Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

multiple dllhost.exe *32 disease


  • Please log in to reply
26 replies to this topic

#1 bubba888

bubba888

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 01:09 PM

hi.  my win7 thinkpad has the infection that shows up as lots of dllhost.exe's in taskmgr.  over a period of hours or days, memory utilization creeps up to close to 100% (I've got 8gb), and eventually i have to reboot.  i've run mbam a few times -- it finds threats which i remove; then i reboot, and sooner or later the problem shows up again.  what should i do?


Edited by bubba888, 06 November 2014 - 01:10 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,898 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:34 AM

Posted 06 November 2014 - 01:15 PM

Hello bubba, I moved this to the Am I Infected forum.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 bubba888

bubba888
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 01:31 PM

tx & will do.  does it matter which win login I'm on when executing the above steps?  does it have to be admin?  I'm using a non-admin alternate win id at the moment as a temp work-around... but i can log back in as my primary (admin) id, where the problem shows up.



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,898 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:34 AM

Posted 06 November 2014 - 01:34 PM

Admin is best if its possible.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 bubba888

bubba888
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 01:57 PM

when I try to post, I get....

. . . an error occurred -- you do not have permission for that action



#6 bubba888

bubba888
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 01:58 PM

I have an MVPS Hosts file, which is big.  not sure whether that's part of the problem.



#7 bubba888

bubba888
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 02:00 PM

result.txt size is 430KB.



#8 bubba888

bubba888
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 02:21 PM

in case it helps, I've posted result (as result1) here...

http://www.dekworld.com/bleepc/result1.txt



#9 bubba888

bubba888
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 02:35 PM

14:31:43.0291 0x1cb4 TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34

14:32:22.0643 0x1cb4 ============================================================

14:32:22.0643 0x1cb4 Current date / time: 2014/11/06 14:32:22.0643

14:32:22.0643 0x1cb4 SystemInfo:

14:32:22.0643 0x1cb4

14:32:22.0643 0x1cb4 OS Version: 6.1.7601 ServicePack: 1.0

14:32:22.0643 0x1cb4 Product type: Workstation

14:32:22.0643 0x1cb4 ComputerName: CORK

14:32:22.0659 0x1cb4 UserName: hughie

14:32:22.0659 0x1cb4 Windows directory: C:\Windows

14:32:22.0659 0x1cb4 System windows directory: C:\Windows

14:32:22.0659 0x1cb4 Running under WOW64

14:32:22.0659 0x1cb4 Processor architecture: Intel x64

14:32:22.0659 0x1cb4 Number of processors: 4

14:32:22.0659 0x1cb4 Page size: 0x1000

14:32:22.0659 0x1cb4 Boot type: Normal boot

14:32:22.0659 0x1cb4 ============================================================

14:32:22.0784 0x1cb4 KLMD registered as C:\Windows\system32\drivers\10743696.sys

14:32:23.0205 0x1cb4 System UUID: {E1F99198-3833-54B0-8DDD-DA10FC6E24C0}

14:32:23.0693 0x1cb4 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

14:32:23.0693 0x1cb4 Drive \Device\Harddisk1\DR1 - Size: 0x3BA816000 ( 14.91 Gb ), SectorSize: 0x200, Cylinders: 0x79A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

14:32:23.0693 0x1cb4 ============================================================

14:32:23.0693 0x1cb4 \Device\Harddisk0\DR0:

14:32:23.0693 0x1cb4 MBR partitions:

14:32:23.0693 0x1cb4 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2EE000

14:32:23.0693 0x1cb4 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x3853F000

14:32:23.0693 0x1cb4 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3882D800, BlocksNum 0x1B58000

14:32:23.0693 0x1cb4 \Device\Harddisk1\DR1:

14:32:23.0693 0x1cb4 MBR partitions:

14:32:23.0693 0x1cb4 ============================================================

14:32:23.0725 0x1cb4 C: <-> \Device\Harddisk0\DR0\Partition2

14:32:23.0771 0x1cb4 Q: <-> \Device\Harddisk0\DR0\Partition3

14:32:23.0771 0x1cb4 ============================================================

14:32:23.0771 0x1cb4 Initialize success

14:32:23.0771 0x1cb4 ============================================================

14:32:34.0464 0x223c ============================================================

14:32:34.0464 0x223c Scan started

14:32:34.0464 0x223c Mode: Manual;

14:32:34.0464 0x223c ============================================================

14:32:34.0464 0x223c KSN ping started

14:32:42.0019 0x223c KSN ping finished: true

14:32:42.0659 0x223c ================ Scan system memory ========================

14:32:42.0659 0x223c System memory - ok

14:32:42.0659 0x223c ================ Scan services =============================

14:32:42.0799 0x223c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys

14:32:42.0815 0x223c 1394ohci - ok

14:32:42.0862 0x223c [ 1F305C858E7B5E537C9B783D46243A7A, 0DA7B31949C48FB42DBF61EC71ACCFD1CEB3B6135DC3FA0FEC4A9DE25A1405BA ] 5U877 C:\Windows\system32\DRIVERS\5U877.sys

14:32:42.0877 0x223c 5U877 - ok

14:32:42.0893 0x223c [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys

14:32:42.0893 0x223c ACPI - ok

14:32:42.0908 0x223c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys

14:32:42.0908 0x223c AcpiPmi - ok

14:32:42.0986 0x223c [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

14:32:42.0986 0x223c AdobeARMservice - ok

14:32:43.0033 0x223c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys

14:32:43.0049 0x223c adp94xx - ok

14:32:43.0096 0x223c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\drivers\adpahci.sys

14:32:43.0096 0x223c adpahci - ok

14:32:43.0127 0x223c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\drivers\adpu320.sys

14:32:43.0127 0x223c adpu320 - ok

14:32:43.0158 0x223c [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll

14:32:43.0158 0x223c AeLookupSvc - ok

14:32:43.0220 0x223c [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD C:\Windows\system32\drivers\afd.sys

14:32:43.0236 0x223c AFD - ok

14:32:43.0252 0x223c [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys

14:32:43.0252 0x223c agp440 - ok

14:32:43.0267 0x223c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe

14:32:43.0267 0x223c ALG - ok

14:32:43.0298 0x223c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys

14:32:43.0298 0x223c aliide - ok

14:32:43.0314 0x223c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys

14:32:43.0314 0x223c amdide - ok

14:32:43.0330 0x223c [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys

14:32:43.0345 0x223c AmdK8 - ok

14:32:43.0345 0x223c [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys

14:32:43.0361 0x223c AmdPPM - ok

14:32:43.0376 0x223c [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys

14:32:43.0376 0x223c amdsata - ok

14:32:43.0392 0x223c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\drivers\amdsbs.sys

14:32:43.0408 0x223c amdsbs - ok

14:32:43.0423 0x223c [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys

14:32:43.0423 0x223c amdxata - ok

14:32:43.0454 0x223c [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID C:\Windows\system32\drivers\appid.sys

14:32:43.0454 0x223c AppID - ok

14:32:43.0470 0x223c [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc C:\Windows\System32\appidsvc.dll

14:32:43.0470 0x223c AppIDSvc - ok

14:32:43.0501 0x223c [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo C:\Windows\System32\appinfo.dll

14:32:43.0501 0x223c Appinfo - ok

14:32:43.0584 0x223c [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

14:32:43.0584 0x223c Apple Mobile Device - ok

14:32:43.0631 0x223c [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt C:\Windows\System32\appmgmts.dll

14:32:43.0647 0x223c AppMgmt - ok

14:32:43.0662 0x223c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\drivers\arc.sys

14:32:43.0662 0x223c arc - ok

14:32:43.0678 0x223c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\drivers\arcsas.sys

14:32:43.0678 0x223c arcsas - ok

14:32:43.0771 0x223c [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

14:32:43.0771 0x223c aspnet_state - ok

14:32:43.0803 0x223c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys

14:32:43.0803 0x223c AsyncMac - ok

14:32:43.0818 0x223c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys

14:32:43.0818 0x223c atapi - ok

14:32:43.0865 0x223c [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

14:32:43.0896 0x223c AudioEndpointBuilder - ok

14:32:43.0912 0x223c [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv C:\Windows\System32\Audiosrv.dll

14:32:43.0912 0x223c AudioSrv - ok

14:32:43.0943 0x223c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll

14:32:43.0943 0x223c AxInstSV - ok

14:32:43.0974 0x223c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\drivers\bxvbda.sys

14:32:43.0974 0x223c b06bdrv - ok

14:32:44.0005 0x223c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys

14:32:44.0005 0x223c b57nd60a - ok

14:32:44.0021 0x223c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll

14:32:44.0021 0x223c BDESVC - ok

14:32:44.0037 0x223c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys

14:32:44.0037 0x223c Beep - ok

14:32:44.0083 0x223c [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll

14:32:44.0099 0x223c BFE - ok

14:32:44.0130 0x223c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll

14:32:44.0146 0x223c BITS - ok

14:32:44.0161 0x223c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys

14:32:44.0161 0x223c blbdrive - ok

14:32:44.0239 0x223c [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

14:32:44.0255 0x223c Bonjour Service - ok

14:32:44.0286 0x223c [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys

14:32:44.0286 0x223c bowser - ok

14:32:44.0302 0x223c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys

14:32:44.0302 0x223c BrFiltLo - ok

14:32:44.0302 0x223c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys

14:32:44.0302 0x223c BrFiltUp - ok

14:32:44.0333 0x223c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll

14:32:44.0333 0x223c Browser - ok

14:32:44.0364 0x223c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys

14:32:44.0364 0x223c Brserid - ok

14:32:44.0411 0x223c [ 80E52EF092F3DAD03E0EE15E64F97245, D3BAFEBA95C9FC96945F47134F617695B48F5C67E26526D99D8D85DC39737F8A ] BrSerIf C:\Windows\system32\DRIVERS\BrSerIf.sys

14:32:44.0411 0x223c BrSerIf - ok

14:32:44.0427 0x223c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys

14:32:44.0427 0x223c BrSerWdm - ok

14:32:44.0442 0x223c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys

14:32:44.0442 0x223c BrUsbMdm - ok

14:32:44.0458 0x223c [ 601CB966FFFEBC6806626DC8E7AA0EF2, 34208A23F48C60C52144C02D4E157D3057E9DE7D46ECB4246A521BEBB261F446 ] BrUsbSer C:\Windows\system32\DRIVERS\BrUsbSer.sys

14:32:44.0458 0x223c BrUsbSer - ok

14:32:44.0489 0x223c [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys

14:32:44.0489 0x223c BthEnum - ok

14:32:44.0505 0x223c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys

14:32:44.0505 0x223c BTHMODEM - ok

14:32:44.0520 0x223c [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys

14:32:44.0520 0x223c BthPan - ok

14:32:44.0567 0x223c [ 64C198198501F7560EE41D8D1EFA7952, 53CE5FDD1866FC8A0B91C7A620F7555D197488C4C8F3DEFD4398D8E3ED2AEBD0 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys

14:32:44.0583 0x223c BTHPORT - ok

14:32:44.0614 0x223c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll

14:32:44.0614 0x223c bthserv - ok

14:32:44.0629 0x223c [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys

14:32:44.0629 0x223c BTHUSB - ok

14:32:44.0770 0x223c [ 1F79342D9EB530A48742F651E570983A, 99E0B613C23FA8591E248DFA6FF2D3EE19E262BE6E070A0E43E256B69687017F ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe

14:32:44.0801 0x223c c2cautoupdatesvc - ok

14:32:44.0910 0x223c [ E4938E0A376CF0B9D989EE5C0A146891, 9DF6AB5781CD60862D9664CA9A8AF0696A1FB6D09D804CD8DE9630F40DE59E90 ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe

