Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Maybe got infected...? or not?


  • Please log in to reply
18 replies to this topic

#1 GeorgeStam89

GeorgeStam89

  • Members
  • 134 posts
  • OFFLINE
  •  
  • Local time:06:17 AM

Posted 02 February 2015 - 05:09 PM

Hello,
2 hours ago in this site http://www.updownload.com/avp-evolution-pc/# i clicked to the right ''download now'' button and Avast free antivirus alerts me that the infection excluded(with red panel at the down right of screen).
I did a full scan with Avast and Malwarebytes Antirootkit but no malware found.
Is my desktop clean after all??



BC AdBot (Login to Remove)

 


m

#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,114 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 02 February 2015 - 05:51 PM

Hello, most likely is the game installer had bundled malware and your AV blocked it.

Lets run these and be sure..

3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Hold down Control and click on this link to open ESET Online Scanner in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE: Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 GeorgeStam89

GeorgeStam89
  • Topic Starter

  • Members
  • 134 posts
  • OFFLINE
  •  
  • Local time:06:17 AM

Posted 03 February 2015 - 02:11 AM

MiniToolBox by Farbar  Version: 30-11-2014
Ran by User (administrator) on 03-02-2015 at 08:13:27
Running from "E:\UserFiles\Downloads"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
矣 ⫨ IP Windows
 
⫬ ᨠ 㣞 cache 墬 DNS.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Intel® Ethernet Connection I217-V = Τοπική σύνδεση (Connected)
Qualcomm Atheros AR946x Wireless Network Adapter = Σύνδεση ασύρματου δικτύου (Media disconnected)
 
 
# ----------------------------------
# 矣 ⫨ IPv4
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# ⢦ 矣 ⫨ IPv4
 
 
 
矣 ⫨ IP Windows
 
    . . . . : George
   埞 稠 DNS  . . . . . . . : 
   秦 棙. . . . . . . . . . . :
   垩 暞 IP. . . :
   垩 ᙞ WINS . . :
   婫 㫞 DNS . : lan
 
☪ Ethernet 礛:
 
   埞 DNS ⤞ 礛: lan
    . . . . . . . . . . . . : Intel® Ethernet Connection I217-V
    矬. . . . . . . . . : AC-22-0B-DA-95-3C
   垩 DHCP. . . . . . . .  :
   棘 矣 . . . . . :
   矬 IPv6 礛 . : fe80::8d45:34a5:3797:916e%17(飜) 
   矬 IPv4. . . . . . . . . . : 192.168.1.64(飜) 
   ᩡ 禬. . . . . . . . . : 255.255.255.0
   뤘 婟ਫ਼. . . . . . . .  : 嫞, 3 妬 2015 8:08:26
   㥞 婟ਫ਼ . . . . . . . . . : ᨫ, 4 妬 2015 8:08:26
   ⤞ 碞 . . . . . . .  : 192.168.1.1
    DHCP . . . . . . . .  : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 195830283
   DUID -᫞ DHCPv6 . . : 00-01-00-01-1C-01-22-6C-AC-22-0B-DA-95-3C
    DNS . . . . . . . . . : 192.168.1.1
   NetBIOS Tcpip. . . . . . . . . : ⤦
 
☪ 稣 禬 LAN 礛 稣 禬:
 
   ᩫ ⩦ . . . . . . . . . : 뮜
   埞 DNS ⤞ 礛: 
    . . . . . . . . . . . . : Qualcomm Atheros AR946x Wireless Network Adapter
    矬. . . . . . . . . : 24-0A-64-1C-A9-92
   垩 DHCP. . . . . . . .  :
   棘 矣 . . . . . :
 
☪ ⫝̸ isatap.{F0B08D4C-04EA-4C11-BFB2-2E38A58EECEF}:
 
   ᩫ ⩦ . . . . . . . . . : 뮜
   埞 DNS ⤞ 礛: 
    . . . . . . . . . . . . : ☪ Microsoft ISATAP
    矬. . . . . . . . . : 00-00-00-00-00-00-00-E0
   垩 DHCP. . . . . . .. . :
   棘 矣 . . . . . :
 
☪ ⫝̸ Teredo Tunneling Pseudo-Interface:
 
   埞 DNS ⤞ 礛: 
    . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
    矬. . . . . . . . . : 00-00-00-00-00-00-00-E0
   垩 DHCP. . . . . . .. . :
   棘 矣 . . . . . :
   矬 IPv6. . . . . . . . . . : 2001:0:5ef5:79fd:3c38:8ca:fda8:79f2(飜) 
   矬 IPv6 礛 . : fe80::3c38:8ca:fda8:79f2%11(飜) 
   ⤞ 碞 . . . . . . .  : ::
   NetBIOS Tcpip. . . . . . . . . : ⤦
 
☪ ⫝̸ isatap.lan:
 
   ᩫ ⩦ . . . . . . . . . : 뮜
   埞 DNS ⤞ 礛: lan
    . . . . . . . . . . . . : ☪ Microsoft ISATAP #4
    矬. . . . . . . . . : 00-00-00-00-00-00-00-E0
   垩 DHCP. . . . . . .. . :
   棘 矣 . . . . . :
:  dsldevice.lan
Address:  192.168.1.1
 
:   google.com
Addresses:  2a00:1450:4009:80a::200e
 216.58.208.78
 
 
嫘 Ping google.com [216.58.208.78] 32 byte :
ᤫ : 216.58.208.78: bytes=32 椦=61ms TTL=54
ᤫ : 216.58.208.78: bytes=32 椦=62ms TTL=54
 
Ping 216.58.208.78:
    ⫘: ⤘ = 2, ⤫ = 2,
            ⤫ = 0 (颜 0%),
㟦 ⚚
⧫:
    ᮠ = 61ms, ⚠ = 62ms, ⩦ 樦 = 61ms
:  dsldevice.lan
Address:  192.168.1.1
 
:   yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
嫘 Ping yahoo.com [98.138.253.109] 32 byte :
ᤫ : 98.138.253.109: bytes=32 椦=188ms TTL=50
ᤫ : 98.138.253.109: bytes=32 椦=188ms TTL=50
 
Ping 98.138.253.109:
    ⫘: ⤘ = 2, ⤫ = 2,
            ⤫ = 0 (颜 0%),
㟦 ⚚
⧫:
    ᮠ = 188ms, ⚠ = 188ms, ⩦ 樦 = 188ms
 
嫘 Ping 127.0.0.1 32 byte :
ᤫ : 127.0.0.1: bytes=32 椦<1ms TTL=128
ᤫ : 127.0.0.1: bytes=32 椦<1ms TTL=128
 
Ping 127.0.0.1:
    ⫘: ⤘ = 2, ⤫ = 2,
            ⤫ = 0 (颜 0%),
㟦 ⚚
⧫:
    ᮠ = 0ms, ⚠ = 0ms, ⩦ 樦 = 0ms
===========================================================================
婫 ⩜
 17...ac 22 0b da 95 3c ......Intel® Ethernet Connection I217-V
 15...24 0a 64 1c a9 92 ......Qualcomm Atheros AR946x Wireless Network Adapter
  1...........................Software Loopback Interface 1
 16...00 00 00 00 00 00 00 e0 ☪ Microsoft ISATAP
 11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 12...00 00 00 00 00 00 00 e0 ☪ Microsoft ISATAP #4
===========================================================================
 
IPv4 夘
===========================================================================
:
矬 禬    ᩡ 禬             碞      礛   ⫨
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.64     20
        127.0.0.0        255.0.0.0       礛         127.0.0.1    306
        127.0.0.1  255.255.255.255       礛         127.0.0.1    306
  127.255.255.255  255.255.255.255       礛         127.0.0.1    306
      192.168.1.0    255.255.255.0       礛      192.168.1.64    276
     192.168.1.64  255.255.255.255       礛      192.168.1.64    276
    192.168.1.255  255.255.255.255       礛      192.168.1.64    276
        224.0.0.0        240.0.0.0       礛         127.0.0.1    306
        224.0.0.0        240.0.0.0       礛      192.168.1.64    276
  255.255.255.255  255.255.255.255       礛         127.0.0.1    306
  255.255.255.255  255.255.255.255       礛      192.168.1.64    276
===========================================================================
:
 
 
IPv6 夘
===========================================================================
:
 矬 禬 If    碞
 11     58 ::/0                     礛
  1    306 ::1/128                   礛
 11     58 2001::/32                 礛
 11    306 2001:0:5ef5:79fd:3c38:8ca:fda8:79f2/128
                                    礛
 17    276 fe80::/64                 礛
 11    306 fe80::/64                 礛
 11    306 fe80::3c38:8ca:fda8:79f2/128
                                    礛
 17    276 fe80::8d45:34a5:3797:916e/128
                                    礛
  1    306 ff00::/8                 礛
 11    306 ff00::/8                 礛
 17    276 ff00::/8                 礛
===========================================================================
:
 
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (02/03/2015 08:08:44 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (02/02/2015 01:58:53 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/31/2015 08:02:21 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/29/2015 09:36:10 PM) (Source: SideBySide) (User: )
Description: Η δημιουργία περιβάλλοντος ενεργοποίησης για το "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest1" απέτυχε. Παρουσιάστηκε σφάλμα στο αρχείο διακήρυξης ή πολιτικής "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest2" στη γραμμή C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest3.
Η έκδοση ενός στοιχείου που απαιτείται για την εφαρμογή έρχεται σε διένεξη με την έκδοση άλλου στοιχείου το οποίο είναι ήδη ενεργό.
Τα στοιχεία που έρχονται σε διένεξη είναι:.
Στοιχείο 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.
Στοιχείο 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
 
Error: (01/28/2015 05:04:19 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/28/2015 00:36:46 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/27/2015 08:41:58 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/21/2015 10:51:07 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/19/2015 05:57:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/17/2015 04:23:51 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (02/03/2015 08:08:31 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: συγκεκριμένης εφαρμογήςΤοπικήΕκκίνηση{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Χρήση LRPC)
 
Error: (02/03/2015 08:08:31 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: συγκεκριμένης εφαρμογήςΤοπικήΕκκίνηση{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Χρήση LRPC)
 
Error: (02/03/2015 08:08:25 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: συγκεκριμένης εφαρμογήςΤοπικήΕκκίνηση{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Χρήση LRPC)
 
Error: (02/03/2015 08:08:25 AM) (Source: DCOM) (User: NT AUTHORITY)
Description: συγκεκριμένης εφαρμογήςΤοπικήΕκκίνηση{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Χρήση LRPC)
 
Error: (02/02/2015 07:59:12 PM) (Source: volsnap) (User: )
Description: Τα σκιώδη αντίγραφα του τόμου C: ματαιώθηκαν επειδή ο χώρος αποθήκευσης σκιωδών αντιγράφων δεν ήταν δυνατό να αυξηθεί εξαιτίας ενός επιβεβλημένου ορίου από το χρήστη.
 
