Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer is running extremely slow


  • Please log in to reply
15 replies to this topic

#1 RickJames

RickJames

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:28 AM

Posted 23 November 2015 - 09:20 PM

I'm not sure if it's malware or something or just the processor, but I'm getting lag for things like youtube videos or even playing old video games. Not sure where to start with fixing this, can anyone help?



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:28 AM

Posted 23 November 2015 - 09:29 PM

Hello Rick

I've moved this to the Am I infected forum to check that first.

3Al62Pm.pngMiniToolBox
  • Please download MiniToolBox, save it to your desktop and run it.
  • Checkmark the following checkboxes:
    • Flush DNS
    • Report IE Proxy Settings
    • Reset IE Proxy Settings
    • Report FF Proxy Settings
    • Reset FF Proxy Settings
    • List content of Hosts
    • List IP configuration
    • List Winsock Entries
    • List last 10 Event Viewer log
    • List Installed Programs
    • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
SXvL3ZF.pngTDSSKiller
  • Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is required, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
zcMPezJ.pngAdwCleaner
  • Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool. Vista/Windows 7/8 users right-click and select Run As Administrator
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it. If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.
lv0mVRW.pngJunkware Removal Tool
  • Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
cvMlKv6.pngESET Online Scanner
  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 RickJames

RickJames
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:28 AM

Posted 23 November 2015 - 09:34 PM

Working on the rest now but here is the Mini Toolbox Notepad file:

 

MiniToolBox by Farbar  Version: 02-11-2015
Ran by Jack (administrator) on 23-11-2015 at 21:32:57
Running from "C:\Users\Jack\Downloads"
Microsoft Windows 8.1  (X64)
Model: p7-1414 Manufacturer: Hewlett-Packard
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
========================= IP Configuration: ================================

Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30) = Ethernet (Connected)
802.11n Wireless LAN Card = Wi-Fi 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="wireless_6" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="wireless_0" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Jack
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : attlocal.net

Wireless LAN adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :



#4 RickJames

RickJames
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:28 AM

Posted 23 November 2015 - 09:42 PM

TDSSKiller Report

 

21:40:25.0220 0x2cd4  TDSS rootkit removing tool 3.1.0.6 Nov 16 2015 12:17:23
21:40:25.0220 0x2cd4  UEFI system
21:40:34.0612 0x2cd4  ============================================================
21:40:34.0612 0x2cd4  Current date / time: 2015/11/23 21:40:34.0612
21:40:34.0612 0x2cd4  SystemInfo:
21:40:34.0612 0x2cd4  
21:40:34.0612 0x2cd4  OS Version: 6.3.9600 ServicePack: 0.0
21:40:34.0612 0x2cd4  Product type: Workstation
21:40:34.0612 0x2cd4  ComputerName: JACK
21:40:34.0612 0x2cd4  UserName: Jack
21:40:34.0612 0x2cd4  Windows directory: C:\WINDOWS
21:40:34.0612 0x2cd4  System windows directory: C:\WINDOWS
21:40:34.0612 0x2cd4  Running under WOW64
21:40:34.0612 0x2cd4  Processor architecture: Intel x64
21:40:34.0612 0x2cd4  Number of processors: 4
21:40:34.0612 0x2cd4  Page size: 0x1000
21:40:34.0612 0x2cd4  Boot type: Normal boot
21:40:34.0612 0x2cd4  ============================================================
21:40:35.0049 0x2cd4  KLMD registered as C:\WINDOWS\system32\drivers\47275042.sys
21:40:35.0159 0x2cd4  System UUID: {B8A0FFD9-1E14-2F7D-FF8F-96AE5278F642}
21:40:35.0471 0x2cd4  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:40:35.0487 0x2cd4  ============================================================
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0:
21:40:35.0487 0x2cd4  GPT partitions:
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {1CB5D73D-9573-4AD9-A492-63C8A9BDFFE7}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1FF800
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {6BF5EEBE-EF4B-4FA8-8388-692AE2B39BC6}, Name: EFI system partition, StartLBA 0x200000, BlocksNum 0xB4000
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {269ABCA7-4D42-455C-85A8-B0BBDD6B7145}, Name: Microsoft reserved partition, StartLBA 0x2B4000, BlocksNum 0x40000
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {8EC6AB96-C56B-4117-AAA9-98C04FD7F7DC}, Name: Basic data partition, StartLBA 0x2F4000, BlocksNum 0x71C6C800
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {72D637DC-0873-4CAA-B222-A3B4ADF314DB}, Name: , StartLBA 0x71F60800, BlocksNum 0xE1000
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {3873D5CB-8737-4BEA-BDB8-54A69EEBC1FA}, Name: Basic data partition, StartLBA 0x72041800, BlocksNum 0x26C5000
21:40:35.0487 0x2cd4  MBR partitions:
21:40:35.0487 0x2cd4  ============================================================
21:40:35.0502 0x2cd4  C: <-> \Device\Harddisk0\DR0\Partition4
21:40:35.0549 0x2cd4  D: <-> \Device\Harddisk0\DR0\Partition6
21:40:35.0549 0x2cd4  ============================================================
21:40:35.0549 0x2cd4  Initialize success
21:40:35.0549 0x2cd4  ============================================================
21:41:30.0279 0x2e54  ============================================================
21:41:30.0279 0x2e54  Scan started
21:41:30.0279 0x2e54  Mode: Manual;
21:41:30.0279 0x2e54  ============================================================
21:41:30.0279 0x2e54  KSN ping started
21:41:34.0561 0x2e54  KSN ping finished: true
21:41:36.0077 0x2e54  ================ Scan system memory ========================
21:41:36.0077 0x2e54  System memory - ok
21:41:36.0077 0x2e54  ================ Scan services =============================
21:41:36.0280 0x2e54  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
21:41:36.0295 0x2e54  1394ohci - ok
21:41:36.0327 0x2e54  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
21:41:36.0327 0x2e54  3ware - ok
21:41:36.0373 0x2e54  [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
21:41:36.0389 0x2e54  ACPI - ok
21:41:36.0405 0x2e54  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
21:41:36.0405 0x2e54  acpiex - ok
21:41:36.0420 0x2e54  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
21:41:36.0420 0x2e54  acpipagr - ok
21:41:36.0452 0x2e54  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
21:41:36.0452 0x2e54  AcpiPmi - ok
21:41:36.0467 0x2e54  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
21:41:36.0467 0x2e54  acpitime - ok
21:41:36.0608 0x2e54  [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:41:36.0623 0x2e54  AdobeFlashPlayerUpdateSvc - ok
21:41:36.0670 0x2e54  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
21:41:36.0686 0x2e54  ADP80XX - ok
21:41:36.0717 0x2e54  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
21:41:36.0733 0x2e54  AeLookupSvc - ok
21:41:36.0780 0x2e54  [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD             C:\WINDOWS\system32\drivers\afd.sys
21:41:36.0780 0x2e54  AFD - ok
21:41:36.0811 0x2e54  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
21:41:36.0811 0x2e54  agp440 - ok
21:41:36.0827 0x2e54  [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
21:41:36.0827 0x2e54  ahcache - ok
21:41:36.0858 0x2e54  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG             C:\WINDOWS\System32\alg.exe
21:41:36.0873 0x2e54  ALG - ok
21:41:36.0905 0x2e54  [ FED8F396537A5E4FA58E6C8BA8070081, 0A14B143BB8C0AE0AA56A2197DFC5F7BDC43F0693F3A66E69C04043737AD11C1 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
21:41:36.0920 0x2e54  AMD External Events Utility - ok
21:41:36.0952 0x2e54  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
21:41:36.0952 0x2e54  AmdK8 - ok
21:41:37.0311 0x2e54  [ EB3F3FDC7D0EC927A4AB31F9F6235A7C, B10087C9C277065926884FA8D18A300C54B8FFDCE08A31EF4828AF2AC2685791 ] amdkmdag        C:\WINDOWS\system32\DRIVERS\atikmdag.sys
21:41:37.0608 0x2e54  amdkmdag - ok
21:41:37.0655 0x2e54  [ 160159231941801A458FEF8A73D494AC, E014C68232D5FA2216AD36B2BF0D3F51C821B8D0E7513F2F33DD2591F945E5C4 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
21:41:37.0671 0x2e54  amdkmdap - ok
21:41:37.0702 0x2e54  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
21:41:37.0702 0x2e54  AmdPPM - ok
21:41:37.0717 0x2e54  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
21:41:37.0717 0x2e54  amdsata - ok
21:41:37.0749 0x2e54  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
21:41:37.0749 0x2e54  amdsbs - ok
21:41:37.0764 0x2e54  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
21:41:37.0764 0x2e54  amdxata - ok
21:41:37.0796 0x2e54  [ E5F36F2FF6E8BC2E9E51655489EA753D, 83A7BA29D411C039511A9306C0136099572EE8E306E1C87207F3E721568C0136 ] AmUStor         C:\WINDOWS\system32\drivers\AmUStor.SYS
21:41:37.0796 0x2e54  AmUStor - ok
21:41:37.0874 0x2e54  [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
21:41:37.0874 0x2e54  AppHostSvc - ok
 



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:28 AM

Posted 23 November 2015 - 09:52 PM

Hello, it looks like you did not post these from minitoolbox

◦List IP configuration
◦List Winsock Entries

◦List Installed Programs
◦List Users, Partitions and Memory size.

Also the bottom half of the TSS LOG.. at least get me the last 10 or 20 lines.
thanks

Edited by boopme, 23 November 2015 - 09:52 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 RickJames

RickJames
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:28 AM

Posted 23 November 2015 - 09:54 PM

Here is the adware log:

 

# AdwCleaner v5.022 - Logfile created 23/11/2015 at 21:52:23
# Updated 22/11/2015 by Xplode
# Database : 2015-11-22.2 [Server]
# Operating system : Windows 8.1  (x64)
# Username : Jack - JACK
# Running from : C:\Users\Jack\Desktop\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\{1319c107-bf83-e537-1319-9c107bf8041e}
[-] Folder Deleted : C:\ProgramData\{2125870d-e084-b2e2-2125-5870de081c37}
[-] Folder Deleted : C:\Users\Jack\AppData\Roaming\BitLord
[-] Folder Deleted : C:\Users\Jack\Documents\BitLord

***** [ Files ] *****

[-] File Deleted : C:\WINDOWS\SysNative\drivers\SPPD.sys

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\9c9bfde5-76d7-431e-6f2c-c1037600d7f3
[-] Key Deleted : HKCU\Software\Classes\CLSID\{F28C2F70-47DE-4EA5-8F6D-7D1476CD1EF5}
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}]
[-] Key Deleted : HKCU\Software\APN PIP
[-] Key Deleted : HKCU\Software\WEBAPP
[-] Key Deleted : HKU\.DEFAULT\Software\AppDataLow\{12DA0E6F-5543-440C-BAA2-28BF01070AFA}
[!] Key Not Deleted : HKU\S-1-5-21-4168426606-3950190867-3445871251-1001\Software\APN PIP
[!] Key Not Deleted : HKU\S-1-5-21-4168426606-3950190867-3445871251-1001\Software\WEBAPP

***** [ Web browsers ] *****

[-] [C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\44p1lj6l.default\prefs.js] [Preference] Deleted : user_pref("extensions.oqvSEiJMlU9NJYRj.scode", "(function(){try{if(window.self.location.href.indexOf(\"qjr4qdY8rdwHpjrEqHY5qHUGqE\")>-1){return;}}catch(e){}try{var d=[[\"trianglecash.com\",\"acebook\"[...]
[-] [C:\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\44p1lj6l.default\prefs.js] [Preference] Deleted : user_pref("extensions.wecarereminder.merchHash", "{\"AFFILIATES\":{\"1-Sale-A-Day\":{\"name\":\"1 Sale A Day\",\"autordr\":1,\"n\":\"3\",\"td\":1.5},\"1and1Internet\":{\"name\":\"1&1 Internet Inc.\",\[...]
[-] [C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : aol.com
[-] [C:\Users\Jack\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : ask.com

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [2462 bytes] ##########
 



#7 RickJames

RickJames
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:28 AM

Posted 23 November 2015 - 09:57 PM

My mistake with the TDSS and the other one, I'll repost, here is TDSS:

 

