Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

seek guidance to ensure my laptop is CLEAN


  • Please log in to reply
15 replies to this topic

#1 seraphin

seraphin

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Local time:11:08 AM

Posted 01 January 2015 - 12:03 PM

So the problem started (like many other users) when I downloaded utorrent, which was bundled with other software. I then ran various anti-virus/anti-malware, WITHOUT a proper guidance, to attempt to clean up my laptop. Two issues persist, although I don't know if they are "problems", judging by what I've read online.

Issue 1 - tdsskiller picked up a "spurious program" - HP Support Assistant Service. It's marked as suspcious object, medium risk

Issue 2 - "Search Protection" is still in my system, e.g. after running MiniToolBox, I can find the following -

Search Protection (HKCU\...\Search Protection) (Version: 10.6.0.1 - Spigot, Inc.)

 

What I've done after installing utorrent was (not in the exact order) -

 

ran "rkill64>RogueKiller" - delete everything the program found

ran "Malwarebyte anti-malware" - quarantine everything the program found

ran "SUPERAntispyware" - delete everything the program found

ran "mbam-chameleon" - quarantine everything the program found

ran "tdsskiller" - skip the "problem" (only one, which is the HP Support Assistance Service) tdsskiller identified

 

 

If my memory serves me well, at some point RogueKiller picked up, among other things, Search Protection (SP.exe ? or something like that). A "process" (?) was then "killed" by RogueKiller.

Malwarebyte anti-malware also found some other issues, all quarantined.

At one point, mbam-chameleon was stuck at one program (?correct term), I "cancelled" the mbam-chameleon run (by pressing "C"). Malwarebyte continued and finished with a reporting that the "stuck program" was a potential threat, which was then quarantined.

 

All latest runs did not find anything EXCEPT the two issues I mentioned at the beginning of the post.

 

I assume I may need to re-run some programs (and other new programs) and to post the reports here. Please advise what I should do. Thank you very much for your time !

 

 

 

 



BC AdBot (Login to Remove)

 


#2 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:02:08 PM

Posted 01 January 2015 - 01:03 PM

Hi
Lets get some initial information firstly:
We will be helping you with your problems. Please be patient while we assist you.
Some points for you to keep in mind while we are helping you to make things go easier and faster for both of us
  • Please do NOT run, install or uninstall any programs, unless instructed to do so.
    • We ask you to run different tools in a specific order to ensure the malware is completely removed from your machine, and running any additional tools may detect false positives, interfere with our tools, or cause unforeseen damage or system instability.
  • Please do not attach logs or use code boxes, just copy and paste the text.
    • Due to the high volume of logs we receive it helps to receive everything in the same format, and code boxes make the logs very difficult to read. Also, attachments require us to download and open the reports when it is easier to just read the reports in your post.
  • Please read every post completely before doing anything.
    • Pay special attention to the NOTE: lines, these entries identify an individual issue or important step in the cleanup process.
  • Please provide feedback about your experience as we go.
    • A short statement describing how the computer is working helps us understand where to go next, for example: I am still getting redirected, the computer is running normally, etc. Please do not describe the computer as "the same", this requires the extra step of looking back at your previous post.
NOTE: At the top of your post, click on the Watch Topic Button, select Immediate Notification, and click on Proceed. This will send you an e-mail as soon as I reply to your topic, allowing us to resolve the issue faster.NOTE: Backup any files that cannot be replaced. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planed. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer.
- Do NOT backup any unknown files ending in .exe, .com, .scr, .pif, and .bat since files of these types are more likely to be infected.NOTE: It is good practice to copy and paste the instructions into notepad and print them in case it is necessary for you to go offline during the cleanup process. To open notepad, navigate to Start Menu > All Programs > Accessories > Notepad. Please remember to copy the entire post so you do not miss any instructions.
----------------------------------------------
Please do the following:
:step1:
Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. Reboot now to finish the cleaning process.Note: If Cure is not an option, Skip instead, do NOT choose Delete or Quarantine unless instructed.A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).Copy and paste the full contents of that file in your next reply. - If the log is too long, then split it into multiple posts.
:step2:
Please download AdwCleaner by Xplode onto your desktop.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the contents of that logfile with your next reply.
  • You can find the logfile at C:\AdwCleaner[R1].txt as well.
:step3:
Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center/Action Center
    • Windows Update
    • Windows Defender
    • Other Services
  • Press Scan.
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the full contents of the log in your next reply.
:step4:
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices (Only Problems)
  • List Users, Partitions and Memory size.
  • List Minidump Files
  • List Restore points
NOTE: When using "Reset FF Proxy Settings" option Firefox should be closed.
Click Go and post the full contents of the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#3 seraphin

seraphin
  • Topic Starter

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Local time:11:08 AM

Posted 01 January 2015 - 03:59 PM

HI, thanks a lot for the help.

Tried four times to post the reports but failed. The first time I was told "report was too long". All 3 other times it took forever to finish the process of "posting" so eventually I killed it. Not sure if I did something wrong. Any suggestion? (or else I will simply try to post the answer again later)



#4 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:02:08 PM

Posted 01 January 2015 - 04:37 PM

Hi please split the log for tdsskiller into multiple posts.

Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#5 seraphin

seraphin
  • Topic Starter

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Local time:11:08 AM

Posted 01 January 2015 - 07:35 PM

TDSSKiller report (part I)

14:47:28.0493 0x17b0  TDSS rootkit removing tool 3.0.0.42 Dec 12 2014 00:35:20

14:47:33.0079 0x17b0  ============================================================

14:47:33.0079 0x17b0  Current date / time: 2015/01/01 14:47:33.0079

14:47:33.0079 0x17b0  SystemInfo:

14:47:33.0079 0x17b0 

14:47:33.0079 0x17b0  OS Version: 6.1.7601 ServicePack: 1.0

14:47:33.0079 0x17b0  Product type: Workstation

14:47:33.0079 0x17b0  ComputerName: ADMIN-HP

14:47:33.0079 0x17b0  UserName: Admin

14:47:33.0079 0x17b0  Windows directory: C:\Windows

14:47:33.0079 0x17b0  System windows directory: C:\Windows

14:47:33.0079 0x17b0  Running under WOW64

14:47:33.0079 0x17b0  Processor architecture: Intel x64

14:47:33.0079 0x17b0  Number of processors: 4

14:47:33.0079 0x17b0  Page size: 0x1000

14:47:33.0079 0x17b0  Boot type: Normal boot

14:47:33.0079 0x17b0  ============================================================

14:47:35.0762 0x17b0  KLMD registered as C:\Windows\system32\drivers\45411360.sys

14:47:36.0090 0x17b0  System UUID: {35F62E44-2716-E42E-4A68-C67CBF391B9A}

14:47:36.0714 0x17b0  Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 ( 698.64 Gb ), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

14:47:36.0714 0x17b0  ============================================================

14:47:36.0714 0x17b0  \Device\Harddisk0\DR0:

14:47:36.0714 0x17b0  MBR partitions:

14:47:36.0714 0x17b0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x200800

14:47:36.0714 0x17b0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x201000, BlocksNum 0x55752800

14:47:36.0714 0x17b0  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x55953800, BlocksNum 0x17F0000

14:47:36.0714 0x17b0  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xB, StartLBA 0x57143800, BlocksNum 0x400000

14:47:36.0714 0x17b0  ============================================================

14:47:36.0745 0x17b0  C: <-> \Device\Harddisk0\DR0\Partition2

14:47:36.0776 0x17b0  E: <-> \Device\Harddisk0\DR0\Partition4

14:47:36.0792 0x17b0  D: <-> \Device\Harddisk0\DR0\Partition3

14:47:36.0792 0x17b0  ============================================================

14:47:36.0792 0x17b0  Initialize success

14:47:36.0792 0x17b0  ============================================================

14:47:46.0948 0x1128  ============================================================

14:47:46.0948 0x1128  Scan started

14:47:46.0948 0x1128  Mode: Manual;

14:47:46.0948 0x1128  ============================================================

14:47:46.0948 0x1128  KSN ping started

14:47:49.0990 0x1128  KSN ping finished: true

14:47:51.0300 0x1128  ================ Scan system memory ========================

14:47:51.0300 0x1128  System memory - ok

14:47:51.0300 0x1128  ================ Scan services =============================

14:47:51.0394 0x1128  [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

14:47:51.0456 0x1128  !SASCORE - ok

14:47:51.0597 0x1128  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys

14:47:51.0612 0x1128  1394ohci - ok

14:47:51.0659 0x1128  [ F39180029723D7779C80360F9E255709, F4831FEE79AAF4DB66BF58D3F89B8A6DD8F38CD546B3C653BFF7052DDA112CC6 ] Accelerometer   C:\Windows\system32\drivers\Accelerometer.sys

14:47:51.0659 0x1128  Accelerometer - ok

14:47:51.0690 0x1128  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys

14:47:51.0690 0x1128  ACPI - ok

14:47:51.0721 0x1128  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys

14:47:51.0721 0x1128  AcpiPmi - ok

14:47:51.0784 0x1128  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

14:47:51.0784 0x1128  AdobeARMservice - ok

14:47:51.0877 0x1128  [ 749F94C424524285DCDA84D695ABC12F, E5AD194AF5B8B4FDB3976D3E3F9EF942DECFEC4EBAA9881A8EF7707BB781E4AD ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

14:47:51.0893 0x1128  AdobeFlashPlayerUpdateSvc - ok

14:47:51.0955 0x1128  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys

14:47:51.0971 0x1128  adp94xx - ok

14:47:52.0018 0x1128  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys

14:47:52.0018 0x1128  adpahci - ok

14:47:52.0049 0x1128  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys

14:47:52.0049 0x1128  adpu320 - ok

14:47:52.0080 0x1128  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll

14:47:52.0080 0x1128  AeLookupSvc - ok

14:47:52.0143 0x1128  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys

14:47:52.0143 0x1128  AFD - ok

14:47:52.0174 0x1128  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys

14:47:52.0174 0x1128  agp440 - ok

14:47:52.0189 0x1128  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe

14:47:52.0189 0x1128  ALG - ok

14:47:52.0221 0x1128  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys

14:47:52.0221 0x1128  aliide - ok

14:47:52.0283 0x1128  [ E782AD90A549F60D1154C7D571F6511C, ACB61558827E6FBC7EE94827920593946DCE1ABF38D33712D4E11BA9424BF8FB ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe

14:47:52.0283 0x1128  AMD External Events Utility - ok

14:47:52.0299 0x1128  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys

14:47:52.0299 0x1128  amdide - ok

14:47:52.0330 0x1128  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys

14:47:52.0330 0x1128  AmdK8 - ok

14:47:52.0642 0x1128  [ 3E50D6540408F6DC1180E22277132D22, 3489385A20078576B16E1E6B5AB20C99732EC07D9AEC2AA002F739AFCA98D744 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys

14:47:52.0969 0x1128  amdkmdag - ok

14:47:53.0016 0x1128  [ E42A5FA13B50CC1859E2E761F5668C35, B94F17A364D165197E9AC24619CAD31C9F5BCB14381B5913687370ED6052C183 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys

14:47:53.0047 0x1128  amdkmdap - ok

14:47:53.0063 0x1128  [ F64E34C6D563D7D955BAD3412D6E5084, 2840A94477EA70BB1FD30AA4F3A785CE9BCA0BE1819F96B538CD08C97908C2EF ] amdkmpfd        C:\Windows\system32\DRIVERS\amdkmpfd.sys

14:47:53.0063 0x1128  amdkmpfd - ok

14:47:53.0094 0x1128  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys

14:47:53.0094 0x1128  AmdPPM - ok

14:47:53.0141 0x1128  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys

14:47:53.0141 0x1128  amdsata - ok

14:47:53.0172 0x1128  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys

14:47:53.0188 0x1128  amdsbs - ok

14:47:53.0188 0x1128  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys

14:47:53.0188 0x1128  amdxata - ok

14:47:53.0235 0x1128  [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID           C:\Windows\system32\drivers\appid.sys

14:47:53.0235 0x1128  AppID - ok

14:47:53.0266 0x1128  [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc        C:\Windows\System32\appidsvc.dll

14:47:53.0266 0x1128  AppIDSvc - ok

14:47:53.0281 0x1128  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll

14:47:53.0297 0x1128  Appinfo - ok

14:47:53.0328 0x1128  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll

14:47:53.0344 0x1128  AppMgmt - ok

14:47:53.0359 0x1128  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys

14:47:53.0359 0x1128  arc - ok

14:47:53.0391 0x1128  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys

14:47:53.0391 0x1128  arcsas - ok

14:47:53.0593 0x1128  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

14:47:53.0656 0x1128  aspnet_state - ok

14:47:53.0734 0x1128  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys

14:47:53.0734 0x1128  AsyncMac - ok

14:47:53.0781 0x1128  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys

14:47:53.0781 0x1128  atapi - ok

14:47:53.0827 0x1128  [ 65DD42A358451920A703EEEC1AB4995B, 7690EFB12E928ECF3D3D3155F7D1F7A8FEEE742212ABE5319166EA8DB5601884 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys

14:47:53.0859 0x1128  AthBTPort - ok

14:47:53.0905 0x1128  [ 0D21FF67523897518C88F00CCDF09CCC, 0D23D7BC51C1EC0ADBFBFCA0BC1D20BD4E094C22FA3DC37FFBC0F0A6C62C7C33 ] ATHDFU          C:\Windows\System32\Drivers\AthDfu.sys

14:47:53.0905 0x1128  ATHDFU - ok

14:47:53.0952 0x1128  [ 5301D6E038CD5658D7D20E65A37199A5, 9918FD6821066EBEC397029535999CCEEAA087F9290743ECB8A130A3D348EA0B ] AtherosSvc      C:\Program Files (x86)\Bluetooth Suite\adminservice.exe

14:47:54.0015 0x1128  AtherosSvc - ok

14:47:54.0139 0x1128  [ 12A145262015D6C7F08CC251A4A9713B, 30DFD601983CE8B864FC40A863A3BB83D80CF4BBAD445DE502666CFEB05BFAE6 ] athr            C:\Windows\system32\DRIVERS\athrx.sys

14:47:54.0264 0x1128  athr - ok

14:47:54.0342 0x1128  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

14:47:54.0358 0x1128  AudioEndpointBuilder - ok

14:47:54.0389 0x1128  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv        C:\Windows\System32\Audiosrv.dll

14:47:54.0405 0x1128  AudioSrv - ok

14:47:54.0420 0x1128  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll

14:47:54.0420 0x1128  AxInstSV - ok

14:47:54.0483 0x1128  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys

14:47:54.0483 0x1128  b06bdrv - ok

14:47:54.0529 0x1128  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys

14:47:54.0545 0x1128  b57nd60a - ok

14:47:54.0592 0x1128  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll

14:47:54.0607 0x1128  BDESVC - ok

14:47:54.0623 0x1128  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys

14:47:54.0623 0x1128  Beep - ok

14:47:54.0670 0x1128  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll

14:47:54.0670 0x1128  BFE - ok

14:47:54.0717 0x1128  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll

14:47:54.0732 0x1128  BITS - ok

14:47:54.0748 0x1128  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys

14:47:54.0763 0x1128  blbdrive - ok

14:47:54.0810 0x1128  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

14:47:54.0810 0x1128  Bonjour Service - ok

14:47:54.0873 0x1128  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys

14:47:54.0873 0x1128  bowser - ok

14:47:54.0904 0x1128  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys

14:47:54.0904 0x1128  BrFiltLo - ok

14:47:54.0935 0x1128  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys

14:47:54.0935 0x1128  BrFiltUp - ok

14:47:54.0982 0x1128  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll

14:47:54.0982 0x1128  Browser - ok

14:47:55.0013 0x1128  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys

14:47:55.0044 0x1128  Brserid - ok

14:47:55.0075 0x1128  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys

14:47:55.0075 0x1128  BrSerWdm - ok

14:47:55.0075 0x1128  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys

14:47:55.0075 0x1128  BrUsbMdm - ok

14:47:55.0091 0x1128  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys

14:47:55.0091 0x1128  BrUsbSer - ok

14:47:55.0138 0x1128  [ 6822043C3076A40DD0083C8EB891A530, B42C5C3F272BFE4DA58D1FD05DD962FE0C002BCD60F1D8123871253E80F0C0FE ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys

14:47:55.0200 0x1128  BTATH_A2DP - ok

14:47:55.0216 0x1128  [ 599ABCFDCDBAE28AA1FDFE67687DF6EB, 5B8C29DB78FC4EADF38F42701BD933AAD6FB02654280F51D114DBBC5D7B8F151 ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys

14:47:55.0231 0x1128  btath_avdt - ok

14:47:55.0278 0x1128  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS       C:\Windows\system32\drivers\btath_bus.sys

14:47:55.0278 0x1128  BTATH_BUS - ok

14:47:55.0325 0x1128  [ 4AF7C20F94DAC343C01ED671C82DCB99, 2AABD85D9D76461DE883E0F13F61C391BA81E6198FF88268B319474E25A196C8 ] BTATH_HCRP      C:\Windows\system32\drivers\btath_hcrp.sys

14:47:55.0325 0x1128  BTATH_HCRP - ok

14:47:55.0356 0x1128  [ 785C38070043BEEE9E9D591DE4067244, 1C8D15B8A9E80A2799E7094C4AE111FEA9FBC6EAA4A61B13EFE59314C9794949 ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys

14:47:55.0356 0x1128  BTATH_LWFLT - ok

14:47:55.0372 0x1128  [ 859A116D748FBA603AF94C251DC5CF97, D64061721BE01F86386C4B0168B166C6AD076630B2229036E1D368D877389D46 ] BTATH_RCP       C:\Windows\system32\drivers\btath_rcp.sys

14:47:55.0403 0x1128  BTATH_RCP - ok

14:47:55.0434 0x1128  [ B02FA3A7FD3A534093D02851F80CE694, 0EF79D104010D22DA5234BFA52B0D0BF81AA1441EF98D99AC06AEEA021B31FF1 ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys

14:47:55.0481 0x1128  BtFilter - ok

14:47:55.0512 0x1128  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys

14:47:55.0512 0x1128  BthEnum - ok

14:47:55.0528 0x1128  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys

14:47:55.0543 0x1128  BTHMODEM - ok

14:47:55.0559 0x1128  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys

14:47:55.0575 0x1128  BthPan - ok

14:47:55.0606 0x1128  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys

14:47:55.0621 0x1128  BTHPORT - ok

14:47:55.0653 0x1128  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll

14:47:55.0653 0x1128  bthserv - ok

14:47:55.0684 0x1128  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys

14:47:55.0699 0x1128  BTHUSB - ok

14:47:55.0731 0x1128  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys

14:47:55.0731 0x1128  cdfs - ok

14:47:55.0777 0x1128  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys

14:47:55.0793 0x1128  cdrom - ok

14:47:55.0840 0x1128  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll

14:47:55.0840 0x1128  CertPropSvc - ok

14:47:55.0855 0x1128  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys

14:47:55.0871 0x1128  circlass - ok

14:47:55.0902 0x1128  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys

14:47:55.0902 0x1128  CLFS - ok

14:47:55.0980 0x1128  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

14:47:55.0980 0x1128  clr_optimization_v2.0.50727_32 - ok

14:47:56.0027 0x1128  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

14:47:56.0043 0x1128  clr_optimization_v2.0.50727_64 - ok

14:47:56.0121 0x1128  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

14:47:56.0121 0x1128  clr_optimization_v4.0.30319_32 - ok

14:47:56.0152 0x1128  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

14:47:56.0152 0x1128  clr_optimization_v4.0.30319_64 - ok

14:47:56.0183 0x1128  [ 7E34B0BC915D7260F0A2D50D7B2FD717, 0A64BD7031614280FA7395B7865BEE12016B83BE4812E92F956DA8A6CC9644C3 ] CLVirtualDrive  C:\Windows\system32\DRIVERS\CLVirtualDrive.sys

14:47:56.0183 0x1128  CLVirtualDrive - ok

14:47:56.0214 0x1128  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys

14:47:56.0214 0x1128  CmBatt - ok

14:47:56.0230 0x1128  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys

14:47:56.0230 0x1128  cmdide - ok

14:47:56.0277 0x1128  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys

14:47:56.0292 0x1128  CNG - ok

14:47:56.0323 0x1128  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys

14:47:56.0323 0x1128  Compbatt - ok

14:47:56.0355 0x1128  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys

14:47:56.0370 0x1128  CompositeBus - ok

14:47:56.0370 0x1128  COMSysApp - ok

14:47:56.0464 0x1128  [ 800E61BE9BB72D265089FE126F30900E, E8573734D078D2B7921D84696428F5EF993091BE5AB980A4C0F7E89F6EBBAE8F ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe

14:47:56.0479 0x1128  cphs - ok

14:47:56.0511 0x1128  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys

14:47:56.0511 0x1128  crcdisk - ok

14:47:56.0651 0x1128  [ F8E95D309E0E354E6CAB307E81886163, C29BDF8751016FC652762041B76EC0D10C9998043061F7F64A919C1564F270B7 ] CreoService     C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe

14:47:56.0682 0x1128  CreoService - ok

14:47:56.0745 0x1128  [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc        C:\Windows\system32\cryptsvc.dll

14:47:56.0745 0x1128  CryptSvc - ok

14:47:56.0791 0x1128  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys

14:47:56.0838 0x1128  CSC - ok

14:47:56.0901 0x1128  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll

14:47:56.0916 0x1128  CscService - ok

14:47:56.0963 0x1128  [ 8165BE4C77282F0FEA52E441BE0FAEC4, 70F05C452622826477336DF6B8793D72E857FB7BC25820E97C7D86A10942086B ] CtAgentService  C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe

14:47:57.0025 0x1128  CtAgentService - ok

14:47:57.0119 0x1128  [ 7D9D891ADCFB09435FEE10FA476CCF2D, C5B4A49394062F9E9DADC98164F7442CA99349C51C3782E06489D24EBB236E83 ] CyberLink PowerDVD 12 Media Server Monitor Service c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe

14:47:57.0119 0x1128  CyberLink PowerDVD 12 Media Server Monitor Service - ok

14:47:57.0135 0x1128  [ 894A86E2053781E8646FE47E324EF4D4, DA2DB48348DAD227631088620DF3823790447B1F8691575DFB921E9A7553BC64 ] CyberLink PowerDVD 12 Media Server Service c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe

14:47:57.0150 0x1128  CyberLink PowerDVD 12 Media Server Service - ok

14:47:57.0181 0x1128  [ E89FFE4751BEC77F93FFE82175499CA2, 24F5DC64B7F45303416810E33A589586F56DB0AAC7861C76D86DA9655F21BFAF ] DAMDrv          C:\Windows\system32\DRIVERS\DAMDrv64.sys

14:47:57.0181 0x1128  DAMDrv - ok

14:47:57.0259 0x1128  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll

14:47:57.0275 0x1128  DcomLaunch - ok

14:47:57.0306 0x1128  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll

14:47:57.0306 0x1128  defragsvc - ok

14:47:57.0322 0x1128  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys

14:47:57.0322 0x1128  DfsC - ok

14:47:57.0353 0x1128  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll

14:47:57.0353 0x1128  Dhcp - ok

14:47:57.0384 0x1128  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys

14:47:57.0384 0x1128  discache - ok

14:47:57.0431 0x1128  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys

14:47:57.0431 0x1128  Disk - ok

14:47:57.0462 0x1128  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys

14:47:57.0462 0x1128  dmvsc - ok

14:47:57.0493 0x1128  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll

14:47:57.0509 0x1128  Dnscache - ok

14:47:57.0525 0x1128  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll

14:47:57.0540 0x1128  dot3svc - ok

14:47:57.0618 0x1128  [ EE45ABD9F1DD386DE5C20A3CD97FF974, F41CE01FF102FF3B3605DEAAB707B2CF2224BDA899F48BF762438DF536C45490 ] DpHost          C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe

14:47:57.0634 0x1128  DpHost - ok

14:47:57.0665 0x1128  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll

14:47:57.0665 0x1128  DPS - ok

14:47:57.0696 0x1128  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys

14:47:57.0696 0x1128  drmkaud - ok

14:47:57.0759 0x1128  [ F59E2FE2687A5C30598F9099F318EB73, 80A0B1CC758BD3C4AEAB8E5804120D8A145F918B527F41DEF02A0E4EBE170F37 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys

14:47:57.0774 0x1128  DXGKrnl - ok

14:47:57.0821 0x1128  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll

14:47:57.0821 0x1128  EapHost - ok

14:47:57.0977 0x1128  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys

14:47:58.0039 0x1128  ebdrv - ok

14:47:58.0071 0x1128  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe

14:47:58.0071 0x1128  EFS - ok

14:47:58.0164 0x1128  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe

14:47:58.0180 0x1128  ehRecvr - ok

14:47:58.0195 0x1128  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe

14:47:58.0195 0x1128  ehSched - ok

14:47:58.0258 0x1128  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys

14:47:58.0273 0x1128  elxstor - ok

14:47:58.0305 0x1128  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys

14:47:58.0305 0x1128  ErrDev - ok

14:47:58.0367 0x1128  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll

14:47:58.0367 0x1128  EventSystem - ok

14:47:58.0398 0x1128  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys

14:47:58.0398 0x1128  exfat - ok

14:47:58.0414 0x1128  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys

14:47:58.0414 0x1128  fastfat - ok

14:47:58.0445 0x1128  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe

14:47:58.0476 0x1128  Fax - ok

14:47:58.0507 0x1128  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys

14:47:58.0507 0x1128  fdc - ok

14:47:58.0539 0x1128  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll

14:47:58.0539 0x1128  fdPHost - ok

14:47:58.0554 0x1128  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll

14:47:58.0554 0x1128  FDResPub - ok

14:47:58.0585 0x1128  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys

14:47:58.0585 0x1128  FileInfo - ok

14:47:58.0617 0x1128  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys

14:47:58.0617 0x1128  Filetrace - ok

14:47:58.0648 0x1128  [ 581FDF397ADDF7C314BE18437D4E54AF, 8DC92E976E9A1BFEECE010B276A398924B99F5ACB8A3DDC9F94D2975DF730E18 ] FLCDLOCK        c:\Windows\SysWOW64\flcdlock.exe

14:47:58.0679 0x1128  FLCDLOCK - ok

14:47:58.0710 0x1128  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys

14:47:58.0741 0x1128  flpydisk - ok

14:47:58.0773 0x1128  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys

14:47:58.0788 0x1128  FltMgr - ok

14:47:58.0866 0x1128  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll

14:47:58.0897 0x1128  FontCache - ok

14:47:58.0929 0x1128  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

14:47:58.0929 0x1128  FontCache3.0.0.0 - ok

14:47:58.0944 0x1128  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys

14:47:58.0944 0x1128  FsDepends - ok

14:47:58.0975 0x1128  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys

14:47:58.0975 0x1128  Fs_Rec - ok

14:47:58.0991 0x1128  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys

14:47:59.0007 0x1128  fvevol - ok

14:47:59.0038 0x1128  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys

14:47:59.0038 0x1128  gagp30kx - ok

14:47:59.0100 0x1128  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll

14:47:59.0116 0x1128  gpsvc - ok

14:47:59.0163 0x1128  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

14:47:59.0178 0x1128  gupdate - ok

14:47:59.0178 0x1128  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

14:47:59.0194 0x1128  gupdatem - ok

14:47:59.0225 0x1128  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys

14:47:59.0225 0x1128  hcw85cir - ok

14:47:59.0272 0x1128  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

14:47:59.0272 0x1128  HdAudAddService - ok

14:47:59.0319 0x1128  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys

14:47:59.0319 0x1128  HDAudBus - ok

14:47:59.0350 0x1128  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys

14:47:59.0350 0x1128  HidBatt - ok

14:47:59.0365 0x1128  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys

14:47:59.0381 0x1128  HidBth - ok

14:47:59.0412 0x1128  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys

14:47:59.0412 0x1128  HidIr - ok

14:47:59.0428 0x1128  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll

14:47:59.0443 0x1128  hidserv - ok

14:47:59.0475 0x1128  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys

14:47:59.0475 0x1128  HidUsb - ok

14:47:59.0506 0x1128  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll

14:47:59.0521 0x1128  hkmsvc - ok

14:47:59.0537 0x1128  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll

14:47:59.0553 0x1128  HomeGroupListener - ok

14:47:59.0584 0x1128  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

14:47:59.0584 0x1128  HomeGroupProvider - ok

14:47:59.0631 0x1128  [ 467AD1624990753AAC707DE0B1DFC468, 9F815613A451002F6E28053CE9971967DDE4CDA335FF7A309D52B815ADFA997B ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

14:47:59.0631 0x1128  HP Support Assistant Service - ok

14:47:59.0740 0x1128  [ 57DF6C245D7B5F58435BFAC39E55E502, 54DB6891FE4ADAB4FD7666F9AF236978D29EE2938C34C7B0D3C82E4B7D3BB363 ] hpCMSrv         c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe

14:47:59.0755 0x1128  hpCMSrv - ok

14:47:59.0787 0x1128  [ 8B8E6BD988EAF18C1B86704BF05E5C03, 84052C116032F3DC47B0D3A7A8FC8E86DF94DDB3136C866D8FC8A3DF23209DEC ] hpdskflt        C:\Windows\system32\drivers\hpdskflt.sys

14:47:59.0787 0x1128  hpdskflt - ok

14:47:59.0896 0x1128  [ B9B693903C47165DC6A2FF7FBC38DCDD, E6CBD0A7C169C314F510E57224706B165CDF1887877FA955209C8CCB1BB5AB2A ] HPFSService     C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe

14:47:59.0943 0x1128  HPFSService - ok

14:48:00.0005 0x1128  [ F315F2EE0D1DC7DB63ADC20BA020E9AE, 2E53AB935D7DCBA1BCFA25FD49D8820AB6AE6B399B75A7A4D933342FCE66D2EC ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe

14:48:00.0005 0x1128  hpHotkeyMonitor - ok

14:48:00.0036 0x1128  [ B98EE5D4535A685634B90F7E04DE0DF7, E37D26EF83B70E84742498D2F53037F83BE13F0E01484D85A20C872F1F02ADDA ] HpqKbFiltr      C:\Windows\system32\drivers\HpqKbFiltr.sys

14:48:00.0036 0x1128  HpqKbFiltr - ok

14:48:00.0161 0x1128  [ D2946D9F020AE76E9CEF9B4A6DF838C0, C29CE594879385DA12B8EAA90B258905827B613839CCD820DE49215B68676995 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

14:48:00.0177 0x1128  hpqwmiex - ok

14:48:00.0192 0x1128  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys

14:48:00.0192 0x1128  HpSAMD - ok

14:48:00.0208 0x1128  [ 0865F178E272C682B0689F1AA269128D, F8CC23EA339F0C917C3948FF35BEFE10664CCFF8796954898E41F4EC1618E5E1 ] hpsrv           C:\Windows\system32\Hpservice.exe

14:48:00.0208 0x1128  hpsrv - ok

14:48:00.0286 0x1128  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys

14:48:00.0301 0x1128  HTTP - ok

14:48:00.0317 0x1128  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys

14:48:00.0317 0x1128  hwpolicy - ok

14:48:00.0379 0x1128  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys

14:48:00.0379 0x1128  i8042prt - ok

14:48:00.0457 0x1128  [ 6A1BADFDA5D5BB01B27C3B462050A069, AD5254F9DEA6B38F4DD3AEEB25388A586B58153C67BC7F73923EC9CCABCE8619 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys

14:48:00.0473 0x1128  iaStorA - ok

14:48:00.0504 0x1128  [ ECFFBCCBE9691EACE3B60EEEC970E9E5, 2B770277AB3DA75BAF105DE2E9EA04C702BA6D4504BB266A5C8902EF6EF84417 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

14:48:00.0504 0x1128  IAStorDataMgrSvc - ok

14:48:00.0535 0x1128  [ B9B58FE94AEBC70896B10AE0E93124F1, DFC542240F10407CFE2D563AB977463CE594CE4C00CAE58184D650D6972D65D2 ] iaStorF         C:\Windows\system32\drivers\iaStorF.sys

14:48:00.0551 0x1128  iaStorF - ok

14:48:00.0598 0x1128  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys

14:48:00.0629 0x1128  iaStorV - ok

14:48:00.0676 0x1128  [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS            C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe

14:48:00.0691 0x1128  ICCS - ok

14:48:00.0723 0x1128  [ 62DF33EBF1EFFBFFEAD2C58E2E347199, EC843B2ED5008C15CCF8AB7C0D0D8934802F650BDDDCE3A0F30AC0C346D3FACF ] IceKore         C:\Windows\system32\DRIVERS\IceKore.sys

14:48:00.0769 0x1128  IceKore - ok

14:48:00.0894 0x1128  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

14:48:00.0941 0x1128  idsvc - ok

14:48:00.0957 0x1128  IEEtwCollectorService - ok

14:48:01.0113 0x1128  [ AEF200DC087141A5F66A6B006D2F0FD4, A38A0684637D9FE58271D91B93184A72414948E35145D19246BF6FBC60E28B3C ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys

14:48:01.0237 0x1128  igfx - ok

14:48:01.0269 0x1128  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys

14:48:01.0284 0x1128  iirsp - ok

14:48:01.0331 0x1128  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll

14:48:01.0362 0x1128  IKEEXT - ok

14:48:01.0409 0x1128  [ EEE7376243CD8A4B49B885EF122D25E5, A3B89E7B513C95558C4DA41D3C136D464381263BA43E00EC136FC776DAA0BA94 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys

14:48:01.0425 0x1128  IntcDAud - ok

14:48:01.0487 0x1128  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel® Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe

14:48:01.0908 0x1128  Intel® Capability Licensing Service Interface - ok

14:48:01.0939 0x1128  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel® Capability Licensing Service TCP IP Interface c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe

14:48:02.0501 0x1128  Intel® Capability Licensing Service TCP IP Interface - ok

14:48:02.0548 0x1128  [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe

14:48:02.0548 0x1128  Intel® ME Service - ok

14:48:02.0563 0x1128  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys

14:48:02.0563 0x1128  intelide - ok

14:48:02.0595 0x1128  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\drivers\intelppm.sys

14:48:02.0595 0x1128  intelppm - ok

14:48:02.0610 0x1128  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll

14:48:02.0626 0x1128  IPBusEnum - ok

14:48:02.0657 0x1128  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys

14:48:02.0657 0x1128  IpFilterDriver - ok

14:48:02.0704 0x1128  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll

14:48:02.0704 0x1128  iphlpsvc - ok

14:48:02.0735 0x1128  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys

14:48:02.0735 0x1128  IPMIDRV - ok

14:48:02.0751 0x1128  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys

14:48:02.0751 0x1128  IPNAT - ok

14:48:02.0782 0x1128  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys

14:48:02.0782 0x1128  IRENUM - ok

14:48:02.0813 0x1128  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys

14:48:02.0813 0x1128  isapnp - ok

14:48:02.0844 0x1128  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys

14:48:02.0860 0x1128  iScsiPrt - ok

14:48:02.0891 0x1128  [ 78D369F8A81A341109FBA1DB64B4C512, E584F693255CCBF7006E7D35984149CF599BB0849A8F02EFDD6223DF0D606049 ] iusb3hcs        C:\Windows\system32\drivers\iusb3hcs.sys

14:48:02.0891 0x1128  iusb3hcs - ok

14:48:02.0953 0x1128  [ 5B632ABA038CE2E2D5D2D1115C6B26D1, 605A8FFA704E4369CF9D17DF8630DC9E196B8920D47F1CC5151759E60B234C1F ] iusb3hub        C:\Windows\system32\drivers\iusb3hub.sys

14:48:02.0969 0x1128  iusb3hub - ok

14:48:03.0047 0x1128  [ EA841584EF59528D11F20355770E427E, 515737761BB2A0A233F4AD141E28D93E3B9789320A15B7D5FB3DB5AC3CD8E249 ] iusb3xhc        C:\Windows\system32\drivers\iusb3xhc.sys

14:48:03.0063 0x1128  iusb3xhc - ok

14:48:03.0094 0x1128  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

14:48:03.0094 0x1128  jhi_service - ok

14:48:03.0125 0x1128  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys

14:48:03.0125 0x1128  kbdclass - ok

14:48:03.0156 0x1128  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys

14:48:03.0156 0x1128  kbdhid - ok

14:48:03.0172 0x1128  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe

14:48:03.0172 0x1128  KeyIso - ok

14:48:03.0187 0x1128  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys

14:48:03.0187 0x1128  KSecDD - ok

14:48:03.0219 0x1128  [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys

14:48:03.0234 0x1128  KSecPkg - ok

14:48:03.0265 0x1128  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys

14:48:03.0265 0x1128  ksthunk - ok

14:48:03.0312 0x1128  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll

14:48:03.0312 0x1128  KtmRm - ok

14:48:03.0359 0x1128  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll

14:48:03.0359 0x1128  LanmanServer - ok

14:48:03.0375 0x1128  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

14:48:03.0390 0x1128  LanmanWorkstation - ok

14:48:03.0390 0x1128  [ 820A6BFE4BB42ECDE1AA97B5C33E77B4, C491516A9FEA63E0AFD3AED14158BEE6F019F70A4F915D405553F4D434DD5CA9 ] lehidmini       C:\Windows\system32\drivers\leath_hid.sys

14:48:03.0390 0x1128  lehidmini - ok

14:48:03.0437 0x1128  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys

14:48:03.0437 0x1128  lltdio - ok

14:48:03.0484 0x1128  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll

14:48:03.0484 0x1128  lltdsvc - ok

14:48:03.0499 0x1128  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll

14:48:03.0515 0x1128  lmhosts - ok

14:48:03.0593 0x1128  [ AD69C6F5A68550ECB8F1CC388620D9A1, 7D1A27CBC6C92EE589EACA2DC189CE42F5A5C5FB3586755DD2F569FC23116BFB ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

14:48:03.0609 0x1128  LMS - ok

14:48:03.0640 0x1128  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys

14:48:03.0640 0x1128  LSI_FC - ok

14:48:03.0655 0x1128  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys

14:48:03.0671 0x1128  LSI_SAS - ok

14:48:03.0702 0x1128  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys

14:48:03.0702 0x1128  LSI_SAS2 - ok

14:48:03.0733 0x1128  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys

14:48:03.0733 0x1128  LSI_SCSI - ok

14:48:03.0780 0x1128  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys

14:48:03.0843 0x1128  luafv - ok

14:48:04.0123 0x1128  [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

14:48:04.0155 0x1128  MBAMScheduler - ok

14:48:04.0186 0x1128  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll

14:48:04.0186 0x1128  Mcx2Svc - ok

14:48:04.0201 0x1128  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys

14:48:04.0201 0x1128  megasas - ok

14:48:04.0248 0x1128  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys

14:48:04.0264 0x1128  MegaSR - ok

14:48:04.0279 0x1128  [ 18B9AD128EC84E8D16A83F70CF36594F, 199DF15D68E2A079794E5DD325162C1A68A65EF26EEF5A6C6154281DDE57279A ] MEIx64          C:\Windows\system32\drivers\TeeDriverx64.sys

14:48:04.0311 0x1128  MEIx64 - ok

14:48:04.0373 0x1128  Microsoft SharePoint Workspace Audit Service - ok

14:48:04.0404 0x1128  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll

14:48:04.0404 0x1128  MMCSS - ok

14:48:04.0420 0x1128  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys

14:48:04.0420 0x1128  Modem - ok

14:48:04.0451 0x1128  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys

14:48:04.0451 0x1128  monitor - ok

14:48:04.0498 0x1128  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\drivers\mouclass.sys

14:48:04.0498 0x1128  mouclass - ok

14:48:04.0529 0x1128  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\drivers\mouhid.sys

14:48:04.0529 0x1128  mouhid - ok

14:48:04.0545 0x1128  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys

14:48:04.0545 0x1128  mountmgr - ok

14:48:04.0576 0x1128  [ B4E9C7383A705628AD491CF0F87D901F, 5C0CD7133D4F5B1E0466CDB2A2210ECA57206A8BC41F37BC6324120AE5501C70 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

14:48:04.0576 0x1128  MozillaMaintenance - ok



#6 seraphin

seraphin
  • Topic Starter

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Local time:11:08 AM

Posted 01 January 2015 - 07:39 PM

TDSSkiller (part 2)14:48:04.0623 0x1128  [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys

14:48:04.0638 0x1128  MpFilter - ok

14:48:04.0685 0x1128  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys

14:48:04.0685 0x1128  mpio - ok

14:48:04.0716 0x1128  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys

14:48:04.0716 0x1128  mpsdrv - ok

14:48:04.0763 0x1128  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll

14:48:04.0779 0x1128  MpsSvc - ok

14:48:04.0810 0x1128  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys

14:48:04.0810 0x1128  MRxDAV - ok

14:48:04.0825 0x1128  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys

14:48:04.0825 0x1128  mrxsmb - ok

14:48:04.0841 0x1128  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys

14:48:04.0841 0x1128  mrxsmb10 - ok

14:48:04.0872 0x1128  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys

14:48:04.0872 0x1128  mrxsmb20 - ok

14:48:04.0888 0x1128  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys

14:48:04.0903 0x1128  msahci - ok

14:48:04.0903 0x1128  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys

14:48:04.0919 0x1128  msdsm - ok

14:48:04.0935 0x1128  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe

14:48:04.0935 0x1128  MSDTC - ok

14:48:04.0950 0x1128  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys

14:48:04.0950 0x1128  Msfs - ok

14:48:04.0966 0x1128  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys

14:48:04.0966 0x1128  mshidkmdf - ok

14:48:04.0997 0x1128  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys

14:48:04.0997 0x1128  msisadrv - ok

14:48:05.0028 0x1128  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll

14:48:05.0044 0x1128  MSiSCSI - ok

14:48:05.0044 0x1128  msiserver - ok

14:48:05.0091 0x1128  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys

14:48:05.0091 0x1128  MSKSSRV - ok

14:48:05.0153 0x1128  [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe

14:48:05.0153 0x1128  MsMpSvc - ok

14:48:05.0184 0x1128  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys

14:48:05.0184 0x1128  MSPCLOCK - ok

14:48:05.0231 0x1128  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys

14:48:05.0231 0x1128  MSPQM - ok

14:48:05.0247 0x1128  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys

14:48:05.0262 0x1128  MsRPC - ok

14:48:05.0293 0x1128  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys

14:48:05.0293 0x1128  mssmbios - ok

14:48:05.0309 0x1128  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys

14:48:05.0309 0x1128  MSTEE - ok

14:48:05.0325 0x1128  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys

14:48:05.0325 0x1128  MTConfig - ok

14:48:05.0340 0x1128  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys

14:48:05.0356 0x1128  Mup - ok

14:48:05.0403 0x1128  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll

14:48:05.0403 0x1128  napagent - ok

14:48:05.0434 0x1128  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys

14:48:05.0434 0x1128  NativeWifiP - ok

14:48:05.0496 0x1128  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys

14:48:05.0496 0x1128  NDIS - ok

14:48:05.0512 0x1128  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys

14:48:05.0512 0x1128  NdisCap - ok

14:48:05.0543 0x1128  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys

14:48:05.0543 0x1128  NdisTapi - ok

14:48:05.0574 0x1128  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys

14:48:05.0574 0x1128  Ndisuio - ok

14:48:05.0590 0x1128  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys

14:48:05.0590 0x1128  NdisWan - ok

14:48:05.0605 0x1128  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys

14:48:05.0621 0x1128  NDProxy - ok

14:48:05.0637 0x1128  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys

14:48:05.0637 0x1128  NetBIOS - ok

14:48:05.0668 0x1128  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys

14:48:05.0668 0x1128  NetBT - ok

14:48:05.0699 0x1128  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe

14:48:05.0699 0x1128  Netlogon - ok

14:48:05.0746 0x1128  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll

14:48:05.0746 0x1128  Netman - ok

14:48:05.0808 0x1128  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:48:05.0824 0x1128  NetMsmqActivator - ok

14:48:05.0824 0x1128  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:48:05.0824 0x1128  NetPipeActivator - ok

14:48:05.0855 0x1128  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll

14:48:05.0855 0x1128  netprofm - ok

14:48:05.0855 0x1128  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:48:05.0855 0x1128  NetTcpActivator - ok

14:48:05.0871 0x1128  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:48:05.0871 0x1128  NetTcpPortSharing - ok

14:48:05.0902 0x1128  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys

14:48:05.0917 0x1128  nfrd960 - ok

14:48:05.0949 0x1128  [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys

14:48:05.0964 0x1128  NisDrv - ok

14:48:05.0995 0x1128  [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe

14:48:06.0011 0x1128  NisSrv - ok

14:48:06.0042 0x1128  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll

14:48:06.0058 0x1128  NlaSvc - ok

14:48:06.0089 0x1128  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys

14:48:06.0089 0x1128  Npfs - ok

14:48:06.0105 0x1128  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll

14:48:06.0105 0x1128  nsi - ok

14:48:06.0120 0x1128  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys

14:48:06.0120 0x1128  nsiproxy - ok

14:48:06.0198 0x1128  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys

14:48:06.0261 0x1128  Ntfs - ok

14:48:06.0261 0x1128  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys

14:48:06.0261 0x1128  Null - ok

14:48:06.0292 0x1128  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys

14:48:06.0292 0x1128  nvraid - ok

14:48:06.0323 0x1128  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys

14:48:06.0323 0x1128  nvstor - ok

14:48:06.0354 0x1128  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys

14:48:06.0354 0x1128  nv_agp - ok

14:48:06.0370 0x1128  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys

14:48:06.0370 0x1128  ohci1394 - ok

14:48:06.0463 0x1128  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

14:48:06.0463 0x1128  ose - ok

14:48:06.0697 0x1128  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

14:48:06.0838 0x1128  osppsvc - ok

14:48:06.0869 0x1128  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll

14:48:06.0869 0x1128  p2pimsvc - ok

14:48:06.0885 0x1128  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll

14:48:06.0900 0x1128  p2psvc - ok

14:48:06.0931 0x1128  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys

14:48:06.0931 0x1128  Parport - ok

14:48:06.0947 0x1128  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys

14:48:06.0947 0x1128  partmgr - ok

14:48:06.0978 0x1128  [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc          C:\Windows\System32\pcasvc.dll

14:48:06.0978 0x1128  PcaSvc - ok

14:48:06.0994 0x1128  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys

14:48:06.0994 0x1128  pci - ok

14:48:07.0041 0x1128  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys

14:48:07.0041 0x1128  pciide - ok

14:48:07.0056 0x1128  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys

14:48:07.0072 0x1128  pcmcia - ok

14:48:07.0087 0x1128  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys

14:48:07.0087 0x1128  pcw - ok

14:48:07.0119 0x1128  pdfcDispatcher - ok

14:48:07.0181 0x1128  [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys

14:48:07.0228 0x1128  PEAUTH - ok

14:48:07.0290 0x1128  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll

14:48:07.0337 0x1128  PeerDistSvc - ok

14:48:07.0399 0x1128  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe

14:48:07.0399 0x1128  PerfHost - ok

14:48:07.0431 0x1128  [ 9C4392048C840D928B6CB205EA910075, 410EAC6EB6B0E6F4538A85380C9CF40B497394855989771E63F6644F3C5CDD00 ] PinFile         C:\Windows\system32\DRIVERS\PinFile.sys

