Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

infected and clueless


  • Please log in to reply
24 replies to this topic

#1 fumble fingers

fumble fingers

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 05 March 2015 - 03:58 PM

Hi, I'm running windows 8.1. Mozilla opens and freeze the moves slowly and freeze. Ads by info overwhelm the page, redirects and fun you are infected call us ads.

 



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,562 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:27 PM

Posted 05 March 2015 - 04:25 PM

Hello fumble, lets see what these scans reveal.


3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Hold down Control and click on this link to open ESET Online Scanner in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE: Sometimes if ESET finds no infections it will not create a log.
>>>

51a46ae42d560-malwarebytes_anti_malware.Malwarebytes Anti-Malware
  • Download MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click the Scan Now button, a threat scan will start automatically.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
    • If no threats were found, click View detailed log.
      • Click Export and save the log as a .txt file on your Desktop or another location.
    • If the scan detected any threats, click Apply Actions.
      • To complete any actions taken you will be prompted to restart your computer...click on Yes.
      • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
      • Check the box next to Scan Log. Choose the most current scan and click View.
      • Click Export and save the log as a .txt file on your Desktop or another location.
  • Providing the MalwareBytes' Anti-Malware log file
    • Attach the log file you just saved to your next reply for further review.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 fumble fingers

fumble fingers
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 06 March 2015 - 09:24 AM

Hello To Insanity and Beyond,
Can I do all this through Internet Explorer or do I have to do it through Mozilla? Thanks for the quick response, sorry for the delay but life got in the way.

#4 fumble fingers

fumble fingers
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 06 March 2015 - 10:25 AM



 

MiniToolBox by Farbar  Version: 05-03-2015
Ran by Kevin (administrator) on 06-03-2015 at 10:11:28
Running from "C:\Users\Kevin\Downloads"
Microsoft Windows 8.1  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

 

========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Ethernet (Connected)
Broadcom 802.11n Network Adapter = Wi-Fi (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Bluetooth Network Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="wireless_11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set subinterface interface= subinterface=ethernet_11 mtu=1477

popd
# End of IPv4 configuration

 

Windows IP Configuration

   Host Name . . . . . . . . . . . . : McCraryMachine
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : gateway.pace.com

Wireless LAN adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : BE-85-56-56-EA-EE
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 68-94-23-F0-AB-94
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
   Physical Address. . . . . . . . . : BC-85-56-56-EA-EE
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . : gateway.pace.com
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 00-25-AB-39-1B-9D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::5c1e:7b04:4d08:b172%3(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.66(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Thursday, March 5, 2015 12:51:22 PM
   Lease Expires . . . . . . . . . . : Saturday, March 7, 2015 9:18:22 AM
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 251667883
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-19-34-61-FF-00-25-AB-39-1B-9D
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
Server:  homeportal
Address:  192.168.1.254

Name:    google.com
Addresses:  2607:f8b0:4002:802::1000
   74.125.196.102
   74.125.196.139
   74.125.196.100
   74.125.196.113
   74.125.196.138
   74.125.196.101

Pinging google.com [64.233.177.100] with 32 bytes of data:
Reply from 64.233.177.100: bytes=32 time=33ms TTL=44
Reply from 64.233.177.100: bytes=32 time=33ms TTL=44

Ping statistics for 64.233.177.100:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 33ms, Maximum = 33ms, Average = 33ms
Server:  homeportal
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  206.190.36.45
   98.139.183.24
   98.138.253.109

Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=111ms TTL=44
Reply from 206.190.36.45: bytes=32 time=106ms TTL=44

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 106ms, Maximum = 111ms, Average = 108ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  7...be 85 56 56 ea ee ......Microsoft Wi-Fi Direct Virtual Adapter
  6...68 94 23 f0 ab 94 ......Bluetooth Device (Personal Area Network)
  4...bc 85 56 56 ea ee ......Broadcom 802.11n Network Adapter
  3...00 25 ab 39 1b 9d ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.66     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.66    276
     192.168.1.66  255.255.255.255         On-link      192.168.1.66    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.66    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.66    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.66    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  3    276 fe80::/64                On-link
  3    276 fe80::5c1e:7b04:4d08:b172/128
                                    On-link
  1    306 ff00::/8                 On-link
  3    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [53760] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [68096] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\WINDOWS\SysWOW64\wshbth.dll [51200] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [270848] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [67584] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30208] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\wshbth.dll [63488] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [338432] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/06/2015 10:07:15 AM) (Source: Application Error) (User: )
Description: Faulting application name: plugin-container.exe, version: 35.0.1.5500, time stamp: 0x54c1f9f3
Faulting module name: mozalloc.dll, version: 35.0.1.5500, time stamp: 0x54c1f224
Exception code: 0x80000003
Fault offset: 0x00001425
Faulting process id: 0x1a88
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3
Faulting package full name: plugin-container.exe4
Faulting package-relative application ID: plugin-container.exe5

Error: (03/05/2015 03:17:24 PM) (Source: Application Error) (User: )
Description: Faulting application name: ShouldIRemoveIt.exe, version: 1.0.4.30407, time stamp: 0x54078dde
Faulting module name: LSASRV.dll, version: 6.3.9600.17415, time stamp: 0x54504358
Exception code: 0xc0000005
Fault offset: 0x000000000005036a
Faulting process id: 0x1a18
Faulting application start time: 0xShouldIRemoveIt.exe0
Faulting application path: ShouldIRemoveIt.exe1
Faulting module path: ShouldIRemoveIt.exe2
Report Id: ShouldIRemoveIt.exe3
Faulting package full name: ShouldIRemoveIt.exe4
Faulting package-relative application ID: ShouldIRemoveIt.exe5

Error: (03/04/2015 10:27:37 AM) (Source: Application Hang) (User: )
Description: The program AcroRd32.exe version 11.0.10.32 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 40f0

Start Time: 01d0568faf7809e3

Termination Time: 7

Application Path: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe

Report Id: f65dd3e5-c282-11e4-bee1-689423f0ab94

Faulting package full name:

Faulting package-relative application ID:

Error: (03/02/2015 08:17:36 AM) (Source: Application Error) (User: )
Description: Faulting application name: MsiExec.exe, version: 5.0.9600.16384, time stamp: 0x52158c02
Faulting module name: MSIC678.tmp, version: 1.0.0.1, time stamp: 0x546ea2fe
Exception code: 0xc0000005
Fault offset: 0x00009320
Faulting process id: 0x8490
Faulting application start time: 0xMsiExec.exe0
Faulting application path: MsiExec.exe1
Faulting module path: MsiExec.exe2
Report Id: MsiExec.exe3
Faulting package full name: MsiExec.exe4
Faulting package-relative application ID: MsiExec.exe5

Error: (03/01/2015 00:27:41 PM) (Source: Application Error) (User: )
Description: Faulting application name: FlashPlayerPlugin_16_0_0_305.exe, version: 16.0.0.305, time stamp: 0x54cff379
Faulting module name: NPSWF32_16_0_0_305.dll, version: 16.0.0.305, time stamp: 0x54cff457
Exception code: 0xc000041d
Fault offset: 0x006ccae4
Faulting process id: 0x4bd4
Faulting application start time: 0xFlashPlayerPlugin_16_0_0_305.exe0
Faulting application path: FlashPlayerPlugin_16_0_0_305.exe1
Faulting module path: FlashPlayerPlugin_16_0_0_305.exe2
Report Id: FlashPlayerPlugin_16_0_0_305.exe3
Faulting package full name: FlashPlayerPlugin_16_0_0_305.exe4
Faulting package-relative application ID: FlashPlayerPlugin_16_0_0_305.exe5

Error: (02/26/2015 05:39:09 AM) (Source: Application Hang) (User: )
Description: The program LiveComm.exe version 17.5.9600.20689 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: fa7c

Start Time: 01d051af64c26000

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Report Id: b1ab4e60-bda3-11e4-bede-689423f0ab94

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/25/2015 05:38:39 AM) (Source: Application Hang) (User: )
Description: The program LiveComm.exe version 17.5.9600.20689 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 18374

Start Time: 01d050e62877ae2d

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Report Id: 75608b87-bcda-11e4-bede-689423f0ab94

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/24/2015 10:21:03 AM) (Source: Application Hang) (User: )
Description: The program LiveComm.exe version 17.5.9600.20689 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: ba7c

Start Time: 01d05044cae82723

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Report Id: be6bc6e9-bc38-11e4-bede-689423f0ab94

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/23/2015 09:29:20 PM) (Source: Application Hang) (User: )
Description: The program LiveComm.exe version 17.5.9600.20689 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1e390

Start Time: 01d04fd89d01fb54

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe

Report Id: e9d8a68a-bbcc-11e4-bede-689423f0ab94

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (02/20/2015 05:57:38 PM) (Source: Microsoft-Windows-Immersive-Shell) (User: McCraryMachine)
Description: Activation of app microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 failed with error: -2144927141 See the Microsoft-Windows-TWinUI/Operational log for additional information.

System errors:
=============
Error: (03/06/2015 08:55:24 AM) (Source: DCOM) (User: McCraryMachine)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (03/06/2015 08:54:54 AM) (Source: DCOM) (User: McCraryMachine)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (03/05/2015 00:36:22 PM) (Source: DCOM) (User: McCraryMachine)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (03/05/2015 00:22:34 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 106.

Error: (03/05/2015 00:17:46 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 40. The Windows SChannel error state is 252.

Error: (03/05/2015 00:17:46 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 40. The Windows SChannel error state is 252.

Error: (03/05/2015 00:17:43 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: A fatal alert was generated and sent to the remote endpoint. This may result in termination of the connection. The TLS protocol defined fatal error code is 10. The Windows SChannel error state is 106.

Error: (03/05/2015 00:12:41 PM) (Source: bcbtums) (User: )
Description: Failed initializing BT device, failed RAM patch download.

Error: (03/04/2015 05:48:38 AM) (Source: DCOM) (User: McCraryMachine)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (03/04/2015 05:48:08 AM) (Source: DCOM) (User: McCraryMachine)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Microsoft Office Sessions:
=========================
Error: (03/06/2015 10:07:15 AM) (Source: Application Error)(User: )
Description: plugin-container.exe35.0.1.550054c1f9f3mozalloc.dll35.0.1.550054c1f22480000003000014251a8801d0581dfb068480C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll79293d1b-c412-11e4-bee2-689423f0ab94

Error: (03/05/2015 03:17:24 PM) (Source: Application Error)(User: )
Description: ShouldIRemoveIt.exe1.0.4.3040754078ddeLSASRV.dll6.3.9600.1741554504358c0000005000000000005036a1a1801d057815d1e2441C:\Program Files (x86)\Reason\Should I Remove It\ShouldIRemoveIt.exeC:\WINDOWS\SYSTEM32\LSASRV.dlla2163290-c374-11e4-bee2-689423f0ab94

Error: (03/04/2015 10:27:37 AM) (Source: Application Hang)(User: )
Description: AcroRd32.exe11.0.10.3240f001d0568faf7809e37C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exef65dd3e5-c282-11e4-bee1-689423f0ab94

Error: (03/02/2015 08:17:36 AM) (Source: Application Error)(User: )
Description: MsiExec.exe5.0.9600.1638452158c02MSIC678.tmp1.0.0.1546ea2fec000000500009320849001d054eb3ff121fdC:\Windows\syswow64\MsiExec.exeC:\WINDOWS\Installer\MSIC678.tmp7e0dd902-c0de-11e4-bee0-689423f0ab94

Error: (03/01/2015 00:27:41 PM) (Source: Application Error)(User: )
Description: FlashPlayerPlugin_16_0_0_305.exe16.0.0.30554cff379NPSWF32_16_0_0_305.dll16.0.0.30554cff457c000041d006ccae44bd401d05443850e6c26C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerPlugin_16_0_0_305.exeC:\WINDOWS\SYSTEM32\Macromed\Flash\NPSWF32_16_0_0_305.dll4314c171-c038-11e4-bee0-689423f0ab94

Error: (02/26/2015 05:39:09 AM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.5.9600.20689fa7c01d051af64c260004294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exeb1ab4e60-bda3-11e4-bede-689423f0ab94microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/25/2015 05:38:39 AM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.5.9600.206891837401d050e62877ae2d4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exe75608b87-bcda-11e4-bede-689423f0ab94microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/24/2015 10:21:03 AM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.5.9600.20689ba7c01d05044cae827234294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exebe6bc6e9-bc38-11e4-bede-689423f0ab94microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/23/2015 09:29:20 PM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.5.9600.206891e39001d04fd89d01fb544294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\LiveComm.exee9d8a68a-bbcc-11e4-bede-689423f0ab94microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (02/20/2015 05:57:38 PM) (Source: Microsoft-Windows-Immersive-Shell)(User: McCraryMachine)
Description: microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1-2144927141

CodeIntegrity Errors:
===================================
  Date: 2015-03-06 10:10:52.589
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-06 10:10:52.464
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-05 15:14:48.720
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-05 15:14:48.611
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-05 15:08:46.175
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-05 15:08:46.066
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-05 15:08:45.941
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-05 15:08:45.847
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-05 12:21:37.086
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

  Date: 2015-03-05 12:21:36.961
  Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

 

=========================== Installed Programs ============================
Ad-Aware Web Companion (x32 Version: 1.1.844.1586 - Lavasoft) Hidden
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
Adobe Refresh Manager (x32 Version: 1.8.0 - Adobe Systems Incorporated) Hidden
AngryBirds (HKLM-x32\...\{20CE0033-8F3D-464B-8BA2-A08EB0F27FD3}) (Version: 1.01.0618 - Rovio)
Apple Application Support (32-bit) (HKLM-x32\...\{447CDCE5-F555-429B-BFA6-642C3C6D684F}) (Version: 3.1.2 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{0DF7096B-715A-4233-8633-C7A16ED6D616}) (Version: 3.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Brother MFL-Pro Suite MFC-J470DW (HKLM-x32\...\{7B4C83B6-17C1-4BFD-B86D-4D7AD4498CBB}) (Version: 1.0.4.0 - Brother Industries, Ltd.)
Comparing (HKLM-x32\...\InstallShield_{FA26CEFD-E3BE-46EC-AEE0-95BF8F5CF307}) (Version: 1.00.2012.0829 - Tong child Research & Planning Co.,Ltd)
Comparing (x32 Version: 1.00.2012.0829 - Tong child Research & Planning Co.,Ltd) Hidden
Content Manager (HKLM-x32\...\{B64BC516-2406-43AE-A21A-1E387A2343B1}) (Version: 2.70 - Magellan)
Dependency Package Update (Version: 1.6.25.00 - Lenovo Inc.) Hidden
Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (Version: 1.6.32.00 - Lenovo Inc.) Hidden
Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dolby Advanced Audio v2 (HKLM-x32\...\{B9E70C7A-9F85-4A39-A4A3-BFA3C3BF7613}) (Version: 7.2.8000.16 - Dolby Laboratories Inc)
Driver & Application Installation (HKLM-x32\...\{BFECCF2A-F094-4066-8BFA-29CCBB7F6602}) (Version: 6.12.0911 - Lenovo)
EducationPortal (HKLM-x32\...\{65487538-FF20-421B-91DB-F6634B8D264C}) (Version: 5.00.012.0617 - Lenovo)
Find the Differences (HKLM-x32\...\InstallShield_{65F9B587-24A7-466A-999A-9C5F9D452400}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
Find the Differences (x32 Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
Finding the Letters (HKLM-x32\...\InstallShield_{535FB733-FFCF-4460-8694-664A2F6C53B4}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
Finding the Letters (x32 Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
FreeRide Games (HKLM-x32\...\{6C26A305-4549-4A8A-9F03-25719C03B0FB}) (Version: 07.05.80.00 - Exent Technologies)
Fruits (HKLM-x32\...\InstallShield_{AA39BFDE-71E5-46A6-A10B-44C2F45A341E}) (Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd)
Fruits (x32 Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd) Hidden
GamePortal (HKLM-x32\...\{530A0CD0-4158-45BE-AD45-8DC7019C597F}) (Version: 5.00.012.0605 - Lenovo)
iCloud (HKLM\...\{309768A4-A2BB-4930-A5A2-8169678C9B4C}) (Version: 4.0.6.28 - Apple Inc.)
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 33057) (Version: 3.6.1.33057.10 - Intel)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.20.1337 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3316 - Intel Corporation)
Intel® SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.26.242.3 - Intel Corporation) Hidden
iTunes (HKLM\...\{D227565A-0033-40AD-89BA-653A205CDC11}) (Version: 12.1.1.4 - Apple Inc.)
LavasoftTcpService (x32 Version: 2.2.9.5 - Lavasoft) Hidden
Lenovo Assistant (HKLM-x32\...\{B2DE4F30-B8C7-49C0-85B9-2F37A5290F00}) (Version: 2.0.0.23 - Lenovo)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.4900 - Broadcom Corporation)
Lenovo Dashboard (HKLM-x32\...\{FEF1833C-244C-4DF2-AB67-1E1D26921ED8}) (Version: 2.0.0.9 - Lenovo)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.32.00 - Lenovo Group Limited)
Lenovo Dynamic Brightness System (HKLM-x32\...\{D9ED6D06-6002-495E-A7BC-46E6AE386996}) (Version: 4.0.01.42160 - Lenovo)
Lenovo Eye Distance System (HKLM-x32\...\{5183D7AB-D09B-411F-A74E-BBAEA61C6505}) (Version: 4.0.01.42160 - Lenovo)
Lenovo Mouse Suite (HKLM\...\MouseSuite98) (Version: 6.60 - Lenovo)
Lenovo Photos (HKLM-x32\...\Lenovo Photos) (Version: 4.8.7 - CEWE COLOR AG u Co. OHG)
Lenovo Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.0.6418 - CyberLink Corp.)
Lenovo Power2Go (x32 Version: 6.0.6418 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4126.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.4126.52 - CyberLink Corp.) Hidden
Lenovo Rescue System (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 4.0.0.0822 - CyberLink Corp.)
Lenovo Rescue System (Version: 4.0.0.0822 - CyberLink Corp.) Hidden
Lenovo Silver Silk Wireless Keyboard (HKLM-x32\...\InstallShield_{B88AD4F5-58A6-425D-9282-92228FEB7067}) (Version: 1.03 - Lenovo)
Lenovo Silver Silk Wireless Keyboard (x32 Version: 1.03 - Lenovo) Hidden
Lenovo Ultraslim Plus Wireless Keyboard & Mouse (HKLM\...\Lenovo Ultraslim Plus Wireless Keyboard & Mouse) (Version: 1.5 - Lenovo)
Lenovo USB2.0 UVC Camera (HKLM-x32\...\{70D2C5B8-EB22-45B1-9EAA-5E8C1C408A3B}) (Version: 1.00.0000 - Vimicro Corporation)
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 4.1.3127 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 4.1.3127 - CyberLink Corp.) Hidden
Lenovo_Wireless_Driver (HKLM-x32\...\{5D642A72-8194-4A22-80DA-11FE610CCA8E}) (Version: 6.30.5926 - Lenovo)
LibreOffice 4.2 Help Pack (English (United States)) (HKLM-x32\...\{367D30F8-BF1B-402D-A79F-C60CAB06411A}) (Version: 4.2.6.3 - The Document Foundation)
LibreOffice 4.2.2.1 (HKLM-x32\...\{0ECDB550-79ED-4E9E-851B-19A8B2B4EBFA}) (Version: 4.2.2.1 - The Document Foundation)
LVT (HKLM-x32\...\{9E3469A6-443A-452C-BF44-8D7CE3A9A7E2}) (Version: 5.00.0914 - Lenovo)
Mammals (HKLM-x32\...\InstallShield_{ACA58CEB-2F74-4095-ADB6-4C1BFB170F64}) (Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd)
Mammals (x32 Version: 1.00.2012.0809 - Tong child Research & Planning Co.,Ltd) Hidden
Matching Roles (HKLM-x32\...\InstallShield_{92736E44-7608-4D80-9333-E40C82B7E8B3}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
Matching Roles (x32 Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4454.1510 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Motorola Mobile Drivers Installation 6.3.0 (HKLM\...\{759E6A2F-1F01-45EF-A0C4-22F1B56CB975}) (Version: 6.3.0 - Motorola Mobility LLC)
Mozilla Firefox 35.0.1 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 en-US)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Nitro Pro 8 (HKLM\...\{34BE77EE-B563-49D7-A8A0-FFD76D29BBD3}) (Version: 8.0.10.7 - Nitro)
Nuance PaperPort 12 (HKLM-x32\...\{869FCC6C-5669-4B0B-827E-2BBAACD88A87}) (Version: 12.1.0006 - Nuance Communications, Inc.)
Nuance PDF Viewer Plus (HKLM-x32\...\{28656860-4728-433C-8AD4-D1A930437BC8}) (Version: 5.30.3290 - Nuance Communications, Inc)
PaperPort Image Printer 64-bit (HKLM\...\{715CAACC-579B-4831-A5F4-A83A8DE3EFE2}) (Version: 14.00.0000 - Nuance Communications, Inc.)
Puzzle (HKLM-x32\...\InstallShield_{6EB7ECE3-E3BE-481D-821B-F1AFFA244D64}) (Version: 1.00.2012.0807 - Tong child Research & Planning Co.,Ltd)
Puzzle (x32 Version: 1.00.2012.0807 - Tong child Research & Planning Co.,Ltd) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6695 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.8400.29025 - Realtek Semiconductor Corp.)
Scansoft PDF Professional (x32 Version:  - ) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
sudoku (HKLM-x32\...\InstallShield_{8C4715DF-8AC9-4F0A-8E35-F9B4CF318FF1}) (Version: 1.00.2012.0807 - Tong child Research & Planning Co.,Ltd)
sudoku (x32 Version: 1.00.2012.0807 - Tong child Research & Planning Co.,Ltd) Hidden
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.61.90905 - SugarSync, Inc.)
timer (HKLM-x32\...\InstallShield_{9CC4B8EE-A96B-4800-B674-0CF8B4560F45}) (Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd)
timer (x32 Version: 1.00.2012.0512 - Tong child Research & Planning Co.,Ltd) Hidden
Tixati (HKLM-x32\...\tixati) (Version:  - )
Update for Microsoft en-us Dictionary (Version: 16.1.760.1 - Microsoft Corporation) Hidden
Verizon Software Upgrade Assistant (x32 Version: 14.08.0601 - Motorola Mobility) Hidden
Verizon Wireless Software Upgrade Assistant for Motorola (HKLM-x32\...\{9BEDD987-AC68-44D2-8803-EC0650F6C43F}) (Version: 1.3.1 - Motorola Mobility)
Web Companion (HKLM-x32\...\{D5116390-5C95-4FEA-A719-78C3C8B5DFB5}_WebCompanion) (Version: 1.1.844.1586 - Lavasoft)

========================= Memory info: ===================================

Percentage of memory in use: 41%
Total physical RAM: 3983.57 MB
Available physical RAM: 2342.57 MB
Total Pagefile: 5311.57 MB
Available Pagefile: 3183.87 MB
Total Virtual: 4095.88 MB
Available Virtual: 3972.89 MB

========================= Partitions: =====================================

1 Drive c: (Windows8_OS) (Fixed) (Total:904.91 GB) (Free:839.99 GB) NTFS

========================= Users: ========================================

User accounts for \\MCCRARYMACHINE

Administrator            Guest                    Kevin                   
Max                     

**** End of log ****

 

 

 

Boopme, hope this is the correct way of posting this. Let me know. Remember, clueless!  Couldn't run in Mozilla, had to use IE. Thanks, will continue with task you recommended.  Fumble fingers.



