Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Adware Generic5.cdum - unable to remove


  • Please log in to reply
8 replies to this topic

#1 dharmastudios

dharmastudios

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:13 AM

Posted 11 November 2014 - 11:24 AM

AVG, Adaware, Kaspersky and Spyhunter (which I removed) all flag saying I have this and it can't be fixed. It's a windows 8.1 laptop.

 

Spybot doesn't find it.

 

I booted into safe mode and tried the scanners - avg finds it in explorer.exe - and can't do anything about it. I have no idea how to remove this thing at this point, and my google skills are failing me. Please help! I've been trying to clean this stupid thing off for a week now.



BC AdBot (Login to Remove)

 


#2 dharmastudios

dharmastudios
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:13 AM

Posted 11 November 2014 - 02:23 PM

Additional info:

Mbam also finds it but cannot remove.

#3 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:13 PM

Posted 11 November 2014 - 07:56 PM



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file her
Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).
Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.

The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#4 dharmastudios

dharmastudios
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:13 AM

Posted 11 November 2014 - 11:24 PM

Part 1 of 3:

 

22:19:29.0562 0x2074 TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34

22:19:29.0562 0x2074 UEFI system

22:19:33.0407 0x2074 ============================================================

22:19:33.0407 0x2074 Current date / time: 2014/11/11 22:19:33.0407

22:19:33.0407 0x2074 SystemInfo:

22:19:33.0407 0x2074

22:19:33.0407 0x2074 OS Version: 6.3.9600 ServicePack: 0.0

22:19:33.0407 0x2074 Product type: Workstation

22:19:33.0407 0x2074 ComputerName: SERENITY

22:19:33.0407 0x2074 UserName: Reagan

22:19:33.0407 0x2074 Windows directory: C:\WINDOWS

22:19:33.0407 0x2074 System windows directory: C:\WINDOWS

22:19:33.0407 0x2074 Running under WOW64

22:19:33.0407 0x2074 Processor architecture: Intel x64

22:19:33.0407 0x2074 Number of processors: 4

22:19:33.0407 0x2074 Page size: 0x1000

22:19:33.0407 0x2074 Boot type: Normal boot

22:19:33.0407 0x2074 ============================================================

22:19:34.0125 0x2074 KLMD registered as C:\WINDOWS\system32\drivers\45346846.sys

22:19:35.0720 0x2074 System UUID: {42544409-D8C5-16AF-2F58-85F43DF78F6D}

22:19:36.0673 0x2074 Drive \Device\Harddisk0\DR0 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

22:19:36.0689 0x2074 ============================================================

22:19:36.0689 0x2074 \Device\Harddisk0\DR0:

22:19:36.0689 0x2074 GPT partitions:

22:19:36.0689 0x2074 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {D56F1B01-047A-4F3C-9A45-8A1882843CC6}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0xFA000

22:19:36.0689 0x2074 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {D68C5ADC-790B-48A8-8648-2585BFBBB17E}, Name: EFI system partition, StartLBA 0xFA800, BlocksNum 0x96000

22:19:36.0689 0x2074 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {1A86CB26-D566-43F8-A817-CDE4B3FCF8D3}, Name: Microsoft reserved partition, StartLBA 0x190800, BlocksNum 0x40000

22:19:36.0689 0x2074 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {C4D0D529-BE71-48B4-8864-12FDDADFEE1C}, Name: Basic data partition, StartLBA 0x1D0800, BlocksNum 0x37087001

22:19:36.0689 0x2074 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {D893F4A6-4124-4588-ABBB-FFDF6BCC52CA}, Name: , StartLBA 0x37258000, BlocksNum 0xE0800

22:19:36.0689 0x2074 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {51CB7D1C-3D4C-4C1B-B9F0-972755C35FE9}, Name: Basic data partition, StartLBA 0x37338801, BlocksNum 0x2E4D800

22:19:36.0689 0x2074 \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {347B6FB9-62BC-4BD7-4173-636C65706975}, Name: Basic data partition, StartLBA 0x3A186001, BlocksNum 0x200000

22:19:36.0689 0x2074 MBR partitions:

22:19:36.0689 0x2074 ============================================================

22:19:36.0720 0x2074 C: <-> \Device\Harddisk0\DR0\Partition4

22:19:36.0720 0x2074 ============================================================

22:19:36.0720 0x2074 Initialize success

22:19:36.0720 0x2074 ============================================================

22:19:53.0491 0x0ad0 ============================================================

22:19:53.0491 0x0ad0 Scan started

22:19:53.0491 0x0ad0 Mode: Manual;

22:19:53.0491 0x0ad0 ============================================================

22:19:53.0491 0x0ad0 KSN ping started

22:19:55.0866 0x0ad0 KSN ping finished: true

22:20:03.0697 0x0ad0 ================ Scan system memory ========================

22:20:03.0697 0x0ad0 System memory - ok

22:20:03.0697 0x0ad0 ================ Scan services =============================

22:20:04.0025 0x0ad0 [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys

22:20:04.0056 0x0ad0 1394ohci - ok

22:20:04.0087 0x0ad0 [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys

22:20:04.0087 0x0ad0 3ware - ok

22:20:04.0134 0x0ad0 [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys

22:20:04.0150 0x0ad0 ACPI - ok

22:20:04.0181 0x0ad0 [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys

22:20:04.0197 0x0ad0 acpiex - ok

22:20:04.0228 0x0ad0 [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys

22:20:04.0228 0x0ad0 acpipagr - ok

22:20:04.0275 0x0ad0 [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys

22:20:04.0306 0x0ad0 AcpiPmi - ok

22:20:04.0369 0x0ad0 [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys

22:20:04.0369 0x0ad0 acpitime - ok

22:20:04.0572 0x0ad0 [ 8B46D5A1D3EF08232C04D0EAFB871FB2, 5306F8452EF675851CB0015F9E5C5EB750137D6D65C9CB7E47F8EF5B10A44D10 ] Adobe LM Service C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

22:20:04.0587 0x0ad0 Adobe LM Service - ok

22:20:04.0759 0x0ad0 [ C5679E5186B2FC95BC76A8A9870D5456, 70AC61850B811A0A902532F098AE1D5DF4622455E56C78B89D4ABDBE4A061A48 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

22:20:04.0791 0x0ad0 AdobeARMservice - ok

22:20:05.0088 0x0ad0 [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS

22:20:05.0150 0x0ad0 ADP80XX - ok

22:20:05.0213 0x0ad0 [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll

22:20:05.0228 0x0ad0 AeLookupSvc - ok

22:20:05.0259 0x0ad0 [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD C:\WINDOWS\system32\drivers\afd.sys

22:20:05.0275 0x0ad0 AFD - ok

22:20:05.0306 0x0ad0 [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys

22:20:05.0306 0x0ad0 agp440 - ok

22:20:05.0322 0x0ad0 [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys

22:20:05.0322 0x0ad0 ahcache - ok

22:20:05.0400 0x0ad0 [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG C:\WINDOWS\System32\alg.exe

22:20:05.0400 0x0ad0 ALG - ok

22:20:05.0447 0x0ad0 [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys

22:20:05.0463 0x0ad0 AmdK8 - ok

22:20:05.0463 0x0ad0 [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys

22:20:05.0478 0x0ad0 AmdPPM - ok

22:20:05.0494 0x0ad0 [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys

22:20:05.0509 0x0ad0 amdsata - ok

22:20:05.0541 0x0ad0 [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys

22:20:05.0556 0x0ad0 amdsbs - ok

22:20:05.0572 0x0ad0 [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys

22:20:05.0588 0x0ad0 amdxata - ok

22:20:05.0603 0x0ad0 [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID C:\WINDOWS\system32\drivers\appid.sys

22:20:05.0603 0x0ad0 AppID - ok

22:20:05.0650 0x0ad0 [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll

22:20:05.0650 0x0ad0 AppIDSvc - ok

22:20:05.0713 0x0ad0 [ 7667B9D81EA8FD6540E6CF72F92161A6, 98F3D0E376F715EBE083FE112CAA640BCE0F13DCE0F244D059D7FA019EA3D24C ] Appinfo C:\WINDOWS\System32\appinfo.dll

22:20:05.0775 0x0ad0 Appinfo - ok

22:20:05.0838 0x0ad0 [ 4FE5C6D40664AE07BE5105874357D2ED, 70DD05EE80B77EB2F781E0919885D1BBB1119EA1A8955935AF5AECD05E30F14A ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

22:20:05.0838 0x0ad0 Apple Mobile Device - ok

22:20:05.0884 0x0ad0 [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll

22:20:05.0900 0x0ad0 AppReadiness - ok

22:20:05.0963 0x0ad0 [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll

22:20:05.0994 0x0ad0 AppXSvc - ok

22:20:06.0060 0x0ad0 [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys

22:20:06.0075 0x0ad0 arcsas - ok

22:20:06.0122 0x0ad0 [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys

22:20:06.0122 0x0ad0 atapi - ok

22:20:06.0341 0x0ad0 [ B04BF12AEBFB5E71971B4EDA4EDFC196, BCFC79ED014F3E835957D6FD5985DF97A9F2BFD9E762594C48AB8299240FF667 ] athr C:\WINDOWS\system32\DRIVERS\athwnx.sys

22:20:06.0466 0x0ad0 athr - ok

22:20:06.0528 0x0ad0 [ 886767FD022213F7885416134E9082E5, E248D82210FBEBF62C23EBEC74A976B2D1A4E62D3B7638D95B2574B77BA05DD0 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll

22:20:06.0544 0x0ad0 AudioEndpointBuilder - ok

22:20:06.0622 0x0ad0 [ 79B134ECE836B406B212E28C24011538, 1B875DD23CCAD8A2759DCDBCDCF3DE14231B9DB5EEC8E84FE081E41A52A047A1 ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll

22:20:06.0653 0x0ad0 Audiosrv - ok

22:20:06.0747 0x0ad0 [ E058520EEE9DAC4613D846596FF82D92, 0291075CA16ACB79F4989DE44D381F5742A2A3601F22C3600AE236D864E3370E ] avc3 C:\WINDOWS\system32\DRIVERS\avc3.sys

22:20:06.0794 0x0ad0 avc3 - ok

22:20:06.0825 0x0ad0 [ 91E41A7195E5B0E44FB3BEB83926F385, 241A7918C265B065C66FF742562313DEA764454E0F0AF579E3EA5DE6AE18F442 ] avchv C:\WINDOWS\system32\DRIVERS\avchv.sys

22:20:06.0841 0x0ad0 avchv - ok

22:20:06.0950 0x0ad0 [ 62C4DB41DAEA0FC1F5CB103B023D1068, 8C04FDF08CB487A775C8970527AE8115D9CE538781C607F703EE49674C63BA56 ] avckf C:\WINDOWS\system32\DRIVERS\avckf.sys