14:48:07.0446 0x1128  PinFile - ok

14:48:07.0493 0x1128  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll

14:48:07.0524 0x1128  pla - ok

14:48:07.0587 0x1128  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll

14:48:07.0602 0x1128  PlugPlay - ok

14:48:07.0618 0x1128  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll

14:48:07.0618 0x1128  PNRPAutoReg - ok

14:48:07.0649 0x1128  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll

14:48:07.0665 0x1128  PNRPsvc - ok

14:48:07.0696 0x1128  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll

14:48:07.0711 0x1128  PolicyAgent - ok

14:48:07.0727 0x1128  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll

14:48:07.0727 0x1128  Power - ok

14:48:07.0758 0x1128  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys

14:48:07.0774 0x1128  PptpMiniport - ok

14:48:07.0789 0x1128  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys

14:48:07.0789 0x1128  Processor - ok

14:48:07.0821 0x1128  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll

14:48:07.0821 0x1128  ProfSvc - ok

14:48:07.0836 0x1128  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe

14:48:07.0836 0x1128  ProtectedStorage - ok

14:48:07.0852 0x1128  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys

14:48:07.0852 0x1128  Psched - ok

14:48:07.0945 0x1128  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys

14:48:07.0977 0x1128  ql2300 - ok

14:48:07.0992 0x1128  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys

14:48:08.0008 0x1128  ql40xx - ok

14:48:08.0023 0x1128  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll

14:48:08.0039 0x1128  QWAVE - ok

14:48:08.0039 0x1128  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys

14:48:08.0039 0x1128  QWAVEdrv - ok

14:48:08.0055 0x1128  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys

14:48:08.0055 0x1128  RasAcd - ok

14:48:08.0070 0x1128  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys

14:48:08.0086 0x1128  RasAgileVpn - ok

14:48:08.0101 0x1128  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll

14:48:08.0101 0x1128  RasAuto - ok

14:48:08.0117 0x1128  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys

14:48:08.0117 0x1128  Rasl2tp - ok

14:48:08.0148 0x1128  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll

14:48:08.0148 0x1128  RasMan - ok

14:48:08.0164 0x1128  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys

14:48:08.0179 0x1128  RasPppoe - ok

14:48:08.0179 0x1128  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys

14:48:08.0179 0x1128  RasSstp - ok

14:48:08.0211 0x1128  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys

14:48:08.0211 0x1128  rdbss - ok

14:48:08.0226 0x1128  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys

14:48:08.0226 0x1128  rdpbus - ok

14:48:08.0257 0x1128  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys

14:48:08.0257 0x1128  RDPCDD - ok

14:48:08.0289 0x1128  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys

14:48:08.0289 0x1128  RDPDR - ok

14:48:08.0304 0x1128  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys

14:48:08.0304 0x1128  RDPENCDD - ok

14:48:08.0335 0x1128  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys

14:48:08.0335 0x1128  RDPREFMP - ok

14:48:08.0382 0x1128  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys

14:48:08.0382 0x1128  RDPWD - ok

14:48:08.0429 0x1128  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys

14:48:08.0429 0x1128  rdyboost - ok

14:48:08.0445 0x1128  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll

14:48:08.0460 0x1128  RemoteAccess - ok

14:48:08.0491 0x1128  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll

14:48:08.0491 0x1128  RemoteRegistry - ok

14:48:08.0523 0x1128  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys

14:48:08.0538 0x1128  RFCOMM - ok

14:48:08.0554 0x1128  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll

14:48:08.0554 0x1128  RpcEptMapper - ok

14:48:08.0569 0x1128  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe

14:48:08.0569 0x1128  RpcLocator - ok

14:48:08.0601 0x1128  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll

14:48:08.0616 0x1128  RpcSs - ok

14:48:08.0647 0x1128  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys

14:48:08.0647 0x1128  rspndr - ok

14:48:08.0694 0x1128  [ 1BE36AB59242A109697870F16A8E0EF8, CAC949D97EEFA0CE5E89084D0950B6E331145870355367803530D0DED4962F2E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys

14:48:08.0710 0x1128  RTL8167 - ok

14:48:08.0757 0x1128  [ 62204AB99478B86C6EAA969E90D19868, 8501F514DA80EAFCA30824079B73454F575A1D58522791DB746F789C80E78706 ] RTSPER          C:\Windows\system32\DRIVERS\RtsPer.sys

14:48:08.0757 0x1128  RTSPER - ok

14:48:08.0991 0x1128  [ FB25B6BB17CE0D877CDEADF7EC71C147, 94434C32639596BAE1B54FC36FBB577A7F53EA9B767558814C5EDEA81DFFF6A8 ] rtsuvc          C:\Windows\system32\DRIVERS\rtsuvc.sys

14:48:09.0240 0x1128  rtsuvc - ok

14:48:09.0271 0x1128  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys

14:48:09.0271 0x1128  s3cap - ok

14:48:09.0287 0x1128  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe

14:48:09.0287 0x1128  SamSs - ok

14:48:09.0334 0x1128  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

14:48:09.0334 0x1128  SASDIFSV - ok

14:48:09.0365 0x1128  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

14:48:09.0365 0x1128  SASKUTIL - ok

14:48:09.0381 0x1128  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys

14:48:09.0381 0x1128  sbp2port - ok

14:48:09.0396 0x1128  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll

14:48:09.0412 0x1128  SCardSvr - ok

14:48:09.0412 0x1128  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys

14:48:09.0412 0x1128  scfilter - ok

14:48:09.0443 0x1128  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll

14:48:09.0459 0x1128  Schedule - ok

14:48:09.0490 0x1128  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll

14:48:09.0490 0x1128  SCPolicySvc - ok

14:48:09.0521 0x1128  [ CFC713F81E22BA3E4EDF4B06A4527DB6, 2FA0CE9D0F8DA2E0D565B1B26784B9A4330635B2EAD897F7C3C5757D3DA9D70D ] SDDisk2K        C:\Windows\system32\DRIVERS\SDDisk2K.sys

14:48:09.0537 0x1128  SDDisk2K - ok

14:48:09.0552 0x1128  [ 9995B0EBA39BB410D89EE9FD9C785E62, D7C7454C4EBB3AAD078C66FB3014FEAFB62817F6E66E91AFB40236A823E48190 ] SDDToki         C:\Windows\system32\DRIVERS\SDDToki.sys

14:48:09.0568 0x1128  SDDToki - ok

14:48:09.0615 0x1128  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll

14:48:09.0630 0x1128  SDRSVC - ok

14:48:09.0661 0x1128  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys

14:48:09.0661 0x1128  secdrv - ok

14:48:09.0677 0x1128  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll

14:48:09.0677 0x1128  seclogon - ok

14:48:09.0693 0x1128  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll

14:48:09.0693 0x1128  SENS - ok

14:48:09.0724 0x1128  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll

14:48:09.0724 0x1128  SensrSvc - ok

14:48:09.0755 0x1128  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys

14:48:09.0755 0x1128  Serenum - ok

14:48:09.0786 0x1128  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys

14:48:09.0786 0x1128  Serial - ok

14:48:09.0817 0x1128  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys

14:48:09.0817 0x1128  sermouse - ok

14:48:09.0849 0x1128  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll

14:48:09.0849 0x1128  SessionEnv - ok

14:48:09.0880 0x1128  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys

14:48:09.0880 0x1128  sffdisk - ok

14:48:09.0911 0x1128  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys

14:48:09.0911 0x1128  sffp_mmc - ok

14:48:09.0927 0x1128  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys

14:48:09.0927 0x1128  sffp_sd - ok

14:48:09.0958 0x1128  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys

14:48:09.0958 0x1128  sfloppy - ok

14:48:09.0989 0x1128  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll

14:48:10.0020 0x1128  SharedAccess - ok

14:48:10.0051 0x1128  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

14:48:10.0067 0x1128  ShellHWDetection - ok

14:48:10.0098 0x1128  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys

14:48:10.0098 0x1128  SiSRaid2 - ok

14:48:10.0129 0x1128  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys

14:48:10.0129 0x1128  SiSRaid4 - ok

14:48:10.0176 0x1128  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe

14:48:10.0176 0x1128  SkypeUpdate - ok

14:48:10.0254 0x1128  [ 1C3974AE754FAD435CA8611B5C1CA8B6, CE4529159DDC6126B381E3E51F3F7F06269F0597C1A22B0F0883762D9158ED49 ] smartd          C:\Program Files (x86)\smartmontools for Windows\bin\smartd.exe

14:48:10.0285 0x1128  smartd - ok

14:48:10.0317 0x1128  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys

14:48:10.0317 0x1128  Smb - ok

14:48:10.0379 0x1128  [ 76E7170CCCC7AD01466FCC69DF664E21, F32A92D48BC4E23694F9780EEBA30B54BB7AFBD0F43FEE53892B7C23F906B4CF ] SmbDrv          C:\Windows\system32\drivers\Smb_driver_AMDASF.sys

14:48:10.0379 0x1128  SmbDrv - ok

14:48:10.0410 0x1128  [ 178754F17D2E3828E7090B7A6873D7E4, EE6FBC4C0F5839B848EBC03D530BCF0DE9104905620A39F2C9AE5C1127690864 ] SmbDrvI         C:\Windows\system32\drivers\Smb_driver_Intel.sys

14:48:10.0426 0x1128  SmbDrvI - ok

14:48:10.0457 0x1128  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe

14:48:10.0457 0x1128  SNMPTRAP - ok

14:48:10.0457 0x1128  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys

14:48:10.0473 0x1128  spldr - ok

14:48:10.0504 0x1128  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe

14:48:10.0504 0x1128  Spooler - ok

14:48:10.0644 0x1128  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe

14:48:10.0722 0x1128  sppsvc - ok

14:48:10.0738 0x1128  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll

14:48:10.0738 0x1128  sppuinotify - ok

14:48:10.0769 0x1128  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys

14:48:10.0785 0x1128  srv - ok

14:48:10.0831 0x1128  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys

14:48:10.0831 0x1128  srv2 - ok

14:48:10.0847 0x1128  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys

14:48:10.0847 0x1128  srvnet - ok

14:48:10.0878 0x1128  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll

14:48:10.0878 0x1128  SSDPSRV - ok

14:48:10.0894 0x1128  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll

14:48:10.0894 0x1128  SstpSvc - ok

14:48:10.0987 0x1128  [ 580777FCF0DA9AE78B4D07A11E5F14CD, 2F2BE84ECB035C5E9DA538409398A1F56C62F4BD4F304EF088DAD49CA82735FD ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe

14:48:11.0065 0x1128  STacSV - ok

14:48:11.0081 0x1128  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys

14:48:11.0081 0x1128  stexstor - ok

14:48:11.0143 0x1128  [ 54ED2C1F251CF19EB3E965857BACF6F7, 38415A17FE41A9FA0CFBC9E3B041DF77B3FB97B255AE3B4E10FD6F22D9E871E2 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys

14:48:11.0175 0x1128  STHDA - ok

14:48:11.0221 0x1128  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll

14:48:11.0253 0x1128  stisvc - ok

14:48:11.0268 0x1128  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys

14:48:11.0268 0x1128  storflt - ok

14:48:11.0299 0x1128  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll

14:48:11.0299 0x1128  StorSvc - ok

14:48:11.0331 0x1128  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys

14:48:11.0346 0x1128  storvsc - ok

14:48:11.0377 0x1128  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys

14:48:11.0377 0x1128  swenum - ok

14:48:11.0424 0x1128  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll

14:48:11.0440 0x1128  swprv - ok

14:48:11.0502 0x1128  [ 0205C2DEAE954040E13D8CE9E777A6EF, 3D4174DEB514727E6E7FFC411A4CA281FB6E86B97AD85F0500FA40A25554EA6B ] SynTP           C:\Windows\system32\drivers\SynTP.sys

14:48:11.0565 0x1128  SynTP - ok

14:48:11.0643 0x1128  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll

14:48:11.0689 0x1128  SysMain - ok

14:48:11.0705 0x1128  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll

14:48:11.0705 0x1128  TabletInputService - ok

14:48:11.0721 0x1128  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll

14:48:11.0736 0x1128  TapiSrv - ok

14:48:11.0752 0x1128  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll

14:48:11.0752 0x1128  TBS - ok

14:48:11.0814 0x1128  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys

14:48:11.0861 0x1128  Tcpip - ok

14:48:11.0923 0x1128  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys

14:48:11.0939 0x1128  TCPIP6 - ok

14:48:11.0970 0x1128  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys

14:48:11.0970 0x1128  tcpipreg - ok

14:48:11.0986 0x1128  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys

14:48:11.0986 0x1128  TDPIPE - ok

14:48:12.0001 0x1128  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys

14:48:12.0001 0x1128  TDTCP - ok

14:48:12.0033 0x1128  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys

14:48:12.0048 0x1128  tdx - ok

14:48:12.0064 0x1128  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys

14:48:12.0079 0x1128  TermDD - ok

14:48:12.0126 0x1128  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll

14:48:12.0173 0x1128  TermService - ok

14:48:12.0204 0x1128  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll

14:48:12.0204 0x1128  Themes - ok

14:48:12.0235 0x1128  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll

14:48:12.0235 0x1128  THREADORDER - ok

14:48:12.0251 0x1128  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll

14:48:12.0251 0x1128  TrkWks - ok

14:48:12.0282 0x1128  [ FD44FA80DA03EA144153A76DEBBB61B4, 0C46717F489A415A583470DAE8CF58E47BC307B9CB0F9DB6C4EDF33B7525475C ] TrueSight       C:\Windows\System32\drivers\TrueSight.sys

14:48:12.0329 0x1128  TrueSight - ok

14:48:12.0391 0x1128  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

14:48:12.0407 0x1128  TrustedInstaller - ok

14:48:12.0438 0x1128  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys

14:48:12.0438 0x1128  tssecsrv - ok

14:48:12.0454 0x1128  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys

14:48:12.0454 0x1128  TsUsbFlt - ok

14:48:12.0485 0x1128  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys

14:48:12.0485 0x1128  TsUsbGD - ok

14:48:12.0501 0x1128  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys

14:48:12.0516 0x1128  tunnel - ok

14:48:12.0532 0x1128  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys

14:48:12.0532 0x1128  uagp35 - ok

14:48:12.0563 0x1128  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys

14:48:12.0563 0x1128  udfs - ok

14:48:12.0579 0x1128  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe

14:48:12.0594 0x1128  UI0Detect - ok

14:48:12.0610 0x1128  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys

14:48:12.0610 0x1128  uliagpkx - ok

14:48:12.0641 0x1128  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys

14:48:12.0641 0x1128  umbus - ok

14:48:12.0672 0x1128  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys

14:48:12.0672 0x1128  UmPass - ok

14:48:12.0703 0x1128  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll

14:48:12.0719 0x1128  UmRdpService - ok

14:48:12.0750 0x1128  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll

14:48:12.0766 0x1128  upnphost - ok

14:48:12.0781 0x1128  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys

14:48:12.0781 0x1128  usbccgp - ok

14:48:12.0797 0x1128  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys

14:48:12.0797 0x1128  usbcir - ok

14:48:12.0813 0x1128  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys

14:48:12.0813 0x1128  usbehci - ok

14:48:12.0844 0x1128  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys

14:48:12.0844 0x1128  usbhub - ok

14:48:12.0891 0x1128  [ B26ACA4784AD1295C25A7501FD4AB79E, 85AF98DE6D900C0986C9C5C808D0556DC3704C01EA0137F34C962D3B295455CE ] usbohci         C:\Windows\system32\drivers\usbohci.sys

14:48:12.0891 0x1128  usbohci - ok

14:48:12.0922 0x1128  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys

14:48:12.0922 0x1128  usbprint - ok

14:48:12.0937 0x1128  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS

14:48:12.0953 0x1128  USBSTOR - ok

14:48:12.0969 0x1128  [ 35944CFF264134FFD2E7EED0F8B81A56, 48D4CD3143950B2D2650B7F37EDE0B9B94921C1E1FB2A3FFF8C23B399929726F ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys

14:48:12.0969 0x1128  usbuhci - ok

14:48:13.0000 0x1128  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys

14:48:13.0015 0x1128  usbvideo - ok

14:48:13.0047 0x1128  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll

14:48:13.0047 0x1128  UxSms - ok

14:48:13.0062 0x1128  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe

14:48:13.0062 0x1128  VaultSvc - ok

14:48:13.0109 0x1128  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys

14:48:13.0109 0x1128  vdrvroot - ok

14:48:13.0140 0x1128  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe

14:48:13.0171 0x1128  vds - ok

14:48:13.0203 0x1128  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys

14:48:13.0203 0x1128  vga - ok

14:48:13.0218 0x1128  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys

14:48:13.0218 0x1128  VgaSave - ok

14:48:13.0234 0x1128  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys

14:48:13.0249 0x1128  vhdmp - ok

14:48:13.0281 0x1128  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys

14:48:13.0281 0x1128  viaide - ok

14:48:13.0312 0x1128  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys

14:48:13.0327 0x1128  vmbus - ok

14:48:13.0343 0x1128  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys

14:48:13.0343 0x1128  VMBusHID - ok

14:48:13.0374 0x1128  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys

14:48:13.0374 0x1128  volmgr - ok

14:48:13.0405 0x1128  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys

14:48:13.0421 0x1128  volmgrx - ok

14:48:13.0421 0x1128  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys

14:48:13.0437 0x1128  volsnap - ok

14:48:13.0483 0x1128  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys

14:48:13.0483 0x1128  vsmraid - ok

14:48:13.0546 0x1128  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe

14:48:13.0593 0x1128  VSS - ok

14:48:13.0608 0x1128  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys

14:48:13.0608 0x1128  vwifibus - ok

14:48:13.0655 0x1128  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys

14:48:13.0655 0x1128  vwififlt - ok

14:48:13.0686 0x1128  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys

14:48:13.0686 0x1128  vwifimp - ok

14:48:13.0749 0x1128  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll

14:48:13.0764 0x1128  W32Time - ok

14:48:13.0780 0x1128  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys

14:48:13.0780 0x1128  WacomPen - ok

14:48:13.0795 0x1128  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys

14:48:13.0795 0x1128  WANARP - ok

14:48:13.0811 0x1128  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys

14:48:13.0811 0x1128  Wanarpv6 - ok

14:48:13.0889 0x1128  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe

14:48:13.0920 0x1128  WatAdminSvc - ok

14:48:14.0014 0x1128  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe

14:48:14.0045 0x1128  wbengine - ok

14:48:14.0061 0x1128  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll

14:48:14.0076 0x1128  WbioSrvc - ok

14:48:14.0092 0x1128  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll

14:48:14.0092 0x1128  wcncsvc - ok

14:48:14.0107 0x1128  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

14:48:14.0107 0x1128  WcsPlugInService - ok

14:48:14.0139 0x1128  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys

14:48:14.0154 0x1128  Wd - ok

14:48:14.0404 0x1128  [ 75600442AF2C8303FC7199E360334873, C6290875C6C010E8754487BD74365874E316313B697D7ABBF4E85AA3C41ABE1A ] WDBackup        C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe

14:48:14.0419 0x1128  WDBackup - ok

14:48:14.0497 0x1128  [ C50B1A397F35908EEA98C964E77A6A97, FBA623EE0C5A72836ED80C0ACA163461E9B1B601B99C35B9EEE36B07B7F0839E ] WDDriveService  C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe

14:48:14.0513 0x1128  WDDriveService - ok

14:48:14.0560 0x1128  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys



#7 seraphin

seraphin
  • Topic Starter

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Local time:11:08 AM

Posted 01 January 2015 - 07:40 PM

TDSSKiller (part 3)

14:48:14.0591 0x1128  Wdf01000 - ok

14:48:14.0607 0x1128  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll

14:48:14.0607 0x1128  WdiServiceHost - ok

14:48:14.0607 0x1128  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll

14:48:14.0607 0x1128  WdiSystemHost - ok

14:48:14.0653 0x1128  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll

14:48:14.0669 0x1128  WebClient - ok

14:48:14.0716 0x1128  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll

14:48:14.0716 0x1128  Wecsvc - ok

14:48:14.0731 0x1128  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll

14:48:14.0747 0x1128  wercplsupport - ok

14:48:14.0778 0x1128  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll

14:48:14.0778 0x1128  WerSvc - ok

14:48:14.0809 0x1128  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys

14:48:14.0809 0x1128  WfpLwf - ok

14:48:14.0825 0x1128  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys

14:48:14.0825 0x1128  WIMMount - ok

14:48:14.0841 0x1128  WinDefend - ok

14:48:14.0841 0x1128  WinHttpAutoProxySvc - ok

14:48:14.0887 0x1128  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll

14:48:14.0903 0x1128  Winmgmt - ok

14:48:15.0028 0x1128  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll

14:48:15.0090 0x1128  WinRM - ok

14:48:15.0137 0x1128  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys

14:48:15.0137 0x1128  WinUsb - ok

14:48:15.0215 0x1128  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll

14:48:15.0231 0x1128  Wlansvc - ok

14:48:15.0262 0x1128  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys

14:48:15.0262 0x1128  WmiAcpi - ok

14:48:15.0277 0x1128  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe

14:48:15.0293 0x1128  wmiApSrv - ok

14:48:15.0309 0x1128  WMPNetworkSvc - ok

14:48:15.0340 0x1128  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll

14:48:15.0355 0x1128  WPCSvc - ok

14:48:15.0371 0x1128  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll

14:48:15.0387 0x1128  WPDBusEnum - ok

14:48:15.0402 0x1128  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys

14:48:15.0402 0x1128  ws2ifsl - ok

14:48:15.0418 0x1128  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll

14:48:15.0418 0x1128  wscsvc - ok

14:48:15.0433 0x1128  WSearch - ok

14:48:15.0527 0x1128  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll

14:48:15.0574 0x1128  wuauserv - ok

14:48:15.0621 0x1128  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys

14:48:15.0621 0x1128  WudfPf - ok

14:48:15.0636 0x1128  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys

14:48:15.0652 0x1128  WUDFRd - ok

14:48:15.0683 0x1128  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll

14:48:15.0683 0x1128  wudfsvc - ok

14:48:15.0714 0x1128  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll

14:48:15.0714 0x1128  WwanSvc - ok

14:48:15.0777 0x1128  [ 86B8B1F5C1189D68B07666784BE882FE, 0DD8C627F3DDBDB61B1910540C465C0D62C9F8D84C7CBB6C80782DB02D535AF0 ] ZAtheros Bt and Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

14:48:15.0855 0x1128  ZAtheros Bt and Wlan Coex Agent - ok

14:48:15.0886 0x1128  ================ Scan global ===============================

14:48:15.0901 0x1128  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll

14:48:15.0933 0x1128  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll

14:48:15.0964 0x1128  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll

14:48:15.0979 0x1128  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll

14:48:15.0995 0x1128  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe

14:48:16.0011 0x1128  [ Global ] - ok

14:48:16.0011 0x1128  ================ Scan MBR ==================================

14:48:16.0011 0x1128  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

14:48:16.0245 0x1128  \Device\Harddisk0\DR0 - ok

14:48:16.0245 0x1128  ================ Scan VBR ==================================