Error: (02/02/2015 01:58:47 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: συγκεκριμένης εφαρμογήςΤοπικήΕκκίνηση{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Χρήση LRPC)
 
Error: (02/02/2015 01:58:47 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: συγκεκριμένης εφαρμογήςΤοπικήΕκκίνηση{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Χρήση LRPC)
 
Error: (02/01/2015 07:59:36 PM) (Source: volsnap) (User: )
Description: Τα σκιώδη αντίγραφα του τόμου C: ματαιώθηκαν επειδή ο χώρος αποθήκευσης σκιωδών αντιγράφων δεν ήταν δυνατό να αυξηθεί εξαιτίας ενός επιβεβλημένου ορίου από το χρήστη.
 
Error: (01/31/2015 08:02:11 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: συγκεκριμένης εφαρμογήςΤοπικήΕκκίνηση{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Χρήση LRPC)
 
Error: (01/31/2015 08:02:10 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: συγκεκριμένης εφαρμογήςΤοπικήΕκκίνηση{22279AF5-03AE-4CAF-989D-2530918B2F1C}{0773CCD6-59A2-4D26-B235-19247767E645}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (Χρήση LRPC)
 
 
Microsoft Office Sessions:
=========================
Error: (02/03/2015 08:08:44 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (02/02/2015 01:58:53 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/31/2015 08:02:21 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/29/2015 09:36:10 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifestE:\UserFiles\Programs Installers\esetsmartinstaller_enu.exe
 
Error: (01/28/2015 05:04:19 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/28/2015 00:36:46 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/27/2015 08:41:58 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/21/2015 10:51:07 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/19/2015 05:57:46 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (01/17/2015 04:23:51 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
CodeIntegrity Errors:
===================================
  Date: 2015-02-03 08:09:27.114
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-02 23:06:17.605
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-02 22:04:45.697
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-02 15:46:39.519
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-02 15:34:20.366
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-02 15:05:26.436
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-02 14:08:59.474
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-02 13:58:52.793
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-02 13:32:04.956
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
  Date: 2015-02-01 18:28:58.656
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\sxs.dll because the set of per-page image hashes could not be found on the system.
 
 
 
=========================== Installed Programs ============================
7-Zip 9.22 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0922-000001000000}) (Version: 9.22.00.0 - Igor Pavlov)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Refresh Manager (x32 Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{61942EF5-2CD8-47D4-869C-2E9A8BB085F1}) (Version: 1.3.4.001 - Asmedia Technology)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.0.2208 - AVAST Software)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.02 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.4852 - CDBurnerXP)
CPUID HWMonitor 1.26 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
CPUID ROG CPU-Z 1.70 (HKLM\...\CPUID ROG CPU-Z_is1) (Version: 1.70 - CPUID, Inc.)
CyberPower PowerPanel Personal Edition 1.4.3 (HKLM-x32\...\{DEC7E1CD-31A2-4F2F-BEE5-CF80E8E58C2A}) (Version: 1.4.3 - Cyber Power Systems, Inc.)
Darksiders II (HKLM-x32\...\Steam App 50650) (Version:  - Vigil Games)
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Dropbox (HKCU\...\Dropbox) (Version: 3.0.3 - Dropbox, Inc.)
Free YouTube to MP3 Converter version 3.12.52.1215 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.52.1215 - DVDVideoSoft Ltd.)
Glary Utilities 5.13 (HKLM-x32\...\Glary Utilities 5) (Version: 5.13.0.26 - Glarysoft Ltd)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.93 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.0.0.1323 - Intel Corporation)
Intel® Network Connections 18.1.59.0 (HKLM\...\PROSetDX) (Version: 18.1.59.0 - Intel)
Intel® Network Connections 18.1.59.0 (Version: 18.1.59.0 - Intel) Hidden
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.0.19 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.27.798.1 - Intel Corporation) Hidden
Macrium Reflect Free Edition (HKLM\...\MacriumReflect) (Version: 5.3 - Paramount Software (UK) Ltd.)
Macrium Reflect Free Edition (Version: 5.3.7220 - Paramount Software (UK) Ltd.) Hidden
Malwarebytes Anti-Malware έκδοση 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (ELL) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Ελληνικά) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1032) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Version: 4.5.51209 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Mouse Editor (HKLM-x32\...\InstallShield_{3A4218DE-B9DB-4AD5-9DB2-5853D3AA0335}) (Version: 12.08.0006 - Mouse Editor)
MOUSE Editor (x32 Version: 12.08.0006 - Mouse Editor) Hidden
NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version:  - )
NVIDIA Install Application (Version: 2.1002.154.1150 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.12.6514 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.4.0 - NVIDIA Corporation) Hidden
NVIDIA Πρόγραμμα οδήγησης 3D Vision 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Πρόγραμμα οδήγησης γραφικών 340.52 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.52 - NVIDIA Corporation)
NVIDIA Πρόγραμμα οδήγησης ήχου HD 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{2D55F2B5-8C83-4818-892D-9B3B125C119D}) (Version: 4.11.9775 - Apache Software Foundation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6853 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition (HKLM-x32\...\RivaTuner) (Version: v2.24 MSI Master Overclocking Arena 2009 edition - Alexey Nicolaychuk)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamViewer 9 (HKLM-x32\...\TeamViewer 9) (Version: 9.0.31064 - TeamViewer)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Ενημερώσεις NVIDIA 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Πίνακας Ελέγχου NVIDIA 340.52 (Version: 340.52 - NVIDIA Corporation) Hidden
 
========================= Memory info: ===================================
 
Percentage of memory in use: 25%
Total physical RAM: 8129.73 MB
Available physical RAM: 6095.84 MB
Total Pagefile: 16257.64 MB
Available Pagefile: 13932.04 MB
Total Virtual: 4095.88 MB
Available Virtual: 3964.83 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:931.51 GB) (Free:871.3 GB) NTFS
3 Drive e: (Data) (Fixed) (Total:931.41 GB) (Free:473.02 GB) NTFS
 
========================= Users: ========================================
 
¦¨ ©£¦ε User \\GEORGE
 
Administrator            Guest                    User                     
† ¤«¦Άγ ¦Ά¦΅Ά¨ι΅ £ § «¬®ε.
 
