Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

windows crash no blue screen


  • Please log in to reply
10 replies to this topic

#1 kenari

kenari

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 25 March 2015 - 12:11 PM

hi guys . i just joined the site and hoped that u would help me .
my windows7 was booting fine but after start up , wouldn't let me move the mouse , and after 5 second hanging it would crash. it restart pc automatically but in restart boot take very long time . 
 
safe mode was fine though ,i unistalled Anti virus , copied my files and checked the device manager , used windows to find any error in hard drives .no sign of any problem .then  tried clean boot and things started to change.
now windows boot normally and i can open My computer or go to control panel and change settings (not any of them) but as soon as i open any file or run any program windows freeze for 5 second and boom! crash with no blue screen .
my hard drives are more than 5 years old but didn't seem to be the problem . my RAM is 1gig and cpu 1,8 . right now , i can't install fresh windows so i appreciate it if u help me . :smash:

*Moderator Edit:
When posting, please use proper grammar. Refrain from 'text-message' style substitutions of words like 'u' for 'you', and 'ur' for 'your'. This is a multi-national forum, and some of our non-english speaking members must use translation software which is confused by abbreviations. Most of our volunteer members are very busy helping as many people as they can, and a post that is hard to read will often be overlooked. ~ Queen-Evie*

Edited by Queen-Evie, 25 March 2015 - 02:37 PM.
moved from Windows 7 to the appropriate forum.


BC AdBot (Login to Remove)

 


#2 thisisu

thisisu

  • Malware Response Team
  • 2,525 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:02:52 AM

Posted 25 March 2015 - 02:28 PM

Hi,

 

Does the system ever crash while in Safe Mode or Safe Mode with Networking? Even if you stay in it for an hour or two? Since I got the impression that Safe Mode is safe for you ;) We can do our work while in that mode.

If you are able to get into Safe Mode with Networking, download and run these files in the order listed here:

 

  1. TDSSKiller.exe -> Steps: Accept Accept -> "Start Scan". Let the tool fix any problems found. The report / log is gathered by clicking the "Report" button in the top right corner. Copy / paste that info here.
  2. AdwCleaner -> Steps: Click "Scan". When scan completes, click "Clean". Boot back into Safe Mode with Networking as this tool will want to restart your computer.
  3. JRT.exe -> Steps: Press any key. Report pops up when finished.
  4. Malwarebytes Steps are self explanatory. To get the report -> Click the "History" symbol, then "Application Logs". Look for Type: Scan Log from today.
  5. MiniToolBox.exe  -> Steps: Click "Select All" and then click "GO". Report pops up when finished

Each of these tools has logs of the scan / cleaning process. Post the logs (all 5 of them) here for review please.

Note: If you are unable to boot into Safe Mode with Networking, download the above files to a USB device from a working computer and then transfer them over to the potentially infected computer that way.

 

Your next post(s) should contain the logs from the above 5 tools. If you have trouble running any of the tools, be specific in what problems you encountered along the way and we'll try to help.


Edited by thisisu, 25 March 2015 - 02:36 PM.


#3 kenari

kenari
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 25 March 2015 - 06:07 PM

thank you thisisu for repy and yes i didn't encouner with any problem in safe mode, i'll post logs soon


Edited by kenari, 25 March 2015 - 06:12 PM.


#4 kenari

kenari
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 25 March 2015 - 07:09 PM

# AdwCleaner v4.113 - Logfile created 26/03/2015 at 03:57:22
# Updated 22/03/2015 by Xplode
# Database : 2015-03-22.2 [Local]
# Operating system : Windows 7 Ultimate Service Pack 1 (x86)
# Username : user - USER-PC
# Running from : C:\Users\user\Desktop\New folder\adwcleaner_4.113.exe
# Option : Cleaning

***** [ Services ] *****

[#] Service Deleted : APNMCP

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\Program Files\AskPartnerNetwork
Folder Deleted : C:\Users\user\AppData\Local\Temp\apn
Folder Deleted : C:\users\user\AppData\Local\AskPartnerNetwork
Folder Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage
File Deleted : C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_static.audienceinsights.net_0.localstorage-journal

***** [ Scheduled tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\microsoft\shared tools\msconfig\startupreg\ApnTBMon
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\464AA55239C100F32AF2D438EDDC0F47
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5652BA3D5FB98AE31B337BF0AF939856
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EB95E1AFCBABE3DB9ECCC669B99494
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\7AB5857A57A0687786597A857BFFFFFF

***** [ Web browsers ] *****

-\\ Internet Explorer v11.0.9600.16428


-\\ Mozilla Firefox v36.0 (x86 en-US)

[yu2psc2k.default\prefs.js] - Line Deleted : user_pref("extensions.xpiState", "{\"app-profile\":{\"toolbar_KMPV7@apn.ask.com\":{\"d\":\"C:\\\\Users\\\\user\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\yu2psc2k.default\\\\extensions[...]

-\\ Google Chrome v41.0.2272.101

[C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.aol.com/aol/search?q={searchTerms}
[C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.ask.com/web?q={searchTerms}
[C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}

*************************

AdwCleaner[R0].txt - [2857 bytes] - [26/03/2015 03:54:53]
AdwCleaner[S0].txt - [2839 bytes] - [26/03/2015 03:57:22]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2898  bytes] ##########
 

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.6 (03.22.2015:1)
OS: Windows 7 Ultimate x86
Ran by user on Thu 03/26/2015 at  4:11:25.27
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Thu 03/26/2015 at  4:14:18.80
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 

 

 

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 3/26/2015
Scan Time: 4:17:12 AM
Logfile: mbm.txt
Administrator: Yes

Version: 2.01.4.1018
Malware Database: v2015.03.09.05
Rootkit Database: v2015.02.25.01
License: Premium
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x86
File System: NTFS
User: user

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 301744
Time Elapsed: 10 min, 5 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)

 

 

___________________________________________________________________________________________

 

MiniToolBox by Farbar  Version: 09-03-2015
Ran by user (administrator) on 26-03-2015 at 04:31:33
Running from "C:\Users\user\Desktop\New folder"
Microsoft Windows 7 Ultimate  Service Pack 1 (X86)
Model: OEM Manufacturer: OEM
Boot Mode: Network
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.backup.ftp", "127.0.0.1"
"network.proxy.backup.ftp_port", 8580
"network.proxy.backup.socks", "127.0.0.1"
"network.proxy.backup.socks_port", 8580
"network.proxy.backup.ssl", "127.0.0.1"
"network.proxy.backup.ssl_port", 8580
"network.proxy.ftp", "127.0.0.1"
"network.proxy.ftp_port", 8580
"network.proxy.http", "127.0.0.1"
"network.proxy.http_port", 8580
"network.proxy.share_proxy_settings", true
"network.proxy.socks", "127.0.0.1"
"network.proxy.socks_port", 8580
"network.proxy.ssl", "127.0.0.1"
"network.proxy.ssl_port", 8580
"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe FE Family Controller = Local Area Connection (Hardware not present)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : user-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
Server:  UnKnown
Address:  127.0.0.1

Ping request could not find host google.com. Please check the name and try again.
Server:  UnKnown
Address:  127.0.0.1

Ping request could not find host yahoo.com. Please check the name and try again.

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  1    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================


=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.38656 - BitTorrent Inc.)
µTorrent (HKLM\...\uTorrent) (Version: 2.2.1 - )
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.5.155 - Adobe Systems, Inc.)
Any Video Converter Ultimate 5.7.6 (HKLM\...\Any Video Converter Ultimate_is1) (Version:  - Any-Video-Converter.com)
ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.11 - Michael Tippach)
Audacity 2.0.6 (HKLM\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Google Chrome (HKLM\...\Google Chrome) (Version: 41.0.2272.101 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Guitar Pro 6 (HKLM\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version:  - Arobas Music)
Internet Download Manager (HKLM\...\Internet Download Manager) (Version:  - Tonec Inc.)
Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Java Auto Updater (Version: 2.8.25.18 - Oracle Corporation) Hidden
K-Lite Codec Pack 10.9.0 Full (HKLM\...\KLiteCodecPack_is1) (Version: 10.9.0 - )
KMP Media Toolbar (HKLM\...\{4B4D5056-3700-A76A-76A7-A758B70C1801}) (Version: 12.24.1.295 - APN, LLC)
KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 3.9.1.130 - PandoraTV)
Malwarebytes Anti-Malware version 2.1.4.1018 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
MetaTrader 4 (HKLM\...\MetaTrader 4) (Version: 4.00 - MetaQuotes Software Corp.)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.42 False (Version: 8.0.50727.42 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.51011 False (Version: 8.0.51011 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.56336 False (Version: 8.0.56336 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.58299 False (Version: 8.0.58299 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False (Version: 8.0.59193 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False (Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False (Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False (Version: 9.0.21022.218 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False (Version: 9.0.30411 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 False (Version: 9.0.30729.4048 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False (Version: 9.0.30729.4148 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False (Version: 9.0.30729.5570 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.30319 False (Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 False (Version: 11.0.50727.1 - ?????????? ??????????) Hidden
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 False (Version: 11.0.51106.1 - ?????????? ??????????) Hidden
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 False (Version: 11.0.60610.1 - ?????????? ??????????) Hidden
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - ?????????? ??????????)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 False (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 False (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 False (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 False (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 False (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 False (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}) (Version: 12.0.21005.1 - ?????????? ??????????)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
MofidTrader 5 (HKLM\...\MofidTrader 5) (Version: 5.00 - MetaQuotes Software Corp.)
Mozilla Firefox 36.0 (x86 en-US) (HKLM\...\Mozilla Firefox 36.0 (x86 en-US)) (Version: 36.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 33.1.1 - Mozilla)
OpenAL (HKLM\...\OpenAL) (Version:  - )
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
SegaVpn (HKLM\...\{DC6A5B6E-B6C0-4A97-8BA9-7D2A9A58245B}) (Version: 1.00.0000 - Vpn001)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeraCopy 2.22 (HKLM\...\TeraCopy_is1) (Version:  - Code Sector)
TseClient 2.0 (HKLM\...\{04D9E61D-DF2E-4823-B6C9-BFA2C90CB8D8}) (Version: 2.0.16 - TSETMC)
VLC media player 0.9.9 (HKLM\...\VLC media player) (Version: 0.9.9 - VideoLAN Team)
Windows Media Encoder 9 Series (HKLM\...\Windows Media Encoder 9) (Version:  - )
Windows Media Encoder 9 Series (Version: 9.00.2980 - Microsoft Corporation) Hidden
WinRAR 5.11 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

========================= Devices: ================================

Name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: PptpMiniport
Device ID: ROOT\MS_PPTPMINIPORT\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (SSTP)
Description: WAN Miniport (SSTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasSstp
Device ID: ROOT\MS_SSTPMINIPORT\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Realtek PCIe FE Family Controller
Description: Realtek PCIe FE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8167
Device ID: PCI\VEN_10EC&DEV_8136&SUBSYS_0DED10EC&REV_02\4&2398774E&0&00E1
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Device ID: ROOT\*ISATAP\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Device ID: ROOT\*TEREDO\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (IKEv2)
Description: WAN Miniport (IKEv2)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasAgileVpn
Device ID: ROOT\MS_AGILEVPNMINIPORT\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Rasl2tp
Device ID: ROOT\MS_L2TPMINIPORT\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Device ID: ROOT\LEGACY_SPLDR\0000
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: WAN Miniport (Network Monitor)
Description: WAN Miniport (Network Monitor)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Device ID: ROOT\MS_NDISWANBH\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Built-in Infrared Device
Description: Built-in Infrared Device
Class Guid: {6bdd1fc5-810f-11d0-bec7-08002be2092f}
Manufacturer: (Standard Infrared Port)
Service: irsir
Device ID: ACPI\PNP0510\4&12845B4&0
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (IP)
Description: WAN Miniport (IP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Device ID: ROOT\MS_NDISWANIP\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Standard floppy disk controller
Description: Standard floppy disk controller
Class Guid: {4d36e969-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard floppy disk controllers)
Service: fdc
Device ID: ACPI\PNP0700\4&12845B4&0
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (IPv6)
Description: WAN Miniport (IPv6)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Device ID: ROOT\MS_NDISWANIPV6\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (PPPOE)
Description: WAN Miniport (PPPOE)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasPppoe
Device ID: ROOT\MS_PPPOEMINIPORT\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 39%
Total physical RAM: 1022.18 MB
Available physical RAM: 620.9 MB
Total Pagefile: 2046.18 MB
Available Pagefile: 1680.12 MB
Total Virtual: 2047.88 MB
Available Virtual: 1956.49 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:38.96 GB) (Free:14.36 GB) NTFS
2 Drive d: () (Fixed) (Total:97.65 GB) (Free:5.53 GB) NTFS
3 Drive e: (Local Disk) (Fixed) (Total:102.77 GB) (Free:14.93 GB) NTFS
4 Drive f: () (Fixed) (Total:97.65 GB) (Free:12.12 GB) NTFS
5 Drive g: () (Fixed) (Total:39.06 GB) (Free:2.71 GB) NTFS
6 Drive h: (ShowZzz) (Fixed) (Total:39.06 GB) (Free:4.27 GB) NTFS
7 Drive i: (Film zzz) (Fixed) (Total:87.89 GB) (Free:12.62 GB) NTFS
8 Drive j: (Discography) (Fixed) (Total:93.01 GB) (Free:13.17 GB) NTFS
10 Drive m: () (Fixed) (Total:596.03 GB) (Free:31.56 GB) FAT32

========================= Users: ========================================

User accounts for \\USER-PC

Administrator            Guest                    user                     

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================


**** End of log ****
 



#5 kenari

kenari
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 25 March 2015 - 07:10 PM

