Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected? - IE pages are opening blank - Adaware scaned


  • Please log in to reply
10 replies to this topic

#1 bkloos

bkloos

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:36 AM

Posted 27 January 2015 - 09:23 PM

Hey Guys,

 

I think I've gotten a bug.  I was doing some speed tests and downloaded something and now my machine is acting up.

 

Windows 8.1

 

Adaware scan found a bunch of files that were quarantined.  Yahoo search became my new IE opening page.

When I try to open pages from a google search sometimes the new window shows blank.

 

I'm not sure what to do or how to dig deeper.

 

All help is greatly appreciated.

 

Thanks,

 

Bryan

 



BC AdBot (Login to Remove)

 


m

#2 bkloos

bkloos
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:36 AM

Posted 27 January 2015 - 09:25 PM

Here is the scan report:

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 1/27/2015
Scan Time: 9:11:03 PM
Logfile: scan.txt
Administrator: Yes

Version: 2.00.4.1028
Malware Database: v2015.01.28.02
Rootkit Database: v2015.01.14.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: Bryan

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 323674
Time Elapsed: 3 min, 8 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 2
PUP.Optional.FinanceAlert.A, C:\ProgramData\geMkSLsA\EGMSWhF.exe, 2336, Delete-on-Reboot, [ab1725d7286122142ba99a4f0bf6ae52]
PUP.Optional.Arcade.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatWSPrx.exe, 1776, Delete-on-Reboot, [e9d9e6161c6d4fe735d6f586de2524dc]

Modules: 7
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatSetupCert.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\libnspr4.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\libplc4.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\libplds4.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\nss3.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\nssutil3.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\smime3.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],

Registry Keys: 43
PUP.Optional.FinanceAlert.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\EGMSWhF, Quarantined, [ab1725d7286122142ba99a4f0bf6ae52],
PUP.Optional.WebSteroids.A, HKLM\SOFTWARE\CLASSES\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}, Quarantined, [a1211ae2127777bf25f8f1098f736898],
PUP.Optional.WebSteroids.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\CLSID\{051E9166-B275-4683-907B-372FAE22BC7C}, Quarantined, [a1211ae2127777bf25f8f1098f736898],
PUP.Optional.FinanceAlert.A, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\FinanceAlert, Quarantined, [09b98379fd8c8fa732a2e306ac55d22e],
PUP.Optional.InstallBrain.A, HKLM\SOFTWARE\WOW6432NODE\InstallIQ, Quarantined, [fac852aa27621026f88b15a7ee1524dc],
PUP.Optional.Arcade.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\CATWSPRX, Quarantined, [e9d9e6161c6d4fe735d6f586de2524dc],
PUP.Optional.ArcadeParlor.A, HKU\S-1-5-21-2169995315-3938276009-3233152982-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\{B74443DB-5A88-4583-860A-F0D06EF399E3}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\TYPELIB\{3029DF21-12EF-4C00-94FA-C13396C6136B}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{06EF0449-904C-4889-A1F6-2E4985B9F403}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{20A9DEDA-FDF9-4F04-8F0A-89D39BCB6CFA}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{43D8B9FA-9C87-45B9-8FD1-C8C61396D412}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{64B125F5-7773-423F-9235-F467144F8DE1}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{7CF15EBB-0783-49E6-8246-C65CE9152DA5}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{A12461E4-07B0-4715-901A-308D739DD972}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{B847921D-48FF-4D2A-9F57-BD7B18B390D7}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{BA673D09-7871-4B49-8270-C5EE26672158}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{C1F5E799-B218-4C32-B189-3C389BA140BB}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{CA00F6C3-F6FA-4A3F-BD95-1E37212A9B6E}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\CLASSES\INTERFACE\{F60C9408-3110-4C98-A139-ABE1EE1111DD}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{06EF0449-904C-4889-A1F6-2E4985B9F403}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{0FCE4F01-64EC-42F1-83E1-1E08D38605D2}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{1A2A195A-A0F9-4006-AF02-3F05EEFDE792}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{20A9DEDA-FDF9-4F04-8F0A-89D39BCB6CFA}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{43D8B9FA-9C87-45B9-8FD1-C8C61396D412}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{4C0A69B0-CE97-42B7-86FC-08280C99C74D}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{64B125F5-7773-423F-9235-F467144F8DE1}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{7CF15EBB-0783-49E6-8246-C65CE9152DA5}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{A12461E4-07B0-4715-901A-308D739DD972}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{B847921D-48FF-4D2A-9F57-BD7B18B390D7}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{BA673D09-7871-4B49-8270-C5EE26672158}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{C1F5E799-B218-4C32-B189-3C389BA140BB}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{CA00F6C3-F6FA-4A3F-BD95-1E37212A9B6E}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\INTERFACE\{F60C9408-3110-4C98-A139-ABE1EE1111DD}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, HKLM\SOFTWARE\WOW6432NODE\CLASSES\TYPELIB\{3029DF21-12EF-4C00-94FA-C13396C6136B}, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],

Registry Values: 1
PUP.Optional.Arcade.A, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\CATWSPRX|ImagePath, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatWSPrx.exe, Quarantined, [e9d9e6161c6d4fe735d6f586de2524dc]

Registry Data: 0
(No malicious items detected)

Folders: 7
PUP.Optional.FinanceAlert.A, C:\ProgramData\FinanceAlert, Quarantined, [0ab8b14b4940d75f4bed87fb699a57a9],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\LSP Installer DLL, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\UserWD, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ArcadeParlor, Quarantined, [a121db216722ab8b677ccfa8be452bd5],

Files: 62
PUP.Optional.FinanceAlert.A, C:\ProgramData\geMkSLsA\EGMSWhF.exe, Delete-on-Reboot, [ab1725d7286122142ba99a4f0bf6ae52],
PUP.Optional.FinanceAlert.A, C:\ProgramData\FinanceAlert\uninstall.exe, Quarantined, [09b98379fd8c8fa732a2e306ac55d22e],
PUP.Optional.FinanceAlert.A, C:\ProgramData\geMkSLsA\dat\sGpbPyBEszy.exe, Delete-on-Reboot, [c7fbdb212c5dd660557f4e9b24dd0000],
PUP.Optional.FinanceAlert.A, C:\ProgramData\geMkSLsA\dat\VYkwNIuXK.exe, Delete-on-Reboot, [f9c9f309abdeb87e468ec227e81927d9],
PUP.Optional.Arcade.A, C:\Windows\SysWOW64\CatWSPrx.ini, Quarantined, [645e23d98405eb4b8b8166152cd7ae52],
PUP.Optional.Arcade.A, C:\Windows\System32\CatWSPrxOff.ini, Quarantined, [9929619b8306c76f7a93cead0df69868],
PUP.Optional.Arcade.A, C:\Windows\SysWOW64\CatWSPrxOff.ini, Quarantined, [3092f20a197041f5739a3546798afc04],
PUP.Optional.Arcade.A, C:\Windows\Temp\CatWSPrx.log, Delete-on-Reboot, [863c17e5d5b4f83ed13d205b22e1dc24],
PUP.Optional.FinanceAlert.A, C:\ProgramData\FinanceAlert\uninstall.exe.config, Quarantined, [0ab8b14b4940d75f4bed87fb699a57a9],
PUP.Optional.FinanceAlert.A, C:\ProgramData\FinanceAlert\FinanceAlert.ico, Quarantined, [0ab8b14b4940d75f4bed87fb699a57a9],
PUP.Optional.ArcadeParlor.A, C:\Windows\System32\Tasks\ArcadeParlor, Quarantined, [ecd67c802b5eb2843dd23c64c241fb05],
PUP.Optional.ArcadeParlor.A, C:\Windows\Tasks\ArcadeParlor.job, Quarantined, [22a05aa2d8b1bf77f2468f5e10f4f10f],
PUP.Optional.Arcade.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatWSPrx.exe, Delete-on-Reboot, [e9d9e6161c6d4fe735d6f586de2524dc],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\ap.config, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatHelper.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatHelper.exe, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\removal.exe, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\versioncheck.exe, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatRegW8.exe, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatRegWXP.exe, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatRegWXP.ini, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatRegWXP64.exe, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatSetupCert.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatWSPrx.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatWSPrx.tlb, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatWSPrx64.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatWSw8.sys, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\CatWSw864.sys, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\freebl3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\libnspr4.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\libplc4.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\libplds4.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\nss3.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\nssckbi.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\nssdbm3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\nssutil3.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\PCProxy.tlb, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\smime3.dll, Delete-on-Reboot, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\softokn3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\sqlite3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\ssl3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\LSP Installer DLL\InstallDLL.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\LSP Installer DLL\InstallDLL64.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\UserWD\CatWSWD.exe, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\UserWD\CatWSWDHelper.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\UserWD\CatWSWDSupport.exe, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\CatSetupCert.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\CatWSPrx.exe, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\freebl3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\libnspr4.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\libplc4.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\libplds4.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\nss3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\nssckbi.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\nssdbm3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\nssutil3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\smime3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\softokn3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\sqlite3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Local\ArcadeParlor\CatWs\x64\ssl3.dll, Quarantined, [259dc13bc0c92e08473ce360b94a7d83],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ArcadeParlor\Play ArcadeParlor Online.url, Quarantined, [a121db216722ab8b677ccfa8be452bd5],
PUP.Optional.ArcadeParlor.A, C:\Users\Bryan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ArcadeParlor\Uninstall ArcadeParlor.lnk, Quarantined, [a121db216722ab8b677ccfa8be452bd5],

Physical Sectors: 0
(No malicious items detected)



#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:36 AM

Posted 27 January 2015 - 10:27 PM

Welcome bkloos, also run these and see how it is.

A reboot was needed after that MBAM scan to complete removal.


3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
  • SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
  • lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • cvMlKv6.pngESET Online Scanner
  • Hold down Control and click on this link to open ESET Online Scanner in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE: Sometimes if ESET finds no infections it will not create a log.
  • [/list]

Edited by boopme, 27 January 2015 - 10:28 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 bkloos

bkloos
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:36 AM

Posted 01 February 2015 - 07:56 PM

MiniToolBox by Farbar  Version: 30-11-2014
Ran by Bryan (administrator) on 27-01-2015 at 21:40:07
Running from "C:\Users\Bryan\Desktop"
Microsoft Windows 8.1 Pro  (X64)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.
========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Intel® Ethernet Connection I217-V = Ethernet (Connected)
Intel® Dual Band Wireless-AC 7260 = Wi-Fi (Media disconnected)
Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30) = Ethernet 2 (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : OfficePC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Local Area Connection* 3:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : A0-A8-CD-C6-00-C1
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : A0-A8-CD-C6-00-C4
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
   Physical Address. . . . . . . . . : FC-AA-14-27-C2-1C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Ethernet Connection I217-V
   Physical Address. . . . . . . . . : FC-AA-14-27-C2-1E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::46a:bc8e:3e9f:243a%4(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.112(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, January 27, 2015 9:16:23 PM
   Lease Expires . . . . . . . . . . : Wednesday, January 28, 2015 9:16:23 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 83667476
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1C-36-96-AE-FC-AA-14-27-C2-1E
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wi-Fi:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Intel® Dual Band Wireless-AC 7260
   Physical Address. . . . . . . . . : A0-A8-CD-C6-00-C0
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{1BFD6A55-364C-49D2-8221-85D4CDCFDB22}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:3cb3:28b1:3f57:fe8f(Preferred)
   Link-local IPv6 Address . . . . . : fe80::3cb3:28b1:3f57:fe8f%10(Preferred)
   Default Gateway . . . . . . . . . : ::
   DHCPv6 IAID . . . . . . . . . . . : 419430400
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1C-36-96-AE-FC-AA-14-27-C2-1E
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  Linksys20920
Address:  192.168.1.1

Name:    google.com
Addresses:  2607:f8b0:4006:80b::1000
   167.206.145.183
   167.206.145.162
   167.206.145.158
   167.206.145.167
   167.206.145.173
   167.206.145.157
   167.206.145.177
   167.206.145.168
   167.206.145.182
   167.206.145.178
   167.206.145.163
   167.206.145.172
   167.206.145.153
   167.206.145.187
   167.206.145.148
   167.206.145.152

Pinging google.com [167.206.145.152] with 32 bytes of data:
Reply from 167.206.145.152: bytes=32 time=26ms TTL=59
Reply from 167.206.145.152: bytes=32 time=25ms TTL=59

Ping statistics for 167.206.145.152:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 25ms, Maximum = 26ms, Average = 25ms
Server:  Linksys20920
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.139.183.24
   206.190.36.45
   98.138.253.109

Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=69ms TTL=50
Reply from 98.138.253.109: bytes=32 time=67ms TTL=50

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 67ms, Maximum = 69ms, Average = 68ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  8...a0 a8 cd c6 00 c1 ......Microsoft Wi-Fi Direct Virtual Adapter
  7...a0 a8 cd c6 00 c4 ......Bluetooth Device (Personal Area Network)
  5...fc aa 14 27 c2 1c ......Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
  4...fc aa 14 27 c2 1e ......Intel® Ethernet Connection I217-V
  3...a0 a8 cd c6 00 c0 ......Intel® Dual Band Wireless-AC 7260
  1...........................Software Loopback Interface 1
  9...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 10...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.112     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.112    266
    192.168.1.112  255.255.255.255         On-link     192.168.1.112    266
    192.168.1.255  255.255.255.255         On-link     192.168.1.112    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.112    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.112    266
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 10    306 ::/0                     On-link
  1    306 ::1/128                  On-link
 10    306 2001::/32                On-link
 10    306 2001:0:9d38:6abd:3cb3:28b1:3f57:fe8f/128
                                    On-link
  4    266 fe80::/64                On-link
 10    306 fe80::/64                On-link
  4    266 fe80::46a:bc8e:3e9f:243a/128
                                    On-link
 10    306 fe80::3cb3:28b1:3f57:fe8f/128
                                    On-link
  1    306 ff00::/8                 On-link
  4    266 ff00::/8                 On-link
 10    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/27/2015 07:41:03 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (01/26/2015 05:58:16 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80070005

Error: (01/25/2015 02:26:13 AM) (Source: Microsoft-Windows-Defrag) (User: )
Description: The volume System Reserved was not optimized because an error was encountered: The parameter is incorrect. (0x80070057)

Error: (01/24/2015 04:35:32 AM) (Source: Microsoft-Windows-Defrag) (User: )
Description: The volume System Reserved was not optimized because an error was encountered: The parameter is incorrect. (0x80070057)

Error: (01/23/2015 04:58:43 AM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (01/19/2015 02:26:43 AM) (Source: Microsoft-Windows-Defrag) (User: )
Description: The volume System Reserved was not optimized because an error was encountered: The parameter is incorrect. (0x80070057)

Error: (01/15/2015 04:49:29 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (01/12/2015 04:06:49 PM) (Source: Microsoft-Windows-Defrag) (User: )
Description: The volume System Reserved was not optimized because an error was encountered: The parameter is incorrect. (0x80070057)

Error: (01/06/2015 09:32:29 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.
.