 
**** End of log ****

08:14:15.0277 0x1578  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
08:14:49.0969 0x1578  ============================================================
08:14:49.0969 0x1578  Current date / time: 2015/02/03 08:14:49.0969
08:14:49.0969 0x1578  SystemInfo:
08:14:49.0969 0x1578  
08:14:49.0969 0x1578  OS Version: 6.1.7601 ServicePack: 1.0
08:14:49.0969 0x1578  Product type: Workstation
08:14:49.0969 0x1578  ComputerName: GEORGE
08:14:49.0969 0x1578  UserName: User
08:14:49.0969 0x1578  Windows directory: C:\Windows
08:14:49.0969 0x1578  System windows directory: C:\Windows
08:14:49.0969 0x1578  Running under WOW64
08:14:49.0969 0x1578  Processor architecture: Intel x64
08:14:49.0969 0x1578  Number of processors: 4
08:14:49.0969 0x1578  Page size: 0x1000
08:14:49.0969 0x1578  Boot type: Normal boot
08:14:49.0969 0x1578  ============================================================
08:14:51.0129 0x1578  KLMD registered as C:\Windows\system32\drivers\61723326.sys
08:14:51.0300 0x1578  System UUID: {B52A4B6F-B912-C8A9-F381-DE5E19C9D5A3}
08:14:51.0612 0x1578  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:14:51.0612 0x1578  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
08:14:51.0628 0x1578  ============================================================
08:14:51.0628 0x1578  \Device\Harddisk0\DR0:
08:14:51.0628 0x1578  MBR partitions:
08:14:51.0628 0x1578  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
08:14:51.0628 0x1578  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3000
08:14:51.0628 0x1578  \Device\Harddisk1\DR1:
08:14:51.0628 0x1578  MBR partitions:
08:14:51.0628 0x1578  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
08:14:51.0628 0x1578  ============================================================
08:14:51.0643 0x1578  C: <-> \Device\Harddisk1\DR1\Partition1
08:14:51.0659 0x1578  E: <-> \Device\Harddisk0\DR0\Partition2
08:14:51.0659 0x1578  ============================================================
08:14:51.0659 0x1578  Initialize success
08:14:51.0659 0x1578  ============================================================
08:15:50.0537 0x0d1c  ============================================================
08:15:50.0537 0x0d1c  Scan started
08:15:50.0537 0x0d1c  Mode: Manual; 
08:15:50.0537 0x0d1c  ============================================================
08:15:50.0537 0x0d1c  KSN ping started
08:15:53.0071 0x0d1c  KSN ping finished: true
08:15:53.0905 0x0d1c  ================ Scan system memory ========================
08:15:53.0905 0x0d1c  System memory - ok
08:15:53.0905 0x0d1c  ================ Scan services =============================
08:15:54.0030 0x0d1c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
08:15:54.0046 0x0d1c  1394ohci - ok
08:15:54.0078 0x0d1c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
08:15:54.0094 0x0d1c  ACPI - ok
08:15:54.0109 0x0d1c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
08:15:54.0109 0x0d1c  AcpiPmi - ok
08:15:54.0172 0x0d1c  [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
08:15:54.0187 0x0d1c  AdobeARMservice - ok
08:15:54.0250 0x0d1c  [ A2A9C100FE1BE20A76C0B80D4CA44103, C34B4A31C8563E29EC6A3D318C40075F43C891C23D156F53EE2102C959B7887F ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
08:15:54.0265 0x0d1c  AdobeFlashPlayerUpdateSvc - ok
08:15:54.0297 0x0d1c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
08:15:54.0312 0x0d1c  adp94xx - ok
08:15:54.0343 0x0d1c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
08:15:54.0343 0x0d1c  adpahci - ok
08:15:54.0359 0x0d1c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
08:15:54.0359 0x0d1c  adpu320 - ok
08:15:54.0375 0x0d1c  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
08:15:54.0375 0x0d1c  AeLookupSvc - ok
08:15:54.0406 0x0d1c  [ FA886682CFC5D36718D3E436AACF10B9, F80AB4F91AA6B5C7ECCB000D8E1BC2CF776DC3D69B3D9EBC2558C19035A6B3AB ] AFD             C:\Windows\system32\drivers\afd.sys
08:15:54.0421 0x0d1c  AFD - ok
08:15:54.0437 0x0d1c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
08:15:54.0437 0x0d1c  agp440 - ok
08:15:54.0437 0x0d1c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
08:15:54.0453 0x0d1c  ALG - ok
08:15:54.0468 0x0d1c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
08:15:54.0468 0x0d1c  aliide - ok
08:15:54.0468 0x0d1c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
08:15:54.0468 0x0d1c  amdide - ok
08:15:54.0484 0x0d1c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
08:15:54.0484 0x0d1c  AmdK8 - ok
08:15:54.0499 0x0d1c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
08:15:54.0499 0x0d1c  AmdPPM - ok
08:15:54.0515 0x0d1c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
08:15:54.0531 0x0d1c  amdsata - ok
08:15:54.0546 0x0d1c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
08:15:54.0546 0x0d1c  amdsbs - ok
08:15:54.0546 0x0d1c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
08:15:54.0546 0x0d1c  amdxata - ok
08:15:54.0562 0x0d1c  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
08:15:54.0562 0x0d1c  AppID - ok
08:15:54.0577 0x0d1c  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
08:15:54.0577 0x0d1c  AppIDSvc - ok
08:15:54.0593 0x0d1c  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
08:15:54.0593 0x0d1c  Appinfo - ok
08:15:54.0609 0x0d1c  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
08:15:54.0624 0x0d1c  AppMgmt - ok
08:15:54.0640 0x0d1c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
08:15:54.0640 0x0d1c  arc - ok
08:15:54.0655 0x0d1c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
08:15:54.0655 0x0d1c  arcsas - ok
08:15:54.0671 0x0d1c  [ AA1A87CF0B150A765B55A671A32F992B, 5199FFCE84372B533AAA6841D5385F86415163AB8FB123DEFCCD915198895586 ] asahci64        C:\Windows\system32\DRIVERS\asahci64.sys
08:15:54.0687 0x0d1c  asahci64 - ok
08:15:54.0749 0x0d1c  [ 1A7A2CAC3B5AFABD6636B25DFE33CBAD, 0677FD0A6548E93320EF45B7EBD96F2FEA406790C68AA1F41623A1BFF8A1282E ] asComSvc        C:\Program Files (x86)\ASUS\AXSP\1.01.01\atkexComSvc.exe
08:15:54.0749 0x0d1c  asComSvc - ok
08:15:54.0780 0x0d1c  [ 798DE15F187C1F013095BBBEB6FB6197, 436CCAB6F62FA2D29827916E054ADE7ACAE485B3DE1D3E5C6C62D3DEBF1480E7 ] AsIO            C:\Windows\syswow64\drivers\AsIO.sys
08:15:54.0780 0x0d1c  AsIO - ok
08:15:54.0843 0x0d1c  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
08:15:54.0843 0x0d1c  aspnet_state - ok
08:15:54.0889 0x0d1c  [ 9BE9F2B83DE80E2752B1405CC427E2EC, 6015CA66553B3B882083B33F24FB338249A110D9769831C3D3D3C681AAFA9411 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
08:15:54.0889 0x0d1c  aswHwid - ok
08:15:54.0905 0x0d1c  [ 2DA1C1AEDF454F8E32A863A1AEACDD8C, F02E4D197AE00B9A9507CF6007A7B7BEA54AF0F255B752FBA7174FA2596D1CA9 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
08:15:54.0905 0x0d1c  aswMonFlt - ok
08:15:54.0936 0x0d1c  [ 4750016EF9CC1DEC6DA3FE5AF9A7F095, C4CF46246D8A3FF9BD8D2FE899685654ADD45EB9B032F33804D0B8131882BC74 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
08:15:54.0936 0x0d1c  aswRdr - ok
08:15:54.0952 0x0d1c  [ 1323269A92645705DEFA053F3596829D, 83EC58E0577A1E45D1FCBC0C0AF182099FB70B9005B9F8161166EBB4E9F58F35 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
08:15:54.0952 0x0d1c  aswRvrt - ok
08:15:54.0999 0x0d1c  [ E74FD717476B30E23F45354B8F3ACB30, 951D1655E1FA4CF0ACB29F2EEDDB3B42522D392F46DD826C63DCA8941E17ABA8 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
08:15:55.0030 0x0d1c  aswSnx - ok
08:15:55.0045 0x0d1c  [ B1881A01E301990B671694CA1623F1B6, 5299C713EA7CF96F0550943DB37E963CDA09258F65C471CCEEAB44C4736B7A08 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
08:15:55.0045 0x0d1c  aswSP - ok
08:15:55.0061 0x0d1c  [ 7509F07BA6F84C1E3B2C0D78A1F6F782, A90A36E8E23F58E430DE98B3623688DC09D34B62906EF7796DFC90F581FC385F ] aswStm          C:\Windows\system32\drivers\aswStm.sys
08:15:55.0061 0x0d1c  aswStm - ok
08:15:55.0077 0x0d1c  [ 1A5BDDE65B648DC3AD48B6ECAA3AE9C8, 858F674C3B775F9C8C782B7AFAC0B02AE9410C9F3B7F5B3AE1C4AD3BF6448C14 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
08:15:55.0077 0x0d1c  aswVmm - ok
08:15:55.0110 0x0d1c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
08:15:55.0111 0x0d1c  AsyncMac - ok
08:15:55.0126 0x0d1c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
08:15:55.0126 0x0d1c  atapi - ok
08:15:55.0126 0x0d1c  AthBTPort - ok
08:15:55.0251 0x0d1c  [ B347A59887FA80074403743090CF8D14, 8AE9EE9A01CCF6AF618E4E4BF30D2E5B7E79A05481E2552516E8D9ADF914226B ] athr            C:\Windows\system32\DRIVERS\athrx.sys
08:15:55.0314 0x0d1c  athr - ok
08:15:55.0345 0x0d1c  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
08:15:55.0345 0x0d1c  AudioEndpointBuilder - ok
08:15:55.0360 0x0d1c  [ DE3E38431B00C2EA247C53675DCF01A0, 8965192096C94203A1F16689DCDA45FE0EDF3A6FB75B70FC378C2008E8E71C9B ] AudioSrv        C:\Windows\System32\Audiosrv.dll
08:15:55.0376 0x0d1c  AudioSrv - ok
08:15:55.0438 0x0d1c  [ E3F7EC811923F3F1A77B185F22638E5E, 324041256314C1471B5F123FA8DECC8F374A6B497A6419D4CAF61E68E1733265 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
08:15:55.0438 0x0d1c  avast! Antivirus - ok
08:15:55.0471 0x0d1c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
08:15:55.0471 0x0d1c  AxInstSV - ok
08:15:55.0519 0x0d1c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
08:15:55.0535 0x0d1c  b06bdrv - ok
08:15:55.0551 0x0d1c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
08:15:55.0551 0x0d1c  b57nd60a - ok
08:15:55.0566 0x0d1c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
08:15:55.0566 0x0d1c  BDESVC - ok
08:15:55.0582 0x0d1c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
08:15:55.0582 0x0d1c  Beep - ok
08:15:55.0613 0x0d1c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
08:15:55.0629 0x0d1c  BFE - ok
08:15:55.0660 0x0d1c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
08:15:55.0660 0x0d1c  BITS - ok
08:15:55.0675 0x0d1c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
08:15:55.0675 0x0d1c  blbdrive - ok
08:15:55.0707 0x0d1c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
08:15:55.0707 0x0d1c  bowser - ok
08:15:55.0722 0x0d1c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
08:15:55.0722 0x0d1c  BrFiltLo - ok
08:15:55.0738 0x0d1c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
08:15:55.0738 0x0d1c  BrFiltUp - ok
08:15:55.0769 0x0d1c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
08:15:55.0769 0x0d1c  Browser - ok
08:15:55.0800 0x0d1c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
08:15:55.0816 0x0d1c  Brserid - ok
08:15:55.0831 0x0d1c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
08:15:55.0831 0x0d1c  BrSerWdm - ok
08:15:55.0847 0x0d1c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
08:15:55.0847 0x0d1c  BrUsbMdm - ok
08:15:55.0847 0x0d1c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
08:15:55.0847 0x0d1c  BrUsbSer - ok
08:15:55.0863 0x0d1c  BTATH_A2DP - ok
08:15:55.0863 0x0d1c  btath_avdt - ok
08:15:55.0863 0x0d1c  BTATH_BUS - ok
08:15:55.0863 0x0d1c  BTATH_HCRP - ok
08:15:55.0878 0x0d1c  BTATH_LWFLT - ok
08:15:55.0878 0x0d1c  BTATH_RCP - ok
08:15:55.0878 0x0d1c  BtFilter - ok
08:15:55.0925 0x0d1c  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
08:15:55.0941 0x0d1c  BthEnum - ok
08:15:55.0956 0x0d1c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
08:15:55.0956 0x0d1c  BTHMODEM - ok
08:15:55.0972 0x0d1c  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
08:15:55.0972 0x0d1c  BthPan - ok
08:15:56.0019 0x0d1c  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
08:15:56.0034 0x0d1c  BTHPORT - ok
08:15:56.0034 0x0d1c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
08:15:56.0034 0x0d1c  bthserv - ok
08:15:56.0050 0x0d1c  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
08:15:56.0050 0x0d1c  BTHUSB - ok
08:15:56.0065 0x0d1c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
08:15:56.0065 0x0d1c  cdfs - ok
08:15:56.0081 0x0d1c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
08:15:56.0081 0x0d1c  cdrom - ok