22:20:06.0997 0x0ad0 avckf - ok

22:20:07.0044 0x0ad0 [ 4EB2E8EE8BA47B58E08B67139C31CB41, 196F759A2BC3E978C3FDB1E37E0D40D56D43CB0004D5333E787CD4727A46F06C ] Avgboota C:\WINDOWS\system32\DRIVERS\avgboota.sys

22:20:07.0044 0x0ad0 Avgboota - ok

22:20:07.0091 0x0ad0 [ 54FE1CAFA3B3029B282E6A05EA672031, E972B8A22322FF06903A1E3AB20585E02A21C3A6EA9A75C172231494A08D14D1 ] Avgdiska C:\WINDOWS\system32\DRIVERS\avgdiska.sys

22:20:07.0091 0x0ad0 Avgdiska - ok

22:20:07.0388 0x0ad0 [ 5B3013D32525CC51C0CFB96F30603FA8, A26E4CDCDD946DFEF62C010F93914AEC8AD84BFB5A8B30703E63AFE6B93E3292 ] AVGIDSAgent C:\Program Files (x86)\AVG\AVG2015\avgidsagent.exe

22:20:07.0482 0x0ad0 AVGIDSAgent - ok

22:20:07.0513 0x0ad0 [ 7F6BE4B64811AFECE52FBAD85E31E378, FADC7E463103B3679C316213293A355252BF4B5F8A228A5C76CC944893752317 ] AVGIDSDriver C:\WINDOWS\system32\DRIVERS\avgidsdrivera.sys

22:20:07.0513 0x0ad0 AVGIDSDriver - ok

22:20:07.0575 0x0ad0 [ 17C34C4B42C8B2EFCF2C065178BF4806, CB28BEE44B7A821EE728EFFD1B1882B57E417292A3A5377F3A98F16B0AF14DC7 ] AVGIDSHA C:\WINDOWS\system32\DRIVERS\avgidsha.sys

22:20:07.0591 0x0ad0 AVGIDSHA - ok

22:20:07.0622 0x0ad0 [ 7C9E8FD2BFCE60BDF9B5944C0BE47C87, 0F51507BAECDEF7B6F553066621A03832FF070EC6837A8E304AABA1227F779BF ] Avgldx64 C:\WINDOWS\system32\DRIVERS\avgldx64.sys

22:20:07.0638 0x0ad0 Avgldx64 - ok

22:20:07.0700 0x0ad0 [ 734DCC05A7F327FDCE43A18BA011FD4E, E5245314E60D86911A6A9FC1FE4A0C0D0284D972CE642C28B9B1A43D1553AFA5 ] Avgloga C:\WINDOWS\system32\DRIVERS\avgloga.sys

22:20:07.0763 0x0ad0 Avgloga - ok

22:20:07.0778 0x0ad0 [ B4D589C734D796B5B76E0A0E5DA50397, CACAB2C0D01583CEB55C62334A4E9BB46A2E399BE9B7EDC988AEC785DF1FCC1C ] Avgmfx64 C:\WINDOWS\system32\DRIVERS\avgmfx64.sys

22:20:07.0778 0x0ad0 Avgmfx64 - ok

22:20:07.0810 0x0ad0 [ 3CE824D46BA1871713ABF147E6BAD556, B4D8AFC388BE06D6E3C5CDC865F80FF101E731E1D2B221FFC6C1E28487E1B3CD ] Avgrkx64 C:\WINDOWS\system32\DRIVERS\avgrkx64.sys

22:20:07.0810 0x0ad0 Avgrkx64 - ok

22:20:07.0857 0x0ad0 [ 8006A6254B4DC762336E71FD61971A9D, A0A8116E49E6EA5B08B82C85C94DD795FA899F089604B73F07243E71EE4D9D0F ] avgwd C:\Program Files (x86)\AVG\AVG2015\avgwdsvc.exe

22:20:07.0872 0x0ad0 avgwd - ok

22:20:07.0888 0x0ad0 [ DFB6F6E34ACDB4F55AF6B2DCBFB3225E, 02EEBB109B951BD54DBE3D31B459AAFC0F9E751E4F202C8A0AC66474777B2B1F ] Avgwfpa C:\WINDOWS\system32\DRIVERS\avgwfpa.sys

22:20:07.0903 0x0ad0 Avgwfpa - ok

22:20:07.0966 0x0ad0 [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll

22:20:07.0982 0x0ad0 AxInstSV - ok

22:20:08.0060 0x0ad0 [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys

22:20:08.0076 0x0ad0 b06bdrv - ok

22:20:08.0169 0x0ad0 [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys

22:20:08.0185 0x0ad0 BasicDisplay - ok

22:20:08.0201 0x0ad0 [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys

22:20:08.0201 0x0ad0 BasicRender - ok

22:20:08.0232 0x0ad0 [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys

22:20:08.0232 0x0ad0 bcmfn2 - ok

22:20:08.0294 0x0ad0 [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC C:\WINDOWS\System32\bdesvc.dll

22:20:08.0326 0x0ad0 BDESVC - ok

22:20:08.0466 0x0ad0 [ 8F966B0778C248ACC4D22DB88364455E, EAC1780FCA264EFA36FEDAFEF676594D11BDD0C00998C5EBB86F2F21012E71B7 ] BdfNdisf C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfndisf6.sys

22:20:08.0482 0x0ad0 BdfNdisf - ok

22:20:08.0513 0x0ad0 [ EC80614A72BC7039D2B22E3DD6C15895, 932260AB126523428B884034162E3619E1B7FA13720F830783B592AAE825AC86 ] bdfwfpf C:\Program Files\Lavasoft\Ad-Aware Antivirus\Firewall Engine\1.6.0.0\Drivers\bdfwfpf.sys

22:20:08.0513 0x0ad0 bdfwfpf - ok

22:20:08.0560 0x0ad0 [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys

22:20:08.0560 0x0ad0 Beep - ok

22:20:08.0685 0x0ad0 [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE C:\WINDOWS\System32\bfe.dll

22:20:08.0748 0x0ad0 BFE - ok

22:20:08.0857 0x0ad0 [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS C:\WINDOWS\System32\qmgr.dll

22:20:08.0888 0x0ad0 BITS - ok

22:20:08.0966 0x0ad0 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

22:20:08.0998 0x0ad0 Bonjour Service - ok

22:20:09.0044 0x0ad0 [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys

22:20:09.0060 0x0ad0 bowser - ok

22:20:09.0123 0x0ad0 [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll

22:20:09.0154 0x0ad0 BrokerInfrastructure - ok

22:20:09.0201 0x0ad0 [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser C:\WINDOWS\System32\browser.dll

22:20:09.0216 0x0ad0 Browser - ok

22:20:09.0263 0x0ad0 [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys

22:20:09.0263 0x0ad0 BthAvrcpTg - ok

22:20:09.0294 0x0ad0 [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys

22:20:09.0294 0x0ad0 BthHFEnum - ok

22:20:09.0326 0x0ad0 [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys

22:20:09.0326 0x0ad0 bthhfhid - ok

22:20:09.0357 0x0ad0 [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys

22:20:09.0357 0x0ad0 BTHMODEM - ok

22:20:09.0388 0x0ad0 [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv C:\WINDOWS\system32\bthserv.dll

22:20:09.0404 0x0ad0 bthserv - ok

22:20:09.0435 0x0ad0 [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys

22:20:09.0435 0x0ad0 cdfs - ok

22:20:09.0498 0x0ad0 [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys

22:20:09.0513 0x0ad0 cdrom - ok

22:20:09.0560 0x0ad0 [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc C:\WINDOWS\System32\certprop.dll

22:20:09.0576 0x0ad0 CertPropSvc - ok

22:20:09.0607 0x0ad0 [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys

22:20:09.0623 0x0ad0 circlass - ok

22:20:09.0701 0x0ad0 [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys

22:20:09.0716 0x0ad0 CLFS - ok

22:20:09.0748 0x0ad0 [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys

22:20:09.0763 0x0ad0 CmBatt - ok

22:20:09.0810 0x0ad0 [ 1CD3A907D64D08F49208DA00B69BF35E, ABBD70FFCA0DE2274D855AFC08BF7BC0AA6D44EFC9FDBF7DF44B73CD5C210E28 ] CNG C:\WINDOWS\system32\Drivers\cng.sys

22:20:09.0857 0x0ad0 CNG - ok

22:20:09.0873 0x0ad0 [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys

22:20:09.0888 0x0ad0 CompositeBus - ok

22:20:09.0904 0x0ad0 COMSysApp - ok

22:20:09.0935 0x0ad0 [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys

22:20:09.0951 0x0ad0 condrv - ok

22:20:10.0076 0x0ad0 [ 08F934092E0429BADF88E9F91DB0F61E, 6E9091C006FFFF261DC61C8E9A45219E47C351296E5355FC4B7242F30E1DDFE3 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe

22:20:10.0139 0x0ad0 cphs - ok

22:20:10.0201 0x0ad0 [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll

22:20:10.0217 0x0ad0 CryptSvc - ok

22:20:10.0232 0x0ad0 [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\WINDOWS\system32\drivers\dam.sys

22:20:10.0232 0x0ad0 dam - ok

22:20:10.0357 0x0ad0 [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll

22:20:10.0389 0x0ad0 DcomLaunch - ok

22:20:10.0404 0x0ad0 [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc C:\WINDOWS\System32\defragsvc.dll

22:20:10.0420 0x0ad0 defragsvc - ok

22:20:10.0514 0x0ad0 [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\WINDOWS\system32\das.dll

22:20:10.0545 0x0ad0 DeviceAssociationService - ok

22:20:10.0576 0x0ad0 [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll

22:20:10.0592 0x0ad0 DeviceInstall - ok

22:20:10.0654 0x0ad0 [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys

22:20:10.0670 0x0ad0 Dfsc - ok

22:20:10.0779 0x0ad0 [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll

22:20:10.0795 0x0ad0 Dhcp - ok

22:20:10.0811 0x0ad0 [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk C:\WINDOWS\system32\drivers\disk.sys

22:20:10.0811 0x0ad0 disk - ok

22:20:10.0858 0x0ad0 [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys

22:20:10.0858 0x0ad0 dmvsc - ok

22:20:10.0982 0x0ad0 [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll

22:20:10.0998 0x0ad0 Dnscache - ok

22:20:11.0029 0x0ad0 [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc C:\WINDOWS\System32\dot3svc.dll

22:20:11.0045 0x0ad0 dot3svc - ok

22:20:11.0077 0x0ad0 [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS C:\WINDOWS\system32\dps.dll

22:20:11.0077 0x0ad0 DPS - ok

22:20:11.0108 0x0ad0 [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys

22:20:11.0108 0x0ad0 drmkaud - ok

22:20:11.0170 0x0ad0 [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll

22:20:11.0186 0x0ad0 DsmSvc - ok

22:20:11.0311 0x0ad0 [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys

22:20:11.0358 0x0ad0 DXGKrnl - ok

22:20:11.0405 0x0ad0 [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost C:\WINDOWS\System32\eapsvc.dll

