Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Proxy Server Keeps Turning Itself On


  • Please log in to reply
5 replies to this topic

#1 squattingdog

squattingdog

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 17 November 2014 - 11:35 AM

My daughter has a Yoga 2 Pro running Windows 8.1.  Recently, her wifi stopped working.  Suspecting a virus, I ran the already installed and running Windows Defender, and downloaded and ran Malwarebytes Anti-Malware.  Windows Defender did not find anything but Malwarebytes did, which I quarantined.  Even so, I am still unable to turn off the manual proxy server.

 

Does this sound like a virus?



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,562 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:01 PM

Posted 17 November 2014 - 01:29 PM

Hello, the malware may have changed this..

 

Please click Start > Run, type inetcpl.cpl in the runbox and press enter.
Click the Connections tab and click the LAN settings option.
Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.
Now check if the internet is working again.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 squattingdog

squattingdog
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 17 November 2014 - 01:39 PM

Every time I uncheck "Use a proxy server" and check "Automatically detect settings" and exit, the settings revert back to 'Use a proxy server".



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,562 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:01 PM

Posted 17 November 2014 - 01:56 PM

Ok , Lets do these also..

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double-click on AdwCleaner.exe to run the tool.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • After reviewing the log, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • -- Note: The contents of the AdwCleaner log file may be confusing. Unless you see a program name that you recognize and know should not be removed, don't worry about it. If you see an entry you want to keep, return to AdwCleaner before cleaning...all detected items will be listed (and checked) in each tab. Click on each one and uncheck any items you want to keep (except you cannot uncheck Chrome and Firefox preferences lines).


    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • .
    .
    .
    .
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 squattingdog

squattingdog
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 17 November 2014 - 04:13 PM

MiniToolBox result

 

MiniToolBox by Farbar  Version: 21-07-2014
Ran by Pipskate (administrator) on 17-11-2014 at 14:51:01
Running from "E:\"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
ProxyServer: http=127.0.0.1:14372;https=127.0.0.1:14372

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Intel® Wireless-N 7260 = Wi-Fi (Connected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : Hammy
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 5C-51-4F-98-21-EA
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Local Area Connection* 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 5C-51-4F-98-21-E7
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Wireless-N 7260
   Physical Address. . . . . . . . . : 5C-51-4F-98-21-E6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::8098:ce96:1d95:a8b4%3(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.142(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, November 17, 2014 10:50:01 AM
   Lease Expires . . . . . . . . . . : Tuesday, November 18, 2014 2:49:41 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 56381775
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-2C-D9-65-00-80-8A-8E-1D-DD
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:90d7:2cce:1fbf:5191:5a5c(Preferred)
   Link-local IPv6 Address . . . . . : fe80::2cce:1fbf:5191:5a5c%8(Preferred)
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 318767104
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-2C-D9-65-00-80-8A-8E-1D-DD
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.{A3A62C65-3352-4F37-9C07-25C8512F4290}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  SOO-B
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4002:c07::71
   74.125.196.139
   74.125.196.100
   74.125.196.138
   74.125.196.113
   74.125.196.101
   74.125.196.102

Pinging google.com [74.125.196.102] with 32 bytes of data:
Reply from 74.125.196.102: bytes=32 time=27ms TTL=40
Reply from 74.125.196.102: bytes=32 time=29ms TTL=40

Ping statistics for 74.125.196.102:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 27ms, Maximum = 29ms, Average = 28ms
Server:  SOO-B
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  206.190.36.45
   98.139.183.24
   98.138.253.109

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=65ms TTL=43
Reply from 98.138.253.109: bytes=32 time=63ms TTL=43

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 63ms, Maximum = 65ms, Average = 64ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  7...5c 51 4f 98 21 ea ......Bluetooth Device (Personal Area Network)
  5...5c 51 4f 98 21 e7 ......Microsoft Wi-Fi Direct Virtual Adapter
  3...5c 51 4f 98 21 e6 ......Intel® Wireless-N 7260
  1...........................Software Loopback Interface 1
  8...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.142     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.142    281
    192.168.1.142  255.255.255.255         On-link     192.168.1.142    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.142    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.142    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.142    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  8    306 ::/0                     On-link
  1    306 ::1/128                  On-link
  8    306 2001::/32                On-link
  8    306 2001:0:9d38:90d7:2cce:1fbf:5191:5a5c/128
                                    On-link
  3    281 fe80::/64                On-link
  8    306 fe80::/64                On-link
  8    306 fe80::2cce:1fbf:5191:5a5c/128
                                    On-link
  3    281 fe80::8098:ce96:1d95:a8b4/128
                                    On-link
  1    306 ff00::/8                 On-link
  3    281 ff00::/8                 On-link
  8    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\windows\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\NLAapi.dll [64000] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\windows\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [84480] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/17/2014 02:32:24 PM) (Source: Application Hang) (User: )
Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1ddc

Start Time: 01d0029c9bf5309b

Termination Time: 4294967295

Application Path: C:\windows\system32\wwahost.exe

Report Id: 730a1572-6e90-11e4-82fb-b801a7b015b9

Faulting package full name: CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymg

Faulting package-relative application ID: App

Error: (11/17/2014 02:28:05 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005

Error: (11/17/2014 01:52:19 PM) (Source: Application Hang) (User: )
Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1e04

Start Time: 01d00296e67b0d6e

Termination Time: 4294967295

Application Path: C:\windows\system32\wwahost.exe

Report Id: d9869abc-6e8a-11e4-82fb-b801a7b015b9

Faulting package full name: CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymg

Faulting package-relative application ID: App

Error: (11/17/2014 01:41:55 PM) (Source: Application Hang) (User: )
Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1a0

Start Time: 01d0029571e63b16

Termination Time: 4294967295

Application Path: C:\windows\system32\wwahost.exe

Report Id: 65b12984-6e89-11e4-82fb-b801a7b015b9

Faulting package full name: CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymg

Faulting package-relative application ID: App

Error: (11/17/2014 00:22:11 PM) (Source: Application Hang) (User: )
Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1bcc

Start Time: 01d0028a4dc5854d

Termination Time: 4294967295

Application Path: C:\windows\system32\wwahost.exe

Report Id: 41dd2639-6e7e-11e4-82fb-b801a7b015b9

Faulting package full name: CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymg

Faulting package-relative application ID: App

Error: (11/17/2014 00:13:59 PM) (Source: Application Hang) (User: )
Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1338

Start Time: 01d002892917248a

Termination Time: 4294967295

Application Path: C:\windows\system32\wwahost.exe

Report Id: 1ca0342c-6e7d-11e4-82fb-b801a7b015b9

Faulting package full name: CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymg

Faulting package-relative application ID: App

Error: (11/17/2014 11:59:58 AM) (Source: Application Hang) (User: )
Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1254

Start Time: 01d0028733e98c6d

Termination Time: 4294967295

Application Path: C:\windows\system32\wwahost.exe

Report Id: 2771767e-6e7b-11e4-82fb-b801a7b015b9

Faulting package full name: CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymg

Faulting package-relative application ID: App

Error: (11/17/2014 11:44:58 AM) (Source: Application Hang) (User: )
Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: be4

Start Time: 01d002851b89ed62

Termination Time: 4294967295

Application Path: C:\windows\system32\wwahost.exe

Report Id: 0f002818-6e79-11e4-82fb-b801a7b015b9

Faulting package full name: CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymg

Faulting package-relative application ID: App

Error: (11/17/2014 11:23:04 AM) (Source: ISCTAgent) (User: )
Description: ISCT - CProcess::GetProcessFullName   Unable to get the image full name for the process( ID=540), GLE=31.

Error: (11/17/2014 11:09:07 AM) (Source: Application Hang) (User: )
Description: The program wwahost.exe version 6.3.9600.17031 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: b70

Start Time: 01d00280196273eb

Termination Time: 4294967295

Application Path: C:\windows\system32\wwahost.exe

Report Id: 0ce2ba3c-6e74-11e4-82fb-b801a7b015b9

Faulting package full name: CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymg

Faulting package-relative application ID: App

System errors:
=============
Error: (11/14/2014 05:17:14 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Smart Connect Technology Agent service failed to start due to the following error:
%%109

Error: (11/14/2014 05:17:09 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Dynamic Platform and Thermal Framework Critical Service Application service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/14/2014 05:17:09 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Dynamic Platform and Thermal Framework Processor Participant Service Application service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/14/2014 05:17:09 PM) (Source: Service Control Manager) (User: )
Description: The Windows Media Player Network Sharing Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (11/14/2014 05:17:09 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Rapid Storage Technology service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/14/2014 05:17:09 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/14/2014 05:17:09 PM) (Source: Service Control Manager) (User: )
Description: The Windows Virtual Network (WVN3) service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/14/2014 05:17:09 PM) (Source: Service Control Manager) (User: )
Description: The ymc service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/14/2014 05:17:09 PM) (Source: Service Control Manager) (User: )
Description: The YouTube Downloader Services (P2) service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/14/2014 05:17:09 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Microsoft Office Sessions:
=========================
Error: (11/17/2014 02:32:24 PM) (Source: Application Hang)(User: )
Description: wwahost.exe6.3.9600.170311ddc01d0029c9bf5309b4294967295C:\windows\system32\wwahost.exe730a1572-6e90-11e4-82fb-b801a7b015b9CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymgApp

Error: (11/17/2014 02:28:05 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005

Error: (11/17/2014 01:52:19 PM) (Source: Application Hang)(User: )
Description: wwahost.exe6.3.9600.170311e0401d00296e67b0d6e4294967295C:\windows\system32\wwahost.exed9869abc-6e8a-11e4-82fb-b801a7b015b9CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymgApp

Error: (11/17/2014 01:41:55 PM) (Source: Application Hang)(User: )
Description: wwahost.exe6.3.9600.170311a001d0029571e63b164294967295C:\windows\system32\wwahost.exe65b12984-6e89-11e4-82fb-b801a7b015b9CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymgApp

Error: (11/17/2014 00:22:11 PM) (Source: Application Hang)(User: )
Description: wwahost.exe6.3.9600.170311bcc01d0028a4dc5854d4294967295C:\windows\system32\wwahost.exe41dd2639-6e7e-11e4-82fb-b801a7b015b9CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymgApp

Error: (11/17/2014 00:13:59 PM) (Source: Application Hang)(User: )
Description: wwahost.exe6.3.9600.17031133801d002892917248a4294967295C:\windows\system32\wwahost.exe1ca0342c-6e7d-11e4-82fb-b801a7b015b9CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymgApp

Error: (11/17/2014 11:59:58 AM) (Source: Application Hang)(User: )
Description: wwahost.exe6.3.9600.17031125401d0028733e98c6d4294967295C:\windows\system32\wwahost.exe2771767e-6e7b-11e4-82fb-b801a7b015b9CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymgApp

Error: (11/17/2014 11:44:58 AM) (Source: Application Hang)(User: )
Description: wwahost.exe6.3.9600.17031be401d002851b89ed624294967295C:\windows\system32\wwahost.exe0f002818-6e79-11e4-82fb-b801a7b015b9CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymgApp

Error: (11/17/2014 11:23:04 AM) (Source: ISCTAgent)(User: )
Description: ISCT - CProcess::GetProcessFullName   Unable to get the image full name for the process( ID=540), GLE=31.

Error: (11/17/2014 11:09:07 AM) (Source: Application Hang)(User: )
Description: wwahost.exe6.3.9600.17031b7001d00280196273eb4294967295C:\windows\system32\wwahost.exe0ce2ba3c-6e74-11e4-82fb-b801a7b015b9CrackleInc.Crackle_1.1.0.92_x64__gn1at2342eymgApp

 

=========================== Installed Programs ============================
Absolute Reminder (HKLM-x32\...\{40F4FF7A-B214-4453-B973-080B09CED019}) (Version: 2.3.0.1 - Absolute Software)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{B678797F-DF38-4556-8A31-8B818E261868}) (Version: 8.0.0.23 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.3.2.2 - Dolby Laboratories Inc)
Dragon Assistant Application en-US version 1.5.8 (HKLM-x32\...\{1CCBE73F-4948-4711-8D12-22E2FD65D706}_is1) (Version: 1.5.8 - Nuance Communications, Inc.)
Dragon Assistant Core Recognition Service version 1.1.10 (HKLM-x32\...\{E97BA7A6-46FC-4EBF-B24A-B8362948C696}_is1) (Version: 1.1.10 - Nuance Communications, Inc.)
Dragon Assistant Installer version 1.5.8 (HKLM-x32\...\{D57A8269-3BE5-4D10-B882-64D0F2D448BF}_is1) (Version: 1.5.8 - Nuance Communications, Inc.)
Dragon Assistant Language Data en-US version 1.1.3 (HKLM-x32\...\{4C0C1E4E-D3B1-4496-98EC-DA14D45EC855}_is1) (Version: 1.1.3 - Nuance Communications, Inc.)
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.1.38 - Lenovo)
Energy Manager (x32 Version: 1.0.1.38 - Lenovo) Hidden
Genie Timeline (HKLM-x32\...\Genie Timeline) (Version: 5.0 - Genie9)
Intel Experience Center - Configuration (x32 Version: 1.7.0.179 - Intel) Hidden
Intel® Dynamic Platform and Thermal Framework (HKLM-x32\...\FFD10ECE-F715-4a86-9BD8-F6F47DA5DA1C) (Version: 7.1.0.2103 - Intel Corporation)
Intel® Experience Center Desktop Software (HKLM-x32\...\{3608ec0a-56b4-4d9d-b038-9b3e51d72582}) (Version: 1.7.0.179 - Intel)
Intel® Experience Center Driver (Version: 1.7.0.179 - Intel Corporation) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.13.1706 - Intel Corporation)
Intel® PRO/Wireless Driver (Version: 16.05.3000.0595 - Intel Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3304 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 3.0.1337.1) (HKLM\...\{302600C1-6BDF-4FD1-1307-148929CC1385}) (Version: 3.1.1307.0362 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 12.8.0.1016 - Intel Corporation) Hidden
Intel® Smart Connect Technology (HKLM\...\{D6FBF816-ACB8-46CC-ACC6-C8BBA85F497D}) (Version: 4.2.40.2418 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{e1172fd4-a6d9-4cfa-8256-268f728fec31}) (Version: 16.5.3 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden
iTunes (HKLM\...\{F46AA0F1-E284-4878-A462-5F11B9166C0E}) (Version: 11.4.0.18 - Apple Inc.)
Lenovo App Shop (HKLM-x32\...\Lenovo App Shop 45246) (Version: 3.10.0.45246.24 - Lenovo)
Lenovo EasyCamera (HKLM-x32\...\Sunplus SPUVCb) (Version: 3.4.5.35 - SunplusIT)
Lenovo Motion Control (HKLM-x32\...\InstallShield_{A800D2BF-2F0D-4899-B265-C91C90981E8C}) (Version: 2.0.0.0829 - PointGrab)
Lenovo Motion Control (x32 Version: 2.0.0.0829 - PointGrab) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo Smart Voice (HKLM\...\Lenovo SmartVoice) (Version: 1.0.2.0 - Lenovo)
Lenovo Transition (HKLM\...\Lenovo Transition) (Version: 2.0.13.8211 - Lenovo)
Lenovo VeriFace (HKLM\...\Lenovo VeriFace) (Version: 5.0.13.5261 - Lenovo)
Lenovo Yoga PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 1.1.9.3 - Lenovo)
Lenovo Yoga PhoneCompanion (x32 Version: 1.1.9.3 - Lenovo) Hidden
Malwarebytes Anti-Exploit version 1.04.1.1012 (HKLM\...\Malwarebytes Anti-Exploit_is1) (Version: 1.04.1.1012 - Malwarebytes)
Malwarebytes Anti-Malware version 2.0.3.1025 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.3.1025 - Malwarebytes Corporation)
Microsoft Office 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 15.0.4659.1001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Nitro Pro 8 (HKLM\...\{2269F0D5-DE47-4313-9003-BB6357919314}) (Version: 8.5.5.7 - Nitro)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4659.1001 - Microsoft Corporation) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9200.30164 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7040 - Realtek Semiconductor Corp.)
ReminderInstaller (HKLM-x32\...\InstallShield_{48B99BC9-CEB0-485E-96B1-4609BC86D2DE}) (Version: 1.00.0000 - Absolute Software.)
ReminderInstaller (x32 Version: 1.00.0000 - Absolute Software.) Hidden
Snap.Do (HKLM-x32\...\{F33C8209-E8E0-49C8-8D7E-363CD346C801}) (Version: 11.117.1.19710 - ReSoft Ltd.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.7 - Synaptics Incorporated)
Update for Microsoft en-us Dictionary (Version: 16.1.1211.1 - Microsoft Corporation) Hidden
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.15 - Lenovo)
UserGuide (x32 Version: 1.0.0.15 - Lenovo) Hidden
Windows Driver Package - Lenovo (ACPIVPC) System  (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid  (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)

