Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Trojan.W32.Agent.ahqlz - pgms (incl. DDS) often cannot run


  • This topic is locked This topic is locked
57 replies to this topic

#31 Eeger33

Eeger33
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  

Posted 18 December 2014 - 06:16 PM

Below is what an automatic scan of  Trend antivirus did on 12/6/14 without my knowledge (note:  I could not start Trend nor read its logs till Scannow fixed things recently).     As you can see, Trend may have done too much at the time.     If we need FRST in the future,  perhaps the AV should be turned off first, if it can be.

 

12/6/2014 3:13 PM,HEU_AEGISCS008,Threat,C:\Users\DAW\Desktop\FRST64.exe,Removed,Real Time Scan
12/6/2014 3:13 PM,HEU_CDPLC024,Threat,C:\FRST\files,Removed,Correlation Scan
12/6/2014 3:13 PM,HEU_CDPLC024,Threat,C:\FRST\Quarantine\C\Users\DAW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TaxACT 2013.lnk.xBAD,Removed,Correlation Scan
12/6/2014 3:13 PM,HEU_CDPLC024,Threat,C:\Users\DAW\Desktop\Fixlog.txt,Removed,Correlation Scan
12/6/2014 3:13 PM,HEU_CDPLC016,Threat,C:\Users\DAW\AppData\Roaming\Mozilla\Firefox\Profiles\m8rjzhkj.default\prefs.js,Removed,Correlation Scan
12/6/2014 3:13 PM,HEU_CDPLC024,Threat,C:\Users\DAW\AppData\Local\Microsoft\Windows\INetCache\IE\ARI5CZ2W\up64[1],Removed,Correlation Scan
12/6/2014 3:13 PM,HEU_CDPLC024,Threat,C:\FRST\reb,Removed,Correlation Scan
12/6/2014 3:13 PM,HEU_CDPLC024,Threat,C:\FRST\Quarantine\C\Users\DAW\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TaxACT 2013 - 1040 Edition Readme.lnk.xBAD,Removed,Correlation Scan
 



BC AdBot (Login to Remove)

 


#32 Eeger33

Eeger33
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  

Posted 19 December 2014 - 11:17 AM

Bad news: Trend AV did not and will not start up in full Windows. I am running scans now.

#33 Eeger33

Eeger33
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  

Posted 19 December 2014 - 07:23 PM

Within the last hour, I used several runs of scannow to fix Trend - for now, anyway.    Between the time when Trend stopped working and the scannows, it was odd that neither Malwarebytes Threat scan nor ESET online scanner in Live Windows mode found nothing.       If you would like to see any particular scannow(s), I have them by date and time.



#34 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:08:55 AM

Posted 20 December 2014 - 11:39 AM

Hi Eeger33.

 

I think you should let Kaspersky remove the infections. Please run a scan again and fix everything it found. Grab a log file from it if possible.

 

Also, about your TrendMicro issue, please try to reinstall the program.

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#35 Eeger33

Eeger33
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  

Posted 20 December 2014 - 08:33 PM

The Kaspersky Rescue program deleted the malware "Gecko" zipped file I listed above in a recent post. But Kapersky warned that "Disinfection is not possible since 'Write is not supported'" I take it that Linux cannot write to Windows files/folders during a Rescue repair. As for Trend AV, it is working entirely normally since the second Scannow repair yesterday. The follow up scan on the 'C' drive is running in Rescue mode right now. It will take quite a while.

#36 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:08:55 AM

Posted 20 December 2014 - 11:43 PM

Hi Eeger33.

 

Kaspersky said like that because the infected file is in the zip archive.

 

Let me know when the scan finished.

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#37 Eeger33

Eeger33
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  

Posted 21 December 2014 - 10:06 AM

Kaspersky Rescue scan:   No trojans or other serious threats listed.        it scanned seven partitions or areas and only listed some packed and/or zipped files as being there, most on a secondary partition.    It Did NOT say they were threats.      I can only  supply a partial list of files;  it is incomplete because - for an unknown reason - when it scans the 'C' drive it merely flashes *partial* file names  briefly - most of them described as "password protected" files - and saves no record of them.    So what I have is an exact list from that secondary partition, but no exact list from the 'C' drive.   However, if those on 'C' might be crucial to your work,  I will attempt to snap a photo or somehow record as many as I can by rerunning 'C' drive scan (1.5 hours).  



#38 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:08:55 AM

Posted 21 December 2014 - 12:25 PM

Hi Eeger33.

 

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!

  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
    Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.

 

How's your computer running now?

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#39 Eeger33

Eeger33
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  

Posted 21 December 2014 - 03:39 PM

Windows still says I have no active Antivirus (but I do, of course)
and, if I turn on the Windows Firewall to see if it stays on,
sometimes it gets turned off - I notice this at the next startup.
So, like you said, I can leave Windows Firewall turned off as long as
I am using  Private Firewall.   Yesterday I used autoruns.exe by
Sysinternals to turn off some programs from starting that either You
or I no longer wanted.   However, most of the "Trend Micro"  entries
somehow got turned back on.     Maybe I have no choice on those.

Here's the log from TDSS - nothing found -

 