08:15:56.0097 0x0d1c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
08:15:56.0097 0x0d1c  CertPropSvc - ok
08:15:56.0112 0x0d1c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
08:15:56.0112 0x0d1c  circlass - ok
08:15:56.0128 0x0d1c  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
08:15:56.0128 0x0d1c  CLFS - ok
08:15:56.0175 0x0d1c  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
08:15:56.0190 0x0d1c  clr_optimization_v2.0.50727_32 - ok
08:15:56.0206 0x0d1c  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
08:15:56.0221 0x0d1c  clr_optimization_v2.0.50727_64 - ok
08:15:56.0253 0x0d1c  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
08:15:56.0253 0x0d1c  clr_optimization_v4.0.30319_32 - ok
08:15:56.0268 0x0d1c  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
08:15:56.0284 0x0d1c  clr_optimization_v4.0.30319_64 - ok
08:15:56.0284 0x0d1c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
08:15:56.0284 0x0d1c  CmBatt - ok
08:15:56.0315 0x0d1c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
08:15:56.0315 0x0d1c  cmdide - ok
08:15:56.0331 0x0d1c  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
08:15:56.0346 0x0d1c  CNG - ok
08:15:56.0362 0x0d1c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
08:15:56.0362 0x0d1c  Compbatt - ok
08:15:56.0362 0x0d1c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
08:15:56.0362 0x0d1c  CompositeBus - ok
08:15:56.0377 0x0d1c  COMSysApp - ok
08:15:56.0377 0x0d1c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
08:15:56.0377 0x0d1c  crcdisk - ok
08:15:56.0409 0x0d1c  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
08:15:56.0409 0x0d1c  CryptSvc - ok
08:15:56.0440 0x0d1c  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
08:15:56.0455 0x0d1c  CSC - ok
08:15:56.0482 0x0d1c  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
08:15:56.0489 0x0d1c  CscService - ok
08:15:56.0503 0x0d1c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
08:15:56.0510 0x0d1c  DcomLaunch - ok
08:15:56.0519 0x0d1c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
08:15:56.0520 0x0d1c  defragsvc - ok
08:15:56.0520 0x0d1c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
08:15:56.0536 0x0d1c  DfsC - ok
08:15:56.0536 0x0d1c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
08:15:56.0551 0x0d1c  Dhcp - ok
08:15:56.0551 0x0d1c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
08:15:56.0551 0x0d1c  discache - ok
08:15:56.0567 0x0d1c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
08:15:56.0567 0x0d1c  Disk - ok
08:15:56.0582 0x0d1c  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
08:15:56.0582 0x0d1c  dmvsc - ok
08:15:56.0598 0x0d1c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
08:15:56.0598 0x0d1c  Dnscache - ok
08:15:56.0614 0x0d1c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
08:15:56.0629 0x0d1c  dot3svc - ok
08:15:56.0629 0x0d1c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
08:15:56.0629 0x0d1c  DPS - ok
08:15:56.0660 0x0d1c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
08:15:56.0660 0x0d1c  drmkaud - ok
08:15:56.0692 0x0d1c  [ EE8684BF88C1B74D47647802281ED085, 9CA7803E2544304D3EDC19D2706ED8AC066E97BBF700ACC532C787537CDA99A4 ] DTSAudioSvc     C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
08:15:56.0707 0x0d1c  DTSAudioSvc - ok
08:15:56.0738 0x0d1c  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
08:15:56.0754 0x0d1c  DXGKrnl - ok
08:15:56.0785 0x0d1c  [ 8020B5D39DDFF589200EBD5592314F83, 23B5D36AE4EFC799E966168F030FB76226CD6365C8F00B5E51EFC44CAF0A0CB2 ] e1dexpress      C:\Windows\system32\DRIVERS\e1d62x64.sys
08:15:56.0785 0x0d1c  e1dexpress - ok
08:15:56.0801 0x0d1c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
08:15:56.0801 0x0d1c  EapHost - ok
08:15:56.0879 0x0d1c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
08:15:56.0926 0x0d1c  ebdrv - ok
08:15:56.0941 0x0d1c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
08:15:56.0941 0x0d1c  EFS - ok
08:15:57.0004 0x0d1c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
08:15:57.0037 0x0d1c  ehRecvr - ok
08:15:57.0052 0x0d1c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
08:15:57.0052 0x0d1c  ehSched - ok
08:15:57.0068 0x0d1c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
08:15:57.0068 0x0d1c  elxstor - ok
08:15:57.0084 0x0d1c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
08:15:57.0084 0x0d1c  ErrDev - ok
08:15:57.0099 0x0d1c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
08:15:57.0118 0x0d1c  EventSystem - ok
08:15:57.0118 0x0d1c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
08:15:57.0118 0x0d1c  exfat - ok
08:15:57.0133 0x0d1c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
08:15:57.0149 0x0d1c  fastfat - ok
08:15:57.0165 0x0d1c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
08:15:57.0165 0x0d1c  Fax - ok
08:15:57.0180 0x0d1c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
08:15:57.0180 0x0d1c  fdc - ok
08:15:57.0180 0x0d1c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
08:15:57.0180 0x0d1c  fdPHost - ok
08:15:57.0180 0x0d1c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
08:15:57.0180 0x0d1c  FDResPub - ok
08:15:57.0196 0x0d1c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
08:15:57.0196 0x0d1c  FileInfo - ok
08:15:57.0211 0x0d1c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
08:15:57.0211 0x0d1c  Filetrace - ok
08:15:57.0211 0x0d1c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
08:15:57.0211 0x0d1c  flpydisk - ok
08:15:57.0227 0x0d1c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
08:15:57.0243 0x0d1c  FltMgr - ok
08:15:57.0274 0x0d1c  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
08:15:57.0289 0x0d1c  FontCache - ok
08:15:57.0321 0x0d1c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
08:15:57.0321 0x0d1c  FontCache3.0.0.0 - ok
08:15:57.0336 0x0d1c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
08:15:57.0336 0x0d1c  FsDepends - ok
08:15:57.0352 0x0d1c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
08:15:57.0352 0x0d1c  Fs_Rec - ok
08:15:57.0383 0x0d1c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
08:15:57.0399 0x0d1c  fvevol - ok
08:15:57.0414 0x0d1c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
08:15:57.0414 0x0d1c  gagp30kx - ok
08:15:57.0461 0x0d1c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
08:15:57.0477 0x0d1c  gpsvc - ok
08:15:57.0525 0x0d1c  [ 0636745A40DEA06283D45885C228AF01, 514EF6F912CB9BF552AE109739BC02A2BC46B4784C65BC3C0B03DB6F60BBF380 ] GUBootStartup   C:\Windows\System32\drivers\GUBootStartup.sys
08:15:57.0527 0x0d1c  GUBootStartup - ok
08:15:57.0573 0x0d1c  [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:15:57.0589 0x0d1c  gupdate - ok
08:15:57.0589 0x0d1c  [ F172AD4E906D97ED8F071896FC6789DC, FC10B3CE3DB0D3BF84DFD28E900EB6A11EDAAE32AC50F23CB03AACC6AA496911 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
08:15:57.0605 0x0d1c  gupdatem - ok
08:15:57.0605 0x0d1c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
08:15:57.0605 0x0d1c  hcw85cir - ok
08:15:57.0636 0x0d1c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
08:15:57.0651 0x0d1c  HdAudAddService - ok
08:15:57.0667 0x0d1c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
08:15:57.0667 0x0d1c  HDAudBus - ok
08:15:57.0683 0x0d1c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
08:15:57.0683 0x0d1c  HidBatt - ok
08:15:57.0698 0x0d1c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
08:15:57.0698 0x0d1c  HidBth - ok
08:15:57.0714 0x0d1c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
08:15:57.0714 0x0d1c  HidIr - ok
08:15:57.0714 0x0d1c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
08:15:57.0729 0x0d1c  hidserv - ok
08:15:57.0761 0x0d1c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
08:15:57.0761 0x0d1c  HidUsb - ok
08:15:57.0776 0x0d1c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
08:15:57.0776 0x0d1c  hkmsvc - ok
08:15:57.0807 0x0d1c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
08:15:57.0807 0x0d1c  HomeGroupListener - ok
08:15:57.0823 0x0d1c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
08:15:57.0823 0x0d1c  HomeGroupProvider - ok
08:15:57.0839 0x0d1c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
08:15:57.0839 0x0d1c  HpSAMD - ok
08:15:57.0854 0x0d1c  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
08:15:57.0870 0x0d1c  HTTP - ok
08:15:57.0885 0x0d1c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
08:15:57.0885 0x0d1c  hwpolicy - ok
08:15:57.0885 0x0d1c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
08:15:57.0885 0x0d1c  i8042prt - ok
08:15:57.0901 0x0d1c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
08:15:57.0901 0x0d1c  iaStorV - ok
08:15:57.0948 0x0d1c  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
08:15:57.0963 0x0d1c  idsvc - ok
08:15:57.0963 0x0d1c  IEEtwCollectorService - ok
08:15:57.0995 0x0d1c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
08:15:57.0995 0x0d1c  iirsp - ok
08:15:58.0010 0x0d1c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
08:15:58.0026 0x0d1c  IKEEXT - ok
08:15:58.0105 0x0d1c  [ 9AE6969F3B31AA4CC5AD73F635D69DF9, DFB9BEEBE9AD5BE5655F80D801D1D6A717E83B263E4BDE928F91BE9D1CF352DE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
08:15:58.0136 0x0d1c  IntcAzAudAddService - ok
08:15:58.0183 0x0d1c  [ DDA8E5AD97231AB50B81FED04C28F64C, 5C9E8F7CC45A9AE7FF12A02641562E271D84894DFA7C50218AC2AAA298251B60 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
08:15:58.0198 0x0d1c  Intel® Capability Licensing Service Interface - ok
08:15:58.0214 0x0d1c  [ 86FE509640D77FB0998FC8B1FF5523C6, 13E895DEB9B84379251699D7E52C5E3FD888994425DE01B6C4634F9E959D5584 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
08:15:58.0230 0x0d1c  Intel® Capability Licensing Service TCP IP Interface - ok
08:15:58.0261 0x0d1c  [ EA83415296F905D11651B9AF26FB7EBD, 0A37449E8EF0190A088720EE727EA46B7E8BE376801C4EBC8173A012B2A476FD ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
08:15:58.0276 0x0d1c  Intel® PROSet Monitoring Service - ok
08:15:58.0276 0x0d1c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
08:15:58.0276 0x0d1c  intelide - ok
08:15:58.0292 0x0d1c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
08:15:58.0292 0x0d1c  intelppm - ok
08:15:58.0308 0x0d1c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
08:15:58.0308 0x0d1c  IPBusEnum - ok
08:15:58.0323 0x0d1c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
08:15:58.0323 0x0d1c  IpFilterDriver - ok
08:15:58.0339 0x0d1c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
08:15:58.0354 0x0d1c  iphlpsvc - ok
08:15:58.0354 0x0d1c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
08:15:58.0354 0x0d1c  IPMIDRV - ok
08:15:58.0354 0x0d1c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
08:15:58.0354 0x0d1c  IPNAT - ok
08:15:58.0370 0x0d1c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
08:15:58.0370 0x0d1c  IRENUM - ok
08:15:58.0386 0x0d1c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
08:15:58.0386 0x0d1c  isapnp - ok
08:15:58.0401 0x0d1c  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
08:15:58.0401 0x0d1c  iScsiPrt - ok
08:15:58.0417 0x0d1c  [ 78D369F8A81A341109FBA1DB64B4C512, E584F693255CCBF7006E7D35984149CF599BB0849A8F02EFDD6223DF0D606049 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
08:15:58.0417 0x0d1c  iusb3hcs - ok
08:15:58.0432 0x0d1c  [ 5B632ABA038CE2E2D5D2D1115C6B26D1, 605A8FFA704E4369CF9D17DF8630DC9E196B8920D47F1CC5151759E60B234C1F ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
08:15:58.0448 0x0d1c  iusb3hub - ok
08:15:58.0464 0x0d1c  [ EA841584EF59528D11F20355770E427E, 515737761BB2A0A233F4AD141E28D93E3B9789320A15B7D5FB3DB5AC3CD8E249 ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
08:15:58.0464 0x0d1c  iusb3xhc - ok
08:15:58.0510 0x0d1c  [ BF5D3A2624177C413680DEF19A465AF8, B9909D3E6CB6F9971293116387865AD15CB9D47513C7FAA9C36BE4D2847A41EB ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
08:15:58.0528 0x0d1c  jhi_service - ok
