor.sys
15:04:21.0996 0x1290 monitor - ok
15:04:21.0996 0x1290 [ 618446B98C79776654340CE27C73485E, EFE7169FDD545933B5949DA2D09266971C0C3E6894E7BD8AFE29E41567C72B16 ] mouclass C:\windows\System32\drivers\mouclass.sys
15:04:21.0996 0x1290 mouclass - ok
15:04:22.0027 0x1290 [ CB2527B8B87D83E56FBF3944BBB6F606, F8DA5AF97B91099C58E14D1DACBCA02AF8F193E53A88DDC8CC4C0655A2E4F90B ] mouhid C:\windows\System32\drivers\mouhid.sys
15:04:22.0027 0x1290 mouhid - ok
15:04:22.0043 0x1290 [ 89D263DBF08119CE16273991C120D6DD, 9771EDAD266F0E234E71DFB6792F396710E051F2ADCA5CDADEBBD2790D0E6054 ] mountmgr C:\windows\system32\drivers\mountmgr.sys
15:04:22.0043 0x1290 mountmgr - ok
15:04:22.0058 0x1290 [ 36BF4D86F166ACBC14F0B8B8F90CBCEA, 9127DB0ABCCF57DEEB6447EEE33C5F4724472763DB1941D6FA74C745512D0DA2 ] mpsdrv C:\windows\system32\drivers\mpsdrv.sys
15:04:22.0074 0x1290 mpsdrv - ok
15:04:22.0105 0x1290 [ 411EA973A1961C287927DF13891EB41E, 1DA42631346FF8B43443A4DCE838AEB3C7166FBB272FC47740B09A1A1CE5CCBC ] MpsSvc C:\windows\system32\mpssvc.dll
15:04:22.0136 0x1290 MpsSvc - ok
15:04:22.0136 0x1290 [ 3D70147F55F1EC84EB9139ED7FFE48BC, 12429C2FDDDA13815F0E18F9009011AA5360955759A23A38175543F480CB92EF ] MRxDAV C:\windows\system32\drivers\mrxdav.sys
15:04:22.0136 0x1290 MRxDAV - ok
15:04:22.0168 0x1290 [ 526C4E1AB4E7AC1160CEF70934C4C17A, 664435E4741C11AA95D7DC8FA1186D96FA52B398FE9BD897B5FD7DDE5A1235E1 ] mrxsmb C:\windows\system32\DRIVERS\mrxsmb.sys
15:04:22.0183 0x1290 mrxsmb - ok
15:04:22.0199 0x1290 [ 06D5F2FA3C61E8EA91648EA8E9F99FD3, C665B7896501D42C73955F4EAF4FA3C6B2C9286957D6023C235AFBF9BFB761C6 ] mrxsmb10 C:\windows\system32\DRIVERS\mrxsmb10.sys
15:04:22.0199 0x1290 mrxsmb10 - ok
15:04:22.0215 0x1290 [ 0D2316EF7571B917B0A6EBAA0B8E2538, 81ACE8D2C7B635B73B36EEAA1BB0EC30EDB7C95642DF6801EAA2BCE937FD73DA ] mrxsmb20 C:\windows\system32\DRIVERS\mrxsmb20.sys
15:04:22.0215 0x1290 mrxsmb20 - ok
15:04:22.0246 0x1290 [ 98487487D6B3797CA927E9D7B030AE13, 05840AF0DD2E3CB596DA768DBD0728B52210EC05B55AB5921E697AD8956938DD ] MsBridge C:\windows\system32\DRIVERS\bridge.sys
15:04:22.0246 0x1290 MsBridge - ok
15:04:22.0261 0x1290 [ 4A07458EB4F17573BD39F22029A991C1, 74D7A1882EA4D19B8F090C2813489E5D3F759BF4AF2D88AE852EC6510C405B5E ] MSDTC C:\windows\System32\msdtc.exe
15:04:22.0261 0x1290 MSDTC - ok
15:04:22.0293 0x1290 [ 3886F1F2A4D2900ABAA7E4486BEEE6A2, ECCA22985838A914EDC866C491DEB64B9FF5110EFA9BEE541F634AC5EC3081F9 ] Msfs C:\windows\system32\drivers\Msfs.sys
15:04:22.0293 0x1290 Msfs - ok
15:04:22.0308 0x1290 [ C9BFB0353099B071E70299549C18C8AE, 5BEB200A6B824F63E2F39BA4F0693DBAC948BEA3B5A56AC9715716F1CE387566 ] msgpiowin32 C:\windows\System32\drivers\msgpiowin32.sys
15:04:22.0308 0x1290 msgpiowin32 - ok
15:04:22.0324 0x1290 [ D3857A767B91A061B408CCAB02DA4F40, A4D780772086AD8717EE6DC2B6189F796939FB5E5AA08FD9D1984101998FBECF ] mshidkmdf C:\windows\System32\drivers\mshidkmdf.sys
15:04:22.0324 0x1290 mshidkmdf - ok
15:04:22.0324 0x1290 [ 839B48910FB1E887635C48F3EC11A05E, F8CFD99911500CC1B6A90C8E2A1697BD5A6E5776A62A62FE5B342FE204C936B1 ] mshidumdf C:\windows\System32\drivers\mshidumdf.sys
15:04:22.0324 0x1290 mshidumdf - ok
15:04:22.0340 0x1290 [ 55C0DB741E3AB7463242B185B1C2997C, D2E2A5B48A64EA0EC2A6566C08E65A38D11CEA64BCA7B57793BA0D009E4D974A ] msisadrv C:\windows\system32\drivers\msisadrv.sys
15:04:22.0340 0x1290 msisadrv - ok
15:04:22.0371 0x1290 [ 216C6B035A4BA5560E1255BD8E5BB89F, A14E038604B9A5506DB145A4D9F51E2751AC825240D2744924F39C332B5DE00B ] MSiSCSI C:\windows\system32\iscsiexe.dll
15:04:22.0371 0x1290 MSiSCSI - ok
15:04:22.0371 0x1290 msiserver - ok
15:04:22.0386 0x1290 [ 509809566E49F4411055864EA8D437CD, 70F37BF9C759E8BCA1C6AC8FB9805950925E1C648ED37E8561A0F7A407DFDC28 ] MSKSSRV C:\windows\system32\drivers\MSKSSRV.sys
15:04:22.0386 0x1290 MSKSSRV - ok
15:04:22.0418 0x1290 [ 63145201D6458E4958E572E7D6FC2604, EDD4A8A3BBE94B983554B1117734E66A2647B867269C5F0567C47EDE6F3FACCB ] MsLldp C:\windows\system32\DRIVERS\mslldp.sys
15:04:22.0418 0x1290 MsLldp - ok
15:04:22.0418 0x1290 [ 99D526E803DB6D7FF290FD98B6204641, 4AFAA3B1186621AEAD19E12D3DBE104DD8FCD5C106F9EC3ADA4AD1BC7093E61F ] MSPCLOCK C:\windows\system32\drivers\MSPCLOCK.sys
15:04:22.0433 0x1290 MSPCLOCK - ok
15:04:22.0433 0x1290 [ 06FA77C3E2A491ADCD704C5E73006269, 465A7EE5387E6C11398A554F73437278F5BF110356E7F49F315905C1F2459278 ] MSPQM C:\windows\system32\drivers\MSPQM.sys
15:04:22.0433 0x1290 MSPQM - ok
15:04:22.0465 0x1290 [ E134EC4DE11CF78CB01432D180710D84, BB111F97AEEFDCA5866B157E9957599CD7A4952B5BCCA0B0BCA9EDFCD17E61FE ] MsRPC C:\windows\system32\drivers\MsRPC.sys
15:04:22.0480 0x1290 MsRPC - ok
15:04:22.0480 0x1290 [ B5AECF12F09DEE97C9FCAA5BA016CE1E, F5305C4CE6C93A3A3481BD13BE0C23FE26571E11029ACFFE75FB78913681FCFC ] mssmbios C:\windows\System32\drivers\mssmbios.sys
15:04:22.0480 0x1290 mssmbios - ok
15:04:22.0480 0x1290 [ 72D66A05E0F99F2528F6C6204FD22AA1, B14D433BC5795F1DC4C672302285E665DC012693E75574F60664AAD8874DE562 ] MSTEE C:\windows\system32\drivers\MSTEE.sys
15:04:22.0480 0x1290 MSTEE - ok
15:04:22.0496 0x1290 [ 8AAAE399FC255FA105D4158CBA289001, 2F55C02605B4A3406B289FF9D46C76260B9138E3DE96AFAEA0E0522E5A2A746C ] MTConfig C:\windows\System32\drivers\MTConfig.sys
15:04:22.0496 0x1290 MTConfig - ok
15:04:22.0496 0x1290 [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A, 00D33A4AB3E7C5F65F59C63F8E2FD27EF38D5484595F785D5632E9414E29352C ] Mup C:\windows\system32\Drivers\mup.sys
15:04:22.0496 0x1290 Mup - ok
15:04:22.0511 0x1290 [ 3A1E095277BBD406CEA8EA6B76950664, 47838F307A6354E77C19A7B1F3F3E22726EF60403B611F358AD6FFE81D7214E7 ] mvumis C:\windows\system32\drivers\mvumis.sys
15:04:22.0511 0x1290 mvumis - ok
15:04:22.0543 0x1290 [ 4B18840511D720BA118D3017E8165875, 724458A69269A5AE57E8DAB74FF3C198A79B6F7A9602BF38A70B4A40543ED167 ] napagent C:\windows\system32\qagentRT.dll
15:04:22.0558 0x1290 napagent - ok
15:04:22.0652 0x1290 [ 8FA07AF404BC705FDEC03493644970B2, BF3B681AB11D830524607B3C5790B83A886B7CBDE397C3C7C9C96F79E2EC244D ] NAT C:\Program Files (x86)\Norton Anti-Theft\Engine\1.10.0.9\NAT.exe
15:04:22.0668 0x1290 NAT - ok
15:04:22.0715 0x1290 [ 43D7388A90A4C6EA346A4D6FF0377479, DFDCFA448B49C8A577056070AF516F08CD2E452706A3CF9173195ABA4256F35D ] NativeWifiP C:\windows\system32\DRIVERS\nwifi.sys
15:04:22.0730 0x1290 NativeWifiP - ok
15:04:22.0793 0x1290 [ 702E07EC32F96ACDB873E9A5465D4401, 2C6B1C8BA0BF4791AEA064062DCA3678AE4443DF19DB37D6CB55BA6297D8A238 ] NAVENG C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20140724.017\ENG64.SYS
15:04:22.0808 0x1290 NAVENG - ok
15:04:22.0886 0x1290 [ 302EA314A1AF0D7CEF0A3D0195F79561, 046DBC2D9D028F2D2E8BAE745CA2ADEF42741689BFF743A13B81EA4228DDCDC6 ] NAVEX15 C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_20.1.0.24\Definitions\VirusDefs\20140724.017\EX64.SYS
15:04:22.0933 0x1290 NAVEX15 - ok
15:04:22.0965 0x1290 [ 6A0C3996DA7DAE6D6939676D786EEEC4, 6E8A4C6234FD3040BC889E92016A4D5AC7BCAF5059521E50C733966163A546A0 ] NcaSvc C:\windows\System32\ncasvc.dll
15:04:22.0980 0x1290 NcaSvc - ok
15:04:22.0996 0x1290 [ C982FE4CC91DECE2259F494FCEB4030F, 4C285407E6F9FBBA92180F4063AEFB736ED142D802F0151002F0CC20AB7BB4E5 ] NcdAutoSetup C:\windows\System32\NcdAutoSetup.dll
15:04:22.0996 0x1290 NcdAutoSetup - ok
15:04:23.0043 0x1290 [ FE6463C1574610E26ED8DE2054DF59A4, 736680A9B567709A32D668D84A1AD630AD5CE048BBC3005826EB8F7E40C6ABA2 ] NDIS C:\windows\system32\drivers\ndis.sys
15:04:23.0058 0x1290 NDIS - ok
15:04:23.0074 0x1290 [ 39C8A1D9D46F5E83A016BCAB72455284, 80DBED610E0818C2C7122FBC5BC8C15BCE981538AE48DC48F464A86389AF3F68 ] NdisCap C:\windows\system32\DRIVERS\ndiscap.sys
15:04:23.0074 0x1290 NdisCap - ok
15:04:23.0090 0x1290 [ 762941932B7E4C588E48A577BA9D6440, 71FA1870E398CB848D8294FEF6C60E0499CAB9A16EC3F487564C41072590E4F3 ] NdisImPlatform C:\windows\system32\DRIVERS\NdisImPlatform.sys
15:04:23.0090 0x1290 NdisImPlatform - ok
15:04:23.0105 0x1290 [ 7A6F8A6D0E01432EBA294EF29CDD0FA7, D902AE15194A9F8A2198914FC76184FE7E2B589747275952A04A52853128FDB8 ] NdisTapi C:\windows\system32\DRIVERS\ndistapi.sys
15:04:23.0105 0x1290 NdisTapi - ok
15:04:23.0105 0x1290 [ 79AB68BB3FFF974AD4F41FA559F4EC67, 1745EC6520B48E325C56D98A1F4DB9CE135FE3E097B3D66E6598791132CAD7BD ] Ndisuio C:\windows\system32\DRIVERS\ndisuio.sys
15:04:23.0121 0x1290 Ndisuio - ok
15:04:23.0121 0x1290 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NdisWan C:\windows\system32\DRIVERS\ndiswan.sys
15:04:23.0121 0x1290 NdisWan - ok
15:04:23.0136 0x1290 [ 62C7DBF4F9301F76CF87D4B9D8F57BF8, D51FEF198F74FDF583826E259E4736F51CD49908194104677889FD135EEC2EBC ] NDISWANLEGACY C:\windows\system32\DRIVERS\ndiswan.sys
15:04:23.0136 0x1290 NDISWANLEGACY - ok