14:32:44.0926 0x223c c2cpnrsvc - ok

14:32:44.0957 0x223c [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys

14:32:44.0957 0x223c cdfs - ok

14:32:44.0988 0x223c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys

14:32:44.0988 0x223c cdrom - ok

14:32:45.0019 0x223c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll

14:32:45.0019 0x223c CertPropSvc - ok

14:32:45.0051 0x223c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\drivers\circlass.sys

14:32:45.0051 0x223c circlass - ok

14:32:45.0066 0x223c [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS C:\Windows\system32\CLFS.sys

14:32:45.0066 0x223c CLFS - ok

14:32:45.0207 0x223c [ 871EEE78F98D6E31C80FD39433A8FE2F, 67602F597FADA1E7102BC373287A4A78339E057D37FCEAD0B2502F70450EC7CE ] ClickToRunSvc C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe

14:32:45.0238 0x223c ClickToRunSvc - ok

14:32:45.0300 0x223c [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

14:32:45.0300 0x223c clr_optimization_v2.0.50727_32 - ok

14:32:45.0347 0x223c [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

14:32:45.0347 0x223c clr_optimization_v2.0.50727_64 - ok

14:32:45.0409 0x223c [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

14:32:45.0409 0x223c clr_optimization_v4.0.30319_32 - ok

14:32:45.0441 0x223c [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

14:32:45.0456 0x223c clr_optimization_v4.0.30319_64 - ok

14:32:45.0472 0x223c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys

14:32:45.0472 0x223c CmBatt - ok

14:32:45.0503 0x223c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys

14:32:45.0503 0x223c cmdide - ok

14:32:45.0552 0x223c [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG C:\Windows\system32\Drivers\cng.sys

14:32:45.0557 0x223c CNG - ok

14:32:45.0604 0x223c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\drivers\compbatt.sys

14:32:45.0604 0x223c Compbatt - ok

14:32:45.0620 0x223c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\DRIVERS\CompositeBus.sys

14:32:45.0620 0x223c CompositeBus - ok

14:32:45.0635 0x223c COMSysApp - ok

14:32:45.0713 0x223c [ 64704E2956CAFD465DDDD58EEB4ECE81, 33F6053BC32930E9D0767165907B0A956A203360CED3970BD2AF12326B0ABC3E ] cphs C:\Windows\SysWow64\IntelCpHeciSvc.exe

14:32:45.0729 0x223c cphs - ok

14:32:45.0729 0x223c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys

14:32:45.0744 0x223c crcdisk - ok

14:32:45.0791 0x223c [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc C:\Windows\system32\cryptsvc.dll

14:32:45.0791 0x223c CryptSvc - ok

14:32:45.0838 0x223c [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC C:\Windows\system32\drivers\csc.sys

14:32:45.0838 0x223c CSC - ok

14:32:45.0869 0x223c [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService C:\Windows\System32\cscsvc.dll

14:32:45.0885 0x223c CscService - ok

14:32:45.0932 0x223c [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll

14:32:45.0947 0x223c DcomLaunch - ok

14:32:45.0963 0x223c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll

14:32:45.0978 0x223c defragsvc - ok

14:32:46.0010 0x223c [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys

14:32:46.0010 0x223c DfsC - ok

14:32:46.0025 0x223c [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll

14:32:46.0025 0x223c Dhcp - ok

14:32:46.0041 0x223c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys

14:32:46.0041 0x223c discache - ok

14:32:46.0072 0x223c [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\drivers\disk.sys

14:32:46.0072 0x223c Disk - ok

14:32:46.0103 0x223c [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc C:\Windows\system32\drivers\dmvsc.sys

14:32:46.0103 0x223c dmvsc - ok

14:32:46.0119 0x223c [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll

14:32:46.0134 0x223c Dnscache - ok

14:32:46.0150 0x223c [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll

14:32:46.0150 0x223c dot3svc - ok

14:32:46.0212 0x223c [ 9597BCB69286FF017DB1A0FB8144408D, B477E4E7C3B49A77075B3165079E29FF1908C81E2BCCB930B47DCCF7DA5C417C ] DozeSvc C:\Program Files (x86)\ThinkPad\Utilities\DZSVC64.EXE

14:32:46.0212 0x223c DozeSvc - ok

14:32:46.0259 0x223c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll

14:32:46.0259 0x223c DPS - ok

14:32:46.0306 0x223c [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys

14:32:46.0306 0x223c drmkaud - ok

14:32:46.0368 0x223c [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys

14:32:46.0384 0x223c DXGKrnl - ok

14:32:46.0400 0x223c [ 3CE83D7EE95D9C9F03323810A2E747DF, 50E34E2EC26584A1BE06EA5049481D1AE2F3213B2A81BA86411623ADCEE24F53 ] DzHDD64 C:\Windows\system32\DRIVERS\DzHDD64.sys

14:32:46.0400 0x223c DzHDD64 - ok

14:32:46.0415 0x223c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll

14:32:46.0431 0x223c EapHost - ok

14:32:46.0509 0x223c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\drivers\evbda.sys

14:32:46.0556 0x223c ebdrv - ok

14:32:46.0602 0x223c [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS C:\Windows\System32\lsass.exe

14:32:46.0602 0x223c EFS - ok

14:32:46.0665 0x223c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe

14:32:46.0680 0x223c ehRecvr - ok

14:32:46.0696 0x223c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe

14:32:46.0696 0x223c ehSched - ok

14:32:46.0758 0x223c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\drivers\elxstor.sys

14:32:46.0774 0x223c elxstor - ok

14:32:46.0790 0x223c [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys

14:32:46.0805 0x223c ErrDev - ok

14:32:46.0836 0x223c [ C1CAB8BE142E2E377DFCC1C7E00A6407, FC16BC8FA818B30526FE0446E82AA0BCCEFB4EB1375BE6DDD3E272BB26EA353B ] ETD C:\Windows\system32\DRIVERS\ETD.sys

14:32:46.0852 0x223c ETD - ok

14:32:46.0883 0x223c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll

14:32:46.0883 0x223c EventSystem - ok

14:32:46.0914 0x223c [ 6BAF341D52620412302BB05D6126EADB, D4B8AE1C2CDE527F8F4A499515845B0979435E114250212FFED7BB6A92FF2FE5 ] excfs C:\Windows\system32\DRIVERS\excfs.sys

14:32:46.0930 0x223c excfs - ok

14:32:46.0946 0x223c [ 9E871D746BEC9943F8D4BB172DB59D18, 08A4E76C425335C7329819434F18E476BFAA7129C0EBFAFE9D6A870B981E3F44 ] excsd C:\Windows\system32\DRIVERS\excsd.sys

14:32:46.0946 0x223c excsd - ok

14:32:46.0977 0x223c [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys

14:32:46.0977 0x223c exfat - ok

14:32:47.0024 0x223c [ 268D08F7C45522DBB35F410E809AB65E, 8D7E086F2DA1B00FCAA8B73A77A76211344888860EA65F9623B055A7999FDECC ] ExpressCache C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe

14:32:47.0024 0x223c ExpressCache - ok

14:32:47.0055 0x223c [ EB3A7D5663ACAC417DF986D4AEE12170, E2E7A0DEF42E0E9D8E2A70FAEC84D4BB67D8C6F9F6B4C0DE884FA4A12C031F91 ] Fastboot C:\Windows\system32\DRIVERS\Fastboot.sys

14:32:47.0070 0x223c Fastboot - ok

14:32:47.0117 0x223c [ 63511240AF70D10343A4AE05F8E2CA12, E4A873CE9F685E42347390F7D7D50CD8D3C9A5FCFFEA26093438F679D1CE275D ] FastbootService C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBService.exe

14:32:47.0133 0x223c FastbootService - ok

14:32:47.0148 0x223c [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys

14:32:47.0164 0x223c fastfat - ok

14:32:47.0211 0x223c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe

14:32:47.0226 0x223c Fax - ok

14:32:47.0242 0x223c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\drivers\fdc.sys

14:32:47.0242 0x223c fdc - ok

14:32:47.0258 0x223c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll

14:32:47.0258 0x223c fdPHost - ok

14:32:47.0273 0x223c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll

14:32:47.0273 0x223c FDResPub - ok

14:32:47.0304 0x223c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys

14:32:47.0304 0x223c FileInfo - ok

14:32:47.0304 0x223c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys

14:32:47.0304 0x223c Filetrace - ok

14:32:47.0320 0x223c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys

14:32:47.0320 0x223c flpydisk - ok

14:32:47.0336 0x223c [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys

14:32:47.0336 0x223c FltMgr - ok

14:32:47.0398 0x223c [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache C:\Windows\system32\FntCache.dll

14:32:47.0429 0x223c FontCache - ok

14:32:47.0460 0x223c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

14:32:47.0460 0x223c FontCache3.0.0.0 - ok

14:32:47.0476 0x223c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys

14:32:47.0476 0x223c FsDepends - ok

14:32:47.0507 0x223c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys

14:32:47.0507 0x223c Fs_Rec - ok

14:32:47.0590 0x223c [ D225864F6FD96575A303A20BD42383ED, 291ECE0E6D9756EBC7D9D80DC4B1458957DB284D3927034B1C36FA4425C50FD0 ] ftpsvc C:\Windows\system32\inetsrv\ftpsvc.dll

14:32:47.0590 0x223c ftpsvc - ok

14:32:47.0637 0x223c [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys

14:32:47.0653 0x223c fvevol - ok

14:32:47.0684 0x223c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys

14:32:47.0684 0x223c gagp30kx - ok

14:32:47.0715 0x223c [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

14:32:47.0715 0x223c GEARAspiWDM - ok

14:32:47.0762 0x223c [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll

14:32:47.0793 0x223c gpsvc - ok

14:32:47.0840 0x223c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

14:32:47.0840 0x223c gupdate - ok

14:32:47.0855 0x223c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

14:32:47.0855 0x223c gupdatem - ok

14:32:47.0871 0x223c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys

14:32:47.0871 0x223c hcw85cir - ok

14:32:47.0902 0x223c [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

14:32:47.0918 0x223c HdAudAddService - ok

14:32:47.0949 0x223c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys

14:32:47.0949 0x223c HDAudBus - ok

14:32:47.0980 0x223c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys

14:32:47.0980 0x223c HidBatt - ok

14:32:47.0996 0x223c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\drivers\hidbth.sys

14:32:47.0996 0x223c HidBth - ok

14:32:48.0011 0x223c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\drivers\hidir.sys

14:32:48.0011 0x223c HidIr - ok

14:32:48.0027 0x223c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll

14:32:48.0027 0x223c hidserv - ok

14:32:48.0074 0x223c [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys

14:32:48.0074 0x223c HidUsb - ok

14:32:48.0089 0x223c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll

14:32:48.0105 0x223c hkmsvc - ok

14:32:48.0121 0x223c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll

14:32:48.0121 0x223c HomeGroupListener - ok

14:32:48.0152 0x223c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

14:32:48.0167 0x223c HomeGroupProvider - ok

14:32:48.0183 0x223c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys

14:32:48.0183 0x223c HpSAMD - ok

14:32:48.0214 0x223c [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP C:\Windows\system32\drivers\HTTP.sys

14:32:48.0246 0x223c HTTP - ok

14:32:48.0261 0x223c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys

14:32:48.0261 0x223c hwpolicy - ok

14:32:48.0308 0x223c [ 16A7CA284629A4D002F7B992C9A49EF9, FEA48B8DAAE18042C87F05D7C07251F4543D0E9F49C7B705E55477E7F75884A3 ] HyperW7Svc C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe

14:32:48.0308 0x223c HyperW7Svc - ok

14:32:48.0324 0x223c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys

14:32:48.0339 0x223c i8042prt - ok

14:32:48.0355 0x223c [ C224331A54571C8C9162F7714400BBBD, C2CA4881ACD46071E67435BE5E3DB133D0743B026FD20D6D6E26B2FE7A03FCAA ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys

14:32:48.0370 0x223c iaStor - ok

14:32:48.0386 0x223c [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys

14:32:48.0402 0x223c iaStorV - ok

14:32:48.0433 0x223c [ 6C7FE2FD06EF34A7972E34C876FC78DF, B545A10DEEF59B8145D3D20361DA7F1C0FD27B6273B126B500594D6456C3FC06 ] IBMPMDRV C:\Windows\system32\DRIVERS\ibmpmdrv.sys

14:32:48.0433 0x223c IBMPMDRV - ok

14:32:48.0464 0x223c [ 5A1E3B4BA187327DF5FF122F96FA753A, AED93AA268F75D46752FCE5189392EE41225DA45F7D67C73B77629C8227E5084 ] IBMPMSVC C:\Windows\system32\ibmpmsvc.exe

14:32:48.0464 0x223c IBMPMSVC - ok

14:32:48.0526 0x223c [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

14:32:48.0542 0x223c idsvc - ok

14:32:48.0558 0x223c IEEtwCollectorService - ok

14:32:48.0885 0x223c [ 371D7F91C0D2314EB984A4A6CBEABC92, DD4B04308596C1E6C75B8772D4421137F3A83285DBCFD4DF54166D2B0B45A317 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys

14:32:49.0213 0x223c igfx - ok

14:32:49.0244 0x223c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\drivers\iirsp.sys

14:32:49.0244 0x223c iirsp - ok

14:32:49.0306 0x223c [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll

14:32:49.0322 0x223c IKEEXT - ok

14:32:49.0462 0x223c [ 5F6A3EA5BD7CA861863A3A06CECC115C, 312B27BB6664A2DFF3B48CF9DA04511AAB281A2521A6140C7DB1613DC6562D59 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys

14:32:49.0525 0x223c IntcAzAudAddService - ok

14:32:49.0545 0x223c [ 6C9FFFECA9FED31347D211C5D1FFBD2D, 36CF8B847FAED0D978B3169ED550CC958025902CAC1D7D304E2684B2483E72B8 ] IntcDAud C:\Windows\system32\DRIVERS\IntcDAud.sys

14:32:49.0561 0x223c IntcDAud - ok

14:32:49.0623 0x223c [ 832CE330DD987227B7DEA8C03F22AEFA, 3DE64D9519D9D865D4C1AA7483D846F0154392B6685BDC451DEC7DA5EA0E2B2E ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe

14:32:49.0639 0x223c Intel® Capability Licensing Service Interface - ok

14:32:49.0655 0x223c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys

14:32:49.0655 0x223c intelide - ok

14:32:49.0686 0x223c [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys

14:32:49.0701 0x223c intelppm - ok

14:32:49.0717 0x223c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll

14:32:49.0733 0x223c IPBusEnum - ok

14:32:49.0748 0x223c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys

14:32:49.0748 0x223c IpFilterDriver - ok

14:32:49.0795 0x223c [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll

14:32:49.0811 0x223c iphlpsvc - ok

14:32:49.0826 0x223c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys

14:32:49.0826 0x223c IPMIDRV - ok

14:32:49.0826 0x223c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys

14:32:49.0842 0x223c IPNAT - ok

14:32:49.0904 0x223c [ 835FC2EA0631B734BB06C12B0665F01D, B8A8B0148C6C3AFC40835B44E3D6508CB9EEE8AC430A7904711C8B51C2116A8D ] iPod Service C:\Program Files\iPod\bin\iPodService.exe

14:32:49.0920 0x223c iPod Service - ok

14:32:49.0967 0x223c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys

14:32:49.0967 0x223c IRENUM - ok

14:32:49.0982 0x223c [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys

14:32:49.0982 0x223c isapnp - ok

14:32:50.0013 0x223c [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys

14:32:50.0029 0x223c iScsiPrt - ok

14:32:50.0060 0x223c [ 846354992EBB373F452EB9182D501B08, 453459133DCA875E93CAAE9852E652F3794F8C31CE53526C47A181FDBABE6849 ] iusb3hcs C:\Windows\system32\DRIVERS\iusb3hcs.sys

14:32:50.0060 0x223c iusb3hcs - ok

14:32:50.0091 0x223c [ 1D88A23853387D34D52CC8F9DDBFC56C, D00083B61E93E7E1D247EAB332787912FCF7605AF7043F071238C50E4A15016B ] iusb3hub C:\Windows\system32\DRIVERS\iusb3hub.sys

14:32:50.0107 0x223c iusb3hub - ok

14:32:50.0138 0x223c [ FC5EFD7C797DF19DFB999F0605A7924E, C56CE3840F3B11D81BED38E5F59ABCA190DFB7127F06263193870312A83379AF ] iusb3xhc C:\Windows\system32\DRIVERS\iusb3xhc.sys

14:32:50.0169 0x223c iusb3xhc - ok

14:32:50.0232 0x223c [ 09CA717536671E0896E07D239EE6740F, 5E1A4A1490D38DBDF21DD655D2139FC2856F5CAED6A72C4C6E65BF6C01C896CE ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

14:32:50.0247 0x223c jhi_service - ok

14:32:50.0279 0x223c [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys

14:32:50.0279 0x223c kbdclass - ok

14:32:50.0310 0x223c [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys

14:32:50.0310 0x223c kbdhid - ok

14:32:50.0325 0x223c [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso C:\Windows\system32\lsass.exe

14:32:50.0325 0x223c KeyIso - ok

14:32:50.0357 0x223c [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys

14:32:50.0357 0x223c KSecDD - ok

14:32:50.0372 0x223c [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys

14:32:50.0388 0x223c KSecPkg - ok

14:32:50.0388 0x223c [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys

14:32:50.0388 0x223c ksthunk - ok

14:32:50.0435 0x223c [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll

14:32:50.0450 0x223c KtmRm - ok

14:32:50.0481 0x223c [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll

14:32:50.0481 0x223c LanmanServer - ok

14:32:50.0497 0x223c [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

14:32:50.0513 0x223c LanmanWorkstation - ok

14:32:50.0544 0x223c [ 312B2106345E639B2739959C82D93195, 87F19A7F53BDBE0F131B80B45A1F55001C8F1471ADFD0C4D116810E444D8617E ] LENOVO.CAMMUTE C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe

14:32:50.0544 0x223c LENOVO.CAMMUTE - ok

14:32:50.0591 0x223c [ BC381F006A302D01D20B0B5768AE3A94, 5DCBC9F6992C62D11001EF0340CA7813BD5AA84B74C990AC6889B81DBC8B9DBA ] LENOVO.MICMUTE C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe

14:32:50.0591 0x223c LENOVO.MICMUTE - ok

14:32:50.0622 0x223c [ 0F8FC5F98D128FFDAE39377623A728AD, 56B08C1D2CCBD91979D1182E78CE8CF500942B62B3FD12E330A6655A38CBE7D2 ] LENOVO.TPKNRSVC C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe

14:32:50.0622 0x223c LENOVO.TPKNRSVC - ok

14:32:50.0653 0x223c [ C2C305B5301E16CCB46C716E03A48FC3, C0B92C4D222360A5611E84B464A76F3ED2DA33994E2BF3B4F358E71E2802C881 ] LENOVO.TVTVCAM C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe

14:32:50.0653 0x223c LENOVO.TVTVCAM - ok

14:32:50.0715 0x223c [ D253E6009F05776F505F96866CCF460F, 8A39E77B4FC780BB9C6C8A892603248D87ED70255BF9BED0218BE2420B5E8C53 ] Lenovo.VIRTSCRLSVC C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe

14:32:50.0715 0x223c Lenovo.VIRTSCRLSVC - ok

14:32:50.0747 0x223c [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys

14:32:50.0747 0x223c lltdio - ok

14:32:50.0778 0x223c [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll

14:32:50.0793 0x223c lltdsvc - ok

14:32:50.0809 0x223c [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll

14:32:50.0825 0x223c lmhosts - ok

14:32:50.0856 0x223c [ A60D56228FF3EE7EC1A56A908924680E, A50D75BB87CF4858681720380E9E1EF7FDFE1411E10D856F3E7BBAF3FB1EDDFC ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

14:32:50.0856 0x223c LMS - ok

14:32:50.0934 0x223c [ 073BD65B67B001A722469BF7C7D4EEC4, 72102FDF2CD3182C20298418A0115ADB3E14093BF96B6297990F96CEEBEF8CAA ] LSCWinService C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe

14:32:50.0934 0x223c LSCWinService - ok

14:32:50.0981 0x223c [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys

14:32:50.0981 0x223c LSI_FC - ok

14:32:50.0996 0x223c [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys

14:32:51.0012 0x223c LSI_SAS - ok

14:32:51.0027 0x223c [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys

14:32:51.0027 0x223c LSI_SAS2 - ok

14:32:51.0043 0x223c [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys

14:32:51.0043 0x223c LSI_SCSI - ok

14:32:51.0059 0x223c [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys

14:32:51.0059 0x223c luafv - ok

14:32:51.0090 0x223c [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll

14:32:51.0090 0x223c Mcx2Svc - ok

14:32:51.0105 0x223c [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\drivers\megasas.sys

14:32:51.0105 0x223c megasas - ok

14:32:51.0137 0x223c [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys

14:32:51.0152 0x223c MegaSR - ok

14:32:51.0183 0x223c [ 6B01B7414A105B9E51652089A03027CF, 9B113DC22F7D0D0B376E577C6D7083F9EDC09BBFE47726393E16D4FDAAAE21FE ] MEIx64 C:\Windows\system32\DRIVERS\HECIx64.sys

14:32:51.0183 0x223c MEIx64 - ok

14:32:51.0215 0x223c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll

14:32:51.0215 0x223c MMCSS - ok

14:32:51.0230 0x223c [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys

14:32:51.0230 0x223c Modem - ok

14:32:51.0261 0x223c [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys

14:32:51.0261 0x223c monitor - ok

14:32:51.0261 0x223c [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys

14:32:51.0277 0x223c mouclass - ok

14:32:51.0277 0x223c [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\drivers\mouhid.sys

14:32:51.0293 0x223c mouhid - ok

14:32:51.0293 0x223c [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys

14:32:51.0293 0x223c mountmgr - ok

14:32:51.0339 0x223c [ 707E98CC15C2224C078C9E71FF1889BC, 958416FE081436FDBF7F2BEBBB2795C54CC4F3F349D6DF463296A7BBA3404F13 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

14:32:51.0339 0x223c MozillaMaintenance - ok

14:32:51.0386 0x223c [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys

14:32:51.0386 0x223c MpFilter - ok

14:32:51.0402 0x223c [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys

14:32:51.0402 0x223c mpio - ok

14:32:51.0433 0x223c [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys

14:32:51.0433 0x223c mpsdrv - ok

14:32:51.0464 0x223c [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll

14:32:51.0495 0x223c MpsSvc - ok

14:32:51.0527 0x223c [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys

14:32:51.0527 0x223c MRxDAV - ok

14:32:51.0542 0x223c [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys

14:32:51.0542 0x223c mrxsmb - ok

14:32:51.0560 0x223c [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys

14:32:51.0563 0x223c mrxsmb10 - ok

14:32:51.0565 0x223c [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys

14:32:51.0565 0x223c mrxsmb20 - ok

14:32:51.0596 0x223c [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys

14:32:51.0596 0x223c msahci - ok

14:32:51.0612 0x223c [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys

14:32:51.0628 0x223c msdsm - ok

14:32:51.0643 0x223c [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe

14:32:51.0659 0x223c MSDTC - ok

14:32:51.0674 0x223c [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys

14:32:51.0674 0x223c Msfs - ok

14:32:51.0706 0x223c [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys

14:32:51.0706 0x223c mshidkmdf - ok

14:32:51.0706 0x223c [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys

14:32:51.0706 0x223c msisadrv - ok

14:32:51.0737 0x223c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll

14:32:51.0752 0x223c MSiSCSI - ok

14:32:51.0752 0x223c msiserver - ok

14:32:51.0768 0x223c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys

14:32:51.0768 0x223c MSKSSRV - ok

14:32:51.0830 0x223c [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] MsMpSvc c:\Program Files\Microsoft Security Client\MsMpEng.exe