15:11:51.0398 0x1f0c  TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20
15:11:51.0398 0x1f0c  UEFI system
15:11:59.0799 0x1f0c  ============================================================
15:11:59.0799 0x1f0c  Current date / time: 2014/12/21 15:11:59.0799
15:11:59.0800 0x1f0c  SystemInfo:
15:11:59.0800 0x1f0c  
15:11:59.0800 0x1f0c  OS Version: 6.3.9600 ServicePack: 0.0
15:11:59.0800 0x1f0c  Product type: Workstation
15:11:59.0800 0x1f0c  ComputerName: LENOVO-PC
15:11:59.0800 0x1f0c  UserName: DAW
15:11:59.0800 0x1f0c  Windows directory: C:\WINDOWS
15:11:59.0800 0x1f0c  System windows directory: C:\WINDOWS
15:11:59.0800 0x1f0c  Running under WOW64
15:11:59.0800 0x1f0c  Processor architecture: Intel x64
15:11:59.0800 0x1f0c  Number of processors: 8
15:11:59.0800 0x1f0c  Page size: 0x1000
15:11:59.0800 0x1f0c  Boot type: Normal boot
15:11:59.0800 0x1f0c  ============================================================
15:12:00.0965 0x1f0c  KLMD registered as C:\WINDOWS\system32\drivers\54940563.sys
15:12:01.0818 0x1f0c  System UUID: {22052505-572A-1756-4C46-5F439B18BA87}
15:12:02.0754 0x1f0c  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
15:12:02.0760 0x1f0c  Drive \Device\Harddisk1\DR1 - Size: 0x1D1C1115E00 ( 1863.02 Gb ), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
15:12:02.0997 0x1f0c  ============================================================
15:12:02.0997 0x1f0c  \Device\Harddisk0\DR0:
15:12:02.0997 0x1f0c  GPT partitions:
15:12:02.0998 0x1f0c  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {C9F7CBBC-BFFE-4C76-B173-ECF5A9490087}, Name: , StartLBA 0x800, BlocksNum 0x1F4000
15:12:02.0998 0x1f0c  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {D08CDF62-3BB0-4BE2-84E0-819078A7793B}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000
15:12:02.0998 0x1f0c  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {B9A3670E-4C5F-4CB7-9439-A7DD99F07660}, Name: Microsoft reserved partition, StartLBA 0x276800, BlocksNum 0x40000
15:12:02.0998 0x1f0c  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {1549F553-2F20-4DA6-B02F-F73D504F4BED}, Name: Basic data partition, StartLBA 0x2B6800, BlocksNum 0x7331C000
15:12:02.0998 0x1f0c  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {10254953-EB49-4A8C-B682-75E83BFD63F3}, Name: , StartLBA 0x735D2800, BlocksNum 0xE1000
15:12:02.0998 0x1f0c  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {332B8384-0E15-48CC-B3E3-9B58AA2A8702}, Name: , StartLBA 0x736B3800, BlocksNum 0x1053000
15:12:02.0998 0x1f0c  MBR partitions:
15:12:02.0998 0x1f0c  \Device\Harddisk1\DR1:
15:12:02.0998 0x1f0c  MBR partitions:
15:12:02.0998 0x1f0c  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x40, BlocksNum 0xE8E074C1
15:12:02.0998 0x1f0c  ============================================================
15:12:03.0019 0x1f0c  C: <-> \Device\Harddisk0\DR0\Partition4
15:12:03.0029 0x1f0c  E: <-> \Device\Harddisk1\DR1\Partition1
15:12:03.0029 0x1f0c  ============================================================
15:12:03.0029 0x1f0c  Initialize success
15:12:03.0029 0x1f0c  ============================================================
15:12:56.0618 0x0618  ============================================================
15:12:56.0618 0x0618  Scan started
15:12:56.0618 0x0618  Mode: Manual;
15:12:56.0618 0x0618  ============================================================
15:12:56.0618 0x0618  KSN ping started
15:12:58.0946 0x0618  KSN ping finished: true
15:13:00.0825 0x0618  ================ Scan system memory ========================
15:13:00.0825 0x0618  System memory - ok
15:13:00.0825 0x0618  ================ Scan services =============================
15:13:00.0934 0x0618  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
15:13:00.0981 0x0618  1394ohci - ok
15:13:01.0013 0x0618  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
15:13:01.0044 0x0618  3ware - ok
15:13:01.0075 0x0618  [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
15:13:01.0122 0x0618  ACPI - ok
15:13:01.0122 0x0618  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
15:13:01.0138 0x0618  acpiex - ok
15:13:01.0153 0x0618  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
15:13:01.0169 0x0618  acpipagr - ok
15:13:01.0200 0x0618  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
15:13:01.0231 0x0618  AcpiPmi - ok
15:13:01.0231 0x0618  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
15:13:01.0263 0x0618  acpitime - ok
15:13:01.0341 0x0618  [ FBD29CBBD4F3FD3D03E66BBEB22F6A0D, 5F4D7682C8D1E423591260BD22CFE18DD602B658B289AE8EBF89060F8A328530 ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
15:13:01.0341 0x0618  AcrSch2Svc - ok
15:13:01.0356 0x0618  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
15:13:01.0419 0x0618  ADP80XX - ok
15:13:01.0450 0x0618  [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
15:13:01.0450 0x0618  AeLookupSvc - ok
15:13:01.0481 0x0618  [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\WINDOWS\system32\drivers\afd.sys
15:13:01.0528 0x0618  AFD - ok
15:13:01.0544 0x0618  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
15:13:01.0559 0x0618  agp440 - ok
15:13:01.0575 0x0618  [ 8E8E34B7BA059050EED827410D0697A2, 85B6684709F24729A6497563812A90A54068AC2DD9EEA03037CB1EEF5C85AAA9 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
15:13:01.0591 0x0618  ahcache - ok
15:13:01.0591 0x0618  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\WINDOWS\System32\alg.exe
15:13:01.0606 0x0618  ALG - ok
15:13:01.0622 0x0618  [ E019017558B28A707119F8545AD1A1C0, 7A080DB2BDD1AE7E849EE79BF42B737D78A4F6EA6D07F61D6E994D7A383E9551 ] ambakdrv        C:\WINDOWS\system32\ambakdrv.sys
15:13:01.0653 0x0618  ambakdrv - ok
15:13:01.0669 0x0618  [ 6CF81DD5083D7F94A7E76E50429A949C, 19240502A6406924F889D1AFA975B975A300776D8B2D0557181DF13649622E2B ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
15:13:01.0684 0x0618  AMD External Events Utility - ok
15:13:01.0684 0x0618  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
15:13:01.0700 0x0618  AmdK8 - ok
15:13:01.0981 0x0618  [ 71F8D8B977ACC5973FA042BF906E709F, 8106C5F5C8E40344CCCDB912845786DF287BDF068D7A6EF9D26B00FA1754C1BC ] amdkmdag        C:\WINDOWS\system32\DRIVERS\atikmdag.sys
15:13:02.0356 0x0618  amdkmdag - ok
15:13:02.0388 0x0618  [ 4AA027F91A8093B1CDF453B5394F6715, E6D15E959637C102A34F73F66BFDC38436575A2FEFFC3976ACF399A472F126A5 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
15:13:02.0419 0x0618  amdkmdap - ok
15:13:02.0419 0x0618  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
15:13:02.0481 0x0618  AmdPPM - ok
15:13:02.0497 0x0618  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
15:13:02.0544 0x0618  amdsata - ok
15:13:02.0559 0x0618  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
15:13:02.0575 0x0618  amdsbs - ok
15:13:02.0591 0x0618  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
15:13:02.0622 0x0618  amdxata - ok
15:13:02.0638 0x0618  [ 46014EDFDC8AF8733E14947448D122C5, 8CE2BD29CF7230A624745334A76F5F8C2E5C01EEDB2B803F9468771BC9DCBC4D ] ammntdrv        C:\WINDOWS\system32\ammntdrv.sys
15:13:02.0653 0x0618  ammntdrv - ok
15:13:02.0669 0x0618  [ 091F08BCEE2AEDDC89070370552DFD34, 8E3E057D1D5270E91CBB647251F3B28DA9D819F6040A8439C085CC546283339A ] ampa            C:\WINDOWS\system32\ampa.sys
15:13:02.0684 0x0618  ampa - ok
15:13:02.0731 0x0618  [ E1D8F96772F6BBE990B435580CA9C33B, 13EAF541BAB26EAB758521EAE7FC70D591B2BD2F6CB33E78D7F58FB169DDDF0C ] Amsp            C:\Program Files\Trend Micro\AMSP\coreServiceShell.exe
15:13:02.0731 0x0618  Amsp - ok
15:13:02.0731 0x0618  [ 7CD08E63219E00BB206077F5BA708677, E8F4031E5E524C60D5853B5DE3AC37E45F28B490665F0CD2016754EDCFA4B2F2 ] amwrtdrv        C:\WINDOWS\system32\amwrtdrv.sys
15:13:02.0763 0x0618  amwrtdrv - ok
15:13:02.0778 0x0618  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\WINDOWS\system32\drivers\appid.sys
15:13:02.0810 0x0618  AppID - ok
15:13:02.0825 0x0618  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
15:13:02.0825 0x0618  AppIDSvc - ok
15:13:02.0856 0x0618  [ 034ED41F13D9C1845C1E081F05B640DB, E4E17BA0B22C464DE60A6BF68D4D035D1B838DE4F0361029DED1AE00503E135C ] Appinfo         C:\WINDOWS\System32\appinfo.dll
15:13:02.0856 0x0618  Appinfo - ok
15:13:02.0856 0x0618  [ 8176FBA685178FB0F52D46693474FA50, 69FE3692C7FE24289A479ADD74F2C782B59A099B7B07FE5ACFC4DA899E40BFDE ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
15:13:02.0856 0x0618  AppMgmt - ok
15:13:02.0888 0x0618  [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
15:13:02.0903 0x0618  AppReadiness - ok
15:13:02.0950 0x0618  [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
15:13:02.0981 0x0618  AppXSvc - ok
15:13:02.0981 0x0618  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
15:13:02.0997 0x0618  arcsas - ok
15:13:02.0997 0x0618  [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:13:03.0028 0x0618  AsyncMac - ok
15:13:03.0044 0x0618  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
15:13:03.0060 0x0618  atapi - ok
15:13:03.0075 0x0618  [ 517334A411CD079EE9AEF4C2167875A5, 7C6A450BADCA211D553102ABDC06E1F367FBFC359711AF1DC88027B34502B484 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdWB6.sys
15:13:03.0091 0x0618  AtiHDAudioService - ok
15:13:03.0106 0x0618  [ 7F70B1044272982AAEA7C16E83424770, A7694D38DF5A0E1040688017DB811EF0788874FE505ADD572DE4D4647073DC12 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
15:13:03.0122 0x0618  AudioEndpointBuilder - ok
15:13:03.0138 0x0618  [ C0484CA5C7F87E38909746B63C7FC868, 65159639E2300AEA886184E9D47D449350DAF69A8AA2F9DBD6BD8A474BA73177 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
15:13:03.0138 0x0618  Audiosrv - ok
15:13:03.0153 0x0618  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
15:13:03.0153 0x0618  AxInstSV - ok
15:13:03.0169 0x0618  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
15:13:03.0200 0x0618  b06bdrv - ok
15:13:03.0231 0x0618  [ FB6F64FA0C5A2EF8179AEC0C13FA1E3F, 8423EF8542CB12A9BB895EBDA7F023C22C980466D075A9309A652CEFC89AC608 ] Backupper Service C:\Program Files (x86)\AOMEI Backupper Professional Edition 2.0.2\ABService.exe
15:13:03.0231 0x0618  Backupper Service - ok
15:13:03.0247 0x0618  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
15:13:03.0294 0x0618  BasicDisplay - ok
15:13:03.0294 0x0618  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
15:13:03.0310 0x0618  BasicRender - ok
15:13:03.0310 0x0618  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
15:13:03.0325 0x0618  bcmfn2 - ok
15:13:03.0341 0x0618  [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
15:13:03.0356 0x0618  BDESVC - ok
15:13:03.0356 0x0618  [ C7C6393C540A1EE534BCEE74626DE987, 36FDD695E3138B31FD2FDDB5E8429C7CB5D7B5D3B8A3E7C3E7DCE2F0FF687F11 ] bdisk           C:\WINDOWS\system32\drivers\bdisk.sys
15:13:03.0388 0x0618  bdisk - ok
15:13:03.0419 0x0618  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
15:13:03.0435 0x0618  Beep - ok
15:13:03.0450 0x0618  [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE             C:\WINDOWS\System32\bfe.dll
15:13:03.0466 0x0618  BFE - ok
15:13:03.0497 0x0618  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\WINDOWS\System32\qmgr.dll
15:13:03.0513 0x0618  BITS - ok
15:13:03.0513 0x0618  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
15:13:03.0528 0x0618  bowser - ok
15:13:03.0560 0x0618  [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
15:13:03.0560 0x0618  BrokerInfrastructure - ok
15:13:03.0575 0x0618  [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser         C:\WINDOWS\System32\browser.dll
15:13:03.0575 0x0618  Browser - ok
15:13:03.0591 0x0618  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
15:13:03.0606 0x0618  BthAvrcpTg - ok
15:13:03.0638 0x0618  [ 67343511D80BF3D6D9EEDB5BA8D0B06B, 28436B2E62762686C4FF4FA3F9E7ABB56DA9D6884B6C924ACC544161400593DD ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
15:13:03.0669 0x0618  BthHFEnum - ok
15:13:03.0669 0x0618  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
15:13:03.0700 0x0618  bthhfhid - ok
15:13:03.0731 0x0618  [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
15:13:03.0731 0x0618  BthHFSrv - ok
15:13:03.0747 0x0618  [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
15:13:03.0763 0x0618  BTHMODEM - ok
15:13:03.0778 0x0618  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\WINDOWS\system32\bthserv.dll
15:13:03.0794 0x0618  bthserv - ok
15:13:03.0810 0x0618  [ 10CDB598B555D2A06DA52A6C2D5F7DFE, 4194EF2B0CDCCAC40D2836C505226C98EA45648D66F918CFBFC2137761884E9A ] CBUfs           C:\WINDOWS\system32\drivers\CBUFS.sys
15:13:03.0825 0x0618  CBUfs - ok
15:13:03.0856 0x0618  [ 8D73FFFD9762EECF7680C4368A38B653, 128CCB95024B93912B2C4C989A6155A62AC18F5FEBE0E94F933E9848955B36DB ] cbvd            C:\WINDOWS\system32\DRIVERS\cbvd.sys
15:13:03.0888 0x0618  cbvd - ok
15:13:03.0935 0x0618  [ 0510396A957E9FD7205BA62D3CAE4528, C80C39EB3A87C5111132E96E966CF74ACABA36DE7714B545A707027D35995792 ] ccSet_NST       C:\WINDOWS\system32\drivers\NSTx64\7DE07080.017\ccSetx64.sys
15:13:03.0981 0x0618  ccSet_NST - ok
15:13:03.0981 0x0618  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
15:13:04.0013 0x0618  cdfs - ok
15:13:04.0013 0x0618  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