15:04:23.0136 0x1290 [ CE6EBC0AD38CC6482D8FBB744FF15CE2, B8712DB2E574ECFBC840FAAFB874644AB56909382BA2A5A8BC599874BBEAA543 ] NDProxy C:\windows\system32\drivers\NDProxy.sys
15:04:23.0136 0x1290 NDProxy - ok
15:04:23.0152 0x1290 [ D3F60A4345FCA9C1BE68AD7D0D6DE770, 214AF09F4B021C2F8655FBC8AC8C801E89CD9115CDE690FAEBDA69D63D660EDD ] Ndu C:\windows\system32\drivers\Ndu.sys
15:04:23.0152 0x1290 Ndu - ok
15:04:23.0152 0x1290 [ 7C203A76394F9AE68F69EEE5F9612C4A, 2222654915913BDC9367A2075714906A10CF22C047A7494CD59CB71834ED1B62 ] NetBIOS C:\windows\system32\DRIVERS\netbios.sys
15:04:23.0168 0x1290 NetBIOS - ok
15:04:23.0168 0x1290 [ 7CEC25C682D319D484630B3952C31A11, 025C46B367E0570E9E3F9DF1564C3E47B1524E9E9A180BBDF0E9C684838F5E42 ] NetBT C:\windows\system32\DRIVERS\netbt.sys
15:04:23.0183 0x1290 NetBT - ok
15:04:23.0199 0x1290 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] Netlogon C:\windows\system32\lsass.exe
15:04:23.0199 0x1290 Netlogon - ok
15:04:23.0230 0x1290 [ 89519D29CBEC2121CA65CC29C4D345E0, F3BA7BCAFEC8DD8B29837458D1B2B1DEE748AEAAAE0575FD3AAE65CFC72A04CD ] Netman C:\windows\System32\netman.dll
15:04:23.0230 0x1290 Netman - ok
15:04:23.0261 0x1290 [ 20F6FD63E6D456114BC8056D62792786, 12EDB8DD4D647F8CF680ABD1A36704EE9BEBE5F65C821E6D76F798441AF2C199 ] netprofm C:\windows\System32\netprofmsvc.dll
15:04:23.0261 0x1290 netprofm - ok
15:04:23.0324 0x1290 [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:04:23.0340 0x1290 NetTcpPortSharing - ok
15:04:23.0386 0x1290 [ 12DD2800E4EEA37DC9AE256AD62423B4, 34740469EEA8740CBACD881CB232C9ABB9AB180DE5F45336BC6DBE154259F29B ] nfrd960 C:\windows\system32\drivers\nfrd960.sys
15:04:23.0386 0x1290 nfrd960 - ok
15:04:23.0480 0x1290 [ 1BF9D6476061B31CD7FC2BF848529A56, 95B585543240E823D7850ADEEEA7A4738EF9E18A4B07D921F145F6EF466F0271 ] NIS C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\ccSvcHst.exe
15:04:23.0480 0x1290 NIS - ok
15:04:23.0527 0x1290 [ 80ABCD4C2DE9FD832477303AE0CA3BE5, 98F3958E650CEB1006D92980503E1B176D2CA55D2A6742C1C27CDE829D137DA9 ] NlaSvc C:\windows\System32\nlasvc.dll
15:04:23.0543 0x1290 NlaSvc - ok
15:04:23.0715 0x1290 [ EC6B98656770A0441C14BB86FEFC90AE, 47201FCC207F7AD212E65F4EA6BCDF74D60F6D83EB1C80EA4AAE16CCA36B9235 ] NOBU C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
15:04:23.0840 0x1290 NOBU - ok
15:04:23.0887 0x1290 Norton PC Checkup Application Launcher - ok
15:04:23.0918 0x1290 [ 17E19A742FB30C002F8B43575451DBE1, 59D226A4A5B5281C399BE96C694915E38EEAF335D31F346B0C65D8F469D7C9C3 ] Npfs C:\windows\system32\drivers\Npfs.sys
15:04:23.0918 0x1290 Npfs - ok
15:04:23.0933 0x1290 [ 8ED299C30792544264E558BEA79F0947, 8A03FDA9AADB79ECBCBCDC988B7D8CF0672689C9DF673A2ECFE0D2D88A9C6A6B ] npsvctrig C:\windows\System32\drivers\npsvctrig.sys
15:04:23.0933 0x1290 npsvctrig - ok
15:04:23.0965 0x1290 [ 832B5FDF0B5577713FD7F2465FCD0ACE, 4A551CDBACED47DD781EC59F8B59A13D66EFD85DCF636BCFCBACFE5972A78E93 ] nsi C:\windows\system32\nsisvc.dll
15:04:23.0965 0x1290 nsi - ok
15:04:23.0965 0x1290 [ 689B3B1E95C70ABF7AFF29F9406EF1E0, 8B62D8AE53E1B3218158FADC0075682AB06D18998CF5DE82C920A9CD91C0652F ] nsiproxy C:\windows\system32\drivers\nsiproxy.sys
15:04:23.0980 0x1290 nsiproxy - ok
15:04:24.0027 0x1290 [ 4A7EEA9C4AD5CBFDA3C0E5B821C99CAD, 4F9872ACF27D9C7D52256CAB09AEEC760402B69088789018D0736F16236C1FE3 ] Ntfs C:\windows\system32\drivers\Ntfs.sys
15:04:24.0058 0x1290 Ntfs - ok
15:04:24.0090 0x1290 [ 4163ADE07DB51843AE31F65B94F5398D, 4349E7EF1EE1E71E1F436BA42F5B58871D82B987D513BA2D6E1CEB8A21BD1B20 ] Null C:\windows\system32\drivers\Null.sys
15:04:24.0090 0x1290 Null - ok
15:04:24.0105 0x1290 [ D6D34118263412D3AAA8348A9572B7F2, 66106A25BC5A4CA7697A23ED67CEDB5C0BF678EA70FD967A405D2DF76F4CA3A4 ] nvraid C:\windows\system32\drivers\nvraid.sys
15:04:24.0105 0x1290 nvraid - ok
15:04:24.0121 0x1290 [ 27AFC428D1D32ABD04A86763A4EDDEA9, 0920866013A8C8CFEE00E6AECDD41736F5501C49837E2D785998734F087F6B98 ] nvstor C:\windows\system32\drivers\nvstor.sys
15:04:24.0137 0x1290 nvstor - ok
15:04:24.0152 0x1290 [ 051CFB5107BAAE510419BDC41F8C4036, 9990906F17A3886EF301D2AA6556263B52A1C0554C6BD18331AF44ECECAEE4B5 ] nv_agp C:\windows\system32\drivers\nv_agp.sys
15:04:24.0152 0x1290 nv_agp - ok
15:04:24.0183 0x1290 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] p2pimsvc C:\windows\system32\pnrpsvc.dll
15:04:24.0199 0x1290 p2pimsvc - ok
15:04:24.0215 0x1290 [ 4319FD931DCD796435ECB5DB4A04FBA5, 20185B2F359EEC202B37019A4E4F5B914ADCF78B97AF0CBD91EECED2259FC6DE ] p2psvc C:\windows\system32\p2psvc.dll
15:04:24.0230 0x1290 p2psvc - ok
15:04:24.0262 0x1290 [ 4563DAF8C6A740AD7F501E219BD10766, 7A1212DDAE2D66A9C2041262796904E36036CDC4C5B75C2F66B8DF9D89F7C25D ] Parport C:\windows\System32\drivers\parport.sys
15:04:24.0262 0x1290 Parport - ok
15:04:24.0277 0x1290 [ C1D7BA7F0DE487DFEEB51BF8D3EC5562, 72F38D6C6FD1ED6E1BC47B781A06FFBE29C99A70382D38759B53A184F61B6643 ] partmgr C:\windows\system32\drivers\partmgr.sys
15:04:24.0293 0x1290 partmgr - ok
15:04:24.0324 0x1290 [ 19E41F140A6ADBD38943710DA7FF0E38, AF9FDBEB0E519B7EA034C76077E514FE27138204E9874F4DDEA0B1CB26A45BA0 ] PcaSvc C:\windows\System32\pcasvc.dll
15:04:24.0340 0x1290 PcaSvc - ok
15:04:24.0355 0x1290 [ 2F86BE1818C2D7AC90478E3323EE7FCB, CE721FCFFDC9D24483DEB6BB77DAFEBE79BA143CA2EE68BF28E2A9297AADB2D4 ] PCCUJobMgr C:\Program Files (x86)\Norton PC Checkup\Engine\2.0.18.15\ccSvcHst.exe
15:04:24.0371 0x1290 PCCUJobMgr - ok
15:04:24.0387 0x1290 [ 4A003E8F718C1E6A2050CA98CD53E3E2, BCC3BE1EC3FA4967353371D85094D096940A7B5944A6FFCA31E8FBE83D92CC6C ] pci C:\windows\system32\drivers\pci.sys
15:04:24.0387 0x1290 pci - ok
15:04:24.0418 0x1290 [ F9908D274D458220F91E89B54D78D837, 1E89ABFA6B375383E0297CEE5AF66E37F90E16DD21ABA5C91777A86CDF013B4D ] pciide C:\windows\system32\drivers\pciide.sys
15:04:24.0418 0x1290 pciide - ok
15:04:24.0433 0x1290 [ 84D19CB6102627932DCB5DFDF89FE269, 2F9C47E076645B35877D9ACA77968EFFCDA8794D76265CD9A4AAA239C4B33C5F ] pcmcia C:\windows\system32\drivers\pcmcia.sys
15:04:24.0433 0x1290 pcmcia - ok
15:04:24.0449 0x1290 [ CEBBAD5391C2644560C55628A40BFD27, 8AAA6EBD8D89FC91AECCCF1452F53C5650A1A17027FF4E64D224371404CE4C8B ] pcw C:\windows\system32\drivers\pcw.sys
15:04:24.0449 0x1290 pcw - ok
15:04:24.0465 0x1290 [ A192B9FC67F181A78B05175EE0A244FA, CC62F12062066AAF0BD96163448FA5599F3B468E7DFE5704FF5288F32F01391B ] pdc C:\windows\system32\drivers\pdc.sys
15:04:24.0465 0x1290 pdc - ok
15:04:24.0512 0x1290 [ 70DBB6A8B52B3830922F1C5789E1BEEB, 30288885789753FE19B51A200137E916E10BCD4211EFF50931C19E88824EADC0 ] PEAUTH C:\windows\system32\drivers\peauth.sys
15:04:24.0527 0x1290 PEAUTH - ok
15:04:24.0605 0x1290 [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A, 459CF99D5243C4ACAA38C7B426ADC52F1044C759D06A925D475DF6213AEB85CD ] PerfHost C:\windows\SysWow64\perfhost.exe
15:04:24.0605 0x1290 PerfHost - ok
15:04:24.0699 0x1290 [ 6E84BFF58F7643499277F29DFA2F8C8D, 401CCF137F35D9690C7B56B2BFEDB2DB72709EBE38626D787904B67640EF6F14 ] pla C:\windows\system32\pla.dll
15:04:24.0730 0x1290 pla - ok
15:04:24.0746 0x1290 [ 799BE46D45D486704CE0F37CA5385262, BB78DEE83B9DB613B1C083D55FAA458BE3E394AED80EB91B599185A7272F33B3 ] PlugPlay C:\windows\system32\umpnpmgr.dll
15:04:24.0746 0x1290 PlugPlay - ok
15:04:24.0762 0x1290 [ 8E2414E818C26C4A9C70CB2B8567F04F, A16B22AE143BA070C562FBE5DEF32F7E228F50B302B66E46B46C44C0F50A4461 ] PNRPAutoReg C:\windows\system32\pnrpauto.dll
15:04:24.0762 0x1290 PNRPAutoReg - ok
15:04:24.0777 0x1290 [ AB76700D764A342D7475FB8F47CAB18C, ECDF705D3E69EF6E7044C98A462A7281D0E7D0D85769C0815555D934B0B69C8D ] PNRPsvc C:\windows\system32\pnrpsvc.dll
15:04:24.0777 0x1290 PNRPsvc - ok
15:04:24.0824 0x1290 [ 0108C8E5176D590F242701EF5A62CC26, 3A72F5D4402663B7445F6B3C55F01E83A619B6192F7D3CC2DE3C57F9F50D5A2D ] PolicyAgent C:\windows\System32\ipsecsvc.dll
15:04:24.0824 0x1290 PolicyAgent - ok
15:04:24.0840 0x1290 [ F1E067F56373F11EA4B785CAE823740A, 69BD30E64DA17595FF29C9C9FF9AD4F2F4BE29B688FBAC9DABB2FA9D13A47FF0 ] Power C:\windows\system32\umpo.dll
15:04:24.0840 0x1290 Power - ok
15:04:24.0887 0x1290 [ 362D47E5B4D67270DE4B8606036F4ADD, 716E229C68D91AEA5B5629F60133D5CBDC0C95ABA54D9DC6264E923CAF4DC6C0 ] PptpMiniport C:\windows\system32\DRIVERS\raspptp.sys
15:04:24.0887 0x1290 PptpMiniport - ok
15:04:25.0355 0x1290 [ CC0B8655E4B2A5BBB215CDA8FC3BE4DE, 878E46E308BC3AC689CFC401BAA12D217BFB9911C29A10DB5DFFAC250A58CE55 ] PrintNotify C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
15:04:25.0746 0x1290 PrintNotify - ok
15:04:25.0777 0x1290 [ 8DA167F8967AB35A2487095CB1B879A0, 78FD1D87F0A52254DFD71B76BEEA4179CECF830D1CF623A12FBD991B7C1CDDC1 ] Processor C:\windows\System32\drivers\processr.sys
15:04:25.0777 0x1290 Processor - ok
15:04:25.0809 0x1290 [ 429E8502AD2227CF88F8840FC5BD590D, A186DA46C083580ACEDE9C7E3156865034302CD803140EEEC8E1DE16DA4BC99B ] ProfSvc C:\windows\system32\profsvc.dll