21:40:25.0220 0x2cd4  TDSS rootkit removing tool 3.1.0.6 Nov 16 2015 12:17:23
21:40:25.0220 0x2cd4  UEFI system
21:40:34.0612 0x2cd4  ============================================================
21:40:34.0612 0x2cd4  Current date / time: 2015/11/23 21:40:34.0612
21:40:34.0612 0x2cd4  SystemInfo:
21:40:34.0612 0x2cd4  
21:40:34.0612 0x2cd4  OS Version: 6.3.9600 ServicePack: 0.0
21:40:34.0612 0x2cd4  Product type: Workstation
21:40:34.0612 0x2cd4  ComputerName: JACK
21:40:34.0612 0x2cd4  UserName: Jack
21:40:34.0612 0x2cd4  Windows directory: C:\WINDOWS
21:40:34.0612 0x2cd4  System windows directory: C:\WINDOWS
21:40:34.0612 0x2cd4  Running under WOW64
21:40:34.0612 0x2cd4  Processor architecture: Intel x64
21:40:34.0612 0x2cd4  Number of processors: 4
21:40:34.0612 0x2cd4  Page size: 0x1000
21:40:34.0612 0x2cd4  Boot type: Normal boot
21:40:34.0612 0x2cd4  ============================================================
21:40:35.0049 0x2cd4  KLMD registered as C:\WINDOWS\system32\drivers\47275042.sys
21:40:35.0159 0x2cd4  System UUID: {B8A0FFD9-1E14-2F7D-FF8F-96AE5278F642}
21:40:35.0471 0x2cd4  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:40:35.0487 0x2cd4  ============================================================
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0:
21:40:35.0487 0x2cd4  GPT partitions:
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {1CB5D73D-9573-4AD9-A492-63C8A9BDFFE7}, Name: Basic data partition, StartLBA 0x800, BlocksNum 0x1FF800
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {6BF5EEBE-EF4B-4FA8-8388-692AE2B39BC6}, Name: EFI system partition, StartLBA 0x200000, BlocksNum 0xB4000
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {269ABCA7-4D42-455C-85A8-B0BBDD6B7145}, Name: Microsoft reserved partition, StartLBA 0x2B4000, BlocksNum 0x40000
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {8EC6AB96-C56B-4117-AAA9-98C04FD7F7DC}, Name: Basic data partition, StartLBA 0x2F4000, BlocksNum 0x71C6C800
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {72D637DC-0873-4CAA-B222-A3B4ADF314DB}, Name: , StartLBA 0x71F60800, BlocksNum 0xE1000
21:40:35.0487 0x2cd4  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {3873D5CB-8737-4BEA-BDB8-54A69EEBC1FA}, Name: Basic data partition, StartLBA 0x72041800, BlocksNum 0x26C5000
21:40:35.0487 0x2cd4  MBR partitions:
21:40:35.0487 0x2cd4  ============================================================
21:40:35.0502 0x2cd4  C: <-> \Device\Harddisk0\DR0\Partition4
21:40:35.0549 0x2cd4  D: <-> \Device\Harddisk0\DR0\Partition6
21:40:35.0549 0x2cd4  ============================================================
21:40:35.0549 0x2cd4  Initialize success
21:40:35.0549 0x2cd4  ============================================================
21:41:30.0279 0x2e54  ============================================================
21:41:30.0279 0x2e54  Scan started
21:41:30.0279 0x2e54  Mode: Manual;
21:41:30.0279 0x2e54  ============================================================
21:41:30.0279 0x2e54  KSN ping started
21:41:34.0561 0x2e54  KSN ping finished: true
21:41:36.0077 0x2e54  ================ Scan system memory ========================
21:41:36.0077 0x2e54  System memory - ok
21:41:36.0077 0x2e54  ================ Scan services =============================
21:41:36.0280 0x2e54  [ E1832BD9FD7E0FC2DC9FA5935DE3E8C1, 41FF7418887AFC8B9C96EF21C5950DD342CC9E3C0D87AFD60A05B988C1D6CC23 ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
21:41:36.0295 0x2e54  1394ohci - ok
21:41:36.0327 0x2e54  [ AD508A1A46EC21B740AB31C28EFDFDB1, 9B1046CF0B80723149BD359B55CC0B8B3ABBEAA9038469F542A4C345C503FB02 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
21:41:36.0327 0x2e54  3ware - ok
21:41:36.0373 0x2e54  [ E796AE43DDD1844281DB4D57294D17C0, 21AE69615044A96041E46476BE814B52C22624B6C7EA6BFC77BB64F69C3C21F5 ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
21:41:36.0389 0x2e54  ACPI - ok
21:41:36.0405 0x2e54  [ AC8279D229398BCF05C3154ADCA86813, 083E86CBE53244D24C334DB1511C77025133AE7875191845764B890A8CA5AFA9 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
21:41:36.0405 0x2e54  acpiex - ok
21:41:36.0420 0x2e54  [ A8970D9BF23CD309E0403978A1B58F3F, 9946C8477104EEC7DB197E2222F9905307F101C398CCED4B5FD0F86A5622C791 ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
21:41:36.0420 0x2e54  acpipagr - ok
21:41:36.0452 0x2e54  [ 111A89C99C5B4F1A7BCE5F643DD86F65, 41A2E49FF443927D05F7EF638518108227852984E68D4663C8761178C0B84A45 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
21:41:36.0452 0x2e54  AcpiPmi - ok
21:41:36.0467 0x2e54  [ 5758387D68A20AE7D3245011B07E36E7, 77832E200E8B0D259552F6F60FE454A887E3EBBB9EA2F3590E6645289A04E293 ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
21:41:36.0467 0x2e54  acpitime - ok
21:41:36.0608 0x2e54  [ 280A526E8111AC6A5BCC1A059E1E0340, FB92DDAE29A097D148AB23D8A0BD2B9E662EC1DBF0DA8B716374D6919B4C646F ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:41:36.0623 0x2e54  AdobeFlashPlayerUpdateSvc - ok
21:41:36.0670 0x2e54  [ 7C1FDF1B48298CBA7CE4BDD4978951AD, 80F4D536E1231B30E836F72ADC8814AE6AA9FEC573FB5F3F965FAC8ABCCAF0F8 ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
21:41:36.0686 0x2e54  ADP80XX - ok
21:41:36.0717 0x2e54  [ BCD58DACAA1EAAADC115EDD940478F6D, F31613F583C302F62A00E6766B031531C9E193CAED563689B178BA257715B992 ] AeLookupSvc     C:\WINDOWS\System32\aelupsvc.dll
21:41:36.0733 0x2e54  AeLookupSvc - ok
21:41:36.0780 0x2e54  [ A460C3AF3755A2A79A3C8EFE72E147B5, 62CEA85DA53D86D3E7B5D79F94095C6126FFF3DEE1427BBF3DEF5EA366B4513B ] AFD             C:\WINDOWS\system32\drivers\afd.sys
21:41:36.0780 0x2e54  AFD - ok
21:41:36.0811 0x2e54  [ 7DFAEBA9AD62D20102B576D5CAC45EC8, 9FA5207335303D1E8E9A3C9E1FB82C09AD21B04382F69D777A67E48EE91D2093 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
21:41:36.0811 0x2e54  agp440 - ok
21:41:36.0827 0x2e54  [ FE14D249D39368CA62D8DA6BC94AC694, E1036E22BFBD3750FD2D3DA6AB939B2DD54E824F4BD3E6539EF0E45AB5453DD1 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
21:41:36.0827 0x2e54  ahcache - ok
21:41:36.0858 0x2e54  [ 14A45BE6F5678339F0EC5752D9849410, DD0F60E96FAC68FBD5B86382E541408C613BD0F871D0E0A1EF9AB6E7B26E545C ] ALG             C:\WINDOWS\System32\alg.exe
21:41:36.0873 0x2e54  ALG - ok
21:41:36.0905 0x2e54  [ FED8F396537A5E4FA58E6C8BA8070081, 0A14B143BB8C0AE0AA56A2197DFC5F7BDC43F0693F3A66E69C04043737AD11C1 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
21:41:36.0920 0x2e54  AMD External Events Utility - ok
21:41:36.0952 0x2e54  [ 7589DE749DB6F71A68489DCE04158729, 5F35EDD50737985595C9D6703237CA2ADE49AA5443331020899698EB5114A0FB ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
21:41:36.0952 0x2e54  AmdK8 - ok
21:41:37.0311 0x2e54  [ EB3F3FDC7D0EC927A4AB31F9F6235A7C, B10087C9C277065926884FA8D18A300C54B8FFDCE08A31EF4828AF2AC2685791 ] amdkmdag        C:\WINDOWS\system32\DRIVERS\atikmdag.sys
21:41:37.0608 0x2e54  amdkmdag - ok
21:41:37.0655 0x2e54  [ 160159231941801A458FEF8A73D494AC, E014C68232D5FA2216AD36B2BF0D3F51C821B8D0E7513F2F33DD2591F945E5C4 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
21:41:37.0671 0x2e54  amdkmdap - ok
21:41:37.0702 0x2e54  [ B46D2D89AFF8A9490FA8C98C7A5616E3, BE0765B5423B690E0F097FECD9717FAA95BFDFFDC6CF1B93DE5A19A1B7797879 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
21:41:37.0702 0x2e54  AmdPPM - ok
21:41:37.0717 0x2e54  [ D2BF2F94A47D332814910FD47C6BBCD2, FE273D77D119D958676E1197D9EA7B008E3B05C6192B1962A81D4223ED204C35 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
21:41:37.0717 0x2e54  amdsata - ok
21:41:37.0749 0x2e54  [ A8E04943C7BBA7219AA50400272C3C6E, 794C0BD12DF0392654E9A37AE4A24B5BE2D83F1F24F74DD48A1A0BF3AB8B1FF8 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
21:41:37.0749 0x2e54  amdsbs - ok
21:41:37.0764 0x2e54  [ CEA5F4F27CFC08E3A44D576811B35F50, 89DF64B81BD109BAABAE93A4603C1617241219F38DDAF325EFE6BD35FF6FD717 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
21:41:37.0764 0x2e54  amdxata - ok
21:41:37.0796 0x2e54  [ E5F36F2FF6E8BC2E9E51655489EA753D, 83A7BA29D411C039511A9306C0136099572EE8E306E1C87207F3E721568C0136 ] AmUStor         C:\WINDOWS\system32\drivers\AmUStor.SYS
21:41:37.0796 0x2e54  AmUStor - ok
21:41:37.0874 0x2e54  [ 9DCB42905F1EBF9CEC57EE5DF0BDA965, 4C888AAD0DDE01565FD7FBB6B70A500158CF2E4CECF9ADD4AFD302A993587269 ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
21:41:37.0874 0x2e54  AppHostSvc - ok
21:41:37.0921 0x2e54  [ 415DD71628795197F7AFC176CBADC74E, 5F0359053A6CD6EE239139E0E6F46E1FA9A73F017C0CE9B7BC052216B2C846EC ] AppID           C:\WINDOWS\system32\drivers\appid.sys
21:41:37.0921 0x2e54  AppID - ok
21:41:37.0952 0x2e54  [ 88358135810B9DFD830A9D3A8C3D149A, DF914DA3828EE2310895D156342E3B3DF5E8C6F6F9B851C359E82A1F48180D4B ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
21:41:37.0952 0x2e54  AppIDSvc - ok
21:41:37.0999 0x2e54  [ 680BFB820C5A943AB709BAA2B1EF27F2, A51D2A7976A762FE470C13C6D1BA0319A0FB19C9E66BF02AA44F83EAEC7130F8 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
21:41:37.0999 0x2e54  Appinfo - ok
21:41:38.0124 0x2e54  [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:41:38.0124 0x2e54  Apple Mobile Device - ok
21:41:38.0171 0x2e54  [ 35E28923A23ADABAA5A1B43256D0AB58, A5F3AF8BBEE58B2165BAFACC5FF8B167B55B020998D3D1565C2229ED8753B269 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
21:41:38.0186 0x2e54  AppReadiness - ok
21:41:38.0249 0x2e54  [ 573542B5E97772021B73E854DA861DAA, C3FD00FA28060F8D7CDFD455BBB5FF8239CB76DDFFF2BDAE6AA944674DD993D3 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
21:41:38.0280 0x2e54  AppXSvc - ok
21:41:38.0311 0x2e54  [ 65045784366F7EC5FB4E71BCF923187B, 53C215C64FF12E44B097F7CB88E8482438CE0ACBD3C68D8FD38BA0D0D8747FAA ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
21:41:38.0311 0x2e54  arcsas - ok
21:41:38.0405 0x2e54  [ F15AB80B867D3332D5DDFB0A05B9CE04, 5A16577106246AB5DCC04FE0A0B00B7C5702557B75F958721E4C00383AB99809 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:41:38.0405 0x2e54  aspnet_state - ok
21:41:38.0421 0x2e54  [ 3DB7721F06BC2FEDB25029EA23AB27DA, 221861148C66FE53E4D6EE49C6E656479AB5804A2D348A280A1CD8093E8AB788 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:41:38.0436 0x2e54  AsyncMac - ok
21:41:38.0452 0x2e54  [ 74B14192CF79A72F7536B27CB8814FBD, 0CF6BBB63FFE0C12777664D80B2797923844C8392D0FD81D7962EE5EE2C3C3D9 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