========================= Memory info: ===================================

Percentage of memory in use: 50%
Total physical RAM: 4008.27 MB
Available physical RAM: 1987.46 MB
Total Pagefile: 7080.27 MB
Available Pagefile: 4471.57 MB
Total Virtual: 4095.88 MB
Available Virtual: 3968.68 MB

========================= Partitions: =====================================

1 Drive c: (Windows8_OS) (Fixed) (Total:101.24 GB) (Free:47.33 GB) NTFS
2 Drive d: (LENOVO) (Fixed) (Total:4 GB) (Free:0.87 GB) NTFS
3 Drive e: () (Removable) (Total:1.87 GB) (Free:1.84 GB) FAT
4 Drive y: (Server) (Network) (Total:698.63 GB) (Free:362.04 GB) NTFS

========================= Users: ========================================

User accounts for \\HAMMY

Administrator            Guest                    Pipskate                

========================= Restore Points ==================================

07-11-2014 16:40:11 Scheduled Checkpoint
12-11-2014 16:14:14 Windows Update

**** End of log ****

 

 

 

 

 

 

 

TDSSKiller result

 

 

14:52:37.0261 0x0a14  TDSS rootkit removing tool 3.0.0.41 Oct 28 2014 17:58:34
14:52:37.0261 0x0a14  UEFI system
14:52:40.0058 0x0a14  ============================================================
14:52:40.0058 0x0a14  Current date / time: 2014/11/17 14:52:40.0058
14:52:40.0058 0x0a14  SystemInfo:
14:52:40.0058 0x0a14 
14:52:40.0058 0x0a14  OS Version: 6.3.9600 ServicePack: 0.0
14:52:40.0058 0x0a14  Product type: Workstation
14:52:40.0058 0x0a14  ComputerName: HAMMY
14:52:40.0058 0x0a14  UserName: Pipskate
14:52:40.0058 0x0a14  Windows directory: C:\windows
14:52:40.0058 0x0a14  System windows directory: C:\windows
14:52:40.0058 0x0a14  Running under WOW64
14:52:40.0058 0x0a14  Processor architecture: Intel x64
14:52:40.0058 0x0a14  Number of processors: 4
14:52:40.0058 0x0a14  Page size: 0x1000
14:52:40.0058 0x0a14  Boot type: Normal boot
14:52:40.0058 0x0a14  ============================================================
14:52:40.0152 0x0a14  KLMD registered as C:\windows\system32\drivers\63323774.sys
14:52:40.0402 0x0a14  System UUID: {8AB93AB1-EC11-233A-CE0E-72128BEC4A95}
14:52:41.0027 0x0a14  Drive \Device\Harddisk0\DR0 - Size: 0x1DCF856000 ( 119.24 Gb ), SectorSize: 0x200, Cylinders: 0x3CCE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:52:41.0042 0x0a14  Drive \Device\Harddisk1\DR3 - Size: 0x776F8000 ( 1.87 Gb ), SectorSize: 0x200, Cylinders: 0xF3, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:52:41.0042 0x0a14  ============================================================
14:52:41.0042 0x0a14  \Device\Harddisk0\DR0:
14:52:41.0042 0x0a14  GPT partitions:
14:52:41.0042 0x0a14  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {1ADDC048-A25D-41E4-98A6-DD22C3F1177B}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1F4000
14:52:41.0042 0x0a14  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {28B090EB-7DC1-4307-BAF1-E38354A0AFF7}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000
14:52:41.0042 0x0a14  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {BFBFAFE7-A34F-448A-9A5B-6213EB736C22}, UniqueGUID: {F687E00C-9F4D-402D-B2CE-C20767BC2ACC}, Name: Basic data partition, StartLBA 0x276800, BlocksNum 0x1F4000
14:52:41.0042 0x0a14  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {A050E1B0-5395-4EB3-B05D-4F4C1E0208DF}, Name: Microsoft reserved partition, StartLBA 0x46A800, BlocksNum 0x40000
14:52:41.0042 0x0a14  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {A811FB2C-D355-4C29-84F4-7EC1D70A92D6}, Name: Basic data partition, StartLBA 0x4AA800, BlocksNum 0xCA7A800
14:52:41.0042 0x0a14  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {F45599D8-C4FF-4591-804D-E30E97863BA0}, Name: Basic data partition, StartLBA 0xCF25000, BlocksNum 0x800000
14:52:41.0042 0x0a14  \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {5D67ABF3-540D-453D-891B-7C1FC7363761}, Name: Basic data partition, StartLBA 0xD725000, BlocksNum 0x1757000
14:52:41.0042 0x0a14  MBR partitions:
14:52:41.0042 0x0a14  \Device\Harddisk1\DR3:
14:52:41.0042 0x0a14  MBR partitions:
14:52:41.0042 0x0a14  \Device\Harddisk1\DR3\Partition1: MBR, Type 0x6, StartLBA 0x3F, BlocksNum 0x3BB521
14:52:41.0042 0x0a14  ============================================================
14:52:41.0042 0x0a14  C: <-> \Device\Harddisk0\DR0\Partition5
14:52:41.0042 0x0a14  D: <-> \Device\Harddisk0\DR0\Partition6
14:52:41.0042 0x0a14  ============================================================
14:52:41.0042 0x0a14  Initialize success
14:52:41.0042 0x0a14  ============================================================
14:52:49.0973 0x100c  ============================================================
14:52:49.0973 0x100c  Scan started
14:52:49.0973 0x100c  Mode: Manual;
14:52:49.0973 0x100c  ============================================================
14:52:49.0973 0x100c  KSN ping started
14:52:53.0255 0x100c  KSN ping finished: false
14:52:53.0458 0x100c  ================ Scan system memory ========================
14:52:53.0458 0x100c  System memory - ok
14:52:53.0458 0x100c  ================ Scan services =============================
14:52:53.0505 0x100c  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\windows\System32\drivers\1394ohci.sys
14:52:53.0505 0x100c  1394ohci - ok
14:52:53.0521 0x100c  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\windows\system32\drivers\3ware.sys
14:52:53.0521 0x100c  3ware - ok
14:52:53.0552 0x100c  [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI            C:\windows\system32\drivers\ACPI.sys
14:52:53.0568 0x100c  ACPI - ok
14:52:53.0568 0x100c  [ A273E88FAC37A4F819ED99FE4B642F4D, 994DC229B7B4379852928DF0B22E8E575AB239FD8904AF580AA36A44ED717CD9 ] acpials         C:\windows\system32\DRIVERS\acpials.sys
14:52:53.0568 0x100c  acpials - ok
14:52:53.0583 0x100c  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\windows\system32\Drivers\acpiex.sys
14:52:53.0583 0x100c  acpiex - ok
14:52:53.0583 0x100c  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\windows\System32\drivers\acpipagr.sys
14:52:53.0583 0x100c  acpipagr - ok
14:52:53.0583 0x100c  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\windows\System32\drivers\acpipmi.sys
14:52:53.0583 0x100c  AcpiPmi - ok
14:52:53.0599 0x100c  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\windows\System32\drivers\acpitime.sys
14:52:53.0599 0x100c  acpitime - ok
14:52:53.0599 0x100c  [ AF7A18603B0B82DFA5B420456FAF2201, 64AD831433778BB0B0B1615EEA7682960ED5815A091A9EFEE95A862EFBDE6D69 ] ACPIVPC         C:\windows\System32\drivers\AcpiVpc.sys
14:52:53.0599 0x100c  ACPIVPC - ok
14:52:53.0614 0x100c  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\windows\system32\drivers\ADP80XX.SYS
14:52:53.0630 0x100c  ADP80XX - ok
14:52:53.0646 0x100c  [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
14:52:53.0646 0x100c  AeLookupSvc - ok
14:52:53.0661 0x100c  [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\windows\system32\drivers\afd.sys
14:52:53.0677 0x100c  AFD - ok
14:52:53.0677 0x100c  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\windows\system32\drivers\agp440.sys
14:52:53.0677 0x100c  agp440 - ok
14:52:53.0693 0x100c  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\windows\system32\DRIVERS\ahcache.sys
14:52:53.0693 0x100c  ahcache - ok
14:52:53.0693 0x100c  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\windows\System32\alg.exe
14:52:53.0693 0x100c  ALG - ok
14:52:53.0708 0x100c  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\windows\System32\drivers\amdk8.sys
14:52:53.0708 0x100c  AmdK8 - ok
14:52:53.0724 0x100c  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\windows\System32\drivers\amdppm.sys
14:52:53.0724 0x100c  AmdPPM - ok
14:52:53.0724 0x100c  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\windows\system32\drivers\amdsata.sys
14:52:53.0724 0x100c  amdsata - ok
14:52:53.0739 0x100c  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
14:52:53.0739 0x100c  amdsbs - ok
14:52:53.0755 0x100c  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\windows\system32\drivers\amdxata.sys
14:52:53.0755 0x100c  amdxata - ok
14:52:53.0755 0x100c  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\windows\system32\drivers\appid.sys
14:52:53.0755 0x100c  AppID - ok
14:52:53.0755 0x100c  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\windows\System32\appidsvc.dll
14:52:53.0771 0x100c  AppIDSvc - ok
14:52:53.0771 0x100c  [ 034ED41F13D9C1845C1E081F05B640DB, E4E17BA0B22C464DE60A6BF68D4D035D1B838DE4F0361029DED1AE00503E135C ] Appinfo         C:\windows\System32\appinfo.dll
14:52:53.0771 0x100c  Appinfo - ok
14:52:53.0786 0x100c  [ 608D6A90E989C6522F170E5526A64BF4, 36EDD07DF6BD2D20121F63CF720C289FCCF7C53574D37F99C2F9ED68298D655B ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:52:53.0786 0x100c  Apple Mobile Device - ok
14:52:53.0802 0x100c  [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness    C:\windows\system32\AppReadiness.dll
14:52:53.0802 0x100c  AppReadiness - ok
14:52:53.0833 0x100c  [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc         C:\windows\system32\appxdeploymentserver.dll
14:52:53.0864 0x100c  AppXSvc - ok
14:52:53.0864 0x100c  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\windows\system32\drivers\arcsas.sys
14:52:53.0864 0x100c  arcsas - ok
14:52:53.0880 0x100c  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\windows\system32\drivers\atapi.sys
14:52:53.0880 0x100c  atapi - ok
14:52:53.0880 0x100c  [ 7F70B1044272982AAEA7C16E83424770, A7694D38DF5A0E1040688017DB811EF0788874FE505ADD572DE4D4647073DC12 ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
14:52:53.0896 0x100c  AudioEndpointBuilder - ok
14:52:53.0911 0x100c  [ C0484CA5C7F87E38909746B63C7FC868, 65159639E2300AEA886184E9D47D449350DAF69A8AA2F9DBD6BD8A474BA73177 ] Audiosrv        C:\windows\System32\Audiosrv.dll
14:52:53.0929 0x100c  Audiosrv - ok
14:52:53.0945 0x100c  [ 943B743BEA5AE4EEA43250FFCC99C522, 387966A350796EFB6682A975D66F057B622296F6ADF4AFCEECD9F775BA97BFE6 ] AX88772         C:\windows\system32\DRIVERS\ax88772.sys
14:52:53.0945 0x100c  AX88772 - ok
14:52:53.0945 0x100c  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\windows\System32\AxInstSV.dll
14:52:53.0945 0x100c  AxInstSV - ok
14:52:53.0961 0x100c  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
14:52:53.0976 0x100c  b06bdrv - ok
14:52:53.0976 0x100c  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\windows\System32\drivers\BasicDisplay.sys
14:52:53.0976 0x100c  BasicDisplay - ok
14:52:53.0992 0x100c  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\windows\System32\drivers\BasicRender.sys
14:52:53.0992 0x100c  BasicRender - ok
14:52:53.0992 0x100c  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\windows\System32\drivers\bcmfn2.sys
14:52:53.0992 0x100c  bcmfn2 - ok
14:52:54.0008 0x100c  [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC          C:\windows\System32\bdesvc.dll
14:52:54.0008 0x100c  BDESVC - ok
14:52:54.0023 0x100c  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\windows\system32\drivers\Beep.sys
14:52:54.0023 0x100c  Beep - ok
14:52:54.0039 0x100c  [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE             C:\windows\System32\bfe.dll
14:52:54.0054 0x100c  BFE - ok
14:52:54.0086 0x100c  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\windows\System32\qmgr.dll
14:52:54.0101 0x100c  BITS - ok
14:52:54.0133 0x100c  [ E7429ECD0C47CC065EEACF7E9D0E6341, 10D8231E14C908A0949108EB5F84E17BA10ABFC370D0C5F65945B23879AB12BF ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
14:52:54.0148 0x100c  Bluetooth Device Monitor - ok
14:52:54.0179 0x100c  [ 9C0FDB0E3CFE542847E5140FAF17E89F, 290C08C0F8413D15BA41BEFC3D5A9D3E97FB6C55B91FE80D518BEA95A2838173 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
14:52:54.0226 0x100c  Bluetooth OBEX Service - ok
14:52:54.0242 0x100c  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:52:54.0242 0x100c  Bonjour Service - ok
14:52:54.0258 0x100c  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\windows\system32\DRIVERS\bowser.sys
14:52:54.0258 0x100c  bowser - ok
14:52:54.0289 0x100c  [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\windows\System32\bisrv.dll
14:52:54.0304 0x100c  BrokerInfrastructure - ok
14:52:54.0320 0x100c  [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser         C:\windows\System32\browser.dll
14:52:54.0320 0x100c  Browser - ok
14:52:54.0336 0x100c  [ 8F7A6409A76914E203423A384A4E1C11, 567D1B456F6457C2D2612D048B7E59C41504565E67BB7F349530249274BF3C3B ] BthA2DP         C:\windows\system32\drivers\BthA2DP.sys
14:52:54.0351 0x100c  BthA2DP - ok
14:52:54.0367 0x100c  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\windows\System32\drivers\BthAvrcpTg.sys
14:52:54.0367 0x100c  BthAvrcpTg - ok
14:52:54.0383 0x100c  [ 131F1C8573E7BFB41C54FBF5309CCD94, DAFE51E3BADBD82A33B580F212B2D6520A120877C23F6D675521FEA2F4BA5A1F ] BthEnum         C:\windows\System32\drivers\BthEnum.sys
14:52:54.0383 0x100c  BthEnum - ok
14:52:54.0383 0x100c  [ E4A1863A32606C95F993345F1D28C86C, 3BED422D932A22F0CB923FE7FFDA0A8EC6E01AD1FB8F616F39E016A19221AD6F ] BthHFAud        C:\windows\system32\DRIVERS\BthHfAud.sys
14:52:54.0398 0x100c  BthHFAud - ok
14:52:54.0398 0x100c  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\windows\System32\drivers\bthhfenum.sys
14:52:54.0414 0x100c  BthHFEnum - ok
14:52:54.0414 0x100c  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\windows\System32\drivers\BthHFHid.sys
14:52:54.0414 0x100c  bthhfhid - ok
14:52:54.0445 0x100c  [ 52AB4FA794AE775BDAF63BBF28ADE65D, DB8C9DA9A2F7E96110C793A35AC7CFA8E324173DAEDEFCC700A9652E389D46FE ] BthHFSrv        C:\windows\System32\BthHFSrv.dll
14:52:54.0461 0x100c  BthHFSrv - ok
14:52:54.0492 0x100c  [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum       C:\windows\System32\drivers\BthLEEnum.sys
14:52:54.0508 0x100c  BthLEEnum - ok
14:52:54.0523 0x100c  [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM        C:\windows\System32\drivers\bthmodem.sys
14:52:54.0523 0x100c  BTHMODEM - ok
14:52:54.0539 0x100c  [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan          C:\windows\System32\drivers\bthpan.sys
14:52:54.0554 0x100c  BthPan - ok
14:52:54.0633 0x100c  [ 97B9076611291AE4C4C107BC915BD026, 0A77873AAF1ADB76CAB98A84D2242781E34E2699632E45EB92ED7DB20B2BE0C1 ] BTHPORT         C:\windows\System32\Drivers\BTHport.sys
14:52:54.0664 0x100c  BTHPORT - ok
14:52:54.0679 0x100c  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\windows\system32\bthserv.dll
14:52:54.0679 0x100c  bthserv - ok