15:04:25.0809 0x1290 ProfSvc - ok
15:04:25.0840 0x1290 [ EB8034147D4820CD31BFCB11A2A652DF, B10B5E16B7A05D2DB2D5D1945B6146DE15EEDE2C778772A59F104706B5145E46 ] Psched C:\windows\system32\DRIVERS\pacer.sys
15:04:25.0840 0x1290 Psched - ok
15:04:25.0855 0x1290 [ 0AFBF333B6F87A2F598EAB379AF100B8, D11F3A4D7E4463B62E2DBDE5FC61425B1FDFB07DD1A19BC001D479CA1F554510 ] QWAVE C:\windows\system32\qwave.dll
15:04:25.0871 0x1290 QWAVE - ok
15:04:25.0902 0x1290 [ 13D47BB0CCA2FC51BD15F8E85C6A078E, EA832A9511007C9E8599C3066E1FA66BE869E8A27886D9A9AC590BD4DFBD1A15 ] QWAVEdrv C:\windows\system32\drivers\qwavedrv.sys
15:04:25.0902 0x1290 QWAVEdrv - ok
15:04:25.0902 0x1290 [ 873C60F8178100557740A832FCE10B5F, 400EF60CB2C98E2AFE122AF3D01CCE56A1548AF865345EE2194AB74DBCBF4C48 ] RasAcd C:\windows\system32\DRIVERS\rasacd.sys
15:04:25.0902 0x1290 RasAcd - ok
15:04:25.0949 0x1290 [ 69B93F623B130976243ECA3D84CC99CA, F27617E651EADFAEE479619AAB01CDAA98111BA63E204D5C44A1256732CB0100 ] RasAgileVpn C:\windows\system32\DRIVERS\AgileVpn.sys
15:04:25.0949 0x1290 RasAgileVpn - ok
15:04:25.0980 0x1290 [ 005F6E54C4A2DA4EBF68FB0392CE8BB0, 2F3C90A04964D4D906238BD557D90F7AC05DF86FE9729C4378B39431F54DDAE3 ] RasAuto C:\windows\System32\rasauto.dll
15:04:25.0980 0x1290 RasAuto - ok
15:04:25.0996 0x1290 [ A14D625C5AEE5FFE0F47D1A1D419FAAE, 1229B81C23340AD5B436B1FD227876EB41715CE6BD270BA367F18879D26B8F04 ] Rasl2tp C:\windows\system32\DRIVERS\rasl2tp.sys
15:04:25.0996 0x1290 Rasl2tp - ok
15:04:26.0027 0x1290 [ C923C785A2DE0B396AD6D13ACAFF2DE9, 4F950DA776FBABEC7D546983D6F3018733F61268A4BF95C01D4836AD000BD073 ] RasMan C:\windows\System32\rasmans.dll
15:04:26.0027 0x1290 RasMan - ok
15:04:26.0043 0x1290 [ 00695B9C2DB6111064499C529E90C042, 3CD4DF4D8001C2BBF52EEEB1F0D587209878BEAC339D268892477AD840D490F1 ] RasPppoe C:\windows\system32\DRIVERS\raspppoe.sys
15:04:26.0043 0x1290 RasPppoe - ok
15:04:26.0043 0x1290 [ A7F24D8CD1956B0A1FDCB86CC5114DE4, 30489D235362DF62B105378597168B13F4BAC74A8EDDBDA25237E3C017B69FEE ] RasSstp C:\windows\system32\DRIVERS\rassstp.sys
15:04:26.0043 0x1290 RasSstp - ok
15:04:26.0090 0x1290 [ B72C33DBD5326B3864CF2091AF8B906B, 85A22311FA870CE43CF70F69D7D101D96B9095A992DCF5FA1587886F6D4282DC ] rdbss C:\windows\system32\DRIVERS\rdbss.sys
15:04:26.0090 0x1290 rdbss - ok
15:04:26.0105 0x1290 [ CA7DF5EC95D8DE0DD24BE7FF97369F68, 153E6F716CA935DBCACB8FF1BB8DE5F5551CE3D18878225470E45893CA69BDB8 ] rdpbus C:\windows\System32\drivers\rdpbus.sys
15:04:26.0105 0x1290 rdpbus - ok
15:04:26.0121 0x1290 [ B2A3AD74FF2E2FFA73AF2567108231B3, DF8CEA6215F75C634D56F6B8AE11ECCEEB5F8CBC091AC3D6D9F7DE214B00A439 ] RDPDR C:\windows\system32\drivers\rdpdr.sys
15:04:26.0121 0x1290 RDPDR - ok
15:04:26.0137 0x1290 [ 0ACA2EE560E09EDA0F45A8B594B0673A, 7B5E4CAC7E5BF556BEB329DFCDF9CB2C39D6BAA4BFF9A5411A8572BE3409AE78 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
15:04:26.0137 0x1290 RdpVideoMiniport - ok
15:04:26.0152 0x1290 [ B3CB0721E81E30419CE7D837EF4EA151, EC9410818661BF77E4A19694E3A3030E1D983B36F49C72E27F92A1424E0729C2 ] RDPWD C:\windows\system32\drivers\RDPWD.sys
15:04:26.0152 0x1290 RDPWD - ok
15:04:26.0184 0x1290 [ 62C1F8A0685FE07E998AA296C4F697C4, C636AB2D0F139003A6AD7A12E9DC13EE4485A62F30DA59AF842FF02FE07442EE ] rdyboost C:\windows\system32\drivers\rdyboost.sys
15:04:26.0184 0x1290 rdyboost - ok
15:04:26.0215 0x1290 [ 3663CCF243EE0C04E9F6F91ED1737273, 31D06445996F99A7F6B32004D1BA63A21C61DE125373F860BA9A9DE5278E8293 ] RemoteAccess C:\windows\System32\mprdim.dll
15:04:26.0215 0x1290 RemoteAccess - ok
15:04:26.0262 0x1290 [ E80DD61E52EDFFF9DA1ED7260A68855B, 97909F42AE35E28B8F98C01A1D8BAD80A949CDCA0C88FB4ACF0A655DC7C10E45 ] RemoteRegistry C:\windows\system32\regsvc.dll
15:04:26.0262 0x1290 RemoteRegistry - ok
15:04:26.0277 0x1290 [ 73F2E030B5C24E4E41401B5F0D59E6FD, FAA8B5E3159684E0836900C6EAF63857B445F7F180169B56D5790F097EDAA38B ] RpcEptMapper C:\windows\System32\RpcEpMap.dll
15:04:26.0277 0x1290 RpcEptMapper - ok
15:04:26.0324 0x1290 [ 10B21284B3D964AB3DC45490E57D422E, 12D5E3A7785F21C99C5EAD14A88EB7A86A058E26C091991339356D99D196CC13 ] RpcLocator C:\windows\system32\locator.exe
15:04:26.0324 0x1290 RpcLocator - ok
15:04:26.0387 0x1290 [ 1EC6E533C954BDDF2A37E7851A7E58FD, C25936A7465B6A2B3D05D2FCB09D91ACC07CFE038A5E968C99CFA9D9F2967DD4 ] RpcSs C:\windows\system32\rpcss.dll
15:04:26.0402 0x1290 RpcSs - ok
15:04:26.0418 0x1290 [ E04E770DD198B9399640717145E79EBF, 2F9BECB7E4B0A522C6370FD39CFD7DFD3FB5D0A779AECCED2EE855629FA3C952 ] rspndr C:\windows\system32\DRIVERS\rspndr.sys
15:04:26.0418 0x1290 rspndr - ok
15:04:26.0465 0x1290 [ 8EB6DCEB7473C232D8BC9A886E3183AC, D81B089443306AD9D89F59DBC5F9C2F5B6A86112B4AB59316B97EE7D8B97D2FA ] RSUSBVSTOR C:\windows\System32\Drivers\RtsUVStor.sys
15:04:26.0465 0x1290 RSUSBVSTOR - ok
15:04:26.0543 0x1290 [ 097AA0B75675862070248796E1CC04D1, F625051937CF888721672872801B905C31924327F178B54D04BCD17AB6D391B8 ] RTL8192Ce C:\windows\system32\DRIVERS\rtwlane.sys
15:04:26.0590 0x1290 RTL8192Ce - ok
15:04:26.0621 0x1290 [ 097AA0B75675862070248796E1CC04D1, F625051937CF888721672872801B905C31924327F178B54D04BCD17AB6D391B8 ] RTWlanE C:\windows\system32\DRIVERS\rtwlane.sys
15:04:26.0652 0x1290 RTWlanE - ok
15:04:26.0668 0x1290 [ 752EC7DCD2F96871A3857EEE6AFE965A, 1D0640966B9147A06ED0E733711773E6B4AB8AC6D962D5B369ECB04170D18AD8 ] s3cap C:\windows\System32\drivers\vms3cap.sys
15:04:26.0668 0x1290 s3cap - ok
15:04:26.0699 0x1290 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] SamSs C:\windows\system32\lsass.exe
15:04:26.0699 0x1290 SamSs - ok
15:04:26.0715 0x1290 [ 9C7B28CE0D136DB226E24DB3BC817F92, E9DE55D6432ADD08EC75F99F2B5D2BD1F553F4EE55991B1767B1578351EE0BF2 ] sbp2port C:\windows\system32\drivers\sbp2port.sys
15:04:26.0715 0x1290 sbp2port - ok
15:04:26.0746 0x1290 [ 14316954FCE79C9DE5A0AFF9D42C83AA, B60FB1FAC0299F9560761411711E86EDFA2F8D27B58230E2E4BB37736FAB2287 ] SCardSvr C:\windows\System32\SCardSvr.dll
15:04:26.0762 0x1290 SCardSvr - ok
15:04:26.0777 0x1290 [ 5D7733A12756B267FCA021672B26BC9E, 01CE5B5F49914B9E099BD909A66296F3A40644AE47BA1D5EBFFB30CD33C70A4A ] scfilter C:\windows\system32\DRIVERS\scfilter.sys
15:04:26.0777 0x1290 scfilter - ok
15:04:26.0824 0x1290 [ EDCDF4DB82EF825B94B190D544C8C58B, 65E316CB66893FBA852D44F6ACE0F1DA415DBADADCA838B31DF3AB6B681E33B6 ] Schedule C:\windows\system32\schedsvc.dll
15:04:26.0855 0x1290 Schedule - ok
15:04:26.0871 0x1290 [ BAF8F0F55BC300E5F882E521F054E345, FB228DB18F2FA55D8BA35A7E6778EE5D2EB0C29D384F1A0A868F90AE706188D7 ] SCPolicySvc C:\windows\System32\certprop.dll
15:04:26.0887 0x1290 SCPolicySvc - ok
15:04:26.0918 0x1290 [ A27CF856218B1B1442A7A3B5CF94B4B9, A3BBF36034BBF92E81FDDB9E22370D9AF132997593452BEAAEDCBA43BC5F5D79 ] sdbus C:\windows\System32\drivers\sdbus.sys
15:04:26.0918 0x1290 sdbus - ok
15:04:26.0949 0x1290 [ 92968277ED491E4B3DDA361E3952361E, 71C50853BB2126A34C7CD014EE44D4B8B39F589E2E8E8E8F4C982E07498E3899 ] SDRSVC C:\windows\System32\SDRSVC.dll
15:04:26.0949 0x1290 SDRSVC - ok
15:04:26.0980 0x1290 [ 74369A913837FB46C3B27373DA2ADF4E, 30CB6AD90520D410D914C5D654C8838DF13B2FC850EB7F0BFB2B937F9BC14E2E ] sdstor C:\windows\System32\drivers\sdstor.sys
15:04:26.0980 0x1290 sdstor - ok
15:04:26.0996 0x1290 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\windows\system32\drivers\secdrv.sys
15:04:26.0996 0x1290 secdrv - ok
15:04:27.0027 0x1290 [ CD282626738B6BC92B6E7CD0AAE95B63, 1A56567C781786C85C63E24E79186EE5C82D3EB2679061B21BA0571A3A6CB7F5 ] seclogon C:\windows\system32\seclogon.dll
15:04:27.0027 0x1290 seclogon - ok
15:04:27.0059 0x1290 [ 9C51620998F0763039DFA6BF68E475ED, 9E496ADE7CE9A446BE8A2C2FC61B462D966778A94A4C147AABBD25C4821C2BCE ] SENS C:\windows\System32\sens.dll
15:04:27.0059 0x1290 SENS - ok
15:04:27.0074 0x1290 [ 0D50B4B860DAB65241628D04CD33ACAE, 2AA897C3F9ED076AB9244A32745D18489B076F3ED28A35B868C472131C5B5B46 ] SensrSvc C:\windows\system32\sensrsvc.dll
15:04:27.0090 0x1290 SensrSvc - ok
15:04:27.0105 0x1290 [ 87C46B239A7EEF30FDFDD5E9BD46130C, F36FB5B20AC58FBD31F7E636059D2D865B751E178E51A03B94ABE0BBD1AB1EC9 ] SerCx C:\windows\system32\drivers\SerCx.sys
15:04:27.0105 0x1290 SerCx - ok
15:04:27.0121 0x1290 [ 7A1F9347C85FD55E39B8A76B3A25C5AD, 03AF3B23285278A38F4CBEAB7FD326A48FA1EC7F8D044C059CE5403C6D225639 ] Serenum C:\windows\System32\drivers\serenum.sys
15:04:27.0121 0x1290 Serenum - ok
15:04:27.0137 0x1290 [ F640A0A218BBF857F1D04A15D7D939F6, 948C13886281FE7947E10FB7B34D5CCFE512FB632F1132B6062AC85149F79950 ] Serial C:\windows\System32\drivers\serial.sys
15:04:27.0137 0x1290 Serial - ok
15:04:27.0137 0x1290 [ F1A5F56B2620B862CC28FF96A0A6DAAB, E5367212B2CADF3820D657CFC27CD961547E28DAB950C68E1380CF97FB68F3F4 ] sermouse C:\windows\System32\drivers\sermouse.sys