21:41:38.0452 0x2e54  atapi - ok
21:41:38.0483 0x2e54  [ 431FE56F5A2F5937994CB2DA330B47DB, E5AED551529A21494114959251FDF566802DD6D9B9D86A937A0EECE53338CAC7 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
21:41:38.0499 0x2e54  AudioEndpointBuilder - ok
21:41:38.0546 0x2e54  [ 0F03CC00645D7F841879A048787D6AC7, 3ECD2486157469F2EDB63D4868338D1445F2909153DF0AFFE432083730EEE3F5 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
21:41:38.0561 0x2e54  Audiosrv - ok
21:41:38.0592 0x2e54  [ 3C6ED74AF41DD1A5585CE5EF3D00915F, A742F576407776634E5A8E49C60023FFDF395DE0B2DE36662A23F85B79405ED2 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
21:41:38.0592 0x2e54  AxInstSV - ok
21:41:38.0639 0x2e54  [ A4A73F631FE2AA2826FBE4A399B04DEF, 973AACE8DC8DA669D0DF20F17EFDEEABB90AA046AC980948D16A62D39A606A79 ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
21:41:38.0639 0x2e54  b06bdrv - ok
21:41:38.0655 0x2e54  [ 8CC7F7E4AFCBA605921B137ED7992C68, 71406E6D6E9964740A6D90B05329D5492BB90AF40E0630CF2FBF4BA4BA14F2DD ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
21:41:38.0671 0x2e54  BasicDisplay - ok
21:41:38.0671 0x2e54  [ 38A82F4EE8C416A6744B6D30381ED768, 9EAAE5F43BA09359130AC04B1DCA0F5D4DF32ED89C02DC5CEB640918948847F7 ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
21:41:38.0671 0x2e54  BasicRender - ok
21:41:38.0686 0x2e54  [ C1ABB0F7E3BEA48A0417BDF6FF14AB21, 1CAC63A1A0FB9855A27EE977794576A860F6650C9EF7667FFB27F2A2FF721857 ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
21:41:38.0686 0x2e54  bcmfn2 - ok
21:41:38.0718 0x2e54  [ 4B6F61BD394DCEDA9B06D702836531C2, 83C739467BD9A00FE09BCE83BB9409EA2DA62FCDD2384F9EE98626226223E918 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
21:41:38.0733 0x2e54  BDESVC - ok
21:41:38.0764 0x2e54  [ EC19013E4CF87609534165DF897274D6, 8ED45537CF2D58D759A587CCBFDADD5580C7447B0C3B172CF19ECC7585E073FC ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
21:41:38.0764 0x2e54  Beep - ok
21:41:38.0827 0x2e54  [ 8F2AD111B47A190F325EE7495D3C1803, C61F1506E74A9EFBB61B8A06B30886B6E891C33211F755F30B924EBA202ECEC5 ] BFE             C:\WINDOWS\System32\bfe.dll
21:41:38.0843 0x2e54  BFE - ok
21:41:39.0046 0x2e54  [ FB0FAB0E2140FE8E17BAE727C15DBFBB, 227B7472ACE6C583AD67433080BCF57BFDC88F43BF8A56DA78BEB9D618572CA8 ] BHDrvx64        C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\BASHDefs\20150706.001\BHDrvx64.sys
21:41:39.0077 0x2e54  BHDrvx64 - ok
21:41:39.0155 0x2e54  [ 48554994279BFE17A3D2B00076D0CB1A, 6521B1EC0BC6B01F63976370D89FE7DC2E7404899F68B6FAC37A9173B9C5D489 ] BITS            C:\WINDOWS\System32\qmgr.dll
21:41:39.0171 0x2e54  BITS - ok
21:41:39.0249 0x2e54  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
21:41:39.0264 0x2e54  Bonjour Service - ok
21:41:39.0280 0x2e54  [ 6B4FFFDDC618FCF64473CAA86E305697, 29EA66071D5822920F5C50533673ADAB5204F8B25C11027AD27450D881F1142D ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
21:41:39.0280 0x2e54  bowser - ok
21:41:39.0311 0x2e54  [ FA601515FF2B59F25FDD8EDB1D2A1104, 21DFB53241F8E880F7546B9ADF38F47D6AD0782EC7F8F0284ED69DE7CEF7DCB9 ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
21:41:39.0311 0x2e54  BrokerInfrastructure - ok
21:41:39.0358 0x2e54  [ BC111AADACD0BF59D56547461D13AB6E, 91E3619930C29EE4B2683683888BA7EE3CF6B1DDB0C19A14E0880470CBE40EF4 ] Browser         C:\WINDOWS\System32\browser.dll
21:41:39.0358 0x2e54  Browser - ok
21:41:39.0389 0x2e54  [ A8F23D453A424FF4DE04989C4727ECC7, AE4A9081395C7379F1C947EF8243F7609F90C843E086B8E77E1A2C06E36D4381 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
21:41:39.0389 0x2e54  BthAvrcpTg - ok
21:41:39.0405 0x2e54  [ 272A62B660A48AEF366F8A1836CED19F, 78EFAC6B1B2313482329BBFFBF0DDA6462BD88E5BE3C817C5E8E0EAF3074C925 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
21:41:39.0421 0x2e54  BthHFEnum - ok
21:41:39.0436 0x2e54  [ 71FE2A48E4C93DDB9798C024880B6C07, 8E93DE29C61A5FA64216231228CB3C4A1A693FE87CAA2C070BCAD7BE2D8ED000 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
21:41:39.0436 0x2e54  bthhfhid - ok
21:41:39.0483 0x2e54  [ 9307A4B743D277C499CDA8E19E5687AC, 7A01989EC3D54581F292BDEDC9B9445F2ABD50165102617E3089BDD061C63A19 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
21:41:39.0483 0x2e54  BthHFSrv - ok
21:41:39.0499 0x2e54  [ EF4B9E7C9AD88C00C18A12B0D22D1894, 672537E75201E690D86CD65252B8AEF887C76EBD37AB0C419462D69164B350CC ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
21:41:39.0499 0x2e54  BTHMODEM - ok
21:41:39.0546 0x2e54  [ 043A0F37631BF453F16D478B71320F46, C368296B802984F438852927B8A40EA3F4205724A05828F3173F08EC17228356 ] bthserv         C:\WINDOWS\system32\bthserv.dll
21:41:39.0546 0x2e54  bthserv - ok
21:41:39.0608 0x2e54  [ 5A1C7DBDDB001BC6F1D1720E655445E2, 07A766C804D0709936FF18A2F67C49D6499BEF9CEEB1EF69F654A35268A11027 ] ccSet_NIS       C:\WINDOWS\system32\drivers\NISx64\1605040.018\ccSetx64.sys
21:41:39.0608 0x2e54  ccSet_NIS - ok
21:41:39.0640 0x2e54  [ 2FA6510E33F7DEFEC03658B74101A9B9, 61C8C8E3F09B427711464C974EE22E1E01C48E10DB54A4EC9901F482FC36C978 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
21:41:39.0640 0x2e54  cdfs - ok
21:41:39.0671 0x2e54  [ C6796EA22B513E3457514D92DCDB1A3D, 2B893F3950C6B913B934C2089B69F3B0B77F229AE1820907E598455CBB78139C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
21:41:39.0671 0x2e54  cdrom - ok
21:41:39.0702 0x2e54  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
21:41:39.0718 0x2e54  CertPropSvc - ok
21:41:39.0749 0x2e54  [ BE9936EDD3267FAAFF94A7835867F00B, 3CEEF2377D45ED38C7CD3CE4C746EC5EA7277EFEC728A5438F0EF5F62FC7C859 ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
21:41:39.0749 0x2e54  circlass - ok
21:41:39.0780 0x2e54  [ 8EB7E70C2D348FE2476A2E3F2D585E3D, 2B5D407FACF1D049261026CC552A7C93B028A661B0F4E959815EAE7670054127 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
21:41:39.0796 0x2e54  CLFS - ok
21:41:39.0811 0x2e54  [ 075CCE75090786F124573A788C8656E6, AA188CFF2F8EE2D9F50701AB2315D24E15D7715FD84F5054D3FC175D4BD35734 ] CLVirtualDrive  C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys
21:41:39.0811 0x2e54  CLVirtualDrive - ok
21:41:39.0858 0x2e54  [ EF6EF85DADC3184A10D8F2F7159973CB, 42FCB286CED95A5DEBC5C0C894FCBC4818A2C818BB71087142FB51A08A0BE96B ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
21:41:39.0858 0x2e54  CmBatt - ok
21:41:39.0921 0x2e54  [ 0DE32A0BB1FE2A773666572F79584520, C417C12476B937265BEDC9A2C3C3F6C50FD19AEC096362337B0921627A2A92EA ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
21:41:39.0952 0x2e54  CNG - ok
21:41:39.0968 0x2e54  [ 03AAED827C36F35D70900558B8274905, 8E44A23C6013FFAE7769F99CAA3B1D6288DE00A38937F9056903AC265B503AFA ] CompositeBus    C:\WINDOWS\System32\drivers\CompositeBus.sys
21:41:39.0968 0x2e54  CompositeBus - ok
21:41:39.0968 0x2e54  COMSysApp - ok
21:41:39.0983 0x2e54  [ A1FF7DFBFBE164CF92603C651D304DD2, 470ACE5A75E64FC62C950037201199857E974803625DC73BEDBCF6FA4DDD496C ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
21:41:39.0983 0x2e54  condrv - ok
21:41:40.0015 0x2e54  [ 6324F0D18FB52833BA64BC828E29054C, 04118FA1BDFC512F76E4A81FEF34C78B6BD98429DB1D65123B6802B4A1E30584 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
21:41:40.0030 0x2e54  CryptSvc - ok
21:41:40.0030 0x2e54  [ 315BA4BC19316D72B2E037534E048B93, 69613635DB23E6A935673B1025C2010ED3E195473D25368CF74234C4C36910BE ] dam             C:\WINDOWS\system32\drivers\dam.sys
21:41:40.0030 0x2e54  dam - ok
21:41:40.0108 0x2e54  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
21:41:40.0124 0x2e54  DcomLaunch - ok
21:41:40.0171 0x2e54  [ 95E1ABFB27F8A62ED764805775F0D2F3, 692865DA60C93481E01592883678B2C51FD9AC9A835DFB00A8E3F2DFEE7AB0ED ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
21:41:40.0186 0x2e54  defragsvc - ok
21:41:40.0233 0x2e54  [ FF086DEF5995558CCB1B5AAC2110195D, CED52FF01F9247BFDAFC5C7EFC538F8638146ED715574A422496EE0F846CB079 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
21:41:40.0249 0x2e54  DeviceAssociationService - ok
21:41:40.0265 0x2e54  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
21:41:40.0265 0x2e54  DeviceInstall - ok
21:41:40.0311 0x2e54  [ A03F362C5557E238CBFA914689C77248, BAD0A1124E6A384C15028FBE121ADF650F7716442555AD3737B9EA1F58A69246 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
21:41:40.0311 0x2e54  Dfsc - ok
21:41:40.0358 0x2e54  [ 3EEAADA3125431980E5804ED7143458A, 381E12C83E3211C255B321D35536F4049D67E31061F8D82155E4D4509E97F43D ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
21:41:40.0358 0x2e54  Dhcp - ok
21:41:40.0421 0x2e54  [ 21EDAD8188372C912B7BB9B1C6CB0D38, 4A102745DE8A2A82D2C069B30503BF9FF2312A035A82854F84EF9C27E3533CEE ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
21:41:40.0452 0x2e54  DiagTrack - ok
21:41:40.0468 0x2e54  [ 4D40C9B33F738797CF50E77CB7C53E85, 7BA341342A47DEB15B51971C97A5237ACD8BDAD9033F63DF0000892BE43F8E13 ] disk            C:\WINDOWS\system32\drivers\disk.sys
21:41:40.0483 0x2e54  disk - ok
21:41:40.0515 0x2e54  [ EB70A894708D1BC176AFD690FF06085F, 0DD2A97F5E1B38D1F7C0D44E50F09EA222B18B3B074CC9C8CD25A7526CB1A112 ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
21:41:40.0515 0x2e54  dmvsc - ok
21:41:40.0561 0x2e54  [ 33ADFB7453BF3271463712C4BCE61AD1, A1DB30F874BA7B2C4C653494D70B46B94BF7D39D0DD8559F6CA7A14B676FD617 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
21:41:40.0577 0x2e54  Dnscache - ok
21:41:40.0624 0x2e54  [ 811EACBCC7C51A03AE11F13CC27B2AB6, FAB94F84950FFB7D3649BAFB8D96D43B880D7FDE8D5B879472AE26C4BC4203B0 ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
21:41:40.0640 0x2e54  dot3svc - ok
21:41:40.0671 0x2e54  [ B99CB575986789A93A683DCF292A43A1, 6ACEA31C723B74003E106FC8303542FCC6DBC4952B6B523F6590D006BE57238D ] DPS             C:\WINDOWS\system32\dps.dll
21:41:40.0671 0x2e54  DPS - ok
21:41:40.0702 0x2e54  [ 00C594D5A1DBD22AD8B2902B9F6EFF94, 2920D62B5F7C49A8AFA80FCAD1E834BBAA670AEBDD7E6F21F0496D1D3CCB4E90 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
21:41:40.0702 0x2e54  drmkaud - ok
21:41:40.0733 0x2e54  [ 263625A4F616538EB867B6306A6590DB, 2A064720C247EAA3446EFDCC9E01D84CBA875905D78DFED0FBD62D1EE422D416 ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
21:41:40.0733 0x2e54  DsmSvc - ok