#5 fumble fingers

fumble fingers
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 06 March 2015 - 10:45 AM

TDSSKiller found no problems, as reported on "scan results" No sure how to find "report."  Would not let me cut and paste. Clueless.



#6 fumble fingers

fumble fingers
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 06 March 2015 - 11:07 AM

AHA, found it. Here.....

 

TDSSKiller

10:36:45.0321 0x2a84 TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04

10:36:45.0321 0x2a84 UEFI system

10:36:51.0338 0x2a84 ============================================================

10:36:51.0338 0x2a84 Current date / time: 2015/03/06 10:36:51.0338

10:36:51.0338 0x2a84 SystemInfo:

10:36:51.0338 0x2a84

10:36:51.0338 0x2a84 OS Version: 6.3.9600 ServicePack: 0.0

10:36:51.0338 0x2a84 Product type: Workstation

10:36:51.0338 0x2a84 ComputerName: MCCRARYMACHINE

10:36:51.0338 0x2a84 UserName: Kevin

10:36:51.0338 0x2a84 Windows directory: C:\WINDOWS

10:36:51.0338 0x2a84 System windows directory: C:\WINDOWS

10:36:51.0338 0x2a84 Running under WOW64

10:36:51.0338 0x2a84 Processor architecture: Intel x64

10:36:51.0338 0x2a84 Number of processors: 2

10:36:51.0338 0x2a84 Page size: 0x1000

10:36:51.0338 0x2a84 Boot type: Normal boot

10:36:51.0338 0x2a84 ============================================================

10:36:51.0619 0x2a84 KLMD registered as C:\WINDOWS\system32\drivers\31761355.sys

10:36:52.0276 0x2a84 System UUID: {FC841C42-904D-B8D8-5213-19C8A298E6C6}

10:36:53.0658 0x2a84 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040

10:36:53.0673 0x2a84 ============================================================

10:36:53.0673 0x2a84 \Device\Harddisk0\DR0:

10:36:53.0673 0x2a84 GPT partitions:

10:36:53.0689 0x2a84 \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {F9E96295-4841-4FE0-B2B3-352D305C38C8}, Name: , StartLBA 0x800, BlocksNum 0x1F4000

10:36:53.0689 0x2a84 \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {B2EAD6A4-7F93-463D-9948-8474B8CC2D59}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000

10:36:53.0689 0x2a84 \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {BFBFAFE7-A34F-448A-9A5B-6213EB736C22}, UniqueGUID: {53703527-99EF-4DA6-A1D6-428FE0DD78FB}, Name: , StartLBA 0x276800, BlocksNum 0xFA000

10:36:53.0689 0x2a84 \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {11D418C2-0B1E-4B51-9468-7EEE671B7E22}, Name: Microsoft reserved partition, StartLBA 0x370800, BlocksNum 0x40000

10:36:53.0689 0x2a84 \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {785DCF73-190B-4ABC-BF5D-3ED2B14DF730}, Name: Basic data partition, StartLBA 0x3B0800, BlocksNum 0x711D3000

10:36:53.0689 0x2a84 \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {AA62D29D-2994-4F94-8EC9-A510C630E775}, Name: , StartLBA 0x71583800, BlocksNum 0xAF000

10:36:53.0689 0x2a84 \Device\Harddisk0\DR0\Partition7: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {B85A6E2C-5A46-4221-841D-D2E608F5701D}, Name: , StartLBA 0x71632800, BlocksNum 0x30D4000

10:36:53.0689 0x2a84 MBR partitions:

10:36:53.0689 0x2a84 ============================================================

10:36:53.0689 0x2a84 C: <-> \Device\Harddisk0\DR0\Partition5

10:36:53.0689 0x2a84 ============================================================

10:36:53.0689 0x2a84 Initialize success

10:36:53.0689 0x2a84 ============================================================

10:38:53.0702 0x288c ============================================================

10:38:53.0702 0x288c Scan started

10:38:53.0702 0x288c Mode: Manual;

10:38:53.0702 0x288c ============================================================

10:38:53.0702 0x288c KSN ping started

10:38:56.0134 0x288c KSN ping finished: true

10:38:56.0837 0x288c ================ Scan system memory ========================

10:38:56.0837 0x288c System memory - ok

10:38:56.0837 0x288c ================ Scan services =============================

10:38:56.0962 0x288c [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci C:\WINDOWS\System32\drivers\1394ohci.sys

10:38:56.0978 0x288c 1394ohci - ok

10:38:56.0993 0x288c [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware C:\WINDOWS\system32\drivers\3ware.sys

10:38:57.0009 0x288c 3ware - ok

10:38:57.0040 0x288c [ D27A8B7BB0E15DFBFC6B4E774EE17AD9, CBAD45B3FFFD30C34AF918009F699B65F89043D0799FC25D2472381912F86F93 ] A2DDA C:\EEK\BIN\a2ddax64.sys

10:38:57.0056 0x288c A2DDA - ok

10:38:57.0103 0x288c [ 9539F7917B4B6D92C90F0FAA6B86C605, B4C284E8EECC2E7025053A3320EFDC9F47BCA9828853AD2A805DB826CA4AC27E ] ACPI C:\WINDOWS\system32\drivers\ACPI.sys

10:38:57.0103 0x288c ACPI - ok

10:38:57.0118 0x288c [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex C:\WINDOWS\system32\Drivers\acpiex.sys

10:38:57.0118 0x288c acpiex - ok

10:38:57.0134 0x288c [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr C:\WINDOWS\System32\drivers\acpipagr.sys

10:38:57.0134 0x288c acpipagr - ok

10:38:57.0165 0x288c [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi C:\WINDOWS\System32\drivers\acpipmi.sys

10:38:57.0165 0x288c AcpiPmi - ok

10:38:57.0181 0x288c [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime C:\WINDOWS\System32\drivers\acpitime.sys

10:38:57.0181 0x288c acpitime - ok

10:38:57.0243 0x288c [ FC5B75CA6A1DA31EDD4F8D53F5540B98, CDC445F2790ADFC4C5568C40D4DA8BB95CD71991665B38AEC3D84571C99C3520 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

10:38:57.0243 0x288c AdobeARMservice - ok

10:38:57.0306 0x288c [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

10:38:57.0306 0x288c AdobeFlashPlayerUpdateSvc - ok

10:38:57.0337 0x288c [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX C:\WINDOWS\system32\drivers\ADP80XX.SYS

10:38:57.0353 0x288c ADP80XX - ok

10:38:57.0384 0x288c [ 0F17D49BE041B7EFF1D33BF1414E7AC6, F8B536B60903814DF88DAF535753288537EF0993E42AA4E734EDA8D68B24C7AB ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll

10:38:57.0384 0x288c AeLookupSvc - ok

10:38:57.0415 0x288c [ 374E27295F0A9DCAA8FC96370F9BEEA5, 51C394E0C2322D7D093941A1B8766171B5D1F47DF2FE0834209492891EA7D999 ] AFD C:\WINDOWS\system32\drivers\afd.sys

10:38:57.0431 0x288c AFD - ok

10:38:57.0462 0x288c [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440 C:\WINDOWS\system32\drivers\agp440.sys

10:38:57.0462 0x288c agp440 - ok

10:38:57.0478 0x288c [ F0CB6DB513CAC393D04A0FCE0A59E1BF, E6EE159D0E6B1F666946B1FE421874044E89BB2EB60A521BAA111A1229FA7B2D ] ahcache C:\WINDOWS\system32\DRIVERS\ahcache.sys

10:38:57.0478 0x288c ahcache - ok

10:38:57.0493 0x288c [ A91D8E1E433EFB32551BCE69037E1CE7, 41DFDD5B56918D19D09DFB3E4B07460AA85647A8647ABBBB906158D8D6653290 ] ALG C:\WINDOWS\System32\alg.exe

10:38:57.0509 0x288c ALG - ok

10:38:57.0524 0x288c [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8 C:\WINDOWS\System32\drivers\amdk8.sys

10:38:57.0524 0x288c AmdK8 - ok

10:38:57.0540 0x288c [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM C:\WINDOWS\System32\drivers\amdppm.sys

10:38:57.0540 0x288c AmdPPM - ok

10:38:57.0540 0x288c [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata C:\WINDOWS\system32\drivers\amdsata.sys

10:38:57.0540 0x288c amdsata - ok

10:38:57.0556 0x288c [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs C:\WINDOWS\system32\drivers\amdsbs.sys

10:38:57.0556 0x288c amdsbs - ok

10:38:57.0571 0x288c [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata C:\WINDOWS\system32\drivers\amdxata.sys

10:38:57.0587 0x288c amdxata - ok

10:38:57.0587 0x288c [ 04951A9A937CBE28A2D3FEEA360B6D1F, D8AAF000BE4FE4B203DC2EB2A64F780A542E5238CE3F9952FD03277379B11529 ] AppID C:\WINDOWS\system32\drivers\appid.sys

10:38:57.0587 0x288c AppID - ok

10:38:57.0618 0x288c [ C0DC3F58214A227980AEB091CFD2F973, 0C3E8453C9F65ADA3E74C38C0E3AC3E0CBFD807B827097046265B38839E151E3 ] AppIDSvc C:\WINDOWS\System32\appidsvc.dll

10:38:57.0618 0x288c AppIDSvc - ok

10:38:57.0649 0x288c [ 034ED41F13D9C1845C1E081F05B640DB, E4E17BA0B22C464DE60A6BF68D4D035D1B838DE4F0361029DED1AE00503E135C ] Appinfo C:\WINDOWS\System32\appinfo.dll

10:38:57.0649 0x288c Appinfo - ok

10:38:57.0728 0x288c [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

10:38:57.0728 0x288c Apple Mobile Device Service - ok

10:38:57.0759 0x288c [ CB12C47647D8BDAFAA94C0856B14128B, 5590C98095357C92563EF94800107D3611AA6ECA1A70BE463C03B279E618A6C4 ] AppReadiness C:\WINDOWS\system32\AppReadiness.dll

10:38:57.0774 0x288c AppReadiness - ok

10:38:57.0837 0x288c [ F7529BD3FFAC9C33D15F6DE3B7353B03, 8EF0A84C9687A246B60939A326E498121039E9CC617A7ABBA933EDD327F3467E ] AppXSvc C:\WINDOWS\system32\appxdeploymentserver.dll

10:38:57.0853 0x288c AppXSvc - ok

10:38:57.0869 0x288c [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas C:\WINDOWS\system32\drivers\arcsas.sys

10:38:57.0869 0x288c arcsas - ok

10:38:57.0884 0x288c [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys

10:38:57.0884 0x288c AsyncMac - ok

10:38:57.0884 0x288c [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi C:\WINDOWS\system32\drivers\atapi.sys

10:38:57.0884 0x288c atapi - ok

10:38:57.0915 0x288c [ 8779FDAE68BC948B0FE152E758CC8DA7, 13070C2073F8E7546B48AE9CF54067B9BB75DFCD98F2987B90FFAD20D40D54CF ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll

10:38:57.0931 0x288c AudioEndpointBuilder - ok

10:38:57.0962 0x288c [ 61EA45A645854FE81D8A924E2D93DFFE, 34F79532297F609CA93C380B68BB8B7B0F027F9C8F4FB8E02A9A43EA3D155F1B ] Audiosrv C:\WINDOWS\System32\Audiosrv.dll

10:38:57.0978 0x288c Audiosrv - ok

10:38:57.0994 0x288c [ 96E8CAF20FC4B6C31CAD7816A801EB78, E4870DB8FFBDCFEE98449338D0BDBF2DD0B5FEC75514E41C11A882BE6EB16833 ] AxInstSV C:\WINDOWS\System32\AxInstSV.dll

10:38:58.0009 0x288c AxInstSV - ok

10:38:58.0025 0x288c [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv C:\WINDOWS\system32\drivers\bxvbda.sys

10:38:58.0043 0x288c b06bdrv - ok

10:38:58.0052 0x288c [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay C:\WINDOWS\System32\drivers\BasicDisplay.sys

10:38:58.0052 0x288c BasicDisplay - ok

10:38:58.0083 0x288c [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender C:\WINDOWS\System32\drivers\BasicRender.sys

10:38:58.0083 0x288c BasicRender - ok

10:38:58.0099 0x288c [ 70433F7A216BD0B5EC7DA1202EE53E65, 12F3210EC5546714B34225770242F5CF4AC36032BB49A8E8989620BA274AC505 ] bcbtums C:\WINDOWS\system32\drivers\bcbtums.sys

10:38:58.0099 0x288c bcbtums - ok

10:38:58.0318 0x288c [ 9A4EF701A4FC835F7DDD8956D930010F, 28A555B98098ECE47912C40A74CA92AFA76F51A711F2DEFF1A498FF212505F23 ] BCM43XX C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys

10:38:58.0521 0x288c BCM43XX - ok

10:38:58.0583 0x288c [ 18B186BCC56EC611DE519CBA7D4F65B0, 6F2520AAFDAA4208717DCD121527911D580727C5A6B8C4C7F07C4155C4D8662D ] BcmBtRSupport C:\WINDOWS\system32\BtwRSupportService.exe

10:38:58.0630 0x288c BcmBtRSupport - ok

10:38:58.0646 0x288c [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2 C:\WINDOWS\System32\drivers\bcmfn2.sys

10:38:58.0646 0x288c bcmfn2 - ok

10:38:58.0677 0x288c [ E07C80468D0C599BFF01D9D4EC7AEDC3, F675F455924DEC3FF69AD816DFEB6E74C804AEC3D3BFF7515953DB9D79C9B2D0 ] BDESVC C:\WINDOWS\System32\bdesvc.dll

10:38:58.0677 0x288c BDESVC - ok

10:38:58.0693 0x288c [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep C:\WINDOWS\system32\drivers\Beep.sys

10:38:58.0708 0x288c Beep - ok

10:38:58.0740 0x288c [ 20FB137ADDE1255F15F265A7BD9579BE, 87B4D5C91EFEAD987AAC3491A4360F82824C46AFF958B6F4CAED7C12224EF159 ] BFE C:\WINDOWS\System32\bfe.dll

10:38:58.0755 0x288c BFE - ok

10:38:58.0802 0x288c [ 15225081966C785A9192782401643FD4, E2BA0C8D044556FDD9DD7A25F7F71553DE7A2924E78F9284413C2AC46F0BF4EB ] BITS C:\WINDOWS\System32\qmgr.dll

10:38:58.0818 0x288c BITS - ok

10:38:58.0849 0x288c [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

10:38:58.0849 0x288c Bonjour Service - ok

10:38:58.0865 0x288c [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser C:\WINDOWS\system32\DRIVERS\bowser.sys

10:38:58.0865 0x288c bowser - ok

10:38:58.0896 0x288c [ E325BCD68EC0CF2E2EDD0AB7CC17C698, 4DEDEF91F6BD1CC8DBE118AC28CA6BD874449A053B9CDE9FFEB1C7B98501D938 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll

10:38:58.0896 0x288c BrokerInfrastructure - ok

10:38:58.0943 0x288c [ 041A999E4FF9A7CDBE67357751881FB8, 356C52637EA715D6FA2B65BD311C9BF1635A582023434902EC2DE4A2448961F8 ] Browser C:\WINDOWS\System32\browser.dll

10:38:58.0943 0x288c Browser - ok

10:38:58.0974 0x288c [ 0471D5669F18C50E552B2BC0CB15E7B3, 472F471FF9E5A1FDD5610BAC2F5E727AB284B7B5A71C4E515D549667F0B5EB86 ] BrYNSvc C:\Program Files (x86)\Browny02\BrYNSvc.exe

10:38:58.0990 0x288c BrYNSvc - ok

10:38:58.0990 0x288c [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg C:\WINDOWS\System32\drivers\BthAvrcpTg.sys

10:38:58.0990 0x288c BthAvrcpTg - ok

10:38:59.0005 0x288c [ 131F1C8573E7BFB41C54FBF5309CCD94, DAFE51E3BADBD82A33B580F212B2D6520A120877C23F6D675521FEA2F4BA5A1F ] BthEnum C:\WINDOWS\System32\drivers\BthEnum.sys

10:38:59.0005 0x288c BthEnum - ok

10:38:59.0021 0x288c [ 746B9F94214915AECDE4B7FEA5FF9664, EA2877D49DB4B7B9CE61653D63E8776DFF1CBCCAB12C14DB1D20DA44B8F06357 ] BthHFEnum C:\WINDOWS\System32\drivers\bthhfenum.sys

10:38:59.0021 0x288c BthHFEnum - ok

10:38:59.0037 0x288c [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid C:\WINDOWS\System32\drivers\BthHFHid.sys

10:38:59.0037 0x288c bthhfhid - ok

10:38:59.0068 0x288c [ D30C67473A2E229662D21F27EAA9AAA5, D009C4836B0DFE963D8E3DEEDE611068838F2BBCAB146E6D70692FAB838E11F1 ] BthLEEnum C:\WINDOWS\System32\drivers\BthLEEnum.sys

10:38:59.0068 0x288c BthLEEnum - ok

10:38:59.0084 0x288c [ 07E33226AD218A2A162662A05CAFB52F, 0AC3D8B79EDA6DA232FA4E1CAF6592420A9EDE96350D1F0504C2434261684F0B ] BTHMODEM C:\WINDOWS\System32\drivers\bthmodem.sys

10:38:59.0084 0x288c BTHMODEM - ok

10:38:59.0115 0x288c [ 25BB93167DEF270188072603F92A1EF5, CE4637CE4B63420E218F53CAF89A8C85D036B879B80456FEF3C7C395590E26BB ] BthPan C:\WINDOWS\System32\drivers\bthpan.sys

10:38:59.0115 0x288c BthPan - ok

10:38:59.0146 0x288c [ 97B9076611291AE4C4C107BC915BD026, 0A77873AAF1ADB76CAB98A84D2242781E34E2699632E45EB92ED7DB20B2BE0C1 ] BTHPORT C:\WINDOWS\System32\Drivers\BTHport.sys