14:48:16.0260 0x1128  [ 39F10A627AA0123038627608C25E4788 ] \Device\Harddisk0\DR0\Partition1

14:48:16.0260 0x1128  \Device\Harddisk0\DR0\Partition1 - ok

14:48:16.0260 0x1128  [ 7281C665F49773F0841F0A30A7CC3733 ] \Device\Harddisk0\DR0\Partition2

14:48:16.0260 0x1128  \Device\Harddisk0\DR0\Partition2 - ok

14:48:16.0260 0x1128  [ 0C12D4862C93BB49CDBC204135F7510B ] \Device\Harddisk0\DR0\Partition3

14:48:16.0276 0x1128  \Device\Harddisk0\DR0\Partition3 - ok

14:48:16.0276 0x1128  [ 9EFF1727EBFB48DD8E7BA170C699D04E ] \Device\Harddisk0\DR0\Partition4

14:48:16.0276 0x1128  \Device\Harddisk0\DR0\Partition4 - ok

14:48:16.0276 0x1128  ================ Scan generic autorun ======================

14:48:16.0307 0x1128  [ C8E79415AF20C627C00F598D0F93C0BF, C2905D0EB90EFC51814163A1161CF423834DD10C971F4822409FD443B6D5669F ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe

14:48:16.0323 0x1128  IAStorIcon - ok

14:48:16.0401 0x1128  [ 3FFDE0811F5748033957BAA99492D672, 39F594C6230E43E4D6F6385B217AE9729EE4E9154E67698B8B78D598D4328086 ] C:\Program Files\IDT\WDM\sttray64.exe

14:48:16.0447 0x1128  SysTrayApp - ok

14:48:16.0479 0x1128  [ 9EF774DAEB869F8800659510AAA09FAA, 3564358C482DF5F54DA8125474E31DEE0D6F4E336CBF41C76963F86BE88C3E23 ] C:\Windows\system32\igfxtray.exe

14:48:16.0479 0x1128  IgfxTray - ok

14:48:16.0494 0x1128  [ 5BC2B8CE49327502E4AADE79FDE20A74, 9C9A9653F9F81F613BCD5C058E288F5D8B482B8200E5FF6FEABA3E628541CFA4 ] C:\Windows\system32\hkcmd.exe

14:48:16.0494 0x1128  HotKeysCmds - ok

14:48:16.0525 0x1128  [ 2EDD62469B8C61EC765ADA4445719FDE, 2AD076CDA139EA8BDDB380F204BE26AE45825E935E1FAE0C6A8A7822A31598AB ] C:\Windows\system32\igfxpers.exe

14:48:16.0525 0x1128  Persistence - ok

14:48:16.0541 0x1128  [ AFE5CD3EF5DB5078830BF1250E7E5AEA, 92AD8D5A2030BF5E5F6344747B2C05FCAD741BF2635227216AC72DD56960519A ] C:\Windows\RTSCM64.EXE

14:48:16.0557 0x1128  RtsCM - ok

14:48:16.0619 0x1128  [ 3F60007F5DD0BA5FDA0E197ED7DDC6FF, 1C7B8063AAB30883895A31B1581219B816BE1D106E959C9C019C7D7CBF475DD1 ] C:\Program Files (x86)\PDF Complete\pdfsty.exe

14:48:16.0650 0x1128  PDF Complete - ok

14:48:16.0713 0x1128  [ F7130304E0512282F398A2C2BEF7522D, AE4EDB7B7D1634542F5F2D260A0AAA482ABDC3106E57A05C64BB1BA4635D63AD ] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe

14:48:16.0713 0x1128  HPConnectionManager - ok

14:48:16.0775 0x1128  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

14:48:16.0822 0x1128  Sidebar - ok

14:48:16.0853 0x1128  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe

14:48:16.0869 0x1128  mctadmin - ok

14:48:16.0931 0x1128  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

14:48:16.0947 0x1128  Sidebar - ok

14:48:16.0947 0x1128  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe

14:48:16.0947 0x1128  mctadmin - ok

14:48:17.0040 0x1128  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe

14:48:17.0071 0x1128  Sidebar - ok

14:48:17.0305 0x1128  [ 69CFED513B87D6FE10DBE421708501B3, DE7F8F22EB5C88DF11C51E5FD69A18EDAFDA6873AAFFBC5BD134DC67E2E75813 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

14:48:18.0195 0x1128  SUPERAntiSpyware - ok

14:48:18.0397 0x1128  [ 4DF6E378A00B6F89CB35078054057C36, 981BE3859AC48F43E739885BDA6756C5583BFD7353A57669067C8FB170DAE097 ] C:\Program Files\CCleaner\CCleaner64.exe

14:48:18.0569 0x1128  CCleaner Monitoring - ok

14:48:18.0694 0x1128  [ 7999235AE6A9F0FE1C007203F03A4618, D552A169E7E5EC43B675120F11E6A1790902C4068FAAFC2DE81DDB5FA50F18E8 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_246_Plugin.exe

14:48:18.0709 0x1128  FlashPlayerUpdate - ok

14:48:18.0756 0x1128  [ CF9581D69FD43ACAE8C6D70DEC499626, 841ED9C553E38E86AB94E081FEA64A98169BE1483119A0DBE3640D8ABFA271C9 ] C:\AdwCleaner\AdwCleaner[S3].txt

14:48:18.0756 0x1128  Report - ok

14:48:18.0881 0x1128  [ 44A9229022A519ED45294A1934C05EEC, 6DEF0DB5F9B50E9B0AFEE1CF50066BEB4FB7E15E2DC829A499509925660D6992 ] C:\Users\Brenden-non admin\AppData\Local\FluxSoftware\Flux\flux.exe

14:48:18.0897 0x1128  f.lux - ok

14:48:19.0084 0x1128  [ 4DF6E378A00B6F89CB35078054057C36, 981BE3859AC48F43E739885BDA6756C5583BFD7353A57669067C8FB170DAE097 ] C:\Program Files\CCleaner\CCleaner64.exe

14:48:19.0162 0x1128  CCleaner Monitoring - ok

14:48:19.0162 0x1128  Waiting for KSN requests completion. In queue: 126

14:48:20.0176 0x1128  Waiting for KSN requests completion. In queue: 126

14:48:21.0190 0x1128  Waiting for KSN requests completion. In queue: 126

14:48:22.0219 0x1128  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )

14:48:22.0235 0x1128  Win FW state via NFP2: enabled

14:48:25.0105 0x1128  ============================================================

14:48:25.0105 0x1128  Scan finished

14:48:25.0105 0x1128  ============================================================

14:48:25.0105 0x18a8  Detected object count: 0

14:48:25.0105 0x18a8  Actual detected object count: 0

14:49:04.0638 0x0a24  ============================================================

14:49:04.0638 0x0a24  Scan started

14:49:04.0638 0x0a24  Mode: Manual; SigCheck; TDLFS;

14:49:04.0638 0x0a24  ============================================================

14:49:04.0638 0x0a24  KSN ping started

14:49:07.0586 0x0a24  KSN ping finished: true

14:49:08.0709 0x0a24  ================ Scan system memory ========================

14:49:08.0709 0x0a24  System memory - ok

14:49:08.0709 0x0a24  ================ Scan services =============================

14:49:08.0756 0x0a24  [ 970C70F6B2953ED43822D3797855D84C, CB22723678B514277BC6E6DDDD206F3B2377CD889C9D473A47A7056BE597BC6B ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE

14:49:08.0803 0x0a24  !SASCORE - ok

14:49:08.0897 0x0a24  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys

14:49:08.0928 0x0a24  1394ohci - ok

14:49:08.0928 0x0a24  [ F39180029723D7779C80360F9E255709, F4831FEE79AAF4DB66BF58D3F89B8A6DD8F38CD546B3C653BFF7052DDA112CC6 ] Accelerometer   C:\Windows\system32\drivers\Accelerometer.sys

14:49:08.0943 0x0a24  Accelerometer - ok

14:49:08.0959 0x0a24  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys

14:49:08.0975 0x0a24  ACPI - ok

14:49:09.0006 0x0a24  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys

14:49:09.0068 0x0a24  AcpiPmi - ok

14:49:09.0131 0x0a24  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

14:49:09.0162 0x0a24  AdobeARMservice - ok

14:49:09.0240 0x0a24  [ 749F94C424524285DCDA84D695ABC12F, E5AD194AF5B8B4FDB3976D3E3F9EF942DECFEC4EBAA9881A8EF7707BB781E4AD ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

14:49:09.0255 0x0a24  AdobeFlashPlayerUpdateSvc - ok

14:49:09.0302 0x0a24  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys

14:49:09.0318 0x0a24  adp94xx - ok

14:49:09.0365 0x0a24  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys

14:49:09.0365 0x0a24  adpahci - ok

14:49:09.0396 0x0a24  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys

14:49:09.0411 0x0a24  adpu320 - ok

14:49:09.0427 0x0a24  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll

14:49:09.0489 0x0a24  AeLookupSvc - ok

14:49:09.0521 0x0a24  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys

14:49:09.0536 0x0a24  AFD - ok

14:49:09.0567 0x0a24  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys

14:49:09.0583 0x0a24  agp440 - ok

14:49:09.0599 0x0a24  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe

14:49:09.0630 0x0a24  ALG - ok

14:49:09.0645 0x0a24  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys

14:49:09.0661 0x0a24  aliide - ok

14:49:09.0692 0x0a24  [ E782AD90A549F60D1154C7D571F6511C, ACB61558827E6FBC7EE94827920593946DCE1ABF38D33712D4E11BA9424BF8FB ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe

14:49:09.0708 0x0a24  AMD External Events Utility - ok

14:49:09.0723 0x0a24  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys

14:49:09.0723 0x0a24  amdide - ok

14:49:09.0755 0x0a24  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys

14:49:09.0770 0x0a24  AmdK8 - ok

14:49:10.0113 0x0a24  [ 3E50D6540408F6DC1180E22277132D22, 3489385A20078576B16E1E6B5AB20C99732EC07D9AEC2AA002F739AFCA98D744 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys

14:49:10.0301 0x0a24  amdkmdag - ok

14:49:10.0394 0x0a24  [ E42A5FA13B50CC1859E2E761F5668C35, B94F17A364D165197E9AC24619CAD31C9F5BCB14381B5913687370ED6052C183 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys

14:49:10.0441 0x0a24  amdkmdap - ok

14:49:10.0457 0x0a24  [ F64E34C6D563D7D955BAD3412D6E5084, 2840A94477EA70BB1FD30AA4F3A785CE9BCA0BE1819F96B538CD08C97908C2EF ] amdkmpfd        C:\Windows\system32\DRIVERS\amdkmpfd.sys

14:49:10.0472 0x0a24  amdkmpfd - ok

14:49:10.0503 0x0a24  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys

14:49:10.0519 0x0a24  AmdPPM - ok

14:49:10.0535 0x0a24  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys

14:49:10.0550 0x0a24  amdsata - ok

14:49:10.0581 0x0a24  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys

14:49:10.0597 0x0a24  amdsbs - ok

14:49:10.0613 0x0a24  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys

14:49:10.0613 0x0a24  amdxata - ok

14:49:10.0644 0x0a24  [ 80B9412C4DE09147581FC935FB4C97AB, 0C9661F7B5EF7F9D61981790B7AB64E3375BD117962166619D0CC546A2D014D3 ] AppID           C:\Windows\system32\drivers\appid.sys

14:49:10.0675 0x0a24  AppID - ok

14:49:10.0691 0x0a24  [ F71CA01C24FC3798A717B5A6F682F9AD, 8CF1C209E7BBBAD02D6D087293C0B681CDA3170AF119CA2916C2708D8801E749 ] AppIDSvc        C:\Windows\System32\appidsvc.dll

14:49:10.0706 0x0a24  AppIDSvc - ok

14:49:10.0737 0x0a24  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll

14:49:10.0753 0x0a24  Appinfo - ok

14:49:10.0784 0x0a24  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll

14:49:10.0800 0x0a24  AppMgmt - ok

14:49:10.0831 0x0a24  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys

14:49:10.0831 0x0a24  arc - ok

14:49:10.0862 0x0a24  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys

14:49:10.0893 0x0a24  arcsas - ok

14:49:11.0205 0x0a24  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe

14:49:11.0237 0x0a24  aspnet_state - ok

14:49:11.0268 0x0a24  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys

14:49:11.0315 0x0a24  AsyncMac - ok

14:49:11.0346 0x0a24  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys

14:49:11.0346 0x0a24  atapi - ok

14:49:11.0377 0x0a24  [ 65DD42A358451920A703EEEC1AB4995B, 7690EFB12E928ECF3D3D3155F7D1F7A8FEEE742212ABE5319166EA8DB5601884 ] AthBTPort       C:\Windows\system32\DRIVERS\btath_flt.sys

14:49:11.0377 0x0a24  AthBTPort - ok

14:49:11.0408 0x0a24  [ 0D21FF67523897518C88F00CCDF09CCC, 0D23D7BC51C1EC0ADBFBFCA0BC1D20BD4E094C22FA3DC37FFBC0F0A6C62C7C33 ] ATHDFU          C:\Windows\System32\Drivers\AthDfu.sys

14:49:11.0424 0x0a24  ATHDFU - ok

14:49:11.0471 0x0a24  [ 5301D6E038CD5658D7D20E65A37199A5, 9918FD6821066EBEC397029535999CCEEAA087F9290743ECB8A130A3D348EA0B ] AtherosSvc      C:\Program Files (x86)\Bluetooth Suite\adminservice.exe

14:49:11.0502 0x0a24  AtherosSvc - ok

14:49:11.0627 0x0a24  [ 12A145262015D6C7F08CC251A4A9713B, 30DFD601983CE8B864FC40A863A3BB83D80CF4BBAD445DE502666CFEB05BFAE6 ] athr            C:\Windows\system32\DRIVERS\athrx.sys

14:49:11.0720 0x0a24  athr - ok

14:49:11.0767 0x0a24  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll

14:49:11.0798 0x0a24  AudioEndpointBuilder - ok

14:49:11.0814 0x0a24  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv        C:\Windows\System32\Audiosrv.dll

14:49:11.0829 0x0a24  AudioSrv - ok

14:49:11.0861 0x0a24  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll

14:49:11.0876 0x0a24  AxInstSV - ok

14:49:11.0907 0x0a24  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys

14:49:11.0923 0x0a24  b06bdrv - ok

14:49:11.0954 0x0a24  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys

14:49:11.0985 0x0a24  b57nd60a - ok

14:49:12.0017 0x0a24  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll

14:49:12.0017 0x0a24  BDESVC - ok

14:49:12.0032 0x0a24  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys

14:49:12.0063 0x0a24  Beep - ok

14:49:12.0095 0x0a24  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll

14:49:12.0126 0x0a24  BFE - ok

14:49:12.0157 0x0a24  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll

14:49:12.0297 0x0a24  BITS - ok

14:49:12.0329 0x0a24  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys

14:49:12.0329 0x0a24  blbdrive - ok

14:49:12.0360 0x0a24  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

14:49:12.0375 0x0a24  Bonjour Service - ok

14:49:12.0407 0x0a24  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys

14:49:12.0422 0x0a24  bowser - ok

14:49:12.0438 0x0a24  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys

14:49:12.0453 0x0a24  BrFiltLo - ok

14:49:12.0469 0x0a24  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys

14:49:12.0485 0x0a24  BrFiltUp - ok

14:49:12.0516 0x0a24  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll

14:49:12.0516 0x0a24  Browser - ok

14:49:12.0547 0x0a24  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys

14:49:12.0578 0x0a24  Brserid - ok

14:49:12.0594 0x0a24  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys

14:49:12.0609 0x0a24  BrSerWdm - ok

14:49:12.0625 0x0a24  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys

14:49:12.0641 0x0a24  BrUsbMdm - ok

14:49:12.0641 0x0a24  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys

14:49:12.0672 0x0a24  BrUsbSer - ok

14:49:12.0719 0x0a24  [ 6822043C3076A40DD0083C8EB891A530, B42C5C3F272BFE4DA58D1FD05DD962FE0C002BCD60F1D8123871253E80F0C0FE ] BTATH_A2DP      C:\Windows\system32\drivers\btath_a2dp.sys

14:49:12.0734 0x0a24  BTATH_A2DP - ok

14:49:12.0750 0x0a24  [ 599ABCFDCDBAE28AA1FDFE67687DF6EB, 5B8C29DB78FC4EADF38F42701BD933AAD6FB02654280F51D114DBBC5D7B8F151 ] btath_avdt      C:\Windows\system32\drivers\btath_avdt.sys

14:49:12.0765 0x0a24  btath_avdt - ok

14:49:12.0797 0x0a24  [ C6978F7EBA6F37D626482AC6B9390630, B4BF939AB9962A61DE9518604C20347DC2A6FCDCEB3D8AEF295AF12E6F2CDCF3 ] BTATH_BUS       C:\Windows\system32\drivers\btath_bus.sys

14:49:12.0797 0x0a24  BTATH_BUS - ok

14:49:12.0828 0x0a24  [ 4AF7C20F94DAC343C01ED671C82DCB99, 2AABD85D9D76461DE883E0F13F61C391BA81E6198FF88268B319474E25A196C8 ] BTATH_HCRP      C:\Windows\system32\drivers\btath_hcrp.sys

14:49:12.0828 0x0a24  BTATH_HCRP - ok

14:49:12.0843 0x0a24  [ 785C38070043BEEE9E9D591DE4067244, 1C8D15B8A9E80A2799E7094C4AE111FEA9FBC6EAA4A61B13EFE59314C9794949 ] BTATH_LWFLT     C:\Windows\system32\DRIVERS\btath_lwflt.sys

14:49:12.0843 0x0a24  BTATH_LWFLT - ok

14:49:12.0859 0x0a24  [ 859A116D748FBA603AF94C251DC5CF97, D64061721BE01F86386C4B0168B166C6AD076630B2229036E1D368D877389D46 ] BTATH_RCP       C:\Windows\system32\drivers\btath_rcp.sys

14:49:12.0875 0x0a24  BTATH_RCP - ok

14:49:12.0890 0x0a24  [ B02FA3A7FD3A534093D02851F80CE694, 0EF79D104010D22DA5234BFA52B0D0BF81AA1441EF98D99AC06AEEA021B31FF1 ] BtFilter        C:\Windows\system32\DRIVERS\btfilter.sys

14:49:12.0906 0x0a24  BtFilter - ok

14:49:12.0937 0x0a24  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys

14:49:12.0953 0x0a24  BthEnum - ok

14:49:12.0968 0x0a24  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys

14:49:12.0984 0x0a24  BTHMODEM - ok

14:49:12.0999 0x0a24  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys

14:49:13.0015 0x0a24  BthPan - ok

14:49:13.0046 0x0a24  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys

14:49:13.0077 0x0a24  BTHPORT - ok

14:49:13.0109 0x0a24  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll

14:49:13.0140 0x0a24  bthserv - ok

14:49:13.0155 0x0a24  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys

14:49:13.0187 0x0a24  BTHUSB - ok

14:49:13.0218 0x0a24  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys

14:49:13.0265 0x0a24  cdfs - ok

14:49:13.0296 0x0a24  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\drivers\cdrom.sys

14:49:13.0311 0x0a24  cdrom - ok

14:49:13.0327 0x0a24  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll

14:49:13.0374 0x0a24  CertPropSvc - ok

14:49:13.0374 0x0a24  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys

14:49:13.0389 0x0a24  circlass - ok

14:49:13.0405 0x0a24  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys

14:49:13.0421 0x0a24  CLFS - ok

14:49:13.0499 0x0a24  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

14:49:13.0514 0x0a24  clr_optimization_v2.0.50727_32 - ok

14:49:13.0561 0x0a24  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

14:49:13.0577 0x0a24  clr_optimization_v2.0.50727_64 - ok

14:49:13.0608 0x0a24  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

14:49:13.0623 0x0a24  clr_optimization_v4.0.30319_32 - ok

14:49:13.0639 0x0a24  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

14:49:13.0655 0x0a24  clr_optimization_v4.0.30319_64 - ok

14:49:13.0686 0x0a24  [ 7E34B0BC915D7260F0A2D50D7B2FD717, 0A64BD7031614280FA7395B7865BEE12016B83BE4812E92F956DA8A6CC9644C3 ] CLVirtualDrive  C:\Windows\system32\DRIVERS\CLVirtualDrive.sys

14:49:13.0686 0x0a24  CLVirtualDrive - ok

14:49:13.0717 0x0a24  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys

14:49:13.0733 0x0a24  CmBatt - ok

14:49:13.0764 0x0a24  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys

14:49:13.0764 0x0a24  cmdide - ok

14:49:13.0795 0x0a24  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys

14:49:13.0811 0x0a24  CNG - ok

14:49:13.0842 0x0a24  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys

14:49:13.0842 0x0a24  Compbatt - ok

14:49:13.0857 0x0a24  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys

14:49:13.0889 0x0a24  CompositeBus - ok

14:49:13.0889 0x0a24  COMSysApp - ok

14:49:13.0951 0x0a24  [ 800E61BE9BB72D265089FE126F30900E, E8573734D078D2B7921D84696428F5EF993091BE5AB980A4C0F7E89F6EBBAE8F ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe

14:49:13.0967 0x0a24  cphs - ok

14:49:13.0998 0x0a24  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys

14:49:13.0998 0x0a24  crcdisk - ok

14:49:14.0123 0x0a24  [ F8E95D309E0E354E6CAB307E81886163, C29BDF8751016FC652762041B76EC0D10C9998043061F7F64A919C1564F270B7 ] CreoService     C:\Program Files (x86)\Hewlett-Packard\HP Trust Circles\CreoSvc.exe

14:49:14.0154 0x0a24  CreoService - ok

14:49:14.0185 0x0a24  [ 19D511CC455C19DE1ADF60E6C39C85B6, 2A05DD5EF3D0BEC2C9F4EA186E0E2D0F7BE0BF6A473D51194B09D33773AC7FAA ] CryptSvc        C:\Windows\system32\cryptsvc.dll

14:49:14.0201 0x0a24  CryptSvc - ok

14:49:14.0247 0x0a24  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys

14:49:14.0294 0x0a24  CSC - ok

14:49:14.0341 0x0a24  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll

14:49:14.0372 0x0a24  CscService - ok

14:49:14.0419 0x0a24  [ 8165BE4C77282F0FEA52E441BE0FAEC4, 70F05C452622826477336DF6B8793D72E857FB7BC25820E97C7D86A10942086B ] CtAgentService  C:\Program Files (x86)\Hewlett-Packard\HP Theft Recovery\CtService.exe

14:49:14.0419 0x0a24  CtAgentService - detected UnsignedFile.Multi.Generic ( 1 )

14:49:14.0419 0x0a24  Detect skipped due to KSN trusted

14:49:14.0419 0x0a24  CtAgentService - ok

14:49:14.0497 0x0a24  [ 7D9D891ADCFB09435FEE10FA476CCF2D, C5B4A49394062F9E9DADC98164F7442CA99349C51C3782E06489D24EBB236E83 ] CyberLink PowerDVD 12 Media Server Monitor Service c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe

14:49:14.0513 0x0a24  CyberLink PowerDVD 12 Media Server Monitor Service - ok

14:49:14.0528 0x0a24  [ 894A86E2053781E8646FE47E324EF4D4, DA2DB48348DAD227631088620DF3823790447B1F8691575DFB921E9A7553BC64 ] CyberLink PowerDVD 12 Media Server Service c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe

14:49:14.0544 0x0a24  CyberLink PowerDVD 12 Media Server Service - ok

14:49:14.0575 0x0a24  [ E89FFE4751BEC77F93FFE82175499CA2, 24F5DC64B7F45303416810E33A589586F56DB0AAC7861C76D86DA9655F21BFAF ] DAMDrv          C:\Windows\system32\DRIVERS\DAMDrv64.sys

14:49:14.0575 0x0a24  DAMDrv - ok

14:49:14.0606 0x0a24  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll

14:49:14.0637 0x0a24  DcomLaunch - ok

14:49:14.0669 0x0a24  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll

14:49:14.0684 0x0a24  defragsvc - ok

14:49:14.0700 0x0a24  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys

14:49:14.0731 0x0a24  DfsC - ok

14:49:14.0747 0x0a24  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll

14:49:14.0762 0x0a24  Dhcp - ok

14:49:14.0778 0x0a24  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys

14:49:14.0825 0x0a24  discache - ok

14:49:14.0840 0x0a24  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys

14:49:14.0840 0x0a24  Disk - ok

14:49:14.0871 0x0a24  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys

14:49:14.0871 0x0a24  dmvsc - ok

14:49:14.0903 0x0a24  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll

14:49:14.0918 0x0a24  Dnscache - ok

14:49:14.0934 0x0a24  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll

14:49:14.0965 0x0a24  dot3svc - ok

14:49:15.0059 0x0a24  [ EE45ABD9F1DD386DE5C20A3CD97FF974, F41CE01FF102FF3B3605DEAAB707B2CF2224BDA899F48BF762438DF536C45490 ] DpHost          C:\Program Files\Hewlett-Packard\HP ProtectTools Security Manager\Bin\DpHostW.exe

14:49:15.0090 0x0a24  DpHost - ok

14:49:15.0105 0x0a24  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll

14:49:15.0137 0x0a24  DPS - ok

14:49:15.0152 0x0a24  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys

14:49:15.0168 0x0a24  drmkaud - ok

14:49:15.0215 0x0a24  [ F59E2FE2687A5C30598F9099F318EB73, 80A0B1CC758BD3C4AEAB8E5804120D8A145F918B527F41DEF02A0E4EBE170F37 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys

14:49:15.0230 0x0a24  DXGKrnl - ok

14:49:15.0261 0x0a24  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll

14:49:15.0293 0x0a24  EapHost - ok

14:49:15.0433 0x0a24  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys

14:49:15.0511 0x0a24  ebdrv - ok

14:49:15.0542 0x0a24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe

14:49:15.0558 0x0a24  EFS - ok

14:49:15.0651 0x0a24  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe

14:49:15.0683 0x0a24  ehRecvr - ok

14:49:15.0698 0x0a24  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe

14:49:15.0698 0x0a24  ehSched - ok

14:49:15.0729 0x0a24  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys

14:49:15.0745 0x0a24  elxstor - ok

14:49:15.0776 0x0a24  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys

14:49:15.0792 0x0a24  ErrDev - ok

14:49:15.0823 0x0a24  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll

14:49:15.0854 0x0a24  EventSystem - ok

14:49:15.0885 0x0a24  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys

14:49:15.0917 0x0a24  exfat - ok

14:49:15.0932 0x0a24  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys

14:49:15.0963 0x0a24  fastfat - ok

14:49:16.0010 0x0a24  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe

14:49:16.0041 0x0a24  Fax - ok

14:49:16.0057 0x0a24  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys

14:49:16.0073 0x0a24  fdc - ok

14:49:16.0088 0x0a24  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll

14:49:16.0119 0x0a24  fdPHost - ok

14:49:16.0135 0x0a24  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll

14:49:16.0166 0x0a24  FDResPub - ok

14:49:16.0166 0x0a24  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys

14:49:16.0182 0x0a24  FileInfo - ok

14:49:16.0197 0x0a24  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys

14:49:16.0213 0x0a24  Filetrace - ok

14:49:16.0244 0x0a24  [ 581FDF397ADDF7C314BE18437D4E54AF, 8DC92E976E9A1BFEECE010B276A398924B99F5ACB8A3DDC9F94D2975DF730E18 ] FLCDLOCK        c:\Windows\SysWOW64\flcdlock.exe

14:49:16.0260 0x0a24  FLCDLOCK - ok

14:49:16.0307 0x0a24  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys

14:49:16.0369 0x0a24  flpydisk - ok

14:49:16.0447 0x0a24  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys

14:49:16.0478 0x0a24  FltMgr - ok

14:49:16.0572 0x0a24  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll

14:49:16.0619 0x0a24  FontCache - ok

14:49:16.0650 0x0a24  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

14:49:16.0650 0x0a24  FontCache3.0.0.0 - ok

14:49:16.0665 0x0a24  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys

14:49:16.0665 0x0a24  FsDepends - ok

14:49:16.0681 0x0a24  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys

14:49:16.0681 0x0a24  Fs_Rec - ok

14:49:16.0697 0x0a24  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys

14:49:16.0712 0x0a24  fvevol - ok

14:49:16.0743 0x0a24  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys

14:49:16.0743 0x0a24  gagp30kx - ok

14:49:16.0790 0x0a24  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll

14:49:16.0837 0x0a24  gpsvc - ok

14:49:16.0868 0x0a24  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

14:49:16.0868 0x0a24  gupdate - ok

14:49:16.0884 0x0a24  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

14:49:16.0884 0x0a24  gupdatem - ok

14:49:16.0915 0x0a24  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys

14:49:16.0915 0x0a24  hcw85cir - ok

14:49:16.0931 0x0a24  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys

14:49:16.0946 0x0a24  HdAudAddService - ok

14:49:16.0977 0x0a24  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys

14:49:16.0993 0x0a24  HDAudBus - ok

14:49:17.0009 0x0a24  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys

14:49:17.0024 0x0a24  HidBatt - ok

14:49:17.0040 0x0a24  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys

14:49:17.0055 0x0a24  HidBth - ok

14:49:17.0087 0x0a24  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys

14:49:17.0102 0x0a24  HidIr - ok

14:49:17.0133 0x0a24  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll

14:49:17.0149 0x0a24  hidserv - ok

14:49:17.0165 0x0a24  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys

14:49:17.0196 0x0a24  HidUsb - ok

14:49:17.0211 0x0a24  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll

14:49:17.0243 0x0a24  hkmsvc - ok

14:49:17.0258 0x0a24  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll

14:49:17.0289 0x0a24  HomeGroupListener - ok

14:49:17.0305 0x0a24  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll

14:49:17.0321 0x0a24  HomeGroupProvider - ok

14:49:17.0352 0x0a24  [ 467AD1624990753AAC707DE0B1DFC468, 9F815613A451002F6E28053CE9971967DDE4CDA335FF7A309D52B815ADFA997B ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

14:49:17.0352 0x0a24  HP Support Assistant Service - detected UnsignedFile.Multi.Generic ( 1 )

14:49:17.0399 0x0a24  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - warning

14:49:17.0399 0x0a24  Force sending object to P2P due to detect: HP Support Assistant Service

14:49:20.0472 0x0a24  Object send P2P result: true

14:49:23.0467 0x0a24  [ 57DF6C245D7B5F58435BFAC39E55E502, 54DB6891FE4ADAB4FD7666F9AF236978D29EE2938C34C7B0D3C82E4B7D3BB363 ] hpCMSrv         c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe

14:49:23.0483 0x0a24  hpCMSrv - ok

14:49:23.0514 0x0a24  [ 8B8E6BD988EAF18C1B86704BF05E5C03, 84052C116032F3DC47B0D3A7A8FC8E86DF94DDB3136C866D8FC8A3DF23209DEC ] hpdskflt        C:\Windows\system32\drivers\hpdskflt.sys

14:49:23.0529 0x0a24  hpdskflt - ok

14:49:23.0592 0x0a24  [ B9B693903C47165DC6A2FF7FBC38DCDD, E6CBD0A7C169C314F510E57224706B165CDF1887877FA955209C8CCB1BB5AB2A ] HPFSService     C:\Program Files (x86)\Hewlett-Packard\File Sanitizer\HPFSService.exe

14:49:23.0623 0x0a24  HPFSService - ok

14:49:23.0685 0x0a24  [ F315F2EE0D1DC7DB63ADC20BA020E9AE, 2E53AB935D7DCBA1BCFA25FD49D8820AB6AE6B399B75A7A4D933342FCE66D2EC ] hpHotkeyMonitor C:\Program Files (x86)\Hewlett-Packard\HP Hotkey Support\HPHotkeyMonitor.exe

14:49:23.0701 0x0a24  hpHotkeyMonitor - ok

14:49:23.0717 0x0a24  [ B98EE5D4535A685634B90F7E04DE0DF7, E37D26EF83B70E84742498D2F53037F83BE13F0E01484D85A20C872F1F02ADDA ] HpqKbFiltr      C:\Windows\system32\drivers\HpqKbFiltr.sys

14:49:23.0717 0x0a24  HpqKbFiltr - ok

14:49:23.0779 0x0a24  [ D2946D9F020AE76E9CEF9B4A6DF838C0, C29CE594879385DA12B8EAA90B258905827B613839CCD820DE49215B68676995 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

14:49:23.0810 0x0a24  hpqwmiex - ok

14:49:23.0810 0x0a24  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys

14:49:23.0826 0x0a24  HpSAMD - ok

14:49:23.0826 0x0a24  [ 0865F178E272C682B0689F1AA269128D, F8CC23EA339F0C917C3948FF35BEFE10664CCFF8796954898E41F4EC1618E5E1 ] hpsrv           C:\Windows\system32\Hpservice.exe

14:49:23.0841 0x0a24  hpsrv - ok

14:49:23.0888 0x0a24  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys

14:49:23.0919 0x0a24  HTTP - ok

14:49:23.0935 0x0a24  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys

14:49:23.0951 0x0a24  hwpolicy - ok

14:49:23.0966 0x0a24  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys

14:49:23.0982 0x0a24  i8042prt - ok

14:49:24.0013 0x0a24  [ 6A1BADFDA5D5BB01B27C3B462050A069, AD5254F9DEA6B38F4DD3AEEB25388A586B58153C67BC7F73923EC9CCABCE8619 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys

14:49:24.0029 0x0a24  iaStorA - ok

14:49:24.0075 0x0a24  [ ECFFBCCBE9691EACE3B60EEEC970E9E5, 2B770277AB3DA75BAF105DE2E9EA04C702BA6D4504BB266A5C8902EF6EF84417 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

14:49:24.0091 0x0a24  IAStorDataMgrSvc - ok

14:49:24.0107 0x0a24  [ B9B58FE94AEBC70896B10AE0E93124F1, DFC542240F10407CFE2D563AB977463CE594CE4C00CAE58184D650D6972D65D2 ] iaStorF         C:\Windows\system32\drivers\iaStorF.sys

14:49:24.0138 0x0a24  iaStorF - ok

14:49:24.0169 0x0a24  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys

14:49:24.0200 0x0a24  iaStorV - ok

14:49:24.0247 0x0a24  [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS            C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe

14:49:24.0278 0x0a24  ICCS - ok

14:49:24.0309 0x0a24  [ 62DF33EBF1EFFBFFEAD2C58E2E347199, EC843B2ED5008C15CCF8AB7C0D0D8934802F650BDDDCE3A0F30AC0C346D3FACF ] IceKore         C:\Windows\system32\DRIVERS\IceKore.sys

14:49:24.0325 0x0a24  IceKore - ok

14:49:24.0403 0x0a24  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

14:49:24.0419 0x0a24  idsvc - ok

14:49:24.0434 0x0a24  IEEtwCollectorService - ok

14:49:24.0575 0x0a24  [ AEF200DC087141A5F66A6B006D2F0FD4, A38A0684637D9FE58271D91B93184A72414948E35145D19246BF6FBC60E28B3C ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys

14:49:24.0684 0x0a24  igfx - ok

14:49:24.0699 0x0a24  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys

14:49:24.0715 0x0a24  iirsp - ok

14:49:24.0762 0x0a24  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll

14:49:24.0777 0x0a24  IKEEXT - ok

14:49:24.0809 0x0a24  [ EEE7376243CD8A4B49B885EF122D25E5, A3B89E7B513C95558C4DA41D3C136D464381263BA43E00EC136FC776DAA0BA94 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys

14:49:24.0824 0x0a24  IntcDAud - ok

14:49:24.0871 0x0a24  [ 0DB1E3F6189C628675F855C0EB510419, 989F539E82105019D2D81255369B96DC65826CD2A421DA09809155B26F69C555 ] Intel® Capability Licensing Service Interface c:\Program Files\Intel\iCLS Client\HeciServer.exe

14:49:24.0902 0x0a24  Intel® Capability Licensing Service Interface - detected UnsignedFile.Multi.Generic ( 1 )

14:49:24.0902 0x0a24  Detect skipped due to KSN trusted

14:49:24.0902 0x0a24  Intel® Capability Licensing Service Interface - ok

14:49:24.0933 0x0a24  [ 492AAF2FF66F437F0E796574B116EFC3, 6BF21C61ED05705DD58203952A750D1AB4D4B62F3A2B640BBBD9B85D1ECC3E5C ] Intel® Capability Licensing Service TCP IP Interface c:\Program Files\Intel\iCLS Client\SocketHeciServer.exe

14:49:24.0965 0x0a24  Intel® Capability Licensing Service TCP IP Interface - ok

14:49:24.0980 0x0a24  [ 57739E742ABC085C2A4340D4404B4A8B, B4B85C35AC96D11F5940AFCB15A2B2A41D70E3C392E1D4D9353899FA140FF281 ] Intel® ME Service C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe

14:49:24.0996 0x0a24  Intel® ME Service - ok

14:49:24.0996 0x0a24  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys

14:49:25.0011 0x0a24  intelide - ok

14:49:25.0043 0x0a24  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\drivers\intelppm.sys

14:49:25.0043 0x0a24  intelppm - ok

14:49:25.0058 0x0a24  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll

14:49:25.0105 0x0a24  IPBusEnum - ok



#8 seraphin

seraphin
  • Topic Starter

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Local time:11:08 AM

Posted 01 January 2015 - 07:42 PM

TDSSKiller (part 4)

14:49:25.0121 0x0a24  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys

14:49:25.0167 0x0a24  IpFilterDriver - ok

14:49:25.0199 0x0a24  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll

14:49:25.0214 0x0a24  iphlpsvc - ok

14:49:25.0245 0x0a24  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys

14:49:25.0261 0x0a24  IPMIDRV - ok

14:49:25.0277 0x0a24  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys

14:49:25.0308 0x0a24  IPNAT - ok

14:49:25.0339 0x0a24  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys

14:49:25.0355 0x0a24  IRENUM - ok

14:49:25.0386 0x0a24  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys

14:49:25.0386 0x0a24  isapnp - ok

14:49:25.0417 0x0a24  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys

14:49:25.0433 0x0a24  iScsiPrt - ok

14:49:25.0448 0x0a24  [ 78D369F8A81A341109FBA1DB64B4C512, E584F693255CCBF7006E7D35984149CF599BB0849A8F02EFDD6223DF0D606049 ] iusb3hcs        C:\Windows\system32\drivers\iusb3hcs.sys

14:49:25.0448 0x0a24  iusb3hcs - ok

14:49:25.0479 0x0a24  [ 5B632ABA038CE2E2D5D2D1115C6B26D1, 605A8FFA704E4369CF9D17DF8630DC9E196B8920D47F1CC5151759E60B234C1F ] iusb3hub        C:\Windows\system32\drivers\iusb3hub.sys

14:49:25.0495 0x0a24  iusb3hub - ok

14:49:25.0526 0x0a24  [ EA841584EF59528D11F20355770E427E, 515737761BB2A0A233F4AD141E28D93E3B9789320A15B7D5FB3DB5AC3CD8E249 ] iusb3xhc        C:\Windows\system32\drivers\iusb3xhc.sys

14:49:25.0542 0x0a24  iusb3xhc - ok

14:49:25.0557 0x0a24  [ 52069AEB42D3D0F97CBCA1085EBF55E6, ADB2EFFF563B3FE113FCD156FD1E469BC24FC1D68AFEDCA21306F76592C9FF88 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

14:49:25.0573 0x0a24  jhi_service - ok

14:49:25.0589 0x0a24  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys

14:49:25.0589 0x0a24  kbdclass - ok

14:49:25.0620 0x0a24  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys

14:49:25.0620 0x0a24  kbdhid - ok

14:49:25.0635 0x0a24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe

14:49:25.0651 0x0a24  KeyIso - ok

14:49:25.0667 0x0a24  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys

14:49:25.0667 0x0a24  KSecDD - ok

14:49:25.0698 0x0a24  [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys

14:49:25.0713 0x0a24  KSecPkg - ok

14:49:25.0729 0x0a24  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys

14:49:25.0745 0x0a24  ksthunk - ok

14:49:25.0776 0x0a24  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll

14:49:25.0823 0x0a24  KtmRm - ok

14:49:25.0838 0x0a24  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll

14:49:25.0869 0x0a24  LanmanServer - ok

14:49:25.0901 0x0a24  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll

14:49:25.0916 0x0a24  LanmanWorkstation - ok

14:49:25.0932 0x0a24  [ 820A6BFE4BB42ECDE1AA97B5C33E77B4, C491516A9FEA63E0AFD3AED14158BEE6F019F70A4F915D405553F4D434DD5CA9 ] lehidmini       C:\Windows\system32\drivers\leath_hid.sys

14:49:25.0932 0x0a24  lehidmini - ok

14:49:25.0963 0x0a24  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys

14:49:25.0979 0x0a24  lltdio - ok

14:49:26.0010 0x0a24  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll

14:49:26.0041 0x0a24  lltdsvc - ok

14:49:26.0057 0x0a24  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll

14:49:26.0088 0x0a24  lmhosts - ok

14:49:26.0166 0x0a24  [ AD69C6F5A68550ECB8F1CC388620D9A1, 7D1A27CBC6C92EE589EACA2DC189CE42F5A5C5FB3586755DD2F569FC23116BFB ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

14:49:26.0197 0x0a24  LMS - ok

14:49:26.0197 0x0a24  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys

14:49:26.0213 0x0a24  LSI_FC - ok

14:49:26.0228 0x0a24  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys

14:49:26.0244 0x0a24  LSI_SAS - ok

14:49:26.0275 0x0a24  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys

14:49:26.0275 0x0a24  LSI_SAS2 - ok

14:49:26.0306 0x0a24  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys

14:49:26.0337 0x0a24  LSI_SCSI - ok

14:49:26.0353 0x0a24  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys

14:49:26.0384 0x0a24  luafv - ok

14:49:26.0447 0x0a24  [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe

14:49:26.0478 0x0a24  MBAMScheduler - ok

14:49:26.0509 0x0a24  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll

14:49:26.0525 0x0a24  Mcx2Svc - ok

14:49:26.0525 0x0a24  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys

14:49:26.0540 0x0a24  megasas - ok

14:49:26.0587 0x0a24  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys

14:49:26.0618 0x0a24  MegaSR - ok

14:49:26.0634 0x0a24  [ 18B9AD128EC84E8D16A83F70CF36594F, 199DF15D68E2A079794E5DD325162C1A68A65EF26EEF5A6C6154281DDE57279A ] MEIx64          C:\Windows\system32\drivers\TeeDriverx64.sys

14:49:26.0634 0x0a24  MEIx64 - ok

14:49:26.0696 0x0a24  Microsoft SharePoint Workspace Audit Service - ok

14:49:26.0743 0x0a24  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll

14:49:26.0790 0x0a24  MMCSS - ok

14:49:26.0805 0x0a24  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys

14:49:26.0837 0x0a24  Modem - ok

14:49:26.0837 0x0a24  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys

14:49:26.0868 0x0a24  monitor - ok

14:49:26.0883 0x0a24  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\drivers\mouclass.sys

14:49:26.0899 0x0a24  mouclass - ok

14:49:26.0915 0x0a24  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\drivers\mouhid.sys

14:49:26.0930 0x0a24  mouhid - ok

14:49:26.0946 0x0a24  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys

14:49:26.0946 0x0a24  mountmgr - ok

14:49:26.0961 0x0a24  [ B4E9C7383A705628AD491CF0F87D901F, 5C0CD7133D4F5B1E0466CDB2A2210ECA57206A8BC41F37BC6324120AE5501C70 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

14:49:26.0977 0x0a24  MozillaMaintenance - ok

14:49:26.0993 0x0a24  [ 6439D1E559D08BD8A1465A8943357053, 0E300508C22D12FBA3BE566B722F574CBE1B4A1A305356B92B8EA8B86267071B ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys

14:49:27.0008 0x0a24  MpFilter - ok

14:49:27.0024 0x0a24  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys

14:49:27.0039 0x0a24  mpio - ok

14:49:27.0055 0x0a24  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys

14:49:27.0071 0x0a24  mpsdrv - ok

14:49:27.0117 0x0a24  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll

14:49:27.0164 0x0a24  MpsSvc - ok

14:49:27.0180 0x0a24  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys

14:49:27.0211 0x0a24  MRxDAV - ok

14:49:27.0227 0x0a24  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys

14:49:27.0258 0x0a24  mrxsmb - ok

14:49:27.0273 0x0a24  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys

14:49:27.0289 0x0a24  mrxsmb10 - ok

14:49:27.0305 0x0a24  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys

14:49:27.0336 0x0a24  mrxsmb20 - ok

14:49:27.0351 0x0a24  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys

14:49:27.0367 0x0a24  msahci - ok

14:49:27.0383 0x0a24  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys

14:49:27.0383 0x0a24  msdsm - ok

14:49:27.0414 0x0a24  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe

14:49:27.0429 0x0a24  MSDTC - ok

14:49:27.0445 0x0a24  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys

14:49:27.0492 0x0a24  Msfs - ok

14:49:27.0492 0x0a24  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys

14:49:27.0523 0x0a24  mshidkmdf - ok

14:49:27.0539 0x0a24  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys

14:49:27.0539 0x0a24  msisadrv - ok

14:49:27.0570 0x0a24  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll

14:49:27.0601 0x0a24  MSiSCSI - ok

14:49:27.0601 0x0a24  msiserver - ok

14:49:27.0648 0x0a24  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys

14:49:27.0695 0x0a24  MSKSSRV - ok

14:49:27.0741 0x0a24  [ F0D5494D8B177C37E16966262F5D0F68, DD63427DFFD9DD2BEC8336F6AD1BEFE347012331631DC5FEC65E83B1EACDBC67 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe

14:49:27.0757 0x0a24  MsMpSvc - ok

14:49:27.0757 0x0a24  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys

14:49:27.0788 0x0a24  MSPCLOCK - ok

14:49:27.0788 0x0a24  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys

14:49:27.0819 0x0a24  MSPQM - ok

14:49:27.0851 0x0a24  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys

14:49:27.0866 0x0a24  MsRPC - ok

14:49:27.0897 0x0a24  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys

14:49:27.0897 0x0a24  mssmbios - ok

14:49:27.0913 0x0a24  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys

14:49:27.0944 0x0a24  MSTEE - ok

14:49:27.0960 0x0a24  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys

14:49:27.0975 0x0a24  MTConfig - ok

14:49:27.0991 0x0a24  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys

14:49:28.0007 0x0a24  Mup - ok

14:49:28.0038 0x0a24  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll

14:49:28.0069 0x0a24  napagent - ok

14:49:28.0100 0x0a24  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys

14:49:28.0116 0x0a24  NativeWifiP - ok

14:49:28.0131 0x0a24  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys

14:49:28.0163 0x0a24  NDIS - ok

14:49:28.0163 0x0a24  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys

14:49:28.0194 0x0a24  NdisCap - ok

14:49:28.0209 0x0a24  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys

14:49:28.0241 0x0a24  NdisTapi - ok

14:49:28.0256 0x0a24  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys

14:49:28.0287 0x0a24  Ndisuio - ok

14:49:28.0319 0x0a24  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys

14:49:28.0350 0x0a24  NdisWan - ok

14:49:28.0365 0x0a24  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys

14:49:28.0381 0x0a24  NDProxy - ok

14:49:28.0381 0x0a24  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys

14:49:28.0412 0x0a24  NetBIOS - ok

14:49:28.0428 0x0a24  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys

14:49:28.0475 0x0a24  NetBT - ok

14:49:28.0475 0x0a24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe

14:49:28.0490 0x0a24  Netlogon - ok

14:49:28.0521 0x0a24  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll

14:49:28.0537 0x0a24  Netman - ok

14:49:28.0615 0x0a24  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:49:28.0631 0x0a24  NetMsmqActivator - ok