22:20:11.0405 0x0ad0 Eaphost - ok

22:20:11.0577 0x0ad0 [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys

22:20:11.0670 0x0ad0 ebdrv - ok

22:20:11.0717 0x0ad0 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS C:\WINDOWS\System32\lsass.exe

22:20:11.0717 0x0ad0 EFS - ok

22:20:11.0780 0x0ad0 [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys

22:20:11.0780 0x0ad0 EhStorClass - ok

22:20:11.0811 0x0ad0 [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys

22:20:11.0827 0x0ad0 EhStorTcgDrv - ok

22:20:11.0842 0x0ad0 [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys

22:20:11.0858 0x0ad0 ErrDev - ok

22:20:11.0983 0x0ad0 [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem C:\WINDOWS\system32\es.dll

22:20:12.0014 0x0ad0 EventSystem - ok

22:20:12.0030 0x0ad0 [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys

22:20:12.0045 0x0ad0 exfat - ok

22:20:12.0061 0x0ad0 [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys

22:20:12.0077 0x0ad0 fastfat - ok

22:20:12.0139 0x0ad0 [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax C:\WINDOWS\system32\fxssvc.exe

22:20:12.0155 0x0ad0 Fax - ok

22:20:12.0186 0x0ad0 [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys

22:20:12.0186 0x0ad0 fdc - ok

22:20:12.0217 0x0ad0 [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost C:\WINDOWS\system32\fdPHost.dll

22:20:12.0233 0x0ad0 fdPHost - ok

22:20:12.0249 0x0ad0 [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub C:\WINDOWS\system32\fdrespub.dll

22:20:12.0249 0x0ad0 FDResPub - ok

22:20:12.0280 0x0ad0 [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc C:\WINDOWS\system32\fhsvc.dll

22:20:12.0295 0x0ad0 fhsvc - ok

22:20:12.0327 0x0ad0 [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys

22:20:12.0327 0x0ad0 FileInfo - ok

22:20:12.0374 0x0ad0 [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys

22:20:12.0374 0x0ad0 Filetrace - ok

22:20:12.0405 0x0ad0 [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys

22:20:12.0405 0x0ad0 flpydisk - ok

22:20:12.0467 0x0ad0 [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys

22:20:12.0499 0x0ad0 FltMgr - ok

22:20:12.0577 0x0ad0 [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache C:\WINDOWS\system32\FntCache.dll

22:20:12.0624 0x0ad0 FontCache - ok

22:20:12.0764 0x0ad0 [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

22:20:12.0780 0x0ad0 FontCache3.0.0.0 - ok

22:20:12.0795 0x0ad0 [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys

22:20:12.0811 0x0ad0 FsDepends - ok

22:20:12.0827 0x0ad0 [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys

22:20:12.0842 0x0ad0 Fs_Rec - ok

22:20:12.0889 0x0ad0 [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys

22:20:12.0920 0x0ad0 fvevol - ok

22:20:12.0967 0x0ad0 [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys

22:20:12.0983 0x0ad0 FxPPM - ok

22:20:13.0014 0x0ad0 [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys

22:20:13.0014 0x0ad0 gagp30kx - ok

22:20:13.0077 0x0ad0 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys

22:20:13.0077 0x0ad0 GEARAspiWDM - ok

22:20:13.0108 0x0ad0 [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys

22:20:13.0124 0x0ad0 gencounter - ok

22:20:13.0171 0x0ad0 [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys

22:20:13.0171 0x0ad0 GPIOClx0101 - ok

22:20:13.0280 0x0ad0 [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc C:\WINDOWS\System32\gpsvc.dll

22:20:13.0342 0x0ad0 gpsvc - ok

22:20:13.0405 0x0ad0 gupdate - ok

22:20:13.0405 0x0ad0 gupdatem - ok

22:20:13.0467 0x0ad0 [ 5D4BC124FAAE6730AC002CDB67BF1A1C, 00294F4DC7D17F6DD2A22B9C3299BED40146BA45C972367154D20DB502472551 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

22:20:13.0467 0x0ad0 gusvc - ok

22:20:13.0577 0x0ad0 [ 0A9D58AABD01DA97B1D101473EFA7659, C18EA4F5BF569C230AD682A418F69B6E4209AD467BCCBDABD0515DBB582BF04B ] gzflt C:\Program Files\Lavasoft\Ad-Aware Antivirus\Antimalware Engine\3.0.0.56\gzflt.sys

22:20:13.0577 0x0ad0 gzflt - ok

22:20:13.0655 0x0ad0 [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys

22:20:13.0686 0x0ad0 HdAudAddService - ok

22:20:13.0733 0x0ad0 [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys

22:20:13.0733 0x0ad0 HDAudBus - ok

22:20:13.0764 0x0ad0 [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys

22:20:13.0764 0x0ad0 HidBatt - ok

22:20:13.0811 0x0ad0 [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys

22:20:13.0827 0x0ad0 HidBth - ok

22:20:13.0842 0x0ad0 [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys

22:20:13.0858 0x0ad0 hidi2c - ok

22:20:13.0874 0x0ad0 [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys

22:20:13.0874 0x0ad0 HidIr - ok

22:20:13.0921 0x0ad0 [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv C:\WINDOWS\system32\hidserv.dll

22:20:13.0921 0x0ad0 hidserv - ok

22:20:13.0952 0x0ad0 [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys

22:20:13.0967 0x0ad0 HidUsb - ok

22:20:14.0030 0x0ad0 [ 545EE654B04D52AF2E7F5F393D1F7D75, 3035171E5E54F6E6FB8BFCA237FCE5564BE3F58EEDA54441334FF3B71EEE1D24 ] hitmanpro37 C:\WINDOWS\system32\drivers\hitmanpro37.sys

22:20:14.0030 0x0ad0 hitmanpro37 - ok

22:20:14.0108 0x0ad0 [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc C:\WINDOWS\system32\kmsvc.dll

22:20:14.0124 0x0ad0 hkmsvc - ok

22:20:14.0217 0x0ad0 [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll

22:20:14.0249 0x0ad0 HomeGroupListener - ok

22:20:14.0311 0x0ad0 [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll

22:20:14.0327 0x0ad0 HomeGroupProvider - ok

22:20:14.0374 0x0ad0 [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys

22:20:14.0374 0x0ad0 HpSAMD - ok

22:20:14.0421 0x0ad0 [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys

22:20:14.0452 0x0ad0 HTTP - ok

22:20:14.0483 0x0ad0 [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys

22:20:14.0483 0x0ad0 hwpolicy - ok

22:20:14.0499 0x0ad0 [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys

22:20:14.0514 0x0ad0 hyperkbd - ok

22:20:14.0530 0x0ad0 [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys

22:20:14.0530 0x0ad0 HyperVideo - ok

22:20:14.0561 0x0ad0 [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys

22:20:14.0561 0x0ad0 i8042prt - ok

22:20:14.0577 0x0ad0 [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys

22:20:14.0592 0x0ad0 iaLPSSi_GPIO - ok

22:20:14.0608 0x0ad0 [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys

22:20:14.0624 0x0ad0 iaLPSSi_I2C - ok

22:20:14.0686 0x0ad0 [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys

22:20:14.0717 0x0ad0 iaStorAV - ok

22:20:14.0780 0x0ad0 [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys

22:20:14.0796 0x0ad0 iaStorV - ok

22:20:14.0796 0x0ad0 IEEtwCollectorService - ok

22:20:15.0046 0x0ad0 [ 8C44E6B688790E2AD3846C97661C54F1, CB487D167EDA3C1E30BD5FB8F98C15EB9E75A6FB793009C2F1BBCAAB4285F772 ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys

22:20:15.0296 0x0ad0 igfx - ok

22:20:15.0374 0x0ad0 [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT C:\WINDOWS\System32\ikeext.dll

22:20:15.0421 0x0ad0 IKEEXT - ok

22:20:15.0452 0x0ad0 [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys

22:20:15.0452 0x0ad0 intelide - ok

22:20:15.0468 0x0ad0 [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys

22:20:15.0483 0x0ad0 intelpep - ok

22:20:15.0499 0x0ad0 [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys

22:20:15.0499 0x0ad0 intelppm - ok

22:20:15.0530 0x0ad0 [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

22:20:15.0546 0x0ad0 IpFilterDriver - ok

22:20:15.0640 0x0ad0 [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll

22:20:15.0671 0x0ad0 iphlpsvc - ok

22:20:15.0718 0x0ad0 [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys

22:20:15.0718 0x0ad0 IPMIDRV - ok

22:20:15.0765 0x0ad0 [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys

22:20:15.0780 0x0ad0 IPNAT - ok

22:20:15.0858 0x0ad0 [ 4EFFC8FF6D349E971E94B1C670C0C66A, E92DA19CE9725BB4CC34DF94873C6B441AE61679A8C615780E1A1E9404C8FA26 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe

22:20:15.0874 0x0ad0 iPod Service - ok

22:20:15.0890 0x0ad0 [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys

22:20:15.0890 0x0ad0 IRENUM - ok

22:20:15.0921 0x0ad0 [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys

22:20:15.0921 0x0ad0 isapnp - ok

22:20:15.0968 0x0ad0 [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys

22:20:15.0968 0x0ad0 iScsiPrt - ok

22:20:15.0983 0x0ad0 [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys

22:20:15.0983 0x0ad0 kbdclass - ok

22:20:16.0015 0x0ad0 [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys

22:20:16.0015 0x0ad0 kbdhid - ok

22:20:16.0030 0x0ad0 [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys

22:20:16.0062 0x0ad0 kdnic - ok

22:20:16.0093 0x0ad0 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso C:\WINDOWS\system32\lsass.exe

22:20:16.0093 0x0ad0 KeyIso - ok

22:20:16.0108 0x0ad0 [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys

22:20:16.0124 0x0ad0 KSecDD - ok

22:20:16.0140 0x0ad0 [ F88CC88F4A6D8476F1664E805CA18CC2, 2C61EE5EEA4FD45AA3FA927CC16E34EF90BD44324EAB14198AF65C3A27617991 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys

22:20:16.0155 0x0ad0 KSecPkg - ok

22:20:16.0187 0x0ad0 [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys

22:20:16.0187 0x0ad0 ksthunk - ok

22:20:16.0249 0x0ad0 [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll

22:20:16.0296 0x0ad0 KtmRm - ok

22:20:16.0358 0x0ad0 [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer C:\WINDOWS\system32\srvsvc.dll