10:38:59.0177 0x288c BTHPORT - ok

10:38:59.0209 0x288c [ E5E48FEED73D463175EAB1542495191C, 0A8182F5BA7B694AB1DD3680F1194E4A568FE40DBA4BFDFF2EA09BAD045FFB29 ] bthserv C:\WINDOWS\system32\bthserv.dll

10:38:59.0209 0x288c bthserv - ok

10:38:59.0240 0x288c [ 23E75BED9076F856B36F5F934BBD5795, CCEB72B788522B7D52A6C07646005EBC68F9599D3714ECACF3A194CA47A1BE85 ] BTHUSB C:\WINDOWS\System32\Drivers\BTHUSB.sys

10:38:59.0240 0x288c BTHUSB - ok

10:38:59.0255 0x288c [ 20C8EB70C0B179DF06A01CA503F4A824, 1C2DADCBC5D85C1D4F6A28B7F374C829E6DCE0EB720EBDA43CF6AC0AC934AA5E ] btwampfl C:\WINDOWS\system32\DRIVERS\btwampfl.sys

10:38:59.0255 0x288c btwampfl - ok

10:38:59.0271 0x288c [ E453A259D395359EC30D0659C505D810, 7263DD22178ADBC124BA7BF284161AD42105B648D4B2114CC070C96A01DBDA9B ] btwaudio C:\WINDOWS\system32\drivers\btwaudio.sys

10:38:59.0287 0x288c btwaudio - ok

10:38:59.0302 0x288c [ 6B126F6A186C09116026DE56CD75EAD2, DA018681AA4A8C76FD73FC5826AE4E48E14B53AE9027F65B1ADF67DB69909E14 ] btwavdt C:\WINDOWS\System32\drivers\btwavdt.sys

10:38:59.0302 0x288c btwavdt - ok

10:38:59.0349 0x288c [ 35412CD4A227EE7A99179A930B1FDF4E, E6349B7646544B5B065112D9C7563F0A95462CA4511CB00B77D91E7C14DAD541 ] btwdins C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe

10:38:59.0365 0x288c btwdins - ok

10:38:59.0380 0x288c [ C3C8974D99F976C927165363855690CD, 2B73E11FE341DE581CFF655E58C5671B83F4331529C30DADCAA9B6BE615D5E1F ] btwl2cap C:\WINDOWS\system32\DRIVERS\btwl2cap.sys

10:38:59.0380 0x288c btwl2cap - ok

10:38:59.0380 0x288c [ AFF619C44E3624A9891830606604B480, C300EC64BB04D6EB019802D5433C1D1BD7A6EC0E5A4AFF5CBB41E3990429804C ] btwrchid C:\WINDOWS\System32\drivers\btwrchid.sys

10:38:59.0380 0x288c btwrchid - ok

10:38:59.0396 0x288c [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs C:\WINDOWS\system32\DRIVERS\cdfs.sys

10:38:59.0396 0x288c cdfs - ok

10:38:59.0412 0x288c [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom C:\WINDOWS\System32\drivers\cdrom.sys

10:38:59.0427 0x288c cdrom - ok

10:38:59.0443 0x288c [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] CertPropSvc C:\WINDOWS\System32\certprop.dll

10:38:59.0443 0x288c CertPropSvc - ok

10:38:59.0459 0x288c [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass C:\WINDOWS\System32\drivers\circlass.sys

10:38:59.0459 0x288c circlass - ok

10:38:59.0505 0x288c [ B794DCF38C965FA2F93C45A7C3D582C5, 0E483EAF835B85AA4B6F449F9BB68AF0A3EE4192D29CD72F4B812F1E4D9E9A7C ] cleanhlp C:\EEK\bin\cleanhlp64.sys

10:38:59.0521 0x288c cleanhlp - ok

10:38:59.0552 0x288c [ 179A41249055D5F039F1B6703F3B6D2B, 886CF715D9E85DB5C9B991EBCB9B12E27AA0EEE52528E222C80CA5B5B0A7AF52 ] CLFS C:\WINDOWS\system32\drivers\CLFS.sys

10:38:59.0552 0x288c CLFS - ok

10:38:59.0584 0x288c [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt C:\WINDOWS\System32\drivers\CmBatt.sys

10:38:59.0584 0x288c CmBatt - ok

10:38:59.0630 0x288c [ 3930E508DDA46C1FF68FD963F350AA0A, BF63F9C7AB30E2A8199D65EDD6DCBB797C93A4A0B972373643FBE1C38BCFA697 ] CNG C:\WINDOWS\system32\Drivers\cng.sys

10:38:59.0630 0x288c CNG - ok

10:38:59.0646 0x288c [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus C:\WINDOWS\System32\drivers\CompositeBus.sys

10:38:59.0646 0x288c CompositeBus - ok

10:38:59.0646 0x288c COMSysApp - ok

10:38:59.0662 0x288c [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv C:\WINDOWS\system32\drivers\condrv.sys

10:38:59.0662 0x288c condrv - ok

10:38:59.0724 0x288c [ 034643AFE2973A175E782AE530A0683C, C488572B971144D8A10F6EC8480175868913942896144D38BF49E3D8D1BC54F3 ] cphs C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe

10:38:59.0724 0x288c cphs - ok

10:38:59.0755 0x288c [ 0EFE4B5884A8032617826A4D76F80969, 083D296CC623C83D36A97AEE343ADF819B17E490F931DBE4D161BD1E8C289E02 ] CryptSvc C:\WINDOWS\system32\cryptsvc.dll

10:38:59.0755 0x288c CryptSvc - ok

10:38:59.0771 0x288c [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam C:\WINDOWS\system32\drivers\dam.sys

10:38:59.0771 0x288c dam - ok

10:38:59.0802 0x288c [ FCE361409964B71918D0D04CC26F8BD8, 8282F6CAEFCCE7B34E06F2EDD39D21AA8E728605E278093A52E25738252CCED7 ] Dashboard Service C:\Program Files (x86)\Lenovo\Lenovo Dashboard\DdMgr.exe

10:38:59.0802 0x288c Dashboard Service - ok

10:38:59.0834 0x288c [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll

10:38:59.0865 0x288c DcomLaunch - ok

10:38:59.0896 0x288c [ D249C3A58A4FCF755EF4C94F7047E015, 68C044CE2DB93FB502F85F6E081EA164F6E6DCBA6B3EE2A5CBDA122065E522F8 ] defragsvc C:\WINDOWS\System32\defragsvc.dll

10:38:59.0912 0x288c defragsvc - ok

10:38:59.0927 0x288c [ 8F387C2C99EE09C6E2AC316205F86A17, EC9E8AE72A21992AA118964E17090BA4503EB051273AD18185C95172F57328CE ] DeviceAssociationService C:\WINDOWS\system32\das.dll

10:38:59.0943 0x288c DeviceAssociationService - ok

10:38:59.0959 0x288c [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] DeviceInstall C:\WINDOWS\system32\umpnpmgr.dll

10:38:59.0959 0x288c DeviceInstall - ok

10:38:59.0974 0x288c [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc C:\WINDOWS\system32\Drivers\dfsc.sys

10:38:59.0990 0x288c Dfsc - ok

10:39:00.0006 0x288c [ 05DE04005CE0D84D0E6AD21CAEB369C6, E6704A2A685BCFD560796D7C328F8E53DF0793DBDA590598A492D9070D109298 ] Dhcp C:\WINDOWS\system32\dhcpcore.dll

10:39:00.0021 0x288c Dhcp - ok

10:39:00.0039 0x288c [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk C:\WINDOWS\system32\drivers\disk.sys

10:39:00.0043 0x288c disk - ok

10:39:00.0049 0x288c [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc C:\WINDOWS\System32\drivers\dmvsc.sys

10:39:00.0049 0x288c dmvsc - ok

10:39:00.0065 0x288c [ FE7656474448BE6A6C68E5C9BEB7CA94, 8B9F04CAA29A6EEFCA3D1E7BAFE340D5CCA8AF665474E69B1DF7E2A518B83A89 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll

10:39:00.0065 0x288c Dnscache - ok

10:39:00.0112 0x288c [ 50288EA079BB520C2B8C8A154202D518, 8916A9180CA009D124FFDFB4CCF5FDFEF7FA2FD37CBCD49FAD4C68E051B4734D ] dot3svc C:\WINDOWS\System32\dot3svc.dll

10:39:00.0112 0x288c dot3svc - ok

10:39:00.0127 0x288c [ 281BEE07BA97E3E98D12A822D923D0D8, 6EB482B2D4D6048D145C3738B2B6FA27A90B5EA53E9167447820F9981B004E63 ] DPS C:\WINDOWS\system32\dps.dll

10:39:00.0143 0x288c DPS - ok

10:39:00.0159 0x288c [ DDC11A202207C0400CBE07315B8FDE5E, 3ED0CA3A714582D92001BA3BFF78BE082F4DC8021298D5A2632F3B2B0A1C09DC ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys

10:39:00.0159 0x288c drmkaud - ok

10:39:00.0190 0x288c [ 5B074F14F5DD6418F46EE4CA2DEB7EA8, B8223D73C3DE123759101F7D5D45C60BD12B221F09D349575A1044CE3F43CBC5 ] DsmSvc C:\WINDOWS\System32\DeviceSetupManager.dll

10:39:00.0206 0x288c DsmSvc - ok

10:39:00.0252 0x288c [ 313DCE665B57000B18CB26C6B6A10DFE, 6C332D4AD13A316C192321AB7E7597E66AF8E1688101FFD851E06C52128DBA52 ] DXGKrnl C:\WINDOWS\System32\drivers\dxgkrnl.sys

10:39:00.0284 0x288c DXGKrnl - ok

10:39:00.0299 0x288c [ 6073537F250B45E1CB2A02E97F0FE1B2, 653F3F2F2019168EDF225944A88AFDBF8393B62AA076BD19980691778F3DB67D ] Eaphost C:\WINDOWS\System32\eapsvc.dll

10:39:00.0315 0x288c Eaphost - ok

10:39:00.0393 0x288c [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv C:\WINDOWS\system32\drivers\evbda.sys

10:39:00.0471 0x288c ebdrv - ok

10:39:00.0487 0x288c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] EFS C:\WINDOWS\System32\lsass.exe

10:39:00.0487 0x288c EFS - ok

10:39:00.0503 0x288c [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass C:\WINDOWS\system32\drivers\EhStorClass.sys

10:39:00.0503 0x288c EhStorClass - ok

10:39:00.0518 0x288c [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys

10:39:00.0518 0x288c EhStorTcgDrv - ok

10:39:00.0534 0x288c [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev C:\WINDOWS\System32\drivers\errdev.sys

10:39:00.0534 0x288c ErrDev - ok

10:39:00.0565 0x288c [ 030CE75B7D8F75FAA7BA1EC6FD0EB5A3, 5264734F0572FAEDCCB008221C9982CCB7922C4FFC358605424EA413CDCDAE99 ] EventSystem C:\WINDOWS\system32\es.dll

10:39:00.0565 0x288c EventSystem - ok

10:39:00.0581 0x288c [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat C:\WINDOWS\system32\drivers\exfat.sys

10:39:00.0581 0x288c exfat - ok

10:39:00.0596 0x288c [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat C:\WINDOWS\system32\drivers\fastfat.sys

10:39:00.0612 0x288c fastfat - ok

10:39:00.0643 0x288c [ 2BC8532ABF2B3756B78FA1DA54147DDE, DF65EE2AB0255A2CF3221085A6BE7C37E3DB6BFEED3BCADCDD69BB1049F6DCB1 ] Fax C:\WINDOWS\system32\fxssvc.exe

10:39:00.0643 0x288c Fax - ok

10:39:00.0659 0x288c [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc C:\WINDOWS\System32\drivers\fdc.sys

10:39:00.0659 0x288c fdc - ok

10:39:00.0674 0x288c [ DC1A78BCCCB7EE53D6FD3BD615A8E222, EE16B6853185AAE779D7135035983938009901658F76A8856AAC12EBA15BB34E ] fdPHost C:\WINDOWS\system32\fdPHost.dll

10:39:00.0674 0x288c fdPHost - ok

10:39:00.0690 0x288c [ E5AD448F2DC84B1CF387FA7F2A3D1936, BBB29C79A085C503F5EFFB5144596D5DEC48A4EB34A049A4E7B38B27F6D92E0A ] FDResPub C:\WINDOWS\system32\fdrespub.dll

10:39:00.0690 0x288c FDResPub - ok

10:39:00.0706 0x288c [ 0046E0BD031213D37123876B0D0FA61C, A4FE17D56F0BAFB70D0D421ED9D1B6E50AF8ADAA4B59328A41AEC5B4C068A3CB ] fhsvc C:\WINDOWS\system32\fhsvc.dll

10:39:00.0706 0x288c fhsvc - ok

10:39:00.0737 0x288c [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo C:\WINDOWS\system32\drivers\fileinfo.sys

10:39:00.0737 0x288c FileInfo - ok

10:39:00.0737 0x288c [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace C:\WINDOWS\system32\drivers\filetrace.sys

10:39:00.0753 0x288c Filetrace - ok

10:39:00.0753 0x288c [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk C:\WINDOWS\System32\drivers\flpydisk.sys

10:39:00.0753 0x288c flpydisk - ok

10:39:00.0784 0x288c [ 6592D192E2823C043EDBC010E7774053, C025A0EC5517DC3BD5D6656DC0F0F19021FB3D2EE90EC6194E1BD74E638EBBDC ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys

10:39:00.0799 0x288c FltMgr - ok

10:39:00.0846 0x288c [ 3FA6DC6B29717E32E211C1FD821F2C75, E467F3775427C93CC2B87327B0A45669631A5FC460C558F6796BA26002A8BBFC ] FontCache C:\WINDOWS\system32\FntCache.dll

10:39:00.0862 0x288c FontCache - ok

10:39:00.0940 0x288c [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

10:39:00.0940 0x288c FontCache3.0.0.0 - ok

10:39:00.0956 0x288c [ 35005534E600E993A90B036E4E599F2B, DA56FA3776FBD3D50276CB7410E0CB6F137DD8FCA84C0F3FEF8B1FEA5F6CA592 ] FsDepends C:\WINDOWS\system32\drivers\FsDepends.sys

10:39:00.0971 0x288c FsDepends - ok

10:39:00.0971 0x288c [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys

10:39:00.0971 0x288c Fs_Rec - ok

10:39:01.0003 0x288c [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol C:\WINDOWS\system32\DRIVERS\fvevol.sys

10:39:01.0034 0x288c fvevol - ok

10:39:01.0049 0x288c [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM C:\WINDOWS\System32\drivers\fxppm.sys

10:39:01.0049 0x288c FxPPM - ok

10:39:01.0065 0x288c [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx C:\WINDOWS\system32\drivers\gagp30kx.sys

10:39:01.0065 0x288c gagp30kx - ok

10:39:01.0081 0x288c [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys

10:39:01.0096 0x288c GEARAspiWDM - ok

10:39:01.0112 0x288c [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter C:\WINDOWS\System32\drivers\vmgencounter.sys

10:39:01.0112 0x288c gencounter - ok

10:39:01.0143 0x288c [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101 C:\WINDOWS\system32\Drivers\msgpioclx.sys

10:39:01.0159 0x288c GPIOClx0101 - ok

10:39:01.0221 0x288c [ 69DB09F0263C637DA8568D404842466A, D042194266978AAD31E04DAF7018CD50754077212DC74A4D8AFF6BFEE80CDD20 ] gpsvc C:\WINDOWS\System32\gpsvc.dll

10:39:01.0237 0x288c gpsvc - ok

10:39:01.0284 0x288c gzflt - ok

10:39:01.0315 0x288c [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus C:\WINDOWS\System32\drivers\HDAudBus.sys

10:39:01.0331 0x288c HDAudBus - ok

10:39:01.0331 0x288c [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt C:\WINDOWS\System32\drivers\HidBatt.sys

10:39:01.0346 0x288c HidBatt - ok

10:39:01.0378 0x288c [ 1EA1B4FABB8CC348E73CA90DBA22E104, 5C18C6BD499272F216DD4626B5E8D38181AEAC9AD917FBEB614A75B70467B258 ] HidBth C:\WINDOWS\System32\drivers\hidbth.sys

10:39:01.0378 0x288c HidBth - ok

10:39:01.0393 0x288c [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c C:\WINDOWS\System32\drivers\hidi2c.sys

10:39:01.0393 0x288c hidi2c - ok

10:39:01.0393 0x288c [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr C:\WINDOWS\System32\drivers\hidir.sys

10:39:01.0393 0x288c HidIr - ok

10:39:01.0409 0x288c [ 449A20A674AA3FAA7F0DD4E33EE2DC20, 28B9BDA306456E8640C355718DE3477537B0FAF8C37F633C709129AAB64D9873 ] hidserv C:\WINDOWS\system32\hidserv.dll

10:39:01.0409 0x288c hidserv - ok

10:39:01.0424 0x288c [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb C:\WINDOWS\System32\drivers\hidusb.sys

10:39:01.0440 0x288c HidUsb - ok

10:39:01.0456 0x288c [ 7BF3ADCBD021D4F4A84CF40EB49C71B5, 5758A51FD2EBE67E6DBE3A298D714D351910F9E01C428D0C1359457C9242B298 ] hkmsvc C:\WINDOWS\system32\kmsvc.dll

10:39:01.0456 0x288c hkmsvc - ok

10:39:01.0487 0x288c [ 6CD9C3819BE8C0A3DACC82AE5D3C4F18, 46BF4A968E506DE17CA401401D716B444CDC10A5C60EB081890DD4B886AEDF5F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll

10:39:01.0487 0x288c HomeGroupListener - ok

10:39:01.0518 0x288c [ 1A4DA1D6287B99033D144B436C23B656, D4D1EEB372E61512EA36A33F095E68C225B8E6C72CC57ED8BD00533F88012F40 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll

10:39:01.0534 0x288c HomeGroupProvider - ok

10:39:01.0534 0x288c [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD C:\WINDOWS\system32\drivers\HpSAMD.sys

10:39:01.0534 0x288c HpSAMD - ok

10:39:01.0581 0x288c [ 9DDCA7F18983C5410DEFF79F819DF93C, CE97B4440377BFC5CA81BB600C3BD1DD9FB3951CA1EB70735F5E2050EBB74223 ] HTTP C:\WINDOWS\system32\drivers\HTTP.sys

10:39:01.0596 0x288c HTTP - ok

10:39:01.0612 0x288c [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy C:\WINDOWS\system32\drivers\hwpolicy.sys

10:39:01.0612 0x288c hwpolicy - ok

10:39:01.0612 0x288c [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd C:\WINDOWS\System32\drivers\hyperkbd.sys

10:39:01.0612 0x288c hyperkbd - ok

10:39:01.0628 0x288c [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo C:\WINDOWS\system32\DRIVERS\HyperVideo.sys

10:39:01.0628 0x288c HyperVideo - ok

10:39:01.0643 0x288c [ 84CFC5EFA97D0C965EDE1D56F116A541, 0155EA62BF07D99D98D1C9B6559C8E3301B016A20D03DF1EF64B2FAB8C37403B ] i8042prt C:\WINDOWS\System32\drivers\i8042prt.sys

10:39:01.0643 0x288c i8042prt - ok

10:39:01.0659 0x288c [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys

10:39:01.0659 0x288c iaLPSSi_GPIO - ok

10:39:01.0674 0x288c [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys

10:39:01.0674 0x288c iaLPSSi_I2C - ok

10:39:01.0706 0x288c [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV C:\WINDOWS\system32\drivers\iaStorAV.sys

10:39:01.0706 0x288c iaStorAV - ok

10:39:01.0737 0x288c [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV C:\WINDOWS\system32\drivers\iaStorV.sys

10:39:01.0737 0x288c iaStorV - ok

10:39:01.0784 0x288c [ 83FF82FE209E7997067B375DAD6CF23D, E312DD068E51DBF96A8232D7D1C9F158652FDA23649655F1102928B320795091 ] ICCS C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe

10:39:01.0799 0x288c ICCS - ok

10:39:01.0831 0x288c [ 97E5D62965DE167388B9C5D08665FE43, 32608102AC1B40420A8498181B3DA18FB833FC89930DF3C66D85A6B41F692EB6 ] IdeaTouch.LocalDataServer.Education C:\Program Files (x86)\Lenovo\EducationPortal\Services\IdeaTouch.LocalDataServer.Education.exe

10:39:01.0831 0x288c IdeaTouch.LocalDataServer.Education - ok

10:39:01.0846 0x288c [ 31EB577BC7744FC784D93B264E93142F, 164F533E4370BCD08FF1BEB7B58F3ACD0766EFD698269EC7168ED818982EA58A ] IdeaTouch.LocalDataServer.Game C:\Program Files (x86)\Lenovo\GamePortal\Services\IdeaTouch.LocalDataServer.Game.exe