14:52:54.0679 0x100c  [ 23E75BED9076F856B36F5F934BBD5795, CCEB72B788522B7D52A6C07646005EBC68F9599D3714ECACF3A194CA47A1BE85 ] BTHUSB          C:\windows\System32\Drivers\BTHUSB.sys
14:52:54.0679 0x100c  BTHUSB - ok
14:52:54.0695 0x100c  [ 5B8D71504FA8BFA308F6E1169B89D322, 1DC0CF47C5F655EA0F0992020C17A86D05637F55ACBB17380283EBB883A4D14D ] btmaux          C:\windows\system32\DRIVERS\btmaux.sys
14:52:54.0695 0x100c  btmaux - ok
14:52:54.0726 0x100c  [ A5D4D0B7EB24454777D6029AA6794D81, E39AB28BD48EDB285438F6AC37B26B135972DCD446D07878E28447FA979318C0 ] btmhsf          C:\windows\system32\DRIVERS\btmhsf.sys
14:52:54.0789 0x100c  btmhsf - ok
14:52:54.0789 0x100c  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
14:52:54.0804 0x100c  cdfs - ok
14:52:54.0804 0x100c  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\windows\System32\drivers\cdrom.sys
14:52:54.0820 0x100c  cdrom - ok
14:52:54.0836 0x100c  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\windows\System32\certprop.dll
14:52:54.0836 0x100c  CertPropSvc - ok
14:52:54.0836 0x100c  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\windows\System32\drivers\circlass.sys
14:52:54.0851 0x100c  circlass - ok
14:52:54.0867 0x100c  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\windows\system32\drivers\CLFS.sys
14:52:54.0867 0x100c  CLFS - ok
14:52:54.0930 0x100c  [ 871EEE78F98D6E31C80FD39433A8FE2F, 67602F597FADA1E7102BC373287A4A78339E057D37FCEAD0B2502F70450EC7CE ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
14:52:54.0976 0x100c  ClickToRunSvc - ok
14:52:54.0976 0x100c  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\windows\System32\drivers\CmBatt.sys
14:52:54.0976 0x100c  CmBatt - ok
14:52:54.0992 0x100c  [ 4E1207CE16E615B0B7A70DC889F4500E, 1778D5AC0AF5F5DD1551192F4CDBCCB9878995155CF337EBB03460A6FD5C6B78 ] CNG             C:\windows\system32\Drivers\cng.sys
14:52:55.0008 0x100c  CNG - ok
14:52:55.0023 0x100c  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\windows\System32\drivers\CompositeBus.sys
14:52:55.0023 0x100c  CompositeBus - ok
14:52:55.0023 0x100c  COMSysApp - ok
14:52:55.0023 0x100c  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\windows\system32\drivers\condrv.sys
14:52:55.0023 0x100c  condrv - ok
14:52:55.0055 0x100c  [ 56D1D35F12F9A07803F6108D4EDCEB78, A947CE92E3E73FCEB4F2B02C789EFAD7E300614E917633F42668CCE9E2F7EE56 ] cphs            C:\windows\SysWow64\IntelCpHeciSvc.exe
14:52:55.0055 0x100c  cphs - ok
14:52:55.0070 0x100c  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\windows\system32\cryptsvc.dll
14:52:55.0070 0x100c  CryptSvc - ok
14:52:55.0086 0x100c  [ 1345C3DAFB5E61357761B6264364AD0E, 2E0843A0936597BF29DECF58EE9F023B1166979B7B8F1EDC9C46B6DB70E811E2 ] DACoreService   C:\Program Files (x86)\Nuance\Dragon Assistant\Core\DACore.exe
14:52:55.0101 0x100c  DACoreService - ok
14:52:55.0101 0x100c  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\windows\system32\drivers\dam.sys
14:52:55.0101 0x100c  dam - ok
14:52:55.0117 0x100c  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch      C:\windows\system32\rpcss.dll
14:52:55.0133 0x100c  DcomLaunch - ok
14:52:55.0148 0x100c  [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc       C:\windows\System32\defragsvc.dll
14:52:55.0164 0x100c  defragsvc - ok
14:52:55.0180 0x100c  [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\windows\system32\das.dll
14:52:55.0180 0x100c  DeviceAssociationService - ok
14:52:55.0195 0x100c  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall   C:\windows\system32\umpnpmgr.dll
14:52:55.0195 0x100c  DeviceInstall - ok
14:52:55.0195 0x100c  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\windows\system32\Drivers\dfsc.sys
14:52:55.0211 0x100c  Dfsc - ok
14:52:55.0211 0x100c  [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp            C:\windows\system32\dhcpcore.dll
14:52:55.0226 0x100c  Dhcp - ok
14:52:55.0226 0x100c  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\windows\system32\drivers\disk.sys
14:52:55.0242 0x100c  disk - ok
14:52:55.0242 0x100c  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\windows\System32\drivers\dmvsc.sys
14:52:55.0242 0x100c  dmvsc - ok
14:52:55.0258 0x100c  [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache        C:\windows\System32\dnsrslvr.dll
14:52:55.0258 0x100c  Dnscache - ok
14:52:55.0273 0x100c  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\windows\System32\dot3svc.dll
14:52:55.0273 0x100c  dot3svc - ok
14:52:55.0289 0x100c  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\windows\system32\dps.dll
14:52:55.0289 0x100c  DPS - ok
14:52:55.0289 0x100c  [ E87CD3E4F9AC0A2C181990CB781DD4BA, 693F30DF8D4AE732BBB36D250D89DEC05C291B0A0998CBE87677E4F019253432 ] DptfDevPch      C:\windows\system32\DRIVERS\DptfDevPch.sys
14:52:55.0289 0x100c  DptfDevPch - ok
14:52:55.0305 0x100c  [ 1C3C798B4150F7A047853838EBE2A95B, 8A44147DAB1FCBD5F23B5D427D12D0D5CA4A8260216ECE155CD849D09328069A ] DptfDevProc     C:\windows\system32\DRIVERS\DptfDevProc.sys
14:52:55.0305 0x100c  DptfDevProc - ok
14:52:55.0320 0x100c  [ 133C04EDB13A8A7740FFA3D7DD397C80, 56A28AF194354A6AA48A9204F13C845A4B3FE4E3139BBDE31DDDE318F3FB20C9 ] DptfManager     C:\windows\system32\DRIVERS\DptfManager.sys
14:52:55.0336 0x100c  DptfManager - ok
14:52:55.0351 0x100c  [ 8A18176B5108C2FBB23ADA9D548BDD3A, 204E39EE27B6FEDB75E97950B1608DEB0641248857FF0FDD2B66168929967043 ] DptfParticipantProcessorService C:\windows\system32\DptfParticipantProcessorService.exe
14:52:55.0351 0x100c  DptfParticipantProcessorService - ok
14:52:55.0351 0x100c  [ 82239362B0C3CDA6C2E69EAB73FA8A97, 73ADB64C365E5C1F2DF92B91982E65577ADC58DE84ECF0399F0C1C380602E630 ] DptfPolicyConfigTDPService C:\windows\system32\DptfPolicyConfigTDPService.exe
14:52:55.0351 0x100c  DptfPolicyConfigTDPService - ok
14:52:55.0367 0x100c  [ FAFA22CD7FD7B0A195239E738F7B7030, 9DF3810F814ACD4A694F25482E57ADEA01F1072CEAA4AC14ED5D383A4D2DE385 ] DptfPolicyCriticalService C:\windows\system32\DptfPolicyCriticalService.exe
14:52:55.0367 0x100c  DptfPolicyCriticalService - ok
14:52:55.0383 0x100c  [ 06B40DF90D494E2242C63DCACB354B8E, A10EB3EF74EDA33CF710B74E52D97A2B3B7874F3C5212016ED1FB89F8070D6A9 ] DptfPolicyLpmService C:\windows\system32\DptfPolicyLpmService.exe
14:52:55.0383 0x100c  DptfPolicyLpmService - ok
14:52:55.0383 0x100c  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
14:52:55.0383 0x100c  drmkaud - ok
14:52:55.0398 0x100c  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\windows\System32\DeviceSetupManager.dll
14:52:55.0398 0x100c  DsmSvc - ok
14:52:55.0430 0x100c  [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
14:52:55.0461 0x100c  DXGKrnl - ok
14:52:55.0476 0x100c  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\windows\System32\eapsvc.dll
14:52:55.0476 0x100c  Eaphost - ok
14:52:55.0539 0x100c  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\windows\system32\drivers\evbda.sys
14:52:55.0601 0x100c  ebdrv - ok
14:52:55.0617 0x100c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\windows\System32\lsass.exe
14:52:55.0617 0x100c  EFS - ok
14:52:55.0617 0x100c  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\windows\system32\drivers\EhStorClass.sys
14:52:55.0617 0x100c  EhStorClass - ok
14:52:55.0633 0x100c  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\windows\system32\drivers\EhStorTcgDrv.sys
14:52:55.0633 0x100c  EhStorTcgDrv - ok
14:52:55.0633 0x100c  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\windows\System32\drivers\errdev.sys
14:52:55.0633 0x100c  ErrDev - ok
14:52:55.0648 0x100c  [ 4B5E450D7FC733BDCF0B4D0522604342, 4CB8B37104CFEEEF87BD2941E1E6166B8360A7547505B7DA85E25CEEDE7B611E ] ESProtectionDriver C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae64.sys
14:52:55.0648 0x100c  ESProtectionDriver - ok
14:52:55.0664 0x100c  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\windows\system32\es.dll
14:52:55.0664 0x100c  EventSystem - ok
14:52:55.0680 0x100c  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\windows\system32\drivers\exfat.sys
14:52:55.0680 0x100c  exfat - ok
14:52:55.0695 0x100c  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\windows\system32\drivers\fastfat.sys
14:52:55.0695 0x100c  fastfat - ok
14:52:55.0711 0x100c  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\windows\system32\fxssvc.exe
14:52:55.0726 0x100c  Fax - ok
14:52:55.0726 0x100c  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\windows\System32\drivers\fdc.sys
14:52:55.0726 0x100c  fdc - ok
14:52:55.0742 0x100c  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\windows\system32\fdPHost.dll
14:52:55.0742 0x100c  fdPHost - ok
14:52:55.0742 0x100c  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\windows\system32\fdrespub.dll
14:52:55.0742 0x100c  FDResPub - ok
14:52:55.0758 0x100c  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\windows\system32\fhsvc.dll
14:52:55.0758 0x100c  fhsvc - ok
14:52:55.0758 0x100c  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
14:52:55.0758 0x100c  FileInfo - ok
14:52:55.0773 0x100c  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\windows\system32\drivers\filetrace.sys
14:52:55.0773 0x100c  Filetrace - ok
14:52:55.0773 0x100c  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\windows\System32\drivers\flpydisk.sys
14:52:55.0773 0x100c  flpydisk - ok
14:52:55.0789 0x100c  [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
14:52:55.0789 0x100c  FltMgr - ok
14:52:55.0820 0x100c  [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache       C:\windows\system32\FntCache.dll
14:52:55.0851 0x100c  FontCache - ok
14:52:55.0851 0x100c  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:52:55.0867 0x100c  FontCache3.0.0.0 - ok
14:52:55.0867 0x100c  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
14:52:55.0867 0x100c  FsDepends - ok
14:52:55.0867 0x100c  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
14:52:55.0867 0x100c  Fs_Rec - ok
14:52:55.0883 0x100c  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
14:52:55.0898 0x100c  fvevol - ok
14:52:55.0914 0x100c  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\windows\System32\drivers\fxppm.sys
14:52:55.0914 0x100c  FxPPM - ok
14:52:55.0914 0x100c  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
14:52:55.0914 0x100c  gagp30kx - ok
14:52:55.0914 0x100c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
14:52:55.0914 0x100c  GEARAspiWDM - ok
14:52:55.0930 0x100c  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\windows\System32\drivers\vmgencounter.sys
14:52:55.0930 0x100c  gencounter - ok
14:52:55.0930 0x100c  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\windows\system32\Drivers\msgpioclx.sys
14:52:55.0946 0x100c  GPIOClx0101 - ok
14:52:55.0977 0x100c  [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc           C:\windows\System32\gpsvc.dll
14:52:55.0992 0x100c  gpsvc - ok
14:52:56.0008 0x100c  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
14:52:56.0024 0x100c  HdAudAddService - ok
14:52:56.0024 0x100c  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\windows\System32\drivers\HDAudBus.sys
14:52:56.0039 0x100c  HDAudBus - ok
14:52:56.0039 0x100c  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\windows\System32\drivers\HidBatt.sys
14:52:56.0039 0x100c  HidBatt - ok
14:52:56.0039 0x100c  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\windows\System32\drivers\hidbth.sys
14:52:56.0055 0x100c  HidBth - ok
14:52:56.0055 0x100c  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\windows\System32\drivers\hidi2c.sys
14:52:56.0055 0x100c  hidi2c - ok
14:52:56.0055 0x100c  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\windows\System32\drivers\hidir.sys
14:52:56.0055 0x100c  HidIr - ok
14:52:56.0071 0x100c  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\windows\system32\hidserv.dll
14:52:56.0071 0x100c  hidserv - ok
14:52:56.0071 0x100c  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\windows\System32\drivers\hidusb.sys
14:52:56.0071 0x100c  HidUsb - ok
14:52:56.0086 0x100c  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\windows\system32\kmsvc.dll
14:52:56.0086 0x100c  hkmsvc - ok
14:52:56.0086 0x100c  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\windows\system32\ListSvc.dll
14:52:56.0102 0x100c  HomeGroupListener - ok
14:52:56.0117 0x100c  [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\windows\system32\provsvc.dll
14:52:56.0117 0x100c  HomeGroupProvider - ok
14:52:56.0133 0x100c  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
14:52:56.0133 0x100c  HpSAMD - ok
14:52:56.0149 0x100c  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\windows\system32\drivers\HTTP.sys
14:52:56.0180 0x100c  HTTP - ok
14:52:56.0180 0x100c  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
14:52:56.0180 0x100c  hwpolicy - ok
14:52:56.0180 0x100c  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\windows\System32\drivers\hyperkbd.sys
14:52:56.0180 0x100c  hyperkbd - ok
14:52:56.0196 0x100c  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\windows\system32\DRIVERS\HyperVideo.sys
14:52:56.0196 0x100c  HyperVideo - ok
14:52:56.0196 0x100c  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\windows\System32\drivers\i8042prt.sys
14:52:56.0196 0x100c  i8042prt - ok
14:52:56.0211 0x100c  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\windows\System32\drivers\iaLPSSi_GPIO.sys
14:52:56.0211 0x100c  iaLPSSi_GPIO - ok
14:52:56.0211 0x100c  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\windows\System32\drivers\iaLPSSi_I2C.sys
14:52:56.0211 0x100c  iaLPSSi_I2C - ok
14:52:56.0227 0x100c  [ 57CD95DEB3529181BCC931DD2DFB2341, 03ACF906E4C3CF954F503900F42C7A60FCD5624772B90A956F032484146E42B7 ] iaStorA         C:\windows\system32\drivers\iaStorA.sys
14:52:56.0242 0x100c  iaStorA - ok
14:52:56.0258 0x100c  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\windows\system32\drivers\iaStorAV.sys
14:52:56.0274 0x100c  iaStorAV - ok
14:52:56.0289 0x100c  [ 20E83F4632E15A5E9E716FF2E8AC7FAE, 7CA1A4924F432AD30ED7FA6247C6513DA173EE31132AE115E85C0ED7E5971029 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:52:56.0289 0x100c  IAStorDataMgrSvc - ok
14:52:56.0289 0x100c  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
14:52:56.0305 0x100c  iaStorV - ok
14:52:56.0321 0x100c  [ DA3E76663D55775D675982F4C9CA2794, FCD84EA5A6787D4ADAAF8A1DD85E64BC280F60EC907D89AA1F7E95C5CAA60AFE ] ibtusb          C:\windows\system32\DRIVERS\ibtusb.sys
14:52:56.0321 0x100c  ibtusb - ok
14:52:56.0321 0x100c  IEEtwCollectorService - ok