22:20:16.0390 0x0ad0 LanmanServer - ok

22:20:16.0437 0x0ad0 [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll

22:20:16.0452 0x0ad0 LanmanWorkstation - ok

22:20:16.0562 0x0ad0 [ F8C9AD91C1C8485B08101740C826EAF8, D40E51742FC46DD39EEA1D7BAA10D8F717672A3B3CE1C0138037774BFD49C82E ] LavasoftAdAwareService11 C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareService.exe

22:20:16.0593 0x0ad0 LavasoftAdAwareService11 - ok

22:20:16.0749 0x0ad0 [ 5E20540FEF007394ECDFDCF1C0761057, B20FDBE9B1625A1C276B19BA9107E12B317595D1AD7AF858A6BACC1DA4325EDF ] LavasoftTcpService C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.2.9.5\LavasoftTcpService.exe

22:20:16.0780 0x0ad0 LavasoftTcpService - ok

22:20:16.0843 0x0ad0 [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll

22:20:16.0874 0x0ad0 lfsvc - ok

22:20:16.0921 0x0ad0 [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys

22:20:16.0921 0x0ad0 lltdio - ok

22:20:16.0984 0x0ad0 [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll

22:20:16.0999 0x0ad0 lltdsvc - ok

22:20:17.0046 0x0ad0 [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll

22:20:17.0046 0x0ad0 lmhosts - ok

22:20:17.0093 0x0ad0 [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys

22:20:17.0109 0x0ad0 LSI_SAS - ok

22:20:17.0124 0x0ad0 [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys

22:20:17.0124 0x0ad0 LSI_SAS2 - ok

22:20:17.0140 0x0ad0 [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys

22:20:17.0156 0x0ad0 LSI_SAS3 - ok

22:20:17.0171 0x0ad0 [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys

22:20:17.0187 0x0ad0 LSI_SSS - ok

22:20:17.0265 0x0ad0 [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM C:\WINDOWS\System32\lsm.dll

22:20:17.0296 0x0ad0 LSM - ok

22:20:17.0296 0x0ad0 [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys

22:20:17.0312 0x0ad0 luafv - ok

22:20:17.0390 0x0ad0 [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys

22:20:17.0406 0x0ad0 MBAMSwissArmy - ok

22:20:17.0437 0x0ad0 [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys

22:20:17.0437 0x0ad0 megasas - ok

22:20:17.0499 0x0ad0 [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys

22:20:17.0531 0x0ad0 megasr - ok

22:20:17.0578 0x0ad0 [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys

22:20:17.0578 0x0ad0 MEIx64 - ok

22:20:17.0624 0x0ad0 [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS C:\WINDOWS\system32\mmcss.dll

22:20:17.0624 0x0ad0 MMCSS - ok

22:20:17.0687 0x0ad0 [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys

22:20:17.0687 0x0ad0 Modem - ok

22:20:17.0703 0x0ad0 [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys

22:20:17.0703 0x0ad0 monitor - ok

22:20:17.0749 0x0ad0 [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys

22:20:17.0749 0x0ad0 mouclass - ok

22:20:17.0765 0x0ad0 [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys

22:20:17.0765 0x0ad0 mouhid - ok

22:20:17.0781 0x0ad0 [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys

22:20:17.0796 0x0ad0 mountmgr - ok

22:20:17.0812 0x0ad0 [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys

22:20:17.0812 0x0ad0 mpsdrv - ok

22:20:17.0906 0x0ad0 [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll

22:20:17.0953 0x0ad0 MpsSvc - ok

22:20:17.0968 0x0ad0 [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys

22:20:17.0984 0x0ad0 MRxDAV - ok

22:20:18.0031 0x0ad0 [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

22:20:18.0046 0x0ad0 mrxsmb - ok

22:20:18.0078 0x0ad0 [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys

22:20:18.0078 0x0ad0 mrxsmb10 - ok

22:20:18.0093 0x0ad0 [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys

22:20:18.0093 0x0ad0 mrxsmb20 - ok

22:20:18.0140 0x0ad0 [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys

22:20:18.0140 0x0ad0 MsBridge - ok

22:20:18.0203 0x0ad0 [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC C:\WINDOWS\System32\msdtc.exe

22:20:18.0218 0x0ad0 MSDTC - ok

22:20:18.0250 0x0ad0 [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys

22:20:18.0250 0x0ad0 Msfs - ok

22:20:18.0265 0x0ad0 [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys

22:20:18.0265 0x0ad0 msgpiowin32 - ok

22:20:18.0281 0x0ad0 [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys

22:20:18.0281 0x0ad0 mshidkmdf - ok

22:20:18.0312 0x0ad0 [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys

22:20:18.0328 0x0ad0 mshidumdf - ok

22:20:18.0343 0x0ad0 [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys

22:20:18.0359 0x0ad0 msisadrv - ok

22:20:18.0406 0x0ad0 [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll

22:20:18.0421 0x0ad0 MSiSCSI - ok

22:20:18.0437 0x0ad0 msiserver - ok

22:20:18.0453 0x0ad0 [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys

22:20:18.0468 0x0ad0 MSKSSRV - ok

22:20:18.0484 0x0ad0 [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys

22:20:18.0500 0x0ad0 MsLldp - ok

22:20:18.0515 0x0ad0 [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys

22:20:18.0515 0x0ad0 MSPCLOCK - ok

22:20:18.0531 0x0ad0 [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys

22:20:18.0531 0x0ad0 MSPQM - ok

22:20:18.0562 0x0ad0 [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys

22:20:18.0578 0x0ad0 MsRPC - ok

22:20:18.0609 0x0ad0 [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys

22:20:18.0609 0x0ad0 mssmbios - ok

22:20:18.0625 0x0ad0 [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys

22:20:18.0625 0x0ad0 MSTEE - ok

22:20:18.0656 0x0ad0 [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys

22:20:18.0656 0x0ad0 MTConfig - ok

22:20:18.0687 0x0ad0 [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\WINDOWS\system32\Drivers\mup.sys

22:20:18.0687 0x0ad0 Mup - ok

22:20:18.0718 0x0ad0 [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys

22:20:18.0734 0x0ad0 mvumis - ok

22:20:18.0781 0x0ad0 [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent C:\WINDOWS\system32\qagentRT.dll

22:20:18.0796 0x0ad0 napagent - ok

22:20:18.0859 0x0ad0 [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys

22:20:18.0875 0x0ad0 NativeWifiP - ok

22:20:18.0921 0x0ad0 [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll

22:20:18.0921 0x0ad0 NcaSvc - ok

22:20:18.0953 0x0ad0 [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService C:\WINDOWS\System32\ncbservice.dll

22:20:18.0968 0x0ad0 NcbService - ok

22:20:18.0968 0x0ad0 [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll

22:20:18.0984 0x0ad0 NcdAutoSetup - ok

22:20:19.0046 0x0ad0 [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys

22:20:19.0093 0x0ad0 NDIS - ok

22:20:19.0109 0x0ad0 [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys

22:20:19.0109 0x0ad0 NdisCap - ok

22:20:19.0156 0x0ad0 [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys

22:20:19.0172 0x0ad0 NdisImPlatform - ok

22:20:19.0203 0x0ad0 [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys

22:20:19.0203 0x0ad0 NdisTapi - ok

22:20:19.0234 0x0ad0 [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys

22:20:19.0250 0x0ad0 Ndisuio - ok

22:20:19.0265 0x0ad0 [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys

22:20:19.0265 0x0ad0 NdisVirtualBus - ok

22:20:19.0312 0x0ad0 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys

22:20:19.0328 0x0ad0 NdisWan - ok

22:20:19.0343 0x0ad0 [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys

22:20:19.0359 0x0ad0 NdisWanLegacy - ok

22:20:19.0406 0x0ad0 [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys

22:20:19.0406 0x0ad0 NDProxy - ok

22:20:19.0453 0x0ad0 [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys

22:20:19.0453 0x0ad0 Ndu - ok

22:20:19.0484 0x0ad0 [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys

22:20:19.0484 0x0ad0 NetBIOS - ok

22:20:19.0500 0x0ad0 [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys

22:20:19.0515 0x0ad0 NetBT - ok

22:20:19.0531 0x0ad0 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon C:\WINDOWS\system32\lsass.exe

22:20:19.0547 0x0ad0 Netlogon - ok

22:20:19.0593 0x0ad0 [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman C:\WINDOWS\System32\netman.dll

22:20:19.0609 0x0ad0 Netman - ok

22:20:19.0672 0x0ad0 [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm C:\WINDOWS\System32\netprofmsvc.dll

22:20:19.0703 0x0ad0 netprofm - ok

22:20:19.0765 0x0ad0 [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

22:20:19.0781 0x0ad0 NetTcpPortSharing - ok

22:20:19.0812 0x0ad0 [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc C:\WINDOWS\system32\DRIVERS\netvsc63.sys

22:20:19.0828 0x0ad0 netvsc - ok

22:20:19.0859 0x0ad0 [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc C:\WINDOWS\System32\nlasvc.dll

22:20:19.0890 0x0ad0 NlaSvc - ok

22:20:19.0922 0x0ad0 [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys

22:20:19.0922 0x0ad0 Npfs - ok

22:20:19.0953 0x0ad0 [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys

22:20:19.0953 0x0ad0 npsvctrig - ok

22:20:20.0000 0x0ad0 [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi C:\WINDOWS\system32\nsisvc.dll

22:20:20.0000 0x0ad0 nsi - ok

22:20:20.0015 0x0ad0 [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys

22:20:20.0015 0x0ad0 nsiproxy - ok

22:20:20.0140 0x0ad0 [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys

22:20:20.0187 0x0ad0 Ntfs - ok

22:20:20.0219 0x0ad0 [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys

22:20:20.0219 0x0ad0 Null - ok

22:20:20.0265 0x0ad0 [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys

22:20:20.0281 0x0ad0 nvraid - ok

22:20:20.0312 0x0ad0 [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys

22:20:20.0328 0x0ad0 nvstor - ok

22:20:20.0359 0x0ad0 [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys

22:20:20.0359 0x0ad0 nv_agp - ok

22:20:20.0500 0x0ad0 [ 785F487A64950F3CB8E9F16253BA3B7B, 02445344BD214370A6D48B1CA04921D8EFCB13E676B5648266DD0E076C0822B6 ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

22:20:20.0531 0x0ad0 odserv - ok

22:20:20.0578 0x0ad0 [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

22:20:20.0578 0x0ad0 ose - ok

22:20:20.0640 0x0ad0 [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll

22:20:20.0672 0x0ad0 p2pimsvc - ok

22:20:20.0797 0x0ad0 [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc C:\WINDOWS\system32\p2psvc.dll

22:20:20.0844 0x0ad0 p2psvc - ok

22:20:20.0906 0x0ad0 [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\WINDOWS\System32\drivers\parport.sys