10:39:01.0846 0x288c IdeaTouch.LocalDataServer.Game - ok

10:39:01.0846 0x288c IEEtwCollectorService - ok

10:39:01.0971 0x288c [ 7A5A61997B5404C8EDDFCC62378164DC, C2BCA8A2AA2DFCCF3489FC7F0F366ABBDC8606CFC6397CD7B17C8CD4A28DD17F ] igfx C:\WINDOWS\system32\DRIVERS\igdkmd64.sys

10:39:02.0092 0x288c igfx - ok

10:39:02.0155 0x288c [ DEA76F90F9777E3427D70E380222B23B, B917BA423896A12E45623E3D494CA03317A6FC612CA433C62C897524DC3E756B ] IKEEXT C:\WINDOWS\System32\ikeext.dll

10:39:02.0170 0x288c IKEEXT - ok

10:39:02.0186 0x288c [ 4011430BC9DA46ADFAE9915EFEC312FB, 925DDDA187AE7C46C94FBBFA18FC602260957B6BA891D65DFC09385B6DDEAB58 ] intaud_WaveExtensible C:\WINDOWS\system32\drivers\intelaud.sys

10:39:02.0186 0x288c intaud_WaveExtensible - ok

10:39:02.0295 0x288c [ DDC860724AEF8F8E42AC61E6585769C6, 62AD5772E8097B03E161E6F14582E2A4BBA0DFA1A1E7F664D881D464E136DBD2 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKVHD64.sys

10:39:02.0389 0x288c IntcAzAudAddService - ok

10:39:02.0420 0x288c [ F5495B38BFB9149925F54F65AB40EFBF, 7CBB72C41E2343DACBFB967A39CA04788561EDECB289C41BC2D6A06B80882AC4 ] IntcDAud C:\WINDOWS\system32\DRIVERS\IntcDAud.sys

10:39:02.0436 0x288c IntcDAud - ok

10:39:02.0483 0x288c [ C2712BF2D18C0D4214065A170E80C664, 4266F6259D2762D761EA5A478FCCC84E8C9F961FF1169D8A10F4A7BA0D587B4C ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe

10:39:03.0358 0x288c Intel® Capability Licensing Service Interface - ok

10:39:03.0358 0x288c [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide C:\WINDOWS\system32\drivers\intelide.sys

10:39:03.0358 0x288c intelide - ok

10:39:03.0389 0x288c [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep C:\WINDOWS\system32\drivers\intelpep.sys

10:39:03.0389 0x288c intelpep - ok

10:39:03.0420 0x288c [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm C:\WINDOWS\System32\drivers\intelppm.sys

10:39:03.0420 0x288c intelppm - ok

10:39:03.0452 0x288c [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

10:39:03.0452 0x288c IpFilterDriver - ok

10:39:03.0514 0x288c [ ACFEE9487693C2BD573DFCA71D98E17C, A347FD476147CD3568EEE6993B46AFC05A66A4269094CA51572D0FD013FCB535 ] iphlpsvc C:\WINDOWS\System32\iphlpsvc.dll

10:39:03.0530 0x288c iphlpsvc - ok

10:39:03.0561 0x288c [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV C:\WINDOWS\System32\drivers\IPMIDrv.sys

10:39:03.0561 0x288c IPMIDRV - ok

10:39:03.0577 0x288c [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT C:\WINDOWS\system32\drivers\ipnat.sys

10:39:03.0577 0x288c IPNAT - ok

10:39:03.0639 0x288c [ A4857E8B1DEB9740FB5ADEDF05ED69E0, 24FC7A188D32B08CE4F10EEEF17F37C45DB5433158A7A97A07D43F6BEE58DFFC ] iPod Service C:\Program Files\iPod\bin\iPodService.exe

10:39:03.0655 0x288c iPod Service - ok

10:39:03.0655 0x288c [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM C:\WINDOWS\system32\drivers\irenum.sys

10:39:03.0670 0x288c IRENUM - ok

10:39:03.0702 0x288c [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp C:\WINDOWS\system32\drivers\isapnp.sys

10:39:03.0702 0x288c isapnp - ok

10:39:03.0717 0x288c [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt C:\WINDOWS\System32\drivers\msiscsi.sys

10:39:03.0733 0x288c iScsiPrt - ok

10:39:03.0764 0x288c [ EE03564B7FAFE2E44EDA33D52E83B4A3, 53C917EEC92B813EB0C86B225E9887C9CDFDD7708AEA71BFAC0A3039E26D7BEB ] iwdbus C:\WINDOWS\System32\drivers\iwdbus.sys

10:39:03.0764 0x288c iwdbus - ok

10:39:03.0795 0x288c [ 54C6B346D6FF1944A6E7587EB4942589, 618FA57637277AA08D726B911E7BAF85373807D466CBDBEC4212F1065E6105DC ] jhi_service C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

10:39:03.0795 0x288c jhi_service - ok

10:39:03.0811 0x288c [ 8BE92376799B6B44D543E8D07CDCF885, 425B8BB1BAF62F735B3CB5A002E6055879F02E7207E55942BFD37F1784F5F368 ] kbdclass C:\WINDOWS\System32\drivers\kbdclass.sys

10:39:03.0811 0x288c kbdclass - ok

10:39:03.0811 0x288c [ FB6E47E569D4872ABEB506BE03A45FBA, 5C4056CADA8F67587A119D9AE2A0EFAB30387CF6298F4019FF68AC92E2F6F54B ] kbdhid C:\WINDOWS\System32\drivers\kbdhid.sys

10:39:03.0811 0x288c kbdhid - ok

10:39:03.0827 0x288c [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic C:\WINDOWS\system32\DRIVERS\kdnic.sys

10:39:03.0827 0x288c kdnic - ok

10:39:03.0827 0x288c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] KeyIso C:\WINDOWS\system32\lsass.exe

10:39:03.0842 0x288c KeyIso - ok

10:39:03.0856 0x288c [ ADDECBCC777665BD113BED437E602AB0, B6283475A1219CE44E9F683DD3BEB8C42DA0943297E5C4699B22176AD8A6A7ED ] KSecDD C:\WINDOWS\system32\Drivers\ksecdd.sys

10:39:03.0859 0x288c KSecDD - ok

10:39:03.0881 0x288c [ 15C8C65CEA018C02EA0F648448C491C5, DF909704D22D891BE439B2E3D8386EA659444F91DC92AABFF9766446AEE5EBC0 ] KSecPkg C:\WINDOWS\system32\Drivers\ksecpkg.sys

10:39:03.0881 0x288c KSecPkg - ok

10:39:03.0896 0x288c [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys

10:39:03.0896 0x288c ksthunk - ok

10:39:03.0928 0x288c [ 32B1A8351160F307A8C66BCB0F94A9C2, 52F1DEC2BBD4D5DDBB85ED20B99D96BBA7EB83304D76F183A11FDAFDA364E873 ] KtmRm C:\WINDOWS\system32\msdtckrm.dll

10:39:03.0974 0x288c KtmRm - ok

10:39:04.0006 0x288c [ 793EACA6BAE9F481C2059BCB3743EB4A, 2624905C6B6A1227BD1CAC7D4FE55A5F6543E1278DAB31EC553748472D180D1D ] LanmanServer C:\WINDOWS\system32\srvsvc.dll

10:39:04.0006 0x288c LanmanServer - ok

10:39:04.0037 0x288c [ D0D9C2ECA4D03A8F06DCD91236B90C98, E2D1144DC8040EA5FEB0602A20BA4CB920B4BC86AD5AD05FC0DF7D74DC95DC66 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll

10:39:04.0044 0x288c LanmanWorkstation - ok

10:39:04.0089 0x288c [ 6E2E9825B655BC9121D92135EB54340D, 153834A931C67FA9386C6BB06D61DC635D0215F7474FAA066CFF09489C1647F3 ] LECs6022 C:\WINDOWS\System32\drivers\LECs6022.sys

10:39:04.0089 0x288c LECs6022 - ok

10:39:04.0105 0x288c [ 4F3A3D815141050BE62E886A94572500, 23BB9AD5BFCAD4B3CB3BAE05B97E4B1D8B0459D9F15B64FB54150176C047C51C ] LEMo6022 C:\WINDOWS\System32\drivers\LEMo6022.sys

10:39:04.0105 0x288c LEMo6022 - ok

10:39:04.0167 0x288c [ 48670D28B7E4AC25CBD10D047A51FDB9, ACC0E8A2B8EB6A699EF01EBDC972EFFAA5686EC3EEE713076B0D5F1D17125E1A ] Lenovo System Agent Service C:\Program Files\Lenovo\iMController\SystemAgentService.exe

10:39:04.0167 0x288c Lenovo System Agent Service - ok

10:39:04.0183 0x288c [ 95E5855C1CD27550B550F7516EA6006E, D0A3CC2DA5E057F4CC4A4F47AC1162A8ADCE1791EE46224D5BE35DDA59BF572A ] LEub6022 C:\WINDOWS\System32\drivers\LEub6022.sys

10:39:04.0183 0x288c LEub6022 - ok

10:39:04.0214 0x288c [ 626D19F1771E1AE72208AE9A8F3082F7, 78FDB64545ED2EAE9F51C08120E21D2C3285208F6846BD8BBA08CAA839E7A0C4 ] lfsvc C:\WINDOWS\System32\GeofenceMonitorService.dll

10:39:04.0214 0x288c lfsvc - ok

10:39:04.0230 0x288c [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio C:\WINDOWS\system32\DRIVERS\lltdio.sys

10:39:04.0230 0x288c lltdio - ok

10:39:04.0261 0x288c [ 00E070FC0C673311AFD4B068D1242780, 50B0E0E625361145332C849709498FF444E46578DCAD2536E6D0289E0125580F ] lltdsvc C:\WINDOWS\System32\lltdsvc.dll

10:39:04.0261 0x288c lltdsvc - ok

10:39:04.0292 0x288c [ D113FAD71A5E67AA94B32A0F8828D265, 08DDB4BBDB570C59926DBF5E27FCF46DCDF8B8212BB9251E97837E0504516FB3 ] lmhosts C:\WINDOWS\System32\lmhsvc.dll

10:39:04.0292 0x288c lmhosts - ok

10:39:04.0308 0x288c [ 4BE94D758691FAA00181F799CF528088, 81D1E6794EBEFA32643975359B7E89781E428B11F592AC67147D0D8C5E4D0056 ] LMS C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

10:39:04.0308 0x288c LMS - ok

10:39:04.0323 0x288c [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS C:\WINDOWS\system32\drivers\lsi_sas.sys

10:39:04.0323 0x288c LSI_SAS - ok

10:39:04.0339 0x288c [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2 C:\WINDOWS\system32\drivers\lsi_sas2.sys

10:39:04.0339 0x288c LSI_SAS2 - ok

10:39:04.0355 0x288c [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3 C:\WINDOWS\system32\drivers\lsi_sas3.sys

10:39:04.0355 0x288c LSI_SAS3 - ok

10:39:04.0370 0x288c [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS C:\WINDOWS\system32\drivers\lsi_sss.sys

10:39:04.0370 0x288c LSI_SSS - ok

10:39:04.0402 0x288c [ 8EBB271E4588D835784A3FF7E80076A8, A508BE95F6F5063A76F4C8726D9425BB1F00DE803EFE73A0BE145DD9AB82FF0A ] LSM C:\WINDOWS\System32\lsm.dll

10:39:04.0417 0x288c LSM - ok

10:39:04.0448 0x288c [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv C:\WINDOWS\system32\drivers\luafv.sys

10:39:04.0448 0x288c luafv - ok

10:39:04.0464 0x288c [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas C:\WINDOWS\system32\drivers\megasas.sys

10:39:04.0464 0x288c megasas - ok

10:39:04.0495 0x288c [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr C:\WINDOWS\system32\drivers\megasr.sys

10:39:04.0495 0x288c megasr - ok

10:39:04.0527 0x288c [ D71FD7A4FDB01C554AE144037B688DF1, 74D33303DA559A3A2EB809FC0EC3722D24F7F1A37BC7370680CFEB951BE735AF ] MEIx64 C:\WINDOWS\System32\drivers\HECIx64.sys

10:39:04.0527 0x288c MEIx64 - ok

10:39:04.0558 0x288c [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] MMCSS C:\WINDOWS\system32\mmcss.dll

10:39:04.0558 0x288c MMCSS - ok

10:39:04.0589 0x288c [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem C:\WINDOWS\system32\drivers\modem.sys

10:39:04.0589 0x288c Modem - ok

10:39:04.0605 0x288c [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor C:\WINDOWS\System32\drivers\monitor.sys

10:39:04.0605 0x288c monitor - ok

10:39:04.0667 0x288c [ 2FA536882DDAB801A9440EB208725770, 1CD2B16827141DFF18ED43178B204EF3E922EE394BC50A8C3C9EFFB004AF789C ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe

10:39:04.0667 0x288c Motorola Device Manager - ok

10:39:04.0683 0x288c [ CEAC6D40FE887CE8406C2393CF97DE06, 34E76908B802764FF0D7AB3AF89BE77BD35B44787983343FAD89891891C0A045 ] mouclass C:\WINDOWS\System32\drivers\mouclass.sys

10:39:04.0683 0x288c mouclass - ok

10:39:04.0683 0x288c [ 02D98BF804084E9A0D69D1C69B02CCA9, EC5BC5D87043DFFD035FD4DD27B3D94E03119063519E4151BCC3522B613E2D7F ] mouhid C:\WINDOWS\System32\drivers\mouhid.sys

10:39:04.0698 0x288c mouhid - ok

10:39:04.0714 0x288c [ 515549560D481138E6E21AF7C6998E56, C7E4B38D8CCAF15B9BDA63C8C8209F6193AD220DA02E1264F1B687AACD8F409F ] mountmgr C:\WINDOWS\system32\drivers\mountmgr.sys

10:39:04.0714 0x288c mountmgr - ok

10:39:04.0745 0x288c [ 345477F02C308B7480702767218C86A2, 98AFB5CF35BD82BA44B8F52CBC5FA3760506ADD7892C2AA1A77E8DF71FC8523F ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

10:39:04.0745 0x288c MozillaMaintenance - ok

10:39:04.0777 0x288c [ F170510BE94CF45E3C6274578F6204B2, 344C3DDE1D622607CA2ABECB2C47CB0166D2D258BD94A7960C45A5ADBB640566 ] mpsdrv C:\WINDOWS\system32\drivers\mpsdrv.sys

10:39:04.0777 0x288c mpsdrv - ok

10:39:04.0808 0x288c [ D186C5844393252147BE934F3871DB7A, 30160F8268B9F46E82C5CB536867E0CF280DC98074A481595072E3320200E343 ] MpsSvc C:\WINDOWS\system32\mpssvc.dll

10:39:04.0839 0x288c MpsSvc - ok

10:39:04.0870 0x288c [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV C:\WINDOWS\system32\drivers\mrxdav.sys

10:39:04.0870 0x288c MRxDAV - ok

10:39:04.0902 0x288c [ 7A1A3F213CDB3363D179D5014272025D, 6756F5B7D9FBF6839DB1FF4E94EA45B5499D7DF925E75581C96FBBA4BE131542 ] mrxsmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

10:39:04.0902 0x288c mrxsmb - ok

10:39:04.0933 0x288c [ 3E28B99198B514DFEB152EACF913025E, 6C1D8353DCD5F811F39C0C3CB5DF3D2457F0D17EE80FB06196AA169E3D19E9B2 ] mrxsmb10 C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys

10:39:04.0933 0x288c mrxsmb10 - ok

10:39:04.0948 0x288c [ C910E5D18958914A66F0E45689D0B40A, AD7C91DD8A60A511E580DD56BACC97F85075A539E7C5D95040A8F870A621DAF4 ] mrxsmb20 C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys

10:39:04.0964 0x288c mrxsmb20 - ok

10:39:04.0995 0x288c [ E0927EFA25D473367C3341B9F5969779, B77A162BD3334557623674373D8EC2BE7CC0B359DF06304E467ABFFEE0530271 ] MsBridge C:\WINDOWS\system32\DRIVERS\bridge.sys

10:39:04.0995 0x288c MsBridge - ok

10:39:05.0027 0x288c [ A082C17D14D0790E27D064EA4B138AE1, 9A565ED885782D9D5135C8399C11C356DBF9EBF3B8EB4B4504BD2604AD0B45E6 ] MSDTC C:\WINDOWS\System32\msdtc.exe

10:39:05.0027 0x288c MSDTC - ok

10:39:05.0042 0x288c [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys

10:39:05.0042 0x288c Msfs - ok

10:39:05.0073 0x288c [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32 C:\WINDOWS\System32\drivers\msgpiowin32.sys

10:39:05.0073 0x288c msgpiowin32 - ok

10:39:05.0073 0x288c [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf C:\WINDOWS\System32\drivers\mshidkmdf.sys

10:39:05.0089 0x288c mshidkmdf - ok

10:39:05.0089 0x288c [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf C:\WINDOWS\System32\drivers\mshidumdf.sys

10:39:05.0089 0x288c mshidumdf - ok

10:39:05.0105 0x288c [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv C:\WINDOWS\system32\drivers\msisadrv.sys

10:39:05.0105 0x288c msisadrv - ok

10:39:05.0136 0x288c [ 810F8A0A0680662BB0CE44D0E2CEF90C, 5631B07911B7EF378CB1583A480A3C5715E59A5488B33A528F4D7A2F849B9113 ] MSiSCSI C:\WINDOWS\system32\iscsiexe.dll

10:39:05.0136 0x288c MSiSCSI - ok

10:39:05.0152 0x288c msiserver - ok

10:39:05.0167 0x288c [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys

10:39:05.0167 0x288c MSKSSRV - ok

10:39:05.0183 0x288c [ 375E44168F2DFB91A68B8A3F619C5A7C, AC243E02E9A39D0B4DE9571F196941700EE6EB5E94F5B0BA8994FB551E73A7A8 ] MsLldp C:\WINDOWS\system32\DRIVERS\mslldp.sys

10:39:05.0183 0x288c MsLldp - ok

10:39:05.0183 0x288c [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys

10:39:05.0183 0x288c MSPCLOCK - ok

10:39:05.0198 0x288c [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys

10:39:05.0198 0x288c MSPQM - ok

10:39:05.0214 0x288c [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC C:\WINDOWS\system32\drivers\MsRPC.sys

10:39:05.0230 0x288c MsRPC - ok

10:39:05.0245 0x288c [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios C:\WINDOWS\System32\drivers\mssmbios.sys

10:39:05.0245 0x288c mssmbios - ok

10:39:05.0245 0x288c [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys

10:39:05.0261 0x288c MSTEE - ok

10:39:05.0277 0x288c [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig C:\WINDOWS\System32\drivers\MTConfig.sys

10:39:05.0277 0x288c MTConfig - ok

10:39:05.0277 0x288c [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup C:\WINDOWS\system32\Drivers\mup.sys

10:39:05.0292 0x288c Mup - ok

10:39:05.0292 0x288c [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis C:\WINDOWS\system32\drivers\mvumis.sys

10:39:05.0292 0x288c mvumis - ok

10:39:05.0339 0x288c [ 41A45D2A75494EABF2806EA051E00376, EB2497561C8E33A4297C044604C717FF854C7F046882A9E4A400AE7679BF5467 ] napagent C:\WINDOWS\system32\qagentRT.dll

10:39:05.0355 0x288c napagent - ok

10:39:05.0370 0x288c [ 26ACA481FAFEC59FE311D719E3027BBA, 16A24CCA95A38BDFE970580159F6ACAA13FF1B74CF2290B1B020D909F90D3347 ] NativeWifiP C:\WINDOWS\system32\DRIVERS\nwifi.sys

10:39:05.0370 0x288c NativeWifiP - ok

10:39:05.0402 0x288c [ 71E3C0100AA19D11373CCEB2F51A6008, 58FBF35F5FE19BEABE483C11E9996BE93D76721C8C34465350FA98B465CA3672 ] NcaSvc C:\WINDOWS\System32\ncasvc.dll

10:39:05.0417 0x288c NcaSvc - ok

10:39:05.0417 0x288c [ 51DF09CAB2CAC64FEE3E371D9028ED01, 9B81604D0D0359AF8F54FED6DA7116FFD2F40407895028EAD99FF1D7CFDC2D14 ] NcbService C:\WINDOWS\System32\ncbservice.dll

10:39:05.0433 0x288c NcbService - ok

10:39:05.0449 0x288c [ 2586C4C167499210DCBF3ECFD8CCE210, D8129FEDE9918BF4FB0057CC58700D4E08457060E810B9CC25CA0F598506ADB8 ] NcdAutoSetup C:\WINDOWS\System32\NcdAutoSetup.dll