14:49:28.0646 0x0a24  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:49:28.0662 0x0a24  NetPipeActivator - ok

14:49:28.0662 0x0a24  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll

14:49:28.0709 0x0a24  netprofm - ok

14:49:28.0709 0x0a24  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:49:28.0724 0x0a24  NetTcpActivator - ok

14:49:28.0724 0x0a24  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

14:49:28.0724 0x0a24  NetTcpPortSharing - ok

14:49:28.0755 0x0a24  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys

14:49:28.0771 0x0a24  nfrd960 - ok

14:49:28.0802 0x0a24  [ F9EEFFC65C68A45001D1349E652B8B6F, E5F223129416083A12A85D48C65B2C8D1BF1124110399938E144308C89F9241D ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys

14:49:28.0833 0x0a24  NisDrv - ok

14:49:28.0849 0x0a24  [ 9690F420A99364C1E5C439914B0DE25C, 6C6E0B27C4255001FE5F1EAD911DE1A8BF922C405B0C8031A6BD253CEB1D02A6 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe

14:49:28.0865 0x0a24  NisSrv - ok

14:49:28.0896 0x0a24  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll

14:49:28.0896 0x0a24  NlaSvc - ok

14:49:28.0927 0x0a24  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys

14:49:28.0958 0x0a24  Npfs - ok

14:49:28.0974 0x0a24  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll

14:49:28.0989 0x0a24  nsi - ok

14:49:29.0005 0x0a24  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys

14:49:29.0036 0x0a24  nsiproxy - ok

14:49:29.0114 0x0a24  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys

14:49:29.0145 0x0a24  Ntfs - ok

14:49:29.0161 0x0a24  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys

14:49:29.0192 0x0a24  Null - ok

14:49:29.0223 0x0a24  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys

14:49:29.0239 0x0a24  nvraid - ok

14:49:29.0255 0x0a24  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys

14:49:29.0270 0x0a24  nvstor - ok

14:49:29.0286 0x0a24  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys

14:49:29.0301 0x0a24  nv_agp - ok

14:49:29.0317 0x0a24  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys

14:49:29.0333 0x0a24  ohci1394 - ok

14:49:29.0411 0x0a24  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

14:49:29.0442 0x0a24  ose - ok

14:49:29.0645 0x0a24  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

14:49:29.0738 0x0a24  osppsvc - ok

14:49:29.0816 0x0a24  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll

14:49:29.0863 0x0a24  p2pimsvc - ok

14:49:29.0894 0x0a24  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll

14:49:29.0910 0x0a24  p2psvc - ok

14:49:29.0941 0x0a24  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys

14:49:29.0957 0x0a24  Parport - ok

14:49:29.0972 0x0a24  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys

14:49:29.0972 0x0a24  partmgr - ok

14:49:30.0003 0x0a24  [ 256390425414F90FCBC12F525A84EB11, A4992020BF6A239AD8A77125426E2C39980C9ABC971C4DBCB24B358F946AD7F9 ] PcaSvc          C:\Windows\System32\pcasvc.dll

14:49:30.0019 0x0a24  PcaSvc - ok

14:49:30.0035 0x0a24  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys

14:49:30.0035 0x0a24  pci - ok

14:49:30.0066 0x0a24  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys

14:49:30.0066 0x0a24  pciide - ok

14:49:30.0097 0x0a24  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys

14:49:30.0097 0x0a24  pcmcia - ok

14:49:30.0113 0x0a24  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys

14:49:30.0128 0x0a24  pcw - ok

14:49:30.0144 0x0a24  pdfcDispatcher - ok

14:49:30.0191 0x0a24  [ 946010CDFA91469351B22E2620CEBCD8, F099C92706D42ADC289B72724F7932E5D4F62A427AEC967DDB0A1D728AE59A63 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys

14:49:30.0222 0x0a24  PEAUTH - ok

14:49:30.0284 0x0a24  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll

14:49:30.0331 0x0a24  PeerDistSvc - ok

14:49:30.0393 0x0a24  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe

14:49:30.0393 0x0a24  PerfHost - ok

14:49:30.0425 0x0a24  [ 9C4392048C840D928B6CB205EA910075, 410EAC6EB6B0E6F4538A85380C9CF40B497394855989771E63F6644F3C5CDD00 ] PinFile         C:\Windows\system32\DRIVERS\PinFile.sys

14:49:30.0440 0x0a24  PinFile - ok

14:49:30.0487 0x0a24  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll

14:49:30.0549 0x0a24  pla - ok

14:49:30.0581 0x0a24  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll

14:49:30.0596 0x0a24  PlugPlay - ok

14:49:30.0627 0x0a24  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll

14:49:30.0627 0x0a24  PNRPAutoReg - ok

14:49:30.0659 0x0a24  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll

14:49:30.0659 0x0a24  PNRPsvc - ok

14:49:30.0690 0x0a24  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll

14:49:30.0721 0x0a24  PolicyAgent - ok

14:49:30.0752 0x0a24  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll

14:49:30.0768 0x0a24  Power - ok

14:49:30.0799 0x0a24  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys

14:49:30.0815 0x0a24  PptpMiniport - ok

14:49:30.0861 0x0a24  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys

14:49:30.0861 0x0a24  Processor - ok

14:49:30.0908 0x0a24  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll

14:49:30.0924 0x0a24  ProfSvc - ok

14:49:30.0955 0x0a24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe

14:49:30.0955 0x0a24  ProtectedStorage - ok

14:49:31.0002 0x0a24  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys

14:49:31.0064 0x0a24  Psched - ok

14:49:31.0142 0x0a24  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys

14:49:31.0173 0x0a24  ql2300 - ok

14:49:31.0189 0x0a24  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys

14:49:31.0205 0x0a24  ql40xx - ok

14:49:31.0236 0x0a24  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll

14:49:31.0251 0x0a24  QWAVE - ok

14:49:31.0251 0x0a24  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys

14:49:31.0267 0x0a24  QWAVEdrv - ok

14:49:31.0267 0x0a24  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys

14:49:31.0298 0x0a24  RasAcd - ok

14:49:31.0314 0x0a24  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys

14:49:31.0345 0x0a24  RasAgileVpn - ok

14:49:31.0376 0x0a24  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll

14:49:31.0407 0x0a24  RasAuto - ok

14:49:31.0407 0x0a24  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys

14:49:31.0439 0x0a24  Rasl2tp - ok

14:49:31.0454 0x0a24  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll

14:49:31.0501 0x0a24  RasMan - ok

14:49:31.0517 0x0a24  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys

14:49:31.0548 0x0a24  RasPppoe - ok

14:49:31.0563 0x0a24  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys

14:49:31.0595 0x0a24  RasSstp - ok

14:49:31.0626 0x0a24  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys

14:49:31.0657 0x0a24  rdbss - ok

14:49:31.0673 0x0a24  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys

14:49:31.0688 0x0a24  rdpbus - ok

14:49:31.0704 0x0a24  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys

14:49:31.0719 0x0a24  RDPCDD - ok

14:49:31.0766 0x0a24  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys

14:49:31.0766 0x0a24  RDPDR - ok

14:49:31.0797 0x0a24  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys

14:49:31.0813 0x0a24  RDPENCDD - ok

14:49:31.0891 0x0a24  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys

14:49:31.0953 0x0a24  RDPREFMP - ok

14:49:32.0000 0x0a24  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys

14:49:32.0016 0x0a24  RDPWD - ok

14:49:32.0109 0x0a24  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys

14:49:32.0109 0x0a24  rdyboost - ok

14:49:32.0125 0x0a24  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll

14:49:32.0156 0x0a24  RemoteAccess - ok

14:49:32.0187 0x0a24  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll

14:49:32.0219 0x0a24  RemoteRegistry - ok

14:49:32.0250 0x0a24  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys

14:49:32.0250 0x0a24  RFCOMM - ok

14:49:32.0265 0x0a24  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll

14:49:32.0297 0x0a24  RpcEptMapper - ok

14:49:32.0328 0x0a24  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe

14:49:32.0328 0x0a24  RpcLocator - ok

14:49:32.0375 0x0a24  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll

14:49:32.0406 0x0a24  RpcSs - ok

14:49:32.0421 0x0a24  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys

14:49:32.0453 0x0a24  rspndr - ok

14:49:32.0499 0x0a24  [ 1BE36AB59242A109697870F16A8E0EF8, CAC949D97EEFA0CE5E89084D0950B6E331145870355367803530D0DED4962F2E ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys

14:49:32.0515 0x0a24  RTL8167 - ok

14:49:32.0546 0x0a24  [ 62204AB99478B86C6EAA969E90D19868, 8501F514DA80EAFCA30824079B73454F575A1D58522791DB746F789C80E78706 ] RTSPER          C:\Windows\system32\DRIVERS\RtsPer.sys

14:49:32.0562 0x0a24  RTSPER - ok

14:49:32.0796 0x0a24  [ FB25B6BB17CE0D877CDEADF7EC71C147, 94434C32639596BAE1B54FC36FBB577A7F53EA9B767558814C5EDEA81DFFF6A8 ] rtsuvc          C:\Windows\system32\DRIVERS\rtsuvc.sys

14:49:32.0952 0x0a24  rtsuvc - ok

14:49:32.0983 0x0a24  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys

14:49:33.0014 0x0a24  s3cap - ok

14:49:33.0030 0x0a24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe

14:49:33.0030 0x0a24  SamSs - ok

14:49:33.0061 0x0a24  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS

14:49:33.0077 0x0a24  SASDIFSV - ok

14:49:33.0092 0x0a24  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS

14:49:33.0108 0x0a24  SASKUTIL - ok

14:49:33.0123 0x0a24  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys

14:49:33.0123 0x0a24  sbp2port - ok

14:49:33.0155 0x0a24  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll

14:49:33.0186 0x0a24  SCardSvr - ok

14:49:33.0201 0x0a24  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys

14:49:33.0217 0x0a24  scfilter - ok

14:49:33.0248 0x0a24  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll

14:49:33.0295 0x0a24  Schedule - ok

14:49:33.0326 0x0a24  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll

14:49:33.0342 0x0a24  SCPolicySvc - ok

14:49:33.0373 0x0a24  [ CFC713F81E22BA3E4EDF4B06A4527DB6, 2FA0CE9D0F8DA2E0D565B1B26784B9A4330635B2EAD897F7C3C5757D3DA9D70D ] SDDisk2K        C:\Windows\system32\DRIVERS\SDDisk2K.sys

14:49:33.0373 0x0a24  SDDisk2K - ok

14:49:33.0389 0x0a24  [ 9995B0EBA39BB410D89EE9FD9C785E62, D7C7454C4EBB3AAD078C66FB3014FEAFB62817F6E66E91AFB40236A823E48190 ] SDDToki         C:\Windows\system32\DRIVERS\SDDToki.sys

14:49:33.0404 0x0a24  SDDToki - ok

14:49:33.0435 0x0a24  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll

14:49:33.0451 0x0a24  SDRSVC - ok

14:49:33.0467 0x0a24  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys

14:49:33.0482 0x0a24  secdrv - ok

14:49:33.0498 0x0a24  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll

14:49:33.0529 0x0a24  seclogon - ok

14:49:33.0545 0x0a24  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll

14:49:33.0576 0x0a24  SENS - ok

14:49:33.0591 0x0a24  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll

14:49:33.0607 0x0a24  SensrSvc - ok

14:49:33.0623 0x0a24  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys

14:49:33.0638 0x0a24  Serenum - ok

14:49:33.0654 0x0a24  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys

14:49:33.0669 0x0a24  Serial - ok

14:49:33.0685 0x0a24  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys

14:49:33.0701 0x0a24  sermouse - ok

14:49:33.0732 0x0a24  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll

14:49:33.0747 0x0a24  SessionEnv - ok

14:49:33.0779 0x0a24  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys

14:49:33.0794 0x0a24  sffdisk - ok

14:49:33.0810 0x0a24  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys

14:49:33.0825 0x0a24  sffp_mmc - ok

14:49:33.0841 0x0a24  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys

14:49:33.0857 0x0a24  sffp_sd - ok

14:49:33.0872 0x0a24  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys

14:49:33.0888 0x0a24  sfloppy - ok

14:49:33.0935 0x0a24  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll

14:49:33.0997 0x0a24  SharedAccess - ok

14:49:34.0044 0x0a24  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll

14:49:34.0075 0x0a24  ShellHWDetection - ok

14:49:34.0091 0x0a24  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys

14:49:34.0091 0x0a24  SiSRaid2 - ok

14:49:34.0122 0x0a24  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys

14:49:34.0122 0x0a24  SiSRaid4 - ok

14:49:34.0153 0x0a24  [ 50D9949020E02B847CD48F1243FCB895, 5BDAD5E44DE5B412645142810C5FCE4B2D9685F928FF4A6B836A9DCE7725BD78 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe

14:49:34.0153 0x0a24  SkypeUpdate - ok

14:49:34.0247 0x0a24  [ 1C3974AE754FAD435CA8611B5C1CA8B6, CE4529159DDC6126B381E3E51F3F7F06269F0597C1A22B0F0883762D9158ED49 ] smartd          C:\Program Files (x86)\smartmontools for Windows\bin\smartd.exe

14:49:34.0262 0x0a24  smartd - detected UnsignedFile.Multi.Generic ( 1 )

14:49:34.0262 0x0a24  Detect skipped due to KSN trusted

14:49:34.0262 0x0a24  smartd - ok

14:49:34.0293 0x0a24  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys

14:49:34.0309 0x0a24  Smb - ok

14:49:34.0340 0x0a24  [ 76E7170CCCC7AD01466FCC69DF664E21, F32A92D48BC4E23694F9780EEBA30B54BB7AFBD0F43FEE53892B7C23F906B4CF ] SmbDrv          C:\Windows\system32\drivers\Smb_driver_AMDASF.sys

14:49:34.0356 0x0a24  SmbDrv - ok

14:49:34.0371 0x0a24  [ 178754F17D2E3828E7090B7A6873D7E4, EE6FBC4C0F5839B848EBC03D530BCF0DE9104905620A39F2C9AE5C1127690864 ] SmbDrvI         C:\Windows\system32\drivers\Smb_driver_Intel.sys

14:49:34.0371 0x0a24  SmbDrvI - ok

14:49:34.0403 0x0a24  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe

14:49:34.0418 0x0a24  SNMPTRAP - ok

14:49:34.0418 0x0a24  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys

14:49:34.0434 0x0a24  spldr - ok

14:49:34.0465 0x0a24  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe

14:49:34.0496 0x0a24  Spooler - ok

14:49:34.0637 0x0a24  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe

14:49:34.0715 0x0a24  sppsvc - ok

14:49:34.0730 0x0a24  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll

14:49:34.0761 0x0a24  sppuinotify - ok

14:49:34.0808 0x0a24  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys

14:49:34.0855 0x0a24  srv - ok

14:49:34.0886 0x0a24  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys

14:49:34.0917 0x0a24  srv2 - ok

14:49:34.0933 0x0a24  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys

14:49:34.0933 0x0a24  srvnet - ok

14:49:34.0964 0x0a24  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll

14:49:34.0980 0x0a24  SSDPSRV - ok

14:49:34.0995 0x0a24  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll

14:49:35.0011 0x0a24  SstpSvc - ok

14:49:35.0105 0x0a24  [ 580777FCF0DA9AE78B4D07A11E5F14CD, 2F2BE84ECB035C5E9DA538409398A1F56C62F4BD4F304EF088DAD49CA82735FD ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe

14:49:35.0136 0x0a24  STacSV - detected UnsignedFile.Multi.Generic ( 1 )

14:49:35.0136 0x0a24  Detect skipped due to KSN trusted

14:49:35.0136 0x0a24  STacSV - ok

14:49:35.0151 0x0a24  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys

14:49:35.0167 0x0a24  stexstor - ok

14:49:35.0198 0x0a24  [ 54ED2C1F251CF19EB3E965857BACF6F7, 38415A17FE41A9FA0CFBC9E3B041DF77B3FB97B255AE3B4E10FD6F22D9E871E2 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys

14:49:35.0229 0x0a24  STHDA - ok

14:49:35.0276 0x0a24  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll

14:49:35.0307 0x0a24  stisvc - ok

14:49:35.0323 0x0a24  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys

14:49:35.0339 0x0a24  storflt - ok

14:49:35.0354 0x0a24  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll

14:49:35.0385 0x0a24  StorSvc - ok

14:49:35.0417 0x0a24  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys

14:49:35.0417 0x0a24  storvsc - ok

14:49:35.0448 0x0a24  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys

14:49:35.0448 0x0a24  swenum - ok

14:49:35.0481 0x0a24  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll

14:49:35.0531 0x0a24  swprv - ok

14:49:35.0561 0x0a24  [ 0205C2DEAE954040E13D8CE9E777A6EF, 3D4174DEB514727E6E7FFC411A4CA281FB6E86B97AD85F0500FA40A25554EA6B ] SynTP           C:\Windows\system32\drivers\SynTP.sys

14:49:35.0577 0x0a24  SynTP - ok

14:49:35.0655 0x0a24  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll

14:49:35.0701 0x0a24  SysMain - ok

14:49:35.0717 0x0a24  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll

14:49:35.0748 0x0a24  TabletInputService - ok

14:49:35.0764 0x0a24  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll

14:49:35.0811 0x0a24  TapiSrv - ok

14:49:35.0826 0x0a24  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll

14:49:35.0857 0x0a24  TBS - ok

14:49:35.0920 0x0a24  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys

14:49:35.0951 0x0a24  Tcpip - ok

14:49:35.0998 0x0a24  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys

14:49:36.0045 0x0a24  TCPIP6 - ok

14:49:36.0060 0x0a24  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys

14:49:36.0091 0x0a24  tcpipreg - ok

14:49:36.0107 0x0a24  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys

14:49:36.0123 0x0a24  TDPIPE - ok

14:49:36.0138 0x0a24  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys

14:49:36.0138 0x0a24  TDTCP - ok

14:49:36.0154 0x0a24  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys

14:49:36.0185 0x0a24  tdx - ok

14:49:36.0201 0x0a24  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys

14:49:36.0216 0x0a24  TermDD - ok

14:49:36.0247 0x0a24  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll

14:49:36.0263 0x0a24  TermService - ok

14:49:36.0294 0x0a24  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll

14:49:36.0310 0x0a24  Themes - ok

14:49:36.0341 0x0a24  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll

14:49:36.0357 0x0a24  THREADORDER - ok

14:49:36.0372 0x0a24  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll

14:49:36.0403 0x0a24  TrkWks - ok

14:49:36.0419 0x0a24  [ FD44FA80DA03EA144153A76DEBBB61B4, 0C46717F489A415A583470DAE8CF58E47BC307B9CB0F9DB6C4EDF33B7525475C ] TrueSight       C:\Windows\System32\drivers\TrueSight.sys

14:49:36.0435 0x0a24  TrueSight - ok

14:49:36.0481 0x0a24  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe

14:49:36.0513 0x0a24  TrustedInstaller - ok

14:49:36.0559 0x0a24  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys

14:49:36.0559 0x0a24  tssecsrv - ok

14:49:36.0575 0x0a24  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys

14:49:36.0591 0x0a24  TsUsbFlt - ok

14:49:36.0622 0x0a24  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys

14:49:36.0653 0x0a24  TsUsbGD - ok

14:49:36.0669 0x0a24  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys

14:49:36.0731 0x0a24  tunnel - ok

14:49:36.0731 0x0a24  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys

14:49:36.0747 0x0a24  uagp35 - ok

14:49:36.0778 0x0a24  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys

14:49:36.0809 0x0a24  udfs - ok

14:49:36.0825 0x0a24  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe

14:49:36.0840 0x0a24  UI0Detect - ok

14:49:36.0856 0x0a24  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys

14:49:36.0856 0x0a24  uliagpkx - ok



#9 seraphin

seraphin
  • Topic Starter

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Local time:11:08 AM

Posted 01 January 2015 - 07:43 PM

TDSSKiller (part 5)

14:49:36.0887 0x0a24  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys

14:49:36.0887 0x0a24  umbus - ok

14:49:36.0918 0x0a24  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys

14:49:36.0918 0x0a24  UmPass - ok

14:49:36.0934 0x0a24  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll

14:49:36.0949 0x0a24  UmRdpService - ok

14:49:36.0996 0x0a24  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll

14:49:37.0012 0x0a24  upnphost - ok

14:49:37.0043 0x0a24  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys

14:49:37.0043 0x0a24  usbccgp - ok

14:49:37.0059 0x0a24  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys

14:49:37.0090 0x0a24  usbcir - ok

14:49:37.0105 0x0a24  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys

14:49:37.0121 0x0a24  usbehci - ok

14:49:37.0152 0x0a24  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys

14:49:37.0168 0x0a24  usbhub - ok

14:49:37.0230 0x0a24  [ B26ACA4784AD1295C25A7501FD4AB79E, 85AF98DE6D900C0986C9C5C808D0556DC3704C01EA0137F34C962D3B295455CE ] usbohci         C:\Windows\system32\drivers\usbohci.sys

14:49:37.0246 0x0a24  usbohci - ok

14:49:37.0277 0x0a24  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys

14:49:37.0293 0x0a24  usbprint - ok

14:49:37.0339 0x0a24  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS

14:49:37.0355 0x0a24  USBSTOR - ok

14:49:37.0433 0x0a24  [ 35944CFF264134FFD2E7EED0F8B81A56, 48D4CD3143950B2D2650B7F37EDE0B9B94921C1E1FB2A3FFF8C23B399929726F ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys

14:49:37.0511 0x0a24  usbuhci - ok

14:49:37.0527 0x0a24  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys

14:49:37.0542 0x0a24  usbvideo - ok

14:49:37.0574 0x0a24  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll

14:49:37.0605 0x0a24  UxSms - ok

14:49:37.0620 0x0a24  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe

14:49:37.0620 0x0a24  VaultSvc - ok

14:49:37.0652 0x0a24  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys

14:49:37.0667 0x0a24  vdrvroot - ok

14:49:37.0683 0x0a24  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe

14:49:37.0730 0x0a24  vds - ok

14:49:37.0745 0x0a24  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys

14:49:37.0761 0x0a24  vga - ok

14:49:37.0776 0x0a24  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys

14:49:37.0808 0x0a24  VgaSave - ok

14:49:37.0823 0x0a24  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys

14:49:37.0823 0x0a24  vhdmp - ok

14:49:37.0854 0x0a24  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys

14:49:37.0870 0x0a24  viaide - ok

14:49:37.0901 0x0a24  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys

14:49:37.0901 0x0a24  vmbus - ok

14:49:37.0917 0x0a24  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys

14:49:37.0932 0x0a24  VMBusHID - ok

14:49:37.0948 0x0a24  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys

14:49:37.0964 0x0a24  volmgr - ok

14:49:37.0979 0x0a24  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys

14:49:37.0995 0x0a24  volmgrx - ok

14:49:38.0026 0x0a24  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys

14:49:38.0026 0x0a24  volsnap - ok

14:49:38.0057 0x0a24  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys

14:49:38.0073 0x0a24  vsmraid - ok

14:49:38.0120 0x0a24  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe

14:49:38.0182 0x0a24  VSS - ok

14:49:38.0198 0x0a24  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys

14:49:38.0213 0x0a24  vwifibus - ok

14:49:38.0244 0x0a24  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys

14:49:38.0291 0x0a24  vwififlt - ok

14:49:38.0291 0x0a24  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys

14:49:38.0307 0x0a24  vwifimp - ok

14:49:38.0338 0x0a24  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll

14:49:38.0369 0x0a24  W32Time - ok

14:49:38.0385 0x0a24  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys

14:49:38.0400 0x0a24  WacomPen - ok

14:49:38.0416 0x0a24  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys

14:49:38.0432 0x0a24  WANARP - ok

14:49:38.0447 0x0a24  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys

14:49:38.0463 0x0a24  Wanarpv6 - ok

14:49:38.0666 0x0a24  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe

14:49:38.0712 0x0a24  WatAdminSvc - ok

14:49:38.0900 0x0a24  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe

14:49:38.0962 0x0a24  wbengine - ok

14:49:39.0009 0x0a24  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll

14:49:39.0024 0x0a24  WbioSrvc - ok

14:49:39.0071 0x0a24  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll

14:49:39.0087 0x0a24  wcncsvc - ok

14:49:39.0134 0x0a24  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll

14:49:39.0165 0x0a24  WcsPlugInService - ok

14:49:39.0196 0x0a24  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys

14:49:39.0212 0x0a24  Wd - ok

14:49:39.0383 0x0a24  [ 75600442AF2C8303FC7199E360334873, C6290875C6C010E8754487BD74365874E316313B697D7ABBF4E85AA3C41ABE1A ] WDBackup        C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe

14:49:39.0399 0x0a24  WDBackup - ok

14:49:39.0461 0x0a24  [ C50B1A397F35908EEA98C964E77A6A97, FBA623EE0C5A72836ED80C0ACA163461E9B1B601B99C35B9EEE36B07B7F0839E ] WDDriveService  C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe

14:49:39.0492 0x0a24  WDDriveService - ok

14:49:39.0570 0x0a24  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys

14:49:39.0602 0x0a24  Wdf01000 - ok

14:49:39.0617 0x0a24  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll

14:49:39.0648 0x0a24  WdiServiceHost - ok

14:49:39.0648 0x0a24  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll

14:49:39.0664 0x0a24  WdiSystemHost - ok

14:49:39.0773 0x0a24  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll

14:49:39.0820 0x0a24  WebClient - ok

14:49:39.0851 0x0a24  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll

14:49:39.0882 0x0a24  Wecsvc - ok

14:49:39.0882 0x0a24  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll

14:49:39.0914 0x0a24  wercplsupport - ok

14:49:39.0929 0x0a24  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll

14:49:39.0960 0x0a24  WerSvc - ok

14:49:39.0976 0x0a24  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys

14:49:40.0007 0x0a24  WfpLwf - ok

14:49:40.0023 0x0a24  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys

14:49:40.0023 0x0a24  WIMMount - ok

14:49:40.0038 0x0a24  WinDefend - ok

14:49:40.0038 0x0a24  WinHttpAutoProxySvc - ok

14:49:40.0085 0x0a24  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll

14:49:40.0116 0x0a24  Winmgmt - ok

14:49:40.0179 0x0a24  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll

14:49:40.0226 0x0a24  WinRM - ok

14:49:40.0257 0x0a24  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys

14:49:40.0272 0x0a24  WinUsb - ok

14:49:40.0382 0x0a24  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll

14:49:40.0413 0x0a24  Wlansvc - ok

14:49:40.0428 0x0a24  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys

14:49:40.0428 0x0a24  WmiAcpi - ok

14:49:40.0460 0x0a24  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe

14:49:40.0475 0x0a24  wmiApSrv - ok

14:49:40.0491 0x0a24  WMPNetworkSvc - ok

14:49:40.0522 0x0a24  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll

14:49:40.0522 0x0a24  WPCSvc - ok

14:49:40.0538 0x0a24  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll

14:49:40.0553 0x0a24  WPDBusEnum - ok

14:49:40.0569 0x0a24  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys

14:49:40.0600 0x0a24  ws2ifsl - ok

14:49:40.0616 0x0a24  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll

14:49:40.0631 0x0a24  wscsvc - ok

14:49:40.0631 0x0a24  WSearch - ok

14:49:40.0709 0x0a24  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll

14:49:40.0756 0x0a24  wuauserv - ok

14:49:40.0787 0x0a24  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys

14:49:40.0803 0x0a24  WudfPf - ok

14:49:40.0818 0x0a24  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys

14:49:40.0834 0x0a24  WUDFRd - ok

14:49:40.0850 0x0a24  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll

14:49:40.0850 0x0a24  wudfsvc - ok

14:49:40.0881 0x0a24  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll

14:49:40.0896 0x0a24  WwanSvc - ok

14:49:40.0943 0x0a24  [ 86B8B1F5C1189D68B07666784BE882FE, 0DD8C627F3DDBDB61B1910540C465C0D62C9F8D84C7CBB6C80782DB02D535AF0 ] ZAtheros Bt and Wlan Coex Agent C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe

14:49:40.0959 0x0a24  ZAtheros Bt and Wlan Coex Agent - detected UnsignedFile.Multi.Generic ( 1 )

14:49:40.0959 0x0a24  Detect skipped due to KSN trusted

14:49:40.0959 0x0a24  ZAtheros Bt and Wlan Coex Agent - ok

14:49:40.0974 0x0a24  ================ Scan global ===============================

14:49:40.0990 0x0a24  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll

14:49:41.0021 0x0a24  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll

14:49:41.0052 0x0a24  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll

14:49:41.0084 0x0a24  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll

14:49:41.0099 0x0a24  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe

14:49:41.0099 0x0a24  [ Global ] - ok

14:49:41.0115 0x0a24  ================ Scan MBR ==================================

14:49:41.0115 0x0a24  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0

14:49:41.0598 0x0a24  \Device\Harddisk0\DR0 - ok

14:49:41.0598 0x0a24  ================ Scan VBR ==================================

14:49:41.0614 0x0a24  [ 39F10A627AA0123038627608C25E4788 ] \Device\Harddisk0\DR0\Partition1

14:49:41.0614 0x0a24  \Device\Harddisk0\DR0\Partition1 - ok

14:49:41.0630 0x0a24  [ 7281C665F49773F0841F0A30A7CC3733 ] \Device\Harddisk0\DR0\Partition2

14:49:41.0630 0x0a24  \Device\Harddisk0\DR0\Partition2 - ok

14:49:41.0661 0x0a24  [ 0C12D4862C93BB49CDBC204135F7510B ] \Device\Harddisk0\DR0\Partition3

14:49:41.0661 0x0a24  \Device\Harddisk0\DR0\Partition3 - ok

14:49:41.0692 0x0a24  [ 9EFF1727EBFB48DD8E7BA170C699D04E ] \Device\Harddisk0\DR0\Partition4

14:49:41.0692 0x0a24  \Device\Harddisk0\DR0\Partition4 - ok

14:49:41.0692 0x0a24  ================ Scan generic autorun ======================

14:49:41.0739 0x0a24  [ C8E79415AF20C627C00F598D0F93C0BF, C2905D0EB90EFC51814163A1161CF423834DD10C971F4822409FD443B6D5669F ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe

14:49:41.0770 0x0a24  IAStorIcon - detected UnsignedFile.Multi.Generic ( 1 )

14:49:41.0770 0x0a24  Detect skipped due to KSN trusted

14:49:41.0770 0x0a24  IAStorIcon - ok

14:49:41.0864 0x0a24  [ 3FFDE0811F5748033957BAA99492D672, 39F594C6230E43E4D6F6385B217AE9729EE4E9154E67698B8B78D598D4328086 ] C:\Program Files\IDT\WDM\sttray64.exe

14:49:41.0895 0x0a24  SysTrayApp - detected UnsignedFile.Multi.Generic ( 1 )

14:49:41.0895 0x0a24  Detect skipped due to KSN trusted

14:49:41.0895 0x0a24  SysTrayApp - ok

14:49:41.0926 0x0a24  [ 9EF774DAEB869F8800659510AAA09FAA, 3564358C482DF5F54DA8125474E31DEE0D6F4E336CBF41C76963F86BE88C3E23 ] C:\Windows\system32\igfxtray.exe

14:49:41.0942 0x0a24  IgfxTray - ok

14:49:41.0957 0x0a24  [ 5BC2B8CE49327502E4AADE79FDE20A74, 9C9A9653F9F81F613BCD5C058E288F5D8B482B8200E5FF6FEABA3E628541CFA4 ] C:\Windows\system32\hkcmd.exe

14:49:41.0973 0x0a24  HotKeysCmds - ok

14:49:41.0988 0x0a24  [ 2EDD62469B8C61EC765ADA4445719FDE, 2AD076CDA139EA8BDDB380F204BE26AE45825E935E1FAE0C6A8A7822A31598AB ] C:\Windows\system32\igfxpers.exe

14:49:42.0004 0x0a24  Persistence - ok

14:49:42.0020 0x0a24  [ AFE5CD3EF5DB5078830BF1250E7E5AEA, 92AD8D5A2030BF5E5F6344747B2C05FCAD741BF2635227216AC72DD56960519A ] C:\Windows\RTSCM64.EXE

14:49:42.0020 0x0a24  RtsCM - ok

14:49:42.0098 0x0a24  [ 3F60007F5DD0BA5FDA0E197ED7DDC6FF, 1C7B8063AAB30883895A31B1581219B816BE1D106E959C9C019C7D7CBF475DD1 ] C:\Program Files (x86)\PDF Complete\pdfsty.exe

14:49:42.0129 0x0a24  PDF Complete - ok

14:49:42.0191 0x0a24  [ F7130304E0512282F398A2C2BEF7522D, AE4EDB7B7D1634542F5F2D260A0AAA482ABDC3106E57A05C64BB1BA4635D63AD ] c:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe

14:49:42.0207 0x0a24  HPConnectionManager - ok

14:49:42.0254 0x0a24  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

14:49:42.0285 0x0a24  Sidebar - ok

14:49:42.0316 0x0a24  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe

14:49:42.0316 0x0a24  mctadmin - ok

14:49:42.0347 0x0a24  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe

14:49:42.0378 0x0a24  Sidebar - ok

14:49:42.0378 0x0a24  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe

14:49:42.0394 0x0a24  mctadmin - ok

14:49:42.0456 0x0a24  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe

14:49:42.0488 0x0a24  Sidebar - ok

14:49:42.0987 0x0a24  [ 69CFED513B87D6FE10DBE421708501B3, DE7F8F22EB5C88DF11C51E5FD69A18EDAFDA6873AAFFBC5BD134DC67E2E75813 ] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

14:49:43.0112 0x0a24  SUPERAntiSpyware - ok

14:49:43.0299 0x0a24  [ 4DF6E378A00B6F89CB35078054057C36, 981BE3859AC48F43E739885BDA6756C5583BFD7353A57669067C8FB170DAE097 ] C:\Program Files\CCleaner\CCleaner64.exe

14:49:43.0408 0x0a24  CCleaner Monitoring - ok

14:49:43.0564 0x0a24  [ 7999235AE6A9F0FE1C007203F03A4618, D552A169E7E5EC43B675120F11E6A1790902C4068FAAFC2DE81DDB5FA50F18E8 ] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_15_0_0_246_Plugin.exe

14:49:43.0595 0x0a24  FlashPlayerUpdate - ok

14:49:43.0642 0x0a24  [ CF9581D69FD43ACAE8C6D70DEC499626, 841ED9C553E38E86AB94E081FEA64A98169BE1483119A0DBE3640D8ABFA271C9 ] C:\AdwCleaner\AdwCleaner[S3].txt

14:49:43.0642 0x0a24  Report - detected UnsignedFile.Multi.Generic ( 1 )

14:49:43.0642 0x0a24  Report ( UnsignedFile.Multi.Generic ) - warning

14:49:46.0653 0x0a24  [ 44A9229022A519ED45294A1934C05EEC, 6DEF0DB5F9B50E9B0AFEE1CF50066BEB4FB7E15E2DC829A499509925660D6992 ] C:\Users\Brenden-non admin\AppData\Local\FluxSoftware\Flux\flux.exe

14:49:46.0684 0x0a24  f.lux - ok

14:49:46.0871 0x0a24  [ 4DF6E378A00B6F89CB35078054057C36, 981BE3859AC48F43E739885BDA6756C5583BFD7353A57669067C8FB170DAE097 ] C:\Program Files\CCleaner\CCleaner64.exe

14:49:46.0980 0x0a24  CCleaner Monitoring - ok

14:49:46.0996 0x0a24  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.6.305.0 ), 0x61000 ( enabled : updated )

14:49:46.0996 0x0a24  Win FW state via NFP2: enabled

14:49:49.0898 0x0a24  ============================================================

14:49:49.0898 0x0a24  Scan finished

14:49:49.0898 0x0a24  ============================================================

14:49:49.0898 0x0ce8  Detected object count: 2

14:49:49.0898 0x0ce8  Actual detected object count: 2

14:50:14.0842 0x0ce8  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - skipped by user

14:50:14.0842 0x0ce8  HP Support Assistant Service ( UnsignedFile.Multi.Generic ) - User select action: Skip

14:50:14.0842 0x0ce8  Report ( UnsignedFile.Multi.Generic ) - skipped by user

14:50:14.0842 0x0ce8  Report ( UnsignedFile.Multi.Generic ) - User select action: Skip

14:50:20.0021 0x14d4  Deinitialize success



#10 seraphin

seraphin
  • Topic Starter

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Local time:11:08 AM

Posted 01 January 2015 - 07:46 PM

AdwCleaner report

# AdwCleaner v4.106 - Report created 01/01/2015 at 14:53:09

# Updated 21/12/2014 by Xplode

# Database : 2015-01-01.1 [Live]

# Operating System : Windows 7 Professional Service Pack 1 (64 bits)

# Username : Admin - ADMIN-HP

# Running from : C:\Users\Brenden-non admin\Desktop\AdwCleaner.exe

# Option : Clean

 

***** [ Services ] *****

 

***** [ Files / Folders ] *****

 

***** [ Scheduled Tasks ] *****

 

***** [ Shortcuts ] *****

 

***** [ Registry ] *****

 

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17496

 

-\\ Mozilla Firefox v34.0.5 (x86 en-US)

 

-\\ Google Chrome v39.0.2171.95

 

*************************

 

AdwCleaner[R0].txt - [1031 octets] - [18/10/2014 09:27:54]

AdwCleaner[R1].txt - [1066 octets] - [18/10/2014 17:10:53]

AdwCleaner[R2].txt - [1531 octets] - [01/01/2015 12:25:00]

AdwCleaner[R3].txt - [1869 octets] - [01/01/2015 12:30:17]

AdwCleaner[R4].txt - [1278 octets] - [01/01/2015 14:51:00]

AdwCleaner[S0].txt - [935 octets] - [18/10/2014 09:29:10]

AdwCleaner[S1].txt - [968 octets] - [18/10/2014 17:12:31]

AdwCleaner[S2].txt - [1595 octets] - [01/01/2015 12:26:41]

AdwCleaner[S3].txt - [1940 octets] - [01/01/2015 12:31:59]

AdwCleaner[S4].txt - [1202 octets] - [01/01/2015 14:53:09]

########## EOF - \AdwCleaner\AdwCleaner[S4].txt - [1262 octets] ##########

 

FSS report

Farbar Service Scanner Version: 21-07-2014
Ran by Admin (administrator) on 01-01-2015 at 14:58:56
Running from "C:\Users\Brenden-non admin\Desktop"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware"=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => File is digitally signed
C:\Windows\System32\drivers\nsiproxy.sys => File is digitally signed
C:\Windows\System32\dhcpcore.dll => File is digitally signed
C:\Windows\System32\drivers\afd.sys => File is digitally signed
C:\Windows\System32\drivers\tdx.sys => File is digitally signed
C:\Windows\System32\Drivers\tcpip.sys => File is digitally signed
C:\Windows\System32\dnsrslvr.dll => File is digitally signed
C:\Windows\System32\mpssvc.dll => File is digitally signed
C:\Windows\System32\bfe.dll => File is digitally signed
C:\Windows\System32\drivers\mpsdrv.sys => File is digitally signed
C:\Windows\System32\SDRSVC.dll => File is digitally signed
C:\Windows\System32\vssvc.exe => File is digitally signed
C:\Windows\System32\wscsvc.dll => File is digitally signed
C:\Windows\System32\wbem\WMIsvc.dll => File is digitally signed
C:\Windows\System32\wuaueng.dll => File is digitally signed
C:\Windows\System32\qmgr.dll => File is digitally signed
C:\Windows\System32\es.dll => File is digitally signed
C:\Windows\System32\cryptsvc.dll => File is digitally signed
C:\Program Files\Windows Defender\MpSvc.dll => File is digitally signed
C:\Windows\System32\ipnathlp.dll => File is digitally signed
C:\Windows\System32\iphlpsvc.dll => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed


**** End of log ****

 

MiniToolBox

MiniToolBox by Farbar  Version: 30-11-2014

Ran by Admin (administrator) on 01-01-2015 at 15:01:27

Running from "C:\Users\Brenden-non admin\Desktop"

Microsoft Windows 7 Professional  Service Pack 1 (X64)

Boot Mode: Normal

***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.

No Proxy Server is set.

 

"Reset IE Proxy Settings": IE Proxy Settings were reset.

 

========================= FF Proxy Settings: ==============================

 

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Qualcomm Atheros QCA9565 802.11b/g/n WiFi Adapter = Wireless Network Connection (Connected)

Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)

Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 3 (Media disconnected)

 

# ----------------------------------

# IPv4 Configuration

# ----------------------------------

pushd interface ipv4

reset

set global icmpredirects=enabled

 

popd

# End of IPv4 configuration

 

 

Windows IP Configuration

 

   Host Name . . . . . . . . . . . . : Admin-HP

   Primary Dns Suffix  . . . . . . . :

   Node Type . . . . . . . . . . . . : Hybrid

   IP Routing Enabled. . . . . . . . : No

   WINS Proxy Enabled. . . . . . . . : No

 

Wireless LAN adapter Wireless Network Connection 3:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter #2

   Physical Address. . . . . . . . . : 2A-E3-47-DD-22-44

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Qualcomm Atheros QCA9565 802.11b/g/n WiFi Adapter

   Physical Address. . . . . . . . . : 28-E3-47-DD-22-44

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

   IPv6 Address. . . . . . . . . . . : 2604:2000:dd64:100:c49a:1c2a:54d2:9a79(Preferred)

   Temporary IPv6 Address. . . . . . : 2604:2000:dd64:100:58f3:9ed:ba50:8612(Preferred)

   Link-local IPv6 Address . . . . . : fe80::c49a:1c2a:54d2:9a79%17(Preferred)

   IPv4 Address. . . . . . . . . . . : 192.168.0.2(Preferred)

   Subnet Mask . . . . . . . . . . . : 255.255.255.0

   Lease Obtained. . . . . . . . . . : Thursday, January 01, 2015 2:54:00 PM

   Lease Expires . . . . . . . . . . : Thursday, January 01, 2015 3:54:00 PM

   Default Gateway . . . . . . . . . : fe80::aeb3:13ff:fe84:b1b7%17

                                       192.168.0.1

   DHCP Server . . . . . . . . . . . : 192.168.0.1

   DHCPv6 IAID . . . . . . . . . . . : 422110023

   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-C3-4A-0E-A0-1D-48-B3-2E-07

   DNS Servers . . . . . . . . . . . : 209.18.47.61

                                       209.18.47.62

   NetBIOS over Tcpip. . . . . . . . : Enabled

 

Ethernet adapter Local Area Connection:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller

   Physical Address. . . . . . . . . : A0-1D-48-B3-2E-07

   DHCP Enabled. . . . . . . . . . . : Yes

   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{7D825013-CA84-4B68-8C12-14715D794940}:

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft ISATAP Adapter

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

 

Tunnel adapter Local Area Connection* 11:

 

   Media State . . . . . . . . . . . : Media disconnected

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft 6to4 Adapter

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 9:

   Connection-specific DNS Suffix  . :

   Description . . . . . . . . . . . : Microsoft Teredo Tunneling Adapter

   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0

   DHCP Enabled. . . . . . . . . . . : No

   Autoconfiguration Enabled . . . . : Yes

   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:34a8:3bc7:b71a:d65(Preferred)

   Link-local IPv6 Address . . . . . : fe80::34a8:3bc7:b71a:d65%12(Preferred)

   Default Gateway . . . . . . . . . :

   NetBIOS over Tcpip. . . . . . . . : Disabled

Server:  dns-cac-lb-01.rr.com

Address:  209.18.47.61

Name:    google.com

Addresses:  2607:f8b0:4006:808::1008

   173.194.123.14

   173.194.123.9

   173.194.123.4

   173.194.123.7

   173.194.123.5

   173.194.123.0

   173.194.123.6

   173.194.123.3

   173.194.123.2

   173.194.123.8

   173.194.123.1

 

Pinging google.com [2607:f8b0:4006:808::1002] with 32 bytes of data:

Reply from 2607:f8b0:4006:808::1002: time=28ms

Reply from 2607:f8b0:4006:808::1002: time=40ms

 

Ping statistics for 2607:f8b0:4006:808::1002:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 28ms, Maximum = 40ms, Average = 34ms

Server:  dns-cac-lb-01.rr.com

Address:  209.18.47.61

Name:    yahoo.com

Addresses:  206.190.36.45

   98.138.253.109

   98.139.183.24

 

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:

Reply from 98.138.253.109: bytes=32 time=67ms TTL=50

Reply from 98.138.253.109: bytes=32 time=68ms TTL=50

Ping statistics for 98.138.253.109:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 67ms, Maximum = 68ms, Average = 67ms

 

Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

 

Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================

Interface List

18...2a e3 47 dd 22 44 ......Microsoft Virtual WiFi Miniport Adapter #2

17...28 e3 47 dd 22 44 ......Qualcomm Atheros QCA9565 802.11b/g/n WiFi Adapter

13...a0 1d 48 b3 2e 07 ......Realtek PCIe GBE Family Controller

  1...........................Software Loopback Interface 1

19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter

11...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter

12...00 00 00 00 00 00 00 e0 Microsoft Teredo Tunneling Adapter

===========================================================================

IPv4 Route Table

===========================================================================

Active Routes:

Network Destination        Netmask          Gateway       Interface  Metric

          0.0.0.0          0.0.0.0      192.168.0.1      192.168.0.2     25

        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306

        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306

  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306

      192.168.0.0    255.255.255.0         On-link       192.168.0.2    281

      192.168.0.2  255.255.255.255         On-link       192.168.0.2    281

    192.168.0.255  255.255.255.255         On-link       192.168.0.2    281

        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306

        224.0.0.0        240.0.0.0         On-link       192.168.0.2    281

  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306

  255.255.255.255  255.255.255.255         On-link       192.168.0.2    281

===========================================================================

Persistent Routes:

  None

 

IPv6 Route Table

===========================================================================

Active Routes:

If Metric Network Destination      Gateway

17    281 ::/0                     fe80::aeb3:13ff:fe84:b1b7

  1    306 ::1/128                  On-link

12     58 2001::/32                On-link

12    306 2001:0:9d38:6abd:34a8:3bc7:b71a:d65/128

                                    On-link

17     33 2604:2000:dd64:100::/64  On-link

17    281 2604:2000:dd64:100:58f3:9ed:ba50:8612/128

                                    On-link

17    281 2604:2000:dd64:100:c49a:1c2a:54d2:9a79/128

                                    On-link

17    281 fe80::/64                On-link

12    306 fe80::/64                On-link

12    306 fe80::34a8:3bc7:b71a:d65/128

                                    On-link

17    281 fe80::c49a:1c2a:54d2:9a79/128

                                    On-link

  1    306 ff00::/8                 On-link

12    306 ff00::/8                 On-link

17    281 ff00::/8                 On-link

===========================================================================

Persistent Routes:

  None

========================= Winsock entries =====================================

 

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)

Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)

Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)

Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)

Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)

Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)

x64-Catalog5 01 \Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)

x64-Catalog5 02 \Windows\System32\napinsp.dll [68096] (Microsoft Corporation)

x64-Catalog5 03 \Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 04 \Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)

x64-Catalog5 05 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog5 06 \Windows\System32\winrnr.dll [28672] (Microsoft Corporation)

x64-Catalog5 07 \Windows\System32\wshbth.dll [47104] (Microsoft Corporation)

x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)

x64-Catalog9 01 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 02 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 03 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 04 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 05 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 06 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 07 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 08 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 09 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 10 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

x64-Catalog9 11 \Windows\System32\mswsock.dll [327168] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:

==================

Error: (01/01/2015 02:55:53 PM) (Source: MsiInstaller) (User: Admin-HP)

Description: Product: Adobe Reader XI - Update '{AC76BA86-7AD7-0000-2550-7A8C40011010}' could not be installed. Error code 1625. Windows Installer can create logs to help troubleshoot issues with installing software packages. Use the following link for instructions on turning on logging support: http://go.microsoft.com/fwlink/?LinkId=23127

 

System errors:

=============

Error: (01/01/2015 02:53:16 PM) (Source: DCOM) (User: )

Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

 

Error: (01/01/2015 01:55:51 PM) (Source: Disk) (User: )

Description: The driver detected a controller error on \Device\Harddisk1\DR4.