03:52:02.0792 0x05ac  TDSS rootkit removing tool 3.0.0.44 Jan 22 2015 08:27:04
03:52:08.0548 0x05ac  ============================================================
03:52:08.0548 0x05ac  Current date / time: 2015/03/26 03:52:08.0548
03:52:08.0548 0x05ac  SystemInfo:
03:52:08.0548 0x05ac  
03:52:08.0548 0x05ac  OS Version: 6.1.7601 ServicePack: 1.0
03:52:08.0548 0x05ac  Product type: Workstation
03:52:08.0548 0x05ac  ComputerName: USER-PC
03:52:08.0548 0x05ac  UserName: user
03:52:08.0548 0x05ac  Windows directory: C:\Windows
03:52:08.0548 0x05ac  System windows directory: C:\Windows
03:52:08.0548 0x05ac  Processor architecture: Intel x86
03:52:08.0548 0x05ac  Number of processors: 1
03:52:08.0548 0x05ac  Page size: 0x1000
03:52:08.0548 0x05ac  Boot type: Safe boot with network
03:52:08.0548 0x05ac  ============================================================
03:52:11.0481 0x05ac  KLMD registered as C:\Windows\system32\drivers\14961448.sys
03:52:11.0637 0x05ac  System UUID: {3C8AB2E3-F020-B71A-2A01-0D3AE9408AD1}
03:52:12.0183 0x05ac  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
03:52:12.0183 0x05ac  Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0xA181, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
03:52:12.0183 0x05ac  ============================================================
03:52:12.0183 0x05ac  \Device\Harddisk0\DR0:
03:52:12.0183 0x05ac  MBR partitions:
03:52:12.0183 0x05ac  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xC34F28D
03:52:12.0214 0x05ac  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xC34F30B, BlocksNum 0xCD8B229
03:52:12.0214 0x05ac  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x190DA573, BlocksNum 0xC34F28D
03:52:12.0214 0x05ac  \Device\Harddisk1\DR1:
03:52:12.0214 0x05ac  MBR partitions:
03:52:12.0214 0x05ac  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
03:52:12.0214 0x05ac  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x4DEC000
03:52:12.0230 0x05ac  \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0x4E1EE6A, BlocksNum 0x4E1EDEC
03:52:12.0245 0x05ac  \Device\Harddisk1\DR1\Partition4: MBR, Type 0x7, StartLBA 0x9C3DC95, BlocksNum 0x4E1EDEC
03:52:12.0261 0x05ac  \Device\Harddisk1\DR1\Partition5: MBR, Type 0x7, StartLBA 0xEA5CAC0, BlocksNum 0xAFC6752
03:52:12.0277 0x05ac  \Device\Harddisk1\DR1\Partition6: MBR, Type 0x7, StartLBA 0x19A23251, BlocksNum 0xBA065AF
03:52:12.0277 0x05ac  ============================================================
03:52:12.0308 0x05ac  C: <-> \Device\Harddisk1\DR1\Partition2
03:52:12.0355 0x05ac  D: <-> \Device\Harddisk0\DR0\Partition1
03:52:12.0370 0x05ac  E: <-> \Device\Harddisk0\DR0\Partition2
03:52:12.0401 0x05ac  F: <-> \Device\Harddisk0\DR0\Partition3
03:52:12.0417 0x05ac  G: <-> \Device\Harddisk1\DR1\Partition3
03:52:12.0448 0x05ac  H: <-> \Device\Harddisk1\DR1\Partition4
03:52:12.0479 0x05ac  I: <-> \Device\Harddisk1\DR1\Partition5
03:52:12.0511 0x05ac  J: <-> \Device\Harddisk1\DR1\Partition6
03:52:12.0511 0x05ac  ============================================================
03:52:12.0511 0x05ac  Initialize success
03:52:12.0511 0x05ac  ============================================================
03:52:21.0621 0x071c  ============================================================
03:52:21.0621 0x071c  Scan started
03:52:21.0621 0x071c  Mode: Manual;
03:52:21.0621 0x071c  ============================================================
03:52:21.0621 0x071c  KSN ping started
03:52:21.0715 0x071c  KSN ping finished: false
03:52:22.0417 0x071c  ================ Scan system memory ========================
03:52:22.0417 0x071c  System memory - ok
03:52:22.0417 0x071c  ================ Scan services =============================
03:52:22.0682 0x071c  [ 1B133875B8AA8AC48969BD3458AFE9F5, 01753BDD47F3F9BC0E0D23A069B9C56D4AE6A6B6295BC19B95AE245D25B12744 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
03:52:22.0697 0x071c  1394ohci - ok
03:52:22.0744 0x071c  [ CEA80C80BED809AA0DA6FEBC04733349, AE69C142DC2210A4AE657C23CEA4A6E7CB32C4F4EBA039414123CAC52157509B ] ACPI            C:\Windows\system32\drivers\ACPI.sys
03:52:22.0760 0x071c  ACPI - ok
03:52:22.0807 0x071c  [ 1EFBC664ABFF416D1D07DB115DCB264F, BF94D069D692140B792DBF4FD3CB0127D27C26CC5BFB6B0C28A8B6346767EE58 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
03:52:22.0807 0x071c  AcpiPmi - ok
03:52:22.0869 0x071c  [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
03:52:22.0885 0x071c  AdobeARMservice - ok
03:52:22.0963 0x071c  [ 080255CDCB878813B481B8C348D47D8E, 75808821FBC732D0504795B8F85852E4C01D3B412989A1E597E1295CFF7B7A45 ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
03:52:22.0978 0x071c  AdobeFlashPlayerUpdateSvc - ok
03:52:23.0056 0x071c  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
03:52:23.0072 0x071c  adp94xx - ok
03:52:23.0119 0x071c  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\drivers\adpahci.sys
03:52:23.0119 0x071c  adpahci - ok
03:52:23.0150 0x071c  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\drivers\adpu320.sys
03:52:23.0165 0x071c  adpu320 - ok
03:52:23.0197 0x071c  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
03:52:23.0197 0x071c  AeLookupSvc - ok
03:52:23.0259 0x071c  [ 1151FD4FB0216CFED887BFDE29EBD516, 673C2B498744C7EB846F6BD4FDC852B0A9722377D75FD694F7F78E727ADF4563 ] AFD             C:\Windows\system32\drivers\afd.sys
03:52:23.0275 0x071c  AFD - ok
03:52:23.0306 0x071c  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\drivers\agp440.sys
03:52:23.0306 0x071c  agp440 - ok
03:52:23.0337 0x071c  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\drivers\djsvs.sys
03:52:23.0337 0x071c  aic78xx - ok
03:52:23.0399 0x071c  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
03:52:23.0399 0x071c  ALG - ok
03:52:23.0431 0x071c  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\drivers\aliide.sys
03:52:23.0431 0x071c  aliide - ok
03:52:23.0509 0x071c  [ 68E6B7F04A308B9069EF311AE0FFB9BB, 759E0AC7B3C53130A7C14F4EE7E6EA406B8CBD6104B51ED854BB77411E887E04 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
03:52:23.0524 0x071c  AMD External Events Utility - ok
03:52:23.0540 0x071c  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\drivers\amdagp.sys
03:52:23.0540 0x071c  amdagp - ok
03:52:23.0571 0x071c  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\drivers\amdide.sys
03:52:23.0571 0x071c  amdide - ok
03:52:23.0602 0x071c  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
03:52:23.0602 0x071c  AmdK8 - ok
03:52:24.0086 0x071c  [ 9B1B15B2796D474EAF381ACF770C193A, E81C14FFC2D3766F892CBD1C7487FD6FD2C8AE5BBEA8E57A4D1ADEF7F5EFBD99 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
03:52:24.0523 0x071c  amdkmdag - ok
03:52:24.0632 0x071c  [ 28A72E0885161078A18767844980F99F, F99D863ACC6739E64D624EB7B0E1C2D52A0F6F96EFEF5B206694CC79251BF6A7 ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
03:52:24.0663 0x071c  amdkmdap - ok
03:52:24.0679 0x071c  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
03:52:24.0679 0x071c  AmdPPM - ok
03:52:24.0725 0x071c  [ E7F4D42D8076EC60E21715CD11743A0D, 91AC020A70964F8783C999BDE8AB8391A3FA3AFC1CD4BC52A43625A2010A53E7 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
03:52:24.0725 0x071c  amdsata - ok
03:52:24.0741 0x071c  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
03:52:24.0757 0x071c  amdsbs - ok
03:52:24.0772 0x071c  [ 146459D2B08BFDCBFA856D9947043C81, AC7F2069717601F949B0968EA651899D497170A93B84281B66D3CE5C382DDECB ] amdxata         C:\Windows\system32\drivers\amdxata.sys
03:52:24.0772 0x071c  amdxata - ok
03:52:24.0819 0x071c  [ EFA78DCA6DE1B9E5DFA1834AD9DD6B20, A5664E091EFB1F69668372A83A6295002B11C2DA099D39B0851214AEA79921BF ] anvsnddrv       C:\Windows\system32\drivers\anvsnddrv.sys
03:52:24.0819 0x071c  anvsnddrv - ok
03:52:24.0897 0x071c  [ F22A3AE791C78A31763499585180E46A, 5CDE0522447CC574F1ABD7B3605E77E46FF31F3F02687D6EBBB8B6CA99D1AB30 ] APNMCP          C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe
03:52:24.0944 0x071c  APNMCP - ok
03:52:24.0991 0x071c  [ AEA177F783E20150ACE5383EE368DA19, 8FA9EE27AA1F22E8B8FE33A21028CA1E0062BAA95CB132C20D55B98C03B4254F ] AppID           C:\Windows\system32\drivers\appid.sys
03:52:24.0991 0x071c  AppID - ok
03:52:25.0022 0x071c  [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
03:52:25.0022 0x071c  AppIDSvc - ok
03:52:25.0069 0x071c  [ FB1959012294D6AD43E5304DF65E3C26, CFE906B07FF71A178CF9C254B056C6F5A303DDC511F0E4E1E75808F1D5326495 ] Appinfo         C:\Windows\System32\appinfo.dll
03:52:25.0084 0x071c  Appinfo - ok
03:52:25.0131 0x071c  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
03:52:25.0131 0x071c  AppMgmt - ok
03:52:25.0162 0x071c  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\drivers\arc.sys
03:52:25.0178 0x071c  arc - ok
03:52:25.0193 0x071c  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\drivers\arcsas.sys
03:52:25.0193 0x071c  arcsas - ok
03:52:25.0240 0x071c  [ 997E2A930987B5B417C2684C7C4B9156, E92A74D93719EC6C60C8A3639B15A854631E7388F9B7D87DFA4188A1F51F1C02 ] asmthub3        C:\Windows\system32\drivers\asmthub3.sys
03:52:25.0256 0x071c  asmthub3 - ok
03:52:25.0287 0x071c  [ EEC4742AA8FDD5FEBDACC566514CC3AD, D097B38EB69659A41A4314284EFC664A962A21816C2E9AB7347077F5BB95F3C4 ] asmtxhci        C:\Windows\system32\drivers\asmtxhci.sys
03:52:25.0303 0x071c  asmtxhci - ok
03:52:25.0412 0x071c  [ 2FE0D5DB69014980A970D3BF9A85D2B1, 3837F176B0CB7FEA2689D90B50B62F660FE579A5EB1E47C827DFA95596B72D1E ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
03:52:25.0412 0x071c  aspnet_state - ok
03:52:25.0443 0x071c  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
03:52:25.0443 0x071c  AsyncMac - ok
03:52:25.0474 0x071c  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\drivers\atapi.sys
03:52:25.0474 0x071c  atapi - ok
03:52:25.0537 0x071c  [ 6ADC42CF4A6AB84975CA63DCCFAAF5D8, 9629ABDC25D848F5B16A937A4897B17EE9BD6DFF0A69CF0FF97219AE15D3920F ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW73.sys
03:52:25.0537 0x071c  AtiHDAudioService - ok
03:52:25.0599 0x071c  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
03:52:25.0630 0x071c  AudioEndpointBuilder - ok
03:52:25.0661 0x071c  [ CE3B4E731638D2EF62FCB419BE0D39F0, 3B98179CB0101778D9E7810D2CD46D9C0D7120E141BA11471666E7D9EB3C93CC ] Audiosrv        C:\Windows\System32\Audiosrv.dll
03:52:25.0677 0x071c  Audiosrv - ok
03:52:25.0708 0x071c  [ 6E30D02AAC9CAC84F421622E3A2F6178, 229DC527C1D6C778BCA2C855A2A6F6D2C4B0F4F6DE56C886B3AAD26E3347952C ] AxInstSV        C:\Windows\System32\AxInstSV.dll
03:52:25.0724 0x071c  AxInstSV - ok
03:52:25.0786 0x071c  [ 552F3D7063E239AED42C00E5EAED13D0, B276B4B3CD6E648D868C5D24F64D23DD2A55AB61D92EF9272589BB76006DECF4 ] b06bdrv         C:\Windows\system32\drivers\bxvbdx.sys
03:52:25.0802 0x071c  b06bdrv - ok
03:52:25.0864 0x071c  [ 4C3CA737125AA107E0D1269B58E3311F, ECA0ECCBBF6FFA06C777E36CCCEDA85F0B1581B75AC8829504F7197DA85BCAF1 ] b06diag         C:\Windows\system32\drivers\bxdiagx.sys
03:52:25.0864 0x071c  b06diag - ok
03:52:25.0895 0x071c  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
03:52:25.0927 0x071c  b57nd60x - ok
03:52:25.0973 0x071c  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
03:52:25.0973 0x071c  BDESVC - ok
03:52:26.0005 0x071c  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
03:52:26.0005 0x071c  Beep - ok
03:52:26.0051 0x071c  [ 1E2BAC209D184BB851E1A187D8A29136, 53933C938DA5126986FFF2918C1F522ABE93ABAB460AE32E4453161C2F7B68DF ] BFE             C:\Windows\System32\bfe.dll
03:52:26.0098 0x071c  BFE - ok
03:52:26.0129 0x071c  [ E84F7320689F642D8296C46E85D81042, D4CCA9FA9FF08669D23C2AE6912CA5E2D4B31B310190A5164892F2ADBA5124F0 ] BFN7x86         C:\Windows\system32\drivers\Xeno7x86.sys
03:52:26.0145 0x071c  BFN7x86 - ok
03:52:26.0192 0x071c  [ E585445D5021971FAE10393F0F1C3961, 178C008A9A0A6BFDA65EB0B98C510271360AD4474F22F13594F5EB60AA4E1CF5 ] BITS            C:\Windows\System32\qmgr.dll
03:52:26.0285 0x071c  BITS - ok
03:52:26.0301 0x071c  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
03:52:26.0301 0x071c  blbdrive - ok
03:52:26.0317 0x071c  [ FCAFAEF6798D7B51FF029F99A9898961, BFB37686B1386EB883B99DB6AC342C20514939F8B7A5CEC5D63865B3DC2B4D4F ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
03:52:26.0317 0x071c  bowser - ok
03:52:26.0348 0x071c  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
03:52:26.0348 0x071c  BrFiltLo - ok
03:52:26.0363 0x071c  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
03:52:26.0363 0x071c  BrFiltUp - ok