14:52:56.0414 0x100c  [ A874EC416801B152BD64916E1B5C107E, 6D41CAB617E06F3D9534DB44DFEB9C86F2AD55AFBF3E1B1B41BA2576C0C19407 ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
14:52:56.0492 0x100c  igfx - ok
14:52:56.0508 0x100c  [ 39F3C7E218CE9118106D166F09AE1352, B78ADFC87AACF868D62A7FB0971B8786C1315A9B4D34D3E3159AD3F24D78AD62 ] ikbevent        C:\windows\system32\DRIVERS\ikbevent.sys
14:52:56.0508 0x100c  ikbevent - ok
14:52:56.0539 0x100c  [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT          C:\windows\System32\ikeext.dll
14:52:56.0555 0x100c  IKEEXT - ok
14:52:56.0555 0x100c  [ 404906005D768E48BF16218B420249C7, 78409A077F244FCAC806180384C240F3BB1FF7ECF02EDB5E5D3188F458AB23D1 ] imsevent        C:\windows\system32\DRIVERS\imsevent.sys
14:52:56.0555 0x100c  imsevent - ok
14:52:56.0571 0x100c  [ 3F2BB021CB280880F8C1B7A6FEF9B447, CEC0BF9D6C9CF6E6A9F9B4E656BD47208AC977EDDC11C1C3BCD07EB50BABC017 ] INETMON         C:\windows\System32\Drivers\INETMON.sys
14:52:56.0571 0x100c  INETMON - ok
14:52:56.0571 0x100c  [ DB65573521AB51941F4FA799D0968136, 418F5E3FE725B7B114F3DAEBDCEBCE7F4AD8ECAAFF572C02BA9ACCE86D55BFD8 ] intaud_WaveExtensible C:\windows\system32\drivers\intelaud.sys
14:52:56.0571 0x100c  intaud_WaveExtensible - ok
14:52:56.0649 0x100c  [ 0CDE7928C4B99C25AAED3B4E84E78168, 5B5444574551D2637A3827F26D248573AECE1B12DFA175C13B10B2A777AD2513 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
14:52:56.0742 0x100c  IntcAzAudAddService - ok
14:52:56.0758 0x100c  [ D6A22510D795928E8840619900D672B4, 296F232B0A6D42840A745E4706D2815F6D2E4279DBD90112CBFBFF8833B724AF ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
14:52:56.0774 0x100c  IntcDAud - ok
14:52:56.0789 0x100c  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
14:52:56.0805 0x100c  Intel® Capability Licensing Service Interface - ok
14:52:56.0836 0x100c  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
14:52:56.0852 0x100c  Intel® Capability Licensing Service TCP IP Interface - ok
14:52:56.0852 0x100c  [ FEC3A8349DCBECB87850692F1020B023, AD3086C31CA7795FA8CB677C67CE7AFD37FAB728EB1027B8B2016F3B283FB958 ] Intel® Wireless Bluetooth® 4.0 Radio Management C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
14:52:56.0852 0x100c  Intel® Wireless Bluetooth® 4.0 Radio Management - ok
14:52:56.0867 0x100c  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\windows\system32\drivers\intelide.sys
14:52:56.0867 0x100c  intelide - ok
14:52:56.0867 0x100c  [ 139CFCDCD36B1B1782FD8C0014AC9B0E, E0D7E0E9B46A8CECE138D689820023BFA650FB689E4FD62855BED37E04F2D9FF ] intelpep        C:\windows\system32\drivers\intelpep.sys
14:52:56.0867 0x100c  intelpep - ok
14:52:56.0883 0x100c  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\windows\System32\drivers\intelppm.sys
14:52:56.0883 0x100c  intelppm - ok
14:52:56.0883 0x100c  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
14:52:56.0883 0x100c  IpFilterDriver - ok
14:52:56.0914 0x100c  [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
14:52:56.0930 0x100c  iphlpsvc - ok
14:52:56.0946 0x100c  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\windows\System32\drivers\IPMIDrv.sys
14:52:56.0946 0x100c  IPMIDRV - ok
14:52:56.0946 0x100c  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
14:52:56.0946 0x100c  IPNAT - ok
14:52:56.0961 0x100c  [ 635F7587F7576AA14871B850EB95BFB8, 75CB8F4D511964BB9104E93EF31D2DDF1227DACE1EDB9DE25AE9719835B6C34B ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:52:56.0977 0x100c  iPod Service - ok
14:52:56.0992 0x100c  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\windows\system32\drivers\irenum.sys
14:52:56.0992 0x100c  IRENUM - ok
14:52:56.0992 0x100c  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\windows\system32\drivers\isapnp.sys
14:52:56.0992 0x100c  isapnp - ok
14:52:57.0008 0x100c  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\windows\System32\drivers\msiscsi.sys
14:52:57.0008 0x100c  iScsiPrt - ok
14:52:57.0024 0x100c  [ 4EE2423C38F43D37F8497A672FD10BDC, 031C5272DD28809255CF4FA8E6DE45DBFBD9A363BBD5156D0AEE0787C4297980 ] ISCT            C:\windows\System32\drivers\ISCTD64.sys
14:52:57.0024 0x100c  ISCT - ok
14:52:57.0024 0x100c  [ 5215D12B13FC2BC7717AA4884846D34F, B97B8FFC6FB212398BF772C08B318411EA70B683B816906F30EF35DEB5B1C130 ] ISCTAgent       C:\Program Files\Intel\Intel® Smart Connect Technology Agent\iSCTAgent.exe
14:52:57.0039 0x100c  ISCTAgent - ok
14:52:57.0039 0x100c  [ 2C04ACF9070282AC9AA837C52CA3C128, 2C68FE2E876E5089F27021038E868E21288F694F3ED0390AED5B4712CC7567EC ] iwdbus          C:\windows\System32\drivers\iwdbus.sys
14:52:57.0039 0x100c  iwdbus - ok
14:52:57.0039 0x100c  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
14:52:57.0055 0x100c  jhi_service - ok
14:52:57.0055 0x100c  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\windows\System32\drivers\kbdclass.sys
14:52:57.0055 0x100c  kbdclass - ok
14:52:57.0055 0x100c  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\windows\System32\drivers\kbdhid.sys
14:52:57.0071 0x100c  kbdhid - ok
14:52:57.0071 0x100c  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\windows\system32\DRIVERS\kdnic.sys
14:52:57.0071 0x100c  kdnic - ok
14:52:57.0071 0x100c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\windows\system32\lsass.exe
14:52:57.0071 0x100c  KeyIso - ok
14:52:57.0086 0x100c  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
14:52:57.0086 0x100c  KSecDD - ok
14:52:57.0086 0x100c  [ 6D2EE96150E35B9EA49F2B481DE0369A, AC5915219FD81D89E444F6E86D71F7C495108FC35E7BD683321FC7006161AFE1 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
14:52:57.0102 0x100c  KSecPkg - ok
14:52:57.0102 0x100c  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
14:52:57.0102 0x100c  ksthunk - ok
14:52:57.0118 0x100c  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\windows\system32\msdtckrm.dll
14:52:57.0118 0x100c  KtmRm - ok
14:52:57.0133 0x100c  [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer    C:\windows\system32\srvsvc.dll
14:52:57.0149 0x100c  LanmanServer - ok
14:52:57.0149 0x100c  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
14:52:57.0164 0x100c  LanmanWorkstation - ok
14:52:57.0180 0x100c  [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc           C:\windows\System32\GeofenceMonitorService.dll
14:52:57.0196 0x100c  lfsvc - ok
14:52:57.0196 0x100c  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
14:52:57.0196 0x100c  lltdio - ok
14:52:57.0211 0x100c  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\windows\System32\lltdsvc.dll
14:52:57.0211 0x100c  lltdsvc - ok
14:52:57.0211 0x100c  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\windows\System32\lmhsvc.dll
14:52:57.0227 0x100c  lmhosts - ok
14:52:57.0227 0x100c  [ B16F2A40E738277AB75515D4B024305E, 38F48CCD72FA2B32DFD3123C0864AB724AC673414EEE09C6F582754177CD4B98 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:52:57.0242 0x100c  LMS - ok
14:52:57.0242 0x100c  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
14:52:57.0258 0x100c  LSI_SAS - ok
14:52:57.0258 0x100c  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
14:52:57.0258 0x100c  LSI_SAS2 - ok
14:52:57.0258 0x100c  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\windows\system32\drivers\lsi_sas3.sys
14:52:57.0274 0x100c  LSI_SAS3 - ok
14:52:57.0274 0x100c  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\windows\system32\drivers\lsi_sss.sys
14:52:57.0274 0x100c  LSI_SSS - ok
14:52:57.0289 0x100c  [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM             C:\windows\System32\lsm.dll
14:52:57.0305 0x100c  LSM - ok
14:52:57.0321 0x100c  [ B9D6F27D06565CEFF51FD012B74822CB, D6526314DC2F58745969B7132722C60DB33442CB55ADAB28E7EF64EB088E32DF ] LsvUIService    C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe
14:52:57.0321 0x100c  LsvUIService - ok
14:52:57.0321 0x100c  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\windows\system32\drivers\luafv.sys
14:52:57.0321 0x100c  luafv - ok
14:52:57.0336 0x100c  [ 681F27AFF39F79BDAE5D6B4A3E71B497, FB2C53C4776D1FD5D9E137240F1A508CEB4B0D530AA372A09A4B073569363BF7 ] MbaeSvc         C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae-svc.exe
14:52:57.0352 0x100c  MbaeSvc - ok
14:52:57.0352 0x100c  [ 5C3669B71657F22E67A1D4BD49D2CBE7, 7CAE59AA6CA9CBBD70BBD707A155FB169BF3F71096275BF7C0F415B6A092C671 ] MBAMProtector   C:\windows\system32\drivers\mbam.sys
14:52:57.0352 0x100c  MBAMProtector - ok
14:52:57.0399 0x100c  [ 6D8A2EE4244630B290A837E79C0F37A1, 6783BBC0BDC93E4D6D43531A1AD0DF5CD26C3BBFA6384927C5CF65AD97FB04AD ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
14:52:57.0430 0x100c  MBAMScheduler - ok
14:52:57.0461 0x100c  [ 09D4503CBB6ADB3A54E7C7A75090B728, 6139EA3338FD64205481EDEC813A44F8D395FDA7B67AA431DA61F3631C3EDAE6 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
14:52:57.0477 0x100c  MBAMService - ok
14:52:57.0477 0x100c  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy   C:\windows\system32\drivers\MBAMSwissArmy.sys
14:52:57.0493 0x100c  MBAMSwissArmy - ok
14:52:57.0493 0x100c  [ D1F2D4DF0A5D3B700794E26356A55B44, E8A06F85BAAC221026E3213947D59DF13DE8E17FBDD2BC68B6B921D74C632612 ] MBAMWebAccessControl C:\windows\system32\drivers\mwac.sys
14:52:57.0493 0x100c  MBAMWebAccessControl - ok
14:52:57.0493 0x100c  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\windows\system32\drivers\megasas.sys
14:52:57.0508 0x100c  megasas - ok
14:52:57.0524 0x100c  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\windows\system32\drivers\megasr.sys
14:52:57.0524 0x100c  megasr - ok
14:52:57.0539 0x100c  [ 18B9AD128EC84E8D16A83F70CF36594F, 199DF15D68E2A079794E5DD325162C1A68A65EF26EEF5A6C6154281DDE57279A ] MEIx64          C:\windows\system32\DRIVERS\TeeDriverx64.sys
14:52:57.0539 0x100c  MEIx64 - ok
14:52:57.0539 0x100c  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\windows\system32\mmcss.dll
14:52:57.0539 0x100c  MMCSS - ok
14:52:57.0555 0x100c  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\windows\system32\drivers\modem.sys
14:52:57.0555 0x100c  Modem - ok
14:52:57.0555 0x100c  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\windows\System32\drivers\monitor.sys
14:52:57.0555 0x100c  monitor - ok
14:52:57.0555 0x100c  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\windows\System32\drivers\mouclass.sys
14:52:57.0571 0x100c  mouclass - ok
14:52:57.0571 0x100c  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\windows\System32\drivers\mouhid.sys
14:52:57.0571 0x100c  mouhid - ok
14:52:57.0571 0x100c  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
14:52:57.0571 0x100c  mountmgr - ok
14:52:57.0586 0x100c  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
14:52:57.0586 0x100c  mpsdrv - ok
14:52:57.0602 0x100c  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\windows\system32\mpssvc.dll
14:52:57.0649 0x100c  MpsSvc - ok
14:52:57.0649 0x100c  [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
14:52:57.0649 0x100c  MRxDAV - ok
14:52:57.0664 0x100c  [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
14:52:57.0680 0x100c  mrxsmb - ok
14:52:57.0680 0x100c  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
14:52:57.0696 0x100c  mrxsmb10 - ok
14:52:57.0696 0x100c  [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
14:52:57.0711 0x100c  mrxsmb20 - ok
14:52:57.0711 0x100c  [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge        C:\windows\system32\DRIVERS\bridge.sys
14:52:57.0711 0x100c  MsBridge - ok
14:52:57.0727 0x100c  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\windows\System32\msdtc.exe
14:52:57.0727 0x100c  MSDTC - ok
14:52:57.0727 0x100c  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\windows\system32\drivers\Msfs.sys
14:52:57.0727 0x100c  Msfs - ok
14:52:57.0742 0x100c  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\windows\System32\drivers\msgpiowin32.sys
14:52:57.0742 0x100c  msgpiowin32 - ok
14:52:57.0742 0x100c  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
14:52:57.0742 0x100c  mshidkmdf - ok
14:52:57.0742 0x100c  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\windows\System32\drivers\mshidumdf.sys
14:52:57.0758 0x100c  mshidumdf - ok
14:52:57.0758 0x100c  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
14:52:57.0758 0x100c  msisadrv - ok
14:52:57.0758 0x100c  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
14:52:57.0774 0x100c  MSiSCSI - ok
14:52:57.0774 0x100c  msiserver - ok
14:52:57.0774 0x100c  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
14:52:57.0774 0x100c  MSKSSRV - ok
14:52:57.0789 0x100c  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\windows\system32\DRIVERS\mslldp.sys
14:52:57.0789 0x100c  MsLldp - ok
14:52:57.0789 0x100c  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
14:52:57.0789 0x100c  MSPCLOCK - ok
14:52:57.0789 0x100c  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
14:52:57.0789 0x100c  MSPQM - ok
14:52:57.0805 0x100c  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
14:52:57.0821 0x100c  MsRPC - ok
14:52:57.0821 0x100c  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\windows\System32\drivers\mssmbios.sys
14:52:57.0821 0x100c  mssmbios - ok
14:52:57.0821 0x100c  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
14:52:57.0821 0x100c  MSTEE - ok
14:52:57.0836 0x100c  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\windows\System32\drivers\MTConfig.sys
14:52:57.0836 0x100c  MTConfig - ok
14:52:57.0836 0x100c  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\windows\system32\Drivers\mup.sys
14:52:57.0836 0x100c  Mup - ok
14:52:57.0852 0x100c  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\windows\system32\drivers\mvumis.sys
14:52:57.0852 0x100c  mvumis - ok
14:52:57.0868 0x100c  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\windows\system32\qagentRT.dll
14:52:57.0868 0x100c  napagent - ok
14:52:57.0899 0x100c  [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
14:52:57.0914 0x100c  NativeWifiP - ok
14:52:57.0930 0x100c  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\windows\System32\ncasvc.dll
14:52:57.0946 0x100c  NcaSvc - ok
14:52:57.0961 0x100c  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\windows\System32\ncbservice.dll
14:52:57.0961 0x100c  NcbService - ok
14:52:57.0977 0x100c  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\windows\System32\NcdAutoSetup.dll
14:52:57.0977 0x100c  NcdAutoSetup - ok
14:52:58.0039 0x100c  [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS            C:\windows\system32\drivers\ndis.sys
14:52:58.0055 0x100c  NDIS - ok