10:39:05.0464 0x288c NcdAutoSetup - ok

10:39:05.0495 0x288c [ E4B4BE2D7750849C07589DA0B0AABA01, BB5AA727BA018A94B5DE2C4E0B594DD2E7A2B3457885446EE568F3A1E18AB3B0 ] NDIS C:\WINDOWS\system32\drivers\ndis.sys

10:39:05.0511 0x288c NDIS - ok

10:39:05.0527 0x288c [ C6BB12BC35D1637CA17AE16D3A4725EB, 01C1D9FA738886A195166F88207EEB6715A1DE0608978ED6C5DC738AF5C02513 ] NdisCap C:\WINDOWS\system32\DRIVERS\ndiscap.sys

10:39:05.0527 0x288c NdisCap - ok

10:39:05.0542 0x288c [ B1AA3B19A2E596A59224F893E01A5A75, E08696CA5E087E51AC3E64D4FB8490EEADD612DDF30C9A94DD1BD1BA124B71B7 ] NdisImPlatform C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys

10:39:05.0542 0x288c NdisImPlatform - ok

10:39:05.0558 0x288c [ 9423421E735BD5394351E0C47C76BB92, 763E5D06F896C0EF8AD52515464F28BA85DB7A1560E451857AC9AA68FAFCBC66 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys

10:39:05.0574 0x288c NdisTapi - ok

10:39:05.0574 0x288c [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys

10:39:05.0589 0x288c Ndisuio - ok

10:39:05.0589 0x288c [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus C:\WINDOWS\System32\drivers\NdisVirtualBus.sys

10:39:05.0589 0x288c NdisVirtualBus - ok

10:39:05.0620 0x288c [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys

10:39:05.0620 0x288c NdisWan - ok

10:39:05.0620 0x288c [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy C:\WINDOWS\system32\DRIVERS\ndiswan.sys

10:39:05.0620 0x288c NdisWanLegacy - ok

10:39:05.0636 0x288c [ A5BD69A8812FA79D1A487691DD3FB244, 67B5EDE101943E0E8B8041DB2353D20C8B9F2D253E77964761CFE8F136C0BBC7 ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys

10:39:05.0636 0x288c NDProxy - ok

10:39:05.0652 0x288c [ 5A072F0B90C29C5233D78BE33EF5ED78, B32ED76A674B1FC743361FB7BBD4C915A78B14132AB056AADD445D5995AD4F32 ] Ndu C:\WINDOWS\system32\drivers\Ndu.sys

10:39:05.0652 0x288c Ndu - ok

10:39:05.0667 0x288c [ A83D67D347A684F10B7D3019C8A6380C, 2B86832967981C8C786BF24C1CF8E13E01745ACE3333CF5C821DD93D623B96E4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys

10:39:05.0667 0x288c NetBIOS - ok

10:39:05.0683 0x288c [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys

10:39:05.0683 0x288c NetBT - ok

10:39:05.0699 0x288c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] Netlogon C:\WINDOWS\system32\lsass.exe

10:39:05.0699 0x288c Netlogon - ok

10:39:05.0730 0x288c [ B7AD851A21FEBA3BA214972627614207, 29605320CCC3DAAD062CAECF0009DACBC2F6D28ED4E8AF7CE76132129F5572A0 ] Netman C:\WINDOWS\System32\netman.dll

10:39:05.0730 0x288c Netman - ok

10:39:05.0745 0x288c [ F0F0A372C2EF6358399C4936F91B6131, CE596C71EB4D1A5E104D3148F2D0D8789882C59FD198DCF33CCAC7A08B50E4EE ] netprofm C:\WINDOWS\System32\netprofmsvc.dll

10:39:05.0761 0x288c netprofm - ok

10:39:05.0792 0x288c [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

10:39:05.0792 0x288c NetTcpPortSharing - ok

10:39:05.0808 0x288c [ 70414DB660BFBB7BD58FCE8EA4364E1B, 6DFB3897CD55E22BA1EDF0AE672F4D7A6A1F512F8A0A26AF106765E6B1CF65AC ] netvsc C:\WINDOWS\system32\DRIVERS\netvsc63.sys

10:39:05.0808 0x288c netvsc - ok

10:39:05.0855 0x288c [ FC91D7804B8FE5C2F0B12585C612F592, 0F43466D0F52D6A5282BD076005AC5F615C8CFCAC0D4B17B152E8AD0F556CB08 ] NitroDriverReadSpool8 C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe

10:39:05.0855 0x288c NitroDriverReadSpool8 - ok

10:39:05.0870 0x288c [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc C:\WINDOWS\System32\nlasvc.dll

10:39:05.0886 0x288c NlaSvc - ok

10:39:05.0933 0x288c [ 21D28C3448983A072B907E9BAC93D223, 27EF785F8A26E461EE9CDA18445E4896EB5BAE73ABE77262639320D45BC6A512 ] nlsX86cc C:\windows\SysWOW64\NLSSRV32.EXE

10:39:05.0933 0x288c nlsX86cc - ok

10:39:05.0933 0x288c [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys

10:39:05.0949 0x288c Npfs - ok

10:39:05.0949 0x288c [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig C:\WINDOWS\System32\drivers\npsvctrig.sys

10:39:05.0949 0x288c npsvctrig - ok

10:39:05.0964 0x288c [ 6E2271ED0C3E95B8E29F3752B91B9E84, 44026AD9757EA82967D7F7578455802FAD7FE0057EAC088E0AE207C15F594B86 ] nsi C:\WINDOWS\system32\nsisvc.dll

10:39:05.0964 0x288c nsi - ok

10:39:05.0995 0x288c [ E490B459978CB87779E84C761D22B827, 1E5CA38626E41618E4CA16DD0C70EB2FA86E986F0CF21A749BDE2A17015DEEC6 ] nsiproxy C:\WINDOWS\system32\drivers\nsiproxy.sys

10:39:05.0995 0x288c nsiproxy - ok

10:39:06.0053 0x288c [ 038C77D577900EE39410662478BB0D50, A33AAFD5750245C17A47EC71F3C6EAD2E0925CAD34C65AB3E6CEE44756C668E6 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys

10:39:06.0084 0x288c Ntfs - ok

10:39:06.0100 0x288c [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null C:\WINDOWS\system32\drivers\Null.sys

10:39:06.0100 0x288c Null - ok

10:39:06.0116 0x288c [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid C:\WINDOWS\system32\drivers\nvraid.sys

10:39:06.0116 0x288c nvraid - ok

10:39:06.0131 0x288c [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor C:\WINDOWS\system32\drivers\nvstor.sys

10:39:06.0131 0x288c nvstor - ok

10:39:06.0147 0x288c [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp C:\WINDOWS\system32\drivers\nv_agp.sys

10:39:06.0147 0x288c nv_agp - ok

10:39:06.0163 0x288c [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] p2pimsvc C:\WINDOWS\system32\pnrpsvc.dll

10:39:06.0178 0x288c p2pimsvc - ok

10:39:06.0194 0x288c [ 2A57A937BC5B1B2D6AFE6A8C5925F50B, 00D84EFED5A7129AAD86945940030474795905C32D65CBD5B1A3EBADCED8F873 ] p2psvc C:\WINDOWS\system32\p2psvc.dll

10:39:06.0209 0x288c p2psvc - ok

10:39:06.0225 0x288c [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport C:\WINDOWS\System32\drivers\parport.sys

10:39:06.0225 0x288c Parport - ok

10:39:06.0241 0x288c [ EF0C1749C9A8CEE9A457473D433CC00F, A5FDAB5AD47471640D697C6CFBA6C67730878ABBA47D394EAA47C9733EDCE1F3 ] partmgr C:\WINDOWS\system32\drivers\partmgr.sys

10:39:06.0241 0x288c partmgr - ok

10:39:06.0272 0x288c [ 9A5309EF92F39346CFD5A4C2C3D1BFAD, 5908E0C9562F9CB24784491BD9AE7983A33A6BDF81AFA0A08045518A0C9BB2B1 ] PcaSvc C:\WINDOWS\System32\pcasvc.dll

10:39:06.0272 0x288c PcaSvc - ok

10:39:06.0303 0x288c [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci C:\WINDOWS\system32\drivers\pci.sys

10:39:06.0319 0x288c pci - ok

10:39:06.0334 0x288c [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide C:\WINDOWS\system32\drivers\pciide.sys

10:39:06.0334 0x288c pciide - ok

10:39:06.0350 0x288c [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia C:\WINDOWS\system32\drivers\pcmcia.sys

10:39:06.0350 0x288c pcmcia - ok

10:39:06.0350 0x288c [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw C:\WINDOWS\system32\drivers\pcw.sys

10:39:06.0350 0x288c pcw - ok

10:39:06.0381 0x288c [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc C:\WINDOWS\system32\drivers\pdc.sys

10:39:06.0381 0x288c pdc - ok

10:39:06.0444 0x288c [ 7CADB4ABAE72390951886CF259791F5F, 9A0F4113F4E09911A44843F31E8C7047EEA39611AB490A4CF16FAE9D95310076 ] PDFProFiltSrvPP C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe

10:39:06.0444 0x288c PDFProFiltSrvPP - ok

10:39:06.0491 0x288c [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH C:\WINDOWS\system32\drivers\peauth.sys

10:39:06.0506 0x288c PEAUTH - ok

10:39:06.0538 0x288c [ C9DCBC3CEE0BB951C1EC5F00F8AFDCEB, C1BB5887B19376D28528DCFB0147E7EBF43360B46B0AECD40A52CACA5BA48588 ] pelmouse C:\WINDOWS\system32\DRIVERS\pelmouse.sys

10:39:06.0538 0x288c pelmouse - ok

10:39:06.0569 0x288c [ 864E58D547BD16E6D9D4AAB8D674E5AC, 626B6A65EE708F39CA5A4C6B47A6E4308E2D5CD95CEABD05FF8B60B41FB8D750 ] PelService C:\Program Files\Lenovo\Lenovo Mouse Suite\PelService.exe

10:39:06.0569 0x288c PelService - ok

10:39:06.0584 0x288c [ 2B89268A4803B4A09304A39CE8E66AF9, E6E6B04CFAB854675C8C90432E7FA0153751DC74A14B0974570B0C07E49B5408 ] pelusblf C:\WINDOWS\system32\DRIVERS\pelusblf.sys

10:39:06.0584 0x288c pelusblf - ok

10:39:06.0584 0x288c [ D2B8A95B6DEC1625A15B03B5F4D373FC, E5FC015279D645CB9FE7DCF9063F78EF98525D3F73DDD65FBD8A072268B8B1E1 ] pelvendr C:\WINDOWS\system32\DRIVERS\pelvendr.sys

10:39:06.0584 0x288c pelvendr - ok

10:39:06.0631 0x288c [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost C:\WINDOWS\SysWow64\perfhost.exe

10:39:06.0631 0x288c PerfHost - ok

10:39:06.0694 0x288c [ 928061178CD9856CA6B67FFFCE6BA766, 71DE3C7CA7F83EAAA550CD8A68FB67DE042B0AE51BFACB1ECB8852D502E11F50 ] pla C:\WINDOWS\system32\pla.dll

10:39:06.0725 0x288c pla - ok

10:39:06.0741 0x288c [ BC6849C62DB407573C6AD8CB1A4D2628, 5BDE0D60F85E4C27CEAD1B301155B54D841FB773BD5BB8AC5DDAEE31F8E94627 ] PlugPlay C:\WINDOWS\system32\umpnpmgr.dll

10:39:06.0741 0x288c PlugPlay - ok

10:39:06.0756 0x288c [ 045EB4F260606A03BE340D09DEAF3BA4, 6F34B8D414F7F69F4388F2F8A86E0F3AD179E423126990AF3E1EC4DCCB8E7693 ] PNRPAutoReg C:\WINDOWS\system32\pnrpauto.dll

10:39:06.0756 0x288c PNRPAutoReg - ok

10:39:06.0772 0x288c [ E287F157F7A0011D93179C64EF8ADCF2, C16FB92C7B18D634BB1344238D35B3111494C243FBD5853F05376F5051480D83 ] PNRPsvc C:\WINDOWS\system32\pnrpsvc.dll

10:39:06.0772 0x288c PNRPsvc - ok

10:39:06.0803 0x288c [ C16097D77A232A288D65F299E2E01105, 5CE4B44B06FD26569C0F92FF1D3991D0128D8444AE7BC9EBEF5A33811D721BE8 ] PolicyAgent C:\WINDOWS\System32\ipsecsvc.dll

10:39:06.0803 0x288c PolicyAgent - ok

10:39:06.0834 0x288c [ 00E08B30E7F7C13ECE2CDF4F46A77311, 1807C0A64C1794E572C86730816C01DCF4D8F773ADE9CAEA3AC0658F7BD71A4E ] Power C:\WINDOWS\system32\umpo.dll

10:39:06.0834 0x288c Power - ok

10:39:06.0866 0x288c [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys

10:39:06.0866 0x288c PptpMiniport - ok

10:39:06.0991 0x288c [ 3C96A45CA3403A276B0F045C448EC27B, C0011DB8C5A85817CAF815CC0095EE2C1CDD5964DCD8EAF4C35A2495D6A873CC ] PrintNotify C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll

10:39:07.0225 0x288c PrintNotify - ok

10:39:07.0241 0x288c [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor C:\WINDOWS\System32\drivers\processr.sys

10:39:07.0241 0x288c Processor - ok

10:39:07.0256 0x288c [ 19424364D8C03B990C4281BE53963FD0, 958FC8436E6B754858E20BC48B0D4B269991E8CA94C15C2761BF04ED52591907 ] ProfSvc C:\WINDOWS\system32\profsvc.dll

10:39:07.0272 0x288c ProfSvc - ok

10:39:07.0303 0x288c [ 8528BB05E4D4E25945F78B00B2555FB7, FF8E0D4580F93CD348080967F52FE6C2C68B56DAEACAE2EAEF04E19412A953AE ] Psched C:\WINDOWS\system32\DRIVERS\pacer.sys

10:39:07.0303 0x288c Psched - ok

10:39:07.0350 0x288c [ EA735BF6DF13A857A83C99BF27A422AD, 026A57155FB9E01CFAFD8613980CDF0F3D744ABBBC66EFDC6C20B89980FB45CF ] PST Service C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe

10:39:08.0960 0x288c PST Service - ok

10:39:08.0991 0x288c [ AF90BB44C99D6820BE52C9BBAA523283, 9772D9CC1666959EC8EE4ED740A5179473CE4F38762109F1123DD68010D20EA1 ] QWAVE C:\WINDOWS\system32\qwave.dll

10:39:09.0007 0x288c QWAVE - ok

10:39:09.0007 0x288c [ 3FB466684609A4329858CF2EBD62E0FD, CFC8FBAB1436948F9D34CE6A2D6DE2F86F3E93E50B86851CED979C8CCE609798 ] QWAVEdrv C:\WINDOWS\system32\drivers\qwavedrv.sys

10:39:09.0022 0x288c QWAVEdrv - ok

10:39:09.0022 0x288c [ 2C56F0EE27E4EF70CA4B4983D3638905, AFFDD686886CE982424B644D9168D61C6F86A5244FF97BC644DF75B321E415E5 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys

10:39:09.0022 0x288c RasAcd - ok

10:39:09.0054 0x288c [ 674A4702E4E144E8710ED1A2EC6DD049, 613A921101A6815C9185D5EF3E251A592604E56FADE945BB7E256885CAD473BC ] RasAgileVpn C:\WINDOWS\system32\DRIVERS\AgileVpn.sys

10:39:09.0054 0x288c RasAgileVpn - ok

10:39:09.0085 0x288c [ 5F061AC45266841A2860C1858ED863B8, 9E0D52BAC8A50225C32D0397C35350601B996443E2481C808CC59D3B0763FEF0 ] RasAuto C:\WINDOWS\System32\rasauto.dll

10:39:09.0085 0x288c RasAuto - ok

10:39:09.0100 0x288c [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

10:39:09.0100 0x288c Rasl2tp - ok

10:39:09.0132 0x288c [ 5C7B86EE33505E36026AFAAB62DA6364, 903BB1A355AC746BF09C2A7C87B068168648DB79DEF39AB1DC710B6A7A5F6556 ] RasMan C:\WINDOWS\System32\rasmans.dll

10:39:09.0147 0x288c RasMan - ok

10:39:09.0163 0x288c [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys

10:39:09.0163 0x288c RasPppoe - ok

10:39:09.0179 0x288c [ 2B0F1677CDD08967005F34488559BC6F, FFF168EBD171C0B85A448AD1A04F66534E889AE1DC128F68EA3F35D5996C8D39 ] RasSstp C:\WINDOWS\system32\DRIVERS\rassstp.sys

10:39:09.0179 0x288c RasSstp - ok

10:39:09.0210 0x288c [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys

10:39:09.0210 0x288c rdbss - ok

10:39:09.0225 0x288c [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus C:\WINDOWS\System32\drivers\rdpbus.sys

10:39:09.0225 0x288c rdpbus - ok

10:39:09.0257 0x288c [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR C:\WINDOWS\system32\drivers\rdpdr.sys

10:39:09.0257 0x288c RDPDR - ok

10:39:09.0272 0x288c [ 9F08A6608F98B5407E7DDBCF306573EF, 92812F97CFDB2EC128BC48143DE215B7D012B15D3FB4D2199222AD8C31DA5016 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys

10:39:09.0272 0x288c RdpVideoMiniport - ok

10:39:09.0304 0x288c [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost C:\WINDOWS\system32\drivers\rdyboost.sys

10:39:09.0304 0x288c rdyboost - ok

10:39:09.0335 0x288c [ E515A287C8FAE901EB8FB42F168E14F2, 9AE8D608587713FD18BB728BADD402C86FFF06A67359B22ED9431705522BC310 ] ReFS C:\WINDOWS\system32\drivers\ReFS.sys

10:39:09.0351 0x288c ReFS - ok

10:39:09.0397 0x288c [ BFFB40FBE6D2C3469F8D06EE5E4934AB, 5B6763F973A740DCD53CEA75156926457BED8B075965033C484877DDA8B97F39 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll

10:39:09.0397 0x288c RemoteAccess - ok

10:39:09.0413 0x288c [ 4DCCABE03D06955ED61BABBD8EF9F30F, 531CD60315AAF283B73E0F6CF77D4DE093B809E73C44D2AC43B7247500B3485E ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll

10:39:09.0413 0x288c RemoteRegistry - ok

10:39:09.0460 0x288c [ 1321C7551F5075D6412FC92D10AE8846, 6609F002319FF81AE82F192814A520B965C9E56667E440C07118A16177A62C17 ] Reset USB Service C:\Windows\ResetUSBService\ResetUSBService.exe

10:39:09.0507 0x288c Reset USB Service - ok

10:39:09.0585 0x288c [ 0527EF6E23B9FAB37DDCBC479C6CFA28, C004CE600074AC434F8B24A3383F8C0ACFA5476D9E3B1493B40911C78B028D64 ] RFCOMM C:\WINDOWS\System32\drivers\rfcomm.sys

10:39:09.0585 0x288c RFCOMM - ok

10:39:09.0601 0x288c [ D894CBD7DA753C881EE8D5E33B583225, DA4472A85F10A3DF8CE969F731E67FE7C75EE6095908AB8AC2C44851DC5A3F8B ] RpcEptMapper C:\WINDOWS\System32\RpcEpMap.dll

10:39:09.0601 0x288c RpcEptMapper - ok

10:39:09.0616 0x288c [ 5CAE8F47B31D5CFC322B5B898C19E0FE, FDB5F0B6EA36403E031D9147AB0519011FAAD3AC8190DE5B1F17FB5472D79D47 ] RpcLocator C:\WINDOWS\system32\locator.exe

10:39:09.0616 0x288c RpcLocator - ok

10:39:09.0647 0x288c [ 81979817943D830BF24571B7C1B28A1A, 9584D8F1FB3E6CF17BD465670B208C723A8E8B06775A3DA44F75D7710404EEA6 ] RpcSs C:\WINDOWS\system32\rpcss.dll

10:39:09.0663 0x288c RpcSs - ok

10:39:09.0694 0x288c [ A1D5FFEFDBEB3881EC3D74CC7136847F, B3D278267EF17CC6F2FAF92D3FE67734FB9689EDDFA2A78F620300409DA5D0BB ] RSP2STOR C:\WINDOWS\system32\DRIVERS\RtsP2Stor.sys

10:39:09.0694 0x288c RSP2STOR - ok

10:39:09.0710 0x288c [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr C:\WINDOWS\system32\DRIVERS\rspndr.sys

10:39:09.0726 0x288c rspndr - ok

10:39:09.0757 0x288c [ 19764658C1468C2C0CEF133D28414A6B, 87AD4056F6C67052433A366B200B75613148B69B9B9D502AD926A7F7F037B8DE ] RTL8168 C:\WINDOWS\system32\DRIVERS\Rt630x64.sys