03:52:26.0410 0x071c  [ 6E11F33D14D020F58D5E02E4D67DFA19, 9563E4E8CE769B7619745F6F6DE618389A1595785023BF1F295AD8301B27F0AF ] Browser         C:\Windows\System32\browser.dll
03:52:26.0410 0x071c  Browser - ok
03:52:26.0441 0x071c  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
03:52:26.0473 0x071c  Brserid - ok
03:52:26.0488 0x071c  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
03:52:26.0504 0x071c  BrSerWdm - ok
03:52:26.0504 0x071c  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
03:52:26.0519 0x071c  BrUsbMdm - ok
03:52:26.0535 0x071c  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
03:52:26.0535 0x071c  BrUsbSer - ok
03:52:26.0551 0x071c  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
03:52:26.0551 0x071c  BTHMODEM - ok
03:52:26.0597 0x071c  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
03:52:26.0597 0x071c  bthserv - ok
03:52:26.0644 0x071c  [ 40895E3976A96709270BB1F361EA6C0B, 507BBAC5736C82991285841D152ED80F2B7B7E7BE4F88A891BCFCA2DA2396D76 ] bxfcoe          C:\Windows\system32\drivers\bxfcoe.sys
03:52:26.0660 0x071c  bxfcoe - ok
03:52:26.0722 0x071c  [ E138AFDB1B9DDF779625F07672D7A462, ACFB013FF961B5837B539DA6A91E4FF3D3A54B22F554E377FC4D9C37FB4851EB ] bxois           C:\Windows\system32\drivers\bxois.sys
03:52:26.0769 0x071c  bxois - ok
03:52:26.0816 0x071c  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
03:52:26.0816 0x071c  cdfs - ok
03:52:26.0847 0x071c  [ BE167ED0FDB9C1FA1133953C18D5A6C9, E26A851CA13E7300F977E5B20FA5D25FD0E1442AB6AD5DB58BBDB2DAAD87027C ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
03:52:26.0863 0x071c  cdrom - ok
03:52:26.0894 0x071c  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] CertPropSvc     C:\Windows\System32\certprop.dll
03:52:26.0894 0x071c  CertPropSvc - ok
03:52:26.0925 0x071c  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\drivers\circlass.sys
03:52:26.0925 0x071c  circlass - ok
03:52:26.0956 0x071c  [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS            C:\Windows\system32\CLFS.sys
03:52:26.0972 0x071c  CLFS - ok
03:52:27.0034 0x071c  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
03:52:27.0065 0x071c  clr_optimization_v2.0.50727_32 - ok
03:52:27.0112 0x071c  [ 6D7C8A951AF6AD6835C029B3CB88D333, 66F3D79887B2449B4C6912D1A258D1A96056888F51A8AA24FEDF37942AD5BDBB ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
03:52:27.0159 0x071c  clr_optimization_v4.0.30319_32 - ok
03:52:27.0190 0x071c  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
03:52:27.0190 0x071c  CmBatt - ok
03:52:27.0206 0x071c  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
03:52:27.0206 0x071c  cmdide - ok
03:52:27.0253 0x071c  [ 1B675691ED940766149C93E8F4488D68, A55C41B2B343B1CF53D737ED1752D0510052094FFC60FDB833279A8A52398132 ] CNG             C:\Windows\system32\Drivers\cng.sys
03:52:27.0284 0x071c  CNG - ok
03:52:27.0299 0x071c  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
03:52:27.0299 0x071c  Compbatt - ok
03:52:27.0331 0x071c  [ CBE8C58A8579CFE5FCCF809E6F114E89, AC083A1C649EBA18C59FCC1772D0784B10E2B8C63094E3C14388E147DBC3F6DF ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
03:52:27.0331 0x071c  CompositeBus - ok
03:52:27.0362 0x071c  COMSysApp - ok
03:52:27.0362 0x071c  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
03:52:27.0377 0x071c  crcdisk - ok
03:52:27.0424 0x071c  [ A585BEBF7D054BD9618EDA0922D5484A, 340DF730E88F8B6A4EF542F620EBA2A720546AFAB4DFFA00F066B7610A1026C5 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
03:52:27.0424 0x071c  CryptSvc - ok
03:52:27.0471 0x071c  [ 3C2177A897B4CA2788C6FB0C3FD81D4B, 98575CBD0664586E6211D02E71BDD52CBAA149A1658573550E29E74E5F7B1553 ] CSC             C:\Windows\system32\drivers\csc.sys
03:52:27.0502 0x071c  CSC - ok
03:52:27.0549 0x071c  [ 15F93B37F6801943360D9EB42485D5D3, DD6838C6496CB15F8BB57A6596F6A64ADD9C36B09F062295699131232712B558 ] CscService      C:\Windows\System32\cscsvc.dll
03:52:27.0596 0x071c  CscService - ok
03:52:27.0627 0x071c  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] DcomLaunch      C:\Windows\system32\rpcss.dll
03:52:27.0658 0x071c  DcomLaunch - ok
03:52:27.0689 0x071c  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
03:52:27.0689 0x071c  defragsvc - ok
03:52:27.0752 0x071c  [ F024449C97EC1E464AAFFDA18593DB88, 7EF1E241892E098A472BCA14C724DFF1AACCF190954AF1C4A38B6D542CC74BD2 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
03:52:27.0752 0x071c  DfsC - ok
03:52:27.0799 0x071c  [ E9E01EB683C132F7FA27CD607B8A2B63, 4D9037B458C522874619143A4176BCED42472C68933E6E83D37B67242706F3C4 ] Dhcp            C:\Windows\system32\dhcpcore.dll
03:52:27.0814 0x071c  Dhcp - ok
03:52:27.0845 0x071c  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
03:52:27.0845 0x071c  discache - ok
03:52:27.0892 0x071c  [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk            C:\Windows\system32\drivers\disk.sys
03:52:27.0892 0x071c  Disk - ok
03:52:27.0939 0x071c  [ 2A958EF85DB1B61FFCA65044FA4BCE9E, C83511685EE1CE85A5ADF9B5BE96C375A521601F66024BDC3EE044C0B6E85D69 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
03:52:27.0939 0x071c  dmvsc - ok
03:52:27.0970 0x071c  [ 2FE30D71919C51131405797620E0A714, 16060DDC32EF95EB6E37B91D50A96AB53CB0DEBB3DFDCB31975D16361092ABA5 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
03:52:27.0970 0x071c  Dnscache - ok
03:52:28.0001 0x071c  [ 366BA8FB4B7BB7435E3B9EACB3843F67, 65B7C61ACF34F1F0149045AA9E09A3F917A927963237A385A914D0B80551DC31 ] dot3svc         C:\Windows\System32\dot3svc.dll
03:52:28.0001 0x071c  dot3svc - ok
03:52:28.0033 0x071c  [ 8EC04CA86F1D68DA9E11952EB85973D6, 2E3FBC2D683D1274E8BC45EEEA87D43B77EDDCAAF0D453296D9FDA6B9D717071 ] DPS             C:\Windows\system32\dps.dll
03:52:28.0048 0x071c  DPS - ok
03:52:28.0079 0x071c  [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
03:52:28.0079 0x071c  drmkaud - ok
03:52:28.0126 0x071c  [ 23F5D28378A160352BA8F817BD8C71CB, 11BF7B7E6276C28EFF74B8AF89B493CBB89B394D2A091708EDA15DA5C342FF19 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
03:52:28.0157 0x071c  DXGKrnl - ok
03:52:28.0220 0x071c  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
03:52:28.0220 0x071c  EapHost - ok
03:52:28.0391 0x071c  [ C5AE64F5FC6DCAF9C8035D03F50020FB, C359D616EADE0D28A72BCB58D237D7E813509298B7C69270383E07A143614AE8 ] ebdrv           C:\Windows\system32\drivers\evbdx.sys
03:52:28.0516 0x071c  ebdrv - ok
03:52:28.0563 0x071c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] EFS             C:\Windows\System32\lsass.exe
03:52:28.0563 0x071c  EFS - ok
03:52:28.0625 0x071c  [ A8C362018EFC87BEB013EE28F29C0863, 07971C681FBD391C0BA0172618AF8AD77520182207F1C57F134B34D6A113857F ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
03:52:28.0657 0x071c  ehRecvr - ok
03:52:28.0688 0x071c  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
03:52:28.0688 0x071c  ehSched - ok
03:52:28.0750 0x071c  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
03:52:28.0781 0x071c  elxstor - ok
03:52:28.0797 0x071c  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
03:52:28.0797 0x071c  ErrDev - ok
03:52:28.0844 0x071c  [ 3DBC10CBC436288801FAEE66DE91AE47, CE50732C43AEB8ACF977DF7CF609C88CB022E596EBE0C0AA9DDBC4D6BB25B804 ] EtronHub3       C:\Windows\System32\Drivers\EtronHub3.sys
03:52:28.0844 0x071c  EtronHub3 - ok
03:52:28.0875 0x071c  [ 1EDF0CF390B84266FD7FFED38AB7DCAC, E0C34BFC031006195B6943DFEC32963675FBAC2A440F651AF3125ED98381E035 ] EtronSTOR       C:\Windows\System32\Drivers\EtronSTOR.sys
03:52:28.0875 0x071c  EtronSTOR - ok
03:52:28.0906 0x071c  [ DE261095A2220D400D9603E1E42D4185, F5C4493EDCE92EC46BC7940764F719131FE27AE695201EDF143D678881CD239D ] EtronXHCI       C:\Windows\System32\Drivers\EtronXHCI.sys
03:52:28.0906 0x071c  EtronXHCI - ok
03:52:28.0969 0x071c  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
03:52:28.0969 0x071c  EventSystem - ok
03:52:29.0000 0x071c  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
03:52:29.0000 0x071c  exfat - ok
03:52:29.0031 0x071c  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
03:52:29.0047 0x071c  fastfat - ok
03:52:29.0093 0x071c  [ 967EA5B213E9984CBE270205DF37755B, 43153E23210B03FAE16897D62D55B8742F834EDC695F8401EAB5DE307F62602D ] Fax             C:\Windows\system32\fxssvc.exe
03:52:29.0125 0x071c  Fax - ok
03:52:29.0156 0x071c  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
03:52:29.0156 0x071c  fdc - ok
03:52:29.0171 0x071c  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
03:52:29.0171 0x071c  fdPHost - ok
03:52:29.0187 0x071c  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
03:52:29.0187 0x071c  FDResPub - ok
03:52:29.0218 0x071c  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
03:52:29.0218 0x071c  FileInfo - ok
03:52:29.0234 0x071c  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
03:52:29.0234 0x071c  Filetrace - ok
03:52:29.0249 0x071c  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
03:52:29.0249 0x071c  flpydisk - ok
03:52:29.0296 0x071c  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
03:52:29.0312 0x071c  FltMgr - ok
03:52:29.0390 0x071c  [ E12C4928B32ACE04610259647F072635, B71B9C2DF45F33C4DAC88435129B08B0BCDBBE82E8C3AD0A95F00137CC8B619F ] FontCache       C:\Windows\system32\FntCache.dll
03:52:29.0437 0x071c  FontCache - ok
03:52:29.0499 0x071c  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
03:52:29.0499 0x071c  FontCache3.0.0.0 - ok
03:52:29.0530 0x071c  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
03:52:29.0530 0x071c  FsDepends - ok
03:52:29.0561 0x071c  [ A574B4360E438977038AAE4BF60D79A2, 7255CCDDDAC4853FA72E6487408C4B7390CBA37549CE952929B2A9CF3327C616 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
03:52:29.0561 0x071c  Fs_Rec - ok
03:52:29.0593 0x071c  [ 8A73E79089B282100B9393B644CB853B, 844DC5AADFABBD050B967904B796BA06BFD64C9112616EA26229D084F8B3AD41 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
03:52:29.0593 0x071c  fvevol - ok
03:52:29.0624 0x071c  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
03:52:29.0624 0x071c  gagp30kx - ok
03:52:29.0717 0x071c  [ E897EAF5ED6BA41E081060C9B447A673, A428DC68516F19C6C53A8B62E4BDB2587E70FB751B9D77700B6B147D347DA157 ] gpsvc           C:\Windows\System32\gpsvc.dll
03:52:29.0749 0x071c  gpsvc - ok
03:52:29.0827 0x071c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
03:52:29.0842 0x071c  gupdate - ok
03:52:29.0858 0x071c  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
03:52:29.0873 0x071c  gupdatem - ok
03:52:29.0889 0x071c  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
03:52:29.0889 0x071c  hcw85cir - ok
03:52:29.0936 0x071c  [ A5EF29D5315111C80A5C1ABAD14C8972, A181DA72E946F121C3F4A19438C547B0BFD15138AB1DB5465945EC89DF1F6B0A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
03:52:29.0967 0x071c  HdAudAddService - ok
03:52:29.0983 0x071c  [ 9036377B8A6C15DC2EEC53E489D159B5, 1E56D2ACFE92E6DF96D755B05C63D580EED82C210F075C8623E138BEE6BCD41B ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
03:52:29.0998 0x071c  HDAudBus - ok
03:52:29.0998 0x071c  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
03:52:30.0014 0x071c  HidBatt - ok
03:52:30.0029 0x071c  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\drivers\hidbth.sys
03:52:30.0029 0x071c  HidBth - ok
03:52:30.0061 0x071c  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\drivers\hidir.sys
03:52:30.0061 0x071c  HidIr - ok
03:52:30.0092 0x071c  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
03:52:30.0092 0x071c  hidserv - ok
03:52:30.0123 0x071c  [ 10C19F8290891AF023EAEC0832E1EB4D, E208553029488A6EE2F5216CC9FE5F93E9931A94C0D0625253BB159E30642853 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
03:52:30.0123 0x071c  HidUsb - ok
03:52:30.0170 0x071c  [ 196B4E3F4CCCC24AF836CE58FACBB699, 7A2E1F603A073421FA0987EFB96647F1F0F2D4E0C82AA62EBC041585DA811DAF ] hkmsvc          C:\Windows\system32\kmsvc.dll
03:52:30.0170 0x071c  hkmsvc - ok
03:52:30.0185 0x071c  [ 6658F4404DE03D75FE3BA09F7ABA6A30, E51D9C1580A283EB862F09B73AAE1B647DD683A53F3DD99834222F12DD15E40F ] HomeGroupListener C:\Windows\system32\ListSvc.dll
03:52:30.0201 0x071c  HomeGroupListener - ok
03:52:30.0248 0x071c  [ DBC02D918FFF1CAD628ACBE0C0EAA8E8, 02121800D9062692C102475876AE8143EBE46D855E8328B8CDCFE6A2F0D19696 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
03:52:30.0248 0x071c  HomeGroupProvider - ok
03:52:30.0279 0x071c  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
03:52:30.0279 0x071c  HpSAMD - ok