14:52:58.0071 0x100c  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
14:52:58.0071 0x100c  NdisCap - ok
14:52:58.0071 0x100c  [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform  C:\windows\system32\DRIVERS\NdisImPlatform.sys
14:52:58.0071 0x100c  NdisImPlatform - ok
14:52:58.0086 0x100c  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
14:52:58.0086 0x100c  NdisTapi - ok
14:52:58.0086 0x100c  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
14:52:58.0086 0x100c  Ndisuio - ok
14:52:58.0086 0x100c  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\windows\System32\drivers\NdisVirtualBus.sys
14:52:58.0086 0x100c  NdisVirtualBus - ok
14:52:58.0102 0x100c  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
14:52:58.0102 0x100c  NdisWan - ok
14:52:58.0117 0x100c  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\windows\system32\DRIVERS\ndiswan.sys
14:52:58.0117 0x100c  NdisWanLegacy - ok
14:52:58.0117 0x100c  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
14:52:58.0117 0x100c  NDProxy - ok
14:52:58.0133 0x100c  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\windows\system32\drivers\Ndu.sys
14:52:58.0133 0x100c  Ndu - ok
14:52:58.0133 0x100c  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
14:52:58.0133 0x100c  NetBIOS - ok
14:52:58.0149 0x100c  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
14:52:58.0149 0x100c  NetBT - ok
14:52:58.0164 0x100c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\windows\system32\lsass.exe
14:52:58.0164 0x100c  Netlogon - ok
14:52:58.0164 0x100c  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\windows\System32\netman.dll
14:52:58.0180 0x100c  Netman - ok
14:52:58.0196 0x100c  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\windows\System32\netprofmsvc.dll
14:52:58.0196 0x100c  netprofm - ok
14:52:58.0211 0x100c  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:52:58.0211 0x100c  NetTcpPortSharing - ok
14:52:58.0227 0x100c  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\windows\system32\DRIVERS\netvsc63.sys
14:52:58.0227 0x100c  netvsc - ok
14:52:58.0336 0x100c  [ 31D3E4959C410A7DEC2109CA8BF369AD, C62EFB02E950BCAC104051603DEDD9A497ED4FA81D3236008C15AFACE6CBE092 ] NETwNb64        C:\windows\system32\DRIVERS\NETwbw02.sys
14:52:58.0399 0x100c  NETwNb64 - ok
14:52:58.0539 0x100c  [ B636B4A8E59A73033B766EA7FD7C3B81, CAC8614DEE83623DE56C969C668A33366793779084B6A23F59ADC98392115F8C ] NETwNe64        C:\windows\system32\DRIVERS\NETwew02.sys
14:52:58.0618 0x100c  NETwNe64 - ok
14:52:58.0633 0x100c  [ 16D554B750B93034A3D89EC07895E414, F3BB2CF8E0EA07D50C2E99221AF0B2A0BDB6D835C0249D479DE8AFD94ADED674 ] NitroDriverReadSpool8 C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
14:52:58.0633 0x100c  NitroDriverReadSpool8 - ok
14:52:58.0649 0x100c  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\windows\System32\nlasvc.dll
14:52:58.0649 0x100c  NlaSvc - ok
14:52:58.0680 0x100c  [ 4EE0410161B7BE586302AFBEBBEB8AD6, A9A228C5B62D8DDC11F40FACB09540FE53D01F8882E7A4935152F60F04EA2DE3 ] nlsX86cc        C:\windows\SysWOW64\NLSSRV32.EXE
14:52:58.0680 0x100c  nlsX86cc - ok
14:52:58.0696 0x100c  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\windows\system32\drivers\Npfs.sys
14:52:58.0696 0x100c  Npfs - ok
14:52:58.0696 0x100c  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\windows\System32\drivers\npsvctrig.sys
14:52:58.0696 0x100c  npsvctrig - ok
14:52:58.0696 0x100c  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\windows\system32\nsisvc.dll
14:52:58.0696 0x100c  nsi - ok
14:52:58.0711 0x100c  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
14:52:58.0711 0x100c  nsiproxy - ok
14:52:58.0758 0x100c  [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
14:52:58.0789 0x100c  Ntfs - ok
14:52:58.0789 0x100c  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\windows\system32\drivers\Null.sys
14:52:58.0789 0x100c  Null - ok
14:52:58.0805 0x100c  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\windows\system32\drivers\nvraid.sys
14:52:58.0805 0x100c  nvraid - ok
14:52:58.0821 0x100c  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\windows\system32\drivers\nvstor.sys
14:52:58.0821 0x100c  nvstor - ok
14:52:58.0821 0x100c  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
14:52:58.0821 0x100c  nv_agp - ok
14:52:58.0836 0x100c  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:52:58.0836 0x100c  ose - ok
14:52:58.0852 0x100c  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
14:52:58.0868 0x100c  p2pimsvc - ok
14:52:58.0883 0x100c  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\windows\system32\p2psvc.dll
14:52:58.0883 0x100c  p2psvc - ok
14:52:58.0899 0x100c  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\windows\System32\drivers\parport.sys
14:52:58.0899 0x100c  Parport - ok
14:52:58.0899 0x100c  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\windows\system32\drivers\partmgr.sys
14:52:58.0899 0x100c  partmgr - ok
14:52:58.0914 0x100c  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\windows\System32\pcasvc.dll
14:52:58.0930 0x100c  PcaSvc - ok
14:52:58.0946 0x100c  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\windows\system32\drivers\pci.sys
14:52:58.0946 0x100c  pci - ok
14:52:58.0962 0x100c  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\windows\system32\drivers\pciide.sys
14:52:58.0962 0x100c  pciide - ok
14:52:58.0962 0x100c  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
14:52:58.0962 0x100c  pcmcia - ok
14:52:58.0977 0x100c  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\windows\system32\drivers\pcw.sys
14:52:58.0977 0x100c  pcw - ok
14:52:58.0977 0x100c  [ B9D968D8E2B0F9C6301CEB39CFC9B9E4, 83F32831B0727F18B56DC3CAF37E45A3523D2BBCD54D1421F0DE5A0179D8A404 ] pdc             C:\windows\system32\drivers\pdc.sys
14:52:58.0977 0x100c  pdc - ok
14:52:58.0993 0x100c  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\windows\system32\drivers\peauth.sys
14:52:59.0008 0x100c  PEAUTH - ok
14:52:59.0024 0x100c  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\windows\SysWow64\perfhost.exe
14:52:59.0024 0x100c  PerfHost - ok
14:52:59.0040 0x100c  [ FB6ADFAAFFF621B366BBCC81EC0B7118, 2B33054B6EE10B99EADF201B75B89E943E1D165E2D23DA1F1E508702BE4A2762 ] PGService       C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
14:52:59.0040 0x100c  PGService - ok
14:52:59.0055 0x100c  [ 3A6D56E0E072AB0F022FE03ED8C2693A, 8AA5823F68FEDEDB5E8916BD35832BC438A781142CF1672983D593B903083A68 ] PhoneCompanionPusher C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe
14:52:59.0055 0x100c  PhoneCompanionPusher - ok
14:52:59.0071 0x100c  [ 0B2E100645AFAB3204313148DFE42322, C28FA6EF4FD8001E8F3367A7CB32E44F5D6A3E1EFBEC3C947A2FD3C3B0AF3568 ] PhoneCompanionVap C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionVap.exe
14:52:59.0071 0x100c  PhoneCompanionVap - ok
14:52:59.0102 0x100c  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\windows\system32\pla.dll
14:52:59.0133 0x100c  pla - ok
14:52:59.0133 0x100c  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
14:52:59.0149 0x100c  PlugPlay - ok
14:52:59.0149 0x100c  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
14:52:59.0149 0x100c  PNRPAutoReg - ok
14:52:59.0171 0x100c  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
14:52:59.0179 0x100c  PNRPsvc - ok
14:52:59.0189 0x100c  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
14:52:59.0189 0x100c  PolicyAgent - ok
14:52:59.0205 0x100c  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\windows\system32\umpo.dll
14:52:59.0205 0x100c  Power - ok
14:52:59.0267 0x100c  [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify     C:\windows\system32\spool\drivers\x64\3\PrintConfig.dll
14:52:59.0314 0x100c  PrintNotify - ok
14:52:59.0330 0x100c  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\windows\System32\drivers\processr.sys
14:52:59.0330 0x100c  Processor - ok
14:52:59.0346 0x100c  [ EF1F8B57323E5D3FC6A0A25F98F90DBC, F50E81151604DCD59BB647FD6767C1631AE48B5FCA6D3423C4E32535C94D6369 ] ProfSvc         C:\windows\system32\profsvc.dll
14:52:59.0346 0x100c  ProfSvc - ok
14:52:59.0346 0x100c  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\windows\system32\DRIVERS\pacer.sys
14:52:59.0361 0x100c  Psched - ok
14:52:59.0361 0x100c  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\windows\system32\qwave.dll
14:52:59.0377 0x100c  QWAVE - ok
14:52:59.0377 0x100c  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
14:52:59.0377 0x100c  QWAVEdrv - ok
14:52:59.0377 0x100c  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
14:52:59.0392 0x100c  RasAcd - ok
14:52:59.0392 0x100c  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\windows\System32\rasauto.dll
14:52:59.0392 0x100c  RasAuto - ok
14:52:59.0408 0x100c  [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan          C:\windows\System32\rasmans.dll
14:52:59.0424 0x100c  RasMan - ok
14:52:59.0424 0x100c  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
14:52:59.0439 0x100c  RasPppoe - ok
14:52:59.0439 0x100c  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
14:52:59.0455 0x100c  rdbss - ok
14:52:59.0455 0x100c  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\windows\System32\drivers\rdpbus.sys
14:52:59.0455 0x100c  rdpbus - ok
14:52:59.0471 0x100c  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\windows\system32\drivers\rdpdr.sys
14:52:59.0471 0x100c  RDPDR - ok
14:52:59.0486 0x100c  [ 9F08A6608F98B5407E7DDBCF306573EF, 92812F97CFDB2EC128BC48143DE215B7D012B15D3FB4D2199222AD8C31DA5016 ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
14:52:59.0486 0x100c  RdpVideoMiniport - ok
14:52:59.0486 0x100c  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
14:52:59.0502 0x100c  rdyboost - ok
14:52:59.0517 0x100c  [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS            C:\windows\system32\drivers\ReFS.sys
14:52:59.0564 0x100c  ReFS - ok
14:52:59.0564 0x100c  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\windows\System32\mprdim.dll
14:52:59.0580 0x100c  RemoteAccess - ok
14:52:59.0580 0x100c  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\windows\system32\regsvc.dll
14:52:59.0580 0x100c  RemoteRegistry - ok
14:52:59.0596 0x100c  [ 0527EF6E23B9FAB37DDCBC479C6CFA28, C004CE600074AC434F8B24A3383F8C0ACFA5476D9E3B1493B40911C78B028D64 ] RFCOMM          C:\windows\System32\drivers\rfcomm.sys
14:52:59.0596 0x100c  RFCOMM - ok
14:52:59.0611 0x100c  [ FBA61BB4C484A01A655AFB18FF86C417, D53B2110CB09D0A909C4E330C468351BFE076BB056CCDDCB8ADA2FB91E96352E ] RichVideo64     C:\Program Files\CyberLink\Shared files\RichVideo64.exe
14:52:59.0627 0x100c  RichVideo64 - ok
14:52:59.0627 0x100c  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
14:52:59.0627 0x100c  RpcEptMapper - ok
14:52:59.0642 0x100c  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\windows\system32\locator.exe
14:52:59.0642 0x100c  RpcLocator - ok
14:52:59.0658 0x100c  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs           C:\windows\system32\rpcss.dll
14:52:59.0674 0x100c  RpcSs - ok
14:52:59.0674 0x100c  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
14:52:59.0674 0x100c  rspndr - ok
14:52:59.0689 0x100c  [ 6CBF283C7EBD07B7BB01D3E33B11BB28, 90B7AF25EFDBC71FDDD48D668BF410DB828ABD512FC02146E76962A8FF053DE9 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
14:52:59.0705 0x100c  RtkAudioService - ok
14:52:59.0783 0x100c  [ B0A0260A3C03156937ECDB67CE5C6FE5, 88102D22976398599FA6165E9DBC1213EF2A001C99602E2195C9A7BAB0A127D7 ] RtlWlanu        C:\windows\system32\DRIVERS\rtwlanu.sys
14:52:59.0830 0x100c  RtlWlanu - ok
14:52:59.0830 0x100c  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\windows\System32\drivers\vms3cap.sys
14:52:59.0830 0x100c  s3cap - ok
14:52:59.0830 0x100c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\windows\system32\lsass.exe
14:52:59.0830 0x100c  SamSs - ok
14:52:59.0846 0x100c  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
14:52:59.0846 0x100c  sbp2port - ok
14:52:59.0846 0x100c  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\windows\System32\SCardSvr.dll
14:52:59.0861 0x100c  SCardSvr - ok
14:52:59.0861 0x100c  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\windows\System32\ScDeviceEnum.dll
14:52:59.0861 0x100c  ScDeviceEnum - ok
14:52:59.0877 0x100c  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
14:52:59.0877 0x100c  scfilter - ok
14:52:59.0908 0x100c  [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule        C:\windows\system32\schedsvc.dll
14:52:59.0924 0x100c  Schedule - ok
14:52:59.0939 0x100c  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\windows\System32\certprop.dll
14:52:59.0939 0x100c  SCPolicySvc - ok
14:52:59.0955 0x100c  [ FDEC5799BA499D18AFA3A540538866E7, 551EE0945FE4EC213FFF623E524500B57531EFEA2D76FA7ED1D2D605E7E2168F ] sdbus           C:\windows\System32\drivers\sdbus.sys
14:52:59.0955 0x100c  sdbus - ok
14:52:59.0971 0x100c  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\windows\System32\drivers\sdstor.sys
14:52:59.0971 0x100c  sdstor - ok
14:52:59.0971 0x100c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys
14:52:59.0971 0x100c  secdrv - ok
14:52:59.0971 0x100c  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\windows\system32\seclogon.dll
14:52:59.0971 0x100c  seclogon - ok
14:52:59.0986 0x100c  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\windows\System32\sens.dll
14:52:59.0986 0x100c  SENS - ok
14:53:00.0002 0x100c  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] SensorsAlsDriver C:\windows\system32\DRIVERS\WUDFRd.sys
14:53:00.0002 0x100c  SensorsAlsDriver - ok
14:53:00.0002 0x100c  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] SensorsHIDClassDriver C:\windows\system32\DRIVERS\WUDFRd.sys
14:53:00.0017 0x100c  SensorsHIDClassDriver - ok
14:53:00.0017 0x100c  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] SensorsServiceDriver C:\windows\system32\DRIVERS\WUDFRd.sys
14:53:00.0017 0x100c  SensorsServiceDriver - ok
14:53:00.0033 0x100c  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\windows\system32\sensrsvc.dll
14:53:00.0033 0x100c  SensrSvc - ok
14:53:00.0033 0x100c  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\windows\system32\drivers\SerCx.sys
14:53:00.0049 0x100c  SerCx - ok
14:53:00.0049 0x100c  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\windows\system32\drivers\SerCx2.sys
14:53:00.0049 0x100c  SerCx2 - ok
14:53:00.0064 0x100c  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\windows\System32\drivers\serenum.sys
14:53:00.0064 0x100c  Serenum - ok