14:32:51.0830 0x223c MsMpSvc - ok

14:32:51.0862 0x223c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys

14:32:51.0862 0x223c MSPCLOCK - ok

14:32:51.0862 0x223c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys

14:32:51.0862 0x223c MSPQM - ok

14:32:51.0893 0x223c [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys

14:32:51.0908 0x223c MsRPC - ok

14:32:51.0924 0x223c [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys

14:32:51.0924 0x223c mssmbios - ok

14:32:51.0940 0x223c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys

14:32:51.0955 0x223c MSTEE - ok

14:32:51.0955 0x223c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys

14:32:51.0955 0x223c MTConfig - ok

14:32:51.0986 0x223c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys

14:32:51.0986 0x223c Mup - ok

14:32:52.0033 0x223c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll

14:32:52.0049 0x223c napagent - ok

14:32:52.0080 0x223c [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys

14:32:52.0080 0x223c NativeWifiP - ok

14:32:52.0127 0x223c [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS C:\Windows\system32\drivers\ndis.sys

14:32:52.0142 0x223c NDIS - ok

14:32:52.0158 0x223c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys

14:32:52.0158 0x223c NdisCap - ok

14:32:52.0174 0x223c [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys

14:32:52.0174 0x223c NdisTapi - ok

14:32:52.0189 0x223c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys

14:32:52.0189 0x223c Ndisuio - ok

14:32:52.0205 0x223c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys

14:32:52.0205 0x223c NdisWan - ok

14:32:52.0220 0x223c [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys

14:32:52.0220 0x223c NDProxy - ok

14:32:52.0252 0x223c [ EE00C544C025958AF50C7B199F3C8595, D774DB020D9C46D1AA0B2DB9FA2C36C4A9C38D904CC6929695321D32ACA0D4D1 ] Netaapl C:\Windows\system32\DRIVERS\netaapl64.sys

14:32:52.0267 0x223c Netaapl - ok

14:32:52.0267 0x223c [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys

14:32:52.0267 0x223c NetBIOS - ok

14:32:52.0298 0x223c [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys

14:32:52.0298 0x223c NetBT - ok

14:32:52.0376 0x223c [ E929ADCB7898767A401A36FDF6A49060, EB67B6EA2E1D1E6B3DC9D089AA1270911111F6DC867581CDEFE2AC45A250BDDD ] NETGEARGenieDaemon C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe

14:32:52.0439 0x223c NETGEARGenieDaemon - ok

14:32:52.0470 0x223c [ 5D3E93151CCA238420DB9DB65715A1F5, 3A9AFC04EADA35E0B3E92B350D7704589C2C85C2AF010FD16C4FD1CCB6447A53 ] NETGEARUCOMP C:\Windows\system32\DRIVERS\NETGEARUCOMP.sys

14:32:52.0470 0x223c NETGEARUCOMP - ok

14:32:52.0486 0x223c [ 5167CA339A8A36FEC32B03EC8FDBBF64, A64C6EE0365F3AE90AC276737D76BE1AEC6415B7397C6E6057F508470CD6C8F5 ] NETGEARUHOST C:\Windows\system32\DRIVERS\NETGEARUHOST.sys

14:32:52.0486 0x223c NETGEARUHOST - ok

14:32:52.0501 0x223c [ A6068421D3A33255F9D77DFDE29C8416, 5A8253907C671CDE7DE5B0753389C9D5A0E5920998569C753F3EFDE9478735AA ] NETGEARUHUB C:\Windows\system32\DRIVERS\NETGEARUHUB.sys

14:32:52.0501 0x223c NETGEARUHUB - ok

14:32:52.0501 0x223c [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon C:\Windows\system32\lsass.exe

14:32:52.0501 0x223c Netlogon - ok

14:32:52.0532 0x223c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll

14:32:52.0532 0x223c Netman - ok

14:32:52.0579 0x223c [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:32:52.0579 0x223c NetMsmqActivator - ok

14:32:52.0595 0x223c [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:32:52.0595 0x223c NetPipeActivator - ok

14:32:52.0595 0x223c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll

14:32:52.0610 0x223c netprofm - ok

14:32:52.0610 0x223c [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:32:52.0626 0x223c NetTcpActivator - ok

14:32:52.0626 0x223c [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:32:52.0626 0x223c NetTcpPortSharing - ok

14:32:52.0657 0x223c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys

14:32:52.0657 0x223c nfrd960 - ok

14:32:52.0688 0x223c [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys

14:32:52.0704 0x223c NisDrv - ok

14:32:52.0766 0x223c [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] NisSrv c:\Program Files\Microsoft Security Client\NisSrv.exe

14:32:52.0766 0x223c NisSrv - ok

14:32:52.0844 0x223c [ 0F119BBB86D2F273DCB259FE03478D8F, CD911E4C91D45879A78B1D1BE64BDDE2C6DFE033D08CD137024FB932960955A7 ] NitroDriverReadSpool8 C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe

14:32:52.0844 0x223c NitroDriverReadSpool8 - ok

14:32:52.0891 0x223c [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc C:\Windows\System32\nlasvc.dll

14:32:52.0907 0x223c NlaSvc - ok

14:32:52.0969 0x223c [ EA404C5C549F487C84E0E723F834A4AA, B36CB786F1D1F6B5DE03E1B6A288A422A5E8497FE0A6A433545FFB23CFCA603A ] nlsX86cc C:\Windows\SysWOW64\NLSSRV32.EXE

14:32:52.0985 0x223c nlsX86cc - ok

14:32:53.0032 0x223c [ 351533ACC2A069B94E80BBFC177E8FDF, 54B2749E0496ECC94CE65657627762B485CBC825767BAEDDAD0D2598820FFB9E ] NPF C:\Windows\system32\drivers\npf.sys

14:32:53.0032 0x223c NPF - ok

14:32:53.0047 0x223c [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys

14:32:53.0047 0x223c Npfs - ok

14:32:53.0078 0x223c [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll

14:32:53.0078 0x223c nsi - ok

14:32:53.0094 0x223c [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys

14:32:53.0094 0x223c nsiproxy - ok

14:32:53.0156 0x223c [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs C:\Windows\system32\drivers\Ntfs.sys

14:32:53.0203 0x223c Ntfs - ok

14:32:53.0203 0x223c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys

14:32:53.0203 0x223c Null - ok

14:32:53.0219 0x223c [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys

14:32:53.0219 0x223c nvraid - ok

14:32:53.0234 0x223c [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys

14:32:53.0234 0x223c nvstor - ok

14:32:53.0266 0x223c [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys

14:32:53.0266 0x223c nv_agp - ok

14:32:53.0281 0x223c [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys

14:32:53.0281 0x223c ohci1394 - ok

14:32:53.0344 0x223c [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

14:32:53.0344 0x223c ose - ok

14:32:53.0565 0x223c [ FE9C0029E1AF26350D9985D00520E5C8, 967079CCF7B2CBD4B48C9F076675C26AF93A1CEC26C96811F279414E34004EE6 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

14:32:53.0645 0x223c osppsvc - ok

14:32:53.0676 0x223c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll

14:32:53.0692 0x223c p2pimsvc - ok

14:32:53.0692 0x223c [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll

14:32:53.0707 0x223c p2psvc - ok

14:32:53.0739 0x223c [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\drivers\parport.sys

14:32:53.0739 0x223c Parport - ok

14:32:53.0754 0x223c [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys

14:32:53.0754 0x223c partmgr - ok

14:32:53.0770 0x223c [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc C:\Windows\System32\pcasvc.dll

14:32:53.0770 0x223c PcaSvc - ok

14:32:53.0785 0x223c [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys

14:32:53.0785 0x223c pci - ok

14:32:53.0817 0x223c [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys

14:32:53.0817 0x223c pciide - ok

14:32:53.0832 0x223c [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys

14:32:53.0848 0x223c pcmcia - ok

14:32:53.0863 0x223c [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys

14:32:53.0863 0x223c pcw - ok

14:32:53.0879 0x223c [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH C:\Windows\system32\drivers\peauth.sys

14:32:53.0895 0x223c PEAUTH - ok

14:32:53.0941 0x223c [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll

14:32:53.0973 0x223c PeerDistSvc - ok

14:32:53.0988 0x223c [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe

14:32:53.0988 0x223c PerfHost - ok

14:32:54.0035 0x223c [ B4C1BF666DBD6899EC4A9A499DAA040B, D6F9E42F25DCBE19A3766165D96CC2D30E834B19B841688FD6A2E26FD9166315 ] PHCORE C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS

14:32:54.0035 0x223c PHCORE - ok

14:32:54.0082 0x223c [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll

14:32:54.0097 0x223c pla - ok

14:32:54.0113 0x223c [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll

14:32:54.0129 0x223c PlugPlay - ok

14:32:54.0129 0x223c [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll

14:32:54.0129 0x223c PNRPAutoReg - ok

14:32:54.0160 0x223c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll

14:32:54.0160 0x223c PNRPsvc - ok

14:32:54.0191 0x223c [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll

14:32:54.0191 0x223c PolicyAgent - ok

14:32:54.0222 0x223c [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power C:\Windows\system32\umpo.dll

14:32:54.0222 0x223c Power - ok

14:32:54.0331 0x223c [ DEED60F99C5B8E386D507860F600D509, 1662F4F7C2CB305C6794B0FF546550393DC7C7FCC709C2D342A7092B446830AA ] Power Manager DBC Service C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE

14:32:54.0347 0x223c Power Manager DBC Service - ok

14:32:54.0378 0x223c [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys

14:32:54.0378 0x223c PptpMiniport - ok

14:32:54.0409 0x223c [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\drivers\processr.sys

14:32:54.0409 0x223c Processor - ok

14:32:54.0456 0x223c [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc C:\Windows\system32\profsvc.dll

14:32:54.0456 0x223c ProfSvc - ok

14:32:54.0487 0x223c [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe

14:32:54.0487 0x223c ProtectedStorage - ok

14:32:54.0503 0x223c [ 05A4779E4994B21473EDBE85AABE8030, AFD597461B036FDE42013648A4D542B02AE1D7E128BF0B193BA4B478432F0C72 ] psadd C:\Windows\system32\DRIVERS\psadd.sys

14:32:54.0503 0x223c psadd - ok

14:32:54.0519 0x223c [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys

14:32:54.0519 0x223c Psched - ok

14:32:54.0550 0x223c [ F036CFB275D0C55F4E45FBBF5F98B3C8, D8D1CA9F65B34A93AB9F7FD9BB6C453B2BF4E8320E620F56055B743DF1D56DE8 ] PSI_SVC_2 C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe

14:32:54.0550 0x223c PSI_SVC_2 - ok

14:32:54.0659 0x223c PublishIPAddr - ok

14:32:54.0753 0x223c [ 68DCE950DCD2ABBB82362D383EC5836E, 5A3E0ABE32BA53A0D719757222455BE9308844C4968CA27B178C86BCF6FDC4DC ] PwmEWSvc C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE

14:32:54.0768 0x223c PwmEWSvc - ok

14:32:54.0768 0x223c qknfd - ok

14:32:54.0815 0x223c [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\drivers\ql2300.sys

14:32:54.0846 0x223c ql2300 - ok

14:32:54.0862 0x223c [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\drivers\ql40xx.sys

14:32:54.0862 0x223c ql40xx - ok

14:32:54.0877 0x223c [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll

14:32:54.0893 0x223c QWAVE - ok

14:32:54.0909 0x223c [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys

14:32:54.0909 0x223c QWAVEdrv - ok

14:32:54.0909 0x223c [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys

14:32:54.0909 0x223c RasAcd - ok

14:32:54.0924 0x223c [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys

14:32:54.0924 0x223c RasAgileVpn - ok

14:32:54.0940 0x223c [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll

14:32:54.0940 0x223c RasAuto - ok

14:32:54.0940 0x223c [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys

14:32:54.0940 0x223c Rasl2tp - ok

14:32:54.0955 0x223c [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll

14:32:54.0955 0x223c RasMan - ok

14:32:54.0971 0x223c [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys

14:32:54.0987 0x223c RasPppoe - ok

14:32:54.0987 0x223c [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys

14:32:54.0987 0x223c RasSstp - ok

14:32:55.0018 0x223c [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys

14:32:55.0018 0x223c rdbss - ok

14:32:55.0033 0x223c [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys

14:32:55.0033 0x223c rdpbus - ok

14:32:55.0065 0x223c [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys

14:32:55.0065 0x223c RDPCDD - ok

14:32:55.0096 0x223c [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR C:\Windows\system32\drivers\rdpdr.sys

14:32:55.0096 0x223c RDPDR - ok

14:32:55.0111 0x223c [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys

14:32:55.0111 0x223c RDPENCDD - ok

14:32:55.0127 0x223c [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys

14:32:55.0127 0x223c RDPREFMP - ok

14:32:55.0143 0x223c [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys

14:32:55.0158 0x223c RDPWD - ok

14:32:55.0174 0x223c [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys

14:32:55.0174 0x223c rdyboost - ok

14:32:55.0252 0x223c [ 96EFEC24346A8EB1157E80523079ADDC, 7F8FC284029856C754E400B6C954369FFE27763C81D8F4AF4E58BFDD44CBC24A ] RealNetworks Downloader Resolver Service C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

14:32:55.0252 0x223c RealNetworks Downloader Resolver Service - ok

14:32:55.0283 0x223c [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll

14:32:55.0299 0x223c RemoteAccess - ok

14:32:55.0314 0x223c [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll

14:32:55.0330 0x223c RemoteRegistry - ok

14:32:55.0345 0x223c [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys

14:32:55.0361 0x223c RFCOMM - ok

14:32:55.0377 0x223c [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll

14:32:55.0377 0x223c RpcEptMapper - ok

14:32:55.0392 0x223c [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe

14:32:55.0392 0x223c RpcLocator - ok

14:32:55.0408 0x223c [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll

14:32:55.0423 0x223c RpcSs - ok

14:32:55.0486 0x223c [ 1F4C4F27F5C06B637255661F33B74E1A, 8AAB7474100B828B634D99634C3A0AD1F67F5F9F8D65D8DBA7E7A10FE597BCCC ] RSP2STOR C:\Windows\system32\DRIVERS\RtsP2Stor.sys

14:32:55.0501 0x223c RSP2STOR - ok

14:32:55.0517 0x223c [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys

14:32:55.0533 0x223c rspndr - ok

14:32:55.0569 0x223c [ 6CF9DB101A75360E98659F823852E540, A7D48DF41A831EEF9978B51786EF80DB9CC40602BE66D46CA11BE1548BC2D10C ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys

14:32:55.0600 0x223c RTL8167 - ok

14:32:55.0631 0x223c [ 6BC5C9EDC130A9A07B9B780045668AC4, 18BE0C7E1A78CE9A562C583875352B09478CB2836621D7B4892726A205B17A3D ] RTL8192Ce C:\Windows\system32\DRIVERS\rtl8192Ce.sys

14:32:55.0631 0x223c RTL8192Ce - ok

14:32:55.0662 0x223c [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap C:\Windows\system32\drivers\vms3cap.sys

14:32:55.0662 0x223c s3cap - ok

14:32:55.0662 0x223c [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs C:\Windows\system32\lsass.exe

14:32:55.0662 0x223c SamSs - ok

14:32:55.0678 0x223c [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys

14:32:55.0678 0x223c sbp2port - ok

14:32:55.0709 0x223c [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll

14:32:55.0725 0x223c SCardSvr - ok

14:32:55.0725 0x223c [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys

14:32:55.0740 0x223c scfilter - ok

14:32:55.0772 0x223c [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule C:\Windows\system32\schedsvc.dll

14:32:55.0803 0x223c Schedule - ok

14:32:55.0818 0x223c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll

14:32:55.0818 0x223c SCPolicySvc - ok

14:32:55.0818 0x223c [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll

14:32:55.0834 0x223c SDRSVC - ok

14:32:55.0850 0x223c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys

14:32:55.0850 0x223c secdrv - ok

14:32:55.0865 0x223c [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll

14:32:55.0865 0x223c seclogon - ok

14:32:55.0881 0x223c [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll

14:32:55.0881 0x223c SENS - ok

14:32:55.0912 0x223c [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll

14:32:55.0912 0x223c SensrSvc - ok

14:32:55.0928 0x223c [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\drivers\serenum.sys

14:32:55.0928 0x223c Serenum - ok

14:32:55.0959 0x223c [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\drivers\serial.sys

14:32:55.0959 0x223c Serial - ok

14:32:55.0974 0x223c [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\drivers\sermouse.sys

14:32:55.0974 0x223c sermouse - ok

14:32:55.0990 0x223c [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll

14:32:56.0006 0x223c SessionEnv - ok

14:32:56.0006 0x223c [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys

14:32:56.0006 0x223c sffdisk - ok

14:32:56.0021 0x223c [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys

14:32:56.0021 0x223c sffp_mmc - ok

14:32:56.0021 0x223c [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys

14:32:56.0021 0x223c sffp_sd - ok

14:32:56.0037 0x223c [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys

14:32:56.0037 0x223c sfloppy - ok

14:32:56.0084 0x223c [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll

14:32:56.0099 0x223c SharedAccess - ok

14:32:56.0115 0x223c [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

14:32:56.0130 0x223c ShellHWDetection - ok

14:32:56.0162 0x223c [ 7AC6FBFC13ABA3F15B05986412D10E10, B93E0E18C9883BAE7238389B8E2E3D66CB925BD62B293625FF8B6C3AF4501EC8 ] Shockprf C:\Windows\system32\DRIVERS\Apsx64.sys

14:32:56.0177 0x223c Shockprf - ok

14:32:56.0193 0x223c [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys

14:32:56.0193 0x223c SiSRaid2 - ok

14:32:56.0208 0x223c [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys

14:32:56.0208 0x223c SiSRaid4 - ok

14:32:56.0224 0x223c [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys

14:32:56.0224 0x223c Smb - ok

14:32:56.0255 0x223c [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe

14:32:56.0255 0x223c SNMPTRAP - ok

14:32:56.0271 0x223c [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys

14:32:56.0271 0x223c spldr - ok

14:32:56.0286 0x223c [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe

14:32:56.0302 0x223c Spooler - ok

14:32:56.0380 0x223c [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe

14:32:56.0458 0x223c sppsvc - ok

14:32:56.0474 0x223c [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll

14:32:56.0474 0x223c sppuinotify - ok

14:32:56.0505 0x223c [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys

14:32:56.0505 0x223c srv - ok

14:32:56.0520 0x223c [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys

14:32:56.0520 0x223c srv2 - ok

14:32:56.0520 0x223c [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys

14:32:56.0536 0x223c srvnet - ok

14:32:56.0552 0x223c [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll

14:32:56.0552 0x223c SSDPSRV - ok

14:32:56.0567 0x223c [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll

14:32:56.0567 0x223c SstpSvc - ok

14:32:56.0583 0x223c [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\drivers\stexstor.sys

14:32:56.0583 0x223c stexstor - ok

14:32:56.0614 0x223c [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll

14:32:56.0614 0x223c stisvc - ok

14:32:56.0645 0x223c [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt C:\Windows\system32\drivers\vmstorfl.sys

14:32:56.0645 0x223c storflt - ok

14:32:56.0661 0x223c [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc C:\Windows\system32\storsvc.dll

14:32:56.0676 0x223c StorSvc - ok

14:32:56.0692 0x223c [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc C:\Windows\system32\drivers\storvsc.sys

14:32:56.0692 0x223c storvsc - ok

14:32:56.0739 0x223c [ BC2CF20E9C24423FF8826C601104A4CC, E71D5070B7BA59CDC61D555FB9D8ADD178521FB186174CB522852522929D62D4 ] SUService C:\Program Files (x86)\Lenovo\System Update\SUService.exe

14:32:56.0786 0x223c SUService - ok

14:32:56.0817 0x223c [ 4FBFA05F1DE324A130ADD50C69B0DE8F, E1D30CD4CA35B69371F51F4512DC915CFC3F13214F769477C2972CE55F13F994 ] SWDUMon C:\Windows\system32\DRIVERS\SWDUMon.sys

14:32:56.0832 0x223c SWDUMon - ok

14:32:56.0864 0x223c [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\DRIVERS\swenum.sys

14:32:56.0864 0x223c swenum - ok

14:32:56.0895 0x223c [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll

14:32:56.0926 0x223c swprv - ok

14:32:56.0957 0x223c [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain C:\Windows\system32\sysmain.dll

14:32:56.0988 0x223c SysMain - ok

14:32:57.0004 0x223c [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll

14:32:57.0004 0x223c TabletInputService - ok

14:32:57.0020 0x223c [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll

14:32:57.0035 0x223c TapiSrv - ok

14:32:57.0051 0x223c [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll

14:32:57.0051 0x223c TBS - ok

14:32:57.0144 0x223c [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys

14:32:57.0176 0x223c Tcpip - ok

14:32:57.0207 0x223c [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys

14:32:57.0238 0x223c TCPIP6 - ok

14:32:57.0254 0x223c [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys

14:32:57.0254 0x223c tcpipreg - ok

14:32:57.0285 0x223c [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys

14:32:57.0285 0x223c TDPIPE - ok

14:32:57.0300 0x223c [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys

14:32:57.0300 0x223c TDTCP - ok

14:32:57.0332 0x223c [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx C:\Windows\system32\DRIVERS\tdx.sys

14:32:57.0332 0x223c tdx - ok

14:32:57.0332 0x223c [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\DRIVERS\termdd.sys

14:32:57.0347 0x223c TermDD - ok

14:32:57.0410 0x223c [ 4FC4C50985E5B840F4D72E57286887B8, 0BCBB4A938803AE3A3532B6D8FFC85594AA9AEF5D8F9792684841BEA8780AE9E ] TermService C:\Windows\System32\termsrv.dll

14:32:57.0425 0x223c TermService - ok

14:32:57.0441 0x223c [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll

14:32:57.0441 0x223c Themes - ok

14:32:57.0456 0x223c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll

14:32:57.0456 0x223c THREADORDER - ok

14:32:57.0472 0x223c [ BC148E3415BF8A9DE83364966F75044F, 0F4604753E8202A7CA0F0C2E08983911327E0E44E453CE91B9B9A80A5554EC16 ] TPDIGIMN C:\Windows\system32\DRIVERS\ApsHM64.sys