10:39:09.0772 0x288c RTL8168 - ok

10:39:09.0788 0x288c [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap C:\WINDOWS\System32\drivers\vms3cap.sys

10:39:09.0804 0x288c s3cap - ok

10:39:09.0819 0x288c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] SamSs C:\WINDOWS\system32\lsass.exe

10:39:09.0835 0x288c SamSs - ok

10:39:09.0866 0x288c [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port C:\WINDOWS\system32\drivers\sbp2port.sys

10:39:09.0866 0x288c sbp2port - ok

10:39:09.0882 0x288c [ 47C497FA4DDEA908633CAA60CEBE6805, 4DF5742D4C99D3F7B6A5671AEDB1E5E47D3399D36B28BA19C105FA604D8D5A1C ] SCardSvr C:\WINDOWS\System32\SCardSvr.dll

10:39:09.0897 0x288c SCardSvr - ok

10:39:09.0897 0x288c [ E76C4E98302AE39CC6FA5D20FC8B5438, B6B6B59CF427515087689285797F4A5763103440EBE5D87A61FA74F80F895BD0 ] ScDeviceEnum C:\WINDOWS\System32\ScDeviceEnum.dll

10:39:09.0897 0x288c ScDeviceEnum - ok

10:39:09.0913 0x288c [ ABD0237B15DBD2B4695F4B7D734A58F7, D6831921F0CD3E03CBF1CA3ED5824EE0C75127842D12D4E897E74EC72B0792EB ] scfilter C:\WINDOWS\system32\DRIVERS\scfilter.sys

10:39:09.0913 0x288c scfilter - ok

10:39:09.0960 0x288c [ D3AE5DB16EAF913860EC28654CE00E6B, AD76B6044F7247C6E86F6DCB7CFD6B25BCA2B9F09A97A419F043A999E66726A2 ] Schedule C:\WINDOWS\system32\schedsvc.dll

10:39:09.0976 0x288c Schedule - ok

10:39:10.0007 0x288c [ AB285CE3431FF3D2ACE669245874C1C7, 6AF4C3E86EFA51F7FB6F8492CB2CCB807C7775EAE0508B87F07134FDAC679BD7 ] SCPolicySvc C:\WINDOWS\System32\certprop.dll

10:39:10.0022 0x288c SCPolicySvc - ok

10:39:10.0038 0x288c [ 7B7C482CF48E6EE33664340D1A78E6FE, CE5077C4B0372F4F9F02B0B37AE58C0DAEFCA9D242065731A23F072506430575 ] sdbus C:\WINDOWS\System32\drivers\sdbus.sys

10:39:10.0054 0x288c sdbus - ok

10:39:10.0069 0x288c [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor C:\WINDOWS\System32\drivers\sdstor.sys

10:39:10.0069 0x288c sdstor - ok

10:39:10.0101 0x288c [ 07EEDE29DF77E80EC93AE709CCD80B41, B5DF5F3108815094F0259004E093F56551A70AF6CBE02C3CBDC894589E3ADD38 ] SearchProtectionService C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe

10:39:10.0101 0x288c SearchProtectionService - ok

10:39:10.0116 0x288c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\WINDOWS\system32\drivers\secdrv.sys

10:39:10.0116 0x288c secdrv - ok

10:39:10.0132 0x288c [ C49009F897BA4F2F4F31043663AA1485, 48C8BE1E3A4F150662AD012AF4E0357ABA792AD1147AB90EFF6CB2630E2501B6 ] seclogon C:\WINDOWS\system32\seclogon.dll

10:39:10.0132 0x288c seclogon - ok

10:39:10.0132 0x288c [ A88882E64BDC1D8E8D6E727B71CCCC53, 12D2235F54D0CEEED8AA268C17CDE44020269F4FEFC70CE957DBBF99AF7F553D ] SENS C:\WINDOWS\System32\sens.dll

10:39:10.0147 0x288c SENS - ok

10:39:10.0147 0x288c [ E66A7C8CE7ED22DED6DF1CA479FB4790, ADEB076F131E7A8C3AD96022B09BB33EB9AB26C9C831503B8C6960AA763B8975 ] SensrSvc C:\WINDOWS\system32\sensrsvc.dll

10:39:10.0163 0x288c SensrSvc - ok

10:39:10.0179 0x288c [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx C:\WINDOWS\system32\drivers\SerCx.sys

10:39:10.0179 0x288c SerCx - ok

10:39:10.0210 0x288c [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2 C:\WINDOWS\system32\drivers\SerCx2.sys

10:39:10.0210 0x288c SerCx2 - ok

10:39:10.0210 0x288c [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum C:\WINDOWS\System32\drivers\serenum.sys

10:39:10.0226 0x288c Serenum - ok

10:39:10.0226 0x288c [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial C:\WINDOWS\System32\drivers\serial.sys

10:39:10.0241 0x288c Serial - ok

10:39:10.0241 0x288c [ 0BD2B65DCE756FDE95A2E5CCCBF7705D, F13FAFEC8FCF3E796196562717C433CE359A74A3E5876AB070647C717AF74028 ] sermouse C:\WINDOWS\System32\drivers\sermouse.sys

10:39:10.0241 0x288c sermouse - ok

10:39:10.0272 0x288c [ D5C3776CBD8BC307DCCA3FD4CE667A37, 98E4253B770C25914C91A6148E2EA15ED0EF37ADCB042A47252DBA135972BF74 ] SessionEnv C:\WINDOWS\system32\sessenv.dll

10:39:10.0288 0x288c SessionEnv - ok

10:39:10.0304 0x288c [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy C:\WINDOWS\System32\drivers\sfloppy.sys

10:39:10.0304 0x288c sfloppy - ok

10:39:10.0335 0x288c [ F4414F57DF2CECB8FC969AA43A6B0D50, AD09A6E1294721507DD6BE82B91F2EEB0FF0151B9BC14A75840CD657DBFDECEC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll

10:39:10.0429 0x288c SharedAccess - ok

10:39:10.0476 0x288c [ 0D190D8B4B20446BE6299AC734DFADF1, 6551095971F99820BBFC5FED8FAB9591A3F8ABFA0F027887F3B71B79325FF6D9 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll

10:39:10.0491 0x288c ShellHWDetection - ok

10:39:10.0507 0x288c [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2 C:\WINDOWS\system32\drivers\SiSRaid2.sys

10:39:10.0507 0x288c SiSRaid2 - ok

10:39:10.0507 0x288c [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4 C:\WINDOWS\system32\drivers\sisraid4.sys

10:39:10.0507 0x288c SiSRaid4 - ok

10:39:10.0538 0x288c [ 587ACA15210D1B01FBF272E07A08F91A, 1F3C13C218C5EA329C6E33E4AE7CFE88DAD59DA40F59FDE09D733AFD2E489000 ] smphost C:\WINDOWS\System32\smphost.dll

10:39:10.0538 0x288c smphost - ok

10:39:10.0569 0x288c [ 49EEB92DE930B8566EF615D600781DB4, 0B7C929D24FAFC34F95BB4AA77DCBA29DDD8F1977EB42713B64228677D1FBFD3 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe

10:39:10.0569 0x288c SNMPTRAP - ok

10:39:10.0601 0x288c [ 240C5C3793206725AA05665851E8C214, 96ADFB85EB1623EB00C251C1C6A1F441A1795F0EBFD10B17DD1CA58E3AE8A90D ] spaceport C:\WINDOWS\system32\drivers\spaceport.sys

10:39:10.0616 0x288c spaceport - ok

10:39:10.0616 0x288c [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx C:\WINDOWS\system32\drivers\SpbCx.sys

10:39:10.0632 0x288c SpbCx - ok

10:39:10.0663 0x288c [ 42FEA9E0BA9761D9E65A4F167D91515B, 9A34CE83F3ACD50608671BDABE5E475F8E0C8335D3B8B7B3D7E84B2A319FA29F ] Spooler C:\WINDOWS\System32\spoolsv.exe

10:39:10.0679 0x288c Spooler - ok

10:39:10.0835 0x288c [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc C:\WINDOWS\system32\sppsvc.exe

10:39:11.0023 0x288c sppsvc - ok

10:39:11.0054 0x288c [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv C:\WINDOWS\system32\DRIVERS\srv.sys

10:39:11.0069 0x288c srv - ok

10:39:11.0085 0x288c [ 5BED3AB69797C8786EF70AEA8C33748B, 0474EE6C43D437CBA9848BCF25D1341B122D7E9F371A0FF3C62C83D14B2CB095 ] srv2 C:\WINDOWS\system32\DRIVERS\srv2.sys

10:39:11.0101 0x288c srv2 - ok

10:39:11.0132 0x288c [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet C:\WINDOWS\system32\DRIVERS\srvnet.sys

10:39:11.0148 0x288c srvnet - ok

10:39:11.0163 0x288c [ BB9ED3EDD8E85008215A7250D325A72E, D3404E31B7706B25CDEA7CB4260C343B5F090E8CCB9A5FA203B0F94A9112F1B3 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll

10:39:11.0163 0x288c SSDPSRV - ok

10:39:11.0179 0x288c [ 3911418AFDE10EA6823B7799E4815524, A73517C4C1271E666B2B3A747756070098E923742B41572AA16573170440AA07 ] SstpSvc C:\WINDOWS\system32\sstpsvc.dll

10:39:11.0179 0x288c SstpSvc - ok

10:39:11.0179 0x288c [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor C:\WINDOWS\system32\drivers\stexstor.sys

10:39:11.0194 0x288c stexstor - ok

10:39:11.0210 0x288c [ 2A997C64F9B2584D81FA6749FE36A887, D26F5BC591ED46B96B2ACFDF555C2BF42F4915A22B12E4139ACEF7DE7AC303A7 ] StillCam C:\WINDOWS\system32\DRIVERS\serscan.sys

10:39:11.0210 0x288c StillCam - ok

10:39:11.0241 0x288c [ D638904FE86A5FE542A1BA13A9D68E5C, 89A956F932316BC50DD99B54BAF4E2809DCAA084DBB04CB84D11E5470BEAF251 ] stisvc C:\WINDOWS\System32\wiaservc.dll

10:39:11.0257 0x288c stisvc - ok

10:39:11.0273 0x288c [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci C:\WINDOWS\system32\drivers\storahci.sys

10:39:11.0273 0x288c storahci - ok

10:39:11.0288 0x288c [ 7A08CEE1535F5A448215634C5EA74E50, 41529CDC08A3956F8FE9D5759B147E2E56E3305149EA415EB200249F7CD32094 ] storflt C:\WINDOWS\system32\DRIVERS\vmstorfl.sys

10:39:11.0288 0x288c storflt - ok

10:39:11.0319 0x288c [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme C:\WINDOWS\system32\drivers\stornvme.sys

10:39:11.0335 0x288c stornvme - ok

10:39:11.0351 0x288c [ 3118058E3D07021A55324A943C6D722B, 0B255DF1977DADD2B9766EEEA814B464F0ABFA34D6439F3C453083850C121F16 ] StorSvc C:\WINDOWS\system32\storsvc.dll

10:39:11.0351 0x288c StorSvc - ok

10:39:11.0366 0x288c [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc C:\WINDOWS\system32\drivers\storvsc.sys

10:39:11.0366 0x288c storvsc - ok

10:39:11.0382 0x288c [ D8E1AE075AB3E8AD56F69C44AA978596, CAFF5116DE7F0EEFFEBE38724BCEE7D11B44153AD35EE43E314C56D5E210758A ] svsvc C:\WINDOWS\system32\svsvc.dll

10:39:11.0382 0x288c svsvc - ok

10:39:11.0398 0x288c [ 84E0F5D41C138C5CC975137A2A98F6D3, 1E36CED05E4F4365C2AB020CAF920E3959995D7F89F3FABD7B2FB05985F85F38 ] swenum C:\WINDOWS\System32\drivers\swenum.sys

10:39:11.0398 0x288c swenum - ok

10:39:11.0444 0x288c [ 850EBB87584484DC16F917E7B6F4A304, C253D1DFFCDFB018432063602FB01DBCBDDD6E03458E5C366AABD4670F114B0C ] swprv C:\WINDOWS\System32\swprv.dll

10:39:11.0460 0x288c swprv - ok

10:39:11.0507 0x288c [ 3DA26652B12E9AB43FD04976AC6DFD33, DEFE220D86197949E97342FE3487CD6A07DD2FFAF6D17A7C65419C2C1B9D1AB5 ] SysMain C:\WINDOWS\system32\sysmain.dll

10:39:11.0538 0x288c SysMain - ok

10:39:11.0554 0x288c [ FD4EA8E9232ADD51DC31C295DDEF2768, 3EA40D7376AB5AA5DA2BCF4745C79F7BF819363466967ECC3CD15ADECBFD7244 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll

10:39:11.0569 0x288c SystemEventsBroker - ok

10:39:11.0601 0x288c [ BA6DD39266A5E15515C8C14DA2DA3E5C, 5BC917BA4E7281A67CC6CEF2F4D1972DF04DECBEFB6DED0B08FFBD06E15D4B4F ] TabletInputService C:\WINDOWS\System32\TabSvc.dll

10:39:11.0601 0x288c TabletInputService - ok

10:39:11.0616 0x288c [ B517410F157693043DACA21B19B258A6, 2224EECEB575CEA811036C43BB5B0A408DE5F59BC97235AB948968E4C3E438F2 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll

10:39:11.0632 0x288c TapiSrv - ok

10:39:11.0694 0x288c [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] Tcpip C:\WINDOWS\system32\drivers\tcpip.sys

10:39:11.0757 0x288c Tcpip - ok

10:39:11.0819 0x288c [ CCB3A2BB60FE5073F2DEA63FE83CF8FE, 02982136236DD595D8974E6645A008D663B4DD3BC3824721E4DE4377B97887C7 ] TCPIP6 C:\WINDOWS\system32\DRIVERS\tcpip.sys

10:39:11.0866 0x288c TCPIP6 - ok

10:39:11.0882 0x288c [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg C:\WINDOWS\system32\drivers\tcpipreg.sys

10:39:11.0882 0x288c tcpipreg - ok

10:39:11.0898 0x288c [ FFF28F9F6823EB1756C60F1649560BBF, 208DFF8BF0329D0D4761C7E31527AEED7FF5F3C36C5005953D01477F35408D5C ] tdx C:\WINDOWS\system32\DRIVERS\tdx.sys

10:39:11.0913 0x288c tdx - ok

10:39:11.0929 0x288c [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt C:\WINDOWS\System32\drivers\terminpt.sys

10:39:11.0929 0x288c terminpt - ok

10:39:11.0976 0x288c [ 3D748E5558FD9A9F03182CB2330698DC, 70B2069AB7912EB49AB3ABD18D4B42CB94AC99CA6DE3F63F4888B8EAAC78AAA2 ] TermService C:\WINDOWS\System32\termsrv.dll

10:39:11.0991 0x288c TermService - ok

10:39:12.0007 0x288c [ 05FBE1F7C13E87AF7A414CDF288B1F62, 24079E1A6B2E33A1A8E76A77F73473B93DD6B379E44C982CE50D6CEED9747838 ] Themes C:\WINDOWS\system32\themeservice.dll

10:39:12.0007 0x288c Themes - ok

10:39:12.0023 0x288c [ FD788C2D96EA91469A3C1D13E80D7473, 7B14D4BFDE18CECC19FBFFAA5AFF5FD78BFB7FCDA6613990740A8A7DD9873D26 ] THREADORDER C:\WINDOWS\system32\mmcss.dll

10:39:12.0038 0x288c THREADORDER - ok

10:39:12.0050 0x288c [ 347A3E49CE18402305B8119A6EC7CFEB, 6768B20EE577880B0353FE84B980D4A18D323929A63FAE41F7A55123BBFC8DBA ] TimeBroker C:\WINDOWS\System32\TimeBrokerServer.dll

10:39:12.0050 0x288c TimeBroker - ok

10:39:12.0065 0x288c [ 82F909359600D3603FE852DB7F135626, 2EB2BB9D81AC9A2E432B2628E296B7B21F1C82EAE8009300EEF1B8596A9F418D ] TPM C:\WINDOWS\system32\drivers\tpm.sys

10:39:12.0081 0x288c TPM - ok

10:39:12.0081 0x288c [ C97E14BB6A196B0554D6EB67D8818175, C00588C94988F10507F84584DFA4C0A43B8648AD1AD35E9BAE14CDD21FCF7B90 ] TrkWks C:\WINDOWS\System32\trkwks.dll

10:39:12.0097 0x288c TrkWks - ok

10:39:12.0128 0x288c [ 887CC44830D3F367CAD17A0CA7CCA5C8, D4022A76433A11FD66D0F41A1EB4D6893BC5B22317E7E9E021739109EB493B44 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe

10:39:12.0128 0x288c TrustedInstaller - ok

10:39:12.0143 0x288c [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt C:\WINDOWS\system32\drivers\tsusbflt.sys

10:39:12.0143 0x288c TsUsbFlt - ok

10:39:12.0143 0x288c [ E0088068DCE2EE82897027DDB8E05254, FA9C201D3C885DAD2ABE6A23343EDCC83CFB342EFF9E3005FA50B1D88B21D203 ] TsUsbGD C:\WINDOWS\System32\drivers\TsUsbGD.sys

10:39:12.0143 0x288c TsUsbGD - ok

10:39:12.0159 0x288c [ C8E0E78B5D284C2FF59BDFFDAF997242, BA1576C491A1246EF9866762426D110F4570F9DB42A68C174943C7D5020FE3E2 ] tunnel C:\WINDOWS\system32\DRIVERS\tunnel.sys

10:39:12.0159 0x288c tunnel - ok

10:39:12.0175 0x288c [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35 C:\WINDOWS\system32\drivers\uagp35.sys

10:39:12.0175 0x288c uagp35 - ok

10:39:12.0190 0x288c [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor C:\WINDOWS\System32\drivers\uaspstor.sys

10:39:12.0190 0x288c UASPStor - ok

10:39:12.0206 0x288c [ B034A41891A36457B994307DFA772293, CA5E6500764A9777AE0E15B2AFB6F05982C90F01374E3F6DDC6DF3852282C66B ] UCX01000 C:\WINDOWS\System32\drivers\ucx01000.sys

10:39:12.0206 0x288c UCX01000 - ok

10:39:12.0222 0x288c [ 1EC649F112896FAE33250F0B97AC5D0B, 0C0A1C2C7615DEB298AD3073340FD1BF91FEBE611F133E3B48D994A6EAA8369F ] udfs C:\WINDOWS\system32\DRIVERS\udfs.sys

10:39:12.0237 0x288c udfs - ok

10:39:12.0253 0x288c [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI C:\WINDOWS\System32\drivers\UEFI.sys

10:39:12.0253 0x288c UEFI - ok

10:39:12.0284 0x288c [ 320878AFECDBBD61BBE98624A6CAAC08, 15C090EA32A24D976B5FCB1373B1281DCC2295C075299C814345D694AEB47CB9 ] UI0Detect C:\WINDOWS\system32\UI0Detect.exe

10:39:12.0284 0x288c UI0Detect - ok

10:39:12.0300 0x288c [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx C:\WINDOWS\system32\drivers\uliagpkx.sys

10:39:12.0300 0x288c uliagpkx - ok

10:39:12.0300 0x288c [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus C:\WINDOWS\System32\drivers\umbus.sys

10:39:12.0300 0x288c umbus - ok

10:39:12.0315 0x288c [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass C:\WINDOWS\System32\drivers\umpass.sys

10:39:12.0315 0x288c UmPass - ok

10:39:12.0347 0x288c [ E3DDF7D43E05784FAA5E042605EEE528, 8E20E880FAB09AF4FF5C438BF9EAE9970D46C05167870110869B744E498FD761 ] UmRdpService C:\WINDOWS\System32\umrdp.dll

10:39:12.0362 0x288c UmRdpService - ok

10:39:12.0409 0x288c [ C3F2CA25E371DA2EB0AE13DDF9484FDE, 0F66F597C2EE1CE780ED9AD679D33AD52046C98C6F69672EEDD3EDEB45822B0E ] UNS C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

10:39:12.0425 0x288c UNS - ok

10:39:12.0440 0x288c [ 4A2FFDAC45F317E17DF642C7160EB633, F1AB762912FAA5F469F322407DA37C91556086C42D1643AD27516C12A84F74D0 ] upnphost C:\WINDOWS\System32\upnphost.dll

10:39:12.0456 0x288c upnphost - ok

10:39:12.0487 0x288c [ 5C3BE22E485B9BF11FCEFDC676C728D0, F55061066ECF6920D56518A677BB538C18B7F1BB150ED6DB3591408F44E8D53A ] USBAAPL64 C:\WINDOWS\System32\Drivers\usbaapl64.sys