14:53:00.0064 0x100c  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\windows\System32\drivers\serial.sys
14:53:00.0064 0x100c  Serial - ok
14:53:00.0064 0x100c  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\windows\System32\drivers\sermouse.sys
14:53:00.0080 0x100c  sermouse - ok
14:53:00.0096 0x100c  [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv      C:\windows\system32\sessenv.dll
14:53:00.0096 0x100c  SessionEnv - ok
14:53:00.0096 0x100c  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\windows\System32\drivers\sfloppy.sys
14:53:00.0096 0x100c  sfloppy - ok
14:53:00.0111 0x100c  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\windows\System32\ipnathlp.dll
14:53:00.0127 0x100c  SharedAccess - ok
14:53:00.0142 0x100c  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\windows\System32\shsvcs.dll
14:53:00.0158 0x100c  ShellHWDetection - ok
14:53:00.0158 0x100c  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
14:53:00.0174 0x100c  SiSRaid2 - ok
14:53:00.0174 0x100c  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
14:53:00.0174 0x100c  SiSRaid4 - ok
14:53:00.0174 0x100c  [ 7F7580EB77F2F95ED67C8046C69D1242, 81CF1A440EA40FCE6B28E275BEFB5C743F3473DCF05ACBE517ECD7E904DD0A1C ] SmbDrvI         C:\windows\system32\DRIVERS\Smb_driver_Intel.sys
14:53:00.0174 0x100c  SmbDrvI - ok
14:53:00.0189 0x100c  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\windows\System32\smphost.dll
14:53:00.0189 0x100c  smphost - ok
14:53:00.0189 0x100c  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
14:53:00.0189 0x100c  SNMPTRAP - ok
14:53:00.0205 0x100c  [ 240C5C3793206725AA05665851E8C214, 96ADFB85EB1623EB00C251C1C6A1F441A1795F0EBFD10B17DD1CA58E3AE8A90D ] spaceport       C:\windows\system32\drivers\spaceport.sys
14:53:00.0221 0x100c  spaceport - ok
14:53:00.0221 0x100c  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\windows\system32\drivers\SpbCx.sys
14:53:00.0236 0x100c  SpbCx - ok
14:53:00.0252 0x100c  [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler         C:\windows\System32\spoolsv.exe
14:53:00.0267 0x100c  Spooler - ok
14:53:00.0408 0x100c  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\windows\system32\sppsvc.exe
14:53:00.0533 0x100c  sppsvc - ok
14:53:00.0564 0x100c  [ 2A9036906280663FA562D68C5E8599EF, 8EC147904E65AA67C813A916F61D36578C7DCBCB7C4BB626C84CBAEC0089B54C ] SPUVCbv         C:\windows\System32\Drivers\SPUVCbv_x64.sys
14:53:00.0596 0x100c  SPUVCbv - ok
14:53:00.0611 0x100c  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\windows\system32\DRIVERS\srv.sys
14:53:00.0627 0x100c  srv - ok
14:53:00.0642 0x100c  [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
14:53:00.0658 0x100c  srv2 - ok
14:53:00.0674 0x100c  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
14:53:00.0674 0x100c  srvnet - ok
14:53:00.0689 0x100c  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
14:53:00.0689 0x100c  SSDPSRV - ok
14:53:00.0689 0x100c  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\windows\system32\sstpsvc.dll
14:53:00.0705 0x100c  SstpSvc - ok
14:53:00.0705 0x100c  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\windows\system32\drivers\stexstor.sys
14:53:00.0705 0x100c  stexstor - ok
14:53:00.0721 0x100c  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\windows\System32\wiaservc.dll
14:53:00.0736 0x100c  stisvc - ok
14:53:00.0752 0x100c  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\windows\system32\drivers\storahci.sys
14:53:00.0752 0x100c  storahci - ok
14:53:00.0752 0x100c  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\windows\system32\DRIVERS\vmstorfl.sys
14:53:00.0752 0x100c  storflt - ok
14:53:00.0752 0x100c  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\windows\system32\drivers\stornvme.sys
14:53:00.0767 0x100c  stornvme - ok
14:53:00.0767 0x100c  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\windows\system32\storsvc.dll
14:53:00.0767 0x100c  StorSvc - ok
14:53:00.0767 0x100c  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\windows\system32\drivers\storvsc.sys
14:53:00.0767 0x100c  storvsc - ok
14:53:00.0783 0x100c  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\windows\system32\svsvc.dll
14:53:00.0783 0x100c  svsvc - ok
14:53:00.0783 0x100c  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\windows\System32\drivers\swenum.sys
14:53:00.0783 0x100c  swenum - ok
14:53:00.0799 0x100c  [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv           C:\windows\System32\swprv.dll
14:53:00.0814 0x100c  swprv - ok
14:53:00.0830 0x100c  [ F3FD427B1C036E060047B920887ACAE8, C5965F957D4D09FA5D579512251F14E7329B84C08B1A234636E750ED520AFF9E ] SynTP           C:\windows\system32\DRIVERS\SynTP.sys
14:53:00.0846 0x100c  SynTP - ok
14:53:00.0877 0x100c  [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain         C:\windows\system32\sysmain.dll
14:53:00.0892 0x100c  SysMain - ok
14:53:00.0908 0x100c  [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\windows\System32\SystemEventsBrokerServer.dll
14:53:00.0908 0x100c  SystemEventsBroker - ok
14:53:00.0924 0x100c  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\windows\System32\TabSvc.dll
14:53:00.0924 0x100c  TabletInputService - ok
14:53:00.0939 0x100c  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\windows\System32\tapisrv.dll
14:53:00.0939 0x100c  TapiSrv - ok
14:53:01.0002 0x100c  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] Tcpip           C:\windows\system32\drivers\tcpip.sys
14:53:01.0049 0x100c  Tcpip - ok
14:53:01.0127 0x100c  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
14:53:01.0158 0x100c  TCPIP6 - ok
14:53:01.0174 0x100c  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
14:53:01.0174 0x100c  tcpipreg - ok
14:53:01.0189 0x100c  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\windows\system32\DRIVERS\tdx.sys
14:53:01.0189 0x100c  tdx - ok
14:53:01.0189 0x100c  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\windows\System32\drivers\terminpt.sys
14:53:01.0189 0x100c  terminpt - ok
14:53:01.0221 0x100c  [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService     C:\windows\System32\termsrv.dll
14:53:01.0236 0x100c  TermService - ok
14:53:01.0252 0x100c  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\windows\system32\themeservice.dll
14:53:01.0252 0x100c  Themes - ok
14:53:01.0252 0x100c  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\windows\system32\mmcss.dll
14:53:01.0252 0x100c  THREADORDER - ok
14:53:01.0268 0x100c  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\windows\System32\TimeBrokerServer.dll
14:53:01.0268 0x100c  TimeBroker - ok
14:53:01.0283 0x100c  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\windows\system32\drivers\tpm.sys
14:53:01.0283 0x100c  TPM - ok
14:53:01.0299 0x100c  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\windows\System32\trkwks.dll
14:53:01.0299 0x100c  TrkWks - ok
14:53:01.0299 0x100c  [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
14:53:01.0315 0x100c  TrustedInstaller - ok
14:53:01.0315 0x100c  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
14:53:01.0315 0x100c  TsUsbFlt - ok
14:53:01.0315 0x100c  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\windows\System32\drivers\TsUsbGD.sys
14:53:01.0315 0x100c  TsUsbGD - ok
14:53:01.0330 0x100c  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
14:53:01.0330 0x100c  tunnel - ok
14:53:01.0346 0x100c  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\windows\system32\drivers\uagp35.sys
14:53:01.0346 0x100c  uagp35 - ok
14:53:01.0346 0x100c  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\windows\System32\drivers\uaspstor.sys
14:53:01.0346 0x100c  UASPStor - ok
14:53:01.0361 0x100c  [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000        C:\windows\System32\drivers\ucx01000.sys
14:53:01.0361 0x100c  UCX01000 - ok
14:53:01.0377 0x100c  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\windows\system32\DRIVERS\udfs.sys
14:53:01.0393 0x100c  udfs - ok
14:53:01.0393 0x100c  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\windows\System32\drivers\UEFI.sys
14:53:01.0393 0x100c  UEFI - ok
14:53:01.0393 0x100c  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\windows\system32\UI0Detect.exe
14:53:01.0408 0x100c  UI0Detect - ok
14:53:01.0408 0x100c  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
14:53:01.0408 0x100c  uliagpkx - ok
14:53:01.0408 0x100c  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\windows\System32\drivers\umbus.sys
14:53:01.0424 0x100c  umbus - ok
14:53:01.0424 0x100c  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\windows\System32\drivers\umpass.sys
14:53:01.0424 0x100c  UmPass - ok
14:53:01.0439 0x100c  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\windows\System32\umrdp.dll
14:53:01.0439 0x100c  UmRdpService - ok
14:53:01.0455 0x100c  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\windows\System32\upnphost.dll
14:53:01.0471 0x100c  upnphost - ok
14:53:01.0471 0x100c  [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64       C:\windows\System32\Drivers\usbaapl64.sys
14:53:01.0471 0x100c  USBAAPL64 - ok
14:53:01.0486 0x100c  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\windows\System32\drivers\usbccgp.sys
14:53:01.0486 0x100c  usbccgp - ok
14:53:01.0486 0x100c  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\windows\System32\drivers\usbcir.sys
14:53:01.0502 0x100c  usbcir - ok
14:53:01.0502 0x100c  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\windows\System32\drivers\usbehci.sys
14:53:01.0502 0x100c  usbehci - ok
14:53:01.0518 0x100c  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\windows\System32\drivers\usbhub.sys
14:53:01.0533 0x100c  usbhub - ok
14:53:01.0549 0x100c  [ 65392F3F3F65E4C6CC82A0F4F8A0B051, C11B662A28D95820717DFFC6B76DBB755E4876009A2342E5E3992DE32D6BFF61 ] USBHUB3         C:\windows\System32\drivers\UsbHub3.sys
14:53:01.0564 0x100c  USBHUB3 - ok
14:53:01.0580 0x100c  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\windows\System32\drivers\usbohci.sys
14:53:01.0580 0x100c  usbohci - ok
14:53:01.0580 0x100c  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\windows\System32\drivers\usbprint.sys
14:53:01.0580 0x100c  usbprint - ok
14:53:01.0596 0x100c  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\windows\System32\drivers\USBSTOR.SYS
14:53:01.0596 0x100c  USBSTOR - ok
14:53:01.0596 0x100c  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\windows\System32\drivers\usbuhci.sys
14:53:01.0596 0x100c  usbuhci - ok
14:53:01.0611 0x100c  [ 18F744E8CCEB2670040EBAF7AD77B8C6, C5E2DF4EA0D946B4DA67DE29FA9D0F079DED35EC59B98E532C4C2D5F8E86DA0A ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
14:53:01.0611 0x100c  usbvideo - ok
14:53:01.0627 0x100c  [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI         C:\windows\System32\drivers\USBXHCI.SYS
14:53:01.0643 0x100c  USBXHCI - ok
14:53:01.0643 0x100c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\windows\system32\lsass.exe
14:53:01.0643 0x100c  VaultSvc - ok
14:53:01.0658 0x100c  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
14:53:01.0658 0x100c  vdrvroot - ok
14:53:01.0689 0x100c  [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds             C:\windows\System32\vds.exe
14:53:01.0705 0x100c  vds - ok
14:53:01.0721 0x100c  [ F7579733F4E8FF9B534C3F7D38F25C2C, 449FED49F2178D2A8000549B180606D050751762F53E600C13CFBEC91601DE87 ] VeriFaceSrv     C:\Program Files (x86)\Lenovo\Lenovo VeriFace\VfConnectorService.exe
14:53:01.0721 0x100c  VeriFaceSrv - ok
14:53:01.0721 0x100c  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\windows\system32\drivers\VerifierExt.sys
14:53:01.0721 0x100c  VerifierExt - ok
14:53:01.0752 0x100c  [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp           C:\windows\System32\drivers\vhdmp.sys
14:53:01.0768 0x100c  vhdmp - ok
14:53:01.0768 0x100c  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\windows\system32\drivers\viaide.sys
14:53:01.0768 0x100c  viaide - ok
14:53:01.0768 0x100c  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\windows\system32\drivers\vmbus.sys
14:53:01.0783 0x100c  vmbus - ok
14:53:01.0783 0x100c  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\windows\System32\drivers\VMBusHID.sys
14:53:01.0783 0x100c  VMBusHID - ok
14:53:01.0799 0x100c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\windows\System32\ICSvc.dll
14:53:01.0814 0x100c  vmicguestinterface - ok
14:53:01.0814 0x100c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\windows\System32\ICSvc.dll
14:53:01.0830 0x100c  vmicheartbeat - ok
14:53:01.0846 0x100c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\windows\System32\ICSvc.dll
14:53:01.0846 0x100c  vmickvpexchange - ok
14:53:01.0861 0x100c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\windows\System32\ICSvc.dll
14:53:01.0877 0x100c  vmicrdv - ok
14:53:01.0877 0x100c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\windows\System32\ICSvc.dll
14:53:01.0893 0x100c  vmicshutdown - ok
14:53:01.0908 0x100c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\windows\System32\ICSvc.dll
14:53:01.0908 0x100c  vmictimesync - ok
14:53:01.0924 0x100c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\windows\System32\ICSvc.dll
14:53:01.0940 0x100c  vmicvss - ok
14:53:01.0940 0x100c  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\windows\system32\drivers\volmgr.sys
14:53:01.0940 0x100c  volmgr - ok
14:53:01.0955 0x100c  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
14:53:01.0955 0x100c  volmgrx - ok
14:53:01.0971 0x100c  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\windows\system32\drivers\volsnap.sys
14:53:01.0986 0x100c  volsnap - ok
14:53:01.0986 0x100c  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\windows\System32\drivers\vpci.sys
14:53:01.0986 0x100c  vpci - ok
14:53:02.0002 0x100c  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
14:53:02.0002 0x100c  vsmraid - ok
14:53:02.0033 0x100c  [ E369C59F2C0852DDD090C07E0DDE0051, 4FAC94458EAAEED4F84A86FBAB8FBB332D0AF85BD528E63C0C058A2DA8E3011D ] VSS             C:\windows\system32\vssvc.exe
14:53:02.0065 0x100c  VSS - ok
14:53:02.0080 0x100c  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\windows\system32\drivers\vstxraid.sys
14:53:02.0080 0x100c  VSTXRAID - ok
14:53:02.0080 0x100c  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\windows\System32\drivers\vwifibus.sys
14:53:02.0080 0x100c  vwifibus - ok
14:53:02.0096 0x100c  [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
14:53:02.0096 0x100c  vwififlt - ok