Error: (01/06/2015 07:57:35 AM) (Source: Microsoft-Windows-Defrag) (User: )
Description: The volume System Reserved was not optimized because an error was encountered: The parameter is incorrect. (0x80070057)

System errors:
=============
Error: (01/27/2015 07:02:00 PM) (Source: Service Control Manager) (User: )
Description: The Windows Modules Installer service terminated with the following error:
%%16389

Error: (01/22/2015 05:16:15 PM) (Source: nvlddmkm) (User: )
Description: \Device\Video313e9(1f24) 00000000 00000000

Error: (01/06/2015 00:20:28 PM) (Source: BugCheck) (User: )
Description: 0x000000d1 (0xffffe010f1f3c2c8, 0x0000000000000002, 0x0000000000000001, 0xfffff8004b2a7f6e)C:\Windows\MEMORY.DMP010615-9000-01

Error: (01/06/2015 00:20:26 PM) (Source: EventLog) (User: )
Description: The previous system shutdown at 8:47:18 AM on ‎1/‎6/‎2015 was unexpected.

Error: (01/06/2015 00:20:17 PM) (Source: Microsoft-Windows-Kernel-Boot) (User: NT AUTHORITY)
Description: 32212254734793561460574016

Error: (01/02/2015 09:53:37 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT AUTHORITY)
Description: Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Windows Defender - KB2267602 (Definition 1.191.1373.0).

Error: (12/30/2014 09:49:36 PM) (Source: Service Control Manager) (User: )
Description: The Superfetch service terminated with the following error:
%%1062

Error: (01/01/2015 00:42:42 AM) (Source: Service Control Manager) (User: )
Description: The Network List Service service terminated with the following error:
%%21

Error: (01/01/2015 00:42:40 AM) (Source: Service Control Manager) (User: )
Description: The IP Helper service terminated with the following error:
%%1058

Error: (01/01/2015 00:42:29 AM) (Source: volmgr) (User: )
Description: Crash dump initialization failed!

Microsoft Office Sessions:
=========================
Error: (01/27/2015 07:41:03 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (01/26/2015 05:58:16 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80070005

Error: (01/25/2015 02:26:13 AM) (Source: Microsoft-Windows-Defrag)(User: )
Description: System ReservedThe parameter is incorrect. (0x80070057)

Error: (01/24/2015 04:35:32 AM) (Source: Microsoft-Windows-Defrag)(User: )
Description: System ReservedThe parameter is incorrect. (0x80070057)

Error: (01/23/2015 04:58:43 AM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (01/19/2015 02:26:43 AM) (Source: Microsoft-Windows-Defrag)(User: )
Description: System ReservedThe parameter is incorrect. (0x80070057)

Error: (01/15/2015 04:49:29 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (01/12/2015 04:06:49 PM) (Source: Microsoft-Windows-Defrag)(User: )
Description: System ReservedThe parameter is incorrect. (0x80070057)

Error: (01/06/2015 09:32:29 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.

System Error:
Access is denied.

Error: (01/06/2015 07:57:35 AM) (Source: Microsoft-Windows-Defrag)(User: )
Description: System ReservedThe parameter is incorrect. (0x80070057)

 

=========================== Installed Programs ============================
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Refresh Manager (x32 Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Geeks3D FurMark 1.15.1.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version:  - Geeks3D)
Intel Processor Diagnostic Tool 64bit (HKLM\...\{F24BC99D-3FC1-4503-BEFA-5DDD16C6265A}) (Version: 2.20.0.0 - Intel Corporation)
Intel® Chipset Device Software (Version: 10.0.13 - Intel Corporation) Hidden
Intel® Chipset Device Software (x32 Version: 10.0.13 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel® Management Engine Components (Version: 1.0.0.0 - Intel Corporation) Hidden
Intel® Management Engine Components (Version: 10.0.0.1204 - Intel Corporation) Hidden
Intel® Network Connections 18.8.136.0 (HKLM\...\PROSetDX) (Version: 18.8.136.0 - Intel)
Intel® Network Connections 18.8.136.0 (Version: 18.8.136.0 - Intel) Hidden
Intel® PRO/Wireless Driver (Version: 17.00.3000.1542 - Intel Corporation) Hidden
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3960 - Intel Corporation)
Intel® PROSet/Wireless Software for Bluetooth® Technology(patch version 17.0.1419.2) (HKLM\...\{302600C1-6BDF-4FD1-1405-148929CC1385}) (Version: 17.0.1405.0464 - Intel Corporation)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)
Intel® Rapid Storage Technology (Version: 13.0.3.1001 - Intel Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{21de8cfa-6d1e-4bb2-bbe2-0bc64e82d547}) (Version: 17.0.3 - Intel Corporation)
Intel® PROSet/Wireless WiFi Software (Version: 17.0.3.0372 - Intel Corporation) Hidden
Intel® Trusted Connect Service Client (Version: 1.35.127.1 - Intel Corporation) Hidden
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Office Home and Student 2013 - en-us (HKLM\...\HomeStudentRetail - en-us) (Version: 15.0.4675.1003 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.3.1229.0918 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MSI Afterburner 2.3.1 (HKLM-x32\...\Afterburner) (Version: 2.3.1 - MSI Co., LTD)
MSI GamingApp (HKLM-x32\...\{E0229316-E73B-484B-B9E0-45098AB38D8C}}_is1) (Version: 1.0.0.18 - MSI)
NVIDIA 3D Vision Controller Driver 347.09 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 347.09 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 347.25 - NVIDIA Corporation)
NVIDIA Control Panel 347.25 (Version: 347.25 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 2.2.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.2.2 - NVIDIA Corporation)
NVIDIA GeForce Experience Service (Version: 17.12.8 - NVIDIA Corporation) Hidden
NVIDIA Graphics Driver 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 347.25 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.33.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.33.0 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.172.1359 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Miracast Virtual Audio 347.25 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 347.25 - NVIDIA Corporation)
NVIDIA Network Service (Version: 2.2 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.14.0702 - NVIDIA Corporation) Hidden
NVIDIA PhysX System Software 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
NVIDIA ShadowPlay 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update 17.12.8 (Version: 17.12.8 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 17.12.8 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.27 (Version: 1.2.27 - NVIDIA Corporation) Hidden
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
ProMash (HKLM-x32\...\{491EAC1A-8ECB-45D5-97D1-0583D5676914}) (Version: 1.8.a - Sausalito Brewing Co.)
Qualcomm Atheros Inc.® AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7256 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.0.1000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 17.12.8 - NVIDIA Corporation) Hidden

========================= Devices: ================================

========================= Memory info: ===================================

Percentage of memory in use: 13%
Total physical RAM: 16245.55 MB
Available physical RAM: 14022.39 MB
Total Pagefile: 32629.55 MB
Available Pagefile: 30057.61 MB
Total Virtual: 4095.88 MB
Available Virtual: 3984.2 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:223.23 GB) (Free:169.71 GB) NTFS
3 Drive e: (Office HDD) (Fixed) (Total:931.51 GB) (Free:930.44 GB) NTFS

========================= Users: ========================================

User accounts for \\OFFICEPC

Administrator            Bryan                    Guest                   

========================= Restore Points ==================================

07-01-2015 02:32:28 Installed ProMash
15-01-2015 21:49:29 Windows Update
23-01-2015 09:58:43 Scheduled Checkpoint
28-01-2015 00:41:02 Installed Intel Processor Diagnostic Tool 64bit.