08:15:58.0530 0x0d1c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
08:15:58.0530 0x0d1c  kbdclass - ok
08:15:58.0546 0x0d1c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
08:15:58.0561 0x0d1c  kbdhid - ok
08:15:58.0561 0x0d1c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
08:15:58.0561 0x0d1c  KeyIso - ok
08:15:58.0577 0x0d1c  [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
08:15:58.0577 0x0d1c  KSecDD - ok
08:15:58.0592 0x0d1c  [ 41774FF331F609EF442B7398EE6202B1, AD67DA06A74895C384F4A1F1CF47050DAEE9C6CE8AD12F1A116FC977B6C3A864 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
08:15:58.0592 0x0d1c  KSecPkg - ok
08:15:58.0608 0x0d1c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
08:15:58.0608 0x0d1c  ksthunk - ok
08:15:58.0624 0x0d1c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
08:15:58.0639 0x0d1c  KtmRm - ok
08:15:58.0655 0x0d1c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
08:15:58.0670 0x0d1c  LanmanServer - ok
08:15:58.0686 0x0d1c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
08:15:58.0686 0x0d1c  LanmanWorkstation - ok
08:15:58.0702 0x0d1c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
08:15:58.0702 0x0d1c  lltdio - ok
08:15:58.0717 0x0d1c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
08:15:58.0733 0x0d1c  lltdsvc - ok
08:15:58.0733 0x0d1c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
08:15:58.0748 0x0d1c  lmhosts - ok
08:15:58.0780 0x0d1c  [ 3EA307C51069BC72DD74A4964F2A30A9, EB8F9C936AE43B7E31CB6C46F76FB918509D529E897C0E82B865A2854458996A ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
08:15:58.0780 0x0d1c  LMS - ok
08:15:58.0795 0x0d1c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
08:15:58.0795 0x0d1c  LSI_FC - ok
08:15:58.0811 0x0d1c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
08:15:58.0811 0x0d1c  LSI_SAS - ok
08:15:58.0826 0x0d1c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
08:15:58.0826 0x0d1c  LSI_SAS2 - ok
08:15:58.0826 0x0d1c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
08:15:58.0826 0x0d1c  LSI_SCSI - ok
08:15:58.0842 0x0d1c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
08:15:58.0842 0x0d1c  luafv - ok
08:15:58.0858 0x0d1c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
08:15:58.0858 0x0d1c  Mcx2Svc - ok
08:15:58.0873 0x0d1c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
08:15:58.0873 0x0d1c  megasas - ok
08:15:58.0889 0x0d1c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
08:15:58.0889 0x0d1c  MegaSR - ok
08:15:58.0904 0x0d1c  [ 2BB3EAE2EA641515D4B205CAB29E1624, D3F18EE393EB1B0F919484281269A3C55A092D023E62C59D74CB63A55612024B ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
08:15:58.0904 0x0d1c  MEIx64 - ok
08:15:58.0904 0x0d1c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
08:15:58.0920 0x0d1c  MMCSS - ok
08:15:58.0920 0x0d1c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
08:15:58.0920 0x0d1c  Modem - ok
08:15:58.0951 0x0d1c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
08:15:58.0951 0x0d1c  monitor - ok
08:15:58.0967 0x0d1c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
08:15:58.0967 0x0d1c  mouclass - ok
08:15:58.0982 0x0d1c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
08:15:58.0982 0x0d1c  mouhid - ok
08:15:59.0014 0x0d1c  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
08:15:59.0014 0x0d1c  mountmgr - ok
08:15:59.0029 0x0d1c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
08:15:59.0045 0x0d1c  mpio - ok
08:15:59.0061 0x0d1c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
08:15:59.0061 0x0d1c  mpsdrv - ok
08:15:59.0108 0x0d1c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
08:15:59.0130 0x0d1c  MpsSvc - ok
08:15:59.0145 0x0d1c  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
08:15:59.0145 0x0d1c  MRxDAV - ok
08:15:59.0161 0x0d1c  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
08:15:59.0161 0x0d1c  mrxsmb - ok
08:15:59.0177 0x0d1c  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
08:15:59.0192 0x0d1c  mrxsmb10 - ok
08:15:59.0192 0x0d1c  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
08:15:59.0208 0x0d1c  mrxsmb20 - ok
08:15:59.0208 0x0d1c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
08:15:59.0208 0x0d1c  msahci - ok
08:15:59.0223 0x0d1c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
08:15:59.0223 0x0d1c  msdsm - ok
08:15:59.0239 0x0d1c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
08:15:59.0239 0x0d1c  MSDTC - ok
08:15:59.0239 0x0d1c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
08:15:59.0239 0x0d1c  Msfs - ok
08:15:59.0255 0x0d1c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
08:15:59.0255 0x0d1c  mshidkmdf - ok
08:15:59.0270 0x0d1c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
08:15:59.0270 0x0d1c  msisadrv - ok
08:15:59.0286 0x0d1c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
08:15:59.0286 0x0d1c  MSiSCSI - ok
08:15:59.0286 0x0d1c  msiserver - ok
08:15:59.0301 0x0d1c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
08:15:59.0301 0x0d1c  MSKSSRV - ok
08:15:59.0301 0x0d1c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
08:15:59.0301 0x0d1c  MSPCLOCK - ok
08:15:59.0317 0x0d1c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
08:15:59.0317 0x0d1c  MSPQM - ok
08:15:59.0317 0x0d1c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
08:15:59.0333 0x0d1c  MsRPC - ok
08:15:59.0333 0x0d1c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
08:15:59.0333 0x0d1c  mssmbios - ok
08:15:59.0348 0x0d1c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
08:15:59.0348 0x0d1c  MSTEE - ok
08:15:59.0364 0x0d1c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
08:15:59.0364 0x0d1c  MTConfig - ok
08:15:59.0364 0x0d1c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
08:15:59.0364 0x0d1c  Mup - ok
08:15:59.0379 0x0d1c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
08:15:59.0395 0x0d1c  napagent - ok
08:15:59.0426 0x0d1c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
08:15:59.0426 0x0d1c  NativeWifiP - ok
08:15:59.0457 0x0d1c  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
08:15:59.0473 0x0d1c  NDIS - ok
08:15:59.0473 0x0d1c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
08:15:59.0489 0x0d1c  NdisCap - ok
08:15:59.0489 0x0d1c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
08:15:59.0489 0x0d1c  NdisTapi - ok
08:15:59.0504 0x0d1c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
08:15:59.0520 0x0d1c  Ndisuio - ok
08:15:59.0542 0x0d1c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
08:15:59.0550 0x0d1c  NdisWan - ok
08:15:59.0554 0x0d1c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
08:15:59.0554 0x0d1c  NDProxy - ok
08:15:59.0554 0x0d1c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
08:15:59.0554 0x0d1c  NetBIOS - ok
08:15:59.0586 0x0d1c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
08:15:59.0586 0x0d1c  NetBT - ok
08:15:59.0601 0x0d1c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
08:15:59.0601 0x0d1c  Netlogon - ok
08:15:59.0617 0x0d1c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
08:15:59.0632 0x0d1c  Netman - ok
08:15:59.0648 0x0d1c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:15:59.0648 0x0d1c  NetMsmqActivator - ok
08:15:59.0648 0x0d1c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:15:59.0648 0x0d1c  NetPipeActivator - ok
08:15:59.0664 0x0d1c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
08:15:59.0664 0x0d1c  netprofm - ok
08:15:59.0679 0x0d1c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:15:59.0679 0x0d1c  NetTcpActivator - ok
08:15:59.0695 0x0d1c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
08:15:59.0695 0x0d1c  NetTcpPortSharing - ok
08:15:59.0695 0x0d1c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
08:15:59.0695 0x0d1c  nfrd960 - ok
08:15:59.0726 0x0d1c  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
08:15:59.0726 0x0d1c  NlaSvc - ok
08:15:59.0726 0x0d1c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
08:15:59.0726 0x0d1c  Npfs - ok
08:15:59.0742 0x0d1c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
08:15:59.0742 0x0d1c  nsi - ok
08:15:59.0742 0x0d1c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
08:15:59.0742 0x0d1c  nsiproxy - ok
08:15:59.0804 0x0d1c  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
08:15:59.0835 0x0d1c  Ntfs - ok
08:15:59.0851 0x0d1c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
08:15:59.0851 0x0d1c  Null - ok
08:15:59.0882 0x0d1c  [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
08:15:59.0898 0x0d1c  NVHDA - ok
08:16:00.0149 0x0d1c  [ 2232AE1BB51A96A7381A2CA17DF12E24, 4813E27BC14EB3CBD55AF89B098EA5C8DA4C7FF0B6CCB7AACFC43BC0E578C988 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
08:16:00.0274 0x0d1c  nvlddmkm - ok
08:16:00.0305 0x0d1c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
08:16:00.0305 0x0d1c  nvraid - ok
08:16:00.0305 0x0d1c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
08:16:00.0305 0x0d1c  nvstor - ok
08:16:00.0336 0x0d1c  [ 2C8DD5A34A81715865D66D7AF39362A6, 62F9D873127921EE2EAA80B73E8994C4BF6DA7EEDACAEA030B8D58E086FD3850 ] nvsvc           C:\Windows\system32\nvvsvc.exe
08:16:00.0336 0x0d1c  nvsvc - ok
08:16:00.0352 0x0d1c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
08:16:00.0352 0x0d1c  nv_agp - ok
08:16:00.0368 0x0d1c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
08:16:00.0368 0x0d1c  ohci1394 - ok
08:16:00.0383 0x0d1c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
08:16:00.0383 0x0d1c  p2pimsvc - ok
08:16:00.0399 0x0d1c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
08:16:00.0399 0x0d1c  p2psvc - ok
08:16:00.0399 0x0d1c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
08:16:00.0399 0x0d1c  Parport - ok
08:16:00.0414 0x0d1c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
08:16:00.0414 0x0d1c  partmgr - ok
08:16:00.0430 0x0d1c  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
08:16:00.0430 0x0d1c  PcaSvc - ok
08:16:00.0446 0x0d1c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
08:16:00.0446 0x0d1c  pci - ok
08:16:00.0461 0x0d1c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
08:16:00.0461 0x0d1c  pciide - ok
08:16:00.0477 0x0d1c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
08:16:00.0477 0x0d1c  pcmcia - ok
08:16:00.0477 0x0d1c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
08:16:00.0477 0x0d1c  pcw - ok
08:16:00.0492 0x0d1c  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
08:16:00.0492 0x0d1c  PEAUTH - ok
08:16:00.0524 0x0d1c  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
08:16:00.0557 0x0d1c  PeerDistSvc - ok
08:16:00.0604 0x0d1c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
08:16:00.0604 0x0d1c  PerfHost - ok
08:16:00.0697 0x0d1c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
08:16:00.0713 0x0d1c  pla - ok
08:16:00.0775 0x0d1c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
08:16:00.0791 0x0d1c  PlugPlay - ok
08:16:00.0791 0x0d1c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
08:16:00.0806 0x0d1c  PNRPAutoReg - ok
08:16:00.0822 0x0d1c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
08:16:00.0822 0x0d1c  PNRPsvc - ok
08:16:00.0838 0x0d1c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
08:16:00.0853 0x0d1c  PolicyAgent - ok
08:16:00.0853 0x0d1c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
08:16:00.0869 0x0d1c  Power - ok
08:16:00.0916 0x0d1c  [ 22EFE9C1119A3A8D8356110354081FCF, 1FBE86FA228E91AB1EEF09A830A6A48C59D459110B64DD76E8265B90FC92F367 ] ppped           C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\ppped.exe
08:16:00.0916 0x0d1c  ppped - ok
08:16:00.0931 0x0d1c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
08:16:00.0931 0x0d1c  PptpMiniport - ok
08:16:00.0931 0x0d1c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
08:16:00.0931 0x0d1c  Processor - ok
08:16:00.0962 0x0d1c  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
08:16:00.0962 0x0d1c  ProfSvc - ok
08:16:00.0978 0x0d1c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