03:52:30.0326 0x071c  [ 871917B07A141BFF43D76D8844D48106, 30C702008D0EE57D63F74864967DD19A55A268E77E42B5B3CC73037AD51D2987 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
03:52:30.0357 0x071c  HTTP - ok
03:52:30.0373 0x071c  [ 0C4E035C7F105F1299258C90886C64C5, CFB4FBE7B28058E6D3E6E508CF3C1645F6AAE0AFEB4C5364835B9C42311DF0D4 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
03:52:30.0373 0x071c  hwpolicy - ok
03:52:30.0404 0x071c  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
03:52:30.0419 0x071c  i8042prt - ok
03:52:30.0451 0x071c  [ A3CAE5D281DB4CFF7CFF8233507EE5AD, 2666107220B9F301193F2CF85A3D6B09E6E42CC150152D10A8886E47A3FD9B0D ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
03:52:30.0466 0x071c  iaStorV - ok
03:52:30.0529 0x071c  [ D0FAD0D98D723A3D32F9EF5A2CDE201D, DA4DC24D5F170CDCAE59B62691132ECB4834899CDA40BF5DB3142264EE61D957 ] IDMWFP          C:\Windows\system32\DRIVERS\idmwfp.sys
03:52:30.0529 0x071c  IDMWFP - ok
03:52:30.0638 0x071c  [ C521D7EB6497BB1AF6AFA89E322FB43C, BDDCFCBB5B76A9295669B5AC9F732D6127199ED5C300770B554C4E4794F66BB7 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
03:52:30.0685 0x071c  idsvc - ok
03:52:30.0716 0x071c  IEEtwCollectorService - ok
03:52:30.0747 0x071c  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\drivers\iirsp.sys
03:52:30.0747 0x071c  iirsp - ok
03:52:30.0809 0x071c  [ F95622F161474511B8D80D6B093AA610, F2320E25EB9B4AA9A8366BD3AA23EABEBE111A5610D3A62EBA47D90427D5BC26 ] IKEEXT          C:\Windows\System32\ikeext.dll
03:52:30.0841 0x071c  IKEEXT - ok
03:52:31.0028 0x071c  [ 741B4F7A9500BA6CCC0CC339CA9CAA3C, A6603C5C28312C433D8688F6C21B9F099E60666729858C1D958B2ACDEB85BCCB ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
03:52:31.0137 0x071c  IntcAzAudAddService - ok
03:52:31.0168 0x071c  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\drivers\intelide.sys
03:52:31.0168 0x071c  intelide - ok
03:52:31.0199 0x071c  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
03:52:31.0199 0x071c  intelppm - ok
03:52:31.0231 0x071c  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
03:52:31.0246 0x071c  IPBusEnum - ok
03:52:31.0262 0x071c  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
03:52:31.0262 0x071c  IpFilterDriver - ok
03:52:31.0309 0x071c  [ 4D65A07B795D6674312F879D09AA7663, 8D72FE0B51A6FF71F85D2602DB3AE91C8749F70869B6789552F047BA81411EDA ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
03:52:31.0355 0x071c  iphlpsvc - ok
03:52:31.0371 0x071c  [ 4BD7134618C1D2A27466A099062547BF, 20284ABEF4433A59E2981F4143CAEC67DC990864FE0B9E3DC70EE0B88539E964 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
03:52:31.0371 0x071c  IPMIDRV - ok
03:52:31.0402 0x071c  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
03:52:31.0402 0x071c  IPNAT - ok
03:52:31.0433 0x071c  [ 9F7E491FB0BA0F9E370163834FC1FE31, 313D81BEBEC8C3F370FD1C9CC49931F0F178E6BA0581E6594EE1C64275FC157D ] irda            C:\Windows\system32\DRIVERS\irda.sys
03:52:31.0449 0x071c  irda - ok
03:52:31.0480 0x071c  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
03:52:31.0480 0x071c  IRENUM - ok
03:52:31.0527 0x071c  [ 4220D2F03D5C4226D0A1AA4B84025E45, 9002F4CB026CB0D71FFF4CC420C0F3573DA9F70B574A18AE7EF84D5B0A64D472 ] Irmon           C:\Windows\System32\irmon.dll
03:52:31.0527 0x071c  Irmon - ok
03:52:31.0558 0x071c  [ D04DA73127FFED720DFC4EB673A23E04, CB4E60977DB96D8EAD64DD2152FC4399D4FE9D07FCA5351AEAF9A9B5F1B374EC ] irsir           C:\Windows\system32\DRIVERS\irsir.sys
03:52:31.0574 0x071c  irsir - ok
03:52:31.0605 0x071c  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\drivers\isapnp.sys
03:52:31.0605 0x071c  isapnp - ok
03:52:31.0636 0x071c  [ CB7A9ABB12B8415BCE5D74994C7BA3AE, 464BFF3F5EEE985BE075E23E1813F5CB82A9A0771A92C6D889B13B867BCDF647 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
03:52:31.0652 0x071c  iScsiPrt - ok
03:52:31.0683 0x071c  [ 0E85E57DAA2095C9FF9D2D9EEA4CF01A, 0CCFDE41789F5C515309A90D476749C8291B969444200B6D4BA39259602F76E9 ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
03:52:31.0683 0x071c  iusb3hcs - ok
03:52:31.0745 0x071c  [ BDD734EFDA3064C4B62AEBD7AE96BE5B, FF03CDBC59B0763D616FB9760916BFED1F6BECB9E10D4CAA6F29AE367542CBCB ] iusb3hub        C:\Windows\system32\drivers\iusb3hub.sys
03:52:31.0761 0x071c  iusb3hub - ok
03:52:31.0839 0x071c  [ 53238156A7B0450075BC39654A1092D3, 439649FEBC70EF549902B414639D8CDC0FF2B05D925F3F1FD8345B6CB47306D2 ] iusb3xhc        C:\Windows\system32\drivers\iusb3xhc.sys
03:52:31.0870 0x071c  iusb3xhc - ok
03:52:31.0917 0x071c  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
03:52:31.0917 0x071c  kbdclass - ok
03:52:31.0933 0x071c  [ 9E3CED91863E6EE98C24794D05E27A71, 90CF59F20E14E4A5A793266805E82BF7AE1F0CF4C7BAB1FD2EEF3B53C5DF770F ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
03:52:31.0948 0x071c  kbdhid - ok
03:52:31.0964 0x071c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] KeyIso          C:\Windows\system32\lsass.exe
03:52:31.0964 0x071c  KeyIso - ok
03:52:31.0979 0x071c  [ 412CEA1AA78CC02A447F5C9E62B32FF1, E06859E2CE2AFA3CE521851F8810778ED1748B812E601A58786605096AACEA81 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
03:52:31.0995 0x071c  KSecDD - ok
03:52:32.0011 0x071c  [ 26C046977E85B95036453D7B88BA1820, 375B284AFB407CAE417D2090B112A0ED1CCD516ABFDDBFCD5D6AADE859F14ACD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
03:52:32.0026 0x071c  KSecPkg - ok
03:52:32.0073 0x071c  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
03:52:32.0120 0x071c  KtmRm - ok
03:52:32.0151 0x071c  [ D64AF876D53ECA3668BB97B51B4E70AB, D5C07C019BFEAFBEDC29AB5060356A3B07449712B21B50E03378BEF04AF180F9 ] LanmanServer    C:\Windows\system32\srvsvc.dll
03:52:32.0167 0x071c  LanmanServer - ok
03:52:32.0198 0x071c  [ 58405E4F68BA8E4057C6E914F326ABA2, C3E6519A1A38F1B3597D4391E42ABFE8F1F5E86256C4B3BD876CDAD9BB68B0A6 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
03:52:32.0213 0x071c  LanmanWorkstation - ok
03:52:32.0260 0x071c  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
03:52:32.0260 0x071c  lltdio - ok
03:52:32.0307 0x071c  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
03:52:32.0307 0x071c  lltdsvc - ok
03:52:32.0338 0x071c  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
03:52:32.0338 0x071c  lmhosts - ok
03:52:32.0369 0x071c  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
03:52:32.0385 0x071c  LSI_FC - ok
03:52:32.0416 0x071c  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
03:52:32.0416 0x071c  LSI_SAS - ok
03:52:32.0447 0x071c  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
03:52:32.0447 0x071c  LSI_SAS2 - ok
03:52:32.0463 0x071c  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
03:52:32.0463 0x071c  LSI_SCSI - ok
03:52:32.0494 0x071c  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
03:52:32.0494 0x071c  luafv - ok
03:52:32.0525 0x071c  MBAMSwissArmy - ok
03:52:32.0572 0x071c  [ BFB9EE8EE977EFE85D1A3105ABEF6DD1, D2A84EBF0C0B7A14AD432FD2EF43CC12300027AEA3FA4075659FB088AB62B588 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
03:52:32.0572 0x071c  Mcx2Svc - ok
03:52:32.0603 0x071c  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\drivers\megasas.sys
03:52:32.0603 0x071c  megasas - ok
03:52:32.0619 0x071c  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
03:52:32.0635 0x071c  MegaSR - ok
03:52:32.0666 0x071c  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
03:52:32.0666 0x071c  MMCSS - ok
03:52:32.0681 0x071c  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
03:52:32.0681 0x071c  Modem - ok
03:52:32.0713 0x071c  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
03:52:32.0728 0x071c  monitor - ok
03:52:32.0759 0x071c  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
03:52:32.0759 0x071c  mouclass - ok
03:52:32.0791 0x071c  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
03:52:32.0791 0x071c  mouhid - ok
03:52:32.0806 0x071c  [ FC8771F45ECCCFD89684E38842539B9B, 806DDF2B4830CA866582FE74A521BB7DF26CA0E19013DAF584D3677FB48CC77A ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
03:52:32.0806 0x071c  mountmgr - ok
03:52:32.0884 0x071c  [ 5C2B2F10C847834C6DA4E680A4093BA3, 0222EBC8789765613184F47339A1DBD118ED209B72BC5565A8A7D4FB4CCF5418 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
03:52:32.0900 0x071c  MozillaMaintenance - ok
03:52:32.0931 0x071c  [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0, D3D903EEA465D77345AAC9B9F02CDEADF4831212EA2DE4FCA33BEE26EBB47420 ] mpio            C:\Windows\system32\drivers\mpio.sys
03:52:32.0931 0x071c  mpio - ok
03:52:32.0962 0x071c  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
03:52:32.0962 0x071c  mpsdrv - ok
03:52:33.0025 0x071c  [ 9835584E999D25004E1EE8E5F3E3B881, 71798B0CBE9AE69F1F29B845319019C69EC7F415CBABB3B87DDE92C360675021 ] MpsSvc          C:\Windows\system32\mpssvc.dll
03:52:33.0040 0x071c  MpsSvc - ok
03:52:33.0056 0x071c  [ CEB46AB7C01C9F825F8CC6BABC18166A, AA98898204FC58878502C170FE6ED8BA681396DDD8BF3689D0C3642DEA87BEF8 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
03:52:33.0071 0x071c  MRxDAV - ok
03:52:33.0103 0x071c  [ B272B4C3E085EA860C12F2E4FAF2FFA2, DA99D8223D9FB7BFA52E66B73D1E1AA47B76B45A649400F7898E8D65D8672E52 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
03:52:33.0103 0x071c  mrxsmb - ok
03:52:33.0134 0x071c  [ 9AC33EF26C8A3AD0F117D00EB7301D03, 403445B07DC55F9DF98CA11AC87D4231187A2472A4E107786A5845B213355F0A ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
03:52:33.0149 0x071c  mrxsmb10 - ok
03:52:33.0181 0x071c  [ E0ABDB5ED7E199E242A7D028E76C1D3A, 4014A1F0720F6D15A2FB0CF4F1F970595BC29929F92F461CDD68E4513F49563E ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
03:52:33.0181 0x071c  mrxsmb20 - ok
03:52:33.0212 0x071c  [ 012C5F4E9349E711E11E0F19A8589F0A, 208B92DFCF7AD43202660FBBC9FF5E03AEDBEE38178FF3628EB74CB6CD37C584 ] msahci          C:\Windows\system32\drivers\msahci.sys
03:52:33.0227 0x071c  msahci - ok
03:52:33.0243 0x071c  [ 55055F8AD8BE27A64C831322A780A228, C2C9FD1F61302997117B1CD0835E8234405BB80084065ED05363B77868397304 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
03:52:33.0259 0x071c  msdsm - ok
03:52:33.0290 0x071c  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
03:52:33.0305 0x071c  MSDTC - ok
03:52:33.0337 0x071c  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
03:52:33.0337 0x071c  Msfs - ok
03:52:33.0352 0x071c  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
03:52:33.0352 0x071c  mshidkmdf - ok
03:52:33.0383 0x071c  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
03:52:33.0383 0x071c  msisadrv - ok
03:52:33.0430 0x071c  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
03:52:33.0446 0x071c  MSiSCSI - ok
03:52:33.0446 0x071c  msiserver - ok
03:52:33.0493 0x071c  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
03:52:33.0493 0x071c  MSKSSRV - ok
03:52:33.0524 0x071c  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
03:52:33.0524 0x071c  MSPCLOCK - ok
03:52:33.0555 0x071c  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
03:52:33.0555 0x071c  MSPQM - ok
03:52:33.0586 0x071c  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
03:52:33.0586 0x071c  MsRPC - ok
03:52:33.0617 0x071c  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
03:52:33.0617 0x071c  mssmbios - ok
03:52:33.0633 0x071c  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
03:52:33.0633 0x071c  MSTEE - ok
03:52:33.0649 0x071c  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
03:52:33.0664 0x071c  MTConfig - ok
03:52:33.0680 0x071c  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
03:52:33.0680 0x071c  Mup - ok
03:52:33.0727 0x071c  [ 61D57A5D7C6D9AFE10E77DAE6E1B445E, D252248532142E9E2332DA693BC51B795102CA938B568FF04981E98B19BFBC5C ] napagent        C:\Windows\system32\qagentRT.dll
03:52:33.0742 0x071c  napagent - ok
03:52:33.0789 0x071c  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
03:52:33.0805 0x071c  NativeWifiP - ok
03:52:33.0851 0x071c  [ E7C54812A2AAF43316EB6930C1FFA108, C8A6FC1957FA29A3B372132FEA9145538BC767044A11D77316D3D1A3EAA60630 ] NDIS            C:\Windows\system32\drivers\ndis.sys
03:52:33.0883 0x071c  NDIS - ok
03:52:33.0914 0x071c  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
03:52:33.0914 0x071c  NdisCap - ok
03:52:33.0945 0x071c  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
03:52:33.0945 0x071c  NdisTapi - ok
03:52:33.0961 0x071c  [ D8A65DAFB3EB41CBB622745676FCD072, 874D3C3D247C4A309DA813DB1D2EDB0037D3C489824BD5FE95B0C20699764EF7 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