**** End of log ****


19:37:52.0506 0x17fc  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
19:37:55.0350 0x17fc  ============================================================
19:37:55.0350 0x17fc  Current date / time: 2015/02/01 19:37:55.0350
19:37:55.0350 0x17fc  SystemInfo:
19:37:55.0350 0x17fc 
19:37:55.0350 0x17fc  OS Version: 6.3.9600 ServicePack: 0.0
19:37:55.0350 0x17fc  Product type: Workstation
19:37:55.0350 0x17fc  ComputerName: OFFICEPC
19:37:55.0350 0x17fc  UserName: Bryan
19:37:55.0350 0x17fc  Windows directory: C:\Windows
19:37:55.0350 0x17fc  System windows directory: C:\Windows
19:37:55.0350 0x17fc  Running under WOW64
19:37:55.0350 0x17fc  Processor architecture: Intel x64
19:37:55.0350 0x17fc  Number of processors: 8
19:37:55.0350 0x17fc  Page size: 0x1000
19:37:55.0350 0x17fc  Boot type: Normal boot
19:37:55.0350 0x17fc  ============================================================
19:37:55.0459 0x17fc  KLMD registered as C:\Windows\system32\drivers\05252817.sys
19:37:55.0568 0x17fc  System UUID: {1A08B0AE-BB03-75DC-C138-1D0B64B0EC15}
19:37:55.0897 0x17fc  Drive \Device\Harddisk0\DR0 - Size: 0x37E4896000 ( 223.57 Gb ), SectorSize: 0x200, Cylinders: 0x7201, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:37:55.0897 0x17fc  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
19:37:55.0897 0x17fc  ============================================================
19:37:55.0897 0x17fc  \Device\Harddisk0\DR0:
19:37:55.0897 0x17fc  MBR partitions:
19:37:55.0897 0x17fc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xAF000
19:37:55.0897 0x17fc  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xAF800, BlocksNum 0x1BE74000
19:37:55.0897 0x17fc  \Device\Harddisk1\DR1:
19:37:55.0897 0x17fc  MBR partitions:
19:37:55.0897 0x17fc  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
19:37:55.0897 0x17fc  ============================================================
19:37:55.0897 0x17fc  C: <-> \Device\Harddisk0\DR0\Partition2
19:37:56.0490 0x17fc  E: <-> \Device\Harddisk1\DR1\Partition1
19:37:56.0490 0x17fc  ============================================================
19:37:56.0490 0x17fc  Initialize success
19:37:56.0490 0x17fc  ============================================================
19:38:06.0207 0x115c  ============================================================
19:38:06.0207 0x115c  Scan started
19:38:06.0207 0x115c  Mode: Manual;
19:38:06.0207 0x115c  ============================================================
19:38:06.0207 0x115c  KSN ping started
19:38:08.0565 0x115c  KSN ping finished: true
19:38:08.0674 0x115c  ================ Scan system memory ========================
19:38:08.0674 0x115c  System memory - ok
19:38:08.0674 0x115c  ================ Scan services =============================
19:38:08.0706 0x115c  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\Windows\System32\drivers\1394ohci.sys
19:38:08.0721 0x115c  1394ohci - ok
19:38:08.0721 0x115c  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\Windows\system32\drivers\3ware.sys
19:38:08.0721 0x115c  3ware - ok
19:38:08.0748 0x115c  [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:38:08.0748 0x115c  ACPI - ok
19:38:08.0748 0x115c  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\Windows\system32\Drivers\acpiex.sys
19:38:08.0764 0x115c  acpiex - ok
19:38:08.0764 0x115c  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\Windows\System32\drivers\acpipagr.sys
19:38:08.0764 0x115c  acpipagr - ok
19:38:08.0764 0x115c  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\Windows\System32\drivers\acpipmi.sys
19:38:08.0764 0x115c  AcpiPmi - ok
19:38:08.0779 0x115c  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\Windows\System32\drivers\acpitime.sys
19:38:08.0779 0x115c  acpitime - ok
19:38:08.0779 0x115c  [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:38:08.0795 0x115c  AdobeARMservice - ok
19:38:08.0811 0x115c  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\Windows\system32\drivers\ADP80XX.SYS
19:38:08.0811 0x115c  ADP80XX - ok
19:38:08.0826 0x115c  [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:38:08.0826 0x115c  AeLookupSvc - ok
19:38:08.0842 0x115c  [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD             C:\Windows\system32\drivers\afd.sys
19:38:08.0842 0x115c  AFD - ok
19:38:08.0842 0x115c  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\Windows\system32\drivers\agp440.sys
19:38:08.0842 0x115c  agp440 - ok
19:38:08.0857 0x115c  [ F0CB6DB513CAC393D04A0FCE0A59E1BF, E6EE159D0E6B1F666946B1FE421874044E89BB2EB60A521BAA111A1229FA7B2D ] ahcache         C:\Windows\system32\DRIVERS\ahcache.sys
19:38:08.0857 0x115c  ahcache - ok
19:38:08.0857 0x115c  [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG             C:\Windows\System32\alg.exe
19:38:08.0857 0x115c  ALG - ok
19:38:08.0873 0x115c  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\Windows\System32\drivers\amdk8.sys
19:38:08.0873 0x115c  AmdK8 - ok
19:38:08.0873 0x115c  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\Windows\System32\drivers\amdppm.sys
19:38:08.0889 0x115c  AmdPPM - ok
19:38:08.0893 0x115c  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:38:08.0893 0x115c  amdsata - ok
19:38:08.0893 0x115c  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
19:38:08.0893 0x115c  amdsbs - ok
19:38:08.0893 0x115c  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:38:08.0893 0x115c  amdxata - ok
19:38:08.0908 0x115c  [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID           C:\Windows\system32\drivers\appid.sys
19:38:08.0908 0x115c  AppID - ok
19:38:08.0908 0x115c  [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:38:08.0908 0x115c  AppIDSvc - ok
19:38:08.0908 0x115c  [ 034ED41F13D9C1845C1E081F05B640DB, E4E17BA0B22C464DE60A6BF68D4D035D1B838DE4F0361029DED1AE00503E135C ] Appinfo         C:\Windows\System32\appinfo.dll
19:38:08.0908 0x115c  Appinfo - ok
19:38:08.0924 0x115c  [ 8176FBA685178FB0F52D46693474FA50, 69FE3692C7FE24289A479ADD74F2C782B59A099B7B07FE5ACFC4DA899E40BFDE ] AppMgmt         C:\Windows\System32\appmgmts.dll
19:38:08.0924 0x115c  AppMgmt - ok
19:38:08.0924 0x115c  [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness    C:\Windows\system32\AppReadiness.dll
19:38:08.0939 0x115c  AppReadiness - ok
19:38:08.0955 0x115c  [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc         C:\Windows\system32\appxdeploymentserver.dll
19:38:08.0971 0x115c  AppXSvc - ok
19:38:08.0971 0x115c  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
19:38:08.0971 0x115c  arcsas - ok
19:38:08.0986 0x115c  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\Windows\system32\drivers\atapi.sys
19:38:08.0986 0x115c  atapi - ok
19:38:08.0986 0x115c  [ 8779FDAE68BC948B0FE152E758CC8DA7, 13070C2073F8E7546B48AE9CF54067B9BB75DFCD98F2987B90FFAD20D40D54CF ] AudioEndpointBuilder C:\Windows\System32\AudioEndpointBuilder.dll
19:38:08.0986 0x115c  AudioEndpointBuilder - ok
19:38:09.0002 0x115c  [ 61EA45A645854FE81D8A924E2D93DFFE, 34F79532297F609CA93C380B68BB8B7B0F027F9C8F4FB8E02A9A43EA3D155F1B ] Audiosrv        C:\Windows\System32\Audiosrv.dll
19:38:09.0018 0x115c  Audiosrv - ok
19:38:09.0018 0x115c  [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:38:09.0018 0x115c  AxInstSV - ok
19:38:09.0033 0x115c  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
19:38:09.0033 0x115c  b06bdrv - ok
19:38:09.0033 0x115c  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\Windows\System32\drivers\BasicDisplay.sys
19:38:09.0049 0x115c  BasicDisplay - ok
19:38:09.0049 0x115c  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\Windows\System32\drivers\BasicRender.sys
19:38:09.0049 0x115c  BasicRender - ok
19:38:09.0049 0x115c  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\Windows\System32\drivers\bcmfn2.sys
19:38:09.0049 0x115c  bcmfn2 - ok
19:38:09.0064 0x115c  [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:38:09.0064 0x115c  BDESVC - ok
19:38:09.0064 0x115c  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\Windows\system32\drivers\Beep.sys
19:38:09.0064 0x115c  Beep - ok
19:38:09.0080 0x115c  [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE             C:\Windows\System32\bfe.dll
19:38:09.0096 0x115c  BFE - ok
19:38:09.0111 0x115c  [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS            C:\Windows\System32\qmgr.dll
19:38:09.0127 0x115c  BITS - ok
19:38:09.0143 0x115c  [ FEFF60CA0FBC86A043495FA79581CEA9, E8C4762AB9168C59DE6BABF6CEF5D02918D79F255FA86E7EA4324384C91733D0 ] Bluetooth Device Monitor C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
19:38:09.0158 0x115c  Bluetooth Device Monitor - ok
19:38:09.0174 0x115c  [ 075D93A7094E1BCBDE3A2D8EBA803745, 9E141EB26358D5B526D30A224DBF4EBE00EFAA19A78A22881AAF5E51C20DBED6 ] Bluetooth OBEX Service C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
19:38:09.0189 0x115c  Bluetooth OBEX Service - ok
19:38:09.0189 0x115c  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:38:09.0189 0x115c  bowser - ok
19:38:09.0189 0x115c  [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\Windows\System32\bisrv.dll
19:38:09.0205 0x115c  BrokerInfrastructure - ok
19:38:09.0205 0x115c  [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser         C:\Windows\System32\browser.dll
19:38:09.0205 0x115c  Browser - ok
19:38:09.0205 0x115c  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\Windows\System32\drivers\BthAvrcpTg.sys
19:38:09.0205 0x115c  BthAvrcpTg - ok
19:38:09.0221 0x115c  [ 131F1C8573E7BFB41C54FBF5309CCD94, DAFE51E3BADBD82A33B580F212B2D6520A120877C23F6D675521FEA2F4BA5A1F ] BthEnum         C:\Windows\System32\drivers\BthEnum.sys
19:38:09.0221 0x115c  BthEnum - ok
19:38:09.0221 0x115c  [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum       C:\Windows\System32\drivers\bthhfenum.sys
19:38:09.0236 0x115c  BthHFEnum - ok
19:38:09.0236 0x115c  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\Windows\System32\drivers\BthHFHid.sys
19:38:09.0236 0x115c  bthhfhid - ok
19:38:09.0236 0x115c  [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum       C:\Windows\system32\DRIVERS\BthLEEnum.sys
19:38:09.0252 0x115c  BthLEEnum - ok
19:38:09.0252 0x115c  [ 66B791F6B11DC4303DD18A224A501542, 502AE4D6FFC6B0FCED081B0E0F61F699F96F20DFEE737B53828F5DEE3BD0FCB1 ] BTHMODEM        C:\Windows\System32\drivers\bthmodem.sys
19:38:09.0268 0x115c  BTHMODEM - ok
19:38:09.0268 0x115c  [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan          C:\Windows\System32\drivers\bthpan.sys
19:38:09.0268 0x115c  BthPan - ok
19:38:09.0299 0x115c  [ 97B9076611291AE4C4C107BC915BD026, 0A77873AAF1ADB76CAB98A84D2242781E34E2699632E45EB92ED7DB20B2BE0C1 ] BTHPORT         C:\Windows\System32\Drivers\BTHport.sys
19:38:09.0330 0x115c  BTHPORT - ok
19:38:09.0330 0x115c  [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv         C:\Windows\system32\bthserv.dll
19:38:09.0330 0x115c  bthserv - ok
19:38:09.0346 0x115c  [ 23E75BED9076F856B36F5F934BBD5795, CCEB72B788522B7D52A6C07646005EBC68F9599D3714ECACF3A194CA47A1BE85 ] BTHUSB          C:\Windows\System32\Drivers\BTHUSB.sys
19:38:09.0346 0x115c  BTHUSB - ok
19:38:09.0346 0x115c  [ 4E10213D463B3AC9D003980398A16F01, F04CC0693006E5A8336A358F1E31C239EB3CED5D4487CD1F95F75C43A6BAFEC4 ] btmaux          C:\Windows\system32\DRIVERS\btmaux.sys
19:38:09.0346 0x115c  btmaux - ok
19:38:09.0377 0x115c  [ FF0F9DC5EE4BB8F5F94654A8E9F7F911, 787E87B358A2AAA69FBB22475BC7EDA30E9B207F1E77F123914266D07D918300 ] btmhsf          C:\Windows\system32\DRIVERS\btmhsf.sys
19:38:09.0393 0x115c  btmhsf - ok
19:38:09.0393 0x115c  [ 27B6A8A62199AF49287E9FCCCBE0148E, A76835056CCA3DDE945FE7701A8DAAC0137DF05BB492930898FD42F4FF95071F ] CatWSw8         C:\Windows\system32\Drivers\CatWSw864.sys
19:38:09.0408 0x115c  CatWSw8 - ok
19:38:09.0408 0x115c  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:38:09.0408 0x115c  cdfs - ok
19:38:09.0408 0x115c  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\Windows\System32\drivers\cdrom.sys
19:38:09.0424 0x115c  cdrom - ok
19:38:09.0424 0x115c  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc     C:\Windows\System32\certprop.dll
19:38:09.0424 0x115c  CertPropSvc - ok
19:38:09.0439 0x115c  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\Windows\System32\drivers\circlass.sys
19:38:09.0439 0x115c  circlass - ok
19:38:09.0439 0x115c  [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS            C:\Windows\system32\drivers\CLFS.sys
19:38:09.0455 0x115c  CLFS - ok
19:38:09.0486 0x115c  [ 7E526C5B4DD233EBCF1EA3EC211E2913, 9DC99F18454001AF5462C773C174E2D6E503316550C7E9D7824E9CBC503FCA3B ] ClickToRunSvc   C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe
19:38:09.0518 0x115c  ClickToRunSvc - ok
19:38:09.0518 0x115c  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\Windows\System32\drivers\CmBatt.sys
19:38:09.0533 0x115c  CmBatt - ok
19:38:09.0533 0x115c  [ 4E1207CE16E615B0B7A70DC889F4500E, 1778D5AC0AF5F5DD1551192F4CDBCCB9878995155CF337EBB03460A6FD5C6B78 ] CNG             C:\Windows\system32\Drivers\cng.sys
19:38:09.0549 0x115c  CNG - ok
19:38:09.0549 0x115c  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\Windows\System32\drivers\CompositeBus.sys
19:38:09.0549 0x115c  CompositeBus - ok
19:38:09.0549 0x115c  COMSysApp - ok
19:38:09.0565 0x115c  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\Windows\system32\drivers\condrv.sys
19:38:09.0565 0x115c  condrv - ok
19:38:09.0580 0x115c  [ 1154D3FBD01C35A2F9A2073BCB366452, 02F8CBDD8E2F321711528CFFC46E9F0B60CC779C34164E387E2E53DEB518B674 ] cphs            C:\Windows\SysWow64\IntelCpHeciSvc.exe
19:38:09.0596 0x115c  cphs - ok
19:38:09.0596 0x115c  [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:38:09.0596 0x115c  CryptSvc - ok
19:38:09.0611 0x115c  [ EE2F3C0D6ADBC975D6B621EC15ACF4E2, D158C0FACA6344BCD77616EC3D23212F9FD76D7D0C834ACA51998B80162106D5 ] CSC             C:\Windows\system32\drivers\csc.sys
19:38:09.0611 0x115c  CSC - ok
19:38:09.0627 0x115c  [ 936D9E2871CEEFF6A33695D98374367B, C30D42E870F196C4FA20AF95C7B9D9C9C5414D6DDE71268F88C3FC5BF372E61B ] CscService      C:\Windows\System32\cscsvc.dll
19:38:09.0643 0x115c  CscService - ok
19:38:09.0643 0x115c  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\Windows\system32\drivers\dam.sys
19:38:09.0643 0x115c  dam - ok
19:38:09.0658 0x115c  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:38:09.0658 0x115c  DcomLaunch - ok
19:38:09.0674 0x115c  [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc       C:\Windows\System32\defragsvc.dll
19:38:09.0674 0x115c  defragsvc - ok
19:38:09.0690 0x115c  [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\Windows\system32\das.dll
19:38:09.0690 0x115c  DeviceAssociationService - ok
19:38:09.0690 0x115c  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall   C:\Windows\system32\umpnpmgr.dll
19:38:09.0705 0x115c  DeviceInstall - ok
19:38:09.0705 0x115c  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\Windows\system32\Drivers\dfsc.sys
19:38:09.0705 0x115c  Dfsc - ok
19:38:09.0721 0x115c  [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:38:09.0721 0x115c  Dhcp - ok
19:38:09.0721 0x115c  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\Windows\system32\drivers\disk.sys
19:38:09.0721 0x115c  disk - ok
19:38:09.0721 0x115c  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\Windows\System32\drivers\dmvsc.sys