22:20:20.0937 0x0ad0 Parport - ok

22:20:20.0969 0x0ad0 [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys

22:20:20.0984 0x0ad0 partmgr - ok

22:20:21.0078 0x0ad0 [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll

22:20:21.0125 0x0ad0 PcaSvc - ok

22:20:21.0188 0x0ad0 [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys

22:20:21.0219 0x0ad0 pci - ok

22:20:21.0234 0x0ad0 [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys

22:20:21.0250 0x0ad0 pciide - ok

22:20:21.0297 0x0ad0 [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys

22:20:21.0313 0x0ad0 pcmcia - ok

22:20:21.0344 0x0ad0 [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys

22:20:21.0359 0x0ad0 pcw - ok

22:20:21.0391 0x0ad0 [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc C:\WINDOWS\system32\drivers\pdc.sys

22:20:21.0422 0x0ad0 pdc - ok

22:20:21.0578 0x0ad0 [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys

22:20:21.0625 0x0ad0 PEAUTH - ok

22:20:21.0891 0x0ad0 [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe

22:20:21.0891 0x0ad0 PerfHost - ok

22:20:21.0984 0x0ad0 [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla C:\WINDOWS\system32\pla.dll

22:20:22.0016 0x0ad0 pla - ok

22:20:22.0063 0x0ad0 [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll

22:20:22.0078 0x0ad0 PlugPlay - ok

22:20:22.0125 0x0ad0 [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll

22:20:22.0125 0x0ad0 PNRPAutoReg - ok

22:20:22.0172 0x0ad0 [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll

22:20:22.0203 0x0ad0 PNRPsvc - ok

22:20:22.0281 0x0ad0 [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll

22:20:22.0313 0x0ad0 PolicyAgent - ok

22:20:22.0344 0x0ad0 [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power C:\WINDOWS\system32\umpo.dll

22:20:22.0344 0x0ad0 Power - ok

22:20:23.0016 0x0ad0 [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll

22:20:23.0282 0x0ad0 PrintNotify - ok

22:20:23.0313 0x0ad0 [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys

22:20:23.0329 0x0ad0 Processor - ok

22:20:23.0407 0x0ad0 [ EF1F8B57323E5D3FC6A0A25F98F90DBC, F50E81151604DCD59BB647FD6767C1631AE48B5FCA6D3423C4E32535C94D6369 ] ProfSvc C:\WINDOWS\system32\profsvc.dll

22:20:23.0422 0x0ad0 ProfSvc - ok

22:20:23.0438 0x0ad0 [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys

22:20:23.0454 0x0ad0 Psched - ok

22:20:23.0469 0x0ad0 [ 3DF18A193C758BE8E610B01331C237FB, 0F8CEF540596696997B093E2952A69FABA72CF34F97DCA1B0EB0DCAF1D3311D8 ] pwdrvio C:\windows\system32\pwdrvio.sys

22:20:23.0485 0x0ad0 pwdrvio - ok

22:20:23.0485 0x0ad0 [ 1EBD98FB3B567C552C9C85AB73729AEC, B8C997D245FF146FCCD3AFA9914DCEBE83DF29E0D7BE8E046BEA7BB9FE61E66A ] pwdspio C:\windows\system32\pwdspio.sys

22:20:23.0501 0x0ad0 pwdspio - ok

22:20:23.0547 0x0ad0 [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE C:\WINDOWS\system32\qwave.dll

22:20:23.0563 0x0ad0 QWAVE - ok

22:20:23.0610 0x0ad0 [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys

22:20:23.0610 0x0ad0 QWAVEdrv - ok

22:20:23.0641 0x0ad0 [ 194ED3C117525613E701FF257882303E, F9D771B573078C6335F352812E24918CB79529BAE2262117E8E0DD4C57AA64C1 ] RadioHIDMini C:\WINDOWS\System32\drivers\RadioHIDMini.sys

22:20:23.0641 0x0ad0 RadioHIDMini - ok

22:20:23.0688 0x0ad0 [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys

22:20:23.0704 0x0ad0 RasAcd - ok

22:20:23.0751 0x0ad0 [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto C:\WINDOWS\System32\rasauto.dll

22:20:23.0766 0x0ad0 RasAuto - ok

22:20:23.0829 0x0ad0 [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan C:\WINDOWS\System32\rasmans.dll

22:20:23.0844 0x0ad0 RasMan - ok

22:20:23.0876 0x0ad0 [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys

22:20:23.0876 0x0ad0 RasPppoe - ok

22:20:23.0938 0x0ad0 [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys

22:20:23.0969 0x0ad0 rdbss - ok

22:20:24.0001 0x0ad0 [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys

22:20:24.0001 0x0ad0 rdpbus - ok

22:20:24.0032 0x0ad0 [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys

22:20:24.0048 0x0ad0 RDPDR - ok

22:20:24.0079 0x0ad0 [ 858776908AF838E3790F3261B799CDA6, 5BE4658540382D1B2F46E503CE175D74E3870FE492B8B8F37C3CFB34FF8E2DA8 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys

22:20:24.0079 0x0ad0 RdpVideoMiniport - ok

22:20:24.0110 0x0ad0 [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys

22:20:24.0126 0x0ad0 rdyboost - ok

22:20:24.0219 0x0ad0 [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys

22:20:24.0344 0x0ad0 ReFS - ok

22:20:24.0391 0x0ad0 [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll

22:20:24.0407 0x0ad0 RemoteAccess - ok

22:20:24.0454 0x0ad0 [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll

22:20:24.0469 0x0ad0 RemoteRegistry - ok

22:20:24.0501 0x0ad0 [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll

22:20:24.0516 0x0ad0 RpcEptMapper - ok

22:20:24.0548 0x0ad0 [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator C:\WINDOWS\system32\locator.exe

22:20:24.0563 0x0ad0 RpcLocator - ok

22:20:24.0626 0x0ad0 [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs C:\WINDOWS\system32\rpcss.dll

22:20:24.0657 0x0ad0 RpcSs - ok

22:20:24.0704 0x0ad0 [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys

22:20:24.0719 0x0ad0 rspndr - ok

22:20:24.0798 0x0ad0 [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys

22:20:24.0813 0x0ad0 RTL8168 - ok

22:20:24.0876 0x0ad0 [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys

22:20:24.0876 0x0ad0 s3cap - ok

22:20:24.0923 0x0ad0 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs C:\WINDOWS\system32\lsass.exe

22:20:24.0938 0x0ad0 SamSs - ok

22:20:25.0001 0x0ad0 [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys

22:20:25.0001 0x0ad0 sbp2port - ok

22:20:25.0079 0x0ad0 [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll

22:20:25.0094 0x0ad0 SCardSvr - ok

22:20:25.0110 0x0ad0 [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll

22:20:25.0110 0x0ad0 ScDeviceEnum - ok

22:20:25.0141 0x0ad0 [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys

22:20:25.0157 0x0ad0 scfilter - ok

22:20:25.0266 0x0ad0 [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule C:\WINDOWS\system32\schedsvc.dll

22:20:25.0313 0x0ad0 Schedule - ok

22:20:25.0376 0x0ad0 [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll

22:20:25.0376 0x0ad0 SCPolicySvc - ok

22:20:25.0423 0x0ad0 [ FDEC5799BA499D18AFA3A540538866E7, 551EE0945FE4EC213FFF623E524500B57531EFEA2D76FA7ED1D2D605E7E2168F ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys

22:20:25.0438 0x0ad0 sdbus - ok

22:20:25.0626 0x0ad0 [ D777F1417D9BB9F66CD9D9C3B61F730F, 0CBD830EB9D2B0F1946131F20907793B2D68A3BCEEC3EA5416972149F73DC815 ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe

22:20:25.0673 0x0ad0 SDScannerService - ok

22:20:25.0688 0x0ad0 [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys

22:20:25.0704 0x0ad0 sdstor - ok

22:20:25.0813 0x0ad0 [ 68D6C7F99BC73B88954D844FCCBEB2A0, F746861B103C8BE8EA234B9FCFBBDD2412C79FB65F2F1E0F5E6EBC0B34905FF1 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe

22:20:25.0891 0x0ad0 SDUpdateService - ok

22:20:25.0907 0x0ad0 [ 9B9B368A8FF5CAF91D7A333CF62CD2CC, A4AE7FFBBAF983BFDE15B521ED162CBC4E6FC85BCDB200C75D45878B3FFDFA68 ] SDWSCService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe

22:20:25.0923 0x0ad0 SDWSCService - ok

22:20:26.0016 0x0ad0 [ 85D5B8846A43F06674C19BD94A1C3F78, C9614EE24BE874789E9AB0EF7DF4F693A79E2E0AB2C936C9F69D34166E0BE96C ] SearchProtectionService C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe

22:20:26.0016 0x0ad0 SearchProtectionService - ok

22:20:26.0064 0x0ad0 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys

22:20:26.0064 0x0ad0 secdrv - ok

22:20:26.0126 0x0ad0 [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon C:\WINDOWS\system32\seclogon.dll

22:20:26.0126 0x0ad0 seclogon - ok

22:20:26.0158 0x0ad0 [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS C:\WINDOWS\System32\sens.dll

22:20:26.0173 0x0ad0 SENS - ok

22:20:26.0204 0x0ad0 [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll

22:20:26.0220 0x0ad0 SensrSvc - ok

22:20:26.0267 0x0ad0 [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys

22:20:26.0267 0x0ad0 SerCx - ok

22:20:26.0283 0x0ad0 [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys

22:20:26.0298 0x0ad0 SerCx2 - ok

22:20:26.0329 0x0ad0 [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys

22:20:26.0329 0x0ad0 Serenum - ok

22:20:26.0345 0x0ad0 [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\WINDOWS\System32\drivers\serial.sys

22:20:26.0361 0x0ad0 Serial - ok

22:20:26.0392 0x0ad0 [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys

22:20:26.0392 0x0ad0 sermouse - ok

22:20:26.0454 0x0ad0 [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv C:\WINDOWS\system32\sessenv.dll

22:20:26.0470 0x0ad0 SessionEnv - ok

22:20:26.0470 0x0ad0 [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys

22:20:26.0470 0x0ad0 sfloppy - ok

22:20:26.0533 0x0ad0 [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll

22:20:26.0548 0x0ad0 SharedAccess - ok

22:20:26.0658 0x0ad0 [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll

22:20:26.0704 0x0ad0 ShellHWDetection - ok

22:20:26.0720 0x0ad0 [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys

22:20:26.0720 0x0ad0 SiSRaid2 - ok

22:20:26.0751 0x0ad0 [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys

22:20:26.0751 0x0ad0 SiSRaid4 - ok

22:20:26.0798 0x0ad0 [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost C:\WINDOWS\System32\smphost.dll