15:04:27.0137 0x1290 sermouse - ok
15:04:27.0184 0x1290 [ CB60A60340788C8D6DE2A269D28086AB, 2D8948E59BB9B00E16D20E425F80E7B862957DBAC9A4D1484E5191FAF333B60D ] SessionEnv C:\windows\system32\sessenv.dll
15:04:27.0184 0x1290 SessionEnv - ok
15:04:27.0230 0x1290 [ 7EE65419B29302C795714FF8073969A1, E28D89A5423E3A5062030EB2418E9435DD5D8B9D16570046E782D3FCFDA2E79A ] sfloppy C:\windows\System32\drivers\sfloppy.sys
15:04:27.0230 0x1290 sfloppy - ok
15:04:27.0262 0x1290 [ 090AE16F79C8EAD04E6031F863DA85F3, 3F27BE46DF602B53940414A6E9FEB23B36CFFB8E9A7F41440C3315B8E27D0029 ] SharedAccess C:\windows\System32\ipnathlp.dll
15:04:27.0277 0x1290 SharedAccess - ok
15:04:27.0340 0x1290 [ A77F3ABE13FCC698511E5DEC7ACEBD5F, 78A43FDA9F770FD8BA107605DB44BC71D8B89D7E75560DA783AA6356C1873C15 ] ShellHWDetection C:\windows\System32\shsvcs.dll
15:04:27.0340 0x1290 ShellHWDetection - ok
15:04:27.0355 0x1290 [ 2560721D6F16D5B611C36A3A9D28C1B2, 15C30404902654ABA5DB5367FC5BD31343B12A3FC22B4BC5A26B09016447B5ED ] SiSRaid2 C:\windows\system32\drivers\SiSRaid2.sys
15:04:27.0355 0x1290 SiSRaid2 - ok
15:04:27.0371 0x1290 [ 3AA8FDE1DBF65BB8B88B053529554A0D, 8060D946344D043D336F4735363C23C37C91A6DB3F81E575C267B2EC2BECB0EC ] SiSRaid4 C:\windows\system32\drivers\sisraid4.sys
15:04:27.0387 0x1290 SiSRaid4 - ok
15:04:27.0387 0x1290 [ 4A2972573225A2DE4DEC0AD68529DF0F, CA0F7AF29019B18C37AE2C31361C765AB4156F9E7C3E65237C7D68345D22C634 ] SmbDrvI C:\windows\system32\DRIVERS\Smb_driver_Intel.sys
15:04:27.0387 0x1290 SmbDrvI - ok
15:04:27.0434 0x1290 [ E660156A4588A84305CB772FD2C0DB21, 9492EB6578D4A689945E1FC2440EFA77D461049CDB2D00A645969A71B7DA68E1 ] SNMPTRAP C:\windows\System32\snmptrap.exe
15:04:27.0449 0x1290 SNMPTRAP - ok
15:04:27.0496 0x1290 [ 465F3C355CE5ED2779B8F460F14C5A78, 4CDFBACBC2C228D6655DFE151249725D72D58DAE3299E15EAAEBC26FE0F712DC ] spaceport C:\windows\system32\drivers\spaceport.sys
15:04:27.0496 0x1290 spaceport - ok
15:04:27.0527 0x1290 [ 3D8679C8DF52EB26EB7583A4E0A29202, DCD9B69299275857712AB200C014AE820C8A9F7E53C4A335A84518FBE4BB56BB ] SpbCx C:\windows\system32\drivers\SpbCx.sys
15:04:27.0543 0x1290 SpbCx - ok
15:04:27.0605 0x1290 [ 3F215BF2D4D8D6756298B25B579772C2, 744192D1635E5D296BFD399E870B70592202CEAF95C31C2D2B226A868D33A3FD ] Spooler C:\windows\System32\spoolsv.exe
15:04:27.0621 0x1290 Spooler - ok
15:04:27.0793 0x1290 [ EC84D961501054F87A6878EC5D53388F, C69F3542B182BED4260EE1906361B72B9FFDE47FD92A161850E28BC6ED7505CC ] sppsvc C:\windows\system32\sppsvc.exe
15:04:27.0934 0x1290 sppsvc - ok
15:04:28.0027 0x1290 [ 2FD9346F9D76CB4192D37329CFA47A82, 4CD75B4006147D469116F3CBC10528928A592510DA8037D709CB198D89853CAB ] SRTSP C:\windows\System32\Drivers\NISx64\1405000.01C\SRTSP64.SYS
15:04:28.0043 0x1290 SRTSP - ok
15:04:28.0059 0x1290 [ 0E76CEF892C45734F7AED09FDDF35D4D, C25AF31E411AC3A090859C883132B9AE6A80C8D791168FF219BC0895E35A0359 ] SRTSPX C:\windows\system32\drivers\NISx64\1405000.01C\SRTSPX64.SYS
15:04:28.0059 0x1290 SRTSPX - ok
15:04:28.0090 0x1290 [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6, 61EEB1349489CB85204F1B4E398BE24EDC01FB914120C9DD0487F8EE1EDA055E ] srv C:\windows\system32\DRIVERS\srv.sys
15:04:28.0106 0x1290 srv - ok
15:04:28.0137 0x1290 [ 508904C8DF97A4A27506401AA374B66E, 099FCF2C6E0E531DC27A6074D57936B7AB1BF750BFAD6C2B24B373658CF9213C ] srv2 C:\windows\system32\DRIVERS\srv2.sys
15:04:28.0152 0x1290 srv2 - ok
15:04:28.0152 0x1290 [ 9400C71F5A1A380B494B6922F007D485, 66C293974BA4A61A06DC26EF48D5FA5E75377F66AD1CD774AA6827FA20A5F46E ] srvnet C:\windows\system32\DRIVERS\srvnet.sys
15:04:28.0168 0x1290 srvnet - ok
15:04:28.0231 0x1290 [ 7A20882D76D4A78240A5AC9F2C2EBA21, ACA05211EE542999A118BBD2CD051038A7DC8C40C4B8971DC6514BA90E90EC61 ] SSDPSRV C:\windows\System32\ssdpsrv.dll
15:04:28.0231 0x1290 SSDPSRV - ok
15:04:28.0262 0x1290 [ D233B16999A8E626F6004BD7814C57EC, 5BBFE5DDF1269617ABD1BDBED85A79D99BB52EA29C2BB3A8F4A1827BFAA1A747 ] SstpSvc C:\windows\system32\sstpsvc.dll
15:04:28.0262 0x1290 SstpSvc - ok
15:04:28.0293 0x1290 [ 4E85355B94CFCB67C135F6521A4895A7, AC4FC65C1E62A54B3834E7FE0A2B1ECC48A2AA563AE5BD508326EE68FFFBBEEE ] stexstor C:\windows\system32\drivers\stexstor.sys
15:04:28.0293 0x1290 stexstor - ok
15:04:28.0356 0x1290 [ BAC8A721736AECC55A4F71523AEAB65F, B52E1303B13A961A5FC190829E55B6F28ACA409A6EEF44B358D1D210558FE1D8 ] stisvc C:\windows\System32\wiaservc.dll
15:04:28.0371 0x1290 stisvc - ok
15:04:28.0402 0x1290 [ C588BBD37B432CE3204E5765B459E6B2, 6A30570C82390C4D6668137D05C7EFBE243CAC243CBE405D308E3F7B2BC5729D ] storahci C:\windows\system32\drivers\storahci.sys
15:04:28.0402 0x1290 storahci - ok
15:04:28.0418 0x1290 [ F74DBC95A57B1EE866D3732EB5F79BE2, E4FE9D5CD0A385ACB60D5D5E8D969F26C3A6BC0C08FF0838DBE9CA106229C8DE ] storflt C:\windows\system32\DRIVERS\vmstorfl.sys
15:04:28.0418 0x1290 storflt - ok
15:04:28.0449 0x1290 [ 5337E138B49ED1F44CCBA4073BC35C20, 2B296973215E3865A56C46DC3D27F1460D96BC321558CE7A911B05B0E7BF397F ] StorSvc C:\windows\system32\storsvc.dll
15:04:28.0449 0x1290 StorSvc - ok
15:04:28.0481 0x1290 [ 543CD3CC0E05B8D8815E0D4F040B6F59, 4B57C9534E94A0A67FC82DBD4FAECACA180BEC281FB477550A37C0A04777E09E ] storvsc C:\windows\system32\drivers\storvsc.sys
15:04:28.0481 0x1290 storvsc - ok
15:04:28.0496 0x1290 [ 8BC1C1ED6EF9C985A3FAA6A72F41679A, 82CC77030D23013572B4A64A64B6156789F253BF56268B790093CE3D345410A0 ] svsvc C:\windows\system32\svsvc.dll
15:04:28.0496 0x1290 svsvc - ok
15:04:28.0496 0x1290 [ 4AFD66AAE74FFB5986BC240744DC5FC9, 0C9347614E3FD3B4D3B29FA4A5DA23FF6EE4CD9A1FFC378B855B8DE61B2876CF ] swenum C:\windows\System32\drivers\swenum.sys
15:04:28.0496 0x1290 swenum - ok
15:04:28.0512 0x1290 [ 502F9488540051F3E6C39889ECFA76BB, 22ABD681BE4CF8A1F484C6363C1334B1EF7A6C074D837B0121DE1896887B84C6 ] swprv C:\windows\System32\swprv.dll
15:04:28.0527 0x1290 swprv - ok
15:04:28.0559 0x1290 [ 52DC0048D667757A8A2E4C87182890AC, 7B43DF6DADFDDBBC5402477FE832052ADB6A39B90111CDA89B5E01CE900F55C5 ] SymDS C:\windows\system32\drivers\NISx64\1405000.01C\SYMDS64.SYS
15:04:28.0559 0x1290 SymDS - ok
15:04:28.0637 0x1290 [ 599872BAD7CFB45C7CE47CDED4B726D8, 5B15B1B22C3ACA1BC56CAFCAFFC2E974C75C77C0AB7355FBA91F2147C0911499 ] SymEFA C:\windows\system32\drivers\NISx64\1405000.01C\SYMEFA64.SYS
15:04:28.0652 0x1290 SymEFA - ok
15:04:28.0668 0x1290 [ 42947647F71E9EF2167B42B372F1DDB7, AE825B7DFFAE8BCF5598C512EFAF5645C5A6C4DC90F8B3073A255223DF3AAA4A ] SymELAM C:\windows\system32\drivers\NISx64\1405000.01C\SymELAM.sys
15:04:28.0668 0x1290 SymELAM - ok
15:04:28.0699 0x1290 [ F19E5E37ED8134B9E5F6287F2D3A75D7, 5804D6DF529213CCF7CD2C345483940554CAA5C6EA065A1B09AA54D114C612F8 ] SymEvent C:\windows\system32\Drivers\SYMEVENT64x86.SYS
15:04:28.0699 0x1290 SymEvent - ok
15:04:28.0731 0x1290 [ ADF37F1A715D6C56C8E065FD8569A9A4, 33E895CB326F62D4D22E345563B0641EB88D23B2104A07E8CEBE5ED150882767 ] SymIRON C:\windows\system32\drivers\NISx64\1405000.01C\Ironx64.SYS
15:04:28.0746 0x1290 SymIRON - ok
15:04:28.0762 0x1290 [ 9CDCA70485BD6B9D230365F67C31F132, 137995F1F0124E3A10AAA25551F811602BB5FE8361AE8CBA899C6B98486F4CF3 ] SymNetS C:\windows\System32\Drivers\NISx64\1405000.01C\SYMNETS.SYS
15:04:28.0777 0x1290 SymNetS - ok
15:04:28.0809 0x1290 [ 157DFCD1E83E964A5074742AE2DFA0C1, D6F4567F42402938F54A1E482BAE3B02E1BD5AF3788835A63829A3652E5DDA67 ] SynTP C:\windows\system32\DRIVERS\SynTP.sys
15:04:28.0824 0x1290 SynTP - ok
15:04:28.0887 0x1290 [ DC21E1F06343773D7E24362DCEF7944B, E5C13A2D4DEEBEDC6E0E4882FFC56322EA0474A3BD8B1C8A077293F433854F9B ] SysMain C:\windows\system32\sysmain.dll
15:04:28.0918 0x1290 SysMain - ok
15:04:28.0918 0x1290 [ 079244F281621FEDCC161D3923E858FE, A9997FF335B2A81CD9C1DFF8177FBBD4E36360BC1F3E7CD260144806EB12BC5E ] SystemEventsBroker C:\windows\System32\SystemEventsBrokerServer.dll
15:04:28.0934 0x1290 SystemEventsBroker - ok
15:04:28.0934 0x1290 [ A6C06C45C44AD06C70AF8899AEC15BDC, AC2CCCDBA6B94BA85A6D41B47343193D175786D4ECF71AE9C7766ADD63A1273F ] TabletInputService C:\windows\System32\TabSvc.dll
15:04:28.0934 0x1290 TabletInputService - ok
15:04:29.0074 0x1290 [ 919D028F9A29CC06A410129AE4D73345, 830846C72350CBADE353ABDBBB912928BA58B5691AADB5008B8D818DA146A3C4 ] taisregispinger C:\Program Files (x86)\Toshiba\ToshibaRegistration\TaisRegistPinger.exe
15:04:29.0121 0x1290 taisregispinger - ok
15:04:29.0137 0x1290 [ 88B7721AB551C4325036B25A34A2BF7B, 2817CC6294542524EC373A674535F913440736BEBE81233CA91D5ECD93620B02 ] TapiSrv C:\windows\System32\tapisrv.dll
15:04:29.0152 0x1290 TapiSrv - ok
15:04:29.0246 0x1290 [ 1D644E2D0FC395A055AB1C23C3B43631, 2AF96480449756C76C2466E546912D1EBB2847490BF611FEBE842CC25EA98765 ] Tcpip C:\windows\system32\drivers\tcpip.sys
15:04:29.0293 0x1290 Tcpip - ok