03:52:33.0976 0x071c  Ndisuio - ok
03:52:33.0992 0x071c  [ 38FBE267E7E6983311179230FACB1017, CFD1CBCA59650795C030DB30E5795B37C11C736E14003AE1DAB081BA5C0C9B14 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
03:52:33.0992 0x071c  NdisWan - ok
03:52:34.0023 0x071c  [ A4BDC541E69674FBFF1A8FF00BE913F2, 18CCFD063E9870B8B6958715BC0414C4D920AE63528EA1E9D7E30F7138918FFA ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
03:52:34.0023 0x071c  NDProxy - ok
03:52:34.0054 0x071c  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
03:52:34.0054 0x071c  NetBIOS - ok
03:52:34.0085 0x071c  [ 280122DDCF04B378EDD1AD54D71C1E54, F98B2ADE34F7E67C7C06C1D0FFB80ECBC353D044D4B4784CD952910345DC2ED0 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
03:52:34.0101 0x071c  NetBT - ok
03:52:34.0101 0x071c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] Netlogon        C:\Windows\system32\lsass.exe
03:52:34.0117 0x071c  Netlogon - ok
03:52:34.0148 0x071c  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
03:52:34.0163 0x071c  Netman - ok
03:52:34.0210 0x071c  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
03:52:34.0241 0x071c  NetMsmqActivator - ok
03:52:34.0273 0x071c  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
03:52:34.0273 0x071c  NetPipeActivator - ok
03:52:34.0304 0x071c  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
03:52:34.0335 0x071c  netprofm - ok
03:52:34.0351 0x071c  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
03:52:34.0351 0x071c  NetTcpActivator - ok
03:52:34.0366 0x071c  [ 5243CFC2E7161C91C2B355240035B9E4, CFD77485A9D7BC47F3A9C53D73B2AE2D5D04B90ED38628F3124EA569F4DE969E ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
03:52:34.0366 0x071c  NetTcpPortSharing - ok
03:52:34.0413 0x071c  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
03:52:34.0413 0x071c  nfrd960 - ok
03:52:34.0460 0x071c  [ 912084381D30D8B89EC4E293053F4710, 99B8CD043DF531D4B9725ED167F63CED220608B2FED3EE8250C217D15762DFD7 ] NlaSvc          C:\Windows\System32\nlasvc.dll
03:52:34.0475 0x071c  NlaSvc - ok
03:52:34.0491 0x071c  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
03:52:34.0491 0x071c  Npfs - ok
03:52:34.0522 0x071c  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
03:52:34.0522 0x071c  nsi - ok
03:52:34.0538 0x071c  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
03:52:34.0538 0x071c  nsiproxy - ok
03:52:34.0616 0x071c  [ 33C3093D09017CFE2E219F2472BFF6EB, DE46C7A53C3606F036DED1EE8A81B79CAF3171A7E97DA2F71712E2DA046A262E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
03:52:34.0663 0x071c  Ntfs - ok
03:52:34.0678 0x071c  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
03:52:34.0694 0x071c  Null - ok
03:52:34.0709 0x071c  [ 5B6F045D767234B0D9A656433C2D876C, 606AE4A77A744285740F7E4C5431CF568FA9420C9CCD41CE7D0EE39D8E9DF6AC ] nusb3hub        C:\Windows\system32\drivers\nusb3hub.sys
03:52:34.0725 0x071c  nusb3hub - ok
03:52:34.0756 0x071c  [ 9810633ABF57FED080E6DB5730F9E3C5, F12707BD5CF4A75FA19D83D0B7EE3C0835EB0422DB838DC70C965CFFA3410C5E ] nusb3xhc        C:\Windows\system32\drivers\nusb3xhc.sys
03:52:34.0772 0x071c  nusb3xhc - ok
03:52:34.0803 0x071c  [ AF2EEC9580C1D32FB7EAF105D9784061, 6DAAE3BCA048ACD7FFD26A65C793C461933179070F03855FE3DC3C01F968163A ] nvraid          C:\Windows\system32\drivers\nvraid.sys
03:52:34.0803 0x071c  nvraid - ok
03:52:34.0850 0x071c  [ 9283C58EBAA2618F93482EB5DABCEC82, 0BC119D4EAFDEA879E4C1CFBA5402499DBD1970EDF963C6D2034D4867C34D15E ] nvstor          C:\Windows\system32\drivers\nvstor.sys
03:52:34.0865 0x071c  nvstor - ok
03:52:34.0881 0x071c  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
03:52:34.0897 0x071c  nv_agp - ok
03:52:34.0928 0x071c  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
03:52:34.0928 0x071c  ohci1394 - ok
03:52:34.0975 0x071c  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
03:52:34.0990 0x071c  p2pimsvc - ok
03:52:35.0053 0x071c  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
03:52:35.0084 0x071c  p2psvc - ok
03:52:35.0099 0x071c  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\drivers\parport.sys
03:52:35.0099 0x071c  Parport - ok
03:52:35.0131 0x071c  [ BF8F6AF06DA75B336F07E23AEF97D93B, 2F2C4314872732550A112BFF2F803484D4A3D697F0D69D352350CE208FD8A1A4 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
03:52:35.0131 0x071c  partmgr - ok
03:52:35.0162 0x071c  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\drivers\parvdm.sys
03:52:35.0162 0x071c  Parvdm - ok
03:52:35.0193 0x071c  [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc          C:\Windows\System32\pcasvc.dll
03:52:35.0209 0x071c  PcaSvc - ok
03:52:35.0240 0x071c  [ 673E55C3498EB970088E812EA820AA8F, 1F81315664B8CBFDD569416C0ECCE4C6251F34577313A0858AB46609781303B5 ] pci             C:\Windows\system32\drivers\pci.sys
03:52:35.0240 0x071c  pci - ok
03:52:35.0271 0x071c  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
03:52:35.0271 0x071c  pciide - ok
03:52:35.0287 0x071c  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
03:52:35.0302 0x071c  pcmcia - ok
03:52:35.0318 0x071c  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
03:52:35.0318 0x071c  pcw - ok
03:52:35.0365 0x071c  [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
03:52:35.0396 0x071c  PEAUTH - ok
03:52:35.0458 0x071c  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
03:52:35.0505 0x071c  PeerDistSvc - ok
03:52:35.0614 0x071c  [ 414BBA67A3DED1D28437EB66AEB8A720, D6DF254E2615FA402044824DCD9004F579FC0DF74B90E44C99D5F0253CF8AD88 ] pla             C:\Windows\system32\pla.dll
03:52:35.0677 0x071c  pla - ok
03:52:35.0739 0x071c  [ 92DC6E68D2C856C5C2F21AE9E22112B8, EFAA27886A05E57E629A9EFC3671D9D64144795EDF55438A676F5B43E59BE3FC ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
03:52:35.0770 0x071c  PlugPlay - ok
03:52:35.0801 0x071c  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
03:52:35.0801 0x071c  PNRPAutoReg - ok
03:52:35.0833 0x071c  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
03:52:35.0848 0x071c  PNRPsvc - ok
03:52:35.0895 0x071c  [ 53946B69BA0836BD95B03759530C81EC, 7F14A34635354CCA0F5342C8D9DF5A6AA1B94F6A508BD8834029E9BACF252920 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
03:52:35.0911 0x071c  PolicyAgent - ok
03:52:35.0942 0x071c  [ F87D30E72E03D579A5199CCB3831D6EA, B09328E89954584F97908FA5946376BA990B8C650DABCBF3CA3B08719937C694 ] Power           C:\Windows\system32\umpo.dll
03:52:35.0957 0x071c  Power - ok
03:52:35.0989 0x071c  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
03:52:35.0989 0x071c  PptpMiniport - ok
03:52:36.0020 0x071c  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\drivers\processr.sys
03:52:36.0020 0x071c  Processor - ok
03:52:36.0067 0x071c  [ 43CA4CCC22D52FB58E8988F0198851D0, DF67BD70D9D82677AE61244B4E54677A5008A7F5EB531DF2A7E7D33F1658EA78 ] ProfSvc         C:\Windows\system32\profsvc.dll
03:52:36.0082 0x071c  ProfSvc - ok
03:52:36.0098 0x071c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] ProtectedStorage C:\Windows\system32\lsass.exe
03:52:36.0098 0x071c  ProtectedStorage - ok
03:52:36.0129 0x071c  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
03:52:36.0129 0x071c  Psched - ok
03:52:36.0223 0x071c  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\drivers\ql2300.sys
03:52:36.0285 0x071c  ql2300 - ok
03:52:36.0301 0x071c  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
03:52:36.0316 0x071c  ql40xx - ok
03:52:36.0347 0x071c  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
03:52:36.0363 0x071c  QWAVE - ok
03:52:36.0394 0x071c  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
03:52:36.0394 0x071c  QWAVEdrv - ok
03:52:36.0410 0x071c  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
03:52:36.0425 0x071c  RasAcd - ok
03:52:36.0457 0x071c  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
03:52:36.0457 0x071c  RasAgileVpn - ok
03:52:36.0488 0x071c  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
03:52:36.0488 0x071c  RasAuto - ok
03:52:36.0519 0x071c  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
03:52:36.0535 0x071c  Rasl2tp - ok
03:52:36.0581 0x071c  [ CB9E04DC05EACF5B9A36CA276D475006, 4D8C0AEF1D4F84F375AD2BAF786C9F6C52316A3E655B913449E71AD7C0FCA56E ] RasMan          C:\Windows\System32\rasmans.dll
03:52:36.0581 0x071c  RasMan - ok
03:52:36.0613 0x071c  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
03:52:36.0613 0x071c  RasPppoe - ok
03:52:36.0644 0x071c  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
03:52:36.0659 0x071c  RasSstp - ok
03:52:36.0691 0x071c  [ D528BC58A489409BA40334EBF96A311B, C71E9A4B101DB6C3183B9F97B9098D73D6FE1B12C05C2EB3CE8A8041BEE6BA61 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
03:52:36.0706 0x071c  rdbss - ok
03:52:36.0737 0x071c  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
03:52:36.0737 0x071c  rdpbus - ok
03:52:36.0753 0x071c  [ 23DAE03F29D253AE74C44F99E515F9A1, 8FED93D10B2062F0526FE3508101F8FCF8F72DEB90AFB472EB7CBAE83A0EC430 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
03:52:36.0753 0x071c  RDPCDD - ok
03:52:36.0800 0x071c  [ B973FCFC50DC1434E1970A146F7E3885, BE797E5F5AE34D37F8DA1134CE94DD14DBE36D2BC405B97E992E2257848B7CA9 ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
03:52:36.0800 0x071c  RDPDR - ok
03:52:36.0831 0x071c  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
03:52:36.0831 0x071c  RDPENCDD - ok
03:52:36.0847 0x071c  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
03:52:36.0847 0x071c  RDPREFMP - ok
03:52:36.0909 0x071c  [ 68A0387F58E226DEEE23D9715955572A, F95BB1D2BB3E79AF47B1C715BB5E3003EEF888AAA963F46F4A2FE8AFBD4F37A4 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
03:52:36.0909 0x071c  RdpVideoMiniport - ok
03:52:36.0940 0x071c  [ 288B06960D78428FF89E811632684E20, 82FB13C2749637E172381C9C205080921A45453191B6246C5D3FE946A06D17F5 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
03:52:36.0940 0x071c  RDPWD - ok
03:52:36.0971 0x071c  [ 518395321DC96FE2C9F0E96AC743B656, 5F6A0880B4F3EE7196259EA362DA9554B0687B0236F9A8E5CF7A4A77F01F1776 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
03:52:36.0987 0x071c  rdyboost - ok
03:52:37.0018 0x071c  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
03:52:37.0018 0x071c  RemoteAccess - ok
03:52:37.0049 0x071c  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
03:52:37.0065 0x071c  RemoteRegistry - ok
03:52:37.0096 0x071c  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
03:52:37.0096 0x071c  RpcEptMapper - ok
03:52:37.0127 0x071c  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
03:52:37.0143 0x071c  RpcLocator - ok
03:52:37.0174 0x071c  [ 7660F01D3B38ACA1747E397D21D790AF, 04611B43705C064C2A8331F6D3F8E4530295694AE2C3E3EC3F62CFF4A5EFA88D ] RpcSs           C:\Windows\system32\rpcss.dll
03:52:37.0174 0x071c  RpcSs - ok
03:52:37.0252 0x071c  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
03:52:37.0252 0x071c  rspndr - ok
03:52:37.0315 0x071c  [ 282C64DEE8300FA717844ECC9BA5B27A, 59245166F8ABBA649962E0986090ACA1A1B6BE9767A89E09108BF16F3928B2F1 ] RTL8167         C:\Windows\system32\DRIVERS\Rt86win7.sys
03:52:37.0361 0x071c  RTL8167 - ok
03:52:37.0393 0x071c  [ 7FA7F2E249A5DCBB7970630E15E1F482, 9633B193F3FDA67BC551C6DCA4788AB83E9F45F77763EE579D02FE5D6B80DEDF ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
03:52:37.0393 0x071c  s3cap - ok
03:52:37.0408 0x071c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] SamSs           C:\Windows\system32\lsass.exe
03:52:37.0408 0x071c  SamSs - ok
03:52:37.0439 0x071c  [ 05D860DA1040F111503AC416CCEF2BCA, DAE2F37D09A5A42F945BC8E27E4EA2303521081783A80CEE7FEE7C5A1C2CFC5E ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
03:52:37.0439 0x071c  sbp2port - ok
03:52:37.0486 0x071c  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
03:52:37.0502 0x071c  SCardSvr - ok
03:52:37.0533 0x071c  [ 0693B5EC673E34DC147E195779A4DCF6, AF1B56FBF3ADABF94CD9DBA67586B8746DE135151F6B3D1B0EE315BC1E2DB670 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
03:52:37.0533 0x071c  scfilter - ok
03:52:37.0580 0x071c  [ A04BB13F8A72F8B6E8B4071723E4E336, E63287FF71C39CBF64C3347C455324C8437F9CF398153E269543588B65389502 ] Schedule        C:\Windows\system32\schedsvc.dll
03:52:37.0627 0x071c  Schedule - ok
03:52:37.0642 0x071c  [ 319C6B309773D063541D01DF8AC6F55F, 182F392FE839499D159A30A3CD04B5D0C87219930BFB1A7456880B7DA75B9820 ] SCPolicySvc     C:\Windows\System32\certprop.dll