14:32:57.0472 0x223c TPDIGIMN - ok

14:32:57.0503 0x223c [ BBD91008BEC4A2BA5D383BC9A15D6F9E, 6A61E05F2189CB586440E0D5CB0126282459EAE9F29C9DD2D6E4583D230BF29E ] TPHDEXLGSVC C:\Windows\system32\TPHDEXLG64.exe

14:32:57.0503 0x223c TPHDEXLGSVC - ok

14:32:57.0555 0x223c [ 3B4250CB21F95FFA64162389106F39BA, 2461E6D335D699F837908254FDA43C789D589FE90C9592B5B43D964CFDB43F11 ] TPHKLOAD C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe

14:32:57.0571 0x223c TPHKLOAD - ok

14:32:57.0571 0x223c [ 667EF334C512416712F14118E3382919, D59D3ED81E823A84885AA0787B020DAFBCA20303F1F5A37F37E5392C5C272F9D ] TPHKSVC C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe

14:32:57.0586 0x223c TPHKSVC - ok

14:32:57.0602 0x223c [ DBCC20C02E8A3E43B03C304A4E40A84F, BF5F3ACCB0342304A6870E94D2576644B08DBF307C853C7DBA4B82B0C7309DA4 ] TPM C:\Windows\system32\drivers\tpm.sys

14:32:57.0602 0x223c TPM - ok

14:32:57.0617 0x223c [ 1DF6E6C026AD1D428687FE3B427A87BC, DA8F17A1030A0DEC81F5356B4DC99EC1F93FAD1292779191FDD53FEE530F9520 ] TPPWRIF C:\Windows\system32\drivers\Tppwr64v.sys

14:32:57.0617 0x223c TPPWRIF - ok

14:32:57.0649 0x223c [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll

14:32:57.0649 0x223c TrkWks - ok

14:32:57.0664 0x223c [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

14:32:57.0680 0x223c TrustedInstaller - ok

14:32:57.0695 0x223c [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys

14:32:57.0695 0x223c tssecsrv - ok

14:32:57.0711 0x223c [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys

14:32:57.0727 0x223c TsUsbFlt - ok

14:32:57.0727 0x223c [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys

14:32:57.0742 0x223c TsUsbGD - ok

14:32:57.0758 0x223c [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys

14:32:57.0758 0x223c tunnel - ok

14:32:57.0789 0x223c [ D4915DB03B19F9FD50EC084CC0ED15FC, 1CA899C0D48E69825DB27A4A52D8A3FEBA00A47C2D0E2FC0F5F358D15B7F3496 ] TVTI2C C:\Windows\system32\DRIVERS\Tvti2c.sys

14:32:57.0789 0x223c TVTI2C - ok

14:32:57.0805 0x223c [ 760B34088C2AD8D634CC3784EF3A2CA2, 20D23EDBDE7EBBA495C032097E7C5B1C6F94037971D9B2D6B98ABE11E7FF3643 ] tvtvcamd C:\Windows\system32\DRIVERS\tvtvcamd.sys

14:32:57.0805 0x223c tvtvcamd - ok

14:32:57.0820 0x223c [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\drivers\uagp35.sys

14:32:57.0836 0x223c uagp35 - ok

14:32:57.0851 0x223c [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys

14:32:57.0851 0x223c udfs - ok

14:32:57.0883 0x223c [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe

14:32:57.0883 0x223c UI0Detect - ok

14:32:57.0945 0x223c [ BE788A747457E6916586C410EC0111E7, 525F9065270AF40FED854C5B3C7E690783F5169C2F9286EE225F6C817ED1E237 ] UleadBurningHelper C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

14:32:57.0945 0x223c UleadBurningHelper - ok

14:32:57.0976 0x223c [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys

14:32:57.0976 0x223c uliagpkx - ok

14:32:57.0992 0x223c [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys

14:32:57.0992 0x223c umbus - ok

14:32:58.0007 0x223c [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\drivers\umpass.sys

14:32:58.0007 0x223c UmPass - ok

14:32:58.0039 0x223c [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService C:\Windows\System32\umrdp.dll

14:32:58.0039 0x223c UmRdpService - ok

14:32:58.0101 0x223c [ A0153CC9D28568A10BDAEE5EC612CFC8, C980FBB978545A1DDCA9FAB88CD9468FE1EF39D93272F0BEE13B7625B9787547 ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

14:32:58.0117 0x223c UNS - ok

14:32:58.0132 0x223c [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll

14:32:58.0148 0x223c upnphost - ok

14:32:58.0179 0x223c [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64 C:\Windows\system32\Drivers\usbaapl64.sys

14:32:58.0179 0x223c USBAAPL64 - ok

14:32:58.0210 0x223c [ 91D3C92A44FC682DD791147604E79152, AA0B6799BF9C26C2C1793C91295288A4989AA43EC5E070B650DA7F0A142817CE ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys

14:32:58.0210 0x223c usbccgp - ok

14:32:58.0257 0x223c [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys

14:32:58.0257 0x223c usbcir - ok

14:32:58.0304 0x223c [ F7FFDF2A1D19A76A87759126B244C816, C91F09D77E22D976952A46F7B93F611B719EDAF694D538242FA8FAF1BA9BB2F0 ] usbehci C:\Windows\system32\drivers\usbehci.sys

14:32:58.0304 0x223c usbehci - ok

14:32:58.0335 0x223c [ 245FE7FC634D6A993E682E0A9EBA4ABB, F7A536D215EE3A63358EC8B5946D7BB3B56357BF91347B07013E00DAC98775B6 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys

14:32:58.0351 0x223c usbhub - ok

14:32:58.0382 0x223c [ C1A8966E0D09BFB501045105B30D86F2, 5BB95FBA441B898E258A3BFE174FC1042A04C19E25C59DE1FD90594290B11DA9 ] usbohci C:\Windows\system32\drivers\usbohci.sys

14:32:58.0382 0x223c usbohci - ok

14:32:58.0413 0x223c [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys

14:32:58.0413 0x223c usbprint - ok

14:32:58.0429 0x223c [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys

14:32:58.0429 0x223c usbscan - ok

14:32:58.0460 0x223c [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS

14:32:58.0460 0x223c USBSTOR - ok

14:32:58.0491 0x223c [ 2E682DCE4319A90E02A327F8A427544A, 3528C5A4669BAD53041085C3E72C64388D308E42AD9D1FAC85B6F2FFD81610FB ] usbuhci C:\Windows\system32\drivers\usbuhci.sys

14:32:58.0491 0x223c usbuhci - ok

14:32:58.0522 0x223c [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys

14:32:58.0538 0x223c usbvideo - ok

14:32:58.0553 0x223c [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll

14:32:58.0553 0x223c UxSms - ok

14:32:58.0569 0x223c [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc C:\Windows\system32\lsass.exe

14:32:58.0569 0x223c VaultSvc - ok

14:32:58.0585 0x223c [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys

14:32:58.0585 0x223c vdrvroot - ok

14:32:58.0631 0x223c [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe

14:32:58.0647 0x223c vds - ok

14:32:58.0663 0x223c [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys

14:32:58.0663 0x223c vga - ok

14:32:58.0678 0x223c [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys

14:32:58.0678 0x223c VgaSave - ok

14:32:58.0694 0x223c [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys

14:32:58.0694 0x223c vhdmp - ok

14:32:58.0709 0x223c [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys

14:32:58.0709 0x223c viaide - ok

14:32:58.0772 0x223c [ 49C122513203B98B0B2C10211F23450B, 98C281A5F9A68C0E9F766EE136B72605C8724BA521B6A28E9B7232FFDB1108B9 ] VIPAppService C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe

14:32:58.0772 0x223c VIPAppService - ok

14:32:58.0803 0x223c [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus C:\Windows\system32\drivers\vmbus.sys

14:32:58.0819 0x223c vmbus - ok

14:32:58.0834 0x223c [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys

14:32:58.0834 0x223c VMBusHID - ok

14:32:58.0850 0x223c [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys

14:32:58.0850 0x223c volmgr - ok

14:32:58.0881 0x223c [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys

14:32:58.0881 0x223c volmgrx - ok

14:32:58.0897 0x223c [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys

14:32:58.0897 0x223c volsnap - ok

14:32:58.0959 0x223c [ B4A73CA4EF9A02B9738CEA9AD5FE5917, B6A8086189FE2F1C3FE5B3F484FBA3DB2E5E1836F3154D30090F136C27D16166 ] vpcbus C:\Windows\system32\DRIVERS\vpchbus.sys

14:32:58.0959 0x223c vpcbus - ok

14:32:58.0990 0x223c [ E675FB2B48C54F09895482E2253B289C, 68BBFBF2356C849722E429CA753CC309A3CCE8CF00EBDBBD2695ECD292324DF2 ] vpcnfltr C:\Windows\system32\DRIVERS\vpcnfltr.sys

14:32:58.0990 0x223c vpcnfltr - ok

14:32:59.0006 0x223c [ 5FB42082B0D19A0268705F1DD343DF20, 62F8EEE6A507CE6A8BD638020118D71B78332F79BA82654AB702AE46B04767D9 ] vpcusb C:\Windows\system32\DRIVERS\vpcusb.sys

14:32:59.0006 0x223c vpcusb - ok

14:32:59.0021 0x223c [ 207B6539799CC1C112661A9B620DD233, 6B915CC7F77C867516D94865D7BF2E5C815402EF0A4488C3EB2FEF7CFA6C98F6 ] vpcvmm C:\Windows\system32\drivers\vpcvmm.sys

14:32:59.0021 0x223c vpcvmm - ok

14:32:59.0053 0x223c [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\drivers\vsmraid.sys

14:32:59.0053 0x223c vsmraid - ok

14:32:59.0115 0x223c [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe

14:32:59.0146 0x223c VSS - ok

14:32:59.0162 0x223c [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys

14:32:59.0162 0x223c vwifibus - ok

14:32:59.0177 0x223c [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys

14:32:59.0177 0x223c vwififlt - ok

14:32:59.0209 0x223c [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys

14:32:59.0209 0x223c vwifimp - ok

14:32:59.0209 0x223c [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll

14:32:59.0224 0x223c W32Time - ok

14:32:59.0224 0x223c [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\drivers\wacompen.sys

14:32:59.0224 0x223c WacomPen - ok

14:32:59.0255 0x223c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys

14:32:59.0255 0x223c WANARP - ok

14:32:59.0271 0x223c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys

14:32:59.0271 0x223c Wanarpv6 - ok

14:32:59.0333 0x223c [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe

14:32:59.0349 0x223c WatAdminSvc - ok

14:32:59.0396 0x223c [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe

14:32:59.0427 0x223c wbengine - ok

14:32:59.0443 0x223c [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll

14:32:59.0458 0x223c WbioSrvc - ok

14:32:59.0458 0x223c [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll

14:32:59.0474 0x223c wcncsvc - ok

14:32:59.0474 0x223c [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

14:32:59.0489 0x223c WcsPlugInService - ok

14:32:59.0489 0x223c [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\drivers\wd.sys

14:32:59.0489 0x223c Wd - ok

14:32:59.0536 0x223c [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys

14:32:59.0554 0x223c Wdf01000 - ok

14:32:59.0572 0x223c [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll

14:32:59.0588 0x223c WdiServiceHost - ok

14:32:59.0588 0x223c [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost C:\Windows\system32\wdi.dll

14:32:59.0588 0x223c WdiSystemHost - ok

14:32:59.0619 0x223c [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient C:\Windows\System32\webclnt.dll

14:32:59.0619 0x223c WebClient - ok

14:32:59.0635 0x223c [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc C:\Windows\system32\wecsvc.dll