08:16:00.0978 0x0d1c  ProtectedStorage - ok
08:16:00.0994 0x0d1c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
08:16:00.0994 0x0d1c  Psched - ok
08:16:01.0009 0x0d1c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
08:16:01.0040 0x0d1c  ql2300 - ok
08:16:01.0056 0x0d1c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
08:16:01.0056 0x0d1c  ql40xx - ok
08:16:01.0056 0x0d1c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
08:16:01.0072 0x0d1c  QWAVE - ok
08:16:01.0072 0x0d1c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
08:16:01.0072 0x0d1c  QWAVEdrv - ok
08:16:01.0072 0x0d1c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
08:16:01.0087 0x0d1c  RasAcd - ok
08:16:01.0087 0x0d1c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
08:16:01.0087 0x0d1c  RasAgileVpn - ok
08:16:01.0103 0x0d1c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
08:16:01.0103 0x0d1c  RasAuto - ok
08:16:01.0118 0x0d1c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
08:16:01.0118 0x0d1c  Rasl2tp - ok
08:16:01.0137 0x0d1c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
08:16:01.0137 0x0d1c  RasMan - ok
08:16:01.0153 0x0d1c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
08:16:01.0153 0x0d1c  RasPppoe - ok
08:16:01.0153 0x0d1c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
08:16:01.0153 0x0d1c  RasSstp - ok
08:16:01.0168 0x0d1c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
08:16:01.0168 0x0d1c  rdbss - ok
08:16:01.0184 0x0d1c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
08:16:01.0184 0x0d1c  rdpbus - ok
08:16:01.0199 0x0d1c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
08:16:01.0199 0x0d1c  RDPCDD - ok
08:16:01.0215 0x0d1c  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
08:16:01.0231 0x0d1c  RDPDR - ok
08:16:01.0231 0x0d1c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
08:16:01.0231 0x0d1c  RDPENCDD - ok
08:16:01.0246 0x0d1c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
08:16:01.0246 0x0d1c  RDPREFMP - ok
08:16:01.0277 0x0d1c  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
08:16:01.0277 0x0d1c  RdpVideoMiniport - ok
08:16:01.0309 0x0d1c  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
08:16:01.0309 0x0d1c  RDPWD - ok
08:16:01.0324 0x0d1c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
08:16:01.0324 0x0d1c  rdyboost - ok
08:16:01.0449 0x0d1c  [ F51E6123B1897B3F1641259F5E354887, AE0E4E04C64E3FA063D311EFF1476D844ACEF0A41CF70BA33C16F1E61EE00402 ] ReflectService.exe C:\Program Files\Macrium\Reflect\ReflectService.exe
08:16:01.0480 0x0d1c  ReflectService.exe - ok
08:16:01.0496 0x0d1c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
08:16:01.0496 0x0d1c  RemoteAccess - ok
08:16:01.0511 0x0d1c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
08:16:01.0511 0x0d1c  RemoteRegistry - ok
08:16:01.0527 0x0d1c  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
08:16:01.0527 0x0d1c  RFCOMM - ok
08:16:01.0560 0x0d1c  [ A10B40CF9EB57D24E44717A2D38A00F4, 6964D1C49C032757E656436556470C5B8446E9DC6456D77D1A9303224AD90021 ] RivaTuner64     C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys
08:16:01.0560 0x0d1c  RivaTuner64 - ok
08:16:01.0591 0x0d1c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
08:16:01.0591 0x0d1c  RpcEptMapper - ok
08:16:01.0591 0x0d1c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
08:16:01.0607 0x0d1c  RpcLocator - ok
08:16:01.0623 0x0d1c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
08:16:01.0638 0x0d1c  RpcSs - ok
08:16:01.0654 0x0d1c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
08:16:01.0669 0x0d1c  rspndr - ok
08:16:01.0669 0x0d1c  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
08:16:01.0669 0x0d1c  s3cap - ok
08:16:01.0669 0x0d1c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
08:16:01.0685 0x0d1c  SamSs - ok
08:16:01.0701 0x0d1c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
08:16:01.0701 0x0d1c  sbp2port - ok
08:16:01.0716 0x0d1c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
08:16:01.0716 0x0d1c  SCardSvr - ok
08:16:01.0732 0x0d1c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
08:16:01.0732 0x0d1c  scfilter - ok
08:16:01.0763 0x0d1c  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
08:16:01.0779 0x0d1c  Schedule - ok
08:16:01.0794 0x0d1c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
08:16:01.0794 0x0d1c  SCPolicySvc - ok
08:16:01.0810 0x0d1c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
08:16:01.0810 0x0d1c  SDRSVC - ok
08:16:01.0825 0x0d1c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
08:16:01.0825 0x0d1c  secdrv - ok
08:16:01.0825 0x0d1c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
08:16:01.0825 0x0d1c  seclogon - ok
08:16:01.0841 0x0d1c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
08:16:01.0841 0x0d1c  SENS - ok
08:16:01.0857 0x0d1c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
08:16:01.0857 0x0d1c  SensrSvc - ok
08:16:01.0872 0x0d1c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
08:16:01.0872 0x0d1c  Serenum - ok
08:16:01.0888 0x0d1c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
08:16:01.0888 0x0d1c  Serial - ok
08:16:01.0888 0x0d1c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
08:16:01.0888 0x0d1c  sermouse - ok
08:16:01.0919 0x0d1c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
08:16:01.0935 0x0d1c  SessionEnv - ok
08:16:01.0950 0x0d1c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
08:16:01.0950 0x0d1c  sffdisk - ok
08:16:01.0950 0x0d1c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
08:16:01.0950 0x0d1c  sffp_mmc - ok
08:16:01.0966 0x0d1c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
08:16:01.0966 0x0d1c  sffp_sd - ok
08:16:01.0981 0x0d1c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
08:16:01.0981 0x0d1c  sfloppy - ok
08:16:01.0997 0x0d1c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
08:16:02.0013 0x0d1c  SharedAccess - ok
08:16:02.0044 0x0d1c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
08:16:02.0044 0x0d1c  ShellHWDetection - ok
08:16:02.0059 0x0d1c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
08:16:02.0059 0x0d1c  SiSRaid2 - ok
08:16:02.0075 0x0d1c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
08:16:02.0075 0x0d1c  SiSRaid4 - ok
08:16:02.0091 0x0d1c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
08:16:02.0091 0x0d1c  Smb - ok
08:16:02.0106 0x0d1c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
08:16:02.0106 0x0d1c  SNMPTRAP - ok
08:16:02.0122 0x0d1c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
08:16:02.0122 0x0d1c  spldr - ok
08:16:02.0153 0x0d1c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
08:16:02.0153 0x0d1c  Spooler - ok
08:16:02.0231 0x0d1c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
08:16:02.0309 0x0d1c  sppsvc - ok
08:16:02.0309 0x0d1c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
08:16:02.0309 0x0d1c  sppuinotify - ok
08:16:02.0340 0x0d1c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
08:16:02.0340 0x0d1c  srv - ok
08:16:02.0371 0x0d1c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
08:16:02.0371 0x0d1c  srv2 - ok
08:16:02.0387 0x0d1c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
08:16:02.0387 0x0d1c  srvnet - ok
08:16:02.0403 0x0d1c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
08:16:02.0403 0x0d1c  SSDPSRV - ok
08:16:02.0418 0x0d1c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
08:16:02.0418 0x0d1c  SstpSvc - ok
08:16:02.0527 0x0d1c  [ AC8B882D658AF3070167F59AE92E5CA3, 7781475B6A49DCE239FEE2B32767A7E58188EF04BC4BB29E04B40DAFD8214E85 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
08:16:02.0543 0x0d1c  Steam Client Service - ok
08:16:02.0576 0x0d1c  [ D2230317777033CD0456990BFC4994E5, 0F2F559593EAD7AB4596E67E9AE56E5ABF5C945201366CFC972357C22A4F776A ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
08:16:02.0592 0x0d1c  Stereo Service - ok
08:16:02.0607 0x0d1c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
08:16:02.0607 0x0d1c  stexstor - ok
08:16:02.0639 0x0d1c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
08:16:02.0654 0x0d1c  stisvc - ok
08:16:02.0670 0x0d1c  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
08:16:02.0670 0x0d1c  storflt - ok
08:16:02.0701 0x0d1c  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
08:16:02.0701 0x0d1c  StorSvc - ok
08:16:02.0717 0x0d1c  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
08:16:02.0717 0x0d1c  storvsc - ok
08:16:02.0732 0x0d1c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
08:16:02.0732 0x0d1c  swenum - ok
08:16:02.0748 0x0d1c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
08:16:02.0779 0x0d1c  swprv - ok
08:16:02.0826 0x0d1c  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
08:16:02.0857 0x0d1c  SysMain - ok
08:16:02.0857 0x0d1c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
08:16:02.0873 0x0d1c  TabletInputService - ok
08:16:02.0888 0x0d1c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
08:16:02.0888 0x0d1c  TapiSrv - ok
08:16:02.0904 0x0d1c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
08:16:02.0904 0x0d1c  TBS - ok
08:16:02.0951 0x0d1c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
08:16:02.0966 0x0d1c  Tcpip - ok
08:16:03.0013 0x0d1c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
08:16:03.0029 0x0d1c  TCPIP6 - ok
08:16:03.0044 0x0d1c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
08:16:03.0044 0x0d1c  tcpipreg - ok
08:16:03.0060 0x0d1c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
08:16:03.0060 0x0d1c  TDPIPE - ok
08:16:03.0075 0x0d1c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
08:16:03.0075 0x0d1c  TDTCP - ok
08:16:03.0075 0x0d1c  [ 70988118145F5F10EF24720B97F35F65, F80C806417A68047FFB3D63214BC4AE5445315219AC594E043293006B704A63D ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
08:16:03.0075 0x0d1c  tdx - ok
08:16:03.0204 0x0d1c  [ 5CEF407E235885DB5421DF79C843F2DF, B85D7C8A137B15BDF14DB9588CEDB09C67B0C7965F8E79121E2BA7796B16777C ] TeamViewer9     C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
08:16:03.0251 0x0d1c  TeamViewer9 - ok
08:16:03.0266 0x0d1c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
08:16:03.0266 0x0d1c  TermDD - ok
08:16:03.0282 0x0d1c  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
08:16:03.0298 0x0d1c  TermService - ok
08:16:03.0313 0x0d1c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
08:16:03.0313 0x0d1c  Themes - ok
08:16:03.0329 0x0d1c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
08:16:03.0329 0x0d1c  THREADORDER - ok
08:16:03.0329 0x0d1c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
08:16:03.0329 0x0d1c  TrkWks - ok
08:16:03.0376 0x0d1c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
08:16:03.0376 0x0d1c  TrustedInstaller - ok
08:16:03.0391 0x0d1c  [ E232A3B43A894BB327FC161529BD9ED1, F2673DA8C920F21ACCECC25F7C59A05822E5E577D47F126EDF9C94FEB4B30C5F ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
08:16:03.0391 0x0d1c  tssecsrv - ok
08:16:03.0407 0x0d1c  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
08:16:03.0422 0x0d1c  TsUsbFlt - ok
08:16:03.0438 0x0d1c  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
08:16:03.0438 0x0d1c  TsUsbGD - ok
08:16:03.0454 0x0d1c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
08:16:03.0469 0x0d1c  tunnel - ok
08:16:03.0469 0x0d1c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
08:16:03.0469 0x0d1c  uagp35 - ok
08:16:03.0485 0x0d1c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
08:16:03.0485 0x0d1c  udfs - ok
08:16:03.0500 0x0d1c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
08:16:03.0500 0x0d1c  UI0Detect - ok
08:16:03.0500 0x0d1c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
08:16:03.0500 0x0d1c  uliagpkx - ok
08:16:03.0516 0x0d1c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
08:16:03.0516 0x0d1c  umbus - ok
08:16:03.0516 0x0d1c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
08:16:03.0516 0x0d1c  UmPass - ok
08:16:03.0532 0x0d1c  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