15:13:04.0044 0x0618  cdrom - ok
15:13:04.0044 0x0618  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
15:13:04.0060 0x0618  CertPropSvc - ok
15:13:04.0091 0x0618  [ 855EBDDCFC5DE12F730C6C1DC994410B, 5F6E1BF571146802075C2C790D65979157F83CF4F7FA5B30D4811E9BDE4134BD ] CGVPNCliService C:\Program Files\CyberGhost 5\Service.exe
15:13:04.0091 0x0618  CGVPNCliService - ok
15:13:04.0106 0x0618  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
15:13:04.0138 0x0618  circlass - ok
15:13:04.0200 0x0618  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
15:13:04.0247 0x0618  CLFS - ok
15:13:04.0325 0x0618  [ 6FBAED1D15BF7FE648CE0888F8DA034D, B593937DF1A00306816D19D4CBE8F253D6C24E22FF0AE1B88784CB7CC9AA6AB7 ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
15:13:04.0356 0x0618  ClickToRunSvc - ok
15:13:04.0372 0x0618  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
15:13:04.0388 0x0618  CmBatt - ok
15:13:04.0419 0x0618  [ 4E1207CE16E615B0B7A70DC889F4500E, 1778D5AC0AF5F5DD1551192F4CDBCCB9878995155CF337EBB03460A6FD5C6B78 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
15:13:04.0481 0x0618  CNG - ok
15:13:04.0481 0x0618  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
15:13:04.0497 0x0618  CompositeBus - ok
15:13:04.0513 0x0618  COMSysApp - ok
15:13:04.0513 0x0618  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
15:13:04.0544 0x0618  condrv - ok
15:13:04.0653 0x0618  [ 5779731037C856ECDE96328D41742DBF, 4CB4C024C0750FE07A80FC693C78FAF03A199858C0B183E72026D3F7549D759D ] COSService.exe  C:\Program Files\COMODO\COMMON\COSService.exe
15:13:04.0731 0x0618  COSService.exe - ok
15:13:04.0763 0x0618  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
15:13:04.0763 0x0618  CryptSvc - ok
15:13:04.0810 0x0618  [ EE2F3C0D6ADBC975D6B621EC15ACF4E2, D158C0FACA6344BCD77616EC3D23212F9FD76D7D0C834ACA51998B80162106D5 ] CSC             C:\WINDOWS\system32\drivers\csc.sys
15:13:04.0856 0x0618  CSC - ok
15:13:04.0888 0x0618  [ 936D9E2871CEEFF6A33695D98374367B, C30D42E870F196C4FA20AF95C7B9D9C9C5414D6DDE71268F88C3FC5BF372E61B ] CscService      C:\WINDOWS\System32\cscsvc.dll
15:13:04.0903 0x0618  CscService - ok
15:13:04.0919 0x0618  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
15:13:04.0935 0x0618  dam - ok
15:13:04.0966 0x0618  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
15:13:04.0981 0x0618  DcomLaunch - ok
15:13:04.0997 0x0618  [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
15:13:05.0013 0x0618  defragsvc - ok
15:13:05.0028 0x0618  [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\WINDOWS\system32\das.dll
15:13:05.0028 0x0618  DeviceAssociationService - ok
15:13:05.0060 0x0618  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
15:13:05.0060 0x0618  DeviceInstall - ok
15:13:05.0091 0x0618  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
15:13:05.0122 0x0618  Dfsc - ok
15:13:05.0138 0x0618  [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
15:13:05.0153 0x0618  Dhcp - ok
15:13:05.0169 0x0618  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
15:13:05.0232 0x0618  disk - ok
15:13:05.0247 0x0618  [ 180E24BB2FD2E46761B1D4C502FB0BEA, DDD707144406EE254DA88D3C2FD7F6270DB174A38ED9B71B9A66527BCCB83FD0 ] diskbckp        C:\WINDOWS\system32\drivers\diskbckp.sys
15:13:05.0310 0x0618  diskbckp - ok
15:13:05.0325 0x0618  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
15:13:05.0372 0x0618  dmvsc - ok
15:13:05.0403 0x0618  [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
15:13:05.0419 0x0618  Dnscache - ok
15:13:05.0419 0x0618  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
15:13:05.0435 0x0618  dot3svc - ok
15:13:05.0450 0x0618  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\WINDOWS\system32\dps.dll
15:13:05.0450 0x0618  DPS - ok
15:13:05.0482 0x0618  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
15:13:05.0528 0x0618  drmkaud - ok
15:13:05.0560 0x0618  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
15:13:05.0560 0x0618  DsmSvc - ok
15:13:05.0622 0x0618  [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
15:13:05.0669 0x0618  DXGKrnl - ok
15:13:05.0700 0x0618  [ FA988D76745C917CDFE20031C06DE860, B01AA3611869854D3BCA8B6CD7A6F48CC3537145DD3EBE50F5BEF72239924BF7 ] e1iexpress      C:\WINDOWS\system32\DRIVERS\e1i63x64.sys
15:13:05.0747 0x0618  e1iexpress - ok
15:13:05.0763 0x0618  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
15:13:05.0763 0x0618  Eaphost - ok
15:13:05.0841 0x0618  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
15:13:05.0997 0x0618  ebdrv - ok
15:13:06.0013 0x0618  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\WINDOWS\System32\lsass.exe
15:13:06.0013 0x0618  EFS - ok
15:13:06.0013 0x0618  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
15:13:06.0044 0x0618  EhStorClass - ok
15:13:06.0060 0x0618  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
15:13:06.0075 0x0618  EhStorTcgDrv - ok
15:13:06.0091 0x0618  [ 6106653B08F4F72EEAA7F099E7C408A4, 96B77284744F8761C4F2558388E0AEE2140618B484FF53FA8B222B340D2A9C84 ] epmntdrv        C:\WINDOWS\system32\epmntdrv.sys
15:13:06.0107 0x0618  epmntdrv - ok
15:13:06.0122 0x0618  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
15:13:06.0138 0x0618  ErrDev - ok
15:13:06.0153 0x0618  [ 991C04A31777ED77CB92A4F96F14C2E2, 6CC2A311D8E67032D0847D70B20DCA87B52B2B7FB3C380B3A5AB6C233E955DD2 ] EuGdiDrv        C:\WINDOWS\system32\EuGdiDrv.sys
15:13:06.0185 0x0618  EuGdiDrv - ok
15:13:06.0216 0x0618  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\WINDOWS\system32\es.dll
15:13:06.0232 0x0618  EventSystem - ok
15:13:06.0247 0x0618  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
15:13:06.0263 0x0618  exfat - ok
15:13:06.0263 0x0618  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
15:13:06.0310 0x0618  fastfat - ok
15:13:06.0341 0x0618  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\WINDOWS\system32\fxssvc.exe
15:13:06.0341 0x0618  Fax - ok
15:13:06.0341 0x0618  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
15:13:06.0388 0x0618  fdc - ok
15:13:06.0403 0x0618  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
15:13:06.0403 0x0618  fdPHost - ok
15:13:06.0403 0x0618  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
15:13:06.0403 0x0618  FDResPub - ok
15:13:06.0482 0x0618  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
15:13:06.0482 0x0618  fhsvc - ok
15:13:06.0497 0x0618  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
15:13:06.0544 0x0618  FileInfo - ok
15:13:06.0560 0x0618  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
15:13:06.0575 0x0618  Filetrace - ok
15:13:06.0575 0x0618  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
15:13:06.0591 0x0618  flpydisk - ok
15:13:06.0607 0x0618  [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
15:13:06.0653 0x0618  FltMgr - ok
15:13:06.0685 0x0618  [ C06AF3D1E7CA6868A6A3064CE6907C4A, A1A357CF99291E1611A4380BF8866B5B594637C186B5FD1EFDF052D4EB69FAB9 ] fltsrv          C:\WINDOWS\system32\DRIVERS\fltsrv.sys
15:13:06.0716 0x0618  fltsrv - ok
15:13:06.0763 0x0618  [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache       C:\WINDOWS\system32\FntCache.dll
15:13:06.0778 0x0618  FontCache - ok
15:13:06.0872 0x0618  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
15:13:06.0888 0x0618  FontCache3.0.0.0 - ok
15:13:06.0935 0x0618  [ A1BEF2DE57398FCAB2C969304B2D2D93, 227E430E0D2FBC94508F9A781B0FA16FA75F00F7531F16B41C8FA4990242A9C7 ] FoxitCloudUpdateService C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
15:13:06.0950 0x0618  FoxitCloudUpdateService - ok
15:13:06.0966 0x0618  [ EBACCD52CE8CFD3904F9DD2D1E0FFF03, 45ADFC13E9ED4BF4CD2FEC3807A9C187902502CC4F7D4F67BF0CD09C291E789C ] FrAgent         C:\Program Files\Dayu\Disk Master Professional\Agent.exe
15:13:06.0966 0x0618  FrAgent - ok
15:13:06.0982 0x0618  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
15:13:07.0013 0x0618  FsDepends - ok
15:13:07.0013 0x0618  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:13:07.0028 0x0618  Fs_Rec - ok
15:13:07.0060 0x0618  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
15:13:07.0091 0x0618  fvevol - ok
15:13:07.0107 0x0618  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
15:13:07.0122 0x0618  FxPPM - ok
15:13:07.0122 0x0618  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
15:13:07.0153 0x0618  gagp30kx - ok
15:13:07.0169 0x0618  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
15:13:07.0185 0x0618  gencounter - ok
15:13:07.0200 0x0618  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
15:13:07.0247 0x0618  GPIOClx0101 - ok
15:13:07.0278 0x0618  [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
15:13:07.0294 0x0618  gpsvc - ok
15:13:07.0325 0x0618  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:13:07.0325 0x0618  gupdate - ok
15:13:07.0325 0x0618  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
15:13:07.0341 0x0618  gupdatem - ok
15:13:07.0372 0x0618  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\WINDOWS\system32\drivers\HdAudio.sys
15:13:07.0403 0x0618  HdAudAddService - ok
15:13:07.0419 0x0618  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
15:13:07.0466 0x0618  HDAudBus - ok
15:13:07.0466 0x0618  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
15:13:07.0482 0x0618  HidBatt - ok
15:13:07.0482 0x0618  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
15:13:07.0513 0x0618  HidBth - ok
15:13:07.0513 0x0618  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
15:13:07.0544 0x0618  hidi2c - ok
15:13:07.0560 0x0618  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
15:13:07.0575 0x0618  HidIr - ok
15:13:07.0607 0x0618  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\WINDOWS\system32\hidserv.dll
15:13:07.0607 0x0618  hidserv - ok
15:13:07.0622 0x0618  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
15:13:07.0669 0x0618  HidUsb - ok
15:13:07.0700 0x0618  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
15:13:07.0700 0x0618  hkmsvc - ok
15:13:07.0700 0x0618  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
15:13:07.0716 0x0618  HomeGroupListener - ok
15:13:07.0732 0x0618  [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
15:13:07.0732 0x0618  HomeGroupProvider - ok
15:13:07.0747 0x0618  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
15:13:07.0763 0x0618  HpSAMD - ok
15:13:07.0794 0x0618  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
15:13:07.0825 0x0618  HTTP - ok
15:13:07.0841 0x0618  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
15:13:07.0857 0x0618  hwpolicy - ok
15:13:07.0857 0x0618  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
15:13:07.0872 0x0618  hyperkbd - ok
15:13:07.0872 0x0618  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
15:13:07.0888 0x0618  HyperVideo - ok
15:13:07.0904 0x0618  [ D887446F3F6051C60C26F4FD1FC8D43F, A3235C64E9D5378E3409FA7CDD9DB0DD1B3CE6A6EB018F2C40558EB9C427A498 ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
15:13:07.0935 0x0618  i8042prt - ok
15:13:07.0935 0x0618  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
15:13:07.0950 0x0618  iaLPSSi_GPIO - ok
15:13:07.0966 0x0618  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
15:13:07.0982 0x0618  iaLPSSi_I2C - ok
15:13:08.0013 0x0618  [ 0FE66A51D81A25AACEAAE4C26308121D, C5553F7ABA74A8EB71A4ED0E8F2A6AA2892F871D164F2D4FADB035BE7D1A8C44 ] iaStorA         C:\WINDOWS\system32\drivers\iaStorA.sys
15:13:08.0029 0x0618  iaStorA - ok
15:13:08.0029 0x0618  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
15:13:08.0060 0x0618  iaStorAV - ok
15:13:08.0075 0x0618  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
15:13:08.0107 0x0618  iaStorV - ok
15:13:08.0107 0x0618  IEEtwCollectorService - ok
15:13:08.0138 0x0618  [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
15:13:08.0138 0x0618  IKEEXT - ok
15:13:08.0232 0x0618  [ C2F868881D48A568B525255F084EF063, EFB1704AE223CF886EDA5F1411C8178EDE4B5E1F7EE373E3DA89A6EA1A57D91D ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys
15:13:08.0466 0x0618  IntcAzAudAddService - ok
15:13:08.0497 0x0618  [ B353F1834FCD36D77BE3F74992C147D4, BFBC42B500FC7D6D2B523F988DD54156D2B6132CBE366EB591BF45556959A8E9 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
15:13:08.0513 0x0618  Intel® Capability Licensing Service Interface - ok
15:13:08.0513 0x0618  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
15:13:08.0529 0x0618  intelide - ok
15:13:08.0544 0x0618  [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
15:13:08.0560 0x0618  intelpep - ok
15:13:08.0560 0x0618  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
15:13:08.0575 0x0618  intelppm - ok
15:13:08.0607 0x0618  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:13:08.0669 0x0618  IpFilterDriver - ok
15:13:08.0700 0x0618  [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
15:13:08.0716 0x0618  iphlpsvc - ok
15:13:08.0747 0x0618  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
15:13:08.0779 0x0618  IPMIDRV - ok
15:13:08.0794 0x0618  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
15:13:08.0857 0x0618  IPNAT - ok
15:13:08.0857 0x0618  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