10:39:12.0487 0x288c USBAAPL64 - ok

10:39:12.0503 0x288c [ DF355EB0199198728027962DCFCDE5FB, 9E158BD07389B4CFF99674716647FA3AABEECBD1A98EDF20E544E099A99A8768 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys

10:39:12.0518 0x288c usbaudio - ok

10:39:12.0550 0x288c [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp C:\WINDOWS\System32\drivers\usbccgp.sys

10:39:12.0550 0x288c usbccgp - ok

10:39:12.0597 0x288c [ B3D6457D841A0CAEF4C52D88621715F2, CBDD76A8A28379B107B1FB530757B477B8AB74CD01F9F3CEDC7B1BA0C6E5A990 ] usbcir C:\WINDOWS\System32\drivers\usbcir.sys

10:39:12.0597 0x288c usbcir - ok

10:39:12.0612 0x288c [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci C:\WINDOWS\System32\drivers\usbehci.sys

10:39:12.0612 0x288c usbehci - ok

10:39:12.0659 0x288c [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub C:\WINDOWS\System32\drivers\usbhub.sys

10:39:12.0659 0x288c usbhub - ok

10:39:12.0690 0x288c [ 65392F3F3F65E4C6CC82A0F4F8A0B051, C11B662A28D95820717DFFC6B76DBB755E4876009A2342E5E3992DE32D6BFF61 ] USBHUB3 C:\WINDOWS\System32\drivers\UsbHub3.sys

10:39:12.0706 0x288c USBHUB3 - ok

10:39:12.0722 0x288c [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci C:\WINDOWS\System32\drivers\usbohci.sys

10:39:12.0722 0x288c usbohci - ok

10:39:12.0722 0x288c [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint C:\WINDOWS\System32\drivers\usbprint.sys

10:39:12.0737 0x288c usbprint - ok

10:39:12.0753 0x288c [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR C:\WINDOWS\System32\drivers\USBSTOR.SYS

10:39:12.0753 0x288c USBSTOR - ok

10:39:12.0768 0x288c [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci C:\WINDOWS\System32\drivers\usbuhci.sys

10:39:12.0768 0x288c usbuhci - ok

10:39:12.0800 0x288c [ 48430B0313FC1CFE3D2400553F1A93CD, 92994DE6B131E904AFF2C9C4FBB4E6B0D58525A1539763327373DA18C9F08193 ] USBXHCI C:\WINDOWS\System32\drivers\USBXHCI.SYS

10:39:12.0800 0x288c USBXHCI - ok

10:39:12.0815 0x288c [ F6F209DDB94959BA104FC8FC87C53759, 8E862D41F4332EABF64BD034E2C0E3CC8109C7990CB4112C2B2880E8E6EDF2D3 ] VaultSvc C:\WINDOWS\system32\lsass.exe

10:39:12.0815 0x288c VaultSvc - ok

10:39:12.0831 0x288c [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot C:\WINDOWS\system32\drivers\vdrvroot.sys

10:39:12.0831 0x288c vdrvroot - ok

10:39:12.0878 0x288c [ E3EF58D4123B5AA29C8E19825AF84A5E, FB1046722BC643E955DBC3B1459DBF2A6D575EBA2BCF7B20A0FA51E3993835E2 ] vds C:\WINDOWS\System32\vds.exe

10:39:12.0893 0x288c vds - ok

10:39:12.0925 0x288c [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt C:\WINDOWS\system32\drivers\VerifierExt.sys

10:39:12.0925 0x288c VerifierExt - ok

10:39:12.0956 0x288c [ 52E483A3701A5A61A75A06993720347D, 689E812755E485DF6960D1E049740FBAFB812467D23B673DCAA40C03FEBB544F ] vhdmp C:\WINDOWS\System32\drivers\vhdmp.sys

10:39:12.0972 0x288c vhdmp - ok

10:39:12.0987 0x288c [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide C:\WINDOWS\system32\drivers\viaide.sys

10:39:12.0987 0x288c viaide - ok

10:39:12.0987 0x288c [ C6305BDFC4F7CE51F72BB072C03D4ACE, 73E62869CA3104F48CC3B0C45E69CE9BF4F8D7D06E29C2F049B9347ABB50554D ] vmbus C:\WINDOWS\system32\drivers\vmbus.sys

10:39:13.0003 0x288c vmbus - ok

10:39:13.0003 0x288c [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID C:\WINDOWS\System32\drivers\VMBusHID.sys

10:39:13.0003 0x288c VMBusHID - ok

10:39:13.0034 0x288c [ 13DE7AE037CC6F42F8E68D8125C75D30, 56F020EDF5312C6F073758D6B21E37B93C17B883CBC89BBBE5CD956AED5C8D10 ] VMC412 C:\WINDOWS\System32\Drivers\VMC412.sys

10:39:13.0034 0x288c VMC412 - ok

10:39:13.0081 0x288c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll

10:39:13.0081 0x288c vmicguestinterface - ok

10:39:13.0097 0x288c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicheartbeat C:\WINDOWS\System32\ICSvc.dll

10:39:13.0112 0x288c vmicheartbeat - ok

10:39:13.0128 0x288c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll

10:39:13.0128 0x288c vmickvpexchange - ok

10:39:13.0143 0x288c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicrdv C:\WINDOWS\System32\ICSvc.dll

10:39:13.0159 0x288c vmicrdv - ok

10:39:13.0159 0x288c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicshutdown C:\WINDOWS\System32\ICSvc.dll

10:39:13.0175 0x288c vmicshutdown - ok

10:39:13.0190 0x288c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmictimesync C:\WINDOWS\System32\ICSvc.dll

10:39:13.0190 0x288c vmictimesync - ok

10:39:13.0206 0x288c [ 9067880BBB1C18703DBFF27D731D7ECA, 0044246249F4B945D72BBC0FEF9BF3C31E62F57CBF77615A95213B36A29F0C71 ] vmicvss C:\WINDOWS\System32\ICSvc.dll

10:39:13.0206 0x288c vmicvss - ok

10:39:13.0237 0x288c [ EDAB214F988CCC06A1E3DC2F2455A80D, D9B4E1E0E00980A5A89F06CB9A468C9DB42E485E20E8A2929F217E501BB41C2D ] vmuacflt C:\WINDOWS\System32\Drivers\vmuacflt.sys

10:39:13.0237 0x288c vmuacflt - ok

10:39:13.0237 0x288c [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr C:\WINDOWS\system32\drivers\volmgr.sys

10:39:13.0237 0x288c volmgr - ok

10:39:13.0268 0x288c [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx C:\WINDOWS\system32\drivers\volmgrx.sys

10:39:13.0284 0x288c volmgrx - ok

10:39:13.0300 0x288c [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap C:\WINDOWS\system32\drivers\volsnap.sys

10:39:13.0300 0x288c volsnap - ok

10:39:13.0315 0x288c [ 01355C98B5C3ED1EC446743CDA848FCE, B9FCF558C20E05DD0F53FFB70BBEF873EA57801E13A16701E636128D625C4B67 ] vpci C:\WINDOWS\System32\drivers\vpci.sys

10:39:13.0315 0x288c vpci - ok

10:39:13.0331 0x288c [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid C:\WINDOWS\system32\drivers\vsmraid.sys

10:39:13.0347 0x288c vsmraid - ok

10:39:13.0393 0x288c [ E369C59F2C0852DDD090C07E0DDE0051, 4FAC94458EAAEED4F84A86FBAB8FBB332D0AF85BD528E63C0C058A2DA8E3011D ] VSS C:\WINDOWS\system32\vssvc.exe

10:39:13.0425 0x288c VSS - ok

10:39:13.0440 0x288c [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID C:\WINDOWS\system32\drivers\vstxraid.sys

10:39:13.0440 0x288c VSTXRAID - ok

10:39:13.0472 0x288c [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus C:\WINDOWS\System32\drivers\vwifibus.sys

10:39:13.0472 0x288c vwifibus - ok

10:39:13.0503 0x288c [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt C:\WINDOWS\system32\DRIVERS\vwififlt.sys

10:39:13.0503 0x288c vwififlt - ok

10:39:13.0518 0x288c [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp C:\WINDOWS\system32\DRIVERS\vwifimp.sys

10:39:13.0518 0x288c vwifimp - ok

10:39:13.0550 0x288c [ 7599E582CA3A6AAA95A18FFE1172D339, A0410778FBBC4302EA91CF24B944427410B4706535F1192504D4F34C3ED4503E ] W32Time C:\WINDOWS\system32\w32time.dll

10:39:13.0550 0x288c W32Time - ok

10:39:13.0565 0x288c [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen C:\WINDOWS\System32\drivers\wacompen.sys

10:39:13.0565 0x288c WacomPen - ok

10:39:13.0581 0x288c [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys

10:39:13.0597 0x288c Wanarp - ok

10:39:13.0597 0x288c [ AFCD4054D61BD708B82991348ED1C763, EBDAC0E218F1DFC405DB3C8A2F014D20A17B0690EA381C750BED5C2AFCDFEBE3 ] Wanarpv6 C:\WINDOWS\system32\DRIVERS\wanarp.sys

10:39:13.0597 0x288c Wanarpv6 - ok

10:39:13.0643 0x288c [ 61692DB39AD3DF2F29392D68EAA7BB93, 854D4B9C7DD1676968598ED973500650ECEC02C420E44C0B3957C24F073AA5FB ] wbengine C:\WINDOWS\system32\wbengine.exe

10:39:13.0675 0x288c wbengine - ok

10:39:13.0706 0x288c [ 3BC1D1D56637A32CD91C8AE08E2484AA, 9EE1BD3FB0D289E25F3DDD0D8F67DC1C701A6B1D5418FADF348D0E642B1DEBEB ] WbioSrvc C:\WINDOWS\System32\wbiosrvc.dll

10:39:13.0706 0x288c WbioSrvc - ok

10:39:13.0737 0x288c [ A07CFC4B593D15B6BF06813C3B5B33BF, B57BD918E2AFF9943B51A24B95E0C4D3482B4DF73C0E2421E8CC67C2BC7A4C70 ] Wcmsvc C:\WINDOWS\System32\wcmsvc.dll

10:39:13.0737 0x288c Wcmsvc - ok

10:39:13.0784 0x288c [ D2726823DF7E19F213F4805A9D6D145F, A7F582C99918D204264D3B374F70D75984BDA5805203041E3DECB8153D16E102 ] wcncsvc C:\WINDOWS\System32\wcncsvc.dll

10:39:13.0784 0x288c wcncsvc - ok

10:39:13.0800 0x288c [ 846C02A8B48CBD921A3D6AB521AA0DC4, B07573A774A6C65D24E5718DC25DF378270EB5B40221CA5A53B21D47838381D3 ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll

10:39:13.0815 0x288c WcsPlugInService - ok

10:39:13.0831 0x288c [ 0359607177E5E9F6041136CC0A5CB0B6, 16687BE2639648CF46E8768BA1798030472C525612C629BF134D053240E2195B ] WdBoot C:\WINDOWS\system32\drivers\WdBoot.sys

10:39:13.0831 0x288c WdBoot - ok

10:39:13.0863 0x288c [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000 C:\WINDOWS\system32\drivers\Wdf01000.sys

10:39:13.0878 0x288c Wdf01000 - ok

10:39:13.0894 0x288c [ DE8D12B4C3F55FA2C5E9774314F6C58A, C3E835DC066A94E1431BCDC90D7EA27AAC6F82826F4A5527B37D865241D7A366 ] WdFilter C:\WINDOWS\system32\drivers\WdFilter.sys

10:39:13.0894 0x288c WdFilter - ok

10:39:13.0910 0x288c [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiServiceHost C:\WINDOWS\system32\wdi.dll

10:39:13.0910 0x288c WdiServiceHost - ok

10:39:13.0925 0x288c [ 40C67D1A4891120874767F6E6604D6C5, 4D9DD658566DE711ADF4D6C33FCB31DA351EE050E3ED188664D04526CCAAEEF5 ] WdiSystemHost C:\WINDOWS\system32\wdi.dll

10:39:13.0925 0x288c WdiSystemHost - ok

10:39:13.0941 0x288c [ 4AD874CDC812EC156265E451B6B09DAB, 6E3E05B8301841425E9BB0D54B35EF386B78EEB307B5A6153FD1F366D30F23FA ] WdNisDrv C:\WINDOWS\system32\Drivers\WdNisDrv.sys

10:39:13.0941 0x288c WdNisDrv - ok

10:39:13.0956 0x288c WdNisSvc - ok

10:39:13.0988 0x288c [ 91B18D7A1702ED589E67C6C81052B955, 5D1DA8B86106A28E50BBCCB36527CC130D41201F5BE1D3DC5F1D6F7ECCF807BA ] WebClient C:\WINDOWS\System32\webclnt.dll

10:39:13.0988 0x288c WebClient - ok

10:39:14.0003 0x288c [ 3274312F263882B51B964329FAF49734, 99A020377ACF0762BE5ECD2D68EB5E1497B9D59963247E725F7F96FB5DF41FAD ] Wecsvc C:\WINDOWS\system32\wecsvc.dll

10:39:14.0019 0x288c Wecsvc - ok

10:39:14.0019 0x288c [ 7CDD84E0023A0C5C230B06A7965EC65E, 6EC7DC18C76D66CF9A893C3DD20F9BE3ADD76546F9A9BA42CE4F24854709F9D9 ] WEPHOSTSVC C:\WINDOWS\system32\wephostsvc.dll

10:39:14.0019 0x288c WEPHOSTSVC - ok

10:39:14.0048 0x288c [ 959534ACF085C137D2D094384EF89C45, D029F440789FE170A1C46217C6DE6D78DC0188A5CF33FCCC17FA65D3BC80C2B7 ] wercplsupport C:\WINDOWS\System32\wercplsupport.dll

10:39:14.0048 0x288c wercplsupport - ok

10:39:14.0064 0x288c [ 82BCCF5FBE47AC9E8CBA2020994DFB3F, EA96C6BD98A701B465D0780EC10BDA92E45FE636D60C1385813AA3B456D8B931 ] WerSvc C:\WINDOWS\System32\WerSvc.dll

10:39:14.0064 0x288c WerSvc - ok

10:39:14.0095 0x288c [ BFBE1C5F57FE7A885673A1962D5532B7, F0BD05B257108699FE6AB32EF11F927C31932F27062A705B3FEFA4F5B4C0D8C3 ] WFPLWFS C:\WINDOWS\system32\DRIVERS\wfplwfs.sys

10:39:14.0095 0x288c WFPLWFS - ok

10:39:14.0110 0x288c [ E06AFE2F94BA7CFA2FE4FD2A449E60E2, 99A81E16366E9E77905D873B0246E4C11B383FE1E99E0E1D9A07FAD4E52EA9E4 ] WiaRpc C:\WINDOWS\System32\wiarpc.dll

10:39:14.0110 0x288c WiaRpc - ok

10:39:14.0126 0x288c [ 867BCC69ED9C31C501465EB0E8BA9DFA, 678B7FF4D4E8624514301956CDA7FB451159BBFC83FF2E4E5E7DADAE3C7AB2EC ] WIMMount C:\WINDOWS\system32\drivers\wimmount.sys

10:39:14.0126 0x288c WIMMount - ok

10:39:14.0126 0x288c WinDefend - ok

10:39:14.0189 0x288c [ DD079EC8F44DCA3A176B345C6ADEFB66, 6CD9371B83EA23D2181891FAE1DB285BC111A78C35F374E57666ED09860C91A9 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll

10:39:14.0204 0x288c WinHttpAutoProxySvc - ok

10:39:14.0220 0x288c [ 66C365B542195C1F6E2FF4A7D8F3827C, FB43A64453283D1B236AFF73F010B8F6106B971047313B9B4EBE925C4DD325A2 ] WinI2C-DDC C:\WINDOWS\system32\drivers\DDCDrv.sys

10:39:14.0220 0x288c WinI2C-DDC - ok

10:39:14.0267 0x288c [ 9DB490F3E823C5C3C070644B96CB9D59, 81937D0B331E43C7C61514E60B3AD51370C5201F7B4D12F8534840D91EDC32DD ] Winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll

10:39:14.0267 0x288c Winmgmt - ok

10:39:14.0345 0x288c [ 9CE162EB9057CF079736F4DD00FC0D6C, 412C34557866D2A3B3CDAFA5A03B87C01AACF75E349802E511098B20137028D9 ] WinRM C:\WINDOWS\system32\WsmSvc.dll

10:39:14.0407 0x288c WinRM - ok

10:39:14.0454 0x288c [ AC263C2F66405589528995AA41040599, 81B46E551D6130A2C3D113EC3B563CEDB5A06BB340986C0E03136CE5BE729481 ] WinUsb C:\WINDOWS\system32\DRIVERS\WinUsb.sys

10:39:14.0454 0x288c WinUsb - ok

10:39:14.0486 0x288c [ 3F5EF31C6AA204B099EE76497DF80A26, CBE648A4E7E1D98A3D8C72582C1CB3C2FD2329EAA24EE4DCAD271AAA6F4D82CE ] WlanSvc C:\WINDOWS\System32\wlansvc.dll

10:39:14.0517 0x288c WlanSvc - ok

10:39:14.0564 0x288c [ 5F56C0DE776C7AE43AF749845BFAA1EF, 837993C5853B7E682C7FB8401B7F5D951FFD15E5659EBB1B01DC3F5719ACEE19 ] wlidsvc C:\WINDOWS\system32\wlidsvc.dll

10:39:14.0767 0x288c wlidsvc - ok

10:39:14.0798 0x288c [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi C:\WINDOWS\System32\drivers\wmiacpi.sys

10:39:14.0798 0x288c WmiAcpi - ok

10:39:14.0829 0x288c [ 7AFAC828F52D62F304A911EC32F42EEE, 4EDCF4149069413A166169F2E23F7505F47B39B7EC319E1EF6D2C46CD140AA24 ] wmiApSrv C:\WINDOWS\system32\wbem\WmiApSrv.exe

10:39:14.0829 0x288c wmiApSrv - ok

10:39:14.0845 0x288c WMPNetworkSvc - ok

10:39:14.0876 0x288c [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof C:\WINDOWS\system32\drivers\Wof.sys

10:39:14.0876 0x288c Wof - ok

10:39:14.0923 0x288c [ 61BF52E9FFAB27A0B6D621BE26088373, 81291D52C381360E69D51E7DEB05CFAC651A7E9EF781CA23062C0583D0C94708 ] workfolderssvc C:\WINDOWS\system32\workfolderssvc.dll

10:39:14.0970 0x288c workfolderssvc - ok

10:39:14.0986 0x288c [ 182561A14F2E93E81E66FE3700D17A5A, FB9A06058A8BCCEDCDC5BF8899D9B2FBA5752C262C5FC6D2B8338884F3303D12 ] wpcfltr C:\WINDOWS\system32\DRIVERS\wpcfltr.sys

10:39:14.0986 0x288c wpcfltr - ok

10:39:15.0001 0x288c [ 4E6A0F60DA7EF050D3D26417CD4D24E9, E6B3BFB007B641D41F8532ED086F92CB3D86E210023DBFAA9AD8152A9FD33CCA ] WPCSvc C:\WINDOWS\System32\wpcsvc.dll

10:39:15.0017 0x288c WPCSvc - ok

10:39:15.0032 0x288c [ 618A19EB31ECA7B7F2AA0207BAF598A5, CB18CF9B781EAB3D775F8201F294A7135E058D6C963D2CC759DCA14D95EED538 ] WPDBusEnum C:\WINDOWS\system32\wpdbusenum.dll

10:39:15.0032 0x288c WPDBusEnum - ok

10:39:15.0048 0x288c [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr C:\WINDOWS\system32\drivers\WpdUpFltr.sys

10:39:15.0064 0x288c WpdUpFltr - ok

10:39:15.0064 0x288c [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl C:\WINDOWS\system32\drivers\ws2ifsl.sys

10:39:15.0064 0x288c ws2ifsl - ok

10:39:15.0079 0x288c [ 9654DE19551093CD73874281E1573C94, 5E3513EC0CB180D90904BE8970AB64A4434279E8C467AE2CF693254E47B1D11E ] wscsvc C:\WINDOWS\System32\wscsvc.dll

10:39:15.0095 0x288c wscsvc - ok

10:39:15.0095 0x288c [ F586F3F1BF962FE9AE4316E0D896B22F, 8D0AD48D79294567123D943D0F5B6D5A32D7A82B129A24DC821D3095AFAA100B ] WSDPrintDevice C:\WINDOWS\System32\drivers\WSDPrint.sys