22:20:26.0814 0x0ad0 smphost - ok

22:20:26.0876 0x0ad0 [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe

22:20:26.0876 0x0ad0 SNMPTRAP - ok

22:20:26.0939 0x0ad0 [ 240C5C3793206725AA05665851E8C214, 96ADFB85EB1623EB00C251C1C6A1F441A1795F0EBFD10B17DD1CA58E3AE8A90D ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys

22:20:27.0001 0x0ad0 spaceport - ok

22:20:27.0017 0x0ad0 [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys

22:20:27.0033 0x0ad0 SpbCx - ok

22:20:27.0111 0x0ad0 [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler C:\WINDOWS\System32\spoolsv.exe

22:20:27.0142 0x0ad0 Spooler - ok

22:20:27.0423 0x0ad0 [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\WINDOWS\system32\sppsvc.exe

22:20:27.0658 0x0ad0 sppsvc - ok

22:20:27.0705 0x0ad0 [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys

22:20:27.0705 0x0ad0 srv - ok

22:20:27.0783 0x0ad0 [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys

22:20:27.0830 0x0ad0 srv2 - ok

22:20:27.0830 0x0ad0 [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys

22:20:27.0845 0x0ad0 srvnet - ok

22:20:27.0908 0x0ad0 [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll

22:20:27.0923 0x0ad0 SSDPSRV - ok

22:20:27.0986 0x0ad0 [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll

22:20:28.0001 0x0ad0 SstpSvc - ok

22:20:28.0033 0x0ad0 [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys

22:20:28.0048 0x0ad0 stexstor - ok

22:20:28.0127 0x0ad0 [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc C:\WINDOWS\System32\wiaservc.dll

22:20:28.0158 0x0ad0 stisvc - ok

22:20:28.0174 0x0ad0 [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys

22:20:28.0174 0x0ad0 storahci - ok

22:20:28.0205 0x0ad0 [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt C:\WINDOWS\system32\DRIVERS\vmstorfl.sys

22:20:28.0205 0x0ad0 storflt - ok

22:20:28.0236 0x0ad0 [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys

22:20:28.0252 0x0ad0 stornvme - ok

22:20:28.0299 0x0ad0 [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc C:\WINDOWS\system32\storsvc.dll

22:20:28.0314 0x0ad0 StorSvc - ok

22:20:28.0346 0x0ad0 [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys

22:20:28.0377 0x0ad0 storvsc - ok

22:20:28.0408 0x0ad0 [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc C:\WINDOWS\system32\svsvc.dll

22:20:28.0408 0x0ad0 svsvc - ok

22:20:28.0439 0x0ad0 [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum C:\WINDOWS\System32\drivers\swenum.sys

22:20:28.0439 0x0ad0 swenum - ok

22:20:28.0502 0x0ad0 [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv C:\WINDOWS\System32\swprv.dll

22:20:28.0533 0x0ad0 swprv - ok

22:20:28.0627 0x0ad0 SWUpdateService - ok

22:20:28.0721 0x0ad0 [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain C:\WINDOWS\system32\sysmain.dll

22:20:28.0767 0x0ad0 SysMain - ok

22:20:28.0799 0x0ad0 [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll

22:20:28.0814 0x0ad0 SystemEventsBroker - ok

22:20:28.0877 0x0ad0 [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll

22:20:28.0892 0x0ad0 TabletInputService - ok

22:20:29.0142 0x0ad0 [ 9C2BA01C621448018DA14AF27F7BD48B, 8AC92774B4CFFCCEA32B3BAA4004AF4484E1AFC09BAFDD47313C4AFB359A2BF6 ] TabletServiceWacom C:\windows\system32\Wacom_Tablet.exe

22:20:29.0377 0x0ad0 TabletServiceWacom - ok

22:20:29.0455 0x0ad0 [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll

22:20:29.0486 0x0ad0 TapiSrv - ok

22:20:29.0642 0x0ad0 [ 87F3713E620F62D243A82B3CB66CBDDE, 5C14F43BC5114DB664490DEE5024555149766C2F2430A910AA9DA2210D968063 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys

22:20:29.0736 0x0ad0 Tcpip - ok

22:20:29.0799 0x0ad0 [ 87F3713E620F62D243A82B3CB66CBDDE, 5C14F43BC5114DB664490DEE5024555149766C2F2430A910AA9DA2210D968063 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys

22:20:29.0861 0x0ad0 TCPIP6 - ok

22:20:29.0893 0x0ad0 [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys

22:20:29.0893 0x0ad0 tcpipreg - ok

22:20:29.0939 0x0ad0 [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys

22:20:29.0939 0x0ad0 tdx - ok

22:20:29.0955 0x0ad0 [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys

22:20:29.0955 0x0ad0 terminpt - ok

22:20:30.0049 0x0ad0 [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService C:\WINDOWS\System32\termsrv.dll

22:20:30.0096 0x0ad0 TermService - ok

22:20:30.0111 0x0ad0 [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes C:\WINDOWS\system32\themeservice.dll

22:20:30.0111 0x0ad0 Themes - ok

22:20:30.0158 0x0ad0 [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER C:\WINDOWS\system32\mmcss.dll

22:20:30.0158 0x0ad0 THREADORDER - ok

22:20:30.0205 0x0ad0 [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll

22:20:30.0221 0x0ad0 TimeBroker - ok

22:20:30.0283 0x0ad0 [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM C:\WINDOWS\system32\drivers\tpm.sys

22:20:30.0299 0x0ad0 TPM - ok

22:20:30.0330 0x0ad0 [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks C:\WINDOWS\System32\trkwks.dll

22:20:30.0346 0x0ad0 TrkWks - ok

22:20:30.0408 0x0ad0 [ 325A512F98BEB97B1FFBE88927B8090D, 2A0C10516E3506D63290345DFAC98D5A623584767E034EBF652B9DBE6CF70547 ] Trufos C:\WINDOWS\system32\DRIVERS\Trufos.sys

22:20:30.0439 0x0ad0 Trufos - ok

22:20:30.0533 0x0ad0 [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe

22:20:30.0549 0x0ad0 TrustedInstaller - ok

22:20:30.0580 0x0ad0 [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys

22:20:30.0596 0x0ad0 TsUsbFlt - ok

22:20:30.0643 0x0ad0 [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys

22:20:30.0658 0x0ad0 TsUsbGD - ok

22:20:30.0705 0x0ad0 [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys

22:20:30.0721 0x0ad0 tunnel - ok

22:20:30.0736 0x0ad0 [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys

22:20:30.0736 0x0ad0 uagp35 - ok

22:20:30.0768 0x0ad0 [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys

22:20:30.0783 0x0ad0 UASPStor - ok

22:20:30.0799 0x0ad0 [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys

22:20:30.0814 0x0ad0 UCX01000 - ok

22:20:30.0861 0x0ad0 [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys

22:20:30.0877 0x0ad0 udfs - ok

22:20:30.0908 0x0ad0 [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys

22:20:30.0908 0x0ad0 UEFI - ok

22:20:30.0971 0x0ad0 [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe

22:20:30.0971 0x0ad0 UI0Detect - ok

22:20:31.0018 0x0ad0 [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys

22:20:31.0018 0x0ad0 uliagpkx - ok

22:20:31.0049 0x0ad0 [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys

22:20:31.0049 0x0ad0 umbus - ok

22:20:31.0096 0x0ad0 [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys

22:20:31.0096 0x0ad0 UmPass - ok

22:20:31.0159 0x0ad0 [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService C:\WINDOWS\System32\umrdp.dll

22:20:31.0174 0x0ad0 UmRdpService - ok

22:20:31.0237 0x0ad0 [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost C:\WINDOWS\System32\upnphost.dll

22:20:31.0252 0x0ad0 upnphost - ok

22:20:31.0284 0x0ad0 [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys

22:20:31.0299 0x0ad0 usbccgp - ok

22:20:31.0362 0x0ad0 [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys

22:20:31.0362 0x0ad0 usbcir - ok

22:20:31.0393 0x0ad0 [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys

22:20:31.0409 0x0ad0 usbehci - ok

22:20:31.0471 0x0ad0 [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys

22:20:31.0502 0x0ad0 usbhub - ok

22:20:31.0534 0x0ad0 [ 65392F3F3F65E4C6CC82A0F4F8A0B051, C11B662A28D95820717DFFC6B76DBB755E4876009A2342E5E3992DE32D6BFF61 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys

22:20:31.0565 0x0ad0 USBHUB3 - ok

22:20:31.0612 0x0ad0 [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys

22:20:31.0690 0x0ad0 usbohci - ok

22:20:31.0737 0x0ad0 [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys

22:20:31.0737 0x0ad0 usbprint - ok

22:20:31.0768 0x0ad0 [ EA23453240137F6773174E0D93F61A69, 579AD09FB428C2BB8B4055128620A7AADD1B606C1EA44B87A01D69A84232A5D9 ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS

22:20:31.0784 0x0ad0 USBSTOR - ok

22:20:31.0799 0x0ad0 [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys

22:20:31.0815 0x0ad0 usbuhci - ok

22:20:31.0846 0x0ad0 [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo C:\WINDOWS\System32\Drivers\usbvideo.sys

22:20:31.0862 0x0ad0 usbvideo - ok

22:20:31.0893 0x0ad0 [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS

22:20:31.0909 0x0ad0 USBXHCI - ok

22:20:31.0924 0x0ad0 [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc C:\WINDOWS\system32\lsass.exe

22:20:31.0940 0x0ad0 VaultSvc - ok

22:20:31.0956 0x0ad0 [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys

22:20:31.0971 0x0ad0 vdrvroot - ok

22:20:32.0081 0x0ad0 [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds C:\WINDOWS\System32\vds.exe

22:20:32.0127 0x0ad0 vds - ok

22:20:32.0159 0x0ad0 [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys

22:20:32.0159 0x0ad0 VerifierExt - ok

22:20:32.0190 0x0ad0 [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys

22:20:32.0206 0x0ad0 vhdmp - ok

22:20:32.0221 0x0ad0 [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys

22:20:32.0221 0x0ad0 viaide - ok

22:20:32.0252 0x0ad0 [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys

22:20:32.0252 0x0ad0 vmbus - ok

22:20:32.0268 0x0ad0 [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys

22:20:32.0268 0x0ad0 VMBusHID - ok

22:20:32.0331 0x0ad0 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll

22:20:32.0346 0x0ad0 vmicguestinterface - ok

22:20:32.0362 0x0ad0 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll

22:20:32.0377 0x0ad0 vmicheartbeat - ok

22:20:32.0393 0x0ad0 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll

22:20:32.0409 0x0ad0 vmickvpexchange - ok

22:20:32.0424 0x0ad0 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll

22:20:32.0440 0x0ad0 vmicrdv - ok

22:20:32.0456 0x0ad0 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll

22:20:32.0471 0x0ad0 vmicshutdown - ok

22:20:32.0487 0x0ad0 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll

22:20:32.0502 0x0ad0 vmictimesync - ok

22:20:32.0518 0x0ad0 [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss C:\WINDOWS\System32\ICSvc.dll