15:13:08.0872 0x0618  IRENUM - ok
15:13:08.0888 0x0618  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
15:13:08.0904 0x0618  isapnp - ok
15:13:08.0950 0x0618  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
15:13:09.0013 0x0618  iScsiPrt - ok
15:13:09.0060 0x0618  [ 5B7DE9D87B9D2713BDD6A53678DC2A49, E7A0D68FA2ED2730640F40FF59338BE173C8973BFC38286E6320CA332A39C204 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
15:13:09.0060 0x0618  jhi_service - ok
15:13:09.0075 0x0618  [ A1D4D34A56DF1D5122CDB265038A2E72, AE061BA1A65C98AF875FA18878B014B57E33594D4AC4C39B050AA532E2220F83 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
15:13:09.0107 0x0618  kbdclass - ok
15:13:09.0122 0x0618  [ 4A34D7084B862A92F3ABC4969166B3D3, 87B2635873DA4DD06D9E3B8E4313CBDBDC1488E4E340EC2101393EC65823771F ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
15:13:09.0138 0x0618  kbdhid - ok
15:13:09.0138 0x0618  [ DB7A09BC90DF20F44F16F8B0F9ED3491, 2DF5E042284D61368A5801B2557351B2C4B1044AA6F966DF4DDCE7B453D1B9AE ] kbldfltr        C:\WINDOWS\system32\drivers\kbldfltr.sys
15:13:09.0154 0x0618  kbldfltr - ok
15:13:09.0169 0x0618  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
15:13:09.0200 0x0618  kdnic - ok
15:13:09.0216 0x0618  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\WINDOWS\system32\lsass.exe
15:13:09.0216 0x0618  KeyIso - ok
15:13:09.0216 0x0618  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
15:13:09.0232 0x0618  KSecDD - ok
15:13:09.0247 0x0618  [ 6D2EE96150E35B9EA49F2B481DE0369A, AC5915219FD81D89E444F6E86D71F7C495108FC35E7BD683321FC7006161AFE1 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
15:13:09.0310 0x0618  KSecPkg - ok
15:13:09.0325 0x0618  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
15:13:09.0341 0x0618  ksthunk - ok
15:13:09.0357 0x0618  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
15:13:09.0372 0x0618  KtmRm - ok
15:13:09.0404 0x0618  [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
15:13:09.0404 0x0618  LanmanServer - ok
15:13:09.0466 0x0618  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
15:13:09.0482 0x0618  LanmanWorkstation - ok
15:13:09.0497 0x0618  [ 97786341DF6562235202D7037AF62D2C, C382E9F5C67680CC53CE84632BB09AEBC827BDB7D825480C0937BB7FF98ACCFB ] LBAEvent        C:\Program Files\Lenovo\LBAI\LBAEvent.exe
15:13:09.0529 0x0618  LBAEvent - ok
15:13:09.0544 0x0618  [ 6E794AC0E614276B6B6C7B9671E291E4, C05D65408166AF2F7063669D7F9C3AD94FF9046B18062E6B7F8A3807F301B11F ] LBAI            C:\WINDOWS\System32\Drivers\LBAI.sys
15:13:09.0591 0x0618  LBAI - ok
15:13:09.0622 0x0618  [ 0411B8A6490C686D5F3E19649B96634A, 7E3FF830D56098760EEAF8289ED1A7AFA48701F9E672049A5FB12700B9012488 ] Lenovo System Agent Service C:\Program Files\lenovo\SystemAgent\SystemAgentService.exe
15:13:09.0638 0x0618  Lenovo System Agent Service - ok
15:13:09.0654 0x0618  [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
15:13:09.0669 0x0618  lfsvc - ok
15:13:09.0669 0x0618  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
15:13:09.0700 0x0618  lltdio - ok
15:13:09.0716 0x0618  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
15:13:09.0716 0x0618  lltdsvc - ok
15:13:09.0747 0x0618  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
15:13:09.0747 0x0618  lmhosts - ok
15:13:09.0779 0x0618  [ E70FD0D2C95F559A17321D831875593D, 57839ADA7CC6606D98B43FC2F4EC6F5E9B75A2F3EC937C11322201128A161E0D ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
15:13:09.0779 0x0618  LMS - ok
15:13:09.0794 0x0618  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
15:13:09.0810 0x0618  LSI_SAS - ok
15:13:09.0810 0x0618  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
15:13:09.0841 0x0618  LSI_SAS2 - ok
15:13:09.0841 0x0618  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
15:13:09.0888 0x0618  LSI_SAS3 - ok
15:13:09.0904 0x0618  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
15:13:09.0935 0x0618  LSI_SSS - ok
15:13:09.0951 0x0618  [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM             C:\WINDOWS\System32\lsm.dll
15:13:09.0966 0x0618  LSM - ok
15:13:09.0982 0x0618  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
15:13:10.0029 0x0618  luafv - ok
15:13:10.0029 0x0618  [ BA614B45227933A2B37686ED121345BA, 663A2DD116B2F2E778AF338BF7E006271409688521AB27B60C1684E99821C3D8 ] mbamchameleon   C:\WINDOWS\system32\drivers\mbamchameleon.sys
15:13:10.0060 0x0618  mbamchameleon - ok
15:13:10.0076 0x0618  [ 4E6F278DA120E3C5E629FC927E3B68EC, 4F7DDFFC321D22EF7705E398F27C97A19C10B769D91A615E2B189344BFFB7434 ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
15:13:10.0091 0x0618  MBAMProtector - ok
15:13:10.0138 0x0618  [ 6C1FEC6F46686A008841B1F567406B6B, 41582FE7B07C32F4BD5EA3DB028BF9015A4CD04FB34AC62B8D1DC733F53F642F ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
15:13:10.0154 0x0618  MBAMScheduler - ok
15:13:10.0185 0x0618  [ 37049043CFF344AB09EB2F0E37FD217B, 1661A06C150698ADF67CA1D5DD26E35D42F9D1442499E661CC5D682BB245A28E ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
15:13:10.0201 0x0618  MBAMService - ok
15:13:10.0232 0x0618  [ D3BDDC034F80F72E3C598E633B309E10, 57F2ECD0673B40A04A677398BFFF0F81972A5CE80AC830704C4F52B40216221D ] mdf16           C:\Program Files (x86)\Clarus\Samsung Drive Manager\mdf16.sys
15:13:10.0247 0x0618  mdf16 - ok
15:13:10.0263 0x0618  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
15:13:10.0294 0x0618  megasas - ok
15:13:10.0310 0x0618  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
15:13:10.0341 0x0618  megasr - ok
15:13:10.0357 0x0618  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\WINDOWS\System32\drivers\HECIx64.sys
15:13:10.0388 0x0618  MEIx64 - ok
15:13:10.0404 0x0618  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\WINDOWS\system32\mmcss.dll
15:13:10.0419 0x0618  MMCSS - ok
15:13:10.0451 0x0618  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
15:13:10.0482 0x0618  Modem - ok
15:13:10.0497 0x0618  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
15:13:10.0513 0x0618  monitor - ok
15:13:10.0544 0x0618  [ 2A2F8D5284E59815169A88F1FC9CEE28, 58EFBCF3C849FD088CFB7FE287FC7D9DD7E03D4E6AA98F0497C09E4596E42538 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
15:13:10.0576 0x0618  mouclass - ok
15:13:10.0576 0x0618  [ 91223A2AE2955B3E0DA3DB79C3A897A6, 32B59CF1586C2300D60AF8A1D819515033ACC7F7A1F3523FC4AC7725E29B5A90 ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
15:13:10.0591 0x0618  mouhid - ok
15:13:10.0607 0x0618  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
15:13:10.0622 0x0618  mountmgr - ok
15:13:10.0669 0x0618  [ B4E9C7383A705628AD491CF0F87D901F, 5C0CD7133D4F5B1E0466CDB2A2210ECA57206A8BC41F37BC6324120AE5501C70 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
15:13:10.0669 0x0618  MozillaMaintenance - ok
15:13:10.0685 0x0618  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
15:13:10.0701 0x0618  mpsdrv - ok
15:13:10.0747 0x0618  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
15:13:10.0747 0x0618  MpsSvc - ok
15:13:10.0794 0x0618  [ 1D55DADC22D21883A2F80297F5A5AE48, B79DF4AFC2A9CBC54E74233596544D6E41C8CAA0516BD57CA695D051EC780265 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
15:13:10.0810 0x0618  MRxDAV - ok
15:13:10.0872 0x0618  [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:13:10.0919 0x0618  mrxsmb - ok
15:13:10.0935 0x0618  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
15:13:10.0966 0x0618  mrxsmb10 - ok
15:13:10.0997 0x0618  [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
15:13:11.0029 0x0618  mrxsmb20 - ok
15:13:11.0044 0x0618  [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
15:13:11.0076 0x0618  MsBridge - ok
15:13:11.0091 0x0618  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
15:13:11.0091 0x0618  MSDTC - ok
15:13:11.0107 0x0618  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
15:13:11.0138 0x0618  Msfs - ok
15:13:11.0154 0x0618  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
15:13:11.0201 0x0618  msgpiowin32 - ok
15:13:11.0201 0x0618  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
15:13:11.0232 0x0618  mshidkmdf - ok
15:13:11.0247 0x0618  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
15:13:11.0294 0x0618  mshidumdf - ok
15:13:11.0326 0x0618  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
15:13:11.0341 0x0618  msisadrv - ok
15:13:11.0372 0x0618  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
15:13:11.0372 0x0618  MSiSCSI - ok
15:13:11.0388 0x0618  msiserver - ok
15:13:11.0388 0x0618  [ D22AE5313F6B7EFDDD8C117B5501F4A3, 1937EEE33BF9C4485F172B10FB17AEF3F3B8978371307F49C3338D74D96A8389 ] MsKeyboardFilter C:\WINDOWS\System32\KeyboardFilterSvc.dll
15:13:11.0388 0x0618  MsKeyboardFilter - ok
15:13:11.0388 0x0618  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:13:11.0419 0x0618  MSKSSRV - ok
15:13:11.0435 0x0618  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
15:13:11.0466 0x0618  MsLldp - ok
15:13:11.0466 0x0618  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:13:11.0513 0x0618  MSPCLOCK - ok
15:13:11.0529 0x0618  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
15:13:11.0544 0x0618  MSPQM - ok
15:13:11.0560 0x0618  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
15:13:11.0576 0x0618  MsRPC - ok
15:13:11.0591 0x0618  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
15:13:11.0607 0x0618  mssmbios - ok
15:13:11.0607 0x0618  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
15:13:11.0622 0x0618  MSTEE - ok
15:13:11.0638 0x0618  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
15:13:11.0654 0x0618  MTConfig - ok
15:13:11.0654 0x0618  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
15:13:11.0669 0x0618  Mup - ok
15:13:11.0685 0x0618  [ ADCD6BBF6974A8D0C250E6259E1421EC, AA6105DCD317477A6158E1D60C7EA540E506E3F26818470D6D4A6D8612AFDA8D ] mvd23           C:\Program Files (x86)\Clarus\Samsung Drive Manager\mvd23.sys
15:13:11.0716 0x0618  mvd23 - ok
15:13:11.0732 0x0618  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
15:13:11.0747 0x0618  mvumis - ok
15:13:11.0779 0x0618  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\WINDOWS\system32\qagentRT.dll
15:13:11.0779 0x0618  napagent - ok
15:13:11.0810 0x0618  [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
15:13:11.0841 0x0618  NativeWifiP - ok
15:13:11.0872 0x0618  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
15:13:11.0872 0x0618  NcaSvc - ok
15:13:11.0904 0x0618  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\WINDOWS\System32\ncbservice.dll
15:13:11.0904 0x0618  NcbService - ok
15:13:11.0919 0x0618  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
15:13:11.0919 0x0618  NcdAutoSetup - ok
15:13:11.0966 0x0618  [ D5C65661C49139648F1D124D9A8A90DE, 3F5066DBA1337D42E6D3CA01B0F970E93659F0F706B60CA39169FFA61E432598 ] NCO             C:\Program Files (x86)\Norton Identity Safe\Engine\2014.7.8.23\NST.exe
15:13:11.0966 0x0618  NCO - ok
15:13:11.0997 0x0618  [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
15:13:12.0060 0x0618  NDIS - ok
15:13:12.0076 0x0618  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
15:13:12.0091 0x0618  NdisCap - ok
15:13:12.0107 0x0618  [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
15:13:12.0154 0x0618  NdisImPlatform - ok
15:13:12.0169 0x0618  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:13:12.0185 0x0618  NdisTapi - ok
15:13:12.0201 0x0618  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:13:12.0216 0x0618  Ndisuio - ok
15:13:12.0232 0x0618  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
15:13:12.0247 0x0618  NdisVirtualBus - ok
15:13:12.0263 0x0618  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:13:12.0310 0x0618  NdisWan - ok
15:13:12.0310 0x0618  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:13:12.0310 0x0618  NdisWanLegacy - ok
15:13:12.0326 0x0618  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
15:13:12.0341 0x0618  NDProxy - ok
15:13:12.0357 0x0618  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
15:13:12.0373 0x0618  Ndu - ok
15:13:12.0373 0x0618  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
15:13:12.0388 0x0618  NetBIOS - ok
15:13:12.0404 0x0618  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
15:13:12.0419 0x0618  NetBT - ok
15:13:12.0435 0x0618  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\WINDOWS\system32\lsass.exe
15:13:12.0435 0x0618  Netlogon - ok
15:13:12.0498 0x0618  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\WINDOWS\System32\netman.dll
15:13:12.0498 0x0618  Netman - ok
15:13:12.0560 0x0618  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
15:13:12.0576 0x0618  netprofm - ok
15:13:12.0607 0x0618  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
15:13:12.0623 0x0618  NetTcpPortSharing - ok
15:13:12.0638 0x0618  [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc          C:\WINDOWS\System32\drivers\netvsc63.sys
15:13:12.0669 0x0618  netvsc - ok
15:13:12.0718 0x0618  [ A6B6A7CBE1419E827601A3617DDCF764, 5DD33240A676E0F30676DC62A0067F48AD1FDC13E7D0CDABEC85445008DCB105 ] NitroDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
15:13:12.0718 0x0618  NitroDriverReadSpool2 - ok