15:04:29.0340 0x1290 [ 1D644E2D0FC395A055AB1C23C3B43631, 2AF96480449756C76C2466E546912D1EBB2847490BF611FEBE842CC25EA98765 ] TCPIP6 C:\windows\system32\DRIVERS\tcpip.sys
15:04:29.0371 0x1290 TCPIP6 - ok
15:04:29.0402 0x1290 [ 8F2A13A5DF99D72FDDE87F502A66F989, 2228C62ACDB4CBBFDD2BE705E604E0B9A8AEA7146F65F2D8B9B2A2FB49ACFAE1 ] tcpipreg C:\windows\system32\drivers\tcpipreg.sys
15:04:29.0402 0x1290 tcpipreg - ok
15:04:29.0434 0x1290 [ 58480A57ACF2671C343FD1D4BA990E34, 24AD9C808D06FABFE8E81242CAC8B5A91829F7D951B245865EF77B79BB795E3D ] tdcmdpst C:\windows\system32\DRIVERS\tdcmdpst.sys
15:04:29.0434 0x1290 tdcmdpst - ok
15:04:29.0434 0x1290 [ 73DC722CE5DF26D7638CE2446F2655C7, 9B8E6F6DEA5E0C2AEAC24A31897D2E73F86EF44F1C25FEF82D2C860353793817 ] tdx C:\windows\system32\DRIVERS\tdx.sys
15:04:29.0434 0x1290 tdx - ok
15:04:29.0449 0x1290 [ F7C8AB5D8AFFAA318D6A21093D139BF4, 0A35052EF7DC8615783A23897358D8C579BE694363615C9563FF629E7B719991 ] terminpt C:\windows\System32\drivers\terminpt.sys
15:04:29.0449 0x1290 terminpt - ok
15:04:29.0496 0x1290 [ 541EE228D0DEF392F7B2DFD885DD021B, 594D6538FA4DB5EF4D130007D7C29051EC2EDCA39EBB119695B58E9CBB0EB728 ] TermService C:\windows\System32\termsrv.dll
15:04:29.0496 0x1290 TermService - ok
15:04:29.0528 0x1290 [ C028AE1560FEA74BEAB225D2E27C3E47, 0DBF7A9C1CED4627491F93465AC50BCB6F42298EE5B73C68407790EF6D41FE32 ] THAccel C:\windows\system32\DRIVERS\THAccel.sys
15:04:29.0528 0x1290 THAccel - ok
15:04:29.0621 0x1290 [ F5FD83FA082E88FE6049B1B9F78AA739, 4576E985FF3BA2D232DA07BC9356C79F8A30DC506CEB40830C25397E5567F84A ] THAccelSvc C:\Program Files\TOSHIBA\HDD Accelerator\THAccelSvc.exe
15:04:29.0621 0x1290 THAccelSvc - ok
15:04:29.0653 0x1290 [ 519A6F672FFF56B7D8EE8C730CEC8ECD, 2B36F10C0AE16A261DC0887B1050808BA1F0568F3879E4ABC3D370F08C3FADB7 ] Themes C:\windows\system32\themeservice.dll
15:04:29.0668 0x1290 Themes - ok
15:04:29.0699 0x1290 [ 16E745743BABAF480B7718442F38B076, 4FF6C7CFB976BF24F2215DCAE4DCCA546A6758B1DE1F36C78251AFFE4D9CE249 ] Thotkey C:\windows\System32\drivers\Thotkey.sys
15:04:29.0699 0x1290 Thotkey - ok
15:04:29.0715 0x1290 [ EEE908BE7143FCA48CF0CB87214E2AB8, 4F9BD299F559DD36DBD93489CFAA753F236FBB70946E034D2E2260059AE20962 ] THREADORDER C:\windows\system32\mmcss.dll
15:04:29.0731 0x1290 THREADORDER - ok
15:04:29.0746 0x1290 [ 52066C139CC189468845D5BE557B25EB, 65A6828240CC06435C1A5FD48B443C3023CE2E8A0A6BDEF67795612457B0CF60 ] TimeBroker C:\windows\System32\TimeBrokerServer.dll
15:04:29.0746 0x1290 TimeBroker - ok
15:04:29.0809 0x1290 [ 5201342394DD42848027CE96A37043DB, 7D230994799CC608AA7C116A34508ED6321AEB5DF848EBFE022C38EA33F4166B ] TMachInfo C:\Program Files\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe
15:04:29.0809 0x1290 TMachInfo - ok
15:04:29.0856 0x1290 [ ED32035BDFECED1AD66D459FD9CC1140, B82A15FAB4CBB5A633B9BF722441D5B20D946B63DD10BBE2A89D3A8BA3BE3339 ] TODDSrv C:\Windows\system32\TODDSrv.exe
15:04:29.0856 0x1290 TODDSrv - ok
15:04:29.0903 0x1290 [ 4D7977197C3EC8C65F533E8A84DE229C, 2B91272E015EDB4E489179F791B9B67C9A89CAB2F45030C89FC7F6513F24200F ] TOSHIBA eco Utility Service C:\Program Files\Toshiba\Teco\TecoService.exe
15:04:29.0918 0x1290 TOSHIBA eco Utility Service - ok
15:04:29.0965 0x1290 [ 36391C3953D191A2AF4556D5D706C641, 5191A35C86B6C98F2CBDDC23B5311ED62310345CEDE084A54BBF70CCF0F84C50 ] tos_sps64 C:\windows\system32\drivers\tos_sps64.sys
15:04:29.0965 0x1290 tos_sps64 - ok
15:04:30.0043 0x1290 [ 8608681DC6E2975815A593209A6432CD, 10DF382AABB97DD70900DD4D6D388A34614A67E762D956861C8D4D036947BFDA ] TPCHSrv C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
15:04:30.0074 0x1290 TPCHSrv - ok
15:04:30.0106 0x1290 [ B44EFE254C0B3719E4037088D24FE4B5, 5AC07658A599470C2BCB2813E644B132DDF886510470F5CC636113CEC48DC0F3 ] TPM C:\windows\system32\drivers\tpm.sys
15:04:30.0106 0x1290 TPM - ok
15:04:30.0168 0x1290 [ 8C8CF3041B27E7657ADD0EE17F6DBFCA, A6846478B9E7B0A509E5A28C6C7B66ED39F0247F9AFF01E3C3CADC0DBEF3CA00 ] TrkWks C:\windows\System32\trkwks.dll
15:04:30.0184 0x1290 TrkWks - ok
15:04:30.0246 0x1290 [ 8ABBB5CE0C62E0A6D28F32F44B7F865C, 4C78FE2A4A25A758D5191C4EDB2A6FE691FF82E7C16C0F146DC96DAD87D4F64E ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
15:04:30.0246 0x1290 TrustedInstaller - ok
15:04:30.0293 0x1290 [ 4E7C5FB10A50435523DE0CAA37DE2BD3, D6206DF61950F2541FB754E57C4D9EF9FA0CC1EDD6F6FA4E45F02B47958493F7 ] TsUsbFlt C:\windows\system32\drivers\tsusbflt.sys
15:04:30.0293 0x1290 TsUsbFlt - ok
15:04:30.0293 0x1290 [ 16D684A820872EE54F6370703AC0B513, 795E20484358424CE9FA766937DD99413025A8AF967D03490392E8E02A382D0B ] TsUsbGD C:\windows\System32\drivers\TsUsbGD.sys
15:04:30.0309 0x1290 TsUsbGD - ok
15:04:30.0309 0x1290 [ 78C9EE193AC2B4CBDBC48B620314D740, 41523E47D321BFF5778F5E453545B928C0A469C3BBA51578E74D6721D7DF9273 ] tunnel C:\windows\system32\DRIVERS\tunnel.sys
15:04:30.0324 0x1290 tunnel - ok
15:04:30.0356 0x1290 [ 54BDBF3D4DED58DA78B702471C68D4CA, D12F9F09FFE7D38A5EE6BF79DB74D775A9861C3C87E06D7C23259E47247B1782 ] TVALZ C:\windows\system32\drivers\TVALZ_O.SYS
15:04:30.0356 0x1290 TVALZ - ok
15:04:30.0356 0x1290 [ 55A9A23DD64EB7781FCAB565B028CD0E, 44CE0C8244F9AE6CCCDB49C29F6D35FE4CE8C92DE5B5D44D22DBD088DE83AA10 ] TVALZFL C:\windows\system32\DRIVERS\TVALZFL.sys
15:04:30.0356 0x1290 TVALZFL - ok
15:04:30.0371 0x1290 [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A, AA7DA2207C0236F47859A4791F9D7301E7ADB50A59D831DC859ECC7CA70D3E1D ] uagp35 C:\windows\system32\drivers\uagp35.sys
15:04:30.0371 0x1290 uagp35 - ok
15:04:30.0371 0x1290 [ 6FD6D03B7752C78712E5CFF29A305026, F09C5188AAFCF4C77B05BA1E604F9912782A9F1371F72F959288EBC2725407ED ] UASPStor C:\windows\System32\drivers\uaspstor.sys
15:04:30.0387 0x1290 UASPStor - ok
15:04:30.0418 0x1290 [ 1ED222DFE6C13DA50FE081ABF90CAFE1, B3DFAE29D2E08E2A5ABEF8B4D2C03CD25EE22B11D6E0B6BFCAC2D09B8D73AD49 ] UCX01000 C:\windows\System32\drivers\ucx01000.sys
15:04:30.0434 0x1290 UCX01000 - ok
15:04:30.0465 0x1290 [ DC5A461591C71AF7F19DC048A81E3F88, C6689C70B6CDE5A5707C06ABDC9CABF87CCE549BD23B96969EF3AA177A889320 ] udfs C:\windows\system32\DRIVERS\udfs.sys
15:04:30.0481 0x1290 udfs - ok
15:04:30.0528 0x1290 [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D, 16DE6E0894C356A58AF12BEC2FE9B188F147DD4B16CB2414DE600CE4127F929D ] UI0Detect C:\windows\system32\UI0Detect.exe
15:04:30.0528 0x1290 UI0Detect - ok
15:04:30.0543 0x1290 [ 07FEBCDF24FABA0D47B635D85A0FFB7A, 452C04B14681EBCE8B1B25B75A1B7CC978722B7DDE54D624E17841B14ACCF65D ] uliagpkx C:\windows\system32\drivers\uliagpkx.sys
15:04:30.0559 0x1290 uliagpkx - ok
15:04:30.0574 0x1290 [ 02CEB3FE6152668A7BA420B93B664860, 613F27540FD1EFE2442E326F507DACD5A25691C8481937022B7E1104F3E6E9E2 ] umbus C:\windows\System32\drivers\umbus.sys
15:04:30.0574 0x1290 umbus - ok
15:04:30.0590 0x1290 [ 991EE6B5FC41EAEF99C8AF5B92F2CA09, 30AAD7D18FF5962CEC7180359D148EED5A1BF193DDB2B34508897FC3EBA692C3 ] UmPass C:\windows\System32\drivers\umpass.sys
15:04:30.0590 0x1290 UmPass - ok
15:04:30.0606 0x1290 [ 43FEFB040A0CC30F795FBF544169594D, F2A730C0F7C883321C378D4564120A40428D7F8E393F02C8D6A08934795A35C7 ] UmRdpService C:\windows\System32\umrdp.dll
15:04:30.0621 0x1290 UmRdpService - ok
15:04:30.0715 0x1290 [ E1A119AD21F5AFE22EB516C549306D3D, 48769D5E7A78B7A2C00F1F6798AC133CF3E0B2C76F71D3719BD741DDD8F2D229 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
15:04:30.0731 0x1290 UNS - ok
15:04:30.0793 0x1290 [ 14D22C411854AA2560AFC94CD2D5E61F, BB376734733671C02319E6DB1800D41212694446FD65465498C92D4ECBFE7458 ] upnphost C:\windows\System32\upnphost.dll
15:04:30.0809 0x1290 upnphost - ok
15:04:30.0824 0x1290 [ 2AF9F0E16D75B8F783A1ACE74EF51C9B, AADB8991174CCDA3ADE14AF3EFB3A9826EC17A0F989F449FF43010A99D8CAA1F ] usbccgp C:\windows\System32\drivers\usbccgp.sys
15:04:30.0824 0x1290 usbccgp - ok
15:04:30.0856 0x1290 [ B395B62B62F28106218FA6FB17F4C797, 231CA3512B02BBE70E630A6304E899BCB741CE411FB10C2B3DE48E52034F24BB ] usbcir C:\windows\System32\drivers\usbcir.sys
15:04:30.0856 0x1290 usbcir - ok
15:04:30.0871 0x1290 [ 52F267AEE8CA5AA5CEB88C6A71EE1E86, 93E2CC1D4A56A3BBDD85020A8F4AD1B9B119953DB83A155C56D667924D5D8A02 ] usbehci C:\windows\System32\drivers\usbehci.sys
15:04:30.0887 0x1290 usbehci - ok
15:04:30.0903 0x1290 [ FBB6794E3BBAD92D66D59D206C1F849F, CEA5B07518699F09B2ABA372312FF0769B913DC4C43CC142BDB25274B52825DA ] usbhub C:\windows\System32\drivers\usbhub.sys
15:04:30.0918 0x1290 usbhub - ok
15:04:30.0949 0x1290 [ 7B886003CEEBF3C8E4FDF3586DCB3787, 7206C2F264EE3339460D5E1218B0A83E222CB670AB100A4FEB67AAF2FD6CC6C9 ] USBHUB3 C:\windows\System32\drivers\UsbHub3.sys
15:04:30.0965 0x1290 USBHUB3 - ok
15:04:30.0981 0x1290 [ EC1303E3DBF312B846377A84C0D15F27, D710EA9DC98FD157DF6B312AF5D716DD0AD2F3DF2351571DEA399642BC023EDD ] usbohci C:\windows\System32\drivers\usbohci.sys