03:52:37.0642 0x071c  SCPolicySvc - ok
03:52:37.0673 0x071c  [ 08236C4BCE5EDD0A0318A438AF28E0F7, 77727F963F63C4CEC11E7AAD5FB3836179701D512CA9436C3170B9E6A4E5F888 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
03:52:37.0689 0x071c  SDRSVC - ok
03:52:37.0720 0x071c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
03:52:37.0736 0x071c  secdrv - ok
03:52:37.0751 0x071c  [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon        C:\Windows\system32\seclogon.dll
03:52:37.0767 0x071c  seclogon - ok
03:52:37.0798 0x071c  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
03:52:37.0798 0x071c  SENS - ok
03:52:37.0845 0x071c  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
03:52:37.0845 0x071c  SensrSvc - ok
03:52:37.0876 0x071c  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
03:52:37.0876 0x071c  Serenum - ok
03:52:37.0907 0x071c  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
03:52:37.0907 0x071c  Serial - ok
03:52:37.0939 0x071c  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\drivers\sermouse.sys
03:52:37.0939 0x071c  sermouse - ok
03:52:37.0985 0x071c  [ 4AE380F39A0032EAB7DD953030B26D28, C8F5F2DD59574E966FDF3057867BB959A554BAB6FD5DC6F1427094A6BC2B2809 ] SessionEnv      C:\Windows\system32\sessenv.dll
03:52:37.0985 0x071c  SessionEnv - ok
03:52:38.0001 0x071c  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
03:52:38.0017 0x071c  sffdisk - ok
03:52:38.0032 0x071c  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
03:52:38.0032 0x071c  sffp_mmc - ok
03:52:38.0048 0x071c  [ 6D4CCAEDC018F1CF52866BBBAA235982, AAC41F5C97B3FE5A3DC0838457EB8CC9BB71FCA16D3EDBB67D603F0A9D46C131 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
03:52:38.0048 0x071c  sffp_sd - ok
03:52:38.0048 0x071c  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
03:52:38.0063 0x071c  sfloppy - ok
03:52:38.0110 0x071c  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
03:52:38.0126 0x071c  SharedAccess - ok
03:52:38.0173 0x071c  [ 414DA952A35BF5D50192E28263B40577, 9C9BAFB9880DA6CC728506A142BE124E186219610DCC3460657A3CA93C865DF1 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
03:52:38.0188 0x071c  ShellHWDetection - ok
03:52:38.0204 0x071c  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\drivers\sisagp.sys
03:52:38.0219 0x071c  sisagp - ok
03:52:38.0251 0x071c  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
03:52:38.0251 0x071c  SiSRaid2 - ok
03:52:38.0266 0x071c  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
03:52:38.0282 0x071c  SiSRaid4 - ok
03:52:38.0313 0x071c  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
03:52:38.0313 0x071c  Smb - ok
03:52:38.0375 0x071c  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
03:52:38.0375 0x071c  SNMPTRAP - ok
03:52:38.0391 0x071c  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
03:52:38.0407 0x071c  spldr - ok
03:52:38.0438 0x071c  [ 866A43013535DC8587C258E43579C764, B2BE846B5167A2ECD1E30C69A81385FCC6EAE6033394D08458A5583D311C4D82 ] Spooler         C:\Windows\System32\spoolsv.exe
03:52:38.0469 0x071c  Spooler - ok
03:52:38.0609 0x071c  [ CF87A1DE791347E75B98885214CED2B8, 7AF4E03D751C951A4E5FBA28200DABFE6B3BF055490163EEEEA84EBA4D0F368A ] sppsvc          C:\Windows\system32\sppsvc.exe
03:52:38.0765 0x071c  sppsvc - ok
03:52:38.0781 0x071c  [ B0180B20B065D89232A78A40FE56EAA6, 4D045B23AD58A8822BE9F20119744A8D47455469D54494745CEB099951DA60FF ] sppuinotify     C:\Windows\system32\sppuinotify.dll
03:52:38.0797 0x071c  sppuinotify - ok
03:52:38.0828 0x071c  [ 112127C3B2E64D7680CC39CD0A39DD7E, ABE8B868CFE0EF4DAF886517047DBFD5A9C964983FAA499AC086CCD45BA46366 ] srv             C:\Windows\system32\DRIVERS\srv.sys
03:52:38.0843 0x071c  srv - ok
03:52:38.0875 0x071c  [ E5DD784A4EE5EBC72A86C677C988FCDB, 5D54C9AF291F8047DD66C31671F279A5D7EE8BCB5E55640F5F976E16211F59DD ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
03:52:38.0906 0x071c  srv2 - ok
03:52:38.0937 0x071c  [ CDBE627E16CC9E98F343D73F8E81D258, 25A68A6F943FCBA79A0D97ABC5B2EAEEB65C268F1CB2DD445ABF7E2758DF2802 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
03:52:38.0937 0x071c  srvnet - ok
03:52:38.0968 0x071c  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
03:52:38.0984 0x071c  SSDPSRV - ok
03:52:39.0015 0x071c  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
03:52:39.0015 0x071c  SstpSvc - ok
03:52:39.0046 0x071c  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\drivers\stexstor.sys
03:52:39.0046 0x071c  stexstor - ok
03:52:39.0093 0x071c  [ E1FB3706030FB4578A0D72C2FC3689E4, A62EC9AA4514CAF2A10C0A3AEF7A36F593A7E7DA370A3F130C24E1B612E19427 ] StiSvc          C:\Windows\System32\wiaservc.dll
03:52:39.0124 0x071c  StiSvc - ok
03:52:39.0155 0x071c  [ 472AF0311073DCECEAA8FA18BA2BDF89, 089414057EB2047E42C96C1ACE79D509967461DC5A4D2836F63C04268637A3FC ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
03:52:39.0155 0x071c  storflt - ok
03:52:39.0187 0x071c  [ DCAFFD62259E0BDB433DD67B5BB37619, CBD12FF9BBF33D18B0F3D322B12EC62E7DF3BF45C6AD43D2E91FF4C4762E05D0 ] storvsc         C:\Windows\system32\drivers\storvsc.sys
03:52:39.0187 0x071c  storvsc - ok
03:52:39.0218 0x071c  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
03:52:39.0218 0x071c  swenum - ok
03:52:39.0265 0x071c  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
03:52:39.0280 0x071c  swprv - ok
03:52:39.0311 0x071c  [ F2AD8960812FD111E20E84659EF19D43, FAC91E940D3735738908447E58792C32E6F86427612114A624041B7213831105 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
03:52:39.0311 0x071c  Synth3dVsc - ok
03:52:39.0389 0x071c  [ 36650D618CA34C9D357DFD3D89B2C56F, 7C3774E53DCF32CB3A4B3504E32D2A651E18467FA0A6AC4C7993C696741B704B ] SysMain         C:\Windows\system32\sysmain.dll
03:52:39.0452 0x071c  SysMain - ok
03:52:39.0499 0x071c  [ 763FECDC3D30C815FE72DD57936C6CD1, 1A62C7E63E426D56894F4121C75D9C60FC9A14469ADBD0D6F0B94B8DE48CDA3E ] TabletInputService C:\Windows\System32\TabSvc.dll
03:52:39.0499 0x071c  TabletInputService - ok
03:52:39.0530 0x071c  [ 613BF4820361543956909043A265C6AC, FCFF02E466D2501630B452627FB218C01E5245A0921EE3D2117E7FD63AC7E98E ] TapiSrv         C:\Windows\System32\tapisrv.dll
03:52:39.0545 0x071c  TapiSrv - ok
03:52:39.0577 0x071c  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS             C:\Windows\System32\tbssvc.dll
03:52:39.0592 0x071c  TBS - ok
03:52:39.0670 0x071c  [ 37E8FA3779668837CA9E2C36D2415949, FDDA99B7501CDBC3032AA12FD8E929F5E3B47DA112D0F8A05E2D833E5609EDEA ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
03:52:39.0717 0x071c  Tcpip - ok
03:52:39.0795 0x071c  [ 37E8FA3779668837CA9E2C36D2415949, FDDA99B7501CDBC3032AA12FD8E929F5E3B47DA112D0F8A05E2D833E5609EDEA ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
03:52:39.0826 0x071c  TCPIP6 - ok
03:52:39.0857 0x071c  [ CCA24162E055C3714CE5A88B100C64ED, 9B7712E793B9478BA7A1EF71EA9CC03CCB9C4004C54EAA911F158958519EDCD9 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
03:52:39.0857 0x071c  tcpipreg - ok
03:52:39.0889 0x071c  [ 1CB91B2BD8F6DD367DFC2EF26FD751B2, 879E2827354BB21573AC6A7CCEB746D44214540687E6882FFCB4089546FBD954 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
03:52:39.0889 0x071c  TDPIPE - ok
03:52:39.0920 0x071c  [ 2C10395BAA4847F83042813C515CC289, CBC058AE2EB6AA5905F9D2EF52573E1C06330462952E6D6E7083F8DB2C441E3E ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
03:52:39.0920 0x071c  TDTCP - ok
03:52:39.0935 0x071c  [ B459575348C20E8121D6039DA063C704, 1B4328A9EA39FF5A57F258E02254D04B73455F1DF7C997C13702A8B2F12D0347 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
03:52:39.0935 0x071c  tdx - ok
03:52:39.0982 0x071c  [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20, 0D81B427720637882077C5024D738191F858FC734ED040697872D906351EF663 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
03:52:39.0982 0x071c  TermDD - ok
03:52:40.0029 0x071c  [ 052306FD76793D5D5AB5D9891FD1ADBB, A590F01A42EC979664044B811E7C98F58D6A23AA025B5A1DD0E5F63BF70B2649 ] terminpt        C:\Windows\system32\drivers\terminpt.sys
03:52:40.0029 0x071c  terminpt - ok
03:52:40.0076 0x071c  [ 382C804C92811BE57829D8E550A900E2, 5F52C2E7902024CF1C9CC0069F411C3F19CCA3DB209F437FA0F3932D4898EB50 ] TermService     C:\Windows\System32\termsrv.dll
03:52:40.0107 0x071c  TermService - ok
03:52:40.0138 0x071c  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
03:52:40.0154 0x071c  Themes - ok
03:52:40.0169 0x071c  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
03:52:40.0169 0x071c  THREADORDER - ok
03:52:40.0216 0x071c  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
03:52:40.0216 0x071c  TrkWks - ok
03:52:40.0279 0x071c  [ 2C49B175AEE1D4364B91B531417FE583, 6C7995E18F84E465C376D1D5F153C15ACB66CDEA86EE5BF186677F572E7E129B ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
03:52:40.0279 0x071c  TrustedInstaller - ok
03:52:40.0325 0x071c  [ 254BB140EEE3C59D6114C1A86B636877, EE09D62E90407A40278F2136F640DAB16A4E2BF57D4FB6E05F92CA9CC9CF57C0 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
03:52:40.0325 0x071c  tssecsrv - ok
03:52:40.0357 0x071c  [ FD1D6C73E6333BE727CBCC6054247654, 6F7B9AE1A5986204DB3348D13B303F30FC17624939DA74D6BD114FAEED0FB30E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
03:52:40.0357 0x071c  TsUsbFlt - ok
03:52:40.0388 0x071c  [ 01246F0BAAD7B68EC0F472AA41E33282, 51F975AF029AD015576FFFA3E88F5DBB8B40C7CD30ECDEDE8AFABCB08C954199 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
03:52:40.0388 0x071c  TsUsbGD - ok
03:52:40.0403 0x071c  [ 045ACB987C650D8186C6B4A692223860, C1CDDF7DABAE531C53290C7C70F35DD65751B399D269711865AD65F9E4E43B0B ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
03:52:40.0419 0x071c  tsusbhub - ok
03:52:40.0435 0x071c  [ B2FA25D9B17A68BB93D58B0556E8C90D, 0146931B733CAB1CD87F94C35F97E110D6ED6C55EAFF03345400A29AEDE99BDE ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
03:52:40.0450 0x071c  tunnel - ok
03:52:40.0450 0x071c  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
03:52:40.0466 0x071c  uagp35 - ok
03:52:40.0497 0x071c  [ EE43346C7E4B5E63E54F927BABBB32FF, BAD6FC3BEE45E644D5A6A0A31428F5B2AEC72A0AA0C74EF8177B1FE23EEF3AA9 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
03:52:40.0513 0x071c  udfs - ok
03:52:40.0559 0x071c  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
03:52:40.0559 0x071c  UI0Detect - ok
03:52:40.0591 0x071c  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
03:52:40.0591 0x071c  uliagpkx - ok
03:52:40.0622 0x071c  [ D295BED4B898F0FD999FCFA9B32B071B, D4130DB4AE76EE6DC0B8E7A4FEF5CB8B26EBD822C21021F6FA78FD29C1E211C2 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
03:52:40.0622 0x071c  umbus - ok
03:52:40.0653 0x071c  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\drivers\umpass.sys
03:52:40.0653 0x071c  UmPass - ok
03:52:40.0700 0x071c  [ 409994A8EACEEE4E328749C0353527A0, FFC57B647147DE2957A7DE4B330CC534DE7AC892A2FCE3BB164F7A516CAB1B56 ] UmRdpService    C:\Windows\System32\umrdp.dll
03:52:40.0700 0x071c  UmRdpService - ok
03:52:40.0731 0x071c  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
03:52:40.0762 0x071c  upnphost - ok
03:52:40.0793 0x071c  [ 7E72E7D7E0757D59481D530FD2B0BFAE, 288CAC9F4AC09DEB2B30C6E3A6ACF8D62A75576F62F0EC159D5E1B257419E9DC ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
03:52:40.0809 0x071c  usbccgp - ok
03:52:40.0825 0x071c  [ 04EC7CEC62EC3B6D9354EEE93327FC82, 6CB41D8644618A5F701F6CA91FB65BB94AA83EA48992133B5262DC539B334B2E ] usbcir          C:\Windows\system32\drivers\usbcir.sys
03:52:40.0825 0x071c  usbcir - ok
03:52:40.0856 0x071c  [ CFBCE999C057D78979A181C9C60F208E, D60698EAA8A085214D5945818B0863976CF116EBE523046C344AF4E9392FDF80 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
03:52:40.0856 0x071c  usbehci - ok
03:52:40.0903 0x071c  [ 9D22AAD9AC6A07C691A1113E5F860868, AC34D36DBB5649650FCD873A792CA1387AE841D4C46781C63C0D29834F9B58E9 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
03:52:40.0918 0x071c  usbhub - ok
03:52:40.0965 0x071c  [ A6FB7957EA7AFB1165991E54CE934B74, 1CE83D9E3276AE380F720C7700A17D58A37A2A77FD72DA69EE0C756B88DB3689 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
03:52:40.0965 0x071c  usbohci - ok
03:52:40.0996 0x071c  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\drivers\usbprint.sys
03:52:40.0996 0x071c  usbprint - ok
03:52:41.0012 0x071c  [ BF63EBFC6979FEFB2BC03DF7989A0C1A, AFEF764A3E5D52CDBB5074F0E87F2B5EBCDF8D9B6E8F88EE235602B80145BE31 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
03:52:41.0012 0x071c  USBSTOR - ok