14:53:02.0096 0x100c  [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
14:53:02.0096 0x100c  vwifimp - ok
14:53:02.0111 0x100c  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\windows\system32\w32time.dll
14:53:02.0127 0x100c  W32Time - ok
14:53:02.0127 0x100c  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\windows\System32\drivers\wacompen.sys
14:53:02.0127 0x100c  WacomPen - ok
14:53:02.0158 0x100c  [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine        C:\windows\system32\wbengine.exe
14:53:02.0190 0x100c  wbengine - ok
14:53:02.0205 0x100c  [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
14:53:02.0221 0x100c  WbioSrvc - ok
14:53:02.0221 0x100c  [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc          C:\windows\System32\wcmsvc.dll
14:53:02.0236 0x100c  Wcmsvc - ok
14:53:02.0252 0x100c  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\windows\System32\wcncsvc.dll
14:53:02.0268 0x100c  wcncsvc - ok
14:53:02.0268 0x100c  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
14:53:02.0268 0x100c  WcsPlugInService - ok
14:53:02.0268 0x100c  [ 0359607177E5E9F6041136CC0A5CB0B6, 16687BE2639648CF46E8768BA1798030472C525612C629BF134D053240E2195B ] WdBoot          C:\windows\system32\drivers\WdBoot.sys
14:53:02.0268 0x100c  WdBoot - ok
14:53:02.0299 0x100c  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
14:53:02.0315 0x100c  Wdf01000 - ok
14:53:02.0330 0x100c  [ DE8D12B4C3F55FA2C5E9774314F6C58A, C3E835DC066A94E1431BCDC90D7EA27AAC6F82826F4A5527B37D865241D7A366 ] WdFilter        C:\windows\system32\drivers\WdFilter.sys
14:53:02.0330 0x100c  WdFilter - ok
14:53:02.0330 0x100c  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\windows\system32\wdi.dll
14:53:02.0346 0x100c  WdiServiceHost - ok
14:53:02.0346 0x100c  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\windows\system32\wdi.dll
14:53:02.0346 0x100c  WdiSystemHost - ok
14:53:02.0346 0x100c  [ 4AD874CDC812EC156265E451B6B09DAB, 6E3E05B8301841425E9BB0D54B35EF386B78EEB307B5A6153FD1F366D30F23FA ] WdNisDrv        C:\windows\system32\Drivers\WdNisDrv.sys
14:53:02.0361 0x100c  WdNisDrv - ok
14:53:02.0361 0x100c  WdNisSvc - ok
14:53:02.0361 0x100c  [ 91B18D7A1702ED589E67C6C81052B955, 5D1DA8B86106A28E50BBCCB36527CC130D41201F5BE1D3DC5F1D6F7ECCF807BA ] WebClient       C:\windows\System32\webclnt.dll
14:53:02.0377 0x100c  WebClient - ok
14:53:02.0377 0x100c  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\windows\system32\wecsvc.dll
14:53:02.0393 0x100c  Wecsvc - ok
14:53:02.0393 0x100c  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\windows\system32\wephostsvc.dll
14:53:02.0393 0x100c  WEPHOSTSVC - ok
14:53:02.0393 0x100c  [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport   C:\windows\System32\wercplsupport.dll
14:53:02.0408 0x100c  wercplsupport - ok
14:53:02.0408 0x100c  [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc          C:\windows\System32\WerSvc.dll
14:53:02.0408 0x100c  WerSvc - ok
14:53:02.0424 0x100c  [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS         C:\windows\system32\DRIVERS\wfplwfs.sys
14:53:02.0424 0x100c  WFPLWFS - ok
14:53:02.0424 0x100c  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\windows\System32\wiarpc.dll
14:53:02.0440 0x100c  WiaRpc - ok
14:53:02.0440 0x100c  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\windows\system32\drivers\wimmount.sys
14:53:02.0440 0x100c  WIMMount - ok
14:53:02.0440 0x100c  WinDefend - ok
14:53:02.0502 0x100c  [ 3853778242E374E49BDA5EAB72DD8E60, 26BC53AE79161297782743C1A2CC71B7D0FE8338C9763B88EB3F298EB8FA1882 ] WindowsVNT_R3   C:\Program Files (x86)\Windows Network Accelerater\v3\winvxm.exe
14:53:02.0565 0x100c  WindowsVNT_R3 - ok
14:53:02.0580 0x100c  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\windows\system32\winhttp.dll
14:53:02.0596 0x100c  WinHttpAutoProxySvc - ok
14:53:02.0611 0x100c  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
14:53:02.0611 0x100c  Winmgmt - ok
14:53:02.0690 0x100c  [ 9CE162EB9057CF079736F4DD00FC0D6C, 412C34557866D2A3B3CDAFA5A03B87C01AACF75E349802E511098B20137028D9 ] WinRM           C:\windows\system32\WsmSvc.dll
14:53:02.0768 0x100c  WinRM - ok
14:53:02.0783 0x100c  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
14:53:02.0799 0x100c  WinUsb - ok
14:53:02.0861 0x100c  [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] WlanSvc         C:\windows\System32\wlansvc.dll
14:53:02.0908 0x100c  WlanSvc - ok
14:53:02.0943 0x100c  [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc         C:\windows\system32\wlidsvc.dll
14:53:02.0959 0x100c  wlidsvc - ok
14:53:02.0974 0x100c  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\windows\System32\drivers\wmiacpi.sys
14:53:02.0974 0x100c  WmiAcpi - ok
14:53:02.0990 0x100c  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
14:53:02.0990 0x100c  wmiApSrv - ok
14:53:02.0990 0x100c  WMPNetworkSvc - ok
14:53:02.0990 0x100c  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\windows\system32\drivers\Wof.sys
14:53:03.0006 0x100c  Wof - ok
14:53:03.0037 0x100c  [ 61BF52E9FFAB27A0B6D621BE26088373, 81291D52C381360E69D51E7DEB05CFAC651A7E9EF781CA23062C0583D0C94708 ] workfolderssvc  C:\windows\system32\workfolderssvc.dll
14:53:03.0068 0x100c  workfolderssvc - ok
14:53:03.0068 0x100c  [ 182561A14F2E93E81E66FE3700D17A5A, FB9A06058A8BCCEDCDC5BF8899D9B2FBA5752C262C5FC6D2B8338884F3303D12 ] wpcfltr         C:\windows\system32\DRIVERS\wpcfltr.sys
14:53:03.0068 0x100c  wpcfltr - ok
14:53:03.0084 0x100c  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\windows\System32\wpcsvc.dll
14:53:03.0084 0x100c  WPCSvc - ok
14:53:03.0099 0x100c  [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
14:53:03.0099 0x100c  WPDBusEnum - ok
14:53:03.0099 0x100c  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\windows\system32\drivers\WpdUpFltr.sys
14:53:03.0099 0x100c  WpdUpFltr - ok
14:53:03.0099 0x100c  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
14:53:03.0099 0x100c  ws2ifsl - ok
14:53:03.0115 0x100c  [ 9654DE19551093CD73874281E1573C94, 5E3513EC0CB180D90904BE8970AB64A4434279E8C467AE2CF693254E47B1D11E ] wscsvc          C:\windows\System32\wscsvc.dll
14:53:03.0115 0x100c  wscsvc - ok
14:53:03.0115 0x100c  [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice  C:\windows\System32\drivers\WSDPrint.sys
14:53:03.0130 0x100c  WSDPrintDevice - ok
14:53:03.0130 0x100c  [ D38297814FB6E33655342D869996E617, 3701892EEF87D1BF0E73322B90678802B6EA4AFA9CBF6111F39611C79DBA96C7 ] WSDScan         C:\windows\system32\DRIVERS\WSDScan.sys
14:53:03.0130 0x100c  WSDScan - ok
14:53:03.0130 0x100c  WSearch - ok
14:53:03.0209 0x100c  [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService       C:\windows\System32\WSService.dll
14:53:03.0255 0x100c  WSService - ok
14:53:03.0271 0x100c  [ 72B4E9DF6456C43C42A1419B09486045, 536BA7377B5BEA7EA46864453933111DB88DB8FB689C68915ACD7261A996E61D ] wsvd            C:\windows\system32\DRIVERS\wsvd.sys
14:53:03.0271 0x100c  wsvd - ok
14:53:03.0380 0x100c  [ DCD090318EC800CF6275C6835900B0C6, 9E72762EEE46CC0606B909850E6D22E9C8E5C88E82F7C974B2B7C1E5160BEBA7 ] wuauserv        C:\windows\system32\wuaueng.dll
14:53:03.0443 0x100c  wuauserv - ok
14:53:03.0443 0x100c  [ D537815E450A149752C15868392AD1F3, 8788CE493349299DB36E409C8CC3C6EA08301FA492C95D9D556E00BC13A05F13 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
14:53:03.0443 0x100c  WudfPf - ok
14:53:03.0459 0x100c  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFRd          C:\windows\System32\drivers\WUDFRd.sys
14:53:03.0459 0x100c  WUDFRd - ok
14:53:03.0474 0x100c  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFSensorLP    C:\windows\System32\drivers\WUDFRd.sys
14:53:03.0474 0x100c  WUDFSensorLP - ok
14:53:03.0474 0x100c  [ 9CDC2059A23E3C9B57696178508777E7, B680A2E2EDA5C8C6A547E7D9B2F2F8E6407C3EA0A01B82A4B88D48A27913A597 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
14:53:03.0474 0x100c  wudfsvc - ok
14:53:03.0490 0x100c  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdFs       C:\windows\system32\DRIVERS\WUDFRd.sys
14:53:03.0490 0x100c  WUDFWpdFs - ok
14:53:03.0505 0x100c  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdMtp      C:\windows\system32\DRIVERS\WUDFRd.sys
14:53:03.0505 0x100c  WUDFWpdMtp - ok
14:53:03.0521 0x100c  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\windows\System32\wwansvc.dll
14:53:03.0537 0x100c  WwanSvc - ok
14:53:03.0537 0x100c  [ B5909EE9DB919D075410B6CCF900E107, CB9785997F2015175DE507A80C3A71F5F8F748080464EC16050564C5CC0FD571 ] ymc             C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
14:53:03.0537 0x100c  ymc - ok
14:53:03.0630 0x100c  [ 7066911A64D98FA7F33926A9F2A6DB22, A39B87750D805566C0EBD71DD1361A91E006DC71221694C6151967A440417FCF ] YouTubeDownload_P2 C:\Program Files (x86)\YouTube Downloader Services\P2\youtubeserv.exe
14:53:03.0693 0x100c  YouTubeDownload_P2 - ok
14:53:03.0693 0x100c  ================ Scan global ===============================
14:53:03.0709 0x100c  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\windows\system32\basesrv.dll
14:53:03.0709 0x100c  [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\windows\system32\winsrv.dll
14:53:03.0724 0x100c  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\windows\system32\sxssrv.dll
14:53:03.0740 0x100c  [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\windows\system32\services.exe
14:53:03.0740 0x100c  [ Global ] - ok
14:53:03.0740 0x100c  ================ Scan MBR ==================================
14:53:03.0740 0x100c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
14:53:03.0755 0x100c  \Device\Harddisk0\DR0 - ok
14:53:03.0755 0x100c  [ DDAE9D649DB12F6AFF24483F2C298989 ] \Device\Harddisk1\DR3
14:53:03.0755 0x100c  \Device\Harddisk1\DR3 - ok
14:53:03.0755 0x100c  ================ Scan VBR ==================================
14:53:03.0755 0x100c  [ C0022153C00D96D35647A77538A27DEA ] \Device\Harddisk0\DR0\Partition1
14:53:03.0755 0x100c  \Device\Harddisk0\DR0\Partition1 - ok
14:53:03.0771 0x100c  [ 9676EA8F69001CE09416178D9CF1A024 ] \Device\Harddisk0\DR0\Partition2
14:53:03.0771 0x100c  \Device\Harddisk0\DR0\Partition2 - ok
14:53:03.0771 0x100c  [ B669FC05648EB7BF00F48FCEF6B524BC ] \Device\Harddisk0\DR0\Partition3
14:53:03.0771 0x100c  \Device\Harddisk0\DR0\Partition3 - ok
14:53:03.0771 0x100c  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition4
14:53:03.0771 0x100c  \Device\Harddisk0\DR0\Partition4 - ok
14:53:03.0771 0x100c  [ 5809F548B620E57331216B77A7A05059 ] \Device\Harddisk0\DR0\Partition5
14:53:03.0771 0x100c  \Device\Harddisk0\DR0\Partition5 - ok
14:53:03.0771 0x100c  [ 9F43EE5C8ED9E33AB5D67F5E8794969D ] \Device\Harddisk0\DR0\Partition6
14:53:03.0787 0x100c  \Device\Harddisk0\DR0\Partition6 - ok
14:53:03.0787 0x100c  [ 39FCA2CAE5C81F81E893E1875915E723 ] \Device\Harddisk0\DR0\Partition7
14:53:03.0787 0x100c  \Device\Harddisk0\DR0\Partition7 - ok
14:53:03.0787 0x100c  [ 6FFA72ECBEE2D4B2A6C3E1E73B4B2805 ] \Device\Harddisk1\DR3\Partition1
14:53:03.0787 0x100c  \Device\Harddisk1\DR3\Partition1 - ok
14:53:03.0787 0x100c  ================ Scan generic autorun ======================
14:53:04.0084 0x100c  [ 047D94A22B47AF83DDE4E32BB4E06D0A, CB9257995C67A1A44D6D316C36D3AAEF639BFD51A26C699D70FD047C45440CA5 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
14:53:04.0287 0x100c  RtHDVCpl - ok
14:53:04.0318 0x100c  [ D8AB6AC4A2D30641C9544021373B47EB, A0553AFB3B186D8EA28CF056139FA5AA150D6BD31E36E5EB9D5DD5940A90CA55 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
14:53:04.0365 0x100c  RtHDVBg_Dolby - ok
14:53:04.0365 0x100c  [ E50C263D8AB38DBD77D11263C8151708, 71ACC055C9D12BD6470DBF0C5E2D60DBE625565D729080EB59114979599A0CAF ] C:\windows\system32\igfxtray.exe
14:53:04.0380 0x100c  IgfxTray - ok
14:53:04.0396 0x100c  [ FADB06BC300A16A112D3B3949C2614D3, 13ECA5CC382148B8F5BF5F9208B449913E5A23BA95ED23FAB573C31A3AE95414 ] C:\windows\system32\hkcmd.exe
14:53:04.0412 0x100c  HotKeysCmds - ok
14:53:04.0427 0x100c  [ 293F44F1834FE2F7A99D746424167CA7, DBFDAE61824068DA23DDBD14B82E7B5D77E812A90BA60621C134ACB15AC6F5DA ] C:\windows\system32\igfxpers.exe
14:53:04.0443 0x100c  Persistence - ok
14:53:04.0443 0x100c  [ 4A0477ADCD07EC9D21257A2E456B16C5, CEF9C81730C12283A7600C3D921D89A62B14D1C46544B493F3AF7520DD2D1F79 ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
14:53:04.0443 0x100c  IAStorIcon - ok
14:53:04.0459 0x100c  [ 92BED6F62FBAC9E327A3BF599CE9AB32, 6ED9BB1B97AB0BDC64CE07FB8757651A83C918320320B84AB823933B8ACFDEB6 ] C:\windows\system32\DptfPolicyLpmServiceHelper.exe
14:53:04.0459 0x100c  DptfPolicyLpmServiceHelper - ok
14:53:04.0459 0x100c  BTMTrayAgent - ok
14:53:04.0474 0x100c  [ 5689BB0DB40DC712CC87A4F27925F939, 57164AEC7101BBB1E1321B1BD8CF91453F4A9AC549851885087B42E23D777DB2 ] C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe
14:53:04.0490 0x100c  Yoga PhoneCompanion - ok
14:53:04.0505 0x100c  [ 0E941C611B5A20FD2B5CE4FA4B69B89D, 1E4B08E236D20F46669B26B5287CED18719A2AD4C1EAA0A20E3A4C7EFF827230 ] C:\Program Files (x86)\Lenovo\Lenovo Transition\Transition.exe
14:53:04.0505 0x100c  AutoStartTransition - ok
14:53:04.0505 0x100c  Energy Manager - ok
14:53:04.0505 0x100c  [ ACFA436C851BC9204A6E2B8EBC8B888D, F895E7A77C2C04E61FD8D09909E08172FFEBF039D6DCF7C3D84FF1992D5FFFD3 ] C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe
14:53:04.0521 0x100c  Lenovo Utility - ok
14:53:04.0521 0x100c  [ 49CD8D25D932C5BF867EBFF00D432B75, D107F7736AC8D43CE93ABDE1A8038D8FE87779F25F41B3FD1E942DF439581236 ] C:\Program Files (x86)\Lenovo\LenovoAppShop\bin\ismagent.exe
14:53:04.0521 0x100c  Lenovo App Shop - ok
14:53:04.0537 0x100c  [ D88B2D487439305A2EC308A6796C3044, 79DF0A41ECB08D5BEB3393B2BA15E6C88AD626803E1734EFBA0DBE4ECF7274D7 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
14:53:04.0537 0x100c  iTunesHelper - ok
14:53:04.0552 0x100c  [ 1E63B83D39AE2CA3AB4DA0A5BB7F03CF, B7EBE2C710AB651B19E90077DE398054CFA0146A2BF02BCF6F774BE278768874 ] C:\Program Files (x86)\Malwarebytes Anti-Exploit\mbae.exe
14:53:04.0552 0x100c  Malwarebytes Anti-Exploit - ok
14:53:04.0552 0x100c  PCKeeper2 - ok
14:53:04.0568 0x100c  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.6.305.0 ), 0x61100 ( enabled : updated )
14:53:04.0584 0x100c  Win FW state via NFP2: enabled
14:53:04.0584 0x100c  ============================================================
14:53:04.0584 0x100c  Scan finished
14:53:04.0584 0x100c  ============================================================
14:53:04.0584 0x14c8  Detected object count: 0
14:53:04.0584 0x14c8  Actual detected object count: 0