08:16:03.0532 0x0d1c  UmRdpService - ok
08:16:03.0547 0x0d1c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
08:16:03.0547 0x0d1c  upnphost - ok
08:16:03.0565 0x0d1c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
08:16:03.0580 0x0d1c  usbccgp - ok
08:16:03.0580 0x0d1c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
08:16:03.0580 0x0d1c  usbcir - ok
08:16:03.0596 0x0d1c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
08:16:03.0596 0x0d1c  usbehci - ok
08:16:03.0612 0x0d1c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
08:16:03.0612 0x0d1c  usbhub - ok
08:16:03.0627 0x0d1c  [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
08:16:03.0627 0x0d1c  usbohci - ok
08:16:03.0627 0x0d1c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
08:16:03.0643 0x0d1c  usbprint - ok
08:16:03.0643 0x0d1c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
08:16:03.0643 0x0d1c  USBSTOR - ok
08:16:03.0658 0x0d1c  [ 81FB2216D3A60D1284455D511797DB3D, 121E52B18A1832E775EA0AE2E053BAA53E5A70E9754724B1449AE5992D63B13E ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
08:16:03.0658 0x0d1c  usbuhci - ok
08:16:03.0674 0x0d1c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
08:16:03.0674 0x0d1c  UxSms - ok
08:16:03.0674 0x0d1c  [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
08:16:03.0674 0x0d1c  VaultSvc - ok
08:16:03.0690 0x0d1c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
08:16:03.0690 0x0d1c  vdrvroot - ok
08:16:03.0705 0x0d1c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
08:16:03.0721 0x0d1c  vds - ok
08:16:03.0721 0x0d1c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
08:16:03.0721 0x0d1c  vga - ok
08:16:03.0736 0x0d1c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
08:16:03.0736 0x0d1c  VgaSave - ok
08:16:03.0752 0x0d1c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
08:16:03.0752 0x0d1c  vhdmp - ok
08:16:03.0752 0x0d1c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
08:16:03.0752 0x0d1c  viaide - ok
08:16:03.0768 0x0d1c  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
08:16:03.0783 0x0d1c  vmbus - ok
08:16:03.0783 0x0d1c  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
08:16:03.0783 0x0d1c  VMBusHID - ok
08:16:03.0783 0x0d1c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
08:16:03.0799 0x0d1c  volmgr - ok
08:16:03.0814 0x0d1c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
08:16:03.0814 0x0d1c  volmgrx - ok
08:16:03.0830 0x0d1c  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
08:16:03.0830 0x0d1c  volsnap - ok
08:16:03.0846 0x0d1c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
08:16:03.0846 0x0d1c  vsmraid - ok
08:16:03.0877 0x0d1c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
08:16:03.0924 0x0d1c  VSS - ok
08:16:03.0924 0x0d1c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
08:16:03.0924 0x0d1c  vwifibus - ok
08:16:03.0939 0x0d1c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
08:16:03.0939 0x0d1c  vwififlt - ok
08:16:03.0955 0x0d1c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
08:16:03.0970 0x0d1c  W32Time - ok
08:16:03.0970 0x0d1c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
08:16:03.0970 0x0d1c  WacomPen - ok
08:16:03.0986 0x0d1c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
08:16:03.0986 0x0d1c  WANARP - ok
08:16:04.0002 0x0d1c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
08:16:04.0002 0x0d1c  Wanarpv6 - ok
08:16:04.0033 0x0d1c  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
08:16:04.0064 0x0d1c  WatAdminSvc - ok
08:16:04.0095 0x0d1c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
08:16:04.0126 0x0d1c  wbengine - ok
08:16:04.0142 0x0d1c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
08:16:04.0158 0x0d1c  WbioSrvc - ok
08:16:04.0173 0x0d1c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
08:16:04.0173 0x0d1c  wcncsvc - ok
08:16:04.0189 0x0d1c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
08:16:04.0189 0x0d1c  WcsPlugInService - ok
08:16:04.0189 0x0d1c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
08:16:04.0189 0x0d1c  Wd - ok
08:16:04.0220 0x0d1c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
08:16:04.0236 0x0d1c  Wdf01000 - ok
08:16:04.0236 0x0d1c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
08:16:04.0251 0x0d1c  WdiServiceHost - ok
08:16:04.0251 0x0d1c  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
08:16:04.0251 0x0d1c  WdiSystemHost - ok
08:16:04.0267 0x0d1c  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
08:16:04.0267 0x0d1c  WebClient - ok
08:16:04.0282 0x0d1c  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
08:16:04.0282 0x0d1c  Wecsvc - ok
08:16:04.0298 0x0d1c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
08:16:04.0298 0x0d1c  wercplsupport - ok
08:16:04.0298 0x0d1c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
08:16:04.0314 0x0d1c  WerSvc - ok
08:16:04.0314 0x0d1c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
08:16:04.0314 0x0d1c  WfpLwf - ok
08:16:04.0329 0x0d1c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
08:16:04.0329 0x0d1c  WIMMount - ok
08:16:04.0345 0x0d1c  WinDefend - ok
08:16:04.0345 0x0d1c  WinHttpAutoProxySvc - ok
08:16:04.0392 0x0d1c  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
08:16:04.0392 0x0d1c  Winmgmt - ok
08:16:04.0454 0x0d1c  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
08:16:04.0501 0x0d1c  WinRM - ok
08:16:04.0565 0x0d1c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
08:16:04.0582 0x0d1c  Wlansvc - ok
08:16:04.0597 0x0d1c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
08:16:04.0597 0x0d1c  WmiAcpi - ok
08:16:04.0613 0x0d1c  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
08:16:04.0613 0x0d1c  wmiApSrv - ok
08:16:04.0613 0x0d1c  WMPNetworkSvc - ok
08:16:04.0629 0x0d1c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
08:16:04.0629 0x0d1c  WPCSvc - ok
08:16:04.0644 0x0d1c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
08:16:04.0644 0x0d1c  WPDBusEnum - ok
08:16:04.0644 0x0d1c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
08:16:04.0644 0x0d1c  ws2ifsl - ok
08:16:04.0660 0x0d1c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
08:16:04.0660 0x0d1c  wscsvc - ok
08:16:04.0660 0x0d1c  WSearch - ok
08:16:04.0707 0x0d1c  [ 61FF576450CCC80564B850BC3FB6713A, B2843BC9E2F62D27DCF6787D063378926748CE75002BADA1873DCB5039883705 ] wuauserv        C:\Windows\system32\wuaueng.dll
08:16:04.0738 0x0d1c  wuauserv - ok
08:16:04.0753 0x0d1c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
08:16:04.0753 0x0d1c  WudfPf - ok
08:16:04.0769 0x0d1c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
08:16:04.0769 0x0d1c  WUDFRd - ok
08:16:04.0785 0x0d1c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
08:16:04.0785 0x0d1c  wudfsvc - ok
08:16:04.0800 0x0d1c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
08:16:04.0816 0x0d1c  WwanSvc - ok
08:16:04.0831 0x0d1c  ================ Scan global ===============================
08:16:04.0831 0x0d1c  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
08:16:04.0863 0x0d1c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
08:16:04.0863 0x0d1c  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
08:16:04.0878 0x0d1c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
08:16:04.0894 0x0d1c  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
08:16:04.0894 0x0d1c  [ Global ] - ok
08:16:04.0894 0x0d1c  ================ Scan MBR ==================================
08:16:04.0925 0x0d1c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
08:16:05.0224 0x0d1c  \Device\Harddisk0\DR0 - ok
08:16:05.0240 0x0d1c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
08:16:05.0256 0x0d1c  \Device\Harddisk1\DR1 - ok
08:16:05.0256 0x0d1c  ================ Scan VBR ==================================
08:16:05.0256 0x0d1c  [ 6AE2BB4D589F84C3D8D3C4EF42B1D36B ] \Device\Harddisk0\DR0\Partition1
08:16:05.0302 0x0d1c  \Device\Harddisk0\DR0\Partition1 - ok
08:16:05.0302 0x0d1c  [ 2CF77848B10AB466FA44036680630185 ] \Device\Harddisk0\DR0\Partition2
08:16:05.0334 0x0d1c  \Device\Harddisk0\DR0\Partition2 - ok
08:16:05.0349 0x0d1c  [ 12A8E312A21A153CB493210F08E20F7F ] \Device\Harddisk1\DR1\Partition1
08:16:05.0396 0x0d1c  \Device\Harddisk1\DR1\Partition1 - ok
08:16:05.0396 0x0d1c  ================ Scan generic autorun ======================
08:16:05.0490 0x0d1c  [ 66B1C09A03323BC0142B62769ACB195E, 54B59524DE975DF649AD0C781772753135F6F73BA1A5E2458658665565BAADEC ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
08:16:05.0508 0x0d1c  NvBackend - ok
08:16:05.0677 0x0d1c  [ 389C67E389D8473D3305BA020957BFF2, CD1CD3C67D7F5806F3DB11D3F58992014FC07AB93863905333568CC74F98F667 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
08:16:05.0740 0x0d1c  RTHDVCPL - ok
08:16:05.0771 0x0d1c  [ 55DB5E1BCA62AEB05F18A80F5EA83ACB, 737A1A65A6E83005F79DFC8E15CA07F494F99F64E5DE77721401F6AAC5867FC2 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
08:16:05.0787 0x0d1c  RtHDVBg_DTS - ok
08:16:05.0849 0x0d1c  [ 094E4E76FB9AB960A73F841BC6733F42, 01C1BFF17BEC6588E192EC4D7ACB74FC9B95ECA7CB8BB9585B04FC8EA73C3B43 ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
08:16:05.0849 0x0d1c  USB3MON - ok
08:16:06.0021 0x0d1c  [ 44ADDA5FB88EE14F57A246285775AC2F, 2776225BA9F22C553453541DA0285E093B4F2019DB6FE640D033BA45045299C8 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
08:16:06.0067 0x0d1c  AvastUI.exe - ok
08:16:06.0099 0x0d1c  [ 6E23DA308D3875D5C9B7DAADB1AB132E, 99FCCCDFB45A12A3D22A7A83F8187D1484241BBCF9ED7792953C417B5D84D4A7 ] C:\Program Files (x86)\CyberPower PowerPanel Personal Edition\pppeuser.exe
08:16:06.0099 0x0d1c  PowerPanel Personal Edition User Interaction - ok
08:16:06.0145 0x0d1c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
08:16:06.0161 0x0d1c  Sidebar - ok
08:16:06.0192 0x0d1c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
08:16:06.0192 0x0d1c  mctadmin - ok
08:16:06.0208 0x0d1c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
08:16:06.0223 0x0d1c  Sidebar - ok
08:16:06.0223 0x0d1c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
08:16:06.0223 0x0d1c  mctadmin - ok
08:16:06.0301 0x0d1c  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
08:16:06.0333 0x0d1c  Sidebar - ok
08:16:06.0364 0x0d1c  [ 2CF6202AEC03A3770233C831271D78A3, 244780B590BDF1BCD441C183846FD17376653D5FE9412051F7BA1D8045E4DF9F ] C:\Program Files (x86)\Glary Utilities 5\StartupManager.exe
08:16:06.0364 0x0d1c  GUDelayStartup - ok
08:16:06.0526 0x0d1c  [ 14EF06B1EA531D681B5738F37388B99C, AB74735A3569B7995572FD7B0D026919CADA27C43A6AD0503659CE7CA3FF6B84 ] C:\Program Files\CCleaner\CCleaner64.exe
08:16:06.0586 0x0d1c  CCleaner Monitoring - ok
08:16:06.0602 0x0d1c  Waiting for KSN requests completion. In queue: 324
08:16:07.0483 0x1314  Object required for P2P: [ DAB0E87525C10052BF65F06152F37E4A ] nvstor
08:16:07.0605 0x0d1c  Waiting for KSN requests completion. In queue: 195
08:16:08.0608 0x0d1c  Waiting for KSN requests completion. In queue: 195
08:16:09.0611 0x0d1c  Waiting for KSN requests completion. In queue: 178
08:16:10.0079 0x1314  Object send P2P result: true
08:16:10.0110 0x1314  Object required for P2P: [ AD64450A4ABE076F5CB34CC08EEACB07 ] TsUsbGD
08:16:10.0614 0x0d1c  Waiting for KSN requests completion. In queue: 63
08:16:11.0617 0x0d1c  Waiting for KSN requests completion. In queue: 63
08:16:12.0620 0x0d1c  Waiting for KSN requests completion. In queue: 63
08:16:12.0729 0x1314  Object send P2P result: true
08:16:13.0654 0x0d1c  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 10.0.2208.712 ), 0x41000 ( enabled : updated )
08:16:13.0670 0x0d1c  Win FW state via NFP2: enabled
08:16:16.0149 0x0d1c  ============================================================
08:16:16.0149 0x0d1c  Scan finished
08:16:16.0149 0x0d1c  ============================================================
08:16:16.0149 0x06f8  Detected object count: 0
08:16:16.0149 0x06f8  Actual detected object count: 0
08:17:29.0428 0x1580  Deinitialize success