21:41:40.0827 0x2e54  [ E1BB0B6F00F470B451AB45EA13EBA0B3, 3A2FC2175B69A5EB98D6C2D563DBFDCB320647AB87A14E47FAE800423DCACDAB ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
21:41:40.0858 0x2e54  DXGKrnl - ok
21:41:40.0874 0x2e54  [ E253530BD5EDE28F1FF6AF93C4D8034D, 787A70C3E946348F066FB8EB81FCE60157217D93FD78ADC631B5835E8D76A253 ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
21:41:40.0890 0x2e54  Eaphost - ok
21:41:40.0999 0x2e54  [ 114BCFDF367FF37C3F1B0A96AF542E4D, D385BC1D91BC1406091C8C3691C07A90BD60EDE05B1384E5AA3506FCB909C857 ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
21:41:41.0077 0x2e54  ebdrv - ok
21:41:41.0124 0x2e54  [ 93EA893A8C2C561648A559E48C723412, 14F9AD8BCF423BC40F7B3D2D7BC0F795CD3C54800C854873BD170ADF2A735B64 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
21:41:41.0124 0x2e54  eeCtrl - ok
21:41:41.0171 0x2e54  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] EFS             C:\WINDOWS\System32\lsass.exe
21:41:41.0171 0x2e54  EFS - ok
21:41:41.0171 0x2e54  [ 43531A5993380CC5113242C29D265FD9, EE0076D96F7F3CF29884AC7A67C08A429115A7201354A1FB5DE45FD63ABB4960 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
21:41:41.0171 0x2e54  EhStorClass - ok
21:41:41.0202 0x2e54  [ 6F8E738A9505A388B1157FDDE7B3101B, 3696CA634102B41EEA11EB9DCA0B24439D8636AED4A7190C138C5E64A2EFB514 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
21:41:41.0202 0x2e54  EhStorTcgDrv - ok
21:41:41.0218 0x2e54  [ 8400C9E33B68C556BF63AEF490EB145C, A840DF1A27C935DD427E53C5D2FFFE79E612D0B4074CE26AA992DA62D4925806 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
21:41:41.0218 0x2e54  EraserUtilRebootDrv - ok
21:41:41.0233 0x2e54  [ DFFFAE1442BA4076E18EED5E406FA0D3, 329FC6FB8D14BEACDBE2A5D4C496EDEA485E838B1DF27566E278F8F8E0D8E82E ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
21:41:41.0233 0x2e54  ErrDev - ok
21:41:41.0311 0x2e54  [ F00C593994D57C75273F820653440536, 2DC986D9890EC907405FB2045E6F55ACC384169B45F0B56CCB1A953CF71D9A5D ] EventSystem     C:\WINDOWS\system32\es.dll
21:41:41.0343 0x2e54  EventSystem - ok
21:41:41.0374 0x2e54  [ 7729D294A555C7AEB281ED8E4D0E01E4, 7269E79D72CCE477AC108294D0DDFB59CF533B03C587599C5AB0507C43A0B6D4 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
21:41:41.0374 0x2e54  exfat - ok
21:41:41.0405 0x2e54  [ 7C4E0D5900B2A1D11EDD626D6DDB937B, 732F310F8F6016C56F432A81636B13CE0124A802FE8DD91287B618EED22C9A1D ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
21:41:41.0421 0x2e54  fastfat - ok
21:41:41.0483 0x2e54  [ 304B6AEC4639A7CCCCF544C6BA6177B2, B75CDD52FD3890B3008E06C503945D1E36478F0EC5E067C8DBC2822D7935D24B ] Fax             C:\WINDOWS\system32\fxssvc.exe
21:41:41.0499 0x2e54  Fax - ok
21:41:41.0515 0x2e54  [ 5D8402613E778B3BD45E687A8372710B, EE9EA10805168D309A609B9019AEC5961EE46D18207B5E0EA2DE4064A5770AF8 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
21:41:41.0530 0x2e54  fdc - ok
21:41:41.0546 0x2e54  [ 020D2F29009F893ADEFF4405B4B44565, 9F8501064C72933D1442DA00E70392B30D0207EB7D60F50E6648FF363799E6F1 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
21:41:41.0546 0x2e54  fdPHost - ok
21:41:41.0577 0x2e54  [ E80D2EDD2F88B6E20076A0A4F5A5A245, E3CD6E0BE152B22E8A7340EFFD10CCDB1B632CD3EDF487E83F697D2E22A7D594 ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
21:41:41.0577 0x2e54  FDResPub - ok
21:41:41.0608 0x2e54  [ 47AB7D16EDE434B934AA4D661456C2D5, D375A92FB3E4BB0A8DA5270DACC888E53FB9F514516039FE6DAE4D4EF6B9A970 ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
21:41:41.0624 0x2e54  fhsvc - ok
21:41:41.0655 0x2e54  [ BCFD8B149B3ADF92D0DB1E909CAF0265, 002B085C131473642450176B4B8359F3E5B04350AFB659B9C0F9EB587D1181E7 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
21:41:41.0655 0x2e54  FileInfo - ok
21:41:41.0671 0x2e54  [ A1A66C4FDAFD6B0289523232AFB7D8AF, 0F5832F626BB62190D5F3A088CE6E048D8A400CCF9EA527F06973CAD96D3A81C ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
21:41:41.0671 0x2e54  Filetrace - ok
21:41:41.0687 0x2e54  [ BE743083CF7063C486A4398E3AEFE59A, 85796D89943DD6FE3932C1ED6CF01470C1B4DFD243C390B07055FFDA3C231551 ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
21:41:41.0687 0x2e54  flpydisk - ok
21:41:41.0734 0x2e54  [ C1FB505A73FA2E9019D32444AB33B75A, 765F0635C18295855CA4C0394192E8B94BA2EA1C4D74F86B720358ABA019FFAA ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
21:41:41.0749 0x2e54  FltMgr - ok
21:41:41.0812 0x2e54  [ 1E93CBB75D167CDF85501A8C790097A8, C9E5DD090C94E7855939CE1F416460DB408EFF897C2CD52E0D52A734D8ED18B7 ] FontCache       C:\WINDOWS\system32\FntCache.dll
21:41:41.0843 0x2e54  FontCache - ok
21:41:41.0921 0x2e54  [ 1C52387BF5A127F5F3BFB31288F30D93, 90D13F60170CD74304F3036A90D596AA3E1E134455A780310BDF67AC7815F2E7 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:41:41.0921 0x2e54  FontCache3.0.0.0 - ok
21:41:41.0952 0x2e54  [ A7C31B168F371E8E6796219F23E354DB, C51C9BF568F1E96CBBE57D2432B38F93F40520086DDB6AAAAC48CBCD1691B441 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
21:41:41.0968 0x2e54  FsDepends - ok
21:41:41.0984 0x2e54  [ 09F460AFEDCA03F3BF6E07D1CCC9AC42, B832091BC9B2C2FE38A4BCA132ABB58251E851F21EC6F39636E73777AB9A5791 ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
21:41:41.0984 0x2e54  Fs_Rec - ok
21:41:42.0030 0x2e54  [ F152D55E497E12256290C43B31C7D0CE, FFC54B14CCFBC1548948C07FB3866E40A11D0C05AC352BD000E71CEF053F6A6E ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
21:41:42.0046 0x2e54  fvevol - ok
21:41:42.0062 0x2e54  [ 9591D0B9351ED489EAFD9D1CE52A8015, AC64C236C3AE545FCE8ED44A4A87FB86265A453BA60026EC9A4DE2B631E99996 ] FxPPM           C:\WINDOWS\System32\drivers\fxppm.sys
21:41:42.0062 0x2e54  FxPPM - ok
21:41:42.0077 0x2e54  [ FC3EF65EE20D39F8749C2218DBA681CA, 12980F1DE99B25E6920A33556F3ABDA5EC9BFE4757BE602130B5E939D8D25CE3 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
21:41:42.0077 0x2e54  gagp30kx - ok
21:41:42.0109 0x2e54  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
21:41:42.0124 0x2e54  GEARAspiWDM - ok
21:41:42.0155 0x2e54  [ 0BF5CAD281E25F1418E5B8875DC5ADD1, 0929AD8437DD78234553D8B2CDF0D6838FD54ACDE1918AFEBE48684EB32A07A3 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
21:41:42.0155 0x2e54  gencounter - ok
21:41:42.0187 0x2e54  [ 8DF1254093B5C354CE725EB6B9B0DE19, DE6C5661CC076DA44B8A5D044FDB7280EDCF38D322A98C14FDC82E25586B3014 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
21:41:42.0202 0x2e54  GPIOClx0101 - ok
21:41:42.0296 0x2e54  [ 0D03F87D4FF4ADBAF8336DD80548155A, BC10CFA88EA2F41A8D96CB810B7953A4C168B79273A3E804A9F020F49AB58CD3 ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
21:41:42.0327 0x2e54  gpsvc - ok
21:41:42.0343 0x2e54  [ D4B7ED39C7900384D9E5C1283F1E7926, F93F98858067B40F1C071EAD0F8E85442A78B95342BC692AF4D726540634923F ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
21:41:42.0343 0x2e54  HDAudBus - ok
21:41:42.0359 0x2e54  [ 10A70BC1871CD955D85CD88372724906, 2480A74854D0A89FF028EE9BA41224D4B2F9B0863066BFC43097920794FEE08D ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
21:41:42.0359 0x2e54  HidBatt - ok
21:41:42.0390 0x2e54  [ 42F88B57CAE42FC10059C887B3FCFCEA, 9363AA2B8E839A6935A7C6A36C491938DF78024886DCCE6D29CB18E1D6A6D806 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
21:41:42.0390 0x2e54  HidBth - ok
21:41:42.0437 0x2e54  [ C241A8BAFBBFC90176EA0F5240EACC17, 571E20B87818618BE9179986177D55739A240F04D1F740B3C1B7809B9427B767 ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
21:41:42.0437 0x2e54  hidi2c - ok
21:41:42.0468 0x2e54  [ 9BDDEE26255421017E161CCB9D5EDA95, B766FD5E31708F29384F69418FC33C4BCC6E3064AA553D5B1D30EE0B8B1BFB40 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
21:41:42.0484 0x2e54  HidIr - ok
21:41:42.0515 0x2e54  [ EA85B5093DF7B5C3E80362B053740AE2, 1D4251385402A2ADEE8FA1642F54180304F88337DA74989BDE44025ABB145FE5 ] hidserv         C:\WINDOWS\system32\hidserv.dll
21:41:42.0515 0x2e54  hidserv - ok
21:41:42.0546 0x2e54  [ 8DB8EAB9D0C6A5DF0BDCADEA239220B4, EDA23E6909EB83E5E148816DFB16CC29EA01BD6BD2F73AA46B3D820B85FB9C83 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
21:41:42.0562 0x2e54  HidUsb - ok
21:41:42.0609 0x2e54  [ 93C4315F47F8D635C6DB0DF49FCE10EE, 70C52B8927D54ACD23F27948780B522974250FD5CD81AA9801C3F158C402889F ] hkmsvc          C:\WINDOWS\system32\kmsvc.dll
21:41:42.0609 0x2e54  hkmsvc - ok
21:41:42.0671 0x2e54  [ AC49522ED106BD4B545D6614D71C2445, 40BD738A301170378ECFC031635EB04E2F812B676376CADDD6607ECABEC9255F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
21:41:42.0687 0x2e54  HomeGroupListener - ok
21:41:42.0734 0x2e54  [ 99932E30CE0283B73BB6E5019E150394, 1F88C2F56A7B8E1F75E6359281F418F9661DA4FB7B7D7B14FA7F718B15D4DCE0 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
21:41:42.0734 0x2e54  HomeGroupProvider - ok
21:41:42.0780 0x2e54  [ 949B6D4F2FEFDE409D1D73DA56739EA4, 31739AD0F7B01C081EC7933A912B29FA8C9EA189FC13287B967F44AC53681C4D ] HPConnectedRemote c:\Program Files (x86)\Hewlett-Packard\HP Connected Remote\HPConnectedRemoteService.exe
21:41:42.0780 0x2e54  HPConnectedRemote - ok
21:41:42.0843 0x2e54  [ 7B7DE6B3DC30F3246958F42C67A6F7BB, 4B66B90CFEC2231B905B21DECC4EC7C6500E546F080A452EF67E724EDF37ADD9 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
21:41:42.0874 0x2e54  hpqwmiex - ok
21:41:42.0905 0x2e54  [ A6AACEA4C785789BDA5912AD1FEDA80D, D197012A5DA6AB3F76FF298336DF0CF027C07ECC71267BAEF5912DE12893E096 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
21:41:42.0905 0x2e54  HpSAMD - ok
21:41:42.0937 0x2e54  [ CB5A8B34FA37AE53053F2D3DF05AC1E6, 2C7357079A66AE609F49900181B013E735B4A01C45DA316CD1E8698F93DE6EA8 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
21:41:42.0937 0x2e54  HPSupportSolutionsFrameworkService - ok
21:41:42.0999 0x2e54  [ E87A6D3B8FECD5B93BC0CFBB48C27970, 55C49B6F3822450447C082B40A263F3370694DB53AD0018ADEB911E4A9F65A88 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
21:41:43.0030 0x2e54  HTTP - ok
21:41:43.0062 0x2e54  [ 90656C0B3864804B090434EFC582404F, BDB60050B729AACB9E009AC7129BEBD6298BBD8A9DB14B817D02E8E13669BD6E ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
21:41:43.0062 0x2e54  hwpolicy - ok
21:41:43.0077 0x2e54  [ 6D6F9E3BF0484967E52F7E846BFF1CA1, C982966BDE6A3E6773D9441ADA7A3B08D13511DFC68D04DF303248B942423F38 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
21:41:43.0077 0x2e54  hyperkbd - ok