22:20:32.0534 0x0ad0 vmicvss - ok

22:20:32.0549 0x0ad0 [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys

22:20:32.0549 0x0ad0 volmgr - ok

22:20:32.0581 0x0ad0 [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys

22:20:32.0596 0x0ad0 volmgrx - ok

22:20:32.0612 0x0ad0 [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys

22:20:32.0612 0x0ad0 volsnap - ok

22:20:32.0659 0x0ad0 [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci C:\WINDOWS\System32\drivers\vpci.sys

22:20:32.0674 0x0ad0 vpci - ok

22:20:32.0721 0x0ad0 [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys

22:20:32.0721 0x0ad0 vsmraid - ok

22:20:32.0846 0x0ad0 [ E369C59F2C0852DDD090C07E0DDE0051, 4FAC94458EAAEED4F84A86FBAB8FBB332D0AF85BD528E63C0C058A2DA8E3011D ] VSS C:\WINDOWS\system32\vssvc.exe

22:20:32.0893 0x0ad0 VSS - ok

22:20:32.0924 0x0ad0 [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys

22:20:32.0924 0x0ad0 VSTXRAID - ok

22:20:32.0987 0x0ad0 [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys

22:20:33.0049 0x0ad0 vwifibus - ok

22:20:33.0096 0x0ad0 [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys

22:20:33.0128 0x0ad0 vwififlt - ok

22:20:33.0159 0x0ad0 [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys

22:20:33.0190 0x0ad0 vwifimp - ok

22:20:33.0253 0x0ad0 [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time C:\WINDOWS\system32\w32time.dll

22:20:33.0284 0x0ad0 W32Time - ok

22:20:33.0315 0x0ad0 [ FE75777289278A4941FE6139E82B3BD9, 4B0F3117C7D905240DB54EEE376404757258051CC5F8F312CAF748E1811368C6 ] wacmoumonitor C:\WINDOWS\System32\drivers\wacmoumonitor.sys

22:20:33.0346 0x0ad0 wacmoumonitor - ok

22:20:33.0409 0x0ad0 [ E04D43C7D1641E95D35CAE6086C7E350, BF08ED680EC835D70C522B91560B8987F206793E8E2987117C1D7B77DEFF8556 ] wacommousefilter C:\WINDOWS\System32\drivers\wacommousefilter.sys

22:20:33.0409 0x0ad0 wacommousefilter - ok

22:20:33.0425 0x0ad0 [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys

22:20:33.0440 0x0ad0 WacomPen - ok

22:20:33.0440 0x0ad0 [ EC1CEB237E365330C1FCFC4876AA0AC0, 9BFF9062AC5E4B9D0C6502D8DE7E59B887903ED29F26157A5F82966932F1EBD0 ] wacomvhid C:\WINDOWS\System32\drivers\wacomvhid.sys

22:20:33.0456 0x0ad0 wacomvhid - ok

22:20:33.0596 0x0ad0 [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine C:\WINDOWS\system32\wbengine.exe

22:20:33.0643 0x0ad0 wbengine - ok

22:20:33.0706 0x0ad0 [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll

22:20:33.0753 0x0ad0 WbioSrvc - ok

22:20:33.0784 0x0ad0 [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll

22:20:33.0800 0x0ad0 Wcmsvc - ok

22:20:33.0831 0x0ad0 [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll

22:20:33.0846 0x0ad0 wcncsvc - ok

22:20:33.0862 0x0ad0 [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll

22:20:33.0878 0x0ad0 WcsPlugInService - ok

22:20:33.0940 0x0ad0 [ F5D4FA3E1F4879C361FFF3855259D2C2, 48C60FE4AAB011E2250157506FF0624031BFA346F8F2F8C6DFDF6F3CAA4F3F42 ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys

22:20:33.0987 0x0ad0 WdBoot - ok

22:20:34.0081 0x0ad0 [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys

22:20:34.0112 0x0ad0 Wdf01000 - ok

22:20:34.0128 0x0ad0 [ 019CC610AD95FF47EAD7C08B7A683B96, BB9D42F8ED90ECA2E7B8C906E06A1EA859FAD9BD1B3492BB1E28C0D00004812A ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys

22:20:34.0143 0x0ad0 WdFilter - ok

22:20:34.0143 0x0ad0 [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll

22:20:34.0143 0x0ad0 WdiServiceHost - ok

22:20:34.0159 0x0ad0 [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll

22:20:34.0159 0x0ad0 WdiSystemHost - ok

22:20:34.0190 0x0ad0 [ 6CC1BB8F6851A262E2E824F0E92D5EEF, 45A88A984179BBA38C1F4434C4D6C2823C1FE6AFBE8CB0F656DAE0092D1D5611 ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys

22:20:34.0190 0x0ad0 WdNisDrv - ok

22:20:34.0221 0x0ad0 WdNisSvc - ok

22:20:34.0268 0x0ad0 [ 91B18D7A1702ED589E67C6C81052B955, 5D1DA8B86106A28E50BBCCB36527CC130D41201F5BE1D3DC5F1D6F7ECCF807BA ] WebClient C:\WINDOWS\System32\webclnt.dll

22:20:34.0300 0x0ad0 WebClient - ok

22:20:34.0362 0x0ad0 [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc C:\WINDOWS\system32\wecsvc.dll

22:20:34.0378 0x0ad0 Wecsvc - ok

22:20:34.0409 0x0ad0 [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll

22:20:34.0409 0x0ad0 WEPHOSTSVC - ok

22:20:34.0440 0x0ad0 [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll

22:20:34.0456 0x0ad0 wercplsupport - ok

22:20:34.0471 0x0ad0 [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc C:\WINDOWS\System32\WerSvc.dll

22:20:34.0487 0x0ad0 WerSvc - ok

22:20:34.0518 0x0ad0 [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys

22:20:34.0518 0x0ad0 WFPLWFS - ok

22:20:34.0550 0x0ad0 [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll

22:20:34.0565 0x0ad0 WiaRpc - ok

22:20:34.0612 0x0ad0 [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys

22:20:34.0612 0x0ad0 WIMMount - ok

22:20:34.0628 0x0ad0 WinDefend - ok

22:20:34.0737 0x0ad0 [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll

22:20:34.0768 0x0ad0 WinHttpAutoProxySvc - ok

22:20:34.0846 0x0ad0 [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll

22:20:34.0862 0x0ad0 Winmgmt - ok

22:20:35.0034 0x0ad0 [ C8D6344BDE2691A196E61C0D3372EAB7, FF8EB79D8A7E298343C22B83276FF68293D08A9DA438BB22600BEFC4CA93A91D ] WinRM C:\WINDOWS\system32\WsmSvc.dll

22:20:35.0112 0x0ad0 WinRM - ok

22:20:35.0253 0x0ad0 [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] WlanSvc C:\WINDOWS\System32\wlansvc.dll

22:20:35.0284 0x0ad0 WlanSvc - ok

22:20:35.0378 0x0ad0 [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll

22:20:35.0425 0x0ad0 wlidsvc - ok

22:20:35.0456 0x0ad0 [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys

22:20:35.0456 0x0ad0 WmiAcpi - ok

22:20:35.0519 0x0ad0 [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe

22:20:35.0534 0x0ad0 wmiApSrv - ok

22:20:35.0566 0x0ad0 WMPNetworkSvc - ok

22:20:35.0597 0x0ad0 [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys

22:20:35.0597 0x0ad0 Wof - ok

22:20:35.0737 0x0ad0 [ 61BF52E9FFAB27A0B6D621BE26088373, 81291D52C381360E69D51E7DEB05CFAC651A7E9EF781CA23062C0583D0C94708 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll

22:20:35.0784 0x0ad0 workfolderssvc - ok

22:20:35.0831 0x0ad0 [ 182561A14F2E93E81E66FE3700D17A5A, FB9A06058A8BCCEDCDC5BF8899D9B2FBA5752C262C5FC6D2B8338884F3303D12 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys

22:20:35.0847 0x0ad0 wpcfltr - ok

22:20:35.0878 0x0ad0 [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll

22:20:35.0878 0x0ad0 WPCSvc - ok

22:20:35.0909 0x0ad0 [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll

22:20:35.0909 0x0ad0 WPDBusEnum - ok

22:20:35.0940 0x0ad0 [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys

22:20:35.0940 0x0ad0 WpdUpFltr - ok

22:20:35.0956 0x0ad0 [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys

22:20:35.0972 0x0ad0 ws2ifsl - ok

22:20:36.0019 0x0ad0 [ 9654DE19551093CD73874281E1573C94, 5E3513EC0CB180D90904BE8970AB64A4434279E8C467AE2CF693254E47B1D11E ] wscsvc C:\WINDOWS\System32\wscsvc.dll

22:20:36.0034 0x0ad0 wscsvc - ok

22:20:36.0050 0x0ad0 WSearch - ok

22:20:36.0237 0x0ad0 [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService C:\WINDOWS\System32\WSService.dll

22:20:36.0331 0x0ad0 WSService - ok

22:20:36.0894 0x0ad0 [ 9FDD8CD31F3FBA88F050318F32D640E2, BBCAFDA420E11D43BAD5D87D47607F4ADF0D817C1BF86D6389582B56EDD7C246 ] wuauserv C:\WINDOWS\system32\wuaueng.dll

22:20:37.0050 0x0ad0 wuauserv - ok

22:20:37.0097 0x0ad0 [ D537815E450A149752C15868392AD1F3, 8788CE493349299DB36E409C8CC3C6EA08301FA492C95D9D556E00BC13A05F13 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys

22:20:37.0097 0x0ad0 WudfPf - ok

22:20:37.0144 0x0ad0 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys

22:20:37.0144 0x0ad0 WUDFRd - ok

22:20:37.0160 0x0ad0 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFSensorLP C:\WINDOWS\system32\DRIVERS\WUDFRd.sys

22:20:37.0160 0x0ad0 WUDFSensorLP - ok

22:20:37.0191 0x0ad0 [ 9CDC2059A23E3C9B57696178508777E7, B680A2E2EDA5C8C6A547E7D9B2F2F8E6407C3EA0A01B82A4B88D48A27913A597 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll

22:20:37.0191 0x0ad0 wudfsvc - ok

22:20:37.0207 0x0ad0 [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys

22:20:37.0207 0x0ad0 WUDFWpdFs - ok

22:20:37.0285 0x0ad0 [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc C:\WINDOWS\System32\wwansvc.dll

22:20:37.0316 0x0ad0 WwanSvc - ok

22:20:37.0332 0x0ad0 ================ Scan global ===============================