# AdwCleaner v4.109 - Report created 03/02/2015 at 08:20:28
# Updated 24/01/2015 by Xplode
# Database : 2015-02-02.1 [Live]
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : User - GEORGE
# Running from : E:\UserFiles\Downloads\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Scheduled Tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17496
 
 
-\\ Google Chrome v40.0.2214.93
 
 
*************************
 
AdwCleaner[R1].txt - [1009 octets] - [03/02/2015 08:20:28]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1069 octets] ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.2 (02.02.2015:1)
OS: Windows 7 Professional x64
Ran by User on ’¨  03/02/2015 at  8:24:37,45
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ’¨  03/02/2015 at  8:26:20,67
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

E:\UserFiles\Programs Installers\ccsetup502.exe Win32/Bundled.Toolbar.Google.D potentially unsafe application deleted - quarantined
E:\UserFiles\Programs Installers\FreeYouTubeToMP3Converter.exe a variant of Win32/OpenCandy.C potentially unsafe application deleted - quarantined
 


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,114 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 03 February 2015 - 07:52 PM

How are the issues now? I am checking out one thing?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 GeorgeStam89

GeorgeStam89
  • Topic Starter

  • Members
  • 134 posts
  • OFFLINE
  •  
  • Local time:06:17 AM

Posted 04 February 2015 - 12:44 AM

I believe that it works normal...but also i saw that entered to a little danger site at the afternoon with not all Avast's protections enabled(i forgot to enable all the protections after Junkware tool program).
What do you think about it? Could we check out something else..? or there isn't reason for concern?



#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,114 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 04 February 2015 - 11:51 AM

Lets do this next.

Open the Start Menu, click on All Programs and Accessories, right click on Command Prompt, and click on Run as administrator.

 

Type or Copy/Paste this into the Command window .. ipconfig /flushdns

 

Next Copy/Paste the output you see into your next reply.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 GeorgeStam89

GeorgeStam89
  • Topic Starter

  • Members
  • 134 posts
  • OFFLINE
  •  
  • Local time:06:17 AM

Posted 04 February 2015 - 12:33 PM

Microsoft Windows [Version 6.1.7601]
Copyright <c> 2009 Microsoft Corporation. By all rights reserved.

C:\Windows\system32>ipconfig /flushdns

Setting IP parameters of Windows

Accomplished clearing the cache DNS resolver



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,114 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 04 February 2015 - 12:43 PM

Run ADW and JRT again and see.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 GeorgeStam89

GeorgeStam89
  • Topic Starter

  • Members
  • 134 posts
  • OFFLINE
  •  
  • Local time:06:17 AM

Posted 04 February 2015 - 12:45 PM

Send you back reply?



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,114 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 04 February 2015 - 12:54 PM

Sure..
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 GeorgeStam89

GeorgeStam89
  • Topic Starter

  • Members
  • 134 posts
  • OFFLINE
  •  
  • Local time:06:17 AM

Posted 04 February 2015 - 03:28 PM

# AdwCleaner v4.109 - Report created 04/02/2015 at 22:18:06
# Updated 24/01/2015 by Xplode
# Database : 2015-02-04.1 [Live]
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : User - GEORGE
# Running from : E:\UserFiles\Downloads\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Scheduled Tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17496
 
 
-\\ Google Chrome v40.0.2214.94
 
 
*************************
 
AdwCleaner[R1].txt - [1149 octets] - [03/02/2015 08:20:28]
AdwCleaner[R2].txt - [1069 octets] - [04/02/2015 22:18:06]
 
########## EOF - C:\AdwCleaner\AdwCleaner[R2].txt - [1129 octets] ##########

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.2 (02.02.2015:1)
OS: Windows 7 Professional x64
Ran by User on ’« 04/02/2015 at 22:23:17,03
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ’« 04/02/2015 at 22:25:19,53
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,114 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 04 February 2015 - 09:13 PM

OK, you can clean those files from ADW and should be good.

Double click on AdwCleaner.exe to run the tool again. Vista/Windows 7/8 users right-click and select Run As Administrator
  • The tool will start to update the database, please wait a bit.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 GeorgeStam89

GeorgeStam89
  • Topic Starter

  • Members
  • 134 posts
  • OFFLINE
  •  
  • Local time:06:17 AM

Posted 05 February 2015 - 03:32 PM

# AdwCleaner v4.109 - Report created 05/02/2015 at 22:20:10
# Updated 24/01/2015 by Xplode
# Database : 2015-02-04.1 [Live]
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : User - GEORGE
# Running from : E:\UserFiles\Downloads\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Scheduled Tasks ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v11.0.9600.17496
 
 
-\\ Google Chrome v40.0.2214.94
 
 
*************************
 
AdwCleaner[R1].txt - [1149 octets] - [03/02/2015 08:20:28]
AdwCleaner[R2].txt - [1209 octets] - [04/02/2015 22:18:06]
AdwCleaner[R3].txt - [921 octets] - [05/02/2015 22:19:04]
AdwCleaner[S0].txt - [1278 octets] - [04/02/2015 22:19:34]
AdwCleaner[S1].txt - [843 octets] - [05/02/2015 22:20:10]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [902 octets] ##########

I had deleted all the items found the last time... :busy: 
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}

 


#14 GeorgeStam89

GeorgeStam89
  • Topic Starter

  • Members
  • 134 posts
  • OFFLINE
  •  
  • Local time:06:17 AM

Posted 05 February 2015 - 04:21 PM

I just detected Trojan.Agent in C:\Users\User\AppData\Local\Temp\Quarantine.exe after scanning with Malwarebytes Anti-Malware.Why this happened? Am i not full clean? Is a dangerous virus?



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,114 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:17 PM

Posted 05 February 2015 - 07:27 PM

That's a quarantined file that cannot hurt you,but it is held in the Temp folder.

Let's Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista or above, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

Edited by boopme, 05 February 2015 - 07:28 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users