15:13:12.0733 0x0618  [ 3A280F3B3C7A46E29C404ACD46ECBF5E, 81C3367A2A212DBCC65B8A0166FD092E3205AB31A146B4B737061335CEC51F9D ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
15:13:12.0749 0x0618  NlaSvc - ok
15:13:12.0796 0x0618  [ 648625BA9C540F26EFA7E27A9312D73B, D976E97334B825FD1DC8A3C38FF9F0E7D797A677A936CCE76E6B9626208C779B ] nlsX86cc        C:\windows\SysWOW64\NLSSRV32.EXE
15:13:12.0796 0x0618  nlsX86cc - ok
15:13:12.0812 0x0618  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
15:13:12.0827 0x0618  Npfs - ok
15:13:12.0858 0x0618  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
15:13:12.0905 0x0618  npsvctrig - ok
15:13:12.0921 0x0618  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\WINDOWS\system32\nsisvc.dll
15:13:12.0921 0x0618  nsi - ok
15:13:12.0937 0x0618  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
15:13:12.0968 0x0618  nsiproxy - ok
15:13:13.0062 0x0618  [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
15:13:13.0140 0x0618  Ntfs - ok
15:13:13.0155 0x0618  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
15:13:13.0187 0x0618  Null - ok
15:13:13.0202 0x0618  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
15:13:13.0218 0x0618  nvraid - ok
15:13:13.0234 0x0618  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
15:13:13.0249 0x0618  nvstor - ok
15:13:13.0249 0x0618  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
15:13:13.0280 0x0618  nv_agp - ok
15:13:13.0343 0x0618  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:13:13.0343 0x0618  ose - ok
15:13:13.0374 0x0618  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
15:13:13.0390 0x0618  p2pimsvc - ok
15:13:13.0437 0x0618  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
15:13:13.0452 0x0618  p2psvc - ok
15:13:13.0452 0x0618  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
15:13:13.0484 0x0618  Parport - ok
15:13:13.0499 0x0618  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
15:13:13.0530 0x0618  partmgr - ok
15:13:13.0530 0x0618  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
15:13:13.0546 0x0618  PcaSvc - ok
15:13:13.0562 0x0618  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\WINDOWS\system32\drivers\pci.sys
15:13:13.0593 0x0618  pci - ok
15:13:13.0593 0x0618  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
15:13:13.0609 0x0618  pciide - ok
15:13:13.0624 0x0618  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
15:13:13.0655 0x0618  pcmcia - ok
15:13:13.0671 0x0618  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
15:13:13.0687 0x0618  pcw - ok
15:13:13.0702 0x0618  [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
15:13:13.0718 0x0618  pdc - ok
15:13:13.0765 0x0618  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
15:13:13.0796 0x0618  PEAUTH - ok
15:13:13.0859 0x0618  [ 084DE525DFE82AE7453DD527390FA110, 8216AE63AE740D97204CDED6543B66FC1FB55DB86D42FBA0EC629361C40F9EC0 ] PeerDistSvc     C:\WINDOWS\system32\peerdistsvc.dll
15:13:13.0890 0x0618  PeerDistSvc - ok
15:13:13.0905 0x0618  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
15:13:13.0905 0x0618  PerfHost - ok
15:13:13.0952 0x0618  [ B8C3C66D19104E23D6D05A391747F23F, 2CB879FE65989608706306D8E7224F7C0F668E30886BDBC8B5CFB452807222D6 ] PFNet           C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\pfsvc.exe
15:13:13.0952 0x0618  PFNet - ok
15:13:13.0999 0x0618  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\WINDOWS\system32\pla.dll
15:13:14.0015 0x0618  pla - ok
15:13:14.0046 0x0618  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
15:13:14.0046 0x0618  PlugPlay - ok
15:13:14.0062 0x0618  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
15:13:14.0062 0x0618  PNRPAutoReg - ok
15:13:14.0062 0x0618  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
15:13:14.0077 0x0618  PNRPsvc - ok
15:13:14.0109 0x0618  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
15:13:14.0109 0x0618  PolicyAgent - ok
15:13:14.0140 0x0618  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\WINDOWS\system32\umpo.dll
15:13:14.0140 0x0618  Power - ok
15:13:14.0155 0x0618  [ 60B6CA149BDE578A39D62A9A33FCD091, 49AFAA5E1D7D1FB591D19583932554C9F26F5FCF30AF276EE129DE537DBD2109 ] Power Manager DBC Service C:\Program Files (x86)\Lenovo\PowerMgr\PWMDBSVC.EXE
15:13:14.0171 0x0618  Power Manager DBC Service - ok
15:13:14.0171 0x0618  [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:13:14.0202 0x0618  PptpMiniport - ok
15:13:14.0327 0x0618  [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
15:13:14.0359 0x0618  PrintNotify - ok
15:13:14.0374 0x0618  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
15:13:14.0390 0x0618  Processor - ok
15:13:14.0421 0x0618  [ EF1F8B57323E5D3FC6A0A25F98F90DBC, F50E81151604DCD59BB647FD6767C1631AE48B5FCA6D3423C4E32535C94D6369 ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
15:13:14.0421 0x0618  ProfSvc - ok
15:13:14.0437 0x0618  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
15:13:14.0468 0x0618  Psched - ok
15:13:14.0468 0x0618  [ 733FFBF20DA95915B07BE66C62AB17D1, C22A3F2DD0A06AB1AD10DCB1C4C3A492143FCA12BCDAB401808BCE39D87E0D3C ] pwipf6          C:\WINDOWS\system32\DRIVERS\pwipf6.sys
15:13:14.0515 0x0618  pwipf6 - ok
15:13:14.0530 0x0618  [ 1C41B76E29C145B200ABF4CBDA2D795E, DEE5BE3339A5E204B4BC422CCBF4CD997DD1886D390FE79003ABCCAC69CF29D7 ] PwmEWSvc        C:\Program Files (x86)\Lenovo\PowerMgr\PWMEWSVC.EXE
15:13:14.0530 0x0618  PwmEWSvc - ok
15:13:14.0562 0x0618  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\WINDOWS\system32\qwave.dll
15:13:14.0577 0x0618  QWAVE - ok
15:13:14.0609 0x0618  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
15:13:14.0624 0x0618  QWAVEdrv - ok
15:13:14.0624 0x0618  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:13:14.0640 0x0618  RasAcd - ok
15:13:14.0671 0x0618  [ 674A4702E4E144E8710ED1A2EC6DD049, 613A921101A6815C9185D5EF3E251A592604E56FADE945BB7E256885CAD473BC ] RasAgileVpn     C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
15:13:14.0687 0x0618  RasAgileVpn - ok
15:13:14.0702 0x0618  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
15:13:14.0702 0x0618  RasAuto - ok
15:13:14.0702 0x0618  [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:13:14.0718 0x0618  Rasl2tp - ok
15:13:14.0749 0x0618  [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan          C:\WINDOWS\System32\rasmans.dll
15:13:14.0749 0x0618  RasMan - ok
15:13:14.0765 0x0618  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:13:14.0812 0x0618  RasPppoe - ok
15:13:14.0827 0x0618  [ 2B0F1677CDD08967005F34488559BC6F, FFF168EBD171C0B85A448AD1A04F66534E889AE1DC128F68EA3F35D5996C8D39 ] RasSstp         C:\WINDOWS\system32\DRIVERS\rassstp.sys
15:13:14.0874 0x0618  RasSstp - ok
15:13:14.0874 0x0618  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:13:14.0905 0x0618  rdbss - ok
15:13:14.0921 0x0618  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
15:13:14.0937 0x0618  rdpbus - ok
15:13:14.0952 0x0618  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
15:13:14.0968 0x0618  RDPDR - ok
15:13:14.0984 0x0618  [ 9F08A6608F98B5407E7DDBCF306573EF, 92812F97CFDB2EC128BC48143DE215B7D012B15D3FB4D2199222AD8C31DA5016 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
15:13:14.0999 0x0618  RdpVideoMiniport - ok
15:13:15.0015 0x0618  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
15:13:15.0046 0x0618  rdyboost - ok
15:13:15.0077 0x0618  [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
15:13:15.0124 0x0618  ReFS - ok
15:13:15.0155 0x0618  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
15:13:15.0155 0x0618  RemoteAccess - ok
15:13:15.0171 0x0618  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
15:13:15.0171 0x0618  RemoteRegistry - ok
15:13:15.0202 0x0618  [ D7F279E28D757821232E7AF1DFDC57BA, 4E4E1E0E968085E76C6696F0A2673368D07CF23968A5901F843EB396E6CEC68E ] reparse         C:\WINDOWS\system32\DRIVERS\cbreparse.sys
15:13:15.0249 0x0618  reparse - ok
15:13:15.0265 0x0618  [ 9C3AC71A9934B884FAC567A8807E9C4D, 0B6B2970098E3C21E1E54A25785544903E8CD415B527FCEF86ABC7B33BEC83E7 ] Revoflt         C:\WINDOWS\system32\DRIVERS\revoflt.sys
15:13:15.0280 0x0618  Revoflt - ok
15:13:15.0296 0x0618  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
15:13:15.0296 0x0618  RpcEptMapper - ok
15:13:15.0312 0x0618  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\WINDOWS\system32\locator.exe
15:13:15.0312 0x0618  RpcLocator - ok
15:13:15.0327 0x0618  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
15:13:15.0327 0x0618  RpcSs - ok
15:13:15.0343 0x0618  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
15:13:15.0359 0x0618  rspndr - ok
15:13:15.0374 0x0618  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
15:13:15.0390 0x0618  s3cap - ok
15:13:15.0406 0x0618  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\WINDOWS\system32\lsass.exe
15:13:15.0406 0x0618  SamSs - ok
15:13:15.0437 0x0618  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
15:13:15.0452 0x0618  sbp2port - ok
15:13:15.0468 0x0618  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
15:13:15.0468 0x0618  SCardSvr - ok
15:13:15.0484 0x0618  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
15:13:15.0484 0x0618  ScDeviceEnum - ok
15:13:15.0499 0x0618  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
15:13:15.0515 0x0618  scfilter - ok
15:13:15.0546 0x0618  [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
15:13:15.0562 0x0618  Schedule - ok
15:13:15.0593 0x0618  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
15:13:15.0593 0x0618  SCPolicySvc - ok
15:13:15.0609 0x0618  [ 7B7C482CF48E6EE33664340D1A78E6FE, CE5077C4B0372F4F9F02B0B37AE58C0DAEFCA9D242065731A23F072506430575 ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
15:13:15.0656 0x0618  sdbus - ok
15:13:15.0656 0x0618  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
15:13:15.0671 0x0618  sdstor - ok
15:13:15.0702 0x0618  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
15:13:15.0718 0x0618  secdrv - ok
15:13:15.0734 0x0618  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\WINDOWS\system32\seclogon.dll
15:13:15.0734 0x0618  seclogon - ok
15:13:15.0734 0x0618  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\WINDOWS\System32\sens.dll
15:13:15.0734 0x0618  SENS - ok
15:13:15.0749 0x0618  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
15:13:15.0765 0x0618  SensrSvc - ok
15:13:15.0765 0x0618  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
15:13:15.0801 0x0618  SerCx - ok
15:13:15.0832 0x0618  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
15:13:15.0863 0x0618  SerCx2 - ok
15:13:15.0879 0x0618  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
15:13:15.0894 0x0618  Serenum - ok
15:13:15.0894 0x0618  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
15:13:15.0926 0x0618  Serial - ok
15:13:15.0926 0x0618  [ 96B01F117057FB4DAE0FF919ACB55770, D0F58F1CAE4F81D60FCE60BB0065A34B4F897E8105DF17B6DAA334938CD25A56 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
15:13:15.0957 0x0618  sermouse - ok
15:13:15.0988 0x0618  [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
15:13:15.0988 0x0618  SessionEnv - ok
15:13:16.0004 0x0618  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
15:13:16.0019 0x0618  sfloppy - ok
15:13:16.0082 0x0618  [ 170A79EC35C63C85E13CC21B73399D41, E78158771D8683C6BD7DF10F6E9F6A8B99B61CC1C3A94D217966240712219E92 ] SgtSch2Svc      C:\Program Files (x86)\Common Files\Seagate\Schedule2\schedul2.exe
15:13:16.0098 0x0618  SgtSch2Svc - ok
15:13:16.0129 0x0618  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
15:13:16.0129 0x0618  SharedAccess - ok
15:13:16.0176 0x0618  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:13:16.0176 0x0618  ShellHWDetection - ok
15:13:16.0192 0x0618  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
15:13:16.0207 0x0618  SiSRaid2 - ok
15:13:16.0223 0x0618  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
15:13:16.0239 0x0618  SiSRaid4 - ok
15:13:16.0270 0x0618  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\WINDOWS\System32\smphost.dll
15:13:16.0270 0x0618  smphost - ok
15:13:16.0317 0x0618  [ E3E56CAF0472163871B922FC7CBC9654, 1D7208519DB904E1B27F8D5214CA219BD52AB8C1AB64F22F8959DC4E8955AD37 ] snapman         C:\WINDOWS\system32\DRIVERS\snapman.sys
15:13:16.0364 0x0618  snapman - ok
15:13:16.0379 0x0618  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
15:13:16.0379 0x0618  SNMPTRAP - ok
15:13:16.0411 0x0618  [ D24B1945ED1F9C96DA786DBBF1E983CE, B46CB0B72B7A3DF94A46B8D65E38535C5F8E72A55CF2DC48EFA1F9A0108691C4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
15:13:16.0426 0x0618  spaceport - ok
15:13:16.0426 0x0618  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
15:13:16.0473 0x0618  SpbCx - ok
15:13:16.0504 0x0618  [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler         C:\WINDOWS\System32\spoolsv.exe
15:13:16.0504 0x0618  Spooler - ok
15:13:16.0676 0x0618  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
15:13:16.0786 0x0618  sppsvc - ok
15:13:16.0817 0x0618  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
15:13:16.0848 0x0618  srv - ok
15:13:16.0864 0x0618  [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
15:13:16.0895 0x0618  srv2 - ok