21:41:43.0093 0x2e54  [ 907C870F8C31F8DDD6F090857B46AB25, 308664A31717383D06185875E76C6612407A9F04E7DB28404F574A5706C6715D ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
21:41:43.0093 0x2e54  HyperVideo - ok
21:41:43.0124 0x2e54  [ 49EE0AE9E5B64FFBBD06D55C4984B598, 8866627F9241B24A59C81D8BCC67A4DCA87576F589599BA291D0E323F679EB4D ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
21:41:43.0124 0x2e54  i8042prt - ok
21:41:43.0140 0x2e54  [ 5D90E32E36CE5D4C535D17CE08AEAF05, 976A463343E8C8308AFBE9E64DF56C430D2241DE002430D00318AB065EB72E4A ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
21:41:43.0140 0x2e54  iaLPSSi_GPIO - ok
21:41:43.0155 0x2e54  [ DD05E7E80F52ADE9AEB292819920F32C, E71AB6A50B0F90C8F94569CE89F66F915A0A4A00D4AC091B2E5E750D88CFC334 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
21:41:43.0155 0x2e54  iaLPSSi_I2C - ok
21:41:43.0187 0x2e54  [ 08BFE413B0B4AA8DFA4B5684CE06D3DC, 95DEEBB203E12EE6E191F5247A74C04AEC0E16DE981FADDC4D6C42EE41D8D079 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
21:41:43.0202 0x2e54  iaStorAV - ok
21:41:43.0249 0x2e54  [ A2200C3033FA4EF249FC096A7A7D02A2, 5819F5C2020DE2EEE339B0C08CD4B1E3490EAFBBEA1277CE649DB5A5150986B0 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
21:41:43.0249 0x2e54  iaStorV - ok
21:41:43.0374 0x2e54  [ 19F52CF90BB4D05B5265773CA7011E4C, BA28BAEE9D64859775C6DF56E407104D1463BD1374CF3F6AA414AB85946ED1F5 ] IDSVia64        C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\IPSDefs\20150710.001\IDSVia64.sys
21:41:43.0390 0x2e54  IDSVia64 - ok
21:41:43.0390 0x2e54  IEEtwCollectorService - ok
21:41:43.0468 0x2e54  [ AF8A43C376F83A4A1E7DA16461EDE114, EBA10519B074888355A4FC11D52FF1E6A52F88F754B7F1F9863A8313638645CB ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
21:41:43.0484 0x2e54  IKEEXT - ok
21:41:43.0515 0x2e54  [ 4E448FCFFD00E8D657CD9E48D3E47157, 4A958CF0BF8DAEAE5E008500BA67CE89B21388592811274331EE39CAC1043A00 ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
21:41:43.0515 0x2e54  intelide - ok
21:41:43.0530 0x2e54  [ A770340FC02B999EF0DE6C2A6BC8437C, 214567BE706B21BEA7EC13AF6B10FBFF658000511DBBA79BAA28D1D4EFD029A7 ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
21:41:43.0530 0x2e54  intelpep - ok
21:41:43.0546 0x2e54  [ 47E74A8E53C7C24DCE38311E1451C1D9, 79B06E37A552C8A847404D4C572CDB8CF525354D8AE3BEBC06892B7C3B330761 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
21:41:43.0562 0x2e54  intelppm - ok
21:41:43.0577 0x2e54  [ 9DB76D7F9E4E53EFE5DD8C53DE837514, 07BA4EDA9BE9139A689A2C3EFC1D1A4F3D1216625ED145F313398292A2CD5703 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:41:43.0577 0x2e54  IpFilterDriver - ok
21:41:43.0640 0x2e54  [ A5800036E4EA06697A34742A24ACFBE1, BA67060526E9213000B4206F86A74F904999AD7018EFCBE4FE9708650DA9D973 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
21:41:43.0671 0x2e54  iphlpsvc - ok
21:41:43.0702 0x2e54  [ 9C096BF5E10CA8BFA56F32522A89FAF1, 6C1151160799338DA351C7237AB049926C6C15F24F5E154BBF5929B4A96C0B8D ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
21:41:43.0702 0x2e54  IPMIDRV - ok
21:41:43.0718 0x2e54  [ B7342B3C58E91107F6E946A93D9D4EFD, D5DA3C02C5C5A343785745EF6983CC9B5FBD3FB8D49FE9B450523E50212D1A32 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
21:41:43.0718 0x2e54  IPNAT - ok
21:41:43.0765 0x2e54  [ 842D1EDD0F2A6E0E6631BB96BAAA01DE, 9CDD0B99F2C5DAD573A9EA8D5AB2DBFD7A941454CBBA5BFE34E49F2D4EE96A90 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
21:41:43.0781 0x2e54  iPod Service - ok
21:41:43.0812 0x2e54  [ AE44C526AB5F8A487D941CEB57B10C97, A783A2EAF7A6FF450FB3F189A5930036FA60D125C42171AC44B6FE2E3DBD6F7A ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
21:41:43.0812 0x2e54  IRENUM - ok
21:41:43.0827 0x2e54  [ 8AFEEA3955AA43616A60F133B1D25F21, E99359A4F1D653790133F145CF7C9F97399FD75C5E135AA7E5F989BB660789AF ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
21:41:43.0827 0x2e54  isapnp - ok
21:41:43.0843 0x2e54  [ D90AB68D0FAC9F357F663670FDBB511E, A82AAA5DF1B38EFBDCF834535A0C520D1BB2D7A4A906C18CFDD22BCF16BDB97D ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
21:41:43.0859 0x2e54  iScsiPrt - ok
21:41:43.0874 0x2e54  [ 5917AFE4A3F695A54B99C1849C8207FE, DD57638966F2F0387DCF9DA4BBAEE3CDD8CC6F1A2D49581A0374D46A565BED4F ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
21:41:43.0874 0x2e54  kbdclass - ok
21:41:43.0906 0x2e54  [ 8CD840A062F6BDF41DDE3ACB96164B72, AEAE867F3557C1CE6B931E19D7144A3BD3CBABD81B1542667680D54FC24DEBE1 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
21:41:43.0906 0x2e54  kbdhid - ok
21:41:43.0952 0x2e54  [ 813871C7D402A05F2E3A7075F9584A05, FF0C2F87EB083F8CE74C679D80C845CDFBFBBC70BE818F899F3336BBB54A3FFB ] kdnic           C:\WINDOWS\system32\DRIVERS\kdnic.sys
21:41:43.0952 0x2e54  kdnic - ok
21:41:43.0968 0x2e54  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] KeyIso          C:\WINDOWS\system32\lsass.exe
21:41:43.0968 0x2e54  KeyIso - ok
21:41:43.0999 0x2e54  [ 4E829B18D5BAEC29893792A3C671A847, 64C3B99F53A9D1ACA802B46B09E820AD210B667D5A1CD0ADAF1F12944B15B52E ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
21:41:43.0999 0x2e54  KSecDD - ok
21:41:44.0031 0x2e54  [ 35C19AF2116F67914712D7C4CBE47B8C, 5F976726880A6E51D7ABFA7E3EF7294C6FB7F383DC5710A2C2EC8DD26DAEC204 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
21:41:44.0046 0x2e54  KSecPkg - ok
21:41:44.0062 0x2e54  [ 11AFB527AA370B1DAFD5C36F35F6D45F, 757AD234284467ADB826F7CA0251F58D48866B91995BC867DEA4BAF676947163 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
21:41:44.0062 0x2e54  ksthunk - ok
21:41:44.0093 0x2e54  [ C1591A66028C71147A3E2EAB0B1CCB7E, 82F3D5DCC1614398A144D9791E4BAA814DBA9112677341FD57D5E9834CEDEB41 ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
21:41:44.0109 0x2e54  KtmRm - ok
21:41:44.0140 0x2e54  [ 50AECF8C21AB2A6428A6E1E10549D8E5, 6BC7C60CF5E8AFB9972619EE1C78357756E9C0A3EC783C3056CEB600DCBB1555 ] L1C             C:\WINDOWS\system32\DRIVERS\L1C63x64.sys
21:41:44.0156 0x2e54  L1C - ok
21:41:44.0202 0x2e54  [ CA2828DDE4B09FEFFDB7CE68B3D8D00A, B514792FF1EF36C678BB51644A1C420105D5E2CD6DD5A89A3FB252D08277A40C ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
21:41:44.0218 0x2e54  LanmanServer - ok
21:41:44.0249 0x2e54  [ 3DBD9100745F9B8506B8FEC6FE6CCDE3, C3EF2856A1680AFDE133887E48946CF9CAB6755C3BDC07F0326965DCD4096F62 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
21:41:44.0265 0x2e54  LanmanWorkstation - ok
21:41:44.0296 0x2e54  [ 8B9F3796EC1762CF255BDB324E5529C8, F73D6BEF19BE20AEB18DA82CB63E9D8B50ACBBE4ED9B646EF0C9F598F6B81F94 ] lfsvc           C:\WINDOWS\System32\GeofenceMonitorService.dll
21:41:44.0312 0x2e54  lfsvc - ok
21:41:44.0312 0x2e54  [ C09010B3680860131631F53E8FE7BAD8, 35F2A06D5F29478D22ABDCC20DA893EF9D96504C65594A0CEA674D1C21B04FF8 ] lltdio          C:\WINDOWS\system32\DRIVERS\lltdio.sys
21:41:44.0312 0x2e54  lltdio - ok
21:41:44.0343 0x2e54  [ DAE98CC96C5EE308BF4EA7B18F226CB8, 7A6CC56BF075010707715AB6608764291E358EDF27C806A025532869004C686B ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
21:41:44.0343 0x2e54  lltdsvc - ok
21:41:44.0374 0x2e54  [ 1E2662D847B7D9995C65D90D254A7E0F, AFD4063D2071FFCB6B0EAC0715276D986F42326919C86E525DCE12E1109A93E2 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
21:41:44.0374 0x2e54  lmhosts - ok
21:41:44.0406 0x2e54  [ C755AE4635457AA2A11F79C0DF857ABC, E03D1ACAC155287291FE1BD0B653953ADC94279A74D0152088D698FAA796460F ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
21:41:44.0406 0x2e54  LSI_SAS - ok
21:41:44.0421 0x2e54  [ ADAC09CBE7A2040B7F68B5E5C9A75141, 7865DA7E91404F3642BC444B97F6B7AA42B9523D5EDD7F6365DA236B8EC3410F ] LSI_SAS2        C:\WINDOWS\system32\drivers\lsi_sas2.sys
21:41:44.0421 0x2e54  LSI_SAS2 - ok
21:41:44.0437 0x2e54  [ 04D1274BB9BBCCF12BD12374002AA191, 4B9618F8D25F2278DE1610A70ACAADB074D171D162C3AF27D464F5DC800A8E60 ] LSI_SAS3        C:\WINDOWS\system32\drivers\lsi_sas3.sys
21:41:44.0437 0x2e54  LSI_SAS3 - ok
21:41:44.0452 0x2e54  [ 327469EEF3833D0C584B7E88A76AEC0C, 3D88B5A2D68F93F01B39C6E3D8D5C7A2A20686EFC756086E66AFFF1BC3019B85 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
21:41:44.0452 0x2e54  LSI_SSS - ok
21:41:44.0484 0x2e54  [ 9A7A7E45DAED2E8C2816716D8D28236A, C94787988826E546A8DC752BD6BE4EA7423DC3762B2D371DB297A63F865A95FF ] LSM             C:\WINDOWS\System32\lsm.dll
21:41:44.0515 0x2e54  LSM - ok
21:41:44.0546 0x2e54  [ DDEE191AB32DFC22C6465002ECDF5EE4, 190C3930A8449118F9FEDF43C482837EF1C255E6D67F9651156E66A1E2BC6553 ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
21:41:44.0546 0x2e54  luafv - ok
21:41:44.0577 0x2e54  [ CFBC6C6D8A492697CABD1D353EE64933, DDAA844908324740C891EB8F08E2A8BB00457063B31C4A762745C1C2415FC12D ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
21:41:44.0577 0x2e54  MBAMProtector - ok
21:41:44.0671 0x2e54  [ 40C126CB15FAB7D6C66490DCA9C1AED2, B32CEE2D2409232C245427D5E9647FDF59AF1D8AB5E8A98EE2D1F1314599FD14 ] MBAMService     C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
21:41:44.0687 0x2e54  MBAMService - ok
21:41:44.0718 0x2e54  [ 08DECFCB9BA97786165A69AB1015BC30, EDC8C8447B57BD412E2DEBCA9B5B1B58C19D40105DC7CE9520DE214081696B05 ] MBAMWebAccessControl C:\WINDOWS\system32\drivers\mwac.sys
21:41:44.0718 0x2e54  MBAMWebAccessControl - ok
21:41:44.0749 0x2e54  [ 1704A8189EE5580AB147CFD25C5C8770, DFA076FD36B5CC844D4BE3B865E9A1F809E14CCB1D78D82A2D8D8EE38210E6EB ] McComponentHostService C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe
21:41:44.0749 0x2e54  McComponentHostService - ok
21:41:44.0796 0x2e54  [ EB5C03A070F30D64A6DF80E53B22F53F, 12051B6AEBDEE1E28F24364F25A52BA3A6E282ECF86D6290E34BD38E6D4E066D ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
21:41:44.0796 0x2e54  megasas - ok
21:41:44.0827 0x2e54  [ F6F13533196DE7A582D422B0241E4363, B3CD9B08937AFFF12141B38634AF3A56F5AC5FF3EF03941802B9841DEC559469 ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
21:41:44.0827 0x2e54  megasr - ok
21:41:44.0859 0x2e54  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] MMCSS           C:\WINDOWS\system32\mmcss.dll
21:41:44.0874 0x2e54  MMCSS - ok
21:41:44.0874 0x2e54  [ 8B38C44F69259987C95135C9627E2378, E698B82D4EFFF56D66C7FC9866369BA5736FDBDBE2028CC421C51E70DEA74727 ] Modem           C:\WINDOWS\system32\drivers\modem.sys
21:41:44.0890 0x2e54  Modem - ok
21:41:44.0906 0x2e54  [ 601589000CC90F0DF8DA2CC254A3CCC9, D1238A386C41B6C368D9A44B7C112C943995B5403E2A5B4B7346B266DDB0C5A0 ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