19:38:09.0721 0x115c  dmvsc - ok
19:38:09.0736 0x115c  [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:38:09.0736 0x115c  Dnscache - ok
19:38:09.0736 0x115c  [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc         C:\Windows\System32\dot3svc.dll
19:38:09.0752 0x115c  dot3svc - ok
19:38:09.0752 0x115c  [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS             C:\Windows\system32\dps.dll
19:38:09.0752 0x115c  DPS - ok
19:38:09.0752 0x115c  [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:38:09.0752 0x115c  drmkaud - ok
19:38:09.0752 0x115c  [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc          C:\Windows\System32\DeviceSetupManager.dll
19:38:09.0768 0x115c  DsmSvc - ok
19:38:09.0783 0x115c  [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:38:09.0799 0x115c  DXGKrnl - ok
19:38:09.0815 0x115c  [ E09FD2CDED38297D99DD7D5D591FE61C, C9506A817E476C6D43514BB3D37041F7A29DBA8D3C86017BF7EFD751572009AB ] e1dexpress      C:\Windows\system32\DRIVERS\e1d64x64.sys
19:38:09.0815 0x115c  e1dexpress - ok
19:38:09.0830 0x115c  [ FA988D76745C917CDFE20031C06DE860, B01AA3611869854D3BCA8B6CD7A6F48CC3537145DD3EBE50F5BEF72239924BF7 ] e1iexpress      C:\Windows\system32\DRIVERS\e1i63x64.sys
19:38:09.0830 0x115c  e1iexpress - ok
19:38:09.0830 0x115c  [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost         C:\Windows\System32\eapsvc.dll
19:38:09.0846 0x115c  Eaphost - ok
19:38:09.0893 0x115c  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
19:38:09.0924 0x115c  ebdrv - ok
19:38:09.0940 0x115c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS             C:\Windows\System32\lsass.exe
19:38:09.0940 0x115c  EFS - ok
19:38:09.0940 0x115c  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\Windows\system32\drivers\EhStorClass.sys
19:38:09.0940 0x115c  EhStorClass - ok
19:38:09.0940 0x115c  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\Windows\system32\drivers\EhStorTcgDrv.sys
19:38:09.0940 0x115c  EhStorTcgDrv - ok
19:38:09.0940 0x115c  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\Windows\System32\drivers\errdev.sys
19:38:09.0955 0x115c  ErrDev - ok
19:38:09.0955 0x115c  [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem     C:\Windows\system32\es.dll
19:38:09.0971 0x115c  EventSystem - ok
19:38:09.0971 0x115c  [ 7876CB89775B67347797E04775B2FAF9, F62D2778F7399B04E3A0DDE2E87428AB92D9FA63FBDF943709BC38A94F0015E6 ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
19:38:09.0986 0x115c  EvtEng - ok
19:38:10.0002 0x115c  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\Windows\system32\drivers\exfat.sys
19:38:10.0002 0x115c  exfat - ok
19:38:10.0002 0x115c  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:38:10.0002 0x115c  fastfat - ok
19:38:10.0018 0x115c  [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax             C:\Windows\system32\fxssvc.exe
19:38:10.0033 0x115c  Fax - ok
19:38:10.0033 0x115c  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\Windows\System32\drivers\fdc.sys
19:38:10.0033 0x115c  fdc - ok
19:38:10.0033 0x115c  [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost         C:\Windows\system32\fdPHost.dll
19:38:10.0033 0x115c  fdPHost - ok
19:38:10.0033 0x115c  [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub        C:\Windows\system32\fdrespub.dll
19:38:10.0033 0x115c  FDResPub - ok
19:38:10.0049 0x115c  [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc           C:\Windows\system32\fhsvc.dll
19:38:10.0049 0x115c  fhsvc - ok
19:38:10.0049 0x115c  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:38:10.0049 0x115c  FileInfo - ok
19:38:10.0049 0x115c  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:38:10.0049 0x115c  Filetrace - ok
19:38:10.0049 0x115c  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\Windows\System32\drivers\flpydisk.sys
19:38:10.0065 0x115c  flpydisk - ok
19:38:10.0065 0x115c  [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:38:10.0065 0x115c  FltMgr - ok
19:38:10.0096 0x115c  [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache       C:\Windows\system32\FntCache.dll
19:38:10.0111 0x115c  FontCache - ok
19:38:10.0111 0x115c  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:38:10.0111 0x115c  FontCache3.0.0.0 - ok
19:38:10.0111 0x115c  [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:38:10.0111 0x115c  FsDepends - ok
19:38:10.0111 0x115c  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:38:10.0111 0x115c  Fs_Rec - ok
19:38:10.0127 0x115c  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:38:10.0127 0x115c  fvevol - ok
19:38:10.0143 0x115c  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\Windows\System32\drivers\fxppm.sys
19:38:10.0143 0x115c  FxPPM - ok
19:38:10.0143 0x115c  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
19:38:10.0143 0x115c  gagp30kx - ok
19:38:10.0143 0x115c  gdrv - ok
19:38:10.0143 0x115c  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\Windows\System32\drivers\vmgencounter.sys
19:38:10.0158 0x115c  gencounter - ok
19:38:10.0174 0x115c  [ 4DF4ABCA09AF1530D712FA589CE3BE9F, 573C04358BBAEAEDFDC4F265627E8029295C31BB17C13B428D5694119AECEDAD ] GfExperienceService C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
19:38:10.0205 0x115c  GfExperienceService - ok
19:38:10.0205 0x115c  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\Windows\system32\Drivers\msgpioclx.sys
19:38:10.0205 0x115c  GPIOClx0101 - ok
19:38:10.0221 0x115c  [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc           C:\Windows\System32\gpsvc.dll
19:38:10.0237 0x115c  gpsvc - ok
19:38:10.0252 0x115c  [ 56F69F7C25FB67C970997D7066DBC593, 83E03A82237DCC5BCB3E722ACECACEF3510CAA619F33E0D7C4D902A482E90418 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:38:10.0268 0x115c  HdAudAddService - ok
19:38:10.0268 0x115c  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\Windows\System32\drivers\HDAudBus.sys
19:38:10.0283 0x115c  HDAudBus - ok
19:38:10.0283 0x115c  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\Windows\System32\drivers\HidBatt.sys
19:38:10.0283 0x115c  HidBatt - ok
19:38:10.0283 0x115c  [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth          C:\Windows\System32\drivers\hidbth.sys
19:38:10.0299 0x115c  HidBth - ok
19:38:10.0299 0x115c  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\Windows\System32\drivers\hidi2c.sys
19:38:10.0299 0x115c  hidi2c - ok
19:38:10.0299 0x115c  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\Windows\System32\drivers\hidir.sys
19:38:10.0315 0x115c  HidIr - ok
19:38:10.0315 0x115c  [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv         C:\Windows\system32\hidserv.dll
19:38:10.0315 0x115c  hidserv - ok
19:38:10.0315 0x115c  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\Windows\System32\drivers\hidusb.sys
19:38:10.0315 0x115c  HidUsb - ok
19:38:10.0315 0x115c  [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:38:10.0330 0x115c  hkmsvc - ok
19:38:10.0330 0x115c  [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:38:10.0330 0x115c  HomeGroupListener - ok
19:38:10.0346 0x115c  [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:38:10.0346 0x115c  HomeGroupProvider - ok
19:38:10.0346 0x115c  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:38:10.0346 0x115c  HpSAMD - ok
19:38:10.0362 0x115c  [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:38:10.0377 0x115c  HTTP - ok
19:38:10.0377 0x115c  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:38:10.0377 0x115c  hwpolicy - ok
19:38:10.0377 0x115c  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\Windows\System32\drivers\hyperkbd.sys
19:38:10.0377 0x115c  hyperkbd - ok
19:38:10.0393 0x115c  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\Windows\system32\DRIVERS\HyperVideo.sys
19:38:10.0393 0x115c  HyperVideo - ok
19:38:10.0393 0x115c  [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt        C:\Windows\System32\drivers\i8042prt.sys
19:38:10.0393 0x115c  i8042prt - ok
19:38:10.0408 0x115c  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\Windows\System32\drivers\iaLPSSi_GPIO.sys
19:38:10.0408 0x115c  iaLPSSi_GPIO - ok
19:38:10.0408 0x115c  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\Windows\System32\drivers\iaLPSSi_I2C.sys
19:38:10.0408 0x115c  iaLPSSi_I2C - ok
19:38:10.0424 0x115c  [ 6655615C7E4E29E6481F75A93ED99954, C7387D85DEC6BEF74DAD3B36398D1DA8914E9CF6F460D36E30088E3F6754E972 ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
19:38:10.0424 0x115c  iaStorA - ok
19:38:10.0440 0x115c  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\Windows\system32\drivers\iaStorAV.sys
19:38:10.0440 0x115c  iaStorAV - ok
19:38:10.0455 0x115c  [ F35FBCEB1B71BC20BBAFA526E203D6A1, F389B689B5DF0D204E3EA21B7201A89D29DE518716781BB390AC6E5CED64C790 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
19:38:10.0455 0x115c  IAStorDataMgrSvc - ok
19:38:10.0455 0x115c  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:38:10.0455 0x115c  iaStorV - ok
19:38:10.0471 0x115c  [ 29CDC2B6023431560B6035A79799E416, 1E4BB83A91BEA2C2576021E93797D2DE7B3620E614C349874802F14716BE0679 ] ibtusb          C:\Windows\system32\DRIVERS\ibtusb.sys
19:38:10.0471 0x115c  ibtusb - ok
19:38:10.0471 0x115c  IEEtwCollectorService - ok
19:38:10.0565 0x115c  [ 09F8023A17EE9EB0897A1B195428192B, 2DF018A24766E32E16F4B4FA9DA3D095BA42702B6869D4D1624A5EBF83805AF2 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
19:38:10.0627 0x115c  igfx - ok
19:38:10.0627 0x115c  [ F64E1962751A6DAA3FBB6210D6751E22, 972046FB7F0B443F9251F2F5B4AF0F8BAC2046B3EA295428BC888AAA568EC737 ] igfxCUIService1.0.0.0 C:\Windows\system32\igfxCUIService.exe
19:38:10.0643 0x115c  igfxCUIService1.0.0.0 - ok
19:38:10.0658 0x115c  [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT          C:\Windows\System32\ikeext.dll
19:38:10.0674 0x115c  IKEEXT - ok
19:38:10.0674 0x115c  [ CF25067821BB89E87021E9493C178863, 1AA25378EFD977BC6CD9405A395FA2962770385FAB5A9A55FC95B5F6DFD8D1AE ] intaud_WaveExtensible C:\Windows\system32\drivers\intelaud.sys
19:38:10.0674 0x115c  intaud_WaveExtensible - ok
19:38:10.0737 0x115c  [ 1747CAA9AB414DEC0FF38CDEBD3A7418, 0B647EF6FFF1E02DAD8B4C764A4A00430898BD089304D52BC05E0D99E80F1236 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:38:10.0778 0x115c  IntcAzAudAddService - ok
19:38:10.0793 0x115c  [ 4C17F57E43645E75800E9E84787E34E5, 6A1531D97462BA3B3DBDAD472AF15B717C958AA8C5CE2373DE0B2A41C35BE33E ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
19:38:11.0090 0x115c  Intel® Capability Licensing Service TCP IP Interface - ok
19:38:11.0106 0x115c  [ FA6094444A7DC90449800F964E0A8668, A6DCF395649FA185596D55713888922BA2A61D96AD0D5E7860FD47EE30B7E4CF ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
19:38:11.0106 0x115c  Intel® PROSet Monitoring Service - ok
19:38:11.0106 0x115c  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:38:11.0106 0x115c  intelide - ok
19:38:11.0106 0x115c  [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep        C:\Windows\system32\drivers\intelpep.sys
19:38:11.0106 0x115c  intelpep - ok
19:38:11.0121 0x115c  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\Windows\System32\drivers\intelppm.sys
19:38:11.0121 0x115c  intelppm - ok
19:38:11.0121 0x115c  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:38:11.0121 0x115c  IpFilterDriver - ok
19:38:11.0137 0x115c  [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:38:11.0153 0x115c  iphlpsvc - ok
19:38:11.0153 0x115c  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\Windows\System32\drivers\IPMIDrv.sys
19:38:11.0153 0x115c  IPMIDRV - ok
19:38:11.0168 0x115c  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:38:11.0168 0x115c  IPNAT - ok
19:38:11.0168 0x115c  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:38:11.0168 0x115c  IRENUM - ok
19:38:11.0168 0x115c  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:38:11.0168 0x115c  isapnp - ok
19:38:11.0184 0x115c  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\Windows\System32\drivers\msiscsi.sys
19:38:11.0184 0x115c  iScsiPrt - ok
19:38:11.0184 0x115c  [ 2DB1E2AE4A0DE62026296F0A6C29F3F5, A5A3D4D5BF9FF1DB5AC3BE15699B52707C8EB71EFA8FA82E7AE7A0C52C224380 ] iwdbus          C:\Windows\System32\drivers\iwdbus.sys
19:38:11.0184 0x115c  iwdbus - ok
19:38:11.0200 0x115c  [ 0B93A01F786F37A4B1EDE84E639FFF10, 8747109A2FA2B80C8C5F5B6D2372C1B0DA4F4BF9DC1D551195ADF0715C260223 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
19:38:11.0200 0x115c  jhi_service - ok
19:38:11.0200 0x115c  [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass        C:\Windows\System32\drivers\kbdclass.sys
19:38:11.0200 0x115c  kbdclass - ok
19:38:11.0200 0x115c  [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid          C:\Windows\System32\drivers\kbdhid.sys
19:38:11.0200 0x115c  kbdhid - ok
19:38:11.0200 0x115c  [ DB7A09BC90DF20F44F16F8B0F9ED3491, 2DF5E042284D61368A5801B2557351B2C4B1044AA6F966DF4DDCE7B453D1B9AE ] kbldfltr        C:\Windows\system32\drivers\kbldfltr.sys
19:38:11.0215 0x115c  kbldfltr - ok
19:38:11.0215 0x115c  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\Windows\system32\DRIVERS\kdnic.sys
19:38:11.0215 0x115c  kdnic - ok
19:38:11.0215 0x115c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso          C:\Windows\system32\lsass.exe
19:38:11.0215 0x115c  KeyIso - ok
19:38:11.0215 0x115c  [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:38:11.0215 0x115c  KSecDD - ok
19:38:11.0231 0x115c  [ 6D2EE96150E35B9EA49F2B481DE0369A, AC5915219FD81D89E444F6E86D71F7C495108FC35E7BD683321FC7006161AFE1 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:38:11.0231 0x115c  KSecPkg - ok
19:38:11.0231 0x115c  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
19:38:11.0231 0x115c  ksthunk - ok
19:38:11.0231 0x115c  [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:38:11.0246 0x115c  KtmRm - ok
19:38:11.0246 0x115c  [ 4E5EA006CFFB96E0BAFC767D659AAB9A, A24A334955FB98D0903971454FADAC639D535BD32BB48964BD95019C7F6C454E ] L1C             C:\Windows\system32\DRIVERS\L1C63x64.sys
19:38:11.0246 0x115c  L1C - ok
19:38:11.0262 0x115c  [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:38:11.0262 0x115c  LanmanServer - ok
19:38:11.0262 0x115c  [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:38:11.0278 0x115c  LanmanWorkstation - ok
19:38:11.0278 0x115c  [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc           C:\Windows\System32\GeofenceMonitorService.dll
19:38:11.0293 0x115c  lfsvc - ok
19:38:11.0293 0x115c  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:38:11.0293 0x115c  lltdio - ok
19:38:11.0293 0x115c  [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:38:11.0293 0x115c  lltdsvc - ok
19:38:11.0309 0x115c  [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:38:11.0309 0x115c  lmhosts - ok
19:38:11.0309 0x115c  [ C31139E0907170E2A3FA8D19DCC23D35, C504E93D2018E9E487A428483C646C67B4ECE122560CF0FA49A1626E1509EEAE ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:38:11.0309 0x115c  LMS - ok
19:38:11.0325 0x115c  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
19:38:11.0325 0x115c  LSI_SAS - ok
19:38:11.0325 0x115c  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
19:38:11.0325 0x115c  LSI_SAS2 - ok
19:38:11.0325 0x115c  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\Windows\system32\drivers\lsi_sas3.sys
19:38:11.0325 0x115c  LSI_SAS3 - ok