14:32:59.0635 0x223c Wecsvc - ok

14:32:59.0650 0x223c [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll

14:32:59.0650 0x223c wercplsupport - ok

14:32:59.0666 0x223c [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll

14:32:59.0666 0x223c WerSvc - ok

14:32:59.0682 0x223c [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys

14:32:59.0682 0x223c WfpLwf - ok

14:32:59.0697 0x223c [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys

14:32:59.0697 0x223c WIMMount - ok

14:32:59.0713 0x223c WinDefend - ok

14:32:59.0728 0x223c WinHttpAutoProxySvc - ok

14:32:59.0760 0x223c [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll

14:32:59.0775 0x223c Winmgmt - ok

14:32:59.0884 0x223c [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM C:\Windows\system32\WsmSvc.dll

14:32:59.0916 0x223c WinRM - ok

14:32:59.0962 0x223c [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys

14:32:59.0962 0x223c WinUsb - ok

14:32:59.0978 0x223c [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll

14:32:59.0994 0x223c Wlansvc - ok

14:33:00.0118 0x223c [ 357CABBF155AFD1D3926E62539D2A3A7, C43CFF84E7D930B4999DC061AB0766B57AAD7540B3E6EE54605B10ECE90825F5 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

14:33:00.0165 0x223c wlidsvc - ok

14:33:00.0196 0x223c [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys

14:33:00.0196 0x223c WmiAcpi - ok

14:33:00.0228 0x223c [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe

14:33:00.0228 0x223c wmiApSrv - ok

14:33:00.0243 0x223c WMPNetworkSvc - ok

14:33:00.0259 0x223c [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll

14:33:00.0259 0x223c WPCSvc - ok

14:33:00.0274 0x223c [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll

14:33:00.0274 0x223c WPDBusEnum - ok

14:33:00.0290 0x223c [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys

14:33:00.0290 0x223c ws2ifsl - ok

14:33:00.0306 0x223c [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll

14:33:00.0306 0x223c wscsvc - ok

14:33:00.0321 0x223c WSearch - ok

14:33:00.0399 0x223c [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv C:\Windows\system32\wuaueng.dll

14:33:00.0462 0x223c wuauserv - ok

14:33:00.0477 0x223c [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys

14:33:00.0477 0x223c WudfPf - ok

14:33:00.0493 0x223c [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys

14:33:00.0508 0x223c WUDFRd - ok

14:33:00.0508 0x223c [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll

14:33:00.0524 0x223c wudfsvc - ok

14:33:00.0540 0x223c [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll

14:33:00.0555 0x223c WwanSvc - ok

14:33:00.0571 0x223c ================ Scan global ===============================

14:33:00.0602 0x223c [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll

14:33:00.0633 0x223c [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll

14:33:00.0649 0x223c [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll

14:33:00.0680 0x223c [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll

14:33:00.0711 0x223c [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe

14:33:00.0711 0x223c [ Global ] - ok

14:33:00.0711 0x223c ================ Scan MBR ==================================

14:33:00.0727 0x223c [ A7A612EB431EBB62272A7737159BD7D9 ] \Device\Harddisk0\DR0

14:33:00.0930 0x223c \Device\Harddisk0\DR0 - ok

14:33:00.0930 0x223c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1

14:33:00.0945 0x223c \Device\Harddisk1\DR1 - ok

14:33:00.0945 0x223c ================ Scan VBR ==================================

14:33:00.0945 0x223c [ 82EE82ABA3EE54AC334A4DEA0A324585 ] \Device\Harddisk0\DR0\Partition1

14:33:00.0961 0x223c \Device\Harddisk0\DR0\Partition1 - ok

14:33:00.0961 0x223c [ 7AA085111D6D75DFA447C3BC74E4BE03 ] \Device\Harddisk0\DR0\Partition2

14:33:00.0976 0x223c \Device\Harddisk0\DR0\Partition2 - ok

14:33:00.0976 0x223c [ B983E1F9557720A2587FF92955137448 ] \Device\Harddisk0\DR0\Partition3

14:33:01.0008 0x223c \Device\Harddisk0\DR0\Partition3 - ok

14:33:01.0008 0x223c ================ Scan generic autorun ======================

14:33:01.0008 0x223c ETDCtrl - ok

14:33:01.0366 0x223c [ 929364DA3BA708FE55878E56D58857D9, E70E57A877C0B6F4F89B1BC50A261788B1C58991B636F82540B061826EBF0F63 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

14:33:01.0652 0x223c RTHDVCPL - ok

14:33:01.0683 0x223c [ 813EE7316A9B44303D97DDE00626A527, 745F361D9EE969FC836D3D8B909BC9216471351AE828D2B3B6406245854FE01A ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

14:33:01.0699 0x223c RtHDVBg_Dolby - ok

14:33:01.0715 0x223c [ 3E91DEBB78D2F7C197C897BCEB290101, E554ABC878DC1A3C393E3CD444785D1677C922A1BFE30D92C200C3E42E32C971 ] C:\Windows\system32\igfxtray.exe

14:33:01.0730 0x223c IgfxTray - ok

14:33:01.0730 0x223c [ 81CB92B48E2796BE47F741C6C3FDF750, 3E0F0ED7232E75874948A3DAE2C6762C089E652F2D3D63187BD5D5D2DE014285 ] C:\Windows\system32\hkcmd.exe

14:33:01.0746 0x223c HotKeysCmds - ok

14:33:01.0761 0x223c [ 8E7237C4D52045F00A013EADADC51533, 485F5222E6C808897156E7DE6003CC6E914B4FF393073DF6AED0109C59CE745D ] C:\Windows\system32\igfxpers.exe

14:33:01.0777 0x223c Persistence - ok

14:33:01.0793 0x223c [ CA169D8C33B5C7D38F146146D635BB5A, 0F7C021BD92ECFF8FEE5D1D1F5920E85B53C1DE7874F21CEBCF9E9F2BD0590BF ] C:\Windows\system32\TpShocks.exe

14:33:01.0808 0x223c TpShocks - ok

14:33:01.0839 0x223c [ 14F959C189C12FA8593F0A65C9EBA406, 1FBC288FA966405C3D57D91F73AD1B46161504AD7BDE4921FF259B0F3224BB7B ] C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe

14:33:01.0839 0x223c LENOVO.TPKNRRES - ok

14:33:01.0886 0x223c [ 778795E86F35099422FAAEB2BEBEBFFA, 8732A13F0964571857065BE6446B2C00D894992DAD20D4E26E661ED95E412BA5 ] C:\Program Files\Classic Shell\ClassicStartMenu.exe

14:33:01.0886 0x223c Classic Start Menu - ok

14:33:01.0949 0x223c [ A6AAD37CDCAE75CB62D039E3A4D8F5E3, 4FF763B0D129175BA1B1E794BA313E6C63F7A89D377C786BF5E730AF2A1D95D1 ] c:\Program Files\Microsoft Security Client\msseces.exe

14:33:01.0964 0x223c MSC - ok

14:33:01.0995 0x223c [ 0307536FD43CC7BFB92F9DAC8DB913F1, 6C8BEDA4ADFBEF28E647B39B3EEA37A20BFE5C93C7EDA79471EFB46156197843 ] C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe

14:33:01.0995 0x223c RotateImage - ok

14:33:01.0995 0x223c PWMTRV - ok

14:33:02.0042 0x223c [ 4D1DA8CE5E364D22B4FF00F163194514, 165DE474309206A0F51266F19EDB4AF3D7BAD19FDA61B636AEE7A04278DBBC2C ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

14:33:02.0042 0x223c USB3MON - ok

14:33:02.0089 0x223c [ E6CC0FA3C1040C791EB3F4BA6C789411, 095D5965FEE00ACB6D8713B2E2772A409A84F42D85383AEAF5FC3E2E393DC07D ] C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe

14:33:02.0089 0x223c Dolby Advanced Audio v2 - ok

14:33:02.0214 0x223c [ C8BD6D2BD6D52259C2A672A86AA26A51, B790812B7B2A6BBEAD46E78D97358F7135386BDA8C95C8E936BE55286C8492D7 ] C:\Program Files (x86)\Lenovo Registration\LenovoReg.exe

14:33:02.0292 0x223c Lenovo Registration - ok

14:33:02.0339 0x223c [ 885A81A05F749897A455F439E302F1BD, F4CF5980A7CE5449CF5CF1586AE0FCDE0F4C640CBDD0FE5C1870412017A3CB29 ] C:\Program Files (x86)\Lenovo\RapidBoot HDD Accelerator\FBConsole.exe

14:33:02.0354 0x223c Fastboot - ok

14:33:02.0401 0x223c [ 43E946AAD268FEAFB1E286677E70CB5D, 7798926B3CF11D1CF7DFF9B3D67AD3DC67010A62F3132CAEA273EB299A61B176 ] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe

14:33:02.0401 0x223c Intel AppUp(SM) center - ok

14:33:02.0463 0x223c [ 47EA5F76FAB723C61AB4A0D79BAD512C, A7A38EB0A7068B160E6949945EF639F999A06AE35746F6E79C7350745798E5C9 ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

14:33:02.0495 0x223c Adobe ARM - ok

14:33:02.0557 0x223c [ F6158734F1E24C6C510155CF0D363911, 320900BA90AF14E254CFAFA70FB15A0E77506217E47A406FA1ED821D0206FE29 ] C:\Program Files (x86)\Real\RealPlayer\update\realsched.exe

14:33:02.0573 0x223c TkBellExe - ok

14:33:02.0651 0x223c [ 4D5D968FE6AE6BF94A807F73F7FF6B3D, 3D5D5D775EE251C2B903AA8DA804AE4D1632DD59A8A0A36C545FE984FCFE06DD ] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe

14:33:02.0682 0x223c BrMfcWnd - ok

14:33:02.0697 0x223c [ 4DE3EF07E0854547309C6B40235A9D44, F73D8E6D98583865D1C8DB728058D83C72A3908E21E04EF313FCB829C040A1EC ] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe

14:33:02.0697 0x223c ControlCenter3 - ok

14:33:02.0760 0x223c [ 545676F48851A5C65A38CAE5B5518C95, F7CD893B8198AA22347CB96A61C258217FA0A1B1CC1733784B5FD84A7B208264 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe

14:33:02.0760 0x223c APSDaemon - ok

14:33:02.0822 0x223c [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Program Files (x86)\QuickTime\QTTask.exe

14:33:02.0838 0x223c QuickTime Task - ok

14:33:02.0900 0x223c [ D2E3E6D94A9E1CFA1561D9C748136FD0, C8CD851F1872086D18A329B47C7DEFAD2CE2E3A8F4321411247D06D07B2DB1D3 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe

14:33:02.0900 0x223c iTunesHelper - ok

14:33:02.0978 0x223c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

14:33:03.0009 0x223c Sidebar - ok

14:33:03.0025 0x223c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe

14:33:03.0025 0x223c mctadmin - ok

14:33:03.0041 0x223c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

14:33:03.0056 0x223c Sidebar - ok

14:33:03.0056 0x223c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe

14:33:03.0072 0x223c mctadmin - ok

14:33:03.0150 0x223c [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] C:\Users\dan\AppData\Local\Google\Update\GoogleUpdate.exe

14:33:03.0150 0x223c Google Update - ok

14:33:03.0228 0x223c [ 414CAC825843546AE6E06E18254C5C9C, AD4A76E01EC2AD677022B76F31D64ED1D88310BD30388BCDD7CB35FC93C40215 ] C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe

14:33:03.0243 0x223c NETGEARGenie - ok

14:33:03.0290 0x223c [ CA595FA53E6C797EC1AB43AFB4B4F183, A0A7DDD2ECA97D6533DF908861C000B69C327184F4FFC7C4D971AE4651AD337F ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe

14:33:03.0290 0x223c iCloudServices - ok

14:33:03.0321 0x223c [ 096407F0CB75519F4DBFBA5BB413187B, 9F7A13FA6DA2B2FE58B69AD94DA372DA0C73918C1E3C57D1BC8F7662875C7CBD ] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe

14:33:03.0321 0x223c ApplePhotoStreams - ok

14:33:03.0353 0x223c [ 55D1B8B470F1D9A95A99268F2B9294AD, 6B03F736A4A07C4CF45DE23741B73E7946420B59D28C9DE07D4FD5CDDD2408BE ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe

14:33:03.0353 0x223c iCloudDrive - ok

14:33:03.0368 0x223c ywyjios - ok

14:33:03.0384 0x223c [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Program Files (x86)\QuickTime\QTTask.exe

14:33:03.0399 0x223c QuickTime Task - ok

14:33:03.0462 0x223c [ EFFCE1E2B4F83A5110F4B236AA9FC266, 6703D3C34E671961E7A662C83487B87F24BAA68000259661AF0A17D2254897C8 ] C:\Windows\system32\Macromed\Flash\FlashUtil64_14_0_0_125_ActiveX.exe

14:33:03.0477 0x223c FlashPlayerUpdate - ok

14:33:03.0477 0x223c Waiting for KSN requests completion. In queue: 115

14:33:04.0481 0x223c Waiting for KSN requests completion. In queue: 115

14:33:05.0495 0x223c Waiting for KSN requests completion. In queue: 115

14:33:06.0498 0x223c Waiting for KSN requests completion. In queue: 115

14:33:07.0528 0x223c AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )

14:33:07.0528 0x223c Win FW state via NFP2: enabled

14:33:10.0424 0x223c ============================================================

14:33:10.0424 0x223c Scan finished

14:33:10.0424 0x223c ============================================================

14:33:10.0424 0x235c Detected object count: 0

14:33:10.0424 0x235c Actual detected object count: 0



#10 bubba888

bubba888
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 02:50 PM

# AdwCleaner v3.311 - Report created 06/11/2014 at 14:41:01
# Updated 30/09/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : hughie - CORK
# Running from : C:\Users\hughie\Desktop\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

[#] Service Deleted : qknfd

***** [ Files / Folders ] *****

Folder Deleted : C:\Windows\Util
Folder Deleted : C:\Users\dan\Documents\Optimizer Pro
Folder Deleted : C:\Users\hughie\AppData\Roaming\Mozilla\Firefox\Profiles\bcnniw95.default\Extensions\staged\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}
Folder Deleted : C:\Users\hughie\AppData\Roaming\Mozilla\Firefox\Profiles\bcnniw95.default\Extensions\staged\ffxtlbr@mysearchdial.com
File Deleted : C:\Users\dan\AppData\Roaming\Mozilla\Firefox\Profiles\wtxy8221.default-1379005939262\user.js
File Deleted : C:\Users\hughie\AppData\Roaming\Mozilla\Firefox\Profiles\bcnniw95.default\user.js

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\esrv.EXE
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0400EBCA-042C-4000-AA89-9713FBEDB671}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0BD19251-4B4B-4B94-AB16-617106245BB7}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3281114F-BCAB-45E3-80D9-A6CD64D4E636}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{44533FCB-F9FB-436A-8B6B-CF637B2D465A}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{44B29DDD-CF7A-454A-A275-A322A398D93F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{A4DE94DB-DF03-45A3-8A5D-D1B7464B242D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{AA0F50A8-2618-4AE4-A779-9F7378555A8F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B2DB115C-8278-4947-9A07-57B53D1C4215}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{B97FC455-DB33-431D-84DB-6F1514110BD5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C67281E0-78F5-4E49-9FAE-4B1B2ADAF17B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{E72E9312-0367-4216-BFC7-21485FA8390B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F6CCB6C9-127E-44AE-8552-B94356F39FFE}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{FFD25630-2734-4AE9-88E6-21BF6525F3FE}
Key Deleted : HKLM\SOFTWARE\{1146AC44-2F03-4431-B4FD-889BC837521F}
Key Deleted : HKLM\SOFTWARE\{3A7D3E19-1B79-4E4E-BD96-5467DA2C4EF0}
Key Deleted : HKLM\SOFTWARE\{6791A2F3-FC80-475C-A002-C014AF797E9C}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344

-\\ Mozilla Firefox v32.0.3 (x86 en-US)

[ File : C:\Users\dan\AppData\Roaming\Mozilla\Firefox\Profiles\wtxy8221.default-1379005939262\prefs.js ]

Line Deleted : user_pref("brr.search.defaultenginename", "Mysearchdial");
Line Deleted : user_pref("browser.search.order.1", "Mysearchdial");
Line Deleted : user_pref("extensions.irmysearch.aflt", "suma_14_13_ff");
Line Deleted : user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzutA0CzyyBtD0E0ByEzy0DyDyD0B0EzztDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtDtAtDyD1V1StN1L1G1B1V1N2Y1L1Qzu2StBtAzz0BtByEtDtCtGyEtD0BtCt[...]
Line Deleted : user_pref("extensions.irmysearch.cr", "1042212244");
Line Deleted : user_pref("extensions.irmysearch.instlRef", "140305_b");
Line Deleted : user_pref("extensions.mysearchdial.dfltLng", "");
Line Deleted : user_pref("extensions.mysearchdial.dfltSrch", true);
Line Deleted : user_pref("extensions.mysearchdial.dnsErr", true);
Line Deleted : user_pref("extensions.mysearchdial.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,752626116,1657571787,3224935090,2597085128,18285[...]
Line Deleted : user_pref("extensions.mysearchdial.excTlbr", false);
Line Deleted : user_pref("extensions.mysearchdial.hdrMd5", "B0229C4858C8585801B31A6676F5B2D7");
Line Deleted : user_pref("extensions.mysearchdial.hmpg", true);
Line Deleted : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=suma_14_13_ff&cd=2XzuyEtN2Y1L1QzutA0CzyyBtD0E0ByEzy0DyDyD0B0EzztDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyE[...]
Line Deleted : user_pref("extensions.mysearchdial.id", "3C970EB49D55BE80");
Line Deleted : user_pref("extensions.mysearchdial.instlDay", "16159");
Line Deleted : user_pref("extensions.mysearchdial.instlRef", "140305_b");
Line Deleted : user_pref("extensions.mysearchdial.lastB", "hxxp://start.mysearchdial.com/?f=1&a=suma_14_13_ff&cd=2XzuyEtN2Y1L1QzutA0CzyyBtD0E0ByEzy0DyDyD0B0EzztDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutCyEtD[...]
Line Deleted : user_pref("extensions.mysearchdial.lastVrsnTs", "1.8.29.011:40:29");
Line Deleted : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=suma_14_13_ff&cd=2XzuyEtN2Y1L1QzutA0CzyyBtD0E0ByEzy0DyDyD0B0EzztDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1CzutC[...]
Line Deleted : user_pref("extensions.mysearchdial.pnu_base", "{\"newVrsn\":\"94\",\"lastVrsn\":\"94\",\"vrsnLoad\":\"\",\"showMsg\":\"false\",\"showSilent\":\"false\",\"msgTs\":0,\"lstMsgTs\":\"0\"}");
Line Deleted : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.sg", "none");
Line Deleted : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.tlbrId", "base");
Line Deleted : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=suma_14_13_ff&cd=2XzuyEtN2Y1L1QzutA0CzyyBtD0E0ByEzy0DyDyD0B0EzztDtN0D0Tzu0SzztBtDtN1L2XzutBtFtCzztFtBtFtDtN1L1Czu[...]
Line Deleted : user_pref("extensions.mysearchdial.vrsn", "1.8.29.0");
Line Deleted : user_pref("extensions.mysearchdial.vrsni", "1.8.29.0");
Line Deleted : user_pref("extensions.mysearchdial_i.newTab", false);
Line Deleted : user_pref("extensions.mysearchdial_i.smplGrp", "none");
Line Deleted : user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.29.011:40:29");

[ File : C:\Users\hughie\AppData\Roaming\Mozilla\Firefox\Profiles\bcnniw95.default\prefs.js ]

Line Deleted : user_pref("browser.search.selectedEngine", "Mysearchdial");

*************************

AdwCleaner[R0].txt - [6397 octets] - [06/11/2014 14:38:31]
AdwCleaner[S0].txt - [6386 octets] - [06/11/2014 14:41:01]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6446 octets] ##########



#11 bubba888

bubba888
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 03:00 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.6 (11.05.2014:1)
OS: Windows 7 Professional x64
Ran by hughie on Thu 11/06/2014 at 14:56:14.70
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{06CD30D1-898A-4400-86BB-DC6ED95AC507}

 

~~~ Files

 

~~~ Folders

 

~~~ FireFox

Successfully deleted: [Folder] C:\Users\hughie\AppData\Roaming\mozilla\firefox\profiles\bcnniw95.default\extensions\staged

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 11/06/2014 at 14:58:13.68
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,898 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:34 AM

Posted 06 November 2014 - 03:40 PM

Looks like it was those malwares now removed that were interfering..
Let's see how it is after ESET.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 bubba888

bubba888
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 06:46 PM

C:\dan\tempd\CamStudio_Setup.exe a variant of Win32/InstallCore.JE.gen potentially unwanted application deleted - quarantined
C:\Users\dan\AppData\Local\Temp\13cc8\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\E9BSDW1F\ytiwqu08yh[1].htm JS/Exploit.Agent.NHV trojan cleaned by deleting - quarantined
C:\Users\dan\AppData\Local\Temp\2728\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VQ2L4ET9\9gcaieg6e2[1].htm JS/Exploit.Agent.NHV trojan cleaned by deleting - quarantined
C:\Users\dan\AppData\Local\Temp\7d744\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BL53MZHG\a9apokm9f6[1].htm JS/Exploit.Agent.NHW trojan cleaned by deleting - quarantined
C:\Users\dan\AppData\Local\Temp\{8B8C54BD-DCDF-4BF2-BC58-7A88DC885417}\setup.exe multiple threats cleaned by deleting - quarantined
C:\Users\dan\AppData\LocalLow\rdzgnlc.dll Win32/TrojanDownloader.Tracur.AM trojan cleaned by deleting - quarantined
C:\Users\dan\Downloads\DownloadAcceleratorSetup(1).exe a variant of Win32/InstallCore.BY potentially unwanted application deleted - quarantined
C:\Users\dan\Downloads\DownloadAcceleratorSetup.exe a variant of Win32/InstallCore.BY potentially unwanted application deleted - quarantined
 



#14 bubba888

bubba888
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:07:34 AM

Posted 06 November 2014 - 06:47 PM

the preceding is the ESET scan result



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,898 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:34 AM

Posted 06 November 2014 - 07:58 PM

Hi, there is a possibility of a powerelks infection here so we need to run a tool specific to that.

The Tracur Trojan we removed opens a back door on the computer by attempting to connect to a server and then waits for commands. The remote attacker can perform the following actions on the computer:
Download and execute remote files
Control the web browser redirection parameters
Steal information

You need to change any passwords and if you do banking or financils on here. The banks should be notified you had a backdoor infection.



newtool3_zpsae6d2122.png

Please download Powelikscleaner (by ESET) and save it to your Desktop.

1. Double-click on ESETPoweliksCleaner.exe to start the tool.

2. Read the terms of the End-user license agreement and click Agree.

3. The tool will run automatically. If the cleaner finds a Poweliks infection, press the Y key on your keyboard to remove it.

newtool1_zpsa1caa06e.png

4. If Poweliks was detected "Win32/Poweliks was successfully removed from your system" will be displayed. Press any key to exit the tool and reboot your PC.

newtool2_zps0e6d39b1.png

The tool will produce a log in the same directory the tool was run from.

Please copy and paste the log in your next reply.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users