21:41:44.0906 0x2e54  monitor - ok
21:41:44.0921 0x2e54  [ 08374E4E5B8914DE6067CBA99F61E930, CBB1390D6523FC968BEDF78FD13699488621ACB2CD1DF55D1606316090548661 ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
21:41:44.0921 0x2e54  mouclass - ok
21:41:44.0952 0x2e54  [ 5FCBAB60598AE119E02B4C27DE6B99EA, 36F30094F700DE41C293047ACB49ED1961DD927BEDAD8DFDAB7023D4D24CB0DE ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
21:41:44.0952 0x2e54  mouhid - ok
21:41:44.0999 0x2e54  [ 9A788037D768809DFD677F4BA08A224A, E0686B3318F924E440ADA439D6671D44D3FF97C13D45C2E0A3A7B9E23DA38350 ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
21:41:44.0999 0x2e54  mountmgr - ok
21:41:45.0046 0x2e54  [ 0DE2474F316C515482ABAD3B697F8714, 62862AE7432F5350068E96AD466093359C6CF444EB517AE6D09134FAF78C49F5 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
21:41:45.0046 0x2e54  MozillaMaintenance - ok
21:41:45.0077 0x2e54  [ 6FC047578785B0435F4E2660946D1ADC, 8AEA5659F01FC2F75160922C69622502DABA39F33CB90D5178DD679A1CDE617D ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
21:41:45.0093 0x2e54  mpsdrv - ok
21:41:45.0140 0x2e54  [ C18AA14126ADC66478E8E962B2DFAA98, A6F8CE9D88D590DC083253004392572C3BD02C33433CD6C0D9117D2AA7171EEC ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
21:41:45.0171 0x2e54  MpsSvc - ok
21:41:45.0218 0x2e54  [ DB32958F0E704EFBF7F15161A569E39F, 8A26448B954F8A16EE9BA72EF47F6C549A75B30BD13FEB5A29EB099A74D8F678 ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
21:41:45.0218 0x2e54  MRxDAV - ok
21:41:45.0265 0x2e54  [ 89DE71940A0E7F5BA617AE08321EF5C3, BD056C9E18E902D6F118E59A6AC68415BFA0690A02D2B360F6C111CE3B5EAC67 ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:41:45.0296 0x2e54  mrxsmb - ok
21:41:45.0327 0x2e54  [ BCBD64220AD85C26823453FF1DC3EFBD, 0245E3659E9135B9276F3CCFBEA0CEFFC4F4C0826F6D19B6329057620235F087 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
21:41:45.0327 0x2e54  mrxsmb10 - ok
21:41:45.0343 0x2e54  [ EE16457030175F449BAB0ABD279F4B6A, DF627054136079553A24AD12DC7374F1ACEEAD782EFFDC278996AD7BCCE98877 ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
21:41:45.0343 0x2e54  mrxsmb20 - ok
21:41:45.0374 0x2e54  [ F3C060444777A59FC63D920719E43CCD, 8766A2746E3DFB0749E902F458141269335CA6F0CEDCA3D5F8C204637C19E783 ] MsBridge        C:\WINDOWS\system32\DRIVERS\bridge.sys
21:41:45.0390 0x2e54  MsBridge - ok
21:41:45.0406 0x2e54  [ 915747E010A9414B069173284A9B93F4, 8A335C28FE1EF96DD71485877F2E86155D24B5614ACE05468F4B07E2ACD56331 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
21:41:45.0421 0x2e54  MSDTC - ok
21:41:45.0452 0x2e54  [ D13329FBF8345B28AB30F44CC247DC08, 9C7EC2D4D65E6510EB5B9E61BB0D14F725D7E8FE98D65161C3971E43EF1AB6EB ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
21:41:45.0452 0x2e54  Msfs - ok
21:41:45.0484 0x2e54  [ C6B474E46F9E543B875981ED3FFE6ADD, E16687E52FB649C23D92159A1F036CB662202C1E58D961EECDAA528AA4FA669A ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
21:41:45.0484 0x2e54  msgpiowin32 - ok
21:41:45.0499 0x2e54  [ 65C92EB9D08DB5C69F28C7FFD4E84E31, D709BA4723225321F665B1157A33A4AE230420752308EF535DA9A41CAC164628 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
21:41:45.0499 0x2e54  mshidkmdf - ok
21:41:45.0515 0x2e54  [ 52299F086AC2DAFD100DD5DC4A8614BA, B36BE0FC96798E5EB8C193C318970E3906961E3ABC3BFAAD73138C76D9A95B0B ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
21:41:45.0515 0x2e54  mshidumdf - ok
21:41:45.0531 0x2e54  [ 36D92AF3343C3A3E57FEF11C449AEA4C, ECC85AA1E530DF55B4A4545798219F87F0FCA66DDD2E37BCEF0850D3C9129DD2 ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
21:41:45.0531 0x2e54  msisadrv - ok
21:41:45.0562 0x2e54  [ 4EAEEBAC8CFF4E0D717DFA920BC58A90, A65CB1BB3392B6A04B978348CAC18A414560A6B04A727F22DFC0ADB20DD3AF6B ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
21:41:45.0562 0x2e54  MSiSCSI - ok
21:41:45.0562 0x2e54  msiserver - ok
21:41:45.0577 0x2e54  [ A9BBBD2BAE6142253B9195E949AC2E8D, 599D2952D4E0B0B3E02D91E38A30F4900B1ADA330716B887B156A1CB9A3E6EE9 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
21:41:45.0577 0x2e54  MSKSSRV - ok
21:41:45.0624 0x2e54  [ 51B3AC0560848CD6D65AC2033E293113, 73A27E88774C6929328E6C9FC9C389F4DF76D4D4D5CBFC4F51651CC308829628 ] MsLldp          C:\WINDOWS\system32\DRIVERS\mslldp.sys
21:41:45.0624 0x2e54  MsLldp - ok
21:41:45.0640 0x2e54  [ 7B2128EB875DCBC006E6A913211006D6, 97BBD7FF770741FBFC0F181A609AD0954EA926DA203B742E8F08C89AD8FE476E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:41:45.0640 0x2e54  MSPCLOCK - ok
21:41:45.0656 0x2e54  [ 1E88171579B218115C7A772F8DE04BD8, B9EAA835D0BF8F9C4DF8403D95EF1400E8AE38F28F9DBA87657DE2129FEF02D2 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
21:41:45.0656 0x2e54  MSPQM - ok
21:41:45.0703 0x2e54  [ BBE2A455053E63BECBF42C2F9B21FAE0, 7C5DF563499DF59DF9895A1581E47ADF5FD54C94ECEF6C886CDB60E5E95A6DAE ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
21:41:45.0719 0x2e54  MsRPC - ok
21:41:45.0719 0x2e54  [ 8D6B7D515C5CBCDB75B928A0B73C3C5E, 1EB4DC3DD21D2627C78EC3F9931D9E5D033169087E43B5D7C17BF1FF2A0028CD ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
21:41:45.0734 0x2e54  mssmbios - ok
21:41:45.0750 0x2e54  [ 115019AE01E0EB9C048530D2928AB4A2, 6E2275E85EACF2D0FC784792E0D72A165589D33CBAB3BCFA8E271CA09566C925 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
21:41:45.0750 0x2e54  MSTEE - ok
21:41:45.0750 0x2e54  [ 96D604A35070360F0DD4A7A8AF410B5E, F94DD1A3566C7C8D0A76D6E1E2530552A9B7F99C5DA0DE11829325EAB9F8B7ED ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
21:41:45.0750 0x2e54  MTConfig - ok
21:41:45.0781 0x2e54  [ 619CA29326B82372621DB2C0964D8365, 4091F08E266DB45A6E33A4A8B1CE9FA78BB294B3111526AA9E3868620F30AFDF ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
21:41:45.0781 0x2e54  Mup - ok
21:41:45.0812 0x2e54  [ B8C35C94DCB2DFEAF03BB42131F2F77F, F0FCF367CA8F722D6ABCF7F363CD406D890D71452E91C3FC6677B47AD74D6324 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
21:41:45.0812 0x2e54  mvumis - ok
21:41:45.0844 0x2e54  [ 8DF30698BDD9492A9D45A4B94FB4A82A, 26B1B2D7E785E29B8BCB74C467C66AE4EBDD481ACFF36334F3BDF4506B778244 ] napagent        C:\WINDOWS\system32\qagentRT.dll
21:41:45.0859 0x2e54  napagent - ok
21:41:45.0906 0x2e54  [ 008F7CED69FD5B30CBDE1E03C6F36A27, D4ADA7834C470B17A3CD976012DC5A511B32545B9F91D23D09A85722E0B75320 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
21:41:45.0906 0x2e54  NativeWifiP - ok
21:41:46.0000 0x2e54  [ 5A4EC58A5F2E63DB2092B343CF1B2834, 33F957565E38A3A2842DDB16D7C969F93A4FB888DB5AFBBF5431A712FADE4E13 ] NAVENG          C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\VirusDefs\20150819.002\ENG64.SYS
21:41:46.0000 0x2e54  NAVENG - ok
21:41:46.0094 0x2e54  [ 526EA496D7F06B3746775046B33027C1, FEC0B860F49C28ED6ED721A09D19239BB1E20CE3A29697B24B2FE604AE0EB808 ] NAVEX15         C:\Program Files (x86)\Norton Internet Security\NortonData\22.5.2.15\Definitions\VirusDefs\20150819.002\EX64.SYS
21:41:46.0140 0x2e54  NAVEX15 - ok
21:41:46.0172 0x2e54  [ BFCE1225D10619029E68946929CEB64C, 499F560331FFBA82E3D673B47F027FDAB7BEE4F2CB5B811D69E0218839F6E6A5 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
21:41:46.0187 0x2e54  NcaSvc - ok
21:41:46.0219 0x2e54  [ 267C97373110B7AFD3B46DF60B6CBB85, CEBB99F71D47634BB9C04DF2836DF6B47F15B3073FEFC237F85526DF01E4E38B ] NcbService      C:\WINDOWS\System32\ncbservice.dll
21:41:46.0234 0x2e54  NcbService - ok
21:41:46.0265 0x2e54  [ 0813B71EAF097208DC76CE0605B48AF0, A93A2E6A8FB77B58AC4D580E6F8BF307A25BADC9493994F9BE235EBFB0E1DB22 ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
21:41:46.0265 0x2e54  NcdAutoSetup - ok
21:41:46.0344 0x2e54  [ 97DC5967F65503213FD1F1B3E4A6F983, 3EC515856C7CE9B30032F963DC04190F66EE62402A819781DC45B7D088C84229 ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
21:41:46.0359 0x2e54  NDIS - ok
21:41:46.0406 0x2e54  [ 8CECC8DA55F3274181FD1EA28AD76664, 188112424CEF97FB926A0FB915260B803555A775DD2E1846725A9C8616300F42 ] NdisCap         C:\WINDOWS\system32\DRIVERS\ndiscap.sys
21:41:46.0406 0x2e54  NdisCap - ok
21:41:46.0437 0x2e54  [ 269882812E9A68FFF1AFE1283D428322, 50B99EBC42DA9B46A8C2C28C9BADCF58AE3079535CDD1227D0F5C86291C715FF ] NdisImPlatform  C:\WINDOWS\system32\DRIVERS\NdisImPlatform.sys
21:41:46.0453 0x2e54  NdisImPlatform - ok
21:41:46.0469 0x2e54  [ 82821F4EEC776B4CF11695A38F3ABA46, 23184F9D31E662855DC4D23EFE7C2FE00E5487D3762B6024704A5D8C87762E1C ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:41:46.0469 0x2e54  NdisTapi - ok
21:41:46.0500 0x2e54  [ B832B35055BA2B7B4181861FF94D8E59, 2E60E5D503E88D27E35ECFEE265D51328E93A9C7B9B931F86D9CBC947636BB00 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:41:46.0500 0x2e54  Ndisuio - ok
21:41:46.0515 0x2e54  [ 1F58E48EF75F34C35D8E93A0DC535CFE, D65619A6C4B1747F8B05DA08A44EF0E46B5CC384880E04E4755A2BA6CDB3C4EA ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
21:41:46.0515 0x2e54  NdisVirtualBus - ok
21:41:46.0547 0x2e54  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:41:46.0547 0x2e54  NdisWan - ok
21:41:46.0562 0x2e54  [ DEC29080202D4F9F17F55E18BCFCC41A, F7E543741B1F4F637A99C40543D6AEC6EBF893F74359BBA769D1F882E0AFB571 ] NdisWanLegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:41:46.0562 0x2e54  NdisWanLegacy - ok
21:41:46.0594 0x2e54  [ DDD7F92A83F74D1476B71FBA9530A8DC, D3F94FC9F48854E09B0B77CE5E1C1DB948D54EAC63C5583437051BB893B5A386 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
21:41:46.0594 0x2e54  NDProxy - ok
21:41:46.0625 0x2e54  [ 3083926D1CC5B56EA0786527B557DD1B, 3C3F0CA0D43398576DBE8F677B353ADDA7E8F56829874958CE668E31261C1590 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
21:41:46.0625 0x2e54  Ndu - ok
21:41:46.0641 0x2e54  [ 42FF4975D032CAE558AE4BB8448F6E5A, 0B8FACF3382443DED79A8004A6AA14C32471A6A1C6BAA543AA9F3FEC52620A6D ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
21:41:46.0641 0x2e54  NetBIOS - ok
21:41:46.0656 0x2e54  [ 0217532E19A748F0E5D569307363D5FD, C40C2E7AFA276057E7327A7BB173122689D6CEC9AE443C3850C3F94AF03DFBF5 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
21:41:46.0672 0x2e54  NetBT - ok
21:41:46.0687 0x2e54  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] Netlogon        C:\WINDOWS\system32\lsass.exe
21:41:46.0687 0x2e54  Netlogon - ok