15:04:30.0996 0x1290 usbohci - ok
15:04:30.0996 0x1290 [ BA3ABE0CD1C14B3295BAD0F076B84CAC, 19E0679D44A9BD9DDCC336C7DE784147D6CFC3DE4250D5CA31CE49867D51A414 ] usbprint C:\windows\System32\drivers\usbprint.sys
15:04:30.0996 0x1290 usbprint - ok
15:04:31.0043 0x1290 [ F77177F6C95B2116EE7AD23B5EF57007, 646E345DE5AFF26B338E17BC9D03D0EDA5608DF77D7685DE7AFF6E4113B9EB87 ] USBSTOR C:\windows\System32\drivers\USBSTOR.SYS
15:04:31.0043 0x1290 USBSTOR - ok
15:04:31.0059 0x1290 [ D25EF4A6EC244C5DE85D88A05B7C149D, A08793945D5FDC2CCCB2C621853A69941F1A108DF6CB559F3E8A21A047A8CCB3 ] usbuhci C:\windows\System32\drivers\usbuhci.sys
15:04:31.0059 0x1290 usbuhci - ok
15:04:31.0090 0x1290 [ 09799E701B4327097E9F63D3FE221083, CF2B97D5B3D434D8E5547B2A86771C69A6F7F4857CAD70865B50462A04A27A48 ] usbvideo C:\windows\System32\Drivers\usbvideo.sys
15:04:31.0090 0x1290 usbvideo - ok
15:04:31.0121 0x1290 [ 9CD4259AD15F84DE27B94A956C978D6C, F3289BBB1C52E49D8F76D07877541A74DFB7AD3E950C2E58A2C6CDC443F824CF ] USBXHCI C:\windows\System32\drivers\USBXHCI.SYS
15:04:31.0121 0x1290 USBXHCI - ok
15:04:31.0137 0x1290 [ F702AB6181513303AB0FC8D59E52708B, D46939B9F672269E65C98606A573C849C4AF5A26E4E75D3A8FE56A65B3A6EA08 ] VaultSvc C:\windows\system32\lsass.exe
15:04:31.0153 0x1290 VaultSvc - ok
15:04:31.0168 0x1290 [ BACECBFF9C97F7627A60B0E0F1FE7EE8, DC82F767D066B93A48A090DC7146EBCCDC54B43C6CD9DF29A160E09E3A531DC8 ] vdrvroot C:\windows\system32\drivers\vdrvroot.sys
15:04:31.0168 0x1290 vdrvroot - ok
15:04:31.0231 0x1290 [ 00FBA165A1167738802DA5D0EE78EF10, 3BA85214F881AB2629CAD73BA0F8D7B1BD18831344FE4A56476B97591602B99B ] vds C:\windows\System32\vds.exe
15:04:31.0246 0x1290 vds - ok
15:04:31.0262 0x1290 [ 74FA2D4368DE6F6CE14393EDF1F342BE, C5CE4164B2C3D583A7FB8687ADEADCDB08D36A5AB1965E5FC6949AEED15881C8 ] VerifierExt C:\windows\system32\drivers\VerifierExt.sys
15:04:31.0262 0x1290 VerifierExt - ok
15:04:31.0309 0x1290 [ 8628FA679F0EC4B709CCD1F6B6A3233B, E8A99795BB7956BFB9FDF6D24209280917FE6500E52F82F50C9FAD2EA6EDFA88 ] vhdmp C:\windows\System32\drivers\vhdmp.sys
15:04:31.0324 0x1290 vhdmp - ok
15:04:31.0356 0x1290 [ F5B4A14B00E89250C50982AC762DDD1D, 581CD97DD42E74A82F06BFB827DFC82618B4A8667ACA7E93C628BB0D056CE8F0 ] viaide C:\windows\system32\drivers\viaide.sys
15:04:31.0356 0x1290 viaide - ok
15:04:31.0371 0x1290 [ 78DB50F7329F6D1311658DABFFFC8BE0, 8CB0C831608033C4BC1D2DA7FAA7D429333A3654E76A989F7AF85BFC5F086BE9 ] vmbus C:\windows\system32\drivers\vmbus.sys
15:04:31.0371 0x1290 vmbus - ok
15:04:31.0371 0x1290 [ ECFEE2F2BA3932C7880D1A8F67D68F91, 57DCD55A518A9FBDEF72B511C643B1062C3F7BD339F4B0FC19E9D84C615B968D ] VMBusHID C:\windows\System32\drivers\VMBusHID.sys
15:04:31.0371 0x1290 VMBusHID - ok
15:04:31.0403 0x1290 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicheartbeat C:\windows\System32\ICSvc.dll
15:04:31.0403 0x1290 vmicheartbeat - ok
15:04:31.0418 0x1290 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmickvpexchange C:\windows\System32\ICSvc.dll
15:04:31.0434 0x1290 vmickvpexchange - ok
15:04:31.0434 0x1290 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicrdv C:\windows\System32\ICSvc.dll
15:04:31.0449 0x1290 vmicrdv - ok
15:04:31.0449 0x1290 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicshutdown C:\windows\System32\ICSvc.dll
15:04:31.0465 0x1290 vmicshutdown - ok
15:04:31.0465 0x1290 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmictimesync C:\windows\System32\ICSvc.dll
15:04:31.0481 0x1290 vmictimesync - ok
15:04:31.0481 0x1290 [ B8FF4248103E6EA47B9D85C55673ABA3, 4337FA0F0FB5C45BFC42FF17DFAA5DCA394C74BA8283851504AD79F47B69CB0D ] vmicvss C:\windows\System32\ICSvc.dll
15:04:31.0496 0x1290 vmicvss - ok
15:04:31.0512 0x1290 [ CB60FAAED8B49B812EBBF77EB87D9B18, ADA7C68D4C4981555ED48981E8B7ACBEEF5C39F902EB98782FC3DFF495FE0C33 ] volmgr C:\windows\system32\drivers\volmgr.sys
15:04:31.0512 0x1290 volmgr - ok
15:04:31.0528 0x1290 [ A74101DA9809251BCD0E5A26BAE0F824, 15A3A7CC31A13C5882812C344D0937A8A4503D12DB07B9F7F2A8191B739CDBF7 ] volmgrx C:\windows\system32\drivers\volmgrx.sys
15:04:31.0528 0x1290 volmgrx - ok
15:04:31.0543 0x1290 [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE, 26FD9DBCFAEDE0F945D80B11769741A3A837F84461263217A43C458B674566EE ] volsnap C:\windows\system32\drivers\volsnap.sys
15:04:31.0543 0x1290 volsnap - ok
15:04:31.0559 0x1290 [ A8DA1C1B52ECEA3726DEBED4FF1B700D, 75C024EC3858DF24FB82FE105BDD1E37900D53EFE9D72F42CDDFFD0742525586 ] vpci C:\windows\System32\drivers\vpci.sys
15:04:31.0559 0x1290 vpci - ok
15:04:31.0575 0x1290 [ 38A60CD9C009C55C6D3B5586F8E6A353, 7F7E2AE39F1A0A5245650911E310E0948BC22A18262A16FA76B44A042D66312D ] vsmraid C:\windows\system32\drivers\vsmraid.sys
15:04:31.0575 0x1290 vsmraid - ok
15:04:31.0637 0x1290 [ EA658570314042C914964FC72AB50E6B, 0B10E16D5136BF71EAF68F0D9A8B25F92F6D686BF9F80FEEB9F291221C6B8284 ] VSS C:\windows\system32\vssvc.exe
15:04:31.0668 0x1290 VSS - ok
15:04:31.0684 0x1290 [ A0F6FE0FC2F647C22BBFD6BD4249DBCC, AC2F3C70EDCA0AFBB2606267DFE6D3E8E7B0772140153BAD6B0A9EDE6A1D2F29 ] VSTXRAID C:\windows\system32\drivers\vstxraid.sys
15:04:31.0684 0x1290 VSTXRAID - ok
15:04:31.0715 0x1290 [ 62460A45435A26A334907E3F2EA45611, FEF86E05117CC0AAB8211CA1542776EB620BD4699BD590D91F16621ED35B9824 ] vwifibus C:\windows\System32\drivers\vwifibus.sys
15:04:31.0715 0x1290 vwifibus - ok
15:04:31.0715 0x1290 [ 095E943D27025E4D588AF0A72CC2318F, 3CE406A202F93EF8C4BC7317621A672670D734C69166393CA7256D5E5E667041 ] vwififlt C:\windows\system32\DRIVERS\vwififlt.sys
15:04:31.0715 0x1290 vwififlt - ok
15:04:31.0715 0x1290 [ 73FA1A41A97A5C34ADC03B3577FF1A86, CBA4BC0DA837C163587BBB4BF2AC1549C72440307C984D3CDF8995023718136C ] vwifimp C:\windows\system32\DRIVERS\vwifimp.sys
15:04:31.0731 0x1290 vwifimp - ok
15:04:31.0762 0x1290 [ F690B6EEAA94576727B24376D7ED3601, A61EE96024C8FC4058481DFB1E7F0AD746565368672FA3B6BA8F9E23D0F47E4C ] W32Time C:\windows\system32\w32time.dll
15:04:31.0778 0x1290 W32Time - ok
15:04:31.0809 0x1290 [ 6B806E893714019969E2B50D7EF6A4D9, 38FE2B01082DC4C2A0C11A292016A727F48C3DF1293DC3A0216B2254A452263F ] WacomPen C:\windows\System32\drivers\wacompen.sys
15:04:31.0809 0x1290 WacomPen - ok
15:04:31.0825 0x1290 [ 6081CEC9EF9EB145D8B46655C7708D51, 34E421501185BDE9049AC68F0604F4AD694AF6DA1D52A7D75C2BD050B5817ADF ] Wanarp C:\windows\system32\DRIVERS\wanarp.sys
15:04:31.0825 0x1290 Wanarp - ok
15:04:31.0825 0x1290 [ 6081CEC9EF9EB145D8B46655C7708D51, 34E421501185BDE9049AC68F0604F4AD694AF6DA1D52A7D75C2BD050B5817ADF ] Wanarpv6 C:\windows\system32\DRIVERS\wanarp.sys
15:04:31.0825 0x1290 Wanarpv6 - ok
15:04:31.0903 0x1290 [ 42DF22F8C448E7CD219F6D63743505E2, 063F4280C7BD20CE1360436B76A17DFE17FF611F75337A47373D098CC6C263BF ] wbengine C:\windows\system32\wbengine.exe
15:04:31.0934 0x1290 wbengine - ok
15:04:31.0950 0x1290 [ 31D37B2F6069C631EF0557D322924812, 6E18A1060F3C8F4BF220E286C44327866A8F9109E74928AA2D8C2DA9C452038B ] WbioSrvc C:\windows\System32\wbiosrvc.dll
15:04:31.0950 0x1290 WbioSrvc - ok
15:04:31.0965 0x1290 [ D9C1E82651BF19C6FF69CEC6FD400124, 93B96481A5B26F5617B16DD775AF0F8CE9001B30251FFF58D6EF9044D5EE91CD ] Wcmsvc C:\windows\System32\wcmsvc.dll
15:04:31.0981 0x1290 Wcmsvc - ok
15:04:32.0012 0x1290 [ 4507D89FA9E4283100948C91E867D130, 7DEEE18C903752A46D9B23B8C8F50A0028E6682321B365EC87F87D1E7EFB8621 ] wcncsvc C:\windows\System32\wcncsvc.dll
15:04:32.0028 0x1290 wcncsvc - ok
15:04:32.0028 0x1290 [ E19556D414332E2BEBA1F368229006B4, AB3454EC85D7B6E62D44C4510C1547AE7F736558588E54B0E265F7B3A5810E15 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
15:04:32.0043 0x1290 WcsPlugInService - ok
15:04:32.0075 0x1290 [ B3A4D918DAB90505B6BC7B70632913CB, ECC19DCD7902C29D0682C70B9546CF8B82477A32147EE30EB6750D8499605B46 ] Wd C:\windows\system32\drivers\wd.sys
15:04:32.0075 0x1290 Wd - ok
15:04:32.0090 0x1290 [ 260F8DFC4D5748F4CCB9B19CFB0E58EA, 36A6B264677A8A5A4E4785C9BE49E39C82B552460C46026964B700CCBA51FBB0 ] WdBoot C:\windows\system32\drivers\WdBoot.sys
15:04:32.0090 0x1290 WdBoot - ok
15:04:32.0137 0x1290 [ 442783E2CB0DA19873B7A63833FF4CB4, 09254970265476214F3187CC22A4F9C7C2769D419600E83FBE302C3A103E527F ] Wdf01000 C:\windows\system32\drivers\Wdf01000.sys
15:04:32.0168 0x1290 Wdf01000 - ok
15:04:32.0184 0x1290 [ 880FFFC4D5BBBB4187B6B04AB2E8C32A, 406363087976285481A8401FC5A8BBAF0DDCCC8D9228F39702D5B80ADC61EEA9 ] WdFilter C:\windows\system32\drivers\WdFilter.sys
15:04:32.0200 0x1290 WdFilter - ok
15:04:32.0215 0x1290 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiServiceHost C:\windows\system32\wdi.dll
15:04:32.0215 0x1290 WdiServiceHost - ok
15:04:32.0215 0x1290 [ 240FC332484572227CD1DF82407F33E5, 5210549EC519DD3BCA6BBC995F01E1E3E0988580797E4BD1433F429E0CB30412 ] WdiSystemHost C:\windows\system32\wdi.dll