19:38:11.0340 0x115c  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\Windows\system32\drivers\lsi_sss.sys
19:38:11.0340 0x115c  LSI_SSS - ok
19:38:11.0340 0x115c  [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM             C:\Windows\System32\lsm.dll
19:38:11.0356 0x115c  LSM - ok
19:38:11.0356 0x115c  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\Windows\system32\drivers\luafv.sys
19:38:11.0356 0x115c  luafv - ok
19:38:11.0356 0x115c  [ CA43F8904E24BBE49982E4C0B29E6579, 2E3E6D02980706061C478C1643F8838310DDAC573C8722AE7F3290CE36B02CB2 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
19:38:11.0356 0x115c  MBAMProtector - ok
19:38:11.0387 0x115c  [ 0BB29DE40C9D9529793DCDB59A43CF5B, 251001A407D32EF22F64915EEFFAAEC229073C4549BF7D9D1D4209B7D15B4681 ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
19:38:11.0418 0x115c  MBAMScheduler - ok
19:38:11.0434 0x115c  [ 5F82D8188B370B0CF185D4AE2B9B4A0E, 549B53DD989A069E1C38347C4CEF5283DF9B428CE102799B06A20D3D8F23825F ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
19:38:11.0434 0x115c  MBAMService - ok
19:38:11.0450 0x115c  [ 26C43960C99EE861A5D0EDC4DCF3B1C3, 6238FB8E785652040CCE3E7044EA52066CE1BF173A1467474D64A3AB214B6BCD ] MBAMSwissArmy   C:\Windows\system32\drivers\MBAMSwissArmy.sys
19:38:11.0450 0x115c  MBAMSwissArmy - ok
19:38:11.0450 0x115c  [ 9D7BFFDB5FA62B600DF1FCB4919D9D79, B610B18E25366F56A785C1BECE0EC534C836FAB0DF13E0BC3AF7A626E6CD6A5F ] MBAMWebAccessControl C:\Windows\system32\drivers\mwac.sys
19:38:11.0450 0x115c  MBAMWebAccessControl - ok
19:38:11.0450 0x115c  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\Windows\system32\drivers\megasas.sys
19:38:11.0450 0x115c  megasas - ok
19:38:11.0465 0x115c  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\Windows\system32\drivers\megasr.sys
19:38:11.0465 0x115c  megasr - ok
19:38:11.0481 0x115c  [ 8751062F2F7EC78DE92D778A08099DDE, F10BE771FF9E02A51CF3A167BB967167DE4F66647D7F1508CB27D8FDD8623700 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
19:38:11.0481 0x115c  MEIx64 - ok
19:38:11.0481 0x115c  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS           C:\Windows\system32\mmcss.dll
19:38:11.0481 0x115c  MMCSS - ok
19:38:11.0481 0x115c  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\Windows\system32\drivers\modem.sys
19:38:11.0481 0x115c  Modem - ok
19:38:11.0481 0x115c  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\Windows\System32\drivers\monitor.sys
19:38:11.0496 0x115c  monitor - ok
19:38:11.0496 0x115c  [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass        C:\Windows\System32\drivers\mouclass.sys
19:38:11.0496 0x115c  mouclass - ok
19:38:11.0496 0x115c  [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid          C:\Windows\System32\drivers\mouhid.sys
19:38:11.0496 0x115c  mouhid - ok
19:38:11.0496 0x115c  [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:38:11.0512 0x115c  mountmgr - ok
19:38:11.0512 0x115c  [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:38:11.0512 0x115c  mpsdrv - ok
19:38:11.0528 0x115c  [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:38:11.0528 0x115c  MpsSvc - ok
19:38:11.0543 0x115c  [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:38:11.0543 0x115c  MRxDAV - ok
19:38:11.0543 0x115c  [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:38:11.0559 0x115c  mrxsmb - ok
19:38:11.0559 0x115c  [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:38:11.0575 0x115c  mrxsmb10 - ok
19:38:11.0575 0x115c  [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:38:11.0590 0x115c  mrxsmb20 - ok
19:38:11.0590 0x115c  [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge        C:\Windows\system32\DRIVERS\bridge.sys
19:38:11.0590 0x115c  MsBridge - ok
19:38:11.0590 0x115c  [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC           C:\Windows\System32\msdtc.exe
19:38:11.0606 0x115c  MSDTC - ok
19:38:11.0606 0x115c  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:38:11.0606 0x115c  Msfs - ok
19:38:11.0606 0x115c  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\Windows\System32\drivers\msgpiowin32.sys
19:38:11.0606 0x115c  msgpiowin32 - ok
19:38:11.0606 0x115c  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:38:11.0606 0x115c  mshidkmdf - ok
19:38:11.0606 0x115c  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\Windows\System32\drivers\mshidumdf.sys
19:38:11.0606 0x115c  mshidumdf - ok
19:38:11.0621 0x115c  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:38:11.0621 0x115c  msisadrv - ok
19:38:11.0621 0x115c  [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:38:11.0621 0x115c  MSiSCSI - ok
19:38:11.0621 0x115c  msiserver - ok
19:38:11.0621 0x115c  [ D22AE5313F6B7EFDDD8C117B5501F4A3, 1937EEE33BF9C4485F172B10FB17AEF3F3B8978371307F49C3338D74D96A8389 ] MsKeyboardFilter C:\Windows\System32\KeyboardFilterSvc.dll
19:38:11.0621 0x115c  MsKeyboardFilter - ok
19:38:11.0621 0x115c  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:38:11.0637 0x115c  MSKSSRV - ok
19:38:11.0637 0x115c  [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp          C:\Windows\system32\DRIVERS\mslldp.sys
19:38:11.0637 0x115c  MsLldp - ok
19:38:11.0637 0x115c  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:38:11.0637 0x115c  MSPCLOCK - ok
19:38:11.0637 0x115c  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:38:11.0637 0x115c  MSPQM - ok
19:38:11.0637 0x115c  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:38:11.0653 0x115c  MsRPC - ok
19:38:11.0653 0x115c  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\Windows\System32\drivers\mssmbios.sys
19:38:11.0653 0x115c  mssmbios - ok
19:38:11.0653 0x115c  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:38:11.0653 0x115c  MSTEE - ok
19:38:11.0653 0x115c  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\Windows\System32\drivers\MTConfig.sys
19:38:11.0668 0x115c  MTConfig - ok
19:38:11.0668 0x115c  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\Windows\system32\Drivers\mup.sys
19:38:11.0668 0x115c  Mup - ok
19:38:11.0668 0x115c  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\Windows\system32\drivers\mvumis.sys
19:38:11.0668 0x115c  mvumis - ok
19:38:11.0668 0x115c  [ 35739E6A0C67147A9B75226946CDC903, C9DE77D6812C778F601F52E87ECDD228E52EA691AB9CEAD388998A7B5AFC3B89 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
19:38:11.0684 0x115c  MyWiFiDHCPDNS - ok
19:38:11.0700 0x115c  [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent        C:\Windows\system32\qagentRT.dll
19:38:11.0700 0x115c  napagent - ok
19:38:11.0715 0x115c  [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:38:11.0715 0x115c  NativeWifiP - ok
19:38:11.0731 0x115c  [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc          C:\Windows\System32\ncasvc.dll
19:38:11.0731 0x115c  NcaSvc - ok
19:38:11.0731 0x115c  [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService      C:\Windows\System32\ncbservice.dll
19:38:11.0731 0x115c  NcbService - ok
19:38:11.0731 0x115c  [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup    C:\Windows\System32\NcdAutoSetup.dll
19:38:11.0731 0x115c  NcdAutoSetup - ok
19:38:11.0762 0x115c  [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:38:11.0762 0x115c  NDIS - ok
19:38:11.0778 0x115c  [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:38:11.0778 0x115c  NdisCap - ok
19:38:11.0778 0x115c  [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform  C:\Windows\system32\DRIVERS\NdisImPlatform.sys
19:38:11.0778 0x115c  NdisImPlatform - ok
19:38:11.0793 0x115c  [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:38:11.0793 0x115c  NdisTapi - ok
19:38:11.0793 0x115c  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:38:11.0793 0x115c  Ndisuio - ok
19:38:11.0793 0x115c  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\Windows\System32\drivers\NdisVirtualBus.sys
19:38:11.0793 0x115c  NdisVirtualBus - ok
19:38:11.0793 0x115c  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:38:11.0793 0x115c  NdisWan - ok
19:38:11.0809 0x115c  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\Windows\system32\DRIVERS\ndiswan.sys
19:38:11.0809 0x115c  NdisWanLegacy - ok
19:38:11.0809 0x115c  [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:38:11.0809 0x115c  NDProxy - ok
19:38:11.0809 0x115c  [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu             C:\Windows\system32\drivers\Ndu.sys
19:38:11.0809 0x115c  Ndu - ok
19:38:11.0809 0x115c  [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:38:11.0825 0x115c  NetBIOS - ok
19:38:11.0825 0x115c  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:38:11.0825 0x115c  NetBT - ok
19:38:11.0825 0x115c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon        C:\Windows\system32\lsass.exe
19:38:11.0825 0x115c  Netlogon - ok
19:38:11.0840 0x115c  [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman          C:\Windows\System32\netman.dll
19:38:11.0840 0x115c  Netman - ok
19:38:11.0856 0x115c  [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm        C:\Windows\System32\netprofmsvc.dll
19:38:11.0856 0x115c  netprofm - ok
19:38:11.0856 0x115c  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
19:38:11.0856 0x115c  NetTcpPortSharing - ok
19:38:11.0872 0x115c  [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc          C:\Windows\system32\DRIVERS\netvsc63.sys
19:38:11.0872 0x115c  netvsc - ok
19:38:11.0918 0x115c  [ F647054D59ECB7126653D6E2F6923A54, DAAB5422DF7C5D67AA0D4D9B8F7DDE66A547DBD0038FD5F6590AC9E210645841 ] NETwNb64        C:\Windows\system32\DRIVERS\NETwbw02.sys
19:38:11.0965 0x115c  NETwNb64 - ok
19:38:12.0028 0x115c  [ B636B4A8E59A73033B766EA7FD7C3B81, CAC8614DEE83623DE56C969C668A33366793779084B6A23F59ADC98392115F8C ] NETwNe64        C:\Windows\system32\DRIVERS\NETwew02.sys
19:38:12.0090 0x115c  NETwNe64 - ok
19:38:12.0090 0x115c  [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:38:12.0106 0x115c  NlaSvc - ok
19:38:12.0106 0x115c  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:38:12.0106 0x115c  Npfs - ok
19:38:12.0106 0x115c  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\Windows\System32\drivers\npsvctrig.sys
19:38:12.0106 0x115c  npsvctrig - ok
19:38:12.0106 0x115c  [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi             C:\Windows\system32\nsisvc.dll
19:38:12.0106 0x115c  nsi - ok
19:38:12.0122 0x115c  [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:38:12.0122 0x115c  nsiproxy - ok
19:38:12.0137 0x115c  [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:38:12.0168 0x115c  Ntfs - ok
19:38:12.0168 0x115c  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\Windows\system32\drivers\Null.sys
19:38:12.0168 0x115c  Null - ok
19:38:12.0184 0x115c  [ 7E4355930B28C2798D9F09AB9F81151F, 941C730F3B75BDF99639E76350031EDD15F18D8D860F3B1282C28B62096E7717 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
19:38:12.0184 0x115c  NVHDA - ok
19:38:12.0372 0x115c  [ 7F58A8A5F208557F1FF8D7F45D5811DB, D9999DAD9BBBC907C8633AD08D90E40D861E9941A74CCF3C6183C9E220FEA0E9 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:38:12.0544 0x115c  nvlddmkm - ok
19:38:12.0575 0x115c  [ EC4F787905DC5753C46A4C05CEBADF45, 334E7E277A6FDABD91108DC4FE0D861DE6C00616CCFDC5E2D390CDDED62AF5D5 ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
19:38:12.0866 0x115c  NvNetworkService - ok
19:38:12.0881 0x115c  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:38:12.0881 0x115c  nvraid - ok
19:38:12.0881 0x115c  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:38:12.0881 0x115c  nvstor - ok
19:38:12.0897 0x115c  [ D92F4ED189C8207D0274B8B6BB494892, 8F7656662D3F26BE51AED9B7368278B18915F98A627E70021F914016BF3E22DB ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
19:38:12.0897 0x115c  NvStreamKms - ok
19:38:12.0897 0x115c  NvStreamSvc - ok
19:38:12.0913 0x115c  [ 806069C408AE736E2182D2FF6C2FA8EE, 9C2D2309C4F4135772C53C10C7442BCA362657B062177B20C2F00DC2137E8362 ] nvsvc           C:\Windows\system32\nvvsvc.exe
19:38:12.0913 0x115c  nvsvc - ok
19:38:12.0928 0x115c  [ DBFE7B2DF103F74AE51840B3C5F25FE9, 436CAA417FD24BA870F117FA4BABA2AB694825795508BCFCC8C927CC2D5BBC5E ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
19:38:12.0928 0x115c  nvvad_WaveExtensible - ok
19:38:12.0928 0x115c  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:38:12.0928 0x115c  nv_agp - ok
19:38:12.0944 0x115c  [ 30B5F9FB0C35AE6B4A0851D24CE2EE8B, 0340E77E8EC2ADC21B8DDD9C9CC95B3F4BCAFD54618A333C72D7D9587D593B83 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:38:12.0944 0x115c  ose - ok
19:38:12.0944 0x115c  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:38:12.0959 0x115c  p2pimsvc - ok
19:38:12.0959 0x115c  [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc          C:\Windows\system32\p2psvc.dll
19:38:12.0975 0x115c  p2psvc - ok
19:38:12.0975 0x115c  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\Windows\System32\drivers\parport.sys
19:38:12.0975 0x115c  Parport - ok
19:38:12.0991 0x115c  [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:38:12.0991 0x115c  partmgr - ok
19:38:12.0991 0x115c  [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:38:12.0991 0x115c  PcaSvc - ok
19:38:13.0006 0x115c  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\Windows\system32\drivers\pci.sys
19:38:13.0006 0x115c  pci - ok
19:38:13.0022 0x115c  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\Windows\system32\drivers\pciide.sys
19:38:13.0022 0x115c  pciide - ok
19:38:13.0022 0x115c  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
19:38:13.0022 0x115c  pcmcia - ok
19:38:13.0022 0x115c  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:38:13.0022 0x115c  pcw - ok
19:38:13.0022 0x115c  [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc             C:\Windows\system32\drivers\pdc.sys
19:38:13.0022 0x115c  pdc - ok
19:38:13.0038 0x115c  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:38:13.0053 0x115c  PEAUTH - ok
19:38:13.0084 0x115c  [ 084DE525DFE82AE7453DD527390FA110, 8216AE63AE740D97204CDED6543B66FC1FB55DB86D42FBA0EC629361C40F9EC0 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
19:38:13.0100 0x115c  PeerDistSvc - ok
19:38:13.0131 0x115c  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\Windows\SysWow64\perfhost.exe
19:38:13.0131 0x115c  PerfHost - ok
19:38:13.0163 0x115c  [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla             C:\Windows\system32\pla.dll
19:38:13.0178 0x115c  pla - ok
19:38:13.0178 0x115c  [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:38:13.0178 0x115c  PlugPlay - ok
19:38:13.0178 0x115c  [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:38:13.0178 0x115c  PNRPAutoReg - ok
19:38:13.0194 0x115c  [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:38:13.0194 0x115c  PNRPsvc - ok
19:38:13.0194 0x115c  [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:38:13.0209 0x115c  PolicyAgent - ok
19:38:13.0209 0x115c  [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power           C:\Windows\system32\umpo.dll
19:38:13.0209 0x115c  Power - ok
19:38:13.0256 0x115c  [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify     C:\Windows\system32\spool\drivers\x64\3\PrintConfig.dll
19:38:13.0303 0x115c  PrintNotify - ok
19:38:13.0319 0x115c  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\Windows\System32\drivers\processr.sys
19:38:13.0319 0x115c  Processor - ok