03:52:41.0027 0x071c  [ 78780C3EBCE17405B1CCD07A3A8A7D72, FBFF3111E22EE0B4BCAFA81F89AAE985135BFF48EEFD130C09B49CCF8A9946B9 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
03:52:41.0043 0x071c  usbuhci - ok
03:52:41.0074 0x071c  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
03:52:41.0074 0x071c  UxSms - ok
03:52:41.0105 0x071c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] VaultSvc        C:\Windows\system32\lsass.exe
03:52:41.0105 0x071c  VaultSvc - ok
03:52:41.0137 0x071c  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
03:52:41.0137 0x071c  vdrvroot - ok
03:52:41.0183 0x071c  [ C3CD30495687C2A2F66A65CA6FD89BE9, 582E4706C1D6A151020D14B26C7BF166F4E42BDD6E410F30EC452469270C5E9B ] vds             C:\Windows\System32\vds.exe
03:52:41.0215 0x071c  vds - ok
03:52:41.0246 0x071c  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
03:52:41.0246 0x071c  vga - ok
03:52:41.0277 0x071c  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
03:52:41.0277 0x071c  VgaSave - ok
03:52:41.0277 0x071c  VGPU - ok
03:52:41.0324 0x071c  [ 5461686CCA2FDA57B024547733AB42E3, 2721D0659AA890172FCAD4EC4D926B58ACD0EE4887DA51545DC7237420D5BF84 ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
03:52:41.0339 0x071c  vhdmp - ok
03:52:41.0355 0x071c  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\drivers\viaagp.sys
03:52:41.0371 0x071c  viaagp - ok
03:52:41.0386 0x071c  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\drivers\viac7.sys
03:52:41.0386 0x071c  ViaC7 - ok
03:52:41.0417 0x071c  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\drivers\viaide.sys
03:52:41.0417 0x071c  viaide - ok
03:52:41.0449 0x071c  [ C2F2911156FDC7817C52829C86DA494E, FE499F189B5016FCE0018AA3DE3970B72275B7B15F3D4D608117F6DDEC6B90DC ] vmbus           C:\Windows\system32\drivers\vmbus.sys
03:52:41.0464 0x071c  vmbus - ok
03:52:41.0495 0x071c  [ D4D77455211E204F370D08F4963063CE, 2018B2A84C73E0834200A594C02A9D28C74906F126DAD3CCDDFC9CD9A61669E2 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
03:52:41.0495 0x071c  VMBusHID - ok
03:52:41.0527 0x071c  [ 4C63E00F2F4B5F86AB48A58CD990F212, 9796BD4B9CFEEEAF57C5E332A732EFC2770B21F9B35301A5D202F5FC52C1E035 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
03:52:41.0527 0x071c  volmgr - ok
03:52:41.0558 0x071c  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
03:52:41.0573 0x071c  volmgrx - ok
03:52:41.0605 0x071c  [ F497F67932C6FA693D7DE2780631CFE7, DAE544ED99D2CF570DA31343BD87D2F856D0D13529656D38E1BF854C77F017F6 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
03:52:41.0620 0x071c  volsnap - ok
03:52:41.0667 0x071c  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
03:52:41.0667 0x071c  vsmraid - ok
03:52:41.0745 0x071c  [ 209A3B1901B83AEB8527ED211CCE9E4C, 1A431F6409F8E0531F600F8F988ECECECB902DA26BBAAF1DE74A5CAC29A7CB44 ] VSS             C:\Windows\system32\vssvc.exe
03:52:41.0792 0x071c  VSS - ok
03:52:41.0823 0x071c  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
03:52:41.0823 0x071c  vwifibus - ok
03:52:41.0854 0x071c  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
03:52:41.0870 0x071c  W32Time - ok
03:52:41.0901 0x071c  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
03:52:41.0901 0x071c  WacomPen - ok
03:52:41.0948 0x071c  [ A2C8ACDAB08B0E4C62EA54F23D4B6C54, 9B2B60B3AC1B9C9B63C1DE86DF2A68AA90E1F3851E1368F186201BB077A7536F ] wacomrouterfilter C:\Windows\system32\DRIVERS\wacomrouterfilter.sys
03:52:41.0963 0x071c  wacomrouterfilter - ok
03:52:41.0995 0x071c  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
03:52:41.0995 0x071c  WANARP - ok
03:52:42.0010 0x071c  [ 3C3C78515F5AB448B022BDF5B8FFDD2E, 35284174A42039C3C1FF8A3C8BC187A5E067C7782FC62D19749C2CB28C4E36C7 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
03:52:42.0010 0x071c  Wanarpv6 - ok
03:52:42.0088 0x071c  [ 691E3285E53DCA558E1A84667F13E15A, 12EDB66EF8FC100402BEA221F354D3BD5542F6DDF715B6E7D873D6BAE7E3D329 ] wbengine        C:\Windows\system32\wbengine.exe
03:52:42.0151 0x071c  wbengine - ok
03:52:42.0182 0x071c  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
03:52:42.0182 0x071c  WbioSrvc - ok
03:52:42.0213 0x071c  [ 34EEE0DFAADB4F691D6D5308A51315DC, A040A03E25A0C78B9E26F86C2DF95BCAF8E7EC90183CEB295615D3265350EBEE ] wcncsvc         C:\Windows\System32\wcncsvc.dll
03:52:42.0229 0x071c  wcncsvc - ok
03:52:42.0260 0x071c  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
03:52:42.0275 0x071c  WcsPlugInService - ok
03:52:42.0307 0x071c  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\drivers\wd.sys
03:52:42.0307 0x071c  Wd - ok
03:52:42.0353 0x071c  [ 9950E3D0F08141C7E89E64456AE7DC73, DE4B96812B305A63F5874BBF2DC40354FB45B3D96C1D33436E677099760BA448 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
03:52:42.0385 0x071c  Wdf01000 - ok
03:52:42.0400 0x071c  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost  C:\Windows\system32\wdi.dll
03:52:42.0416 0x071c  WdiServiceHost - ok
03:52:42.0431 0x071c  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost   C:\Windows\system32\wdi.dll
03:52:42.0431 0x071c  WdiSystemHost - ok
03:52:42.0463 0x071c  [ A9D880F97530D5B8FEE278923349929D, 6A293E2DB9B7C434EA8B4CD4861E11905D46BD60E014AE27B74DC8C4B2DDF834 ] WebClient       C:\Windows\System32\webclnt.dll
03:52:42.0478 0x071c  WebClient - ok
03:52:42.0525 0x071c  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
03:52:42.0525 0x071c  Wecsvc - ok
03:52:42.0556 0x071c  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
03:52:42.0572 0x071c  wercplsupport - ok
03:52:42.0603 0x071c  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
03:52:42.0619 0x071c  WerSvc - ok
03:52:42.0634 0x071c  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
03:52:42.0634 0x071c  WfpLwf - ok
03:52:42.0681 0x071c  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
03:52:42.0681 0x071c  WIMMount - ok
03:52:42.0759 0x071c  [ 3FAE8F94296001C32EAB62CD7D82E0FD, 180FAECC426CF8F46700C855022E5865D528B1A20686F96D11080AB2FE2E0430 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
03:52:42.0790 0x071c  WinDefend - ok
03:52:42.0821 0x071c  WinHttpAutoProxySvc - ok
03:52:42.0868 0x071c  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
03:52:42.0884 0x071c  Winmgmt - ok
03:52:42.0962 0x071c  [ 1B91CD34EA3A90AB6A4EF0550174F4CC, 5B6618615EBFBA594C945AD35F5C68DA8C6053892B6D12D626BB6120910D80DC ] WinRM           C:\Windows\system32\WsmSvc.dll
03:52:43.0024 0x071c  WinRM - ok
03:52:43.0118 0x071c  [ A67E5F9A400F3BD1BE3D80613B45F708, E170A8BD31A779403DC9C43ED6483DA8E186512D3EE700B87F6BA292E284E367 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
03:52:43.0118 0x071c  WinUsb - ok
03:52:43.0196 0x071c  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
03:52:43.0227 0x071c  Wlansvc - ok
03:52:43.0258 0x071c  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
03:52:43.0274 0x071c  WmiAcpi - ok
03:52:43.0305 0x071c  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
03:52:43.0321 0x071c  wmiApSrv - ok
03:52:43.0430 0x071c  [ 3B40D3A61AA8C21B88AE57C58AB3122E, 6C67DCB007C3CDF2EB0BBF5FD89C32CD7800C20F7166872F8C387BE262C5CD21 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
03:52:43.0477 0x071c  WMPNetworkSvc - ok
03:52:43.0523 0x071c  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
03:52:43.0523 0x071c  WPCSvc - ok
03:52:43.0555 0x071c  [ AA53356D60AF47EACC85BC617A4F3F66, 155CB8112AA382D841C1891750FF29EF4F1BF716CD9CDF0F2243209E2CCCAC98 ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
03:52:43.0570 0x071c  WPDBusEnum - ok
03:52:43.0601 0x071c  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
03:52:43.0601 0x071c  ws2ifsl - ok
03:52:43.0633 0x071c  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
03:52:43.0633 0x071c  wscsvc - ok
03:52:43.0664 0x071c  WSearch - ok
03:52:43.0773 0x071c  [ 3026418A50C5B4761BEFA632CEDB7406, 45C3B17793570B93D69037FD35C069390312B14E778852E7630C8DC63F02DDE8 ] wuauserv        C:\Windows\system32\wuaueng.dll
03:52:43.0851 0x071c  wuauserv - ok
03:52:43.0882 0x071c  [ E714A1C0354636837E20CCBF00888EE7, 0E31F0DB0AA318E3B0DACD26C0D3B11519B42F2A996AE580BE67FA8B3C42C436 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
03:52:43.0898 0x071c  WudfPf - ok
03:52:43.0929 0x071c  [ 1023EE888C9B47178C5293ED5336AB69, 62221C80C3F719A585266247482A64F7CB2F5EF69AFA8FA07D563CA2B0A37561 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
03:52:43.0945 0x071c  WUDFRd - ok
03:52:43.0976 0x071c  [ 8D1E1E529A2C9E9B6A85B55A345F7629, 64B637CFE2AF58A4F7CE6D8C3D603F8EFD527500F7137E0A37840313C712CA93 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
03:52:43.0991 0x071c  wudfsvc - ok
03:52:44.0023 0x071c  [ FF2D745B560F7C71B31F30F4D49F73D2, B2FBF7E5F58E34AC64FE6CF65800F1F07939279203BDE89375FAC92B884A4F37 ] WwanSvc         C:\Windows\System32\wwansvc.dll
03:52:44.0038 0x071c  WwanSvc - ok
03:52:44.0069 0x071c  ================ Scan global ===============================
03:52:44.0116 0x071c  [ DAB748AE0439955ED2FA22357533DDDB, 73EDD402C7479DDCE1998D0C7E99E1EC2974F64EFC33A851439CC85D09EDCDF9 ] C:\Windows\system32\basesrv.dll
03:52:44.0147 0x071c  [ D70FE45855CAD4C0C6B1C1426ABDEBA9, CFC87038B8C5A4BDD93B8CE6FE0C633C761D285A6B1DDC760799EA1B9DF180C0 ] C:\Windows\system32\winsrv.dll
03:52:44.0179 0x071c  [ D70FE45855CAD4C0C6B1C1426ABDEBA9, CFC87038B8C5A4BDD93B8CE6FE0C633C761D285A6B1DDC760799EA1B9DF180C0 ] C:\Windows\system32\winsrv.dll
03:52:44.0210 0x071c  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
03:52:44.0257 0x071c  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
03:52:44.0272 0x071c  [ Global ] - ok
03:52:44.0272 0x071c  ================ Scan MBR ==================================
03:52:44.0272 0x071c  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
03:52:44.0288 0x071c  \Device\Harddisk0\DR0 - ok
03:52:44.0303 0x071c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
03:52:44.0912 0x071c  \Device\Harddisk1\DR1 - ok
03:52:44.0927 0x071c  ================ Scan VBR ==================================
03:52:44.0943 0x071c  [ 44BE41EDAFB597992A739F66D84DAEAC ] \Device\Harddisk0\DR0\Partition1
03:52:44.0959 0x071c  \Device\Harddisk0\DR0\Partition1 - ok
03:52:44.0990 0x071c  [ 786B8F1249C19207183BB7DAF2EEF84B ] \Device\Harddisk0\DR0\Partition2
03:52:45.0005 0x071c  \Device\Harddisk0\DR0\Partition2 - ok
03:52:45.0021 0x071c  [ CBEEA9293E0784805F3F7A7585C03E56 ] \Device\Harddisk0\DR0\Partition3
03:52:45.0037 0x071c  \Device\Harddisk0\DR0\Partition3 - ok
03:52:45.0068 0x071c  [ 2C30D39476E05A18610C628363582BF1 ] \Device\Harddisk1\DR1\Partition1
03:52:45.0068 0x071c  \Device\Harddisk1\DR1\Partition1 - ok
03:52:45.0068 0x071c  [ 4916D179D109E59D1355A2E1FD013CBB ] \Device\Harddisk1\DR1\Partition2
03:52:45.0068 0x071c  \Device\Harddisk1\DR1\Partition2 - ok
03:52:45.0083 0x071c  [ 42259CFCCEFC5195E48A36AA19E4CC74 ] \Device\Harddisk1\DR1\Partition3
03:52:45.0099 0x071c  \Device\Harddisk1\DR1\Partition3 - ok
03:52:45.0130 0x071c  [ 05FCF92C1AF333D7441C6453F366FB70 ] \Device\Harddisk1\DR1\Partition4
03:52:45.0146 0x071c  \Device\Harddisk1\DR1\Partition4 - ok
03:52:45.0161 0x071c  [ A40072AC9F06581B1C319E1DE9E0A695 ] \Device\Harddisk1\DR1\Partition5
03:52:45.0193 0x071c  \Device\Harddisk1\DR1\Partition5 - ok
03:52:45.0208 0x071c  [ 3E8F98BD68A9B303F4C1A63A4F547B83 ] \Device\Harddisk1\DR1\Partition6
03:52:45.0224 0x071c  \Device\Harddisk1\DR1\Partition6 - ok
03:52:45.0224 0x071c  ================ Scan generic autorun ======================
03:52:45.0739 0x071c  [ 6E178947225BCAF1B727C80476C1425D, 07C5BF25C1B4EDF42FCC7DF834358A5AEC7A9EED19E5065C57EF60282A5B0C92 ] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
03:52:46.0207 0x071c  RTHDVCPL - ok
03:52:46.0331 0x071c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
03:52:46.0378 0x071c  Sidebar - ok
03:52:46.0425 0x071c  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
03:52:46.0441 0x071c  mctadmin - ok
03:52:46.0503 0x071c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files\Windows Sidebar\Sidebar.exe
03:52:46.0534 0x071c  Sidebar - ok
03:52:46.0550 0x071c  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
03:52:46.0565 0x071c  mctadmin - ok
03:52:46.0597 0x071c  Win FW state via NFP2: enabled
03:52:46.0597 0x071c  ============================================================
03:52:46.0597 0x071c  Scan finished
03:52:46.0597 0x071c  ============================================================
03:52:46.0628 0x06bc  Detected object count: 0
03:52:46.0628 0x06bc  Actual detected object count: 0
 