15:04:32.0231 0x1290 WdiSystemHost - ok
15:04:32.0246 0x1290 [ F2002DA5E6B78C15B2CD48CFF8F0FBB6, 4281100271761521F75F4D5A3D2E9FF40A9C7D81CEDAFD2EDD95788534090CA6 ] WebClient C:\windows\System32\webclnt.dll
15:04:32.0246 0x1290 WebClient - ok
15:04:32.0262 0x1290 [ 35FD720943D4FCD75C3275BF062FF140, 9D8345E6DE1AE23F93AD0B52D27D1CCFD69EF7EE50654F92CA999BEC4570A773 ] Wecsvc C:\windows\system32\wecsvc.dll
15:04:32.0278 0x1290 Wecsvc - ok
15:04:32.0293 0x1290 [ 4D2612E3C462B68F499D840B1133263E, 4DDAEB4480AEC31A8184838588E0D3DFA31CE6D2FA6E906926860C75F52DC7B7 ] wercplsupport C:\windows\System32\wercplsupport.dll
15:04:32.0293 0x1290 wercplsupport - ok
15:04:32.0309 0x1290 [ 8E2426162ED6749A127B35D235F21E11, 3B92CE177DE926CC801B71EACC2901DB11BDBF4A1269A004BFFECB3047E17E4C ] WerSvc C:\windows\System32\WerSvc.dll
15:04:32.0309 0x1290 WerSvc - ok
15:04:32.0340 0x1290 [ FE762D3498719C3A23471BBA62F747B4, 7F9390D5B0133BF1FA66BFC5FD933E17AADEB7845F141948EE4A52AB779A69F8 ] WFPLWFS C:\windows\system32\DRIVERS\wfplwfs.sys
15:04:32.0340 0x1290 WFPLWFS - ok
15:04:32.0356 0x1290 [ 60E0C220593DA4F7C289CB909D2DBAE0, 057CA7727F748600CC155043081AB9E3244763CF4913F317D13226A515F6FDB6 ] WiaRpc C:\windows\System32\wiarpc.dll
15:04:32.0356 0x1290 WiaRpc - ok
15:04:32.0371 0x1290 [ A3C7624A42A3447EF5EDD1ED37FE4E60, BD8BDF0A571873FA8277878AF7AED11196CFF1B4DF1EA6BA13BD4887D7B63B94 ] WIMMount C:\windows\system32\drivers\wimmount.sys
15:04:32.0387 0x1290 WIMMount - ok
15:04:32.0418 0x1290 WinDefend - ok
15:04:32.0450 0x1290 [ 1369928779943B5C7AABA263E6E2BBC1, 5DB4E77912051839B842F43B01933A07D72BD9E772F129573B1504361A9AA6A4 ] WinHttpAutoProxySvc C:\windows\system32\winhttp.dll
15:04:32.0481 0x1290 WinHttpAutoProxySvc - ok
15:04:32.0528 0x1290 [ 3D6B518B71C75C8FA4115A33615C107A, ED7A266013D29D3B1A462464735C3632BEA121D1B32553907AEAA0B00595C3DF ] Winmgmt C:\windows\system32\wbem\WMIsvc.dll
15:04:32.0543 0x1290 Winmgmt - ok
15:04:32.0653 0x1290 [ 8E212A627F33F6FC3B5F3BB47212F66E, 9BBFE26ABFA14F346FE3711D13D959523EEA23608A33C16F3D750D66CA511911 ] WinRM C:\windows\system32\WsmSvc.dll
15:04:32.0746 0x1290 WinRM - ok
15:04:32.0825 0x1290 [ 19B3CFB1D6516AB2C54772CB75426AD4, 9DB10D2BE984AC665562FB6095F32E0A9E7FDCCF1580C87A7F5DCEAA3EC4C463 ] WlanSvc C:\windows\System32\wlansvc.dll
15:04:32.0856 0x1290 WlanSvc - ok
15:04:32.0965 0x1290 [ 08EFA13A2234C8C3B8A99E4B88BE7E9B, 460ACD1687A2E5443A1B0E1786A517E67DB876403AC3498555848BD16DA08929 ] wlidsvc C:\windows\system32\wlidsvc.dll
15:04:33.0012 0x1290 wlidsvc - ok
15:04:33.0028 0x1290 [ E2A596CACFC6504306CDB7B593B90084, DF89CF57249553CE922C841F18B99A213185FA1099C053B9BB8C0F6E5BC3FEC0 ] WmiAcpi C:\windows\System32\drivers\wmiacpi.sys
15:04:33.0028 0x1290 WmiAcpi - ok
15:04:33.0075 0x1290 [ D113499052C5E541906B727779F0F959, 05FB51086C0A0CE3812A7E6098C5A454ECCFE8553669CFA715153564F2226DB0 ] wmiApSrv C:\windows\system32\wbem\WmiApSrv.exe
15:04:33.0075 0x1290 wmiApSrv - ok
15:04:33.0106 0x1290 WMPNetworkSvc - ok
15:04:33.0137 0x1290 [ C6FF953D5D6F2EAE3B8883474D5076B3, 001CBB7FBC30209C892869258E5ABD3F0932886E156ECB10DCA599F6D32648BE ] wpcfltr C:\windows\system32\DRIVERS\wpcfltr.sys
15:04:33.0137 0x1290 wpcfltr - ok
15:04:33.0168 0x1290 [ A6ED163169876BFD2437E872FE2F1509, C13E8676800EEEF690F51C4DEA660B36C8734AE2CCAAC48054E10D74B98949B8 ] WPCSvc C:\windows\System32\wpcsvc.dll
15:04:33.0168 0x1290 WPCSvc - ok
15:04:33.0200 0x1290 [ 94AA5150E35B3ABB7191FE641E3C2473, 48CC776E92579188FF75BADFABF7BDBED0092AF5EE2BDBDEF9C3834A01E39CAB ] WPDBusEnum C:\windows\system32\wpdbusenum.dll
15:04:33.0231 0x1290 WPDBusEnum - ok
15:04:33.0231 0x1290 [ 0346CAFC181C91C6E2330332EB332ED6, D46F44C339399CAAE13CD71C53A169E95065208E07E5420DE00A4509D6CB056F ] WpdUpFltr C:\windows\system32\drivers\WpdUpFltr.sys
15:04:33.0231 0x1290 WpdUpFltr - ok
15:04:33.0278 0x1290 [ BC8B5CB336E63BB25EAD1CE8EDD34B81, A42759956EDCCC6D0688240AA4F833FB9CA132D42D2D901CDCBB24DCE1788C1D ] ws2ifsl C:\windows\system32\drivers\ws2ifsl.sys
15:04:33.0278 0x1290 ws2ifsl - ok
15:04:33.0309 0x1290 [ FB0C1B7F94FA08E72F19F6F2CE7210E1, DC5475E9172BD732A654838CDB8057FCD83A02060C0C79B141F74A74D4C77555 ] wscsvc C:\windows\System32\wscsvc.dll
15:04:33.0309 0x1290 wscsvc - ok
15:04:33.0325 0x1290 WSearch - ok
15:04:33.0418 0x1290 [ C10BFFEE7E0D7A1366E84F251796C51D, E1FD1DF5F5C5934F9A8584D54F35720655AC4F5D4CFD69CD1E063C0BBEC4D33D ] WSService C:\windows\System32\WSService.dll
15:04:33.0465 0x1290 WSService - ok
15:04:33.0606 0x1290 [ 69DDDAF7BB4D39A4CC928EA434A3E258, 3C3335682C53C283E9C2C42EBB557944C4808F8C0F1781A8B2C4CA24D1677531 ] wuauserv C:\windows\system32\wuaueng.dll
15:04:33.0715 0x1290 wuauserv - ok
15:04:33.0731 0x1290 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\windows\system32\drivers\WudfPf.sys
15:04:33.0746 0x1290 WudfPf - ok
15:04:33.0762 0x1290 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\windows\System32\drivers\WUDFRd.sys
15:04:33.0762 0x1290 WUDFRd - ok
15:04:33.0778 0x1290 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\windows\System32\WUDFSvc.dll
15:04:33.0793 0x1290 wudfsvc - ok
15:04:33.0809 0x1290 [ F9D8D2E6ECE08B278621D5BF3A7240A6, 99EEEE51EA6CE8909713CA81A2AFA5102774AE9C8554F422F4D9A1D8B0ABDB09 ] WwanSvc C:\windows\System32\wwansvc.dll
15:04:33.0825 0x1290 WwanSvc - ok
15:04:33.0840 0x1290 ================ Scan global ===============================
15:04:33.0872 0x1290 [ DDC1AFBF9DDF880CE9BD3896114D8DED, E2406231EA4D2689A5EDFA9BD1A1BC064359D8D23B37F113A18B5EAE3E2D4050 ] C:\windows\system32\basesrv.dll
15:04:33.0918 0x1290 [ E9343076AE704D20BB0D01F3AF3EFFEF, FF2CE4146945976F9480690505CECD3C7C719BAF0F633E6192C8272C75EF295D ] C:\windows\system32\winsrv.dll
15:04:33.0950 0x1290 [ BD7C6949984D19AAA609896B675E7357, 5B46538B27BC70F5A3805AA63F6AACDC780C7168468FB535F2D35CF26B9DEE06 ] C:\windows\system32\sxssrv.dll
15:04:33.0965 0x1290 [ 8F226143046435C75C033B0C52E90FFE, 54FA316485B57D7B8104FE621F5F40DEC35E3D57C3DF46B5F7EACF57445FE7CA ] C:\windows\system32\services.exe
15:04:33.0981 0x1290 [ Global ] - ok
15:04:33.0981 0x1290 ================ Scan MBR ==================================
15:04:33.0981 0x1290 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
15:04:33.0996 0x1290 \Device\Harddisk0\DR0 - ok
15:04:33.0996 0x1290 ================ Scan VBR ==================================
15:04:33.0996 0x1290 [ 0163149BFEBA841FDFBAE5B9EB438D6C ] \Device\Harddisk0\DR0\Partition1
15:04:34.0012 0x1290 \Device\Harddisk0\DR0\Partition1 - ok
15:04:34.0028 0x1290 [ 097EDC8DF0B555C0811932A3A5EA949A ] \Device\Harddisk0\DR0\Partition2
15:04:34.0043 0x1290 \Device\Harddisk0\DR0\Partition2 - ok
15:04:34.0043 0x1290 [ 81B73FA40A4EF2AE305C3119445570FC ] \Device\Harddisk0\DR0\Partition3
15:04:34.0059 0x1290 \Device\Harddisk0\DR0\Partition3 - ok
15:04:34.0075 0x1290 [ 303D29950197A222A4A2704591E6F298 ] \Device\Harddisk0\DR0\Partition4
15:04:34.0090 0x1290 \Device\Harddisk0\DR0\Partition4 - ok
15:04:34.0122 0x1290 [ 33B2F9460BA3292FE50F39B5CD5F50BE ] \Device\Harddisk0\DR0\Partition5
15:04:34.0122 0x1290 \Device\Harddisk0\DR0\Partition5 - ok
15:04:34.0122 0x1290 [ 1B3F7014E813236273611753BB5DB3E5 ] \Device\Harddisk0\DR0\Partition6
15:04:34.0122 0x1290 \Device\Harddisk0\DR0\Partition6 - ok
15:04:34.0122 0x1290 ================ Scan generic autorun ======================
15:04:34.0293 0x1290 [ 4D8D8B6D046BAA8A0D92B50366ADFC7D, A23751F5FE14A84D9ABD020756B5A7E9E4831611065B7CE60BD4F7B761F8EF0B ] C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
15:04:34.0418 0x1290 Norton Online Backup - ok
15:04:34.0559 0x1290 [ 2D7816ACDA1CC85C873CBC19A4121D58, 3F3E41EBEF81DB8C2A84A8E75D1E4852046A10A5DCB8CCCC2ADF7FD0DC8EEF66 ] C:\Program Files (x86)\Toshiba\Toshiba App Place\ToshibaAppPlace.exe
15:04:34.0575 0x1290 ToshibaAppPlace - ok
15:04:34.0575 0x1290 Waiting for KSN requests completion. In queue: 92
15:04:35.0590 0x1290 Waiting for KSN requests completion. In queue: 92
15:04:36.0606 0x1290 Waiting for KSN requests completion. In queue: 92
15:04:37.0700 0x1290 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.0.9200.16384 ), 0x60100 ( disabled : updated )
15:04:37.0700 0x1290 AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\WSCStub.exe ( 20.5.0.0 ), 0x51000 ( enabled : updated )
15:04:37.0716 0x1290 FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\20.5.0.28\WSCStub.exe ( 20.5.0.0 ), 0x51010 ( enabled )
15:04:40.0200 0x1290 ============================================================
15:04:40.0200 0x1290 Scan finished
15:04:40.0200 0x1290 ============================================================
15:04:40.0200 0x137c Detected object count: 0
15:04:40.0200 0x137c Actual detected object count: 0
15:05:14.0296 0x0c54 Deinitialize success