15:13:16.0911 0x0618  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
15:13:16.0989 0x0618  srvnet - ok
15:13:17.0004 0x0618  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
15:13:17.0020 0x0618  SSDPSRV - ok
15:13:17.0036 0x0618  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
15:13:17.0036 0x0618  SstpSvc - ok
15:13:17.0067 0x0618  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
15:13:17.0098 0x0618  stexstor - ok
15:13:17.0114 0x0618  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
15:13:17.0129 0x0618  stisvc - ok
15:13:17.0129 0x0618  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
15:13:17.0161 0x0618  storahci - ok
15:13:17.0176 0x0618  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
15:13:17.0192 0x0618  storflt - ok
15:13:17.0208 0x0618  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
15:13:17.0239 0x0618  stornvme - ok
15:13:17.0239 0x0618  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
15:13:17.0239 0x0618  StorSvc - ok
15:13:17.0239 0x0618  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
15:13:17.0254 0x0618  storvsc - ok
15:13:17.0286 0x0618  [ 03618F935379614837F915D04C45FC0E, 9CC0CBA7AFC58E7F921C13FA3F5269714F1F827535A311E11EA48689C4D539DE ] storvsp         C:\WINDOWS\System32\drivers\storvsp.sys
15:13:17.0317 0x0618  storvsp - ok
15:13:17.0333 0x0618  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\WINDOWS\system32\svsvc.dll
15:13:17.0348 0x0618  svsvc - ok
15:13:17.0364 0x0618  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
15:13:17.0395 0x0618  swenum - ok
15:13:17.0442 0x0618  [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv           C:\WINDOWS\System32\swprv.dll
15:13:17.0458 0x0618  swprv - ok
15:13:17.0551 0x0618  [ C6F59E545B2BC2E1CF858C45B10B8BAD, 475AC54FF101B627747C43EE466E04C7479C405E8FC1EDE3CEA049AF0C5DDC89 ] SynchronizationService.exe C:\Program Files\COMODO\COMMON\SynchronizationService.exe
15:13:17.0567 0x0618  SynchronizationService.exe - ok
15:13:17.0598 0x0618  [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain         C:\WINDOWS\system32\sysmain.dll
15:13:17.0614 0x0618  SysMain - ok
15:13:17.0645 0x0618  [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
15:13:17.0645 0x0618  SystemEventsBroker - ok
15:13:17.0676 0x0618  [ 0DA7DDE5AEAF49CD8762ACAA1C391C0D, B8A4314136BC42C64A3220EA7E62F6D53F659BAF277A7C9F66C960997B162EE6 ] SZDrvSvc        C:\Program Files (x86)\Clarus\Samsung Drive Manager\SZDrvSvc.exe
15:13:17.0676 0x0618  SZDrvSvc - ok
15:13:17.0723 0x0618  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
15:13:17.0723 0x0618  TabletInputService - ok
15:13:17.0739 0x0618  [ 3C32FF010F869BC184DF71290477384E, 55CFCEC7F026C6E2E96A2FBE846AB513BB12BB0348735274FE1B71AF019C837B ] tap0901         C:\WINDOWS\system32\DRIVERS\tap0901.sys
15:13:17.0754 0x0618  tap0901 - ok
15:13:17.0770 0x0618  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
15:13:17.0786 0x0618  TapiSrv - ok
15:13:17.0879 0x0618  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
15:13:17.0942 0x0618  Tcpip - ok
15:13:18.0004 0x0618  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:13:18.0051 0x0618  TCPIP6 - ok
15:13:18.0083 0x0618  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
15:13:18.0114 0x0618  tcpipreg - ok
15:13:18.0161 0x0618  [ AC28A6FCA485821499FF018695CEDE16, 8BA6086EB1831FDEDB9E195EA7D5F2FE2B0944E4E0B0CDB41CD06971F7DAC805 ] tdrpman         C:\WINDOWS\system32\DRIVERS\tdrpman.sys
15:13:18.0208 0x0618  tdrpman - ok
15:13:18.0223 0x0618  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
15:13:18.0255 0x0618  tdx - ok
15:13:18.0270 0x0618  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
15:13:18.0301 0x0618  terminpt - ok
15:13:18.0333 0x0618  [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService     C:\WINDOWS\System32\termsrv.dll
15:13:18.0348 0x0618  TermService - ok
15:13:18.0348 0x0618  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\WINDOWS\system32\themeservice.dll
15:13:18.0348 0x0618  Themes - ok
15:13:18.0380 0x0618  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
15:13:18.0380 0x0618  THREADORDER - ok
15:13:18.0395 0x0618  [ DE604462206F7D8C203F767F425FCA8D, 149FBF6367C45415B939A9B1A7A10DA7A5E19F28CE533BCBE2B20DA4B78F8645 ] tib             C:\WINDOWS\system32\DRIVERS\tib.sys
15:13:18.0458 0x0618  tib - ok
15:13:18.0458 0x0618  [ 8C750FE6DE38AF13506B99EC2F519F79, 232D18416E9DE3A676C625280CF172ED180B5AF98C69E5B24CC780D480549E35 ] tib_mounter     C:\WINDOWS\system32\DRIVERS\tib_mounter.sys
15:13:18.0489 0x0618  tib_mounter - ok
15:13:18.0505 0x0618  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
15:13:18.0520 0x0618  TimeBroker - ok
15:13:18.0536 0x0618  [ 20903580F4BCFD08E8A59310D747190C, A7F2A8F271C4CB6846A4BB008EF5BAD1606E6868B84B7DBF57966614D416BFC9 ] tmactmon        C:\WINDOWS\system32\DRIVERS\tmactmon.sys
15:13:18.0551 0x0618  tmactmon - ok
15:13:18.0567 0x0618  [ 9A142A6AF0F9C3343D28F79340BC67B3, F19CFF8C4C9FB73BFAAA577E60929187336F0031BCC7B44BAE8CFEADFB61CB86 ] tmcomm          C:\WINDOWS\system32\DRIVERS\tmcomm.sys
15:13:18.0598 0x0618  tmcomm - ok
15:13:18.0598 0x0618  [ 4068D01A407C5F3B9AD3DF523E6BCEF6, DB3999EC8886610A14C8961356D88363BD5E3F006DA372F02CAEAC2468132565 ] TMEBC           C:\WINDOWS\system32\DRIVERS\TMEBC64.sys
15:13:18.0614 0x0618  TMEBC - ok
15:13:18.0614 0x0618  [ 3A10F5BDF66013B13AAB032B549E934D, E3F141471295D351777AA025A1CAF4F17C4E1589FB3A5FB0BB377C6FEA3C3477 ] tmeevw          C:\WINDOWS\system32\DRIVERS\tmeevw.sys
15:13:18.0645 0x0618  tmeevw - ok
15:13:18.0661 0x0618  [ 99591D7E6D321C01EFA5A8BD89015377, 996EF8CB895086B18EF5B3A03C690D15CF10B6313B6CC4DCB87194F28739B381 ] tmel            C:\WINDOWS\system32\DRIVERS\tmel.sys
15:13:18.0692 0x0618  tmel - ok
15:13:18.0692 0x0618  [ 565EEA0DEF37E5AA66D492F4C1EFDCB7, 8E943EE08A96308906EC8117EE033DCC2DC10A5082C3B142278EE94E278F7969 ] tmevtmgr        C:\WINDOWS\system32\DRIVERS\tmevtmgr.sys
15:13:18.0708 0x0618  tmevtmgr - ok
15:13:18.0723 0x0618  [ C91EB6CEC1A7FE02BB54760ABF79FBA6, 1E3E1ADB59D4F8ED12B9611D21717D38D9135892E506609193A1A32E7113124C ] tmnciesc        C:\WINDOWS\system32\DRIVERS\tmnciesc.sys
15:13:18.0786 0x0618  tmnciesc - ok
15:13:18.0786 0x0618  [ 04F5630CF5C604B51D75AF6695BB8C12, 3F72140D99BA6DECD429BE6CACB25FF1FF53A82DAC99A156D79DB636ED2ACE2E ] tmusa           C:\WINDOWS\system32\DRIVERS\tmusa.sys
15:13:18.0801 0x0618  tmusa - ok
15:13:18.0817 0x0618  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
15:13:18.0833 0x0618  TPM - ok
15:13:18.0864 0x0618  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
15:13:18.0864 0x0618  TrkWks - ok
15:13:18.0926 0x0618  [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
15:13:18.0926 0x0618  TrustedInstaller - ok
15:13:18.0942 0x0618  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
15:13:18.0989 0x0618  TsUsbFlt - ok
15:13:19.0005 0x0618  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
15:13:19.0036 0x0618  TsUsbGD - ok
15:13:19.0051 0x0618  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
15:13:19.0083 0x0618  tunnel - ok
15:13:19.0098 0x0618  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
15:13:19.0114 0x0618  uagp35 - ok
15:13:19.0114 0x0618  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
15:13:19.0130 0x0618  UASPStor - ok
15:13:19.0145 0x0618  [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
15:13:19.0161 0x0618  UCX01000 - ok
15:13:19.0176 0x0618  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
15:13:19.0223 0x0618  udfs - ok
15:13:19.0223 0x0618  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
15:13:19.0239 0x0618  UEFI - ok
15:13:19.0270 0x0618  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
15:13:19.0270 0x0618  UI0Detect - ok
15:13:19.0270 0x0618  [ 5E3047453D4E66E40323E8417D069D29, 346FA0EE2F36843C12F6D97A6F94DB02167AD88C4C4D7411301BAFDBBD3EAA00 ] UimBus          C:\WINDOWS\System32\drivers\UimBus.sys
15:13:19.0301 0x0618  UimBus - ok
15:13:19.0301 0x0618  [ 9EB99A4381677FB7A913DD69A691F8A6, AB6D11CF3A9F24B30AD6D07E4AEDDD041C6E48AD0983DD234892E76561369887 ] Uim_DEVIM       C:\WINDOWS\System32\drivers\uim_devim.sys
15:13:19.0317 0x0618  Uim_DEVIM - ok
15:13:19.0333 0x0618  [ 8D9D8AC772613302D2CC54847E943DBB, B48B897DD0CC3C173563FA334C8754B09FF971591A9BBA47442094C728D15FDC ] Uim_IM          C:\WINDOWS\System32\drivers\uim_im.sys
15:13:19.0364 0x0618  Uim_IM - ok
15:13:19.0380 0x0618  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
15:13:19.0395 0x0618  uliagpkx - ok
15:13:19.0395 0x0618  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
15:13:19.0411 0x0618  umbus - ok
15:13:19.0426 0x0618  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
15:13:19.0442 0x0618  UmPass - ok
15:13:19.0473 0x0618  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
15:13:19.0473 0x0618  UmRdpService - ok
15:13:19.0536 0x0618  [ C485FB802F6C4A306B8F89BA087E5CA2, DE2E0F4A22D63EC54E23491962282ED3B01C7EB9941774A0C5633A776EAD499A ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
15:13:19.0551 0x0618  UNS - ok
15:13:19.0583 0x0618  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\WINDOWS\System32\upnphost.dll
15:13:19.0583 0x0618  upnphost - ok
15:13:19.0598 0x0618  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
15:13:19.0630 0x0618  usbccgp - ok
15:13:19.0645 0x0618  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
15:13:19.0692 0x0618  usbcir - ok
15:13:19.0708 0x0618  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
15:13:19.0723 0x0618  usbehci - ok
15:13:19.0755 0x0618  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
15:13:19.0817 0x0618  usbhub - ok
15:13:19.0817 0x0618  [ FAA564A13576F9284546BF016D27B551, 1D2CD13DC0B02DD40657EE4F93F4A13C78D2F2EF91685E563D78E217C96DF544 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
15:13:19.0880 0x0618  USBHUB3 - ok
15:13:19.0926 0x0618  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
15:13:19.0973 0x0618  usbohci - ok
15:13:19.0989 0x0618  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
15:13:20.0020 0x0618  usbprint - ok
15:13:20.0036 0x0618  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
15:13:20.0067 0x0618  USBSTOR - ok
15:13:20.0083 0x0618  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
15:13:20.0098 0x0618  usbuhci - ok
15:13:20.0098 0x0618  [ 1A20F03700D2B2ED775E38D751EF2F63, 76F8BE9F412D4397437E60A7E6231C80EA9B4F5436C9A8FAB967C78604994AE9 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
15:13:20.0130 0x0618  USBXHCI - ok
15:13:20.0161 0x0618  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
15:13:20.0161 0x0618  VaultSvc - ok
15:13:20.0192 0x0618  [ 7181DACBD6699770F027A049594A3DCF, F90D04A38D3C7F94A24E37C3C1FB10FB9EF6077D7DD1FA248707C1A0A72C922B ] vdbus           C:\WINDOWS\System32\drivers\vdbus.sys
15:13:20.0255 0x0618  vdbus - ok
15:13:20.0270 0x0618  [ C652D3734707D3EADE80A2F028CC926C, 579EF0EB13EAE23DBD5DB3C2B7E8111AFD975E498E5629A0792045F50343577F ] vDisk           C:\WINDOWS\System32\drivers\vDisk.sys
15:13:20.0302 0x0618  vDisk - ok
15:13:20.0302 0x0618  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
15:13:20.0317 0x0618  vdrvroot - ok
15:13:20.0364 0x0618  [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds             C:\WINDOWS\System32\vds.exe
15:13:20.0380 0x0618  vds - ok
15:13:20.0380 0x0618  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
15:13:20.0411 0x0618  VerifierExt - ok
15:13:20.0427 0x0618  [ C06E8481E068F170A258441639AC5792, 2F550530BACB511A195D5047F003B01CB6E04FA9A0DCCF638CB3D51FF5467DC7 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
15:13:20.0458 0x0618  vhdmp - ok
15:13:20.0473 0x0618  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
15:13:20.0489 0x0618  viaide - ok
15:13:20.0489 0x0618  [ 3CE922E34DB12D9F3C0EA856BC09687C, E50A1885FBC775E49614989ECFEA4ACBBDDA16AF459CC5361EED9E23CC7CD42C ] Vid             C:\WINDOWS\System32\drivers\Vid.sys
15:13:20.0520 0x0618  Vid - ok
15:13:20.0552 0x0618  [ D17C09F9ECFA8C70BA5F3E70FC63CDA8, EC03D6AFFCE525D06ADC4AEFA31C8C3CE72ED1B8FDA5FF7098C3F0B6338EF8BD ] VIPAppService   C:\Program Files (x86)\Symantec\VIP Access Client\VIPAppService.exe
15:13:20.0552 0x0618  VIPAppService - ok
15:13:20.0567 0x0618  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
15:13:20.0583 0x0618  vmbus - ok
15:13:20.0598 0x0618  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
15:13:20.0614 0x0618  VMBusHID - ok
15:13:20.0630 0x0618  [ 68F8C26DEA2D42E8DEC0778943433C80, 81E8F9D62815F94952CEEABD0689473CC330F7890F66872DCD35A43C06ED33CD ] vmbusr          C:\WINDOWS\System32\drivers\vmbusr.sys
15:13:20.0645 0x0618  vmbusr - ok
15:13:20.0677 0x0618  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
15:13:20.0692 0x0618  vmicguestinterface - ok
15:13:20.0708 0x0618  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
15:13:20.0708 0x0618  vmicheartbeat - ok
15:13:20.0723 0x0618  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
15:13:20.0739 0x0618  vmickvpexchange - ok
15:13:20.0739 0x0618  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
15:13:20.0755 0x0618  vmicrdv - ok
15:13:20.0755 0x0618  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
15:13:20.0770 0x0618  vmicshutdown - ok