19:38:13.0319 0x115c  [ 19424364D8C03B990C4281BE53963FD0, 958FC8436E6B754858E20BC48B0D4B269991E8CA94C15C2761BF04ED52591907 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:38:13.0334 0x115c  ProfSvc - ok
19:38:13.0334 0x115c  [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:38:13.0334 0x115c  Psched - ok
19:38:13.0334 0x115c  [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE           C:\Windows\system32\qwave.dll
19:38:13.0350 0x115c  QWAVE - ok
19:38:13.0350 0x115c  [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:38:13.0350 0x115c  QWAVEdrv - ok
19:38:13.0350 0x115c  [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:38:13.0350 0x115c  RasAcd - ok
19:38:13.0350 0x115c  [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto         C:\Windows\System32\rasauto.dll
19:38:13.0350 0x115c  RasAuto - ok
19:38:13.0366 0x115c  [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan          C:\Windows\System32\rasmans.dll
19:38:13.0366 0x115c  RasMan - ok
19:38:13.0381 0x115c  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:38:13.0381 0x115c  RasPppoe - ok
19:38:13.0381 0x115c  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:38:13.0381 0x115c  rdbss - ok
19:38:13.0397 0x115c  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\Windows\System32\drivers\rdpbus.sys
19:38:13.0397 0x115c  rdpbus - ok
19:38:13.0397 0x115c  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
19:38:13.0397 0x115c  RDPDR - ok
19:38:13.0413 0x115c  [ 9F08A6608F98B5407E7DDBCF306573EF, 92812F97CFDB2EC128BC48143DE215B7D012B15D3FB4D2199222AD8C31DA5016 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
19:38:13.0413 0x115c  RdpVideoMiniport - ok
19:38:13.0413 0x115c  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:38:13.0413 0x115c  rdyboost - ok
19:38:13.0428 0x115c  [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS            C:\Windows\system32\drivers\ReFS.sys
19:38:13.0444 0x115c  ReFS - ok
19:38:13.0444 0x115c  [ BC49E8BDBC6C1B161FDDB350CE423366, D98C7948EE36808164766DD9934C204599275BE9FCD83515F9C0153202D38C34 ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
19:38:13.0459 0x115c  RegSrvc - ok
19:38:13.0459 0x115c  [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:38:13.0459 0x115c  RemoteAccess - ok
19:38:13.0459 0x115c  [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:38:13.0475 0x115c  RemoteRegistry - ok
19:38:13.0475 0x115c  [ 0527EF6E23B9FAB37DDCBC479C6CFA28, C004CE600074AC434F8B24A3383F8C0ACFA5476D9E3B1493B40911C78B028D64 ] RFCOMM          C:\Windows\System32\drivers\rfcomm.sys
19:38:13.0475 0x115c  RFCOMM - ok
19:38:13.0491 0x115c  [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:38:13.0491 0x115c  RpcEptMapper - ok
19:38:13.0491 0x115c  [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator      C:\Windows\system32\locator.exe
19:38:13.0491 0x115c  RpcLocator - ok
19:38:13.0506 0x115c  [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs           C:\Windows\system32\rpcss.dll
19:38:13.0506 0x115c  RpcSs - ok
19:38:13.0506 0x115c  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:38:13.0522 0x115c  rspndr - ok
19:38:13.0522 0x115c  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\Windows\System32\drivers\vms3cap.sys
19:38:13.0522 0x115c  s3cap - ok
19:38:13.0522 0x115c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs           C:\Windows\system32\lsass.exe
19:38:13.0522 0x115c  SamSs - ok
19:38:13.0522 0x115c  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:38:13.0522 0x115c  sbp2port - ok
19:38:13.0538 0x115c  [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:38:13.0538 0x115c  SCardSvr - ok
19:38:13.0538 0x115c  [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum    C:\Windows\System32\ScDeviceEnum.dll
19:38:13.0538 0x115c  ScDeviceEnum - ok
19:38:13.0538 0x115c  [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:38:13.0538 0x115c  scfilter - ok
19:38:13.0554 0x115c  [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule        C:\Windows\system32\schedsvc.dll
19:38:13.0570 0x115c  Schedule - ok
19:38:13.0570 0x115c  [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:38:13.0585 0x115c  SCPolicySvc - ok
19:38:13.0585 0x115c  [ 7B7C482CF48E6EE33664340D1A78E6FE, CE5077C4B0372F4F9F02B0B37AE58C0DAEFCA9D242065731A23F072506430575 ] sdbus           C:\Windows\System32\drivers\sdbus.sys
19:38:13.0585 0x115c  sdbus - ok
19:38:13.0585 0x115c  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\Windows\System32\drivers\sdstor.sys
19:38:13.0601 0x115c  sdstor - ok
19:38:13.0601 0x115c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:38:13.0601 0x115c  secdrv - ok
19:38:13.0601 0x115c  [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon        C:\Windows\system32\seclogon.dll
19:38:13.0601 0x115c  seclogon - ok
19:38:13.0601 0x115c  [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS            C:\Windows\System32\sens.dll
19:38:13.0601 0x115c  SENS - ok
19:38:13.0617 0x115c  [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:38:13.0617 0x115c  SensrSvc - ok
19:38:13.0617 0x115c  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\Windows\system32\drivers\SerCx.sys
19:38:13.0617 0x115c  SerCx - ok
19:38:13.0617 0x115c  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\Windows\system32\drivers\SerCx2.sys
19:38:13.0632 0x115c  SerCx2 - ok
19:38:13.0632 0x115c  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\Windows\System32\drivers\serenum.sys
19:38:13.0632 0x115c  Serenum - ok
19:38:13.0632 0x115c  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\Windows\System32\drivers\serial.sys
19:38:13.0648 0x115c  Serial - ok
19:38:13.0648 0x115c  [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse        C:\Windows\System32\drivers\sermouse.sys
19:38:13.0648 0x115c  sermouse - ok
19:38:13.0663 0x115c  [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv      C:\Windows\system32\sessenv.dll
19:38:13.0663 0x115c  SessionEnv - ok
19:38:13.0663 0x115c  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\Windows\System32\drivers\sfloppy.sys
19:38:13.0663 0x115c  sfloppy - ok
19:38:13.0679 0x115c  [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:38:13.0679 0x115c  SharedAccess - ok
19:38:13.0695 0x115c  [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:38:13.0695 0x115c  ShellHWDetection - ok
19:38:13.0695 0x115c  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
19:38:13.0710 0x115c  SiSRaid2 - ok
19:38:13.0710 0x115c  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
19:38:13.0710 0x115c  SiSRaid4 - ok
19:38:13.0710 0x115c  [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost         C:\Windows\System32\smphost.dll
19:38:13.0726 0x115c  smphost - ok
19:38:13.0726 0x115c  [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:38:13.0726 0x115c  SNMPTRAP - ok
19:38:13.0726 0x115c  [ 240C5C3793206725AA05665851E8C214, 96ADFB85EB1623EB00C251C1C6A1F441A1795F0EBFD10B17DD1CA58E3AE8A90D ] spaceport       C:\Windows\system32\drivers\spaceport.sys
19:38:13.0742 0x115c  spaceport - ok
19:38:13.0742 0x115c  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\Windows\system32\drivers\SpbCx.sys
19:38:13.0742 0x115c  SpbCx - ok
19:38:13.0757 0x115c  [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler         C:\Windows\System32\spoolsv.exe
19:38:13.0773 0x115c  Spooler - ok
19:38:13.0898 0x115c  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\Windows\system32\sppsvc.exe
19:38:13.0960 0x115c  sppsvc - ok
19:38:13.0976 0x115c  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:38:13.0976 0x115c  srv - ok
19:38:13.0992 0x115c  [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:38:14.0007 0x115c  srv2 - ok
19:38:14.0007 0x115c  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:38:14.0023 0x115c  srvnet - ok
19:38:14.0023 0x115c  [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:38:14.0023 0x115c  SSDPSRV - ok
19:38:14.0038 0x115c  [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:38:14.0038 0x115c  SstpSvc - ok
19:38:14.0038 0x115c  [ 8330F6741D4D8691B58663EBD831F8D7, 42452A69CD2EA7CCD50A7F0ACFB804AA7CC7F38F47111CB57EEB8E8EA07A4D73 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
19:38:14.0492 0x115c  Stereo Service - ok
19:38:14.0492 0x115c  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
19:38:14.0492 0x115c  stexstor - ok
19:38:14.0507 0x115c  [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc          C:\Windows\System32\wiaservc.dll
19:38:14.0523 0x115c  stisvc - ok
19:38:14.0523 0x115c  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\Windows\system32\drivers\storahci.sys
19:38:14.0523 0x115c  storahci - ok
19:38:14.0523 0x115c  [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
19:38:14.0523 0x115c  storflt - ok
19:38:14.0523 0x115c  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\Windows\system32\drivers\stornvme.sys
19:38:14.0523 0x115c  stornvme - ok
19:38:14.0523 0x115c  [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc         C:\Windows\system32\storsvc.dll
19:38:14.0538 0x115c  StorSvc - ok
19:38:14.0538 0x115c  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\Windows\system32\drivers\storvsc.sys
19:38:14.0538 0x115c  storvsc - ok
19:38:14.0538 0x115c  [ 03618F935379614837F915D04C45FC0E, 9CC0CBA7AFC58E7F921C13FA3F5269714F1F827535A311E11EA48689C4D539DE ] storvsp         C:\Windows\System32\drivers\storvsp.sys
19:38:14.0538 0x115c  storvsp - ok
19:38:14.0538 0x115c  [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc           C:\Windows\system32\svsvc.dll
19:38:14.0538 0x115c  svsvc - ok
19:38:14.0538 0x115c  [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum          C:\Windows\System32\drivers\swenum.sys
19:38:14.0538 0x115c  swenum - ok
19:38:14.0554 0x115c  [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv           C:\Windows\System32\swprv.dll
19:38:14.0570 0x115c  swprv - ok
19:38:14.0585 0x115c  [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain         C:\Windows\system32\sysmain.dll
19:38:14.0601 0x115c  SysMain - ok
19:38:14.0617 0x115c  [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\Windows\System32\SystemEventsBrokerServer.dll
19:38:14.0617 0x115c  SystemEventsBroker - ok
19:38:14.0617 0x115c  [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\Windows\System32\TabSvc.dll
19:38:14.0617 0x115c  TabletInputService - ok
19:38:14.0632 0x115c  [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:38:14.0632 0x115c  TapiSrv - ok
19:38:14.0664 0x115c  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:38:14.0695 0x115c  Tcpip - ok
19:38:14.0726 0x115c  [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:38:14.0763 0x115c  TCPIP6 - ok
19:38:14.0767 0x115c  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:38:14.0767 0x115c  tcpipreg - ok
19:38:14.0767 0x115c  [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:38:14.0767 0x115c  tdx - ok
19:38:14.0767 0x115c  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\Windows\System32\drivers\terminpt.sys
19:38:14.0783 0x115c  terminpt - ok
19:38:14.0798 0x115c  [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService     C:\Windows\System32\termsrv.dll
19:38:14.0798 0x115c  TermService - ok
19:38:14.0814 0x115c  [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes          C:\Windows\system32\themeservice.dll
19:38:14.0814 0x115c  Themes - ok
19:38:14.0814 0x115c  [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER     C:\Windows\system32\mmcss.dll
19:38:14.0814 0x115c  THREADORDER - ok
19:38:14.0814 0x115c  [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker      C:\Windows\System32\TimeBrokerServer.dll
19:38:14.0814 0x115c  TimeBroker - ok
19:38:14.0829 0x115c  [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM             C:\Windows\system32\drivers\tpm.sys
19:38:14.0829 0x115c  TPM - ok
19:38:14.0829 0x115c  [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks          C:\Windows\System32\trkwks.dll
19:38:14.0829 0x115c  TrkWks - ok
19:38:14.0845 0x115c  [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:38:14.0845 0x115c  TrustedInstaller - ok
19:38:14.0845 0x115c  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:38:14.0845 0x115c  TsUsbFlt - ok
19:38:14.0845 0x115c  [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD         C:\Windows\System32\drivers\TsUsbGD.sys
19:38:14.0845 0x115c  TsUsbGD - ok
19:38:14.0861 0x115c  [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:38:14.0861 0x115c  tunnel - ok
19:38:14.0861 0x115c  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
19:38:14.0861 0x115c  uagp35 - ok
19:38:14.0861 0x115c  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\Windows\System32\drivers\uaspstor.sys
19:38:14.0861 0x115c  UASPStor - ok
19:38:14.0876 0x115c  [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000        C:\Windows\System32\drivers\ucx01000.sys
19:38:14.0876 0x115c  UCX01000 - ok
19:38:14.0876 0x115c  [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:38:14.0892 0x115c  udfs - ok
19:38:14.0892 0x115c  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\Windows\System32\drivers\UEFI.sys
19:38:14.0892 0x115c  UEFI - ok
19:38:14.0892 0x115c  [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:38:14.0892 0x115c  UI0Detect - ok
19:38:14.0892 0x115c  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:38:14.0908 0x115c  uliagpkx - ok
19:38:14.0908 0x115c  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\Windows\System32\drivers\umbus.sys
19:38:14.0908 0x115c  umbus - ok
19:38:14.0908 0x115c  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\Windows\System32\drivers\umpass.sys
19:38:14.0908 0x115c  UmPass - ok
19:38:14.0923 0x115c  [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService    C:\Windows\System32\umrdp.dll
19:38:14.0923 0x115c  UmRdpService - ok
19:38:14.0939 0x115c  [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost        C:\Windows\System32\upnphost.dll
19:38:14.0939 0x115c  upnphost - ok
19:38:14.0939 0x115c  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\Windows\System32\drivers\usbccgp.sys
19:38:14.0939 0x115c  usbccgp - ok
19:38:14.0954 0x115c  [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir          C:\Windows\System32\drivers\usbcir.sys
19:38:14.0954 0x115c  usbcir - ok
19:38:14.0954 0x115c  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\Windows\System32\drivers\usbehci.sys
19:38:14.0954 0x115c  usbehci - ok
19:38:14.0970 0x115c  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\Windows\System32\drivers\usbhub.sys
19:38:14.0970 0x115c  usbhub - ok
19:38:14.0986 0x115c  [ 65392F3F3F65E4C6CC82A0F4F8A0B051, C11B662A28D95820717DFFC6B76DBB755E4876009A2342E5E3992DE32D6BFF61 ] USBHUB3         C:\Windows\System32\drivers\UsbHub3.sys
19:38:15.0001 0x115c  USBHUB3 - ok
19:38:15.0001 0x115c  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\Windows\System32\drivers\usbohci.sys
19:38:15.0001 0x115c  usbohci - ok
19:38:15.0001 0x115c  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\Windows\System32\drivers\usbprint.sys
19:38:15.0017 0x115c  usbprint - ok
19:38:15.0017 0x115c  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\Windows\System32\drivers\USBSTOR.SYS
19:38:15.0017 0x115c  USBSTOR - ok
19:38:15.0017 0x115c  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\Windows\System32\drivers\usbuhci.sys