#6 kenari

kenari
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 25 March 2015 - 07:12 PM

here's the logs , i'm looking forward to here from you



#7 thisisu

thisisu

  • Malware Response Team
  • 2,525 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:02:52 AM

Posted 25 March 2015 - 10:12 PM

The logs look pretty clean overall. Some problems were addressed.

I'd like you to experiment with the PC as you normally would while in Normal Mode. 

While in Normal Mode, UNINSTALL these 2 programs:

 

  • KMP Media Toolbar
  • KMPlayer (remove only)

 

 

If another crash occurs, rerun the MiniToolBox tool and post the updated log.

 

I'm logging off for the night. Will be around to check on this in the morning (CST time)


Edited by thisisu, 25 March 2015 - 10:17 PM.


#8 kenari

kenari
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 26 March 2015 - 10:11 AM

MiniToolBox by Farbar  Version: 09-03-2015
Ran by user (administrator) on 26-03-2015 at 18:23:44
Running from "C:\Users\user\Desktop\New folder"
Microsoft Windows 7 Ultimate  Service Pack 1 (X86)
Model: OEM Manufacturer: OEM
Boot Mode: Minimal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Could not flush the DNS Resolver Cache: Function failed during execution.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================



# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : user-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
Server:  UnKnown
Address:  127.0.0.1

Ping request could not find host google.com. Please check the name and try again.
Server:  UnKnown
Address:  127.0.0.1

Ping request could not find host yahoo.com. Please check the name and try again.
Unable to contact IP driver. General failure.
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/26/2015 06:17:28 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (03/26/2015 06:23:09 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (03/26/2015 06:23:09 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (03/26/2015 06:23:09 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (03/26/2015 06:23:09 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (03/26/2015 06:23:09 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (03/26/2015 06:23:09 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (03/26/2015 06:23:08 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (03/26/2015 06:23:08 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (03/26/2015 06:23:09 PM) (Source: DCOM) (User: )
Description: 1084WSearch{9E175B6D-F52A-11D8-B9A5-505054503030}

Error: (03/26/2015 06:23:09 PM) (Source: DCOM) (User: )
Description: 1084WSearch{7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


Microsoft Office Sessions:
=========================
Error: (03/26/2015 06:17:28 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003



=========================== Installed Programs ============================
µTorrent (HKCU\...\uTorrent) (Version: 3.4.2.38656 - BitTorrent Inc.)
µTorrent (HKLM\...\uTorrent) (Version: 2.2.1 - )
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.07) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.07 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM\...\Adobe Shockwave Player) (Version: 12.1.5.155 - Adobe Systems, Inc.)
Any Video Converter Ultimate 5.7.6 (HKLM\...\Any Video Converter Ultimate_is1) (Version:  - Any-Video-Converter.com)
ASIO4ALL (HKLM\...\ASIO4ALL) (Version: 2.11 - Michael Tippach)
Audacity 2.0.6 (HKLM\...\Audacity_is1) (Version: 2.0.6 - Audacity Team)
Google Chrome (HKLM\...\Google Chrome) (Version: 41.0.2272.101 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
Guitar Pro 6 (HKLM\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version:  - Arobas Music)
Internet Download Manager (HKLM\...\Internet Download Manager) (Version:  - Tonec Inc.)
Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Java Auto Updater (Version: 2.8.25.18 - Oracle Corporation) Hidden
K-Lite Codec Pack 10.9.0 Full (HKLM\...\KLiteCodecPack_is1) (Version: 10.9.0 - )
KMP Media Toolbar (HKLM\...\{4B4D5056-3700-A76A-76A7-A758B70C1801}) (Version: 12.24.1.295 - APN, LLC)
KMPlayer (remove only) (HKLM\...\The KMPlayer) (Version: 3.9.1.130 - PandoraTV)
Malwarebytes Anti-Malware version 2.1.4.1018 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.4.1018 - Malwarebytes Corporation)
MetaTrader 4 (HKLM\...\MetaTrader 4) (Version: 4.00 - MetaQuotes Software Corp.)
Microsoft .NET Framework 4.5 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.42 False (Version: 8.0.50727.42 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.51011 False (Version: 8.0.51011 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.56336 False (Version: 8.0.56336 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.58299 False (Version: 8.0.58299 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.59193 False (Version: 8.0.59193 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 False (Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.0 False (Version: 9.0.21022 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 False (Version: 9.0.21022.218 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 False (Version: 9.0.30411 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 False (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 False (Version: 9.0.30729 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4048 False (Version: 9.0.30729.4048 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 False (Version: 9.0.30729.4148 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.5570 False (Version: 9.0.30729.5570 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.30319 False (Version: 10.0.30319 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 False (Version: 11.0.50727.1 - ?????????? ??????????) Hidden
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 False (Version: 11.0.51106.1 - ?????????? ??????????) Hidden
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 False (Version: 11.0.60610.1 - ?????????? ??????????) Hidden
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - ?????????? ??????????)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.50727 False (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 False (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 False (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.50727 False (Version: 11.0.50727 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 False (Version: 11.0.51106 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 False (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{2af972c7-13b0-4978-92a8-fee26a4fb4e9}) (Version: 12.0.21005.1 - ?????????? ??????????)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (Version: 12.0.21005 - Microsoft Corporation) Hidden
MofidTrader 5 (HKLM\...\MofidTrader 5) (Version: 5.00 - MetaQuotes Software Corp.)
Mozilla Firefox 36.0 (x86 en-US) (HKLM\...\Mozilla Firefox 36.0 (x86 en-US)) (Version: 36.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 33.1.1 - Mozilla)
OpenAL (HKLM\...\OpenAL) (Version:  - )
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
SegaVpn (HKLM\...\{DC6A5B6E-B6C0-4A97-8BA9-7D2A9A58245B}) (Version: 1.00.0000 - Vpn001)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeraCopy 2.22 (HKLM\...\TeraCopy_is1) (Version:  - Code Sector)
TseClient 2.0 (HKLM\...\{04D9E61D-DF2E-4823-B6C9-BFA2C90CB8D8}) (Version: 2.0.16 - TSETMC)
VLC media player 0.9.9 (HKLM\...\VLC media player) (Version: 0.9.9 - VideoLAN Team)
Windows Media Encoder 9 Series (HKLM\...\Windows Media Encoder 9) (Version:  - )
Windows Media Encoder 9 Series (Version: 9.00.2980 - Microsoft Corporation) Hidden
WinRAR 5.11 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)

========================= Devices: ================================

Name: WAN Miniport (PPTP)
Description: WAN Miniport (PPTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: PptpMiniport
Device ID: ROOT\MS_PPTPMINIPORT\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (SSTP)
Description: WAN Miniport (SSTP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasSstp
Device ID: ROOT\MS_SSTPMINIPORT\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Realtek PCIe FE Family Controller
Description: Realtek PCIe FE Family Controller
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Realtek
Service: RTL8167
Device ID: PCI\VEN_10EC&DEV_8136&SUBSYS_0DED10EC&REV_02\4&2398774E&0&00E1
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Microsoft ISATAP Adapter
Description: Microsoft ISATAP Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Device ID: ROOT\*ISATAP\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft Teredo Tunneling Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Device ID: ROOT\*TEREDO\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (IKEv2)
Description: WAN Miniport (IKEv2)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasAgileVpn
Device ID: ROOT\MS_AGILEVPNMINIPORT\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (L2TP)
Description: WAN Miniport (L2TP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: Rasl2tp
Device ID: ROOT\MS_L2TPMINIPORT\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Security Processor Loader Driver
Description: Security Processor Loader Driver
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: spldr
Device ID: ROOT\LEGACY_SPLDR\0000
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

Name: WAN Miniport (Network Monitor)
Description: WAN Miniport (Network Monitor)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Device ID: ROOT\MS_NDISWANBH\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Built-in Infrared Device
Description: Built-in Infrared Device
Class Guid: {6bdd1fc5-810f-11d0-bec7-08002be2092f}
Manufacturer: (Standard Infrared Port)
Service: irsir
Device ID: ACPI\PNP0510\4&12845B4&0
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (IP)
Description: WAN Miniport (IP)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Device ID: ROOT\MS_NDISWANIP\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Standard floppy disk controller
Description: Standard floppy disk controller
Class Guid: {4d36e969-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard floppy disk controllers)
Service: fdc
Device ID: ACPI\PNP0700\4&12845B4&0
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (IPv6)
Description: WAN Miniport (IPv6)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: NdisWan
Device ID: ROOT\MS_NDISWANIPV6\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: WAN Miniport (PPPOE)
Description: WAN Miniport (PPPOE)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: RasPppoe
Device ID: ROOT\MS_PPPOEMINIPORT\0000
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 45%
Total physical RAM: 1022.18 MB
Available physical RAM: 559.98 MB
Total Pagefile: 2046.18 MB
Available Pagefile: 1593.11 MB
Total Virtual: 2047.88 MB
Available Virtual: 1960.63 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:38.96 GB) (Free:14.54 GB) NTFS
2 Drive d: () (Fixed) (Total:97.65 GB) (Free:5.53 GB) NTFS
3 Drive e: (Local Disk) (Fixed) (Total:102.77 GB) (Free:14.93 GB) NTFS
4 Drive f: () (Fixed) (Total:97.65 GB) (Free:12.12 GB) NTFS
5 Drive g: () (Fixed) (Total:39.06 GB) (Free:2.71 GB) NTFS
6 Drive h: (ShowZzz) (Fixed) (Total:39.06 GB) (Free:4.27 GB) NTFS
7 Drive i: (Film zzz) (Fixed) (Total:87.89 GB) (Free:12.62 GB) NTFS
8 Drive j: (Discography) (Fixed) (Total:93.01 GB) (Free:13.17 GB) NTFS

========================= Users: ========================================

User accounts for \\

Administrator            Guest                    user                     

========================= Minidump Files ==================================

No minidump file found

========================= Restore Points ==================================


**** End of log ****
 



#9 thisisu

thisisu

  • Malware Response Team
  • 2,525 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:02:52 AM

Posted 26 March 2015 - 02:46 PM

Hi again
 
Something internet related seems to be the cause of these last few errors.
Let's check this out first. Try to do this while in Normal Mode.
 
Click the Start button (windows symbol in bottom right corner of taskbar), Right-mouse click on "Computer" and then select "Manage".
A new windows should appear called "Computer Management"
Look along the left hand side for "Device Manager" -- click it.
At the top, click "View" and then select "Show hidden devices"
Take a screenshot of the "Computer Management" now.
Here's how:
Select the Window (bring it to the front of your screen)
Now press and hold CTRL and ALT. Now press the PrtSc or Printscreen button.
 
 
Now open Microsoft Paint (Start - type: "mspaint" and press ENTER)
Now press CTRL+V to paste what you just captured earlier
Save this file and attach it to your next post.


#10 kenari

kenari
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:12:22 PM

Posted 26 March 2015 - 05:10 PM

i screwed up the whole thing !! fyi , i ran a memtest and no error were found then ran a software to test gpu and windows collapsed ! now i even can't run the pc in safe mode . looks like some windows file is missing .

one of my friend is back in town , hopefully i can use his USB to install a fresh windows and see what happens next .

btw ,  i'm pretty sure it's hardware related  cause first of all reboot takes a very long time .secondly i use two monitors (one at a time but both are connected to my graphic card ) but windows doesn't save my setting and i have to switch to my primary one  every time ! and my cd\dvd driver doesn't work . 

i keep posting here and i wish problems go away just with installing a new windows 7 .  thanks alot thisisu


Edited by kenari, 26 March 2015 - 05:11 PM.


#11 thisisu

thisisu

  • Malware Response Team
  • 2,525 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:02:52 AM

Posted 27 March 2015 - 03:49 AM

Sorry to hear that! Good luck with the new installation of Windows 7. Come back for further assistance if needed.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users