15:13:20.0770 0x0618  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
15:13:20.0786 0x0618  vmictimesync - ok
15:13:20.0786 0x0618  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
15:13:20.0802 0x0618  vmicvss - ok
15:13:20.0802 0x0618  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
15:13:20.0833 0x0618  volmgr - ok
15:13:20.0833 0x0618  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
15:13:20.0880 0x0618  volmgrx - ok
15:13:20.0895 0x0618  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
15:13:20.0927 0x0618  volsnap - ok
15:13:20.0927 0x0618  [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
15:13:20.0942 0x0618  vpci - ok
15:13:20.0958 0x0618  [ ADBE96C33D1A5BB1BBAF90B4BC84F523, 6E9C9ED3D51E4B6E494D42ECA6F824AD86D676C12C39BBE6B8BD96366BCB02DA ] vpcivsp         C:\WINDOWS\System32\drivers\vpcivsp.sys
15:13:20.0973 0x0618  vpcivsp - ok
15:13:20.0973 0x0618  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
15:13:21.0036 0x0618  vsmraid - ok
15:13:21.0067 0x0618  [ E369C59F2C0852DDD090C07E0DDE0051, 4FAC94458EAAEED4F84A86FBAB8FBB332D0AF85BD528E63C0C058A2DA8E3011D ] VSS             C:\WINDOWS\system32\vssvc.exe
15:13:21.0098 0x0618  VSS - ok
15:13:21.0114 0x0618  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
15:13:21.0145 0x0618  VSTXRAID - ok
15:13:21.0161 0x0618  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
15:13:21.0192 0x0618  vwifibus - ok
15:13:21.0208 0x0618  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\WINDOWS\system32\w32time.dll
15:13:21.0223 0x0618  W32Time - ok
15:13:21.0223 0x0618  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
15:13:21.0239 0x0618  WacomPen - ok
15:13:21.0255 0x0618  [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:13:21.0286 0x0618  Wanarp - ok
15:13:21.0286 0x0618  [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:13:21.0286 0x0618  Wanarpv6 - ok
15:13:21.0348 0x0618  [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine        C:\WINDOWS\system32\wbengine.exe
15:13:21.0380 0x0618  wbengine - ok
15:13:21.0411 0x0618  [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
15:13:21.0427 0x0618  WbioSrvc - ok
15:13:21.0442 0x0618  [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
15:13:21.0442 0x0618  Wcmsvc - ok
15:13:21.0473 0x0618  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
15:13:21.0473 0x0618  wcncsvc - ok
15:13:21.0473 0x0618  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
15:13:21.0489 0x0618  WcsPlugInService - ok
15:13:21.0489 0x0618  [ 0359607177E5E9F6041136CC0A5CB0B6, 16687BE2639648CF46E8768BA1798030472C525612C629BF134D053240E2195B ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
15:13:21.0520 0x0618  WdBoot - ok
15:13:21.0552 0x0618  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
15:13:21.0598 0x0618  Wdf01000 - ok
15:13:21.0598 0x0618  [ DE8D12B4C3F55FA2C5E9774314F6C58A, C3E835DC066A94E1431BCDC90D7EA27AAC6F82826F4A5527B37D865241D7A366 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
15:13:21.0614 0x0618  WdFilter - ok
15:13:21.0630 0x0618  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
15:13:21.0630 0x0618  WdiServiceHost - ok
15:13:21.0630 0x0618  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
15:13:21.0630 0x0618  WdiSystemHost - ok
15:13:21.0645 0x0618  [ 4AD874CDC812EC156265E451B6B09DAB, 6E3E05B8301841425E9BB0D54B35EF386B78EEB307B5A6153FD1F366D30F23FA ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
15:13:21.0661 0x0618  WdNisDrv - ok
15:13:21.0677 0x0618  WdNisSvc - ok
15:13:21.0692 0x0618  [ 91B18D7A1702ED589E67C6C81052B955, 5D1DA8B86106A28E50BBCCB36527CC130D41201F5BE1D3DC5F1D6F7ECCF807BA ] WebClient       C:\WINDOWS\System32\webclnt.dll
15:13:21.0692 0x0618  WebClient - ok
15:13:21.0708 0x0618  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
15:13:21.0723 0x0618  Wecsvc - ok
15:13:21.0723 0x0618  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
15:13:21.0723 0x0618  WEPHOSTSVC - ok
15:13:21.0723 0x0618  [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
15:13:21.0739 0x0618  wercplsupport - ok
15:13:21.0739 0x0618  [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
15:13:21.0739 0x0618  WerSvc - ok
15:13:21.0755 0x0618  [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
15:13:21.0786 0x0618  WFPLWFS - ok
15:13:21.0802 0x0618  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
15:13:21.0802 0x0618  WiaRpc - ok
15:13:21.0802 0x0618  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
15:13:21.0817 0x0618  WIMMount - ok
15:13:21.0817 0x0618  WinDefend - ok
15:13:21.0864 0x0618  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
15:13:21.0864 0x0618  WinHttpAutoProxySvc - ok
15:13:21.0927 0x0618  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
15:13:21.0927 0x0618  Winmgmt - ok
15:13:22.0005 0x0618  [ 9CE162EB9057CF079736F4DD00FC0D6C, 412C34557866D2A3B3CDAFA5A03B87C01AACF75E349802E511098B20137028D9 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
15:13:22.0036 0x0618  WinRM - ok
15:13:22.0067 0x0618  [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb          C:\WINDOWS\System32\drivers\WinUsb.sys
15:13:22.0083 0x0618  WinUsb - ok
15:13:22.0130 0x0618  [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
15:13:22.0161 0x0618  WlanSvc - ok
15:13:22.0192 0x0618  [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
15:13:22.0208 0x0618  wlidsvc - ok
15:13:22.0223 0x0618  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
15:13:22.0286 0x0618  WmiAcpi - ok
15:13:22.0317 0x0618  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
15:13:22.0333 0x0618  wmiApSrv - ok
15:13:22.0349 0x0618  WMPNetworkSvc - ok
15:13:22.0364 0x0618  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
15:13:22.0395 0x0618  Wof - ok
15:13:22.0442 0x0618  [ 61BF52E9FFAB27A0B6D621BE26088373, 81291D52C381360E69D51E7DEB05CFAC651A7E9EF781CA23062C0583D0C94708 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
15:13:22.0458 0x0618  workfolderssvc - ok
15:13:22.0473 0x0618  [ 182561A14F2E93E81E66FE3700D17A5A, FB9A06058A8BCCEDCDC5BF8899D9B2FBA5752C262C5FC6D2B8338884F3303D12 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
15:13:22.0505 0x0618  wpcfltr - ok
15:13:22.0536 0x0618  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
15:13:22.0536 0x0618  WPCSvc - ok
15:13:22.0552 0x0618  [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
15:13:22.0552 0x0618  WPDBusEnum - ok
15:13:22.0583 0x0618  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
15:13:22.0614 0x0618  WpdUpFltr - ok
15:13:22.0630 0x0618  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
15:13:22.0645 0x0618  ws2ifsl - ok
15:13:22.0661 0x0618  [ 9654DE19551093CD73874281E1573C94, 5E3513EC0CB180D90904BE8970AB64A4434279E8C467AE2CF693254E47B1D11E ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
15:13:22.0661 0x0618  wscsvc - ok
15:13:22.0661 0x0618  WSearch - ok
15:13:22.0786 0x0618  [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService       C:\WINDOWS\System32\WSService.dll
15:13:22.0833 0x0618  WSService - ok
15:13:22.0927 0x0618  [ DCD090318EC800CF6275C6835900B0C6, 9E72762EEE46CC0606B909850E6D22E9C8E5C88E82F7C974B2B7C1E5160BEBA7 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
15:13:22.0974 0x0618  wuauserv - ok
15:13:23.0005 0x0618  [ D537815E450A149752C15868392AD1F3, 8788CE493349299DB36E409C8CC3C6EA08301FA492C95D9D556E00BC13A05F13 ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
15:13:23.0036 0x0618  WudfPf - ok
15:13:23.0052 0x0618  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
15:13:23.0083 0x0618  WUDFRd - ok
15:13:23.0099 0x0618  [ 9CDC2059A23E3C9B57696178508777E7, B680A2E2EDA5C8C6A547E7D9B2F2F8E6407C3EA0A01B82A4B88D48A27913A597 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
15:13:23.0099 0x0618  wudfsvc - ok
15:13:23.0099 0x0618  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdFs       C:\WINDOWS\System32\drivers\WUDFRd.sys
15:13:23.0114 0x0618  WUDFWpdFs - ok
15:13:23.0114 0x0618  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdMtp      C:\WINDOWS\System32\drivers\WUDFRd.sys
15:13:23.0114 0x0618  WUDFWpdMtp - ok
15:13:23.0130 0x0618  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
15:13:23.0145 0x0618  WwanSvc - ok
15:13:23.0145 0x0618  ================ Scan global ===============================
15:13:23.0177 0x0618  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll
15:13:23.0224 0x0618  [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\WINDOWS\system32\winsrv.dll
15:13:23.0302 0x0618  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll
15:13:23.0364 0x0618  [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\WINDOWS\system32\services.exe
15:13:23.0395 0x0618  [ Global ] - ok
15:13:23.0395 0x0618  ================ Scan MBR ==================================
15:13:23.0411 0x0618  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
15:13:23.0411 0x0618  \Device\Harddisk0\DR0 - ok
15:13:23.0411 0x0618  [ 180DBDE3AF7EA48B3DB3AC27B1DDF401 ] \Device\Harddisk1\DR1
15:13:23.0458 0x0618  \Device\Harddisk1\DR1 - ok
15:13:23.0458 0x0618  ================ Scan VBR ==================================
15:13:23.0458 0x0618  [ 9C5826C4EA213F855939D61B03C78EA1 ] \Device\Harddisk0\DR0\Partition1
15:13:23.0520 0x0618  \Device\Harddisk0\DR0\Partition1 - ok
15:13:23.0536 0x0618  [ 30591035CBA927DD314BC922D49E74C2 ] \Device\Harddisk0\DR0\Partition2
15:13:23.0583 0x0618  \Device\Harddisk0\DR0\Partition2 - ok
15:13:23.0599 0x0618  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
15:13:23.0599 0x0618  \Device\Harddisk0\DR0\Partition3 - ok
15:13:23.0599 0x0618  [ CE4A3307B5EC4C37140DC04953ACB74C ] \Device\Harddisk0\DR0\Partition4
15:13:23.0661 0x0618  \Device\Harddisk0\DR0\Partition4 - ok
15:13:23.0677 0x0618  [ 12A6D0E108C49AB07F38B9B1367A86B6 ] \Device\Harddisk0\DR0\Partition5
15:13:23.0692 0x0618  \Device\Harddisk0\DR0\Partition5 - ok
15:13:23.0692 0x0618  [ 07DEA4E6B3CE9AFEC8AD90788F681721 ] \Device\Harddisk0\DR0\Partition6
15:13:23.0692 0x0618  \Device\Harddisk0\DR0\Partition6 - ok
15:13:23.0692 0x0618  [ E8D720A4693FE864D7A53CCF75453152 ] \Device\Harddisk1\DR1\Partition1
15:13:23.0755 0x0618  \Device\Harddisk1\DR1\Partition1 - ok
15:13:23.0755 0x0618  ================ Scan generic autorun ======================
15:13:24.0020 0x0618  [ 834A309C2FDF52FC09353F348CFE1235, FF8D5B0C4D8DEF3B313E11B01D6A2A29758E8721EF2EC0AAC2DB3C9AAF399276 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
15:13:24.0239 0x0618  RTHDVCPL - ok
15:13:24.0286 0x0618  [ 7D29051E51113FDA64377BACB26C9D9B, B9EAAC771F58B8908C92AE27A1FBCADA9F08F26B65ED495AADAA033EFC6F363C ] C:\Program Files\Trend Micro\UniClient\UiFrmWrk\UIWatchDog.exe
15:13:24.0286 0x0618  Trend Micro Client Framework - ok
15:13:24.0349 0x0618  [ 19EF31924728E34FFC39A6134FBA1576, E72432C41D8EFF4ED6033D1ACE86B4E40F04B7053C286D52982D510514F5373D ] C:\Program Files\McAfee\Raptor\Raptor.exe
15:13:24.0364 0x0618  Raptor - ok
15:13:24.0395 0x0618  [ 4C7C4CADD2515329D9D40D7DC91C5930, 7F0BB59DF698C949217036F12579FFEDDD3444CFA26376824314E88E563EEF0D ] C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe
15:13:24.0411 0x0618  IMSS - ok
15:13:24.0427 0x0618  [ 94191ADA272DE60F1BC7D17E8A34DE34, BEB9B804DE1A04FA103BF72673D843DFDBB2C66A6B260FB2C7CF950F53A43A34 ] C:\Program Files (x86)\Lenovo\PowerMgr\DPMHost.exe
15:13:24.0442 0x0618  Power Manager Startup Utility - ok
15:13:24.0474 0x0618  [ 35048D8E8A0BF7A797CD5757ACD7EED0, 890FCF24869614B3990B575A588ECB35C25A5B896F21BF9C66D43C93787FDD7A ] C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
15:13:24.0489 0x0618  CLMLServer - ok
15:13:24.0645 0x0618  [ F5E749EB293E22A96FFBAE8F915BF29B, 233AA152A96E6837DEDC5665D2DAE03D8926CF1E9A54F8CF8827AFC1DA3E1624 ] C:\Program Files (x86)\Seagate\DiscWizard\DiscWizardMonitor.exe
15:13:24.0724 0x0618  DiscWizardMonitor.exe - ok
15:13:24.0895 0x0618  [ 48A2879BF3DD8C5DCE20AA205345439C, A59C63B11904B4AD9DCD1CA4DCD0F4A07CF1AA0B0494E38DF124EFEDBF01FC2E ] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
15:13:24.0911 0x0618  AcronisTibMounterMonitor - ok
15:13:24.0974 0x0618  [ A6F5810B18C6C141161F79C2C41CE060, 0618DC88D79215B291376AD6E7005F4E7532EB80B481CFCCB11F41CBADE23FA7 ] C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\PFGUI.exe
15:13:25.0005 0x0618  Privatefirewall - ok
15:13:25.0052 0x0618  [ 059C2F55E82C8EDB20E8F26B2A7D2B19, BC323A8B8E0C3A5C2ABF23EDA0314A6117B9C2BC417A66CA5D6B25773E84E8F1 ] C:\Program Files (x86)\Ruiware\WinPatrol\winpatrol.exe
15:13:25.0067 0x0618  WinPatrol - ok
15:13:25.0067 0x0618  Waiting for KSN requests completion. In queue: 120
15:13:26.0083 0x0618  Waiting for KSN requests completion. In queue: 120
15:13:27.0084 0x0618  Waiting for KSN requests completion. In queue: 120
15:13:28.0117 0x0618  FW detected via SS2: Privatefirewall, C:\Program Files (x86)\Privacyware\Privatefirewall 7.0\pfgui.exe ( 7.0.30.3 ), 0x51010 ( enabled )
15:13:30.0575 0x0618  ============================================================
15:13:30.0575 0x0618  Scan finished
15:13:30.0575 0x0618  ============================================================
15:13:30.0575 0x1eec  Detected object count: 0
15:13:30.0575 0x1eec  Actual detected object count: 0
15:14:19.0412 0x1b80  Deinitialize success
 