Error: (01/01/2015 01:55:51 PM) (Source: Disk) (User: )

Description: The driver detected a controller error on \Device\Harddisk1\DR4.

 

Error: (01/01/2015 01:55:50 PM) (Source: Disk) (User: )

Description: The driver detected a controller error on \Device\Harddisk1\DR4.

Error: (01/01/2015 01:55:50 PM) (Source: Disk) (User: )

Description: The driver detected a controller error on \Device\Harddisk1\DR4.

 

Error: (01/01/2015 01:55:49 PM) (Source: Disk) (User: )

Description: The driver detected a controller error on \Device\Harddisk1\DR4.

Error: (01/01/2015 01:50:53 PM) (Source: Disk) (User: )

Description: The driver detected a controller error on \Device\Harddisk1\DR4.

 

Error: (01/01/2015 01:50:52 PM) (Source: Disk) (User: )

Description: The driver detected a controller error on \Device\Harddisk1\DR4.

Error: (01/01/2015 01:50:52 PM) (Source: Disk) (User: )

Description: The driver detected a controller error on \Device\Harddisk1\DR4.

 

Error: (01/01/2015 01:50:51 PM) (Source: Disk) (User: )

Description: The driver detected a controller error on \Device\Harddisk1\DR4.

 

Microsoft Office Sessions:

=========================

Error: (01/01/2015 02:55:53 PM) (Source: MsiInstaller)(User: Admin-HP)

Description: Adobe Reader XI{AC76BA86-7AD7-0000-2550-7A8C40011010}1625(NULL)(NULL)(NULL)

 

=========================== Installed Programs ============================

µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.37594 - BitTorrent Inc.)

7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)

Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.246 - Adobe Systems Incorporated)

Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)

Adobe Reader XI (11.0.07) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)

AMD Accelerated Video Transcoding (Version: 13.10.100.30802 - Advanced Micro Devices, Inc.) Hidden

AMD Catalyst Control Center (x32 Version: 2013.0802.345.4821 - Advanced Micro Devices, Inc.) Hidden

AMD Catalyst Install Manager (HKLM\...\{C4CB2534-82F4-F4AF-5767-9EE64EF9EB64}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)

AMD Media Foundation Decoders (Version: 1.0.80802.0343 - Advanced Micro Devices, Inc.) Hidden

Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)

Catalyst Control Center - Branding (x32 Version: 1.00.0000 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Graphics Previews Common (x32 Version: 2013.0802.345.4821 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center InstallProxy (x32 Version: 2013.0802.345.4821 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Localization All (x32 Version: 2013.0802.345.4821 - Advanced Micro Devices, Inc.) Hidden

Catalyst Control Center Profiles Mobile (x32 Version: 2013.0802.345.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Chinese Standard (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Chinese Traditional (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Czech (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Danish (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Dutch (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help English (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Finnish (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help French (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help German (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Greek (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Hungarian (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Italian (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Japanese (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Korean (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Norwegian (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Polish (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Portuguese (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Russian (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Spanish (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Swedish (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Thai (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

CCC Help Turkish (x32 Version: 2013.0802.0344.4821 - Advanced Micro Devices, Inc.) Hidden

ccc-utility64 (Version: 2013.0802.345.4821 - Advanced Micro Devices, Inc.) Hidden

CCleaner (HKLM\...\CCleaner) (Version: 4.18 - Piriform)

Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)

Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)

Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)

CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.3.2921 - CyberLink Corp.)

CyberLink Power2Go 8 (x32 Version: 8.0.3.2921 - CyberLink Corp.) Hidden

CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.2.3115 - CyberLink Corp.)

CyberLink PowerDVD 12 (x32 Version: 12.0.2.3115 - CyberLink Corp.) Hidden

CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.2.1.4224 - CyberLink Corp.)

CyberLink YouCam (x32 Version: 4.2.1.4224 - CyberLink Corp.) Hidden

Definition Update for Microsoft Office 2010 (KB2910899) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{C8358E8D-6C89-41B3-8439-FEFBC0353D81}) (Version:  - Microsoft)

DiskCheckup v3.2 (HKLM-x32\...\DiskCheckup_is1) (Version: 3.2.1000 - PassMark Software)

Document Express DjVu Plug-in (HKLM-x32\...\{6917F75F-9CB8-4FC5-AA62-480B0C104619}) (Version: 6.1.33592 - Cuminas Corporation)

Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company)

File Association Helper (HKLM\...\{C168639F-5810-4EC8-B1E8-0251AA8A771C}) (Version: 1.2.225.65451 - WinZip Computing International, LLC)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)

Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden

HD Tune 2.55 (HKLM-x32\...\HD Tune_is1) (Version:  - EFD Software)

Hewlett-Packard ACLM.NET v1.2.2.2 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden

HP 3D DriveGuard (HKLM-x32\...\{07F6DC37-0857-4B68-A675-4E35989E85E3}) (Version: 6.0.15.1 - Hewlett-Packard Company)

HP Client Security Manager (HKLM\...\HPProtectTools) (Version: 8.2.0.1663 - Hewlett-Packard Company)

HP Client Security Manager (Version: 8.2.0.1663 - Hewlett-Packard Company) Hidden

HP Connection Manager (HKLM-x32\...\{7ED7BF91-D145-480A-B206-6891576F6935}) (Version: 4.6.12.1 - Hewlett-Packard Company)

HP Customer Experience Enhancements (x32 Version: 6.0.1.8 - Hewlett-Packard) Hidden

HP Device Access Manager (HKLM\...\{9F7FF800-8C11-4741-8D20-92E43CA02FD6}) (Version: 8.2.0.10 - Hewlett-Packard Company)

HP Documentation (HKLM-x32\...\{7940DAB9-AC72-4422-8908-DCF58C2C1D21}) (Version: 1.1.0.0 - Hewlett-Packard)

HP Drive Encryption (HKLM\...\HPDriveEncryption) (Version: 8.6.1.160 - Hewlett-Packard Company)

HP Drive Encryption (Version: 8.6.1.160 - Hewlett-Packard Company) Hidden

HP ESU for Microsoft Windows 7 (HKLM-x32\...\{240B2BF7-E7E6-425C-A2A4-A3149189BF7F}) (Version: 2.3.1 - Hewlett-Packard Company)

HP File Sanitizer (HKLM-x32\...\{547607B0-3294-4ECA-8F5E-921404676CBB}) (Version: 8.4.11.1 - Hewlett-Packard Company)

HP HD Webcam Driver (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10242 - Realtek Semiconductor Corp.)

HP Hotkey Support (HKLM-x32\...\{C807BEFB-0F17-41AC-B307-D7B5E1553040}) (Version: 5.0.20.1 - Hewlett-Packard Company)

HP PageLift (HKLM-x32\...\{708ABF62-5D7A-4550-823A-1F9EFA63645A}) (Version: 1.0.11.1 - Hewlett-Packard Company)

HP Postscript Converter (Version: 4.5.12120 - Hewlett-Packard) Hidden

HP Setup (HKLM-x32\...\{438363A8-F486-4C37-834C-4955773CB3D3}) (Version: 9.1.15453.4066 - Hewlett-Packard Company)

HP SoftPaq Download Manager (HKLM-x32\...\{5C2D96B7-0468-4450-8BD9-63AB796D72CF}) (Version: 3.4.11.0 - Hewlett-Packard Company)

HP Software Setup (HKLM-x32\...\{7EF08127-4C30-4C05-8CEB-544F8A71C080}) (Version: 8.7.1.1 - Hewlett-Packard Company)

HP Support Assistant (HKLM-x32\...\{A3B64280-DE4C-40F0-86BB-CCB2A6056BA2}) (Version: 7.3.32.6 - Hewlett-Packard Company)

HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 13.00.0000 - Hewlett-Packard)

HP System Default Settings (HKLM-x32\...\{3A61A282-4F08-4D43-920C-DC30ECE528E8}) (Version: 2.6.1 - Hewlett-Packard Company)

HP Theft Recovery (HKLM-x32\...\InstallShield_{BAC712C6-4061-4C9F-AB58-A5C53E76704A}) (Version: 8.2.0.9 - Hewlett-Packard Company)

HP Theft Recovery (x32 Version: 8.2.0.9 - Hewlett-Packard Company) Hidden

HP Trust Circles (HKLM-x32\...\HP Trust Circles) (Version: 8.2.15.16418 - CryptoMill Technologies)

HP Trust Circles (Version: 8.2.15.16418 - CryptoMill Technologies Ltd.) Hidden

IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6486.0 - IDT)

Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.12.1688 - Intel Corporation)

Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.18.10.3272 - Intel Corporation)

Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.7.3.1001 - Intel Corporation)

Intel® Rapid Storage Technology (Version: 12.7.3.1001 - Intel Corporation) Hidden

Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 3.0.0.66956 - Intel Corporation)

Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)

Intel® Trusted Connect Service Client (Version: 1.28.487.1 - Intel Corporation) Hidden

Java 7 Update 67 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F03217067FF}) (Version: 7.0.670 - Oracle)

Java 8 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)

Java Auto Updater (x32 Version: 2.8.25.18 - Oracle Corporation) Hidden

Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)

Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)

Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden

Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)

Microsoft Office Access MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Access Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Excel MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Groove MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office InfoPath MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office OneNote MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Outlook MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office PowerPoint MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)

Microsoft Office Professional Plus 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (Spanish) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proofing (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Publisher MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared Setup Metadata MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Word MUI (English) 2010 (x32 Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Security Client (Version: 4.6.0305.0 - Microsoft Corporation) Hidden

Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.6.305.0 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.50727 (Version: 11.0.50727 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden

Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (x32 Version: 11.0.51106 - Microsoft Corporation) Hidden

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50908 - Microsoft Corporation) Hidden

Mozilla Firefox 34.0.5 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 34.0.5 (x86 en-US)) (Version: 34.0.5 - Mozilla)

Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)

OEM Application Profile (HKLM-x32\...\{CCBD6679-C7CF-2030-2A1F-3640781DF4F4}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)

opensource (x32 Version: 1.0.14960.3876 - Your Company Name) Hidden

PDF Complete Corporate Edition (HKLM-x32\...\PDF Complete) (Version: 4.1.50 - PDF Complete, Inc)

PX Profile Update (x32 Version: 1.00.1. - AMD) Hidden

Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.0.230 - Qualcomm Atheros Communications)

Qualcomm Atheros Driver Installation Program (HKLM-x32\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 10.0 - Qualcomm Atheros)

Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 1.1.9200.18 - Realtek Semiconductor Corp.)

Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.73.618.2013 - Realtek)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32 Version:  - Microsoft) Hidden

Skype™ 6.11 (HKLM-x32\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)

smartmontools (HKLM-x32\...\smartmontools) (Version: 6.2 2013-07-26 r3841 (sf-6.2-1) - )

smartmontools for Windows version 6.2-2 (HKLM-x32\...\{487E2D86-AB76-467B-8EC0-0AF89EC38F5C}_is1) (Version: 6.2-2 - Ozy de Jong)

SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 6.0.1130 - SUPERAntiSpyware.com)

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.8.3 - Synaptics Incorporated)

Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)

Update for Microsoft Excel 2010 (KB2589348) 32-Bit Edition (HKLM-x32\...\{90140000-0016-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{A7C2902F-C60B-428F-BDD7-ECE4DC0A2CA1}) (Version:  - Microsoft)

Update for Microsoft Excel 2010 (KB2589348) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{A7C2902F-C60B-428F-BDD7-ECE4DC0A2CA1}) (Version:  - Microsoft)

Update for Microsoft Excel 2010 (KB2589348) 32-Bit Edition (HKLM-x32\...\{90140000-001B-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{A7C2902F-C60B-428F-BDD7-ECE4DC0A2CA1}) (Version:  - Microsoft)

Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)

Update for Microsoft Filter Pack 2.0 (KB2878281) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{302A8FE3-EBF5-486C-A431-16A1CD914443}) (Version:  - Microsoft)

Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)

Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition (HKLM-x32\...\{90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{8BEEA2FC-D416-428A-B52A-A3ED45921151}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2553140) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{8BEEA2FC-D416-428A-B52A-A3ED45921151}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589386) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{A4F91D60-654C-4892-BFD3-0D41ADA649B6}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2597089) 32-Bit Edition (HKLM-x32\...\{90140000-006E-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{A12F43A5-CF0B-44E3-942F-2441CD442F0D}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2687275) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{0B7744D2-1FDD-4843-9987-7CE11B79F370}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2825635) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F1A20C69-9FE5-40FD-9CD5-84EABC2EF64A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2837581) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{334FB202-28D7-4BA4-8BC9-4FE4AB233EA0}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2837602) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{8158D96B-083A-4FE4-8587-B5D0F49FE4B8}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2837602) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{8158D96B-083A-4FE4-8587-B5D0F49FE4B8}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2837606) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B0D672F7-883E-4279-8E75-D97A5445AB46}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2883019) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{D1C4AD0B-CC79-41D2-8D6A-571E7B30658C}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2889818) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{CFB80344-FCBA-4C03-AD77-D49E82F14C3E}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2889828) 32-Bit Edition (HKLM-x32\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{C1954E2B-1672-4E5C-B564-F8CB2D08345B}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2910896) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{E762A933-274B-4860-B066-A39FAB0838FD}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2910896) 32-Bit Edition (HKLM-x32\...\{90140000-001F-0C0A-0000-0000000FF1CE}_Office14.PROPLUSR_{A7AA9E77-A9F4-4596-8AFD-4910FF258C3D}) (Version:  - Microsoft)

Update for Microsoft OneNote 2010 (KB2597088) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{A87EDEA3-4861-4D99-9B36-F442740F1287}) (Version:  - Microsoft)

Update for Microsoft OneNote 2010 (KB2597088) 32-Bit Edition (HKLM-x32\...\{90140000-00A1-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{26A0F874-417C-4B0A-8088-3FA53638FB49}) (Version:  - Microsoft)

Update for Microsoft OneNote 2010 (KB2597088) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{A87EDEA3-4861-4D99-9B36-F442740F1287}) (Version:  - Microsoft)

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{90140000-001A-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{DCE104A1-1875-4469-A83D-A5BFA6C4640F}) (Version:  - Microsoft)

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)

Update for Microsoft PowerPoint 2010 (KB2880517) 32-Bit Edition (HKLM-x32\...\{90140000-0018-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{DF548669-AAED-467B-A074-AE2B72A4A871}) (Version:  - Microsoft)

Update for Microsoft PowerPoint 2010 (KB2880517) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{6C727BC2-B2B9-4B03-BD7E-682EA6FA1C04}) (Version:  - Microsoft)

Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)

Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)

Update for Microsoft Visio 2010 (KB2880526) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{7B29D8B8-6A87-496C-A65E-B935E740448A}) (Version:  - Microsoft)

Update for Microsoft Visio Viewer 2010 (KB2837587) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{38CF30E4-3348-4BD1-A859-B630C355A56F}) (Version:  - Microsoft)

WD Quick View (HKLM-x32\...\{324C58C7-A292-4523-A943-91DE1EB6A1FE}) (Version: 2.4.1.9 - Western Digital Technologies, Inc.)

WD SmartWare (HKLM\...\{F6ABA2F3-9759-48CD-B25B-A07A811E92E4}) (Version: 2.4.1.9 - Western Digital Technologies, Inc.)

WD SmartWare Installer (HKLM-x32\...\{72fda14f-5a07-49d5-b7f7-202377e9b522}) (Version: 2.4.1.9 - Western Digital Technologies, Inc.)

WinRAR 5.11 beta 1 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.1 - win.rar GmbH)

========================= Memory info: ===================================

Percentage of memory in use: 31%

Total physical RAM: 8073.11 MB

Available physical RAM: 5515.04 MB

Total Pagefile: 16144.4 MB

Available Pagefile: 13531.96 MB

Total Virtual: 4095.88 MB

Available Virtual: 3974.43 MB

========================= Partitions: =====================================

1 Drive c: (Windows) (Fixed) (Total:683.66 GB) (Free:495.26 GB) NTFS

2 Drive d: (HP_RECOVERY) (Fixed) (Total:11.97 GB) (Free:1.31 GB) NTFS

3 Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.99 GB) FAT32

========================= Users: ========================================

User accounts for \\ADMIN-HP

Admin                    Administrator            Brenden-non admin       

Guest                   

 

========================= Minidump Files ==================================

 

No minidump file found

 

========================= Restore Points ==================================

 

12-12-2014 08:28:27 Windows Update

16-12-2014 03:34:21 Windows Update

19-12-2014 11:36:23 Windows Update

23-12-2014 13:01:08 Windows Update

26-12-2014 22:51:15 Windows Update

30-12-2014 13:28:26 Windows Update

**** End of log ****



#11 seraphin

seraphin
  • Topic Starter

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Local time:11:08 AM

Posted 01 January 2015 - 07:55 PM

a few notes -

1. TDSSKiller report said the computer was clean when I used the default parameters. It would only report HP Support Assistant Service as being suspcious when I check additional two options (1) Verify file digital signatures & (2) Detect TDLFS file system.

2. my AdwCleaner only has "Scan", no "Search". I assume "Search" was a typo.

3. I used pre-existing versions (already in my laptop) of TDSSKiller, AdwCleaner, MiniToolBox to run the analyses. I did not click on the links you provided to download the latest (?) version.

4. It's weird tha the new MiniToolBox report did not find the "Search Protection" from Spigot.

 

Please advise how to proceed. Thank you again.



#12 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:02:08 PM

Posted 03 January 2015 - 06:03 AM

Hi

The unsigned file in TDSSkiller log can be ignored.

:step1:

Roguekiller should only be used under the guidance of trained professionals. Please do not use this going forward unless requested.

:step2:

Going over your logs I noticed that you have utorrent installed.

  • Avoid peer-to-peer (P2P) file sharing programs.
  • They are a security risk which can make your computer susceptible to a wide variety of malware infections, remote attacks, exposure of personal information, and identity theft. Many malicious worms and Trojans spread across P2P file sharing networks, gaming and underground sites.  
  • P2p programs share a directory or set of directories on your computer to the world. Anyone can type in a search, and potentially download something from your computer. This makes the machine an open web server -- massively increasing the attack surface of the machine.
  • To reduce the risk of infection avoid using any P2P applications.

It is pretty much certain that if you continue to use P2P programs, you will get infected again.
I would recommend that you uninstall utorrent, however that choice is up to you.

If you choose to remove these programs, you can do so via:



  • Click the "Windows Orb" button - start%20orb%20normal_thumb.png.
  • Click Control Panel then Programs and Features..

If you wish to keep it, please do not use it until your computer is cleaned.

:step3:

Use the Windows Error Checking utility (Check Disk), with the options to fix file system errors and scan the disk surface for errors, attempt recovery of data and repair the disk:
 


  • Click the "Windows Orb" Start button, then click Computer.
  • Right-click on the drive that you wish to check > Properties > Tools tab
  • In the "Error checking" section, click on Check now.
  • Place a checkmark in both boxes > Start.
  • If the disk you have chosen is the Windows system disk:
  • A message will notify you that a restart is necessary ask "Do you want to check for hard disk errors the next time you start your computer?".
  • Click Schedule disk check > OK and close all windows.
  • Re-start the computer. The disk will be checked when the system boots.
  • This will take some time to run and at times may appear stalled but just let it run.
  • When the disk check is complete, the system will re-start automatically and load Windows.

 
A log of the disk check is recorded only if the scheduled re-start is used, and only for drives on the same HDD as the Operating System.
To open the log:
 

  • Click the "Windows Orb" Start button ->  type "eventvwr" without the quotes -> press the <ENTER> key.
  • The Event Viewer window will open.
  • In the left pane, expand "Windows Logs" and then click on Application.
  • In the right pane, at the top, click on the column heading Source to sort the list alphabetically.
  • Look in the Source column for "Wininit", with an entry corresponding to the date and time of the disk check.
  • Click on that Wininit entry to select it.
  • On the top main menu, click Action > Copy > Copy Details as Text.
  • Paste the contents into your next reply.

:step4:

How is the computer running now?

 


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#13 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:02:08 PM

Posted 06 January 2015 - 07:22 PM

Hi it has been 4 days since my previous post. Do you still need help?


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog


#14 seraphin

seraphin
  • Topic Starter

  • Members
  • 118 posts
  • OFFLINE
  •  
  • Local time:11:08 AM

Posted 07 January 2015 - 09:49 AM

HI. Thanks a lot for getting back to me. Strange that I did what you suggested but didn't get the notification. Sorry for the late reply.

Two quick things -

1. there has been no major issue noticed when I run the computer

2. regarding malwarebyte anti-malware's scan history, it shows all quarantined programs that have been identified in the laptop. Could I "delete" them, or just keep them in quarantine? The concern is - is it likely that some programs are "false positive" which should not have been quarantined/deleted?

 

Will post the log once I run the check disc. Thank you again.



#15 dev00790

dev00790

    Bleeping Chocoholic


  • Members
  • 5,037 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:UK
  • Local time:02:08 PM

Posted 07 January 2015 - 04:19 PM

Hi
 

2. regarding malwarebyte anti-malware's scan history, it shows all quarantined programs that have been identified in the laptop. Could I "delete" them, or just keep them in quarantine? The concern is - is it likely that some programs are "false positive" which should not have been quarantined/deleted?

Please post the malwarebytes log and we can advise re the entries in it.


Regards, dev00790

---------------------------------------

Marge: "Homer, the plant called. They said if you don't show up tomorrow don't bother showing up on Monday." Homer: "Woo-hoo! Four-day weekend!"I do not reply to Private Messages (PMs) asking for assistance - please use the forums instead. If I have been helping you, and I have not replied to your latest post in 48 hours please send me a PM. My Blog





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users