19:38:15.0033 0x115c  usbuhci - ok
19:38:15.0033 0x115c  [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI         C:\Windows\System32\drivers\USBXHCI.SYS
19:38:15.0033 0x115c  USBXHCI - ok
19:38:15.0048 0x115c  [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc        C:\Windows\system32\lsass.exe
19:38:15.0048 0x115c  VaultSvc - ok
19:38:15.0048 0x115c  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:38:15.0048 0x115c  vdrvroot - ok
19:38:15.0064 0x115c  [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds             C:\Windows\System32\vds.exe
19:38:15.0079 0x115c  vds - ok
19:38:15.0079 0x115c  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\Windows\system32\drivers\VerifierExt.sys
19:38:15.0079 0x115c  VerifierExt - ok
19:38:15.0095 0x115c  [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp           C:\Windows\System32\drivers\vhdmp.sys
19:38:15.0111 0x115c  vhdmp - ok
19:38:15.0111 0x115c  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:38:15.0111 0x115c  viaide - ok
19:38:15.0111 0x115c  [ 3CE922E34DB12D9F3C0EA856BC09687C, E50A1885FBC775E49614989ECFEA4ACBBDDA16AF459CC5361EED9E23CC7CD42C ] Vid             C:\Windows\System32\drivers\Vid.sys
19:38:15.0126 0x115c  Vid - ok
19:38:15.0126 0x115c  [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus           C:\Windows\system32\drivers\vmbus.sys
19:38:15.0126 0x115c  vmbus - ok
19:38:15.0126 0x115c  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\Windows\System32\drivers\VMBusHID.sys
19:38:15.0126 0x115c  VMBusHID - ok
19:38:15.0126 0x115c  [ 68F8C26DEA2D42E8DEC0778943433C80, 81E8F9D62815F94952CEEABD0689473CC330F7890F66872DCD35A43C06ED33CD ] vmbusr          C:\Windows\System32\drivers\vmbusr.sys
19:38:15.0126 0x115c  vmbusr - ok
19:38:15.0142 0x115c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\Windows\System32\ICSvc.dll
19:38:15.0142 0x115c  vmicguestinterface - ok
19:38:15.0158 0x115c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat   C:\Windows\System32\ICSvc.dll
19:38:15.0158 0x115c  vmicheartbeat - ok
19:38:15.0173 0x115c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\Windows\System32\ICSvc.dll
19:38:15.0173 0x115c  vmickvpexchange - ok
19:38:15.0189 0x115c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv         C:\Windows\System32\ICSvc.dll
19:38:15.0189 0x115c  vmicrdv - ok
19:38:15.0189 0x115c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown    C:\Windows\System32\ICSvc.dll
19:38:15.0204 0x115c  vmicshutdown - ok
19:38:15.0204 0x115c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync    C:\Windows\System32\ICSvc.dll
19:38:15.0220 0x115c  vmictimesync - ok
19:38:15.0223 0x115c  [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss         C:\Windows\System32\ICSvc.dll
19:38:15.0223 0x115c  vmicvss - ok
19:38:15.0223 0x115c  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:38:15.0223 0x115c  volmgr - ok
19:38:15.0239 0x115c  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:38:15.0239 0x115c  volmgrx - ok
19:38:15.0255 0x115c  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:38:15.0255 0x115c  volsnap - ok
19:38:15.0255 0x115c  [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci            C:\Windows\System32\drivers\vpci.sys
19:38:15.0255 0x115c  vpci - ok
19:38:15.0270 0x115c  [ ADBE96C33D1A5BB1BBAF90B4BC84F523, 6E9C9ED3D51E4B6E494D42ECA6F824AD86D676C12C39BBE6B8BD96366BCB02DA ] vpcivsp         C:\Windows\System32\drivers\vpcivsp.sys
19:38:15.0270 0x115c  vpcivsp - ok
19:38:15.0270 0x115c  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
19:38:15.0270 0x115c  vsmraid - ok
19:38:15.0286 0x115c  [ E369C59F2C0852DDD090C07E0DDE0051, 4FAC94458EAAEED4F84A86FBAB8FBB332D0AF85BD528E63C0C058A2DA8E3011D ] VSS             C:\Windows\system32\vssvc.exe
19:38:15.0317 0x115c  VSS - ok
19:38:15.0317 0x115c  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\Windows\system32\drivers\vstxraid.sys
19:38:15.0317 0x115c  VSTXRAID - ok
19:38:15.0317 0x115c  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
19:38:15.0333 0x115c  vwifibus - ok
19:38:15.0333 0x115c  [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
19:38:15.0333 0x115c  vwififlt - ok
19:38:15.0333 0x115c  [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
19:38:15.0333 0x115c  vwifimp - ok
19:38:15.0349 0x115c  [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time         C:\Windows\system32\w32time.dll
19:38:15.0349 0x115c  W32Time - ok
19:38:15.0349 0x115c  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\Windows\System32\drivers\wacompen.sys
19:38:15.0365 0x115c  WacomPen - ok
19:38:15.0381 0x115c  [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine        C:\Windows\system32\wbengine.exe
19:38:15.0412 0x115c  wbengine - ok
19:38:15.0412 0x115c  [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:38:15.0412 0x115c  WbioSrvc - ok
19:38:15.0428 0x115c  [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc          C:\Windows\System32\wcmsvc.dll
19:38:15.0428 0x115c  Wcmsvc - ok
19:38:15.0443 0x115c  [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:38:15.0443 0x115c  wcncsvc - ok
19:38:15.0443 0x115c  [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:38:15.0443 0x115c  WcsPlugInService - ok
19:38:15.0459 0x115c  [ 0359607177E5E9F6041136CC0A5CB0B6, 16687BE2639648CF46E8768BA1798030472C525612C629BF134D053240E2195B ] WdBoot          C:\Windows\system32\drivers\WdBoot.sys
19:38:15.0459 0x115c  WdBoot - ok
19:38:15.0459 0x115c  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:38:15.0474 0x115c  Wdf01000 - ok
19:38:15.0490 0x115c  [ DE8D12B4C3F55FA2C5E9774314F6C58A, C3E835DC066A94E1431BCDC90D7EA27AAC6F82826F4A5527B37D865241D7A366 ] WdFilter        C:\Windows\system32\drivers\WdFilter.sys
19:38:15.0490 0x115c  WdFilter - ok
19:38:15.0490 0x115c  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:38:15.0490 0x115c  WdiServiceHost - ok
19:38:15.0490 0x115c  [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:38:15.0490 0x115c  WdiSystemHost - ok
19:38:15.0490 0x115c  [ 4AD874CDC812EC156265E451B6B09DAB, 6E3E05B8301841425E9BB0D54B35EF386B78EEB307B5A6153FD1F366D30F23FA ] WdNisDrv        C:\Windows\system32\Drivers\WdNisDrv.sys
19:38:15.0506 0x115c  WdNisDrv - ok
19:38:15.0506 0x115c  WdNisSvc - ok
19:38:15.0506 0x115c  [ 91B18D7A1702ED589E67C6C81052B955, 5D1DA8B86106A28E50BBCCB36527CC130D41201F5BE1D3DC5F1D6F7ECCF807BA ] WebClient       C:\Windows\System32\webclnt.dll
19:38:15.0506 0x115c  WebClient - ok
19:38:15.0521 0x115c  [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:38:15.0521 0x115c  Wecsvc - ok
19:38:15.0521 0x115c  [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC      C:\Windows\system32\wephostsvc.dll
19:38:15.0521 0x115c  WEPHOSTSVC - ok
19:38:15.0521 0x115c  [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:38:15.0521 0x115c  wercplsupport - ok
19:38:15.0537 0x115c  [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:38:15.0537 0x115c  WerSvc - ok
19:38:15.0537 0x115c  [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS         C:\Windows\system32\DRIVERS\wfplwfs.sys
19:38:15.0537 0x115c  WFPLWFS - ok
19:38:15.0537 0x115c  [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc          C:\Windows\System32\wiarpc.dll
19:38:15.0537 0x115c  WiaRpc - ok
19:38:15.0537 0x115c  [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:38:15.0553 0x115c  WIMMount - ok
19:38:15.0553 0x115c  WinDefend - ok
19:38:15.0568 0x115c  [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\Windows\system32\winhttp.dll
19:38:15.0568 0x115c  WinHttpAutoProxySvc - ok
19:38:15.0584 0x115c  [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:38:15.0584 0x115c  Winmgmt - ok
19:38:15.0618 0x115c  [ 9CE162EB9057CF079736F4DD00FC0D6C, 412C34557866D2A3B3CDAFA5A03B87C01AACF75E349802E511098B20137028D9 ] WinRM           C:\Windows\system32\WsmSvc.dll
19:38:15.0649 0x115c  WinRM - ok
19:38:15.0681 0x115c  [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] WlanSvc         C:\Windows\System32\wlansvc.dll
19:38:15.0696 0x115c  WlanSvc - ok
19:38:15.0712 0x115c  [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc         C:\Windows\system32\wlidsvc.dll
19:38:15.0728 0x115c  wlidsvc - ok
19:38:15.0728 0x115c  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\Windows\System32\drivers\wmiacpi.sys
19:38:15.0728 0x115c  WmiAcpi - ok
19:38:15.0743 0x115c  [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:38:15.0743 0x115c  wmiApSrv - ok
19:38:15.0743 0x115c  WMPNetworkSvc - ok
19:38:15.0759 0x115c  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\Windows\system32\drivers\Wof.sys
19:38:15.0759 0x115c  Wof - ok
19:38:15.0775 0x115c  [ 61BF52E9FFAB27A0B6D621BE26088373, 81291D52C381360E69D51E7DEB05CFAC651A7E9EF781CA23062C0583D0C94708 ] workfolderssvc  C:\Windows\system32\workfolderssvc.dll
19:38:15.0806 0x115c  workfolderssvc - ok
19:38:15.0806 0x115c  [ 182561A14F2E93E81E66FE3700D17A5A, FB9A06058A8BCCEDCDC5BF8899D9B2FBA5752C262C5FC6D2B8338884F3303D12 ] wpcfltr         C:\Windows\system32\DRIVERS\wpcfltr.sys
19:38:15.0806 0x115c  wpcfltr - ok
19:38:15.0806 0x115c  [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:38:15.0806 0x115c  WPCSvc - ok
19:38:15.0821 0x115c  [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:38:15.0821 0x115c  WPDBusEnum - ok
19:38:15.0821 0x115c  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\Windows\system32\drivers\WpdUpFltr.sys
19:38:15.0821 0x115c  WpdUpFltr - ok
19:38:15.0821 0x115c  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:38:15.0821 0x115c  ws2ifsl - ok
19:38:15.0821 0x115c  [ 9654DE19551093CD73874281E1573C94, 5E3513EC0CB180D90904BE8970AB64A4434279E8C467AE2CF693254E47B1D11E ] wscsvc          C:\Windows\System32\wscsvc.dll
19:38:15.0821 0x115c  wscsvc - ok
19:38:15.0837 0x115c  WSearch - ok
19:38:15.0884 0x115c  [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService       C:\Windows\System32\WSService.dll
19:38:15.0915 0x115c  WSService - ok
19:38:15.0962 0x115c  [ D24002EB2F4A8A04897703067E81CC5D, 03806198D26DD7BA3E27EFE0911B49E5B48CAD8A05EC4F56AF45CF1E3FAD6916 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:38:15.0993 0x115c  wuauserv - ok
19:38:16.0009 0x115c  [ D537815E450A149752C15868392AD1F3, 8788CE493349299DB36E409C8CC3C6EA08301FA492C95D9D556E00BC13A05F13 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:38:16.0009 0x115c  WudfPf - ok
19:38:16.0025 0x115c  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFRd          C:\Windows\System32\drivers\WUDFRd.sys
19:38:16.0040 0x115c  WUDFRd - ok
19:38:16.0056 0x115c  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFSensorLP    C:\Windows\system32\DRIVERS\WUDFRd.sys
19:38:16.0056 0x115c  WUDFSensorLP - ok
19:38:16.0071 0x115c  [ 9CDC2059A23E3C9B57696178508777E7, B680A2E2EDA5C8C6A547E7D9B2F2F8E6407C3EA0A01B82A4B88D48A27913A597 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:38:16.0071 0x115c  wudfsvc - ok
19:38:16.0087 0x115c  [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdFs       C:\Windows\system32\DRIVERS\WUDFRd.sys
19:38:16.0087 0x115c  WUDFWpdFs - ok
19:38:16.0103 0x115c  [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:38:16.0103 0x115c  WwanSvc - ok
19:38:16.0165 0x115c  [ C3FFB098C24A82B61E1818C3BB978B48, C7BC57A8D549B7478052F05FD0B4C623F1B70187358FD3CB5A7E9B5092FBD75F ] ZeroConfigService C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
19:38:16.0228 0x115c  ZeroConfigService - ok
19:38:16.0228 0x115c  ================ Scan global ===============================
19:38:16.0228 0x115c  [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\Windows\system32\basesrv.dll
19:38:16.0244 0x115c  [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\Windows\system32\winsrv.dll
19:38:16.0244 0x115c  [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\Windows\system32\sxssrv.dll
19:38:16.0244 0x115c  [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\Windows\system32\services.exe
19:38:16.0259 0x115c  [ Global ] - ok
19:38:16.0259 0x115c  ================ Scan MBR ==================================
19:38:16.0259 0x115c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:38:16.0337 0x115c  \Device\Harddisk0\DR0 - ok
19:38:16.0337 0x115c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
19:38:16.0337 0x115c  \Device\Harddisk1\DR1 - ok
19:38:16.0337 0x115c  ================ Scan VBR ==================================
19:38:16.0337 0x115c  [ 391795314C70F0342F4774A7CDBC9886 ] \Device\Harddisk0\DR0\Partition1
19:38:16.0337 0x115c  \Device\Harddisk0\DR0\Partition1 - ok
19:38:16.0353 0x115c  [ 86B77B6E8260D0E095019A4656CDB6D7 ] \Device\Harddisk0\DR0\Partition2
19:38:16.0353 0x115c  \Device\Harddisk0\DR0\Partition2 - ok
19:38:16.0353 0x115c  [ F41F30CA5F1C4C0471CF923F9A1D8DBD ] \Device\Harddisk1\DR1\Partition1
19:38:16.0992 0x115c  \Device\Harddisk1\DR1\Partition1 - ok
19:38:16.0992 0x115c  ================ Scan generic autorun ======================
19:38:17.0008 0x115c  [ 6E0BDFBEEED65B017F2E4C2C910B0520, 54D798C2E2804DCDB84E9650EA4A032C669B10C586B396D5505F16235D83882C ] C:\Windows\system32\rundll32.exe
19:38:17.0023 0x115c  Logitech Download Assistant - ok
19:38:17.0102 0x115c  [ 1F441326CD77B3F1532D487004B180FF, FD2FE6EECE1EF99F800DAF7B0C825C94FACE4C6D5806A2335B4D3C41F1E87F7F ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
19:38:17.0133 0x115c  NvBackend - ok
19:38:17.0133 0x115c  [ 6E0BDFBEEED65B017F2E4C2C910B0520, 54D798C2E2804DCDB84E9650EA4A032C669B10C586B396D5505F16235D83882C ] C:\Windows\system32\rundll32.exe
19:38:17.0133 0x115c  ShadowPlay - ok
19:38:17.0133 0x115c  BTMTrayAgent - ok
19:38:17.0273 0x115c  [ FEFB41BB37B9C41F8AD9CB07533C43EF, E7D78E186E6C1FCD144ABA986EEDB06FB700D9A5C4666A090DE6CF48B748855D ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
19:38:17.0352 0x115c  RTHDVCPL - ok
19:38:17.0352 0x115c  [ C9900177A954E22C84A696075A40A173, 33E32173FF811DF1B687916CB3CADAE2907DAF5AC4B80F559039D3B61553C48F ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
19:38:17.0352 0x115c  IAStorIcon - ok
19:38:17.0352 0x115c  Waiting for KSN requests completion. In queue: 304
19:38:18.0367 0x115c  Waiting for KSN requests completion. In queue: 304
19:38:19.0381 0x115c  Waiting for KSN requests completion. In queue: 304
19:38:20.0089 0x05e8  Object required for P2P: [ D5C3776CBD8BC307DCCA3FD4CE667A37 ] SessionEnv
19:38:20.0386 0x115c  Waiting for KSN requests completion. In queue: 145
19:38:21.0400 0x115c  Waiting for KSN requests completion. In queue: 145
19:38:22.0416 0x115c  Waiting for KSN requests completion. In queue: 145
19:38:22.0728 0x05e8  Object send P2P result: true
19:38:22.0744 0x05e8  Object required for P2P: [ 3D748E5558FD9A9F03182CB2330698DC ] TermService
19:38:23.0428 0x115c  Waiting for KSN requests completion. In queue: 107
19:38:24.0443 0x115c  Waiting for KSN requests completion. In queue: 107
19:38:25.0304 0x05e8  Object send P2P result: true
19:38:25.0476 0x115c  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.6.305.0 ), 0x61100 ( enabled : updated )
19:38:25.0522 0x115c  Win FW state via NFP2: enabled
19:38:28.0006 0x115c  ============================================================
19:38:28.0006 0x115c  Scan finished
19:38:28.0006 0x115c  ============================================================
19:38:28.0021 0x150c  Detected object count: 0
19:38:28.0021 0x150c  Actual detected object count: 0