21:41:46.0734 0x2e54  [ 8F074B62E66B6117D9598C62A12069C5, 5FDB19045D3E2F6D0F0C5158AC2ECB0D5404CD2AF7A319755D7E3753CA3B7CF3 ] Netman          C:\WINDOWS\System32\netman.dll
21:41:46.0734 0x2e54  Netman - ok
21:41:46.0797 0x2e54  [ 4A04B1CD5BFB4A978C5F60E86D6C3E45, A946922C1C38ADD3CF9D3B09DDCC301AE4DAC960A081B2F42B32BE1E7095B3FD ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
21:41:46.0797 0x2e54  netprofm - ok
21:41:46.0891 0x2e54  [ 2081A822CBCD8F5861863B8C9EA6B1C9, 921C0DD1E1D5D49EA5E0D30D296F05A90564739DC2FF5A070E73FCB1492D9A0D ] netr28x         C:\WINDOWS\system32\DRIVERS\netr28x.sys
21:41:46.0937 0x2e54  netr28x - ok
21:41:46.0984 0x2e54  [ 1092B3190E69E0C5ECBCE90F171DE047, C16106EEFC324EE80E5F659CB71A5DD69FA800D36D829F5B0E6AD3393BD1BAF7 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:41:47.0000 0x2e54  NetTcpPortSharing - ok
21:41:47.0016 0x2e54  [ D4DCE03870314D3354F3501F9DDD4123, 5BFE8299B3F72B8C39A4965365CBF5BA151024451F02DD872FAD1CC35CF94CEA ] netvsc          C:\WINDOWS\System32\drivers\netvsc63.sys
21:41:47.0016 0x2e54  netvsc - ok
21:41:47.0172 0x2e54  [ 20D6DF15D1F24069880ADDAFE026441A, 3C11D937BE56D1E4DD71C3B40A6233DBEA53D0DB7901F60DC78764C65DD3FBA0 ] NIS             C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\NIS.exe
21:41:47.0172 0x2e54  NIS - ok
21:41:47.0203 0x2e54  [ E94EB2A95D7D016E119C4D6868788831, 3E4A925D23262FBA0A6432DD635FBE94B0CEF76BD9BB323254B66977497FEE2A ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
21:41:47.0234 0x2e54  NlaSvc - ok
21:41:47.0266 0x2e54  [ 8F44A2F57C9F1A19AC9C6288C10FB351, 310274DDBAC0FE4BE54ECD3B90C97D82A0F9F5CFCA7A35711A36164DE4B94074 ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
21:41:47.0281 0x2e54  Npfs - ok
21:41:47.0312 0x2e54  [ CBDB4F0871C88DF930FC0E8588CA67FC, 7E4AA3EA81A9D532F236FD7896744F07ED07CA9B37A9F18A9778BCCCC67490F2 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
21:41:47.0312 0x2e54  npsvctrig - ok
21:41:47.0344 0x2e54  [ 0F12A72A753CFD7FB0631EE8D08FE983, 860A96471F6CD90DDA9AB3A48E95CEAD826C87D2FA98A00EF91B61C44A4C8B82 ] nsi             C:\WINDOWS\system32\nsisvc.dll
21:41:47.0344 0x2e54  nsi - ok
21:41:47.0391 0x2e54  [ 0E046FF5823B95326D10CF1B4AF23541, 39D22715003746527AB4BFEDED8C34B695DAF589091AE7F3A2A2C4B8A35675A9 ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
21:41:47.0391 0x2e54  nsiproxy - ok
21:41:47.0500 0x2e54  [ 7F68063A5A0461E02BC860CE0E6BFDDC, 47E9F75D27B97278B74034B7D3951A26B1644911ED321455E08D935731C858DE ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
21:41:47.0547 0x2e54  Ntfs - ok
21:41:47.0562 0x2e54  [ EF1B290FC9F0E47CC0B537292BEE5904, DBC07BBC54EBC2D2E576B23A4CE116B3DA988577AD0D96CB7289A6748A60F9EA ] Null            C:\WINDOWS\system32\drivers\Null.sys
21:41:47.0562 0x2e54  Null - ok
21:41:47.0562 0x2e54  [ BC6B5942AFF25EBAF62DE43C3807EDF8, CB0FA194084B8C309039D571B5760FDA800E9531B8660C499B4F9977BA5C36D5 ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
21:41:47.0578 0x2e54  nvraid - ok
21:41:47.0594 0x2e54  [ 1F43ABFFAC3D6CA356851D517392966E, 6FD7621F67BA94B0E1D8F43BEC2951DBCDEEA1E848BB265AC169E27C01DA68F2 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
21:41:47.0609 0x2e54  nvstor - ok
21:41:47.0656 0x2e54  [ 6934A936A7369DFE37B7DBA93F5E5E49, 0900FEEB0CE8D09F0FC60630B5B986034A8BCD3882ED66E47170810C32492892 ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
21:41:47.0656 0x2e54  nv_agp - ok
21:41:47.0703 0x2e54  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
21:41:47.0719 0x2e54  p2pimsvc - ok
21:41:47.0750 0x2e54  [ FD8F61F0D1F64BBB3D835F39A3F979C9, E5C5F86576488EA7F605E26C06EE5AFB36506A446F60C894D55E0A148BF7F02D ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
21:41:47.0766 0x2e54  p2psvc - ok
21:41:47.0781 0x2e54  [ 764B1121867B2D9B31C491668AC72B2B, 32C04B6FCE1DDD09697B81473A23BDCED8BEEFBCD0D2D58DDC9A11A33C756967 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
21:41:47.0781 0x2e54  Parport - ok
21:41:47.0812 0x2e54  [ BAFF6122CFC9F95CA175AD8C348179A4, 079A912D951DF6A57BC1BDB0D182977EE9592751EC9DDCDA2932BDEDB333850C ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
21:41:47.0828 0x2e54  partmgr - ok
21:41:47.0875 0x2e54  [ ABE95ABE27A8BD9701782BBCD82C9925, AE3BA1E9ECDE692374D8DAC95A8DAA289DD2470E3D8D58EFAD9F83A37F3AC8E5 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
21:41:47.0875 0x2e54  PcaSvc - ok
21:41:47.0891 0x2e54  [ 91ED124E261EA8FAA1C0FFDF2A71B0C4, 20E41A38067395D03184938983A9BE459717A1941352972DBC28D83D542319EC ] pci             C:\WINDOWS\system32\drivers\pci.sys
21:41:47.0906 0x2e54  pci - ok
21:41:47.0922 0x2e54  [ 346E38FCC6859A727DD28AFAD1F0AFF4, FF3DA26F79B3BC3A5B8A8AA0B9139B9EF70297F4EA1203B1E68FB5A212C3AA58 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
21:41:47.0922 0x2e54  pciide - ok
21:41:47.0953 0x2e54  [ 4D3BDCC1C7B40C9D7B6AD990E6DEC397, 27A7AF2127B699F4579CB77936F38DC102211E26E5E2947DB808756FE06FC98E ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
21:41:47.0969 0x2e54  pcmcia - ok
21:41:47.0984 0x2e54  [ BF28771D1436C88BE1D297D3098B0F7D, 5F7630916A76A8CF31289E9C577F522B999C74C39E541CD40E62BD53004BEF74 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
21:41:47.0984 0x2e54  pcw - ok
21:41:48.0016 0x2e54  [ 24A8DFC07E4BAF29AEA26E383D4CC886, 1B903FE52CD816662D37A8113930B4B7019B6996D49F1982D8F42933A3525A67 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
21:41:48.0031 0x2e54  pdc - ok
21:41:48.0078 0x2e54  [ 0ECEE590F2E2EF969FB74A6FC583A1E6, 1C611D9225C863CF32125F684B324C58BDE1942F4F283F5674133200AC505D44 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
21:41:48.0094 0x2e54  PEAUTH - ok
21:41:48.0187 0x2e54  [ 8E3C640FFF5A963F570233AE99C0FFF3, 3DE978B005BF2E88BA858CE37D9E27BD3584642B8412E22C300A1E739743838A ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
21:41:48.0187 0x2e54  PerfHost - ok
21:41:48.0297 0x2e54  [ 70B39E7241F750A248798CE82C44596D, 54A72199EB277EE586611DCBC21654786FD2196F91D5884C4F531297893CC3EC ] pla             C:\WINDOWS\system32\pla.dll
21:41:48.0328 0x2e54  pla - ok
21:41:48.0359 0x2e54  [ 2C02AFF8383D893F8DBEB07A84F6E77C, 7CC34BAC67E2988E3D16DD6EB6F6785CD2460E3EF7FBD0BD5F86E49793BD473E ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
21:41:48.0359 0x2e54  PlugPlay - ok
21:41:48.0391 0x2e54  [ 4570F8A37D221660F3A09D6F4DD4BA94, 0EA190CFFA53DF9CCA2D53A4EF1BCB837BA3F2489A3AC5BD11F6D6ED811D118E ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
21:41:48.0406 0x2e54  PNRPAutoReg - ok
21:41:48.0422 0x2e54  [ 26657F3B4F39A0E64AF859278B599C4E, 3DD65E0BCEF3045DBA29FB8171CA3FCC9781AED3A1C7A160CF26388CE80A3683 ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
21:41:48.0437 0x2e54  PNRPsvc - ok
21:41:48.0484 0x2e54  [ BDD52AB4AEBB8B1904568DBD0CCB70CB, C3D1DBA349C79B43DCDD9EF5255C5EE973EFB844235B808B5EF9B63A51FF00AA ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
21:41:48.0500 0x2e54  PolicyAgent - ok
21:41:48.0531 0x2e54  [ C8DD82C3035E60D671B8CC5DF128D3A9, 6AABF632CBEDA9A7B553BC9134FF100CB6FDC88000D499D2883408FCEDD97576 ] Power           C:\WINDOWS\system32\umpo.dll
21:41:48.0531 0x2e54  Power - ok
21:41:48.0562 0x2e54  [ E075CC071022BD4E9BE7C024717C0E0A, BE65A8C1082AE8DF8C37CA06B2BCC521478AC153EA7388B03F7FAE3913920E75 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
21:41:48.0578 0x2e54  PptpMiniport - ok
21:41:48.0719 0x2e54  [ E3514CE7CB4AF80ECCA383F065BC77C0, 1EA06D358A07EB9DFB703CEFC4EB834B947B899E0ACFE1C494E2DAED63F1D4B5 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
21:41:48.0781 0x2e54  PrintNotify - ok
21:41:48.0797 0x2e54  [ ECD373F9571C745894367CC2635EA44F, E08B2A1017DAE1BF10B986DAFAD14BDE20D79703E0EF3A8C700A3753908C1392 ] Processor       C:\WINDOWS\System32\drivers\processr.sys
21:41:48.0797 0x2e54  Processor - ok
21:41:48.0844 0x2e54  [ 6E409D818C6B342544EAE741B1422B85, B4ADFB7809FC42C432C984C3AC13FAFD1B7AD53BCC7FB16E86371DE4C829DD1A ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
21:41:48.0844 0x2e54  ProfSvc - ok
21:41:48.0875 0x2e54  [ FC0141B4A5AD6D637D883C1A89FC45C5, DCE8942C02EEDAE7A57707CA60CAC3A8CD6BA68E6571E405CA882D4DD6D69E43 ] Psched          C:\WINDOWS\system32\DRIVERS\pacer.sys
21:41:48.0875 0x2e54  Psched - ok
21:41:48.0906 0x2e54  [ DAA9DEE0A5D5F238C4EE54C2C7FB67C5, 7EC8C603BD92699AC35BDCD294F13BEE90D5C2C195FD93A3F16928BFCF53CA93 ] QWAVE           C:\WINDOWS\system32\qwave.dll
21:41:48.0938 0x2e54  QWAVE - ok
21:41:48.0969 0x2e54  [ 83868EB2924E6BC21A54337C65D614D1, 8D1BE01EBD190231153B867C32120DC8FBFBD32050448A778134D435D76A0B07 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
21:41:48.0969 0x2e54  QWAVEdrv - ok
21:41:48.0985 0x2e54  [ B337B1F1E82A83E20A1743E008E25C0F, A2E8AF041B4CAB78AEE28A2147A189FF0F9D2FCEFB167D60FBBA0A787A5A5BE7 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
21:41:48.0985 0x2e54  RasAcd - ok
21:41:49.0016 0x2e54  [ E8FFD8BE3C50E7A71C5FBB87BDD1128E, 3E3EB906CC9A1CCA09580DA9F94DD0E1162CABD343874B76718DC4F2E9069C4E ] RasAgileVpn     C:\WINDOWS\system32\DRIVERS\AgileVpn.sys
21:41:49.0016 0x2e54  RasAgileVpn - ok
21:41:49.0047 0x2e54  [ 044638489B4A5FE5334F46C5314A0826, E06CC2A9EF369794DAD69FBB5AFD1676D4283DDAB2AD5E3EFE454C473F62F955 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
21:41:49.0063 0x2e54  RasAuto - ok
21:41:49.0078 0x2e54  [ BBB6272B7F46C4640A8CDB8A70C3450F, 4266C3ABD0D1D0219F715EA0F155744F7C1E3A7B722BE863831B57AE785419A2 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:41:49.0078 0x2e54  Rasl2tp - ok
21:41:49.0125 0x2e54  [ F83B38FCD4F69157B3D158433FA149CC, AB103BD3E2B3B134CB355C556DF70BCF0CF4DB11EFF7DB4A9876D5AA43D81293 ] RasMan          C:\WINDOWS\System32\rasmans.dll
21:41:49.0141 0x2e54  RasMan - ok
21:41:49.0156 0x2e54  [ 5247F308C4103CDC4FE12AE1D235800A, E567CD33CA1897D53795E071B7AFBAF98B2C8F725F8BED0BA90F5EF611520E48 ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:41:49.0156 0x2e54  RasPppoe - ok
21:41:49.0188 0x2e54  [ 41F631007A158FEBB67F0E2AD1601BBA, EB5EA7277F4178BC27E55BF850AEBCD84B6BED80B2383CFB29548824AAFED135 ] RasSstp         C:\WINDOWS\system32\DRIVERS\rassstp.sys
21:41:49.0203 0x2e54  RasSstp - ok
21:41:49.0250 0x2e54  [ A1A5E79C0D1352AFDC08328A623DA051, 01546DDE6F1FF159A7EB7F2BF104910445D3D863F1F37DEA695579BA60D84280 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
21:41:49.0266 0x2e54  rdbss - ok