10:39:15.0095 0x288c WSDPrintDevice - ok

10:39:15.0126 0x288c [ D38297814FB6E33655342D869996E617, 3701892EEF87D1BF0E73322B90678802B6EA4AFA9CBF6111F39611C79DBA96C7 ] WSDScan C:\WINDOWS\System32\drivers\WSDScan.sys

10:39:15.0126 0x288c WSDScan - ok

10:39:15.0126 0x288c WSearch - ok

10:39:15.0236 0x288c [ 95B6670E6933E1DEE19686C55BE709A0, 4B9EB8F1712B7959A71F6DA445D29BD09B25EEFC6B30D736EFE30163D79B233E ] WSService C:\WINDOWS\System32\WSService.dll

10:39:15.0314 0x288c WSService - ok

10:39:15.0345 0x288c [ 72B4E9DF6456C43C42A1419B09486045, 536BA7377B5BEA7EA46864453933111DB88DB8FB689C68915ACD7261A996E61D ] wsvd C:\WINDOWS\system32\DRIVERS\wsvd.sys

10:39:15.0345 0x288c wsvd - ok

10:39:15.0439 0x288c [ DCD090318EC800CF6275C6835900B0C6, 9E72762EEE46CC0606B909850E6D22E9C8E5C88E82F7C974B2B7C1E5160BEBA7 ] wuauserv C:\WINDOWS\system32\wuaueng.dll

10:39:15.0517 0x288c wuauserv - ok

10:39:15.0532 0x288c [ D537815E450A149752C15868392AD1F3, 8788CE493349299DB36E409C8CC3C6EA08301FA492C95D9D556E00BC13A05F13 ] WudfPf C:\WINDOWS\system32\drivers\WudfPf.sys

10:39:15.0532 0x288c WudfPf - ok

10:39:15.0611 0x288c [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFRd C:\WINDOWS\System32\drivers\WUDFRd.sys

10:39:15.0626 0x288c WUDFRd - ok

10:39:15.0626 0x288c [ 9CDC2059A23E3C9B57696178508777E7, B680A2E2EDA5C8C6A547E7D9B2F2F8E6407C3EA0A01B82A4B88D48A27913A597 ] wudfsvc C:\WINDOWS\System32\WUDFSvc.dll

10:39:15.0642 0x288c wudfsvc - ok

10:39:15.0642 0x288c [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdFs C:\WINDOWS\system32\DRIVERS\WUDFRd.sys

10:39:15.0642 0x288c WUDFWpdFs - ok

10:39:15.0657 0x288c [ 7CCBBCEE408A5DBE3FE47297DB5A6CFC, FB44B65B37B1C1A12C618E16BEF195EF861A87179B9216E43024C671C3AE052C ] WUDFWpdMtp C:\WINDOWS\system32\DRIVERS\WUDFRd.sys

10:39:15.0657 0x288c WUDFWpdMtp - ok

10:39:15.0689 0x288c [ 2FA9794CA36147756F3FDFD6CA29B46F, 4B86DC38C2411C281686E9A4E64DA6FB2992E39391371F78E012D6D8BB85123F ] WwanSvc C:\WINDOWS\System32\wwansvc.dll

10:39:15.0689 0x288c WwanSvc - ok

10:39:15.0736 0x288c [ C6B289A70A2D36242A2CCAA2715E1747, B7B4762C16B0B9D25F4A20123CA16DA76A897460D2A20D8D1F347D618F49C8B3 ] X5XSEx_Pr148 C:\Program Files (x86)\FreeRide Games\X5XSEx_Pr148.Sys

10:39:15.0736 0x288c X5XSEx_Pr148 - ok

10:39:15.0767 0x288c ================ Scan global ===============================

10:39:15.0814 0x288c [ C89780A6F58D113C28A96D85D1261DC5, 185114F33A60916C7904E4A0F278CA43258454343E614F01F0DAFA98BAC981B1 ] C:\WINDOWS\system32\basesrv.dll

10:39:15.0829 0x288c [ 00DD4D2ACC2E72155A8AAA82018BEC0D, 9D7CA68B4A81240477FCC85A3CC11EF986093F9D6228A6C5AC608EDAD664068C ] C:\WINDOWS\system32\winsrv.dll

10:39:15.0861 0x288c [ 9C1833ABD62876856836C5AE55C7CE86, 0A21E2C8B2FF3B0438C86DA7151A548F9C6F5C62CD402CBBEDB435994C8508F1 ] C:\WINDOWS\system32\sxssrv.dll

10:39:15.0876 0x288c [ 067CB90C277DB4A737D5DEABA3055972, C681BF013170F2D92A3FC4D783FC3F200CDC0C8173373B7ECC27FCF32A03CCBD ] C:\WINDOWS\system32\services.exe

10:39:15.0892 0x288c [ Global ] - ok

10:39:15.0892 0x288c ================ Scan MBR ==================================

10:39:15.0908 0x288c [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0

10:39:15.0908 0x288c \Device\Harddisk0\DR0 - ok

10:39:15.0908 0x288c ================ Scan VBR ==================================

10:39:15.0923 0x288c [ 5BE7FAE72CF96CE0F4B165BB9897B74A ] \Device\Harddisk0\DR0\Partition1

10:39:15.0986 0x288c \Device\Harddisk0\DR0\Partition1 - ok

10:39:16.0001 0x288c [ A5A3480E6F9F35BE3B6927B8107AC5BB ] \Device\Harddisk0\DR0\Partition2

10:39:16.0048 0x288c \Device\Harddisk0\DR0\Partition2 - ok

10:39:16.0061 0x288c [ 057C627C6B852894F7A7C67DC65CA83D ] \Device\Harddisk0\DR0\Partition3

10:39:16.0124 0x288c \Device\Harddisk0\DR0\Partition3 - ok

10:39:16.0124 0x288c [ 27C5A271350E865D1EA501D111ED31B8 ] \Device\Harddisk0\DR0\Partition4

10:39:16.0124 0x288c \Device\Harddisk0\DR0\Partition4 - ok

10:39:16.0139 0x288c [ 0F963116815AE21415269629FEF5D642 ] \Device\Harddisk0\DR0\Partition5

10:39:16.0202 0x288c \Device\Harddisk0\DR0\Partition5 - ok

10:39:16.0233 0x288c [ 8B1150FB2274CAA80743D9420B1979B6 ] \Device\Harddisk0\DR0\Partition6

10:39:16.0249 0x288c \Device\Harddisk0\DR0\Partition6 - ok

10:39:16.0249 0x288c [ EB02FB03F58338829EE1F8E4851ECA7C ] \Device\Harddisk0\DR0\Partition7

10:39:16.0264 0x288c \Device\Harddisk0\DR0\Partition7 - ok

10:39:16.0264 0x288c ================ Scan generic autorun ======================

10:39:16.0608 0x288c [ B0666DF6D554879AE8A7C91E26A5972F, 81112CFA81E26C388D36F0472A4983728AFE4C4C04910849AF22C191E206CF39 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

10:39:16.0874 0x288c RtHDVCpl - ok

10:39:16.0921 0x288c [ 5E53A66C680A06E26B1234CB0C3CD99B, D782E724FF487459704BFA2BC5BA5E6E7E85BC9D71ECF68BE78F9C74449EB207 ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

10:39:16.0936 0x288c RtHDVBg_Dolby - ok

10:39:16.0968 0x288c [ 51F358BE1583FB3246020E36DEEB3E0F, 23E096D57FF2D45168FF5AFF48C10A2E0A144708CD046B1C4F3897205CC8A147 ] C:\WINDOWS\system32\igfxtray.exe

10:39:16.0983 0x288c IgfxTray - ok

10:39:16.0999 0x288c [ 1218C5653632440C18ECEA89D1CA4575, AF0E7AA60890C52A257D3501FFE652E95F095407A7C6F6F4F00162A9F7DE7C2D ] C:\WINDOWS\system32\hkcmd.exe

10:39:17.0014 0x288c HotKeysCmds - ok

10:39:17.0046 0x288c [ CC8EB098AEDF4BC97D3004A182099EED, 6ADFB7CB5047C47D86C769F21191B12D2F3FD3BC96665B4CCFD8C8DA44C64ED9 ] C:\WINDOWS\system32\igfxpers.exe

10:39:17.0061 0x288c Persistence - ok

10:39:17.0093 0x288c [ 09FDDB0A36FF0EBF99FD8AFBDB93C577, 7E8F89E0F1A958FD0B1AEAC3D1F339F18B2F4BEC9DB5AE0D29F2B2EC8DD8DE77 ] C:\Program Files\Lenovo\Lenovo Ultraslim Plus Wireless Keyboard & Mouse\Pelico.exe

10:39:17.0093 0x288c Lenovo Input Device Main Program - ok

10:39:17.0108 0x288c [ E1CD4687D0739F566EA4035722D29D6E, 14CC483164512832D64E4902700C2C4072E078A40C4662B2DCBD3F21AB2ED749 ] C:\Program Files\Lenovo\Lenovo Mouse Suite\ICO.EXE

10:39:17.0108 0x288c Daemon for Mouse Suite - ok

10:39:17.0139 0x288c [ D0B542256A968DFCB8896C140FCE6047, 3F92A9871B521BCCCDFE6D9BFF88930B26C5DB86F6F6578554A3F2ECC5C5EBA0 ] C:\Program Files\iTunes\iTunesHelper.exe

10:39:17.0139 0x288c iTunesHelper - ok

10:39:17.0186 0x288c [ 5C80FBEE03ED1CBF108AFC029D73D857, 472508F140286868051D0AF557D11EB8FF2ACC6352C278970BB4D94F02428B6B ] C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe

10:39:17.0202 0x288c Dolby Advanced Audio v2 - ok

10:39:17.0233 0x288c [ 637509EA9CE862DFCE59E80B9FB1957D, F26078D4B02FFBC2D07EF319C8ED3FC35BB8E054724BF391068C8CC406182F90 ] C:\Program Files (x86)\Lenovo\Lenovo Silver Silk Wireless Keyboard\skd8861.exe

10:39:17.0233 0x288c Lenovo Silver Silk Wireless Keyboard - ok

10:39:17.0233 0x288c mcui_exe - ok

10:39:17.0249 0x288c [ 2A499DA867865F84E6287D12CB21012F, 8C0F6647488EC092FC6C80394600619F39D699102BAE5E3D2E4576BEEB9EB32C ] C:\Program Files\Lenovo\Lenovo Eye Distance System\Lenovo Eye Distance System.exe

10:39:17.0264 0x288c Lenovo Eye Distance System - ok

10:39:17.0280 0x288c [ A1741C3B79F9DF8895E05EF43579E74B, 446094FDBA93518ABE1CDEC50E24AB60BC7CA78022A289AF5C21461778FD8001 ] C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe

10:39:17.0280 0x288c YouCam Mirage - ok

10:39:17.0296 0x288c [ 79EDDBCBFFC23585BC1495AFC03CC4D7, 325A6C067A52BAD7070C1C758EA69645FD8083AC6D0ABA8340BDBE1A712E005F ] C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe

10:39:17.0296 0x288c YouCam Tray - ok

10:39:17.0296 0x288c [ 0B427D9943C838620AFA30CBB24A6D77, 5A98B1405126F79846C810E739E964B11A4397F3DE597991308DB3C6AABB8F81 ] C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc.exe

10:39:17.0311 0x288c CLMLServer - ok

10:39:17.0343 0x288c [ 8F83160C43C61FC6775391B46B7C16BF, 648588126B2CD0B9F50F478BF4F7474137D1285061A3B22B56C1CB5B4FD3C3BF ] C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe

10:39:17.0343 0x288c UpdateP2GoShortCut - ok

10:39:17.0358 0x288c [ B7995C675014EEBE77A0BEB7AFCCFC08, 41D186C63273301CF0A1C1EE7B6EB0BB75A251DD441532C5CEB7A4095FB103CD ] C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe

10:39:17.0358 0x288c RemoteControl10 - ok

10:39:17.0421 0x288c [ E169F38D5F024DBAD45E0EC36988B5C0, 572C1CC857656583F9F3C9CE5A6F477D2A152841B752D3F77253EF98B06D393E ] C:\Program Files\Lenovo\Lenovo Brightness System\RunLDBS.exe

10:39:17.0452 0x288c Lenovo Dynamic Brightness System - ok

10:39:17.0499 0x288c [ 43E946AAD268FEAFB1E286677E70CB5D, 7798926B3CF11D1CF7DFF9B3D67AD3DC67010A62F3132CAEA273EB299A61B176 ] C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe

10:39:17.0514 0x288c Intel AppUp(SM) center - ok

10:39:17.0530 0x288c [ 50299DBA20F8A1735830914777B55932, 7A8864A9FA81BF6C53797B7B8FCC2199B812A7E913D35387A0C5C63C170BAC02 ] C:\Program Files\Lenovo\LVT\LJYZ.exe

10:39:17.0546 0x288c LVT - ok

10:39:17.0577 0x288c [ 25550E7DB114579EB50BC98A8DFD8B9F, 11F81387B6EE44FBE4DCF251A0D4AFF3E84C550BACCA39B71B41B452D512628B ] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe

10:39:17.0593 0x288c ControlCenter4 - ok

10:39:17.0749 0x288c [ A12927788DE1555B598DFD16B4FA3F8B, 57B36F188FC212D73CFBE6431FC5095BAB3C189D04D34CA428801F6823636DFA ] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe

10:39:17.0843 0x288c BrStsMon00 - ok

10:39:17.0905 0x288c [ 0C0DD390CF53D506414AC2CAA68E7F34, C64A9BAF0FDA5161B9361FC454CA36E7595E6BC969A6FA03993C5949373D8A00 ] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe

10:39:17.0952 0x288c BrHelp - ok

10:39:17.0983 0x288c [ 32AC3889C598A7314954CF515E716BDE, DE843C6B523C60776401F799C01948DDC383442B2CEAC2002A867DC860949AFE ] C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe

10:39:17.0983 0x288c IndexSearch - ok

10:39:17.0983 0x288c [ 7D46CE32283158EB7F1D0C8E02D8DDD1, DF68039E55E90EFAB90E5FC8DE79E66CEDECB99EB353C4F349375732AAEF1BE1 ] C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe

10:39:17.0983 0x288c PaperPort PTD - ok

10:39:18.0030 0x288c [ 9F0ACAA725CF5A391AF7E2067AE45746, CA7F3C2C9D4DCB135ECBFFEB3448D272552B5DB720E0A526B4AC07B1F5E8BC9E ] C:\Program Files (x86)\Nuance\PDF Viewer Plus\pdfpro5hook.exe

10:39:18.0048 0x288c PDFHook - ok

10:39:18.0074 0x288c [ 154420A93E4F676AA33A055A116255D9, DF76577C22EBB439DF2B72D1B6B7A465F067CCEC886FC7A7FB337865DA1DB914 ] C:\Program Files (x86)\Nuance\PDF Viewer Plus\RegistryController.exe

10:39:18.0074 0x288c PDF5 Registry Controller - ok

10:39:18.0105 0x288c [ 271B0D188430670509CB9943D5229205, 74CB5A9D8B5988AE08C0F65C601FC54F8745BAB6825B6FEEFBA8F068D656D8D7 ] C:\Program Files (x86)\QuickTime\QTTask.exe

10:39:18.0121 0x288c QuickTime Task - ok

10:39:18.0152 0x288c [ 6BF7676296D5359AFC135A5397000053, D31B9BCB856D6EFDEA27E4D4D341FF939BCBF0E8C97786B447C2074B3C68298E ] C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe

10:39:18.0168 0x288c ISUSPM - ok

10:39:18.0183 0x288c [ 42A4F221F85B44E9F1A5A436373F0502, 35CC3C18199751E02278648A81C26AFBB015EF321C3C5CA141DEF48D2AE73BA1 ] C:\Program Files (x86)\Content Manager\launchCM.exe

10:39:18.0183 0x288c CmTray - ok

10:39:18.0262 0x288c [ B88EC3510D74D3E7C2F7E68610DA8C45, 09A5715B65A19F7447C247484E1D5B096434EA9EC03689E48F781B6F33C0B858 ] C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe

10:39:18.0277 0x288c Web Companion - ok

10:39:18.0293 0x288c Waiting for KSN requests completion. In queue: 122

10:39:19.0308 0x288c Waiting for KSN requests completion. In queue: 122

10:39:20.0322 0x288c Waiting for KSN requests completion. In queue: 122

10:39:21.0337 0x288c AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.6.305.0 ), 0x61100 ( enabled : updated )

10:39:21.0353 0x288c Win FW state via NFP2: enabled

10:39:23.0881 0x288c ============================================================

10:39:23.0881 0x288c Scan finished

10:39:23.0881 0x288c ============================================================

10:39:23.0881 0x28a4 Detected object count: 0

10:39:23.0881 0x28a4 Actual detected object count: 0

10:47:59.0905 0x3238 Deinitialize success



#7 fumble fingers

fumble fingers
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 06 March 2015 - 11:49 AM

# AdwCleaner v4.111 - Logfile created 06/03/2015 at 11:23:28

# Updated 18/02/2015 by Xplode

# Database : 2015-03-05.1 [Server]

# Operating system : Windows 8.1 (x64)

# Username : Kevin - MCCRARYMACHINE

# Running from : C:\Users\Kevin\Desktop\AdwCleaner.exe

# Option : Cleaning

***** [ Services ] *****

 

***** [ Files / Folders ] *****

 

***** [ Scheduled tasks ] *****

 

***** [ Shortcuts ] *****

 

***** [ Registry ] *****

Data Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - ;192.168.*.*

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

 

-\\ Mozilla Firefox v35.0.1 (x86 en-US)

 

*************************

AdwCleaner[R0].txt - [3644 bytes] - [28/01/2015 15:48:17]

AdwCleaner[R1].txt - [974 bytes] - [31/01/2015 09:47:39]

AdwCleaner[R2].txt - [1094 bytes] - [02/02/2015 09:36:37]

AdwCleaner[R3].txt - [1196 bytes] - [06/03/2015 11:15:07]

AdwCleaner[R4].txt - [1255 bytes] - [06/03/2015 11:18:17]

AdwCleaner[S0].txt - [3650 bytes] - [28/01/2015 15:52:55]

AdwCleaner[S1].txt - [1036 bytes] - [31/01/2015 09:51:24]

AdwCleaner[S2].txt - [1158 bytes] - [02/02/2015 09:41:14]

AdwCleaner[S3].txt - [1185 bytes] - [06/03/2015 11:23:28]

########## EOF - C:\AdwCleaner\AdwCleaner[S3].txt - [1244 bytes] ##########



#8 fumble fingers

fumble fingers
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 06 March 2015 - 01:18 PM

Junkware removal tool will not run.   Could not create folder "C:\Users\Kevin\AppData\Local\Temp\jtr".  access is denied.

 

compatibility error code: 0x80070005



#9 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 52,062 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:27 PM

Posted 06 March 2015 - 02:49 PM

There have been a few reported instances to the developer where JRT would not run properly or users only saw a brief flash. Sometimes there isn't a clear explanation as to why without the developer having access to more specific information. Try running it in Safe Mode.

 

If JRT still does not work, then skip that step and continue with the next.


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#10 fumble fingers

fumble fingers
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 06 March 2015 - 02:57 PM

Thanks will try in safe mode.

#11 fumble fingers

fumble fingers
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 06 March 2015 - 03:39 PM

JRT will not run in safe mode.  Usually use Mozilla but it's impossible now, is it ok to run ESET in IE.



#12 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 52,062 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:27 PM

Posted 06 March 2015 - 04:00 PM

Yes.


.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#13 fumble fingers

fumble fingers
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 06 March 2015 - 04:24 PM

After rereading the instruction, I started the scan. Almost finished. Thank you for the reply. Will post results.



#14 quietman7

quietman7

    Bleepin' Janitor


  • Global Moderator
  • 52,062 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Virginia, USA
  • Local time:01:27 PM

Posted 06 March 2015 - 04:25 PM

You're welcome.
.
.
Windows Insider MVP 2017-2018
Microsoft MVP Reconnect 2016
Microsoft MVP Consumer Security 2007-2015 kO7xOZh.gif
Member of UNITE, Unified Network of Instructors and Trusted Eliminators

If I have been helpful & you'd like to consider a donation, click 38WxTfO.gif

#15 fumble fingers

fumble fingers
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:02:27 PM

Posted 06 March 2015 - 05:12 PM

ESET scan, do I delete quarantined files?


C:\Users\Kevin\AppData\Local\Temp\Runner2.exe MSIL/Riskware.ShimChanger.A application cleaned by deleting - quarantined
C:\Users\Kevin\AppData\Local\Temp\Runner4.exe MSIL/Riskware.ShimChanger.A application cleaned by deleting - quarantined
C:\Users\Kevin\Downloads\adobe_flash_setup.exe a variant of Win32/InstallCore.XP potentially unwanted application deleted - quarantined




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users