#40 Eeger33

Eeger33
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  

Posted 21 December 2014 - 05:13 PM

I am considering a change in antivirus products.     BitDefender Internet Security would replace Trend Titanium.    Would this be a problem?    

Another side issue:     Archiver 2014 produces an antivirus warning (which I obey) when I try to uninstall it.      Should I just leave it alone?



#41 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:08:55 AM

Posted 22 December 2014 - 01:27 PM

Hi Eeger33.

 

It's normal that Antivirus startup points could not be disable because of self-protection against malware.

 

Switching to Bitedefender should be fine, but please uninstall Trendmicro first.

 

Try uninstall archiver 2014 with Revo Uninstaller. If your antivirus alerted you about archiver 2014 please ignore it and carry on with the uninstall process.

 

Thank you.


Edited by Sirawit, 22 December 2014 - 01:27 PM.

If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#42 Eeger33

Eeger33
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  

Posted 22 December 2014 - 07:10 PM

Trend Micro was uninstalled easily.    Revo Uninstaller did a good job of uninstalling Archiver 2014.   (I'm impressed by Revo.)     I intended to install a prepaid copy of BitDefender Internet Security 2014, but - when I tried -  it said "my machine was not compatible".    What does that mean?    Perhaps it's a Windows 8.1 compatibility issue.     Anyway,  I then installed a trial version of BitDefender I.S. 2015.     It offers its own firewall.    Question:   Is it best to stick with just one active firewall, such as Private Firewall, or can I have more than one running?  



#43 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:08:55 AM

Posted 23 December 2014 - 06:13 AM

Hi Eeger33.

 

You should have only one Antivirus and Firewall actively running. If you wanted to use Bitdefender Firewall you can switch off or uninstall private firewall.

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.


#44 Eeger33

Eeger33
  • Topic Starter

  • Members
  • 35 posts
  • OFFLINE
  •  

Posted 23 December 2014 - 11:49 AM

A few tense moments this morning just after booting up:  twice BitDefender went down or was shut down somehow.     Windows notified me, after the second time restarting protection, BitDefender protection stayed up.    However, BitDefender Firewall was out of service most of the morning.    It just would not turn on.    (So I turned on Private Firewall for now.)     After rebooting several times a few minutes ago,   B.D. Firewall came up - but not with the optional Wireless protection.      Even more interesting, the full scan by B.D.  late yesterday FOUND one other TROJAN, which it took care of.     And there is another step I thought I would take to help check Recovery and Boot partitions and Hidden items thoroughly:   the B.D.  Rescue disk.  

However, I did not succeed.     I twice have built and tried to run the B.D. Rescue on flash drive to scan non-Windows partitions, but it fails to start, saying "Missing Operating System_".          



#45 Sirawit

Sirawit

    Bleepin' Brony


  • Malware Response Team
  • 4,158 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Thailand
  • Local time:08:55 AM

Posted 27 December 2014 - 10:53 AM

Hi Eeger33. Sorry for the delay.

 

The reason why Bitdefender rescue disk failed to run is probably corrupted CD image file.

 

Please try uninstall PrivateFirewall and try enable Bitdefender Firewall again. Private firewall may conflict with Bitdefender even when it was turned off.

 

I'd like us to scan your machine with ESET OnlineScan

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the esetsmartinstaller_enu.png
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.

 

After the scan was finished, please create new FRST log for me.

 

Thank you.


If I don't reply back to you in 2 days, feel free to send me a PM.

 

“You’re lying… just like you were lying to me before. You have to hate me. I’ve been the worst daughter in the world… you should hate me.”

“But I don’t, Nyx. Because, Nyx, I’m your mother, and a mother will always love her daughter, no matter what.” -Past sins by Pen stroke.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users