# AdwCleaner v3.216 - Report created 25/07/2014 at 15:06:24
# Updated 17/07/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Moxie - GLAPTOP
# Running from : C:\Users\Moxie\Downloads\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****


***** [ Files / Folders ] *****

File Found : C:\END
Folder Found : C:\Users\Administrator\Favorites\StumbleUpon
Folder Found : C:\Users\Moxie\Favorites\StumbleUpon

***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16384

Setting Found : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL] - hxxp://mystart.toshiba.com
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL] - hxxp://mystart.toshiba.com
Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Secondary Start Pages] - hxxp://mystart.toshiba.com
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL] - hxxp://mystart.toshiba.com
Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Secondary Start Pages] - hxxp://mystart.toshiba.com

*************************

AdwCleaner[R0].txt - [1211 octets] - [25/07/2014 15:06:24]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1271 octets] ##########
C:\Users\Moxie\Favorites\StumbleUpon\StumbleUpon is the easiest way to discover new and interesting web pages, photos and videos across the Web.url->C:\AdwCleaner\Quarantine\C\Users\Moxie\Favorites\StumbleUpon\StumbleUpon is the easiest way to discover new and interesting web pages, photos and videos across the Web.url.vir
C:\Users\Administrator\Favorites\StumbleUpon\StumbleUpon is the easiest way to discover new and interesting web pages, photos and videos across the Web.url->C:\AdwCleaner\Quarantine\C\Users\Administrator\Favorites\StumbleUpon\StumbleUpon is the easiest way to discover new and interesting web pages, photos and videos across the Web.url.vir
C:\END->C:\AdwCleaner\Quarantine\C\END.vir
# AdwCleaner v3.216 - Report created 25/07/2014 at 15:08:11
# Updated 17/07/2014 by Xplode
# Operating System : Windows 8 (64 bits)
# Username : Moxie - GLAPTOP
# Running from : C:\Users\Moxie\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\Users\Moxie\Favorites\StumbleUpon
Folder Deleted : C:\Users\Administrator\Favorites\StumbleUpon
File Deleted : C:\END

***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16384

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Secondary Start Pages]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Secondary_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Secondary Start Pages]

*************************

AdwCleaner[R0].txt - [1359 octets] - [25/07/2014 15:06:24]
AdwCleaner[S0].txt - [1148 octets] - [25/07/2014 15:08:11]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1208 octets] ##########





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 x64
Ran by Moxie on Fri 07/25/2014 at 15:13:30.98
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders

Failed to delete: [Folder] "C:\ProgramData\boost_interprocess"



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Fri 07/25/2014 at 15:18:03.49
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~





The ESET program found two unsafe items it quarantined, but I cannot for the life of me find the log. I said yes when it asked me if it should delete the items. Sorry. Moron here. Helping my teen, never used Win8 before and it's different and harder to use.

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:50 PM

Posted 26 July 2014 - 08:43 PM

yes it is harder as its all moved around.

The issue still exists tho'?

FWIW... The ESET Online Scanner saves a log file after running, which can be examined or sent in to ESET for further analysis. The path to the log file is "C:\Program Files\EsetOnlineScanner\log.txt". You can view this file by navigating to the directory and double-clicking it in Windows Explorer, or by copying and pasting the path specification above (including the quotation marks) into the Start → Run dialog box from the Start Menu on the desktop.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 D45ist

D45ist
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 27 July 2014 - 11:56 AM

I popped the keyboard out and was able to type with a USB keyboard plugged in. When the laptop keyboard is installed neither nor the USB keyboard work. Is it possible that the laptop keyboard has just gone wacky? Would a broken laptop keyboard interfere with a usb keyboard's operation?



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:50 PM

Posted 27 July 2014 - 02:11 PM

Let's do one more tool.. I don't think it's malware but file corruption. ot sure tha a key board can affect the other.

Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.


Go to Step 3 and click on Check button next to 1. See If Check Disk Is Needed.
If the tool that the Check Disk is needed click on Do It button next to 2. Check Disk.
In that case make sure you restart computer.

p22004342.gif


Once the above is done go to Step 4 and allow it to run System File Check by clicking on Do It button:

p22004343.gif


Go to Step 5 and under "System Restore" click on Create button:

p22004346.gif


Go to Start Repairs tab and click Start button.

Leave all checkmarks as they're.
NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

Click on Start button.

p22004347.gif

Post Windows Repair log which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 D45ist

D45ist
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 31 July 2014 - 09:34 AM

No Eset log. Not even in recycle bin. The two items Eset found were "unsafe" as opposed to unwanted. The keyboard still did not work at that point. I ran the Tweaking, but have not tested the keyboard yet. Not sure if you would advise to do so. . Here is the log.

 

System Variables
--------------------------------------------------------------------------------
OS: Windows 8
OS Architecture: 64-bit
OS Version: 6.2.9200
OS Service Pack:
Computer Name: GLAPTOP
Windows Drive: C:\
Windows Path: C:\windows
Program Files: C:\Program Files
Program Files (x86): C:\Program Files (x86)
Current Profile: C:\Users\Moxie
Current Profile SID: S-1-5-21-2463630895-361514695-4213319132-1001
Current Profile Classes: S-1-5-21-2463630895-361514695-4213319132-1001_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\windows\ServiceProfiles
Local Settings AppData: C:\Users\Moxie\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 00:26:36

Process Count: 68
Commit Total: 2.00 GB
Commit Limit: 4.57 GB
Commit Peak: 2.39 GB
Handle Count: 23880
Kernel Total: 771.20 MB
Kernel Paged: 376.82 MB
Kernel Non Paged: 394.38 MB
System Cache: 1.97 GB
Thread Count: 790
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 3.89 GB
Memory Used: 2.03 GB(52.2987%)
Memory Avail.: 1.85 GB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 3.89 GB
Memory Used: 1.72 GB(44.3474%)
Memory Avail.: 2.16 GB
--------------------------------------------------------------------------------

Starting Repairs...
   Started at (7/30/2014 11:06:34 PM)

01 - Reset Registry Permissions
   Restore Windows 8 Default Registry Permissions
   Start (7/30/2014 11:06:40 PM)

Decompressing & Updating Windows 8 Permission File hkud.txt
Done,  0.36 seconds.

Decompressing & Updating Windows 8 Permission File hkcu.txt
Done,  0.2 seconds.

Decompressing & Updating Windows 8 Permission File hkcr.txt
Done,  0.94 seconds.

Decompressing & Updating Windows 8 Permission File hklm.txt
Done,  1.92 seconds.

   Running Repair Under System Account
   Running Repair Under Current User Account
   Done (7/30/2014 11:10:23 PM)

03 - Reset Service Permissions
   Start (7/30/2014 11:10:24 PM)
   Running Repair Under System Account
   Done (7/30/2014 11:10:29 PM)

04 - Register System Files
   Start (7/30/2014 11:10:29 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:10:55 PM)

05 - Repair WMI
   Start (7/30/2014 11:10:55 PM)

   Starting Security Center So We Can Export The Security Info.

   Exporting Antivirus Info...
   Windows Defender Exported.
   Norton Internet Security Exported.

   Exporting AntiSpyware Info...
   Norton Internet Security Exported.
   Windows Defender Exported.

   Exporting 3rd Party Firewall Info...
   Norton Internet Security Exported.

   Running Repair Under Current User Account
   Done (7/30/2014 11:15:31 PM)

06 - Repair Windows Firewall
   Start (7/30/2014 11:15:31 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:16:12 PM)

07 - Repair Internet Explorer
   Start (7/30/2014 11:16:12 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:16:40 PM)

08 - Repair MDAC/MS Jet
   Start (7/30/2014 11:16:40 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:16:48 PM)

09 - Repair Hosts File
   Start (7/30/2014 11:16:49 PM)
   Running Repair Under System Account
   Done (7/30/2014 11:16:52 PM)

10 - Remove Policies Set By Infections
   Start (7/30/2014 11:16:52 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:16:58 PM)

11 - Repair Start Menu Icons Removed By Infections
   Start (7/30/2014 11:16:58 PM)
   Running Repair Under System Account
   Done (7/30/2014 11:17:01 PM)

12 - Repair Icons
   Start (7/30/2014 11:17:01 PM)
   Running Repair Under Current User Account
   Done (7/30/2014 11:17:04 PM)

13 - Repair Winsock & DNS Cache
   Start (7/30/2014 11:17:04 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:17:18 PM)

15 - Repair Proxy Settings
   Start (7/30/2014 11:17:18 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:17:25 PM)

17 - Repair Windows Updates
   Start (7/30/2014 11:17:25 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:17:50 PM)

18 - Repair CD/DVD Missing/Not Working
   Start (7/30/2014 11:17:50 PM)
   iTunes not found, not applying UpperFilters iTunes Reg Key
   Done (7/30/2014 11:17:50 PM)

19 - Repair Volume Shadow Copy Service
   Start (7/30/2014 11:17:50 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:18:14 PM)

21 - Repair MSI (Windows Installer)
   Start (7/30/2014 11:18:14 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:18:25 PM)

23.01 - Repair bat Association
   Start (7/30/2014 11:18:25 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:18:31 PM)

23.02 - Repair cmd Association
   Start (7/30/2014 11:18:31 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:18:37 PM)

23.03 - Repair com Association
   Start (7/30/2014 11:18:37 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:18:43 PM)

23.04 - Repair Directory Association
   Start (7/30/2014 11:18:43 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:18:49 PM)

23.05 - Repair Drive Association
   Start (7/30/2014 11:18:49 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:18:56 PM)

23.06 - Repair exe Association
   Start (7/30/2014 11:18:56 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:19:02 PM)

23.07 - Repair Folder Association
   Start (7/30/2014 11:19:02 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:19:08 PM)

23.08 - Repair inf Association
   Start (7/30/2014 11:19:08 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:19:14 PM)

23.09 - Repair lnk (Shortcuts) Association
   Start (7/30/2014 11:19:14 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:19:20 PM)

23.10 - Repair msc Association
   Start (7/30/2014 11:19:20 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:19:27 PM)

23.11 - Repair reg Association
   Start (7/30/2014 11:19:27 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:19:33 PM)

23.12 - Repair scr Association
   Start (7/30/2014 11:19:33 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:19:39 PM)

24 - Repair Windows Safe Mode
   Start (7/30/2014 11:19:39 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:19:45 PM)

25 - Repair Print Spooler
   Start (7/30/2014 11:19:45 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:20:02 PM)

26 - Restore Important Windows Services
   Start (7/30/2014 11:20:02 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:20:12 PM)

27 - Set Windows Services To Default Startup
   Start (7/30/2014 11:20:12 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/30/2014 11:20:18 PM)

28 - Repair Windows 8 App Store
   Start (7/30/2014 11:20:18 PM)

Decompressing & Updating Windows 8 Permission File hkcu.txt
Done,  0.2 seconds.

   Running Repair Under Current User Account
   Done (7/30/2014 11:20:42 PM)

29 - Repair Windows 8 Component Store
   Start (7/30/2014 11:20:42 PM)
   Running Repair Under Current User Account
   Done (7/31/2014 1:52:57 AM)

30 - Restore Windows 8 COM+ Unmarshalers
   Start (7/31/2014 1:52:57 AM)
   Running Repair Under System Account
Processing ACL of: <classes_root\Unmarshalers>

SetACL finished with error(s):
SetACL error message: The call to SetNamedSecurityInfo () failed
Operating system error message: Access is denied.

   Done (7/31/2014 1:53:02 AM)

31 - Repair Windows 'New' Submenu
   Start (7/31/2014 1:53:02 AM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (7/31/2014 1:53:09 AM)

Cleaning up empty logs...

All Selected Repairs Done.
   Done at (7/31/2014 1:53:09 AM)
   Total Repair Time: 02:46:36

...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under Current User Account



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:50 PM

Posted 01 August 2014 - 11:54 AM

Restart the system and test keyboard.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 D45ist

D45ist
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:09:50 PM

Posted 01 August 2014 - 12:35 PM

When I turned it on I got the Bios screen. When I hit it exit it asked if I wanted to save changes (I hadn't changed anything) so, not knowing what the changes were or if the changes were a good or bad thing I exited without saving changes. The escape key and arrows to move around the screen worked, enter key did not.

 

The desktop came up and started the plus sign thing again.

 

I restarted the computer, no bios screen. Opened IE and typed in search bar. No plus signs, but miscellaneous letters do not work. W I O PA S,  J types a J and the numbers 1 & 5. N. backspace, enter - do not work. 

 

BTW the laptop keyboard does have a number pad. The only number that works is 6. When I pressed 9 the plus signs began again. 9 is also page up, so I then hit page down (which is also pause) and the plus signs stopped. The number 2 is a down arrow which starts the plus signs also. 

 

I wonder if my toddler hit a crazy combo of keys to cause this.


Edited by D45ist, 01 August 2014 - 01:43 PM.


#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:10:50 PM

Posted 01 August 2014 - 01:33 PM

Ok, sorry, looks like we need a WIN8 topic now as it is not malware and they will test other things.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users