22:20:37.0410 0x0ad0 [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll

22:20:37.0457 0x0ad0 [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\WINDOWS\system32\winsrv.dll

22:20:37.0519 0x0ad0 [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll

22:20:37.0566 0x0ad0 [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\WINDOWS\system32\services.exe

22:20:37.0597 0x0ad0 [ Global ] - ok

22:20:37.0597 0x0ad0 ================ Scan MBR ==================================

22:20:37.0628 0x0ad0 [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0

22:20:37.0644 0x0ad0 \Device\Harddisk0\DR0 - ok

22:20:37.0644 0x0ad0 ================ Scan VBR ==================================

22:20:37.0660 0x0ad0 [ D5E6E1A2F7D4448270906632B4F72894 ] \Device\Harddisk0\DR0\Partition1

22:20:37.0660 0x0ad0 \Device\Harddisk0\DR0\Partition1 - ok

22:20:37.0691 0x0ad0 [ A58CC1EFF68BC26357BCB12E63DC6501 ] \Device\Harddisk0\DR0\Partition2

22:20:37.0707 0x0ad0 \Device\Harddisk0\DR0\Partition2 - ok

22:20:37.0722 0x0ad0 [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3

22:20:37.0722 0x0ad0 \Device\Harddisk0\DR0\Partition3 - ok

22:20:37.0738 0x0ad0 [ CDFA641BD2FAD9405261D1A27D6A8C34 ] \Device\Harddisk0\DR0\Partition4

22:20:37.0769 0x0ad0 \Device\Harddisk0\DR0\Partition4 - ok

22:20:37.0800 0x0ad0 [ 8B110C62FBA1DD7FB4B67196CA4DF498 ] \Device\Harddisk0\DR0\Partition5

22:20:37.0816 0x0ad0 \Device\Harddisk0\DR0\Partition5 - ok

22:20:37.0894 0x0ad0 [ 8631F52641A8725696E56E24ACF9EE8E ] \Device\Harddisk0\DR0\Partition6

22:20:37.0910 0x0ad0 \Device\Harddisk0\DR0\Partition6 - ok

22:20:37.0972 0x0ad0 [ BBCDFC5CA257A1334F800FDAC062FA04 ] \Device\Harddisk0\DR0\Partition7

22:20:37.0972 0x0ad0 \Device\Harddisk0\DR0\Partition7 - ok

22:20:37.0972 0x0ad0 ================ Scan generic autorun ======================

22:20:38.0035 0x0ad0 [ 28062B17191C9450BF6C6C3EF8C7EB27, 4859C5708DFD119021F7B7FFB38F0B316675E1E4D5D51A10D4265F712CF8CDB6 ] C:\WINDOWS\system32\igfxtray.exe

22:20:38.0050 0x0ad0 IgfxTray - ok

22:20:38.0097 0x0ad0 [ 28FC280487F0BAAE5E8119257C4EEF8C, F574BC70B79B77912FC683B3EB0BE6929E7758284ED5B47008E18B0E4A4A09FD ] C:\WINDOWS\system32\hkcmd.exe

22:20:38.0113 0x0ad0 HotKeysCmds - ok

22:20:38.0160 0x0ad0 [ F29BEA821C753E4F00177690F70CDC13, 0EDB40F4A4C23553C0288E6E3AD65E7B523F6764C87C6C36C3ECB0C1940C5176 ] C:\WINDOWS\system32\igfxpers.exe

22:20:38.0175 0x0ad0 Persistence - ok

22:20:38.0285 0x0ad0 [ FBD06A45DB2D543EFD932768029EC5F2, 19A9CE22FFAC083F202B97F467B08767EC7B3E6591FDDF8A7CC15BCA695DF6DF ] C:\Program Files (x86)\Adobe\Acrobat 7.0\Distillr\Acrotray.exe

22:20:38.0316 0x0ad0 Acrobat Assistant 7.0 - ok

22:20:38.0457 0x0ad0 [ 0186D64D81C8D642CEB304FF3DE8D8FE, 66EBA78F969EFBC898A39C29DD6343A434392BF9AF7BD8A188B8D4FBA323F583 ] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe

22:20:38.0503 0x0ad0 Web Companion - ok

22:20:38.0503 0x0ad0 Waiting for KSN requests completion. In queue: 126

22:20:39.0519 0x0ad0 Waiting for KSN requests completion. In queue: 126

22:20:40.0520 0x0ad0 Waiting for KSN requests completion. In queue: 126

22:20:41.0613 0x0ad0 AV detected via SS2: AVG AntiVirus 2015, C:\Program Files (x86)\AVG\AVG2015\avgwsc.exe ( 15.0.0.5557 ), 0x41000 ( enabled : updated )

22:20:41.0645 0x0ad0 AV detected via SS2: Ad-Aware Antivirus, C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareSecurityCenter.exe ( 11.4.6792.0 ), 0x41000 ( enabled : updated )

22:20:41.0692 0x0ad0 AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.5.218.0 ), 0x60100 ( disabled : updated )

22:20:41.0692 0x0ad0 FW detected via SS2: Ad-Aware Firewall, C:\Program Files\Lavasoft\Ad-Aware Antivirus\Ad-Aware Antivirus\11.4.6792.0\AdAwareSecurityCenter.exe ( 11.4.6792.0 ), 0x40010 ( disabled )

22:20:41.0770 0x0ad0 Win FW state via NFP2: enabled

22:20:44.0301 0x0ad0 ============================================================

22:20:44.0301 0x0ad0 Scan finished

22:20:44.0301 0x0ad0 ============================================================

22:20:44.0317 0x0a9c Detected object count: 0

22:20:44.0317 0x0a9c Actual detected object count: 0



#5 dharmastudios

dharmastudios
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:13 AM

Posted 11 November 2014 - 11:36 PM

Part 2 of 3 - ADWCleaner removed a lot of crap:

 

# AdwCleaner v4.101 - Report created 11/11/2014 at 22:29:37
# Updated 09/11/2014 by Xplode
# Database : 2014-11-11.2 [Live]
# Operating System : Windows 8.1  (64 bits)
# Username : Reagan - SERENITY
# Running from : C:\Users\Reagan\Downloads\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Trusted Publisher
Folder Deleted : C:\ProgramData\8277931e44e13d64
Folder Deleted : C:\Program Files (x86)\DeltaFix
Folder Deleted : C:\Users\Administrator\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Administrator\AppData\Local\torch
Folder Deleted : C:\Users\Guest\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Guest\AppData\Local\torch
Folder Deleted : C:\Users\Reagan\AppData\Local\Chromatic Browser
Folder Deleted : C:\Users\Reagan\AppData\Local\torch
Folder Deleted : C:\Users\Reagan\Documents\Updater
Folder Deleted : C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghhfbpoccgpjajphbfcdbbnihgoncnpi
Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghhfbpoccgpjajphbfcdbbnihgoncnpi
Folder Deleted : C:\Users\Reagan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghhfbpoccgpjajphbfcdbbnihgoncnpi
Folder Deleted : C:\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ghhfbpoccgpjajphbfcdbbnihgoncnpi
Folder Deleted : C:\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ghhfbpoccgpjajphbfcdbbnihgoncnpi
Folder Deleted : C:\Users\Reagan\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\ghhfbpoccgpjajphbfcdbbnihgoncnpi

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{24a6c436-49e1-4492-84c8-57c9027cf0cd}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{24a6c436-49e1-4492-84c8-57c9027cf0cd}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{24a6c436-49e1-4492-84c8-57c9027cf0cd}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{2D9DB233-DC4B-4677-946C-5FA5ABCF506B}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C1F5E799-B218-4C32-B189-3C389BA140BB}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{F60C9408-3110-4C98-A139-ABE1EE1111DD}
Key Deleted : HKCU\Software\RegisteredApplicationsEx
Key Deleted : HKCU\Software\AppDataLow\Software\adawarebp

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17344

-\\ Google Chrome v

[C:\Users\Reagan\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Reagan\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\Reagan\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.searc-hall.info/?l=1&q={searchTerms}&pid=20495&r=2014/11/04&hid=2527916053271855330&lg=EN&cc=US&unqvl=65
[C:\Users\Reagan\AppData\Local\Google\Chrome\User Data\Default\preferences] - Deleted [Extension] : ghhfbpoccgpjajphbfcdbbnihgoncnpi

-\\ Comodo Dragon v

[C:\Users\Reagan\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\Reagan\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\Reagan\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://websearch.searc-hall.info/?l=1&q={searchTerms}&pid=20495&r=2014/11/04&hid=2527916053271855330&lg=EN&cc=US&unqvl=65

*************************

AdwCleaner[R0].txt - [4779 octets] - [11/11/2014 22:25:44]
AdwCleaner[S0].txt - [5212 octets] - [11/11/2014 22:29:37]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [5272 octets] ##########



#6 dharmastudios

dharmastudios
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:13 AM

Posted 11 November 2014 - 11:46 PM

part 3 of 3:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.3.7 (11.08.2014:1)
OS: Windows 8.1 x64
Ran by Reagan on Tue 11/11/2014 at 22:41:53.54
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Default_Page_URL

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 11/11/2014 at 22:44:53.63
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#7 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:13 PM

Posted 11 November 2014 - 11:53 PM

Yes it seems AdwCleaner did find some stuff. Is your computer running better now?
The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw

#8 dharmastudios

dharmastudios
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:05:13 AM

Posted 12 November 2014 - 01:43 AM

AVG is still flagging one threat - but it's in the Web Companion part of AdAware. I've just uninstalled it and removed the directory, and am now rerunning all the scans to make sure.



#9 Budapest

Budapest

    Bleepin' Cynic


  • Moderator
  • 23,579 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:09:13 PM

Posted 12 November 2014 - 01:50 AM

mvps.org is no longer recommending Spybot S&D (or Ad-Aware) due to poor testing results. See here - (scroll down and read under Freeware Antispyware Products). Further, most people don't understand how to use Spybot's TeaTimer and that feature can cause more problems than it's worth. TeaTimer monitors changes to certain critical keys in Windows registry but does not indicate if the change is normal or a modification made by a malware infection. The user must have an understanding of the registry and how TeaTimer works in order to make informed decisions to allow or deny the detected changes. If you don't have understanding how a particular security tool works, then you probably should not be using it. Additionally, TeaTimer may conflict with other security tools which do a much better job of protecting your computer and in some cases it will even prevent disinfection of malware by those tools.

Note: To be fair, there are now new versions of Spybot such as Spybot 2 + AV (Home & Pro) and Spybot 2 Free but I have not used them, nor read any reviews as to how well they perform.

More effective alternatives are Malwarebytes Anti-Malware and SUPERAntiSpyware Free.

Thanks to Quietman7 for the above.

Edited by Budapest, 12 November 2014 - 01:51 AM.

The power of accurate observation is commonly called cynicism by those who haven't got it.

—George Bernard Shaw




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users