 

 

 

ADW Cleaner result

 

# AdwCleaner v4.101 - Report created 17/11/2014 at 15:58:05
# Updated 09/11/2014 by Xplode
# Database : 2014-11-07.1 [Local]
# Operating System : Windows 8.1  (64 bits)
# Username : Pipskate - HAMMY
# Running from : E:\adwcleaner_4.101.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

-\\ Google Chrome v

*************************

AdwCleaner[R0].txt - [6221 octets] - [14/11/2014 12:01:07]
AdwCleaner[R1].txt - [814 octets] - [17/11/2014 14:56:57]
AdwCleaner[R2].txt - [873 octets] - [17/11/2014 14:57:48]
AdwCleaner[S0].txt - [5831 octets] - [14/11/2014 17:16:45]
AdwCleaner[S1].txt - [795 octets] - [17/11/2014 15:58:05]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [854 octets] ##########

 

 

 

 

Unable to run Junkware Removal Tool and ESET, as they both seem to require internet access to work and there is no internet access as a result of the manual proxy issue.

 



#6 mikerugg

mikerugg

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:10:01 AM

Posted 17 November 2014 - 06:51 PM

One month ago I woke up to this problem with the proxy setting and error 127.0.0.1:8800, causing no internet access. At the time I thought it was coincidental that Microsoft updates had taken place during the night. More on that later. For now, maybe I can help, and I registered here to do that as I noticed 5 people were reading this topic. I am running Windows 7 64 bit and I.E 11. Things I tried. Windows Restore, which of course kept failing. Rebooting from the 'last known good configuration' didn't help. I even changed the proxy setting in the Registry to no/off with no luck. But I refused to format yet as I had too much to restore if I did. On a whim I reloaded windows 7 as I was lucky enough to have the installation disk from Dell, which gives you 2 choices. Problem solved. Windows reinstalled without affecting any programs or files and the only additional step I had to do was download the latest Internet explorer. Just be ready to sit back and relax because this takes hours.

 

Fast forward to this morning. I woke up to find that my laptop had been restarted because Windows had installed updates. Went to go on the internet and the damn proxy situation was there again. As of going to bed last night all was fine, and no strange web sites had been visited. The only activity overnight were the updates. Maybe someone smarter than me can deduce what happened. So now, stuck with the same problem, I dreaded the process I had gone through before. I tried System Restore with little optimism and not even knowing if it would solve the problem even if it did work. But it didn't work which really pissed me off. So I completely uninstalled Malwarebytes and CCleaner. I uninstalled Bitdefender Antivirus. I turned off Windows Firewall and Windows Defender. Then I tried System Restore again with the restore point right prior to the Windows updates.

System Restore worked and the problem was gone. The nicest part of this besides getting the internet back in 10 minutes was all my antivirus programs that I uninstalled were, of course, back again. The next thing I did was change the Windows Update settings to ask me before installing, which I had done for years because I've seen many new problems after updates take place.

 

Hope this helped.

 

Mike






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users