# AdwCleaner v4.109 - Report created 01/02/2015 at 19:41:18
# Updated 24/01/2015 by Xplode
# Database : 2015-01-26.1 [Live]
# Operating System : Windows 8.1 Pro  (64 bits)
# Username : Bryan - OFFICEPC
# Running from : C:\Users\Bryan\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Found : C:\FinanceAlert
Folder Found : C:\Users\Bryan\AppData\Local\FinanceAlert

***** [ Scheduled Tasks ] *****

Task Found : ApCatSupport

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\superfish.com
Key Found : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.superfish.com
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\{F2E9660B-98AF-42c0-8258-9CDDF07BF95D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{058F0E48-61CA-4964-9FBA-1978A1BB060D}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{18F33C35-8EF2-40D7-8BA4-932B0121B472}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{533403E2-6E21-4615-9E28-43F4E97E977B}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

*************************

AdwCleaner[R0].txt - [1789 octets] - [01/02/2015 19:41:18]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [1849 octets] ##########


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.1 (12.28.2014:1)
OS: Windows 8.1 Pro x64
Ran by Bryan on Sun 02/01/2015 at 19:44:44.47
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

 

~~~ Registry Keys

 

~~~ Files

 

~~~ Folders

 

~~~ Event Viewer Logs were cleared

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sun 02/01/2015 at 19:45:32.18
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~



#5 bkloos

bkloos
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:36 AM

Posted 01 February 2015 - 08:09 PM

ESET Report:

 

C:\Users\All Users\geMkSLsA\dat\pqsdWRcPm.dll a variant of MSIL/Adware.PullUpdate.K.gen application 
C:\Users\All Users\geMkSLsA\dat\pyaqOrm.dll a variant of MSIL/Adware.PullUpdate.K.gen application 
C:\ProgramData\geMkSLsA\dat\pqsdWRcPm.dll a variant of MSIL/Adware.PullUpdate.K.gen application cleaned by deleting - quarantined
C:\ProgramData\geMkSLsA\dat\pyaqOrm.dll a variant of MSIL/Adware.PullUpdate.K.gen application cleaned by deleting - quarantined
C:\Users\Bryan\AppData\Local\Microsoft\Windows\INetCache\IE\FYME3LGY\7Zip.exe a variant of Win32/InstallIQ.A potentially unwanted application deleted - quarantined
C:\Users\Bryan\AppData\Local\Microsoft\Windows\INetCache\IE\KYFIVCPO\Core-Temp-installer.exe Win32/Somoto.Q potentially unwanted application deleted - quarantined
 



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:36 AM

Posted 02 February 2015 - 05:43 PM

Hi Brian
Ice storm took out internet.

Check for and disable or remove any unwanted add-ons from your browser:There are also more suggestion in these articles:Lets also run this and see how it is now.

Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.


Go to Step 3 and click on Check button next to 1. See If Check Disk Is Needed.
If the tool indicates that the Check Disk is needed click on Do It button next to 2. Check Disk, then restart your computer.

1406373241-3-o.png


Once the above is done, go to Step 4 and allow it to run System File Check by clicking on the Do It button.

1406373250-4-o.png


Go to Step 5 and under"System Restore" click on Create button.

1406373259-5-o.png


Go to Start Repairs tab and click the Start button.

1406373267-start1-o.png


Leave the check marks as they are.
NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

Click on Start Repairs button.

1406373275-start2-o.png


After the repair finished, you may be prompted to restart the computer. Please allow it to do so.

Please post the Windows Repair log which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 bkloos

bkloos
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:36 AM

Posted 02 February 2015 - 09:26 PM

Tweaking.com - Windows Repair v2.10.4
--------------------------------------------------------------------------------

System Variables
--------------------------------------------------------------------------------
OS: Windows 8.1 Pro
OS Architecture: 64-bit
OS Version: 6.3.9600
OS Service Pack:
Computer Name: OFFICEPC
Windows Drive: C:\
Windows Path: C:\Windows
Program Files: C:\Program Files
Program Files (x86): C:\Program Files (x86)
Current Profile: C:\Users\Bryan
Current Profile SID: S-1-5-21-2169995315-3938276009-3233152982-1001
Current Profile Classes: S-1-5-21-2169995315-3938276009-3233152982-1001_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\Windows\ServiceProfiles
Local Settings AppData: C:\Users\Bryan\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 01 Day 00:58:23

Process Count: 82
Commit Total: 3.00 GB
Commit Limit: 31.86 GB
Commit Peak: 3.60 GB
Handle Count: 30949
Kernel Total: 903.08 MB
Kernel Paged: 633.50 MB
Kernel Non Paged: 269.59 MB
System Cache: 10.81 GB
Thread Count: 1055
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 15.86 GB
Memory Used: 2.18 GB(13.7103%)
Memory Avail.: 13.69 GB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 15.86 GB
Memory Used: 1.89 GB(11.8893%)
Memory Avail.: 13.98 GB
--------------------------------------------------------------------------------

Starting Repairs...
   Started at (2/2/2015 9:09:02 PM)

Setting Any Missing 'InstallDate' From Uninstall Sections Before Running Repair...
Total Missing 'InstallDate' Fixed: 38
 
01 - Reset Registry Permissions
   Restore Windows 8 Default Registry Permissions
   Start (2/2/2015 9:09:03 PM)

Decompressing & Updating Windows 8 Permission File hkud.txt
Done,  0.17 seconds.

Decompressing & Updating Windows 8 Permission File hkcu.txt
Done,  0.16 seconds.

Decompressing & Updating Windows 8 Permission File hkcr.txt
Done,  0.4 seconds.

Decompressing & Updating Windows 8 Permission File hklm.txt
Done,  0.73 seconds.

   Running Repair Under System Account
   Running Repair Under Current User Account
   Done (2/2/2015 9:10:47 PM)

03 - Reset Service Permissions
   Start (2/2/2015 9:10:47 PM)
   Running Repair Under System Account
   Done (2/2/2015 9:10:50 PM)

04 - Register System Files
   Start (2/2/2015 9:10:50 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:11:05 PM)

05 - Repair WMI
   Start (2/2/2015 9:11:05 PM)

   Starting Security Center So We Can Export The Security Info.

   Exporting Antivirus Info...
   Windows Defender Exported.

   Exporting AntiSpyware Info...
   Windows Defender Exported.

   Exporting 3rd Party Firewall Info...
   No Firewall Products Reported.

   Running Repair Under Current User Account
   Done (2/2/2015 9:12:17 PM)

06 - Repair Windows Firewall
   Start (2/2/2015 9:12:17 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:12:33 PM)

07 - Repair Internet Explorer
   Start (2/2/2015 9:12:33 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:12:48 PM)

08 - Repair MDAC/MS Jet
   Start (2/2/2015 9:12:48 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:12:54 PM)

09 - Repair Hosts File
   Start (2/2/2015 9:12:54 PM)
   Running Repair Under System Account
   Done (2/2/2015 9:12:55 PM)

10 - Remove Policies Set By Infections
   Start (2/2/2015 9:12:55 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:12:57 PM)

11 - Repair Start Menu Icons Removed By Infections
   Start (2/2/2015 9:12:57 PM)
   Running Repair Under System Account
   Done (2/2/2015 9:12:58 PM)

12 - Repair Icons
   Start (2/2/2015 9:12:58 PM)
   Running Repair Under Current User Account
   Done (2/2/2015 9:12:59 PM)

13 - Repair Winsock & DNS Cache
   Start (2/2/2015 9:12:59 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:13:08 PM)

15 - Repair Proxy Settings
   Start (2/2/2015 9:13:08 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:13:10 PM)

17 - Repair Windows Updates
   Start (2/2/2015 9:13:10 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Setting Windows Updates Files That Are In Use To Be Removed At Next Boot.
   Done (2/2/2015 9:13:28 PM)

18 - Repair CD/DVD Missing/Not Working
   Start (2/2/2015 9:13:28 PM)
   iTunes not found, not applying UpperFilters iTunes Reg Key
   Done (2/2/2015 9:13:28 PM)

19 - Repair Volume Shadow Copy Service
   Start (2/2/2015 9:13:28 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:13:48 PM)

21 - Repair MSI (Windows Installer)
   Start (2/2/2015 9:13:48 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:13:57 PM)

23.01 - Repair bat Association
   Start (2/2/2015 9:13:57 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:13:59 PM)

23.02 - Repair cmd Association
   Start (2/2/2015 9:13:59 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:01 PM)

23.03 - Repair com Association
   Start (2/2/2015 9:14:01 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:03 PM)

23.04 - Repair Directory Association
   Start (2/2/2015 9:14:03 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:05 PM)

23.05 - Repair Drive Association
   Start (2/2/2015 9:14:05 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:07 PM)

23.06 - Repair exe Association
   Start (2/2/2015 9:14:07 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:09 PM)

23.07 - Repair Folder Association
   Start (2/2/2015 9:14:09 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:11 PM)

23.08 - Repair inf Association
   Start (2/2/2015 9:14:11 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:13 PM)

23.09 - Repair lnk (Shortcuts) Association
   Start (2/2/2015 9:14:13 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:15 PM)

23.10 - Repair msc Association
   Start (2/2/2015 9:14:15 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:17 PM)

23.11 - Repair reg Association
   Start (2/2/2015 9:14:17 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:19 PM)

23.12 - Repair scr Association
   Start (2/2/2015 9:14:19 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:22 PM)

24 - Repair Windows Safe Mode
   Start (2/2/2015 9:14:22 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:24 PM)

25 - Repair Print Spooler
   Start (2/2/2015 9:14:24 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:35 PM)

26 - Restore Important Windows Services
   Start (2/2/2015 9:14:35 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:40 PM)

27 - Set Windows Services To Default Startup
   Start (2/2/2015 9:14:40 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:14:42 PM)

28 - Repair Windows 8 App Store
   Start (2/2/2015 9:14:42 PM)

Decompressing & Updating Windows 8 Permission File hkcu.txt
Done,  0.2 seconds.

   Running Repair Under Current User Account
   Done (2/2/2015 9:19:41 PM)

29 - Repair Windows 8 Component Store
   Start (2/2/2015 9:19:41 PM)
   Running Repair Under Current User Account
   Done (2/2/2015 9:23:17 PM)

30 - Restore Windows 8 COM+ Unmarshalers
   Start (2/2/2015 9:23:17 PM)
   Running Repair Under System Account
Processing ACL of: <classes_root\Unmarshalers>

SetACL finished with error(s):
SetACL error message: The call to SetNamedSecurityInfo () failed
Operating system error message: Access is denied.

   Done (2/2/2015 9:23:18 PM)

31 - Repair Windows 'New' Submenu
   Start (2/2/2015 9:23:18 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (2/2/2015 9:23:20 PM)

Cleaning up empty logs...

All Selected Repairs Done.
   Done at (2/2/2015 9:23:20 PM)
   Total Repair Time: 00:14:20

...YOU MUST RESTART YOUR SYSTEM...



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:36 AM

Posted 02 February 2015 - 09:35 PM

Ok , those are done...All OK now?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 bkloos

bkloos
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:36 AM

Posted 02 February 2015 - 09:48 PM

Things seem to be back on track.

I'll give it some time, but unless something pops up I guess we are good!

One last question...

 

What do you recommend for free virus protection that does not have adverse affect on performance?

 

Thanks,

 

Bryan



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,214 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:36 AM

Posted 02 February 2015 - 09:57 PM

Bryan, I like the Avira or Bitdefender

L@@K
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 bkloos

bkloos
  • Topic Starter

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:08:36 AM

Posted 02 February 2015 - 10:07 PM

Thanks for the help!

You guys are great!






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users