21:41:49.0297 0x2e54  [ 6B21EBF892CD8CACB71669B35AB5DE32, 0AD8E14FEF16FB2559F5FC8AFBC9D49E4E24F43CF65F480DBF9FAB593269B419 ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
21:41:49.0297 0x2e54  rdpbus - ok
21:41:49.0328 0x2e54  [ 680C1DAE268B6FB67FA21B389A8B79EF, 856911F77BDD8830C3D683EBE8AF399FB3A54C7D8D0B34EA37D903377F0A39BD ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
21:41:49.0328 0x2e54  RDPDR - ok
21:41:49.0360 0x2e54  [ BC8A79C625568DDB7DCA49D0C2741A64, AB0A7ED9EC2282EC0356D27EA4F70515943E41C2112428B787636B8BEC278933 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
21:41:49.0360 0x2e54  RdpVideoMiniport - ok
21:41:49.0375 0x2e54  [ A26AEC49F318FEE141DDDB2C5F99B3E6, 246AD79FF27E79DEDCB0AAA7C22A8EA6349DEDAC863413A1E378E68FD94C9C4F ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
21:41:49.0391 0x2e54  rdyboost - ok
21:41:49.0438 0x2e54  [ 615DFD97DEA56CE1C3A52185A3038FF8, 707BF5F9FAE478A12656D15013F507CC1335E7B72BD21CA99BB813CB95E37BC0 ] ReFS            C:\WINDOWS\system32\drivers\ReFS.sys
21:41:49.0453 0x2e54  ReFS - ok
21:41:49.0500 0x2e54  [ 0CF7CB56BF2D5E9DBCEE0185CB626FAD, 2BD2E2FB1D2EADD1F70EF55E8523C353F95D4FEB1BAD5017FA4D94F790F27825 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
21:41:49.0500 0x2e54  RemoteAccess - ok
21:41:49.0516 0x2e54  [ AC8785B53F8436058C90450DA1840AE7, CC1FFC2713910211F8A6AD532DBB9253ACD188CBD784F1BE6613DF382825A3C1 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
21:41:49.0516 0x2e54  RemoteRegistry - ok
21:41:49.0547 0x2e54  [ 65B9FDE300A6DECC03BA44C4616DCAD6, CAD992982733DD20282A3453DC4E554AE1FC077C35479C0CA4E8BC3A9DCD3BB0 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
21:41:49.0547 0x2e54  RpcEptMapper - ok
21:41:49.0578 0x2e54  [ A737B433ABAF3F2DCB2BD7B4CC582B26, 3B5706B0CF0969A9F82060FD4DCC745F2D83C066B663FE8A4F0F493B64032C9C ] RpcLocator      C:\WINDOWS\system32\locator.exe
21:41:49.0594 0x2e54  RpcLocator - ok
21:41:49.0672 0x2e54  [ A6F17C299A03BAFEFB9257C462A19E00, EB68967D28355271897166D7B6FD963D1E546D3C24AE1AEAAC561F94357A9345 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
21:41:49.0688 0x2e54  RpcSs - ok
21:41:49.0719 0x2e54  [ 2D05A5508F4685412F2B89E8C2189ABC, 82F12B4E0E73411A121EFD35FBD3B44CBBC0AE96ACFBB45D8C3C3777E2EA320D ] rspndr          C:\WINDOWS\system32\DRIVERS\rspndr.sys
21:41:49.0719 0x2e54  rspndr - ok
21:41:49.0735 0x2e54  [ 1A063730F221B2746FF00457AE17E4F0, 39A3C258CBFE3BC566C63528C9020A3BC9409736AE5289C08A7BA471D8409263 ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
21:41:49.0735 0x2e54  s3cap - ok
21:41:49.0782 0x2e54  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] SamSs           C:\WINDOWS\system32\lsass.exe
21:41:49.0782 0x2e54  SamSs - ok
21:41:49.0813 0x2e54  [ C624A1B32211C3166EDB3F4AB02A30B7, 6B2A4607DB52D74242787ED9DF9067058983D310431D8612D2B0236E6201E681 ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
21:41:49.0828 0x2e54  sbp2port - ok
21:41:49.0860 0x2e54  [ 74A3B67F03877D06B09B1B40C5ED582E, A8FF9BF416F0BF365BFB4E1796859825C811A74B5E54DDDCE8345193BEEBE206 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
21:41:49.0875 0x2e54  SCardSvr - ok
21:41:49.0907 0x2e54  [ 8B9C4D55B4A536FB01C360DDB9533574, 9B939FE68F6F9C171ED0D91E2CE1E67515295D34EC23606BCDFD097DCC8CFD4A ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
21:41:49.0922 0x2e54  ScDeviceEnum - ok
21:41:49.0938 0x2e54  [ 13BEA6C882D4D877A5A85CA149C86BC1, 8E9BE5C2A36D5881D9985C3A31309FE03966EA13A3541D3C5B542AB67FA0D55F ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
21:41:49.0938 0x2e54  scfilter - ok
21:41:50.0016 0x2e54  [ 3151A020E03DDE31AAC49F35C5EFB4DB, 5ABB1103009979F86C862357E28F37C2744979F2C99F7CF6ABB4EB1B8416B3F6 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
21:41:50.0047 0x2e54  Schedule - ok
21:41:50.0078 0x2e54  [ 41C0D7B1A6D4AD119BA6AC0487EA5C8E, 516C2B34BA7507D0DA4148B4ABC0A8C36286570D4EA5C60B28647B1249C15018 ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
21:41:50.0078 0x2e54  SCPolicySvc - ok
21:41:50.0125 0x2e54  [ C54B6B2170BF628FD42F799A66956D75, BCF460A124CAA6F1F1A9A7BCBDCC2D5E39B0404D96B7C9FFAC806E041782B91E ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
21:41:50.0141 0x2e54  sdbus - ok
21:41:50.0188 0x2e54  [ 0B1E929D11A8E358106955603FAC65E8, A5EC91BFC0873EC6AB1D0DB4E91654BD35339BD680E7E82DA2DC64996B4AE515 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
21:41:50.0188 0x2e54  sdstor - ok
21:41:50.0235 0x2e54  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\WINDOWS\system32\drivers\secdrv.sys
21:41:50.0235 0x2e54  secdrv - ok
21:41:50.0266 0x2e54  [ BA24CEA7152239F42ECD04AFB7C89D24, A2A11EABB0C283772B74667C7544B61BEB1B9745FBF065E831542129EB585AFA ] seclogon        C:\WINDOWS\system32\seclogon.dll
21:41:50.0282 0x2e54  seclogon - ok
21:41:50.0297 0x2e54  [ 81FE9A81EDF8016816C9E91FBFBF7D35, 87FB92A3D15F312F0B9C423EF851061A944B013E5668D8C9A441B4DC0EB690AF ] SENS            C:\WINDOWS\System32\sens.dll
21:41:50.0297 0x2e54  SENS - ok
21:41:50.0344 0x2e54  [ 6E4012AE67F09F867EF620C8D5524C0B, 63933E51F8E413E63481369CE2F9FD224560550FBD3BD2B4573E9F4AD88708A2 ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
21:41:50.0360 0x2e54  SensrSvc - ok
21:41:50.0391 0x2e54  [ DB2FF24CE0BDD15FE75870AFE312BA89, 7DB0D978C92CD0A0A81F7AB46FE323B4929CEA01585B0F330921E6DFA7DE1B85 ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
21:41:50.0391 0x2e54  SerCx - ok
21:41:50.0407 0x2e54  [ 0044B31F93946D5D41982314381FE431, 95B8A94BA9EF770F29ACD5B23D447EC2B6CF1CB3D0030343BA1550AC31F6E2A5 ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
21:41:50.0407 0x2e54  SerCx2 - ok
21:41:50.0422 0x2e54  [ 3CD600C089C1251BEEB4CD4CD5164F9E, D9F81951B4454B24E821E33ACA53A851A61F3135E8EC6FBE6761A1A3E1CDCBE2 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
21:41:50.0422 0x2e54  Serenum - ok
21:41:50.0438 0x2e54  [ D864381BC9C725FAB01D94C060660166, 132FED95222BBE3B0B25B3F1F0EFC5903D04564BD047BA4D2042AD51E3FDA724 ] Serial          C:\WINDOWS\System32\drivers\serial.sys
21:41:50.0438 0x2e54  Serial - ok
21:41:50.0469 0x2e54  [ 148195AE95D9BC7375A08846439FDAC1, 3A2F78FD18AA7A6D659921E19335E943894530874AC5AB5E7219CEF28FA54F7A ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
21:41:50.0469 0x2e54  sermouse - ok
21:41:50.0500 0x2e54  [ 3A2F1A7472C3B7CC9B89C8516C726488, 9BCBBAC10C900EA7B30822B463A77EE5067F217C4B490857A09E5277983CB89B ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
21:41:50.0516 0x2e54  SessionEnv - ok
21:41:50.0547 0x2e54  [ 472B7A5AC181C050888DB454663DD764, C950A8615D57BFD455E18880398350642B2E1D6B951EC9754FD8D429F3418835 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
21:41:50.0547 0x2e54  sfloppy - ok
21:41:50.0610 0x2e54  [ 8081FF3DAE8159FE8956B09BC29CE983, AC0F305AEE8B1AB2E1275F1D33EC1D2F3E23F234F831BD9D41F415A94A19D3AB ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
21:41:50.0641 0x2e54  SharedAccess - ok
21:41:50.0672 0x2e54  [ 7FD9A61A3523A61FC135D61D6E160314, 409E1CF7A62FD90CBC31AEAFBB7230B02DBEC6CFCA2D266D221A7643FAEBA13B ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
21:41:50.0688 0x2e54  ShellHWDetection - ok
21:41:50.0703 0x2e54  [ 2F518D13DD6F3053837FE606F1A2EA1F, 64109296CE95BD233525688A350D575CF97B9464659AA07CF78B307B6ADBC835 ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
21:41:50.0703 0x2e54  SiSRaid2 - ok
21:41:50.0719 0x2e54  [ 1AC9A200A9C49C4508F04AAFFCA34A3F, 972BCB2A39169155F74111FAC74ACCD8F50E34EADCF087833B0980827627BBF4 ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
21:41:50.0735 0x2e54  SiSRaid4 - ok
21:41:50.0750 0x2e54  [ 3C84DCCE5B322F745A75CA8BA3A0F6B3, 1FB94A8A1C63D6FDB82E28ED5B696B3CB1F64183A89A3B5153B266C292CB7815 ] smphost         C:\WINDOWS\System32\smphost.dll
21:41:50.0766 0x2e54  smphost - ok
21:41:50.0797 0x2e54  [ D0EB0DF8C603BBA084351A92732B1CBE, E24ED8F78EF41C1BC17386AE4BBCE0DC892C5B89B12C03FC9FB61D359B13F1B4 ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
21:41:50.0797 0x2e54  SNMPTRAP - ok
21:41:50.0860 0x2e54  [ D24B1945ED1F9C96DA786DBBF1E983CE, B46CB0B72B7A3DF94A46B8D65E38535C5F8E72A55CF2DC48EFA1F9A0108691C4 ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
21:41:50.0875 0x2e54  spaceport - ok
21:41:50.0907 0x2e54  [ F337BE11071818FC3F5DC2940B6BDE34, D5CFF00E5DF37045F71AEE101AC9B270EBB29F372F404757B58600E9966C7E4D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
21:41:50.0907 0x2e54  SpbCx - ok
21:41:50.0953 0x2e54  [ FCB156A6745631A67DEA61827061D483, 9275ABFA1E1E595969A71C0DA228D18D1B868BF46E097E1276142BD80F8A32C9 ] Spooler         C:\WINDOWS\System32\spoolsv.exe
21:41:50.0985 0x2e54  Spooler - ok
21:41:51.0172 0x2e54  [ C993A0B97BECD3AAF5158E3869878465, 8B86F37DEFCBE55DE507D830EC4980EBB39B3CCA30C2B3E76B588AAB282A50FC ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
21:41:51.0313 0x2e54  sppsvc - ok
21:41:51.0375 0x2e54  [ EE037BD2E873D209DD4D49467ED965A3, 0DF48FE6ADACB3210B48CBFEAD4B57BDB59464AB6DD25E12F9B205982F4049E1 ] sptd            C:\WINDOWS\system32\Drivers\sptd.sys
21:41:51.0391 0x2e54  sptd - ok
21:41:51.0469 0x2e54  [ BFA32A566B958EF5A1D6383F3CB03AA2, BD899DE3815C88F825C3D93AA8AA43C178626F43E4B14C107A91C68155D64F71 ] SRTSP           C:\WINDOWS\System32\Drivers\NISx64\1605040.018\SRTSP64.SYS
21:41:51.0500 0x2e54  SRTSP - ok
21:41:51.0516 0x2e54  [ BA2ABBEA69BD1866C973DE11CB0CE9F8, 7A04BC2F4DA9A69A996911CC429064D24CF51F4046A2EE688D4326B44C9EDAFB ] SRTSPX          C:\WINDOWS\system32\drivers\NISx64\1605040.018\SRTSPX64.SYS
21:41:51.0532 0x2e54  SRTSPX - ok
21:41:51.0563 0x2e54  [ 6416E79A58A8FCC33A447A4DDDD3BF04, 839E3107ACCD520C309BD6C8324DF7A8EB724EAD442AB1F1CACB0D83F84BE488 ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
21:41:51.0563 0x2e54  srv - ok
21:41:51.0610 0x2e54  [ 00D8AC8E3053290BDE6EA2FB6810D2FC, 957FEF84CBBAE71829529AE99A1B24F52D7831BD666442D0132FBB825409A75D ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
21:41:51.0641 0x2e54  srv2 - ok
21:41:51.0657 0x2e54  [ D047CD668E6277FD80F0C613946F034C, BD0209E7FD89F9295D4DE48C9652DF2A2990277C16AFA473B96704B1CBD2F338 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
21:41:51.0672 0x2e54  srvnet - ok
21:41:51.0735 0x2e54  [ CF6C3037839CF78421A94F9060C2886F, CA98C180AE03F5BE8FEFFBA75BD98DEE2AD4FA975E1EF83215C9CD2476946811 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
21:41:51.0751 0x2e54  SSDPSRV - ok
21:41:51.0782 0x2e54  [ 198A737DBA666F4808D62E9A8277A6B7, 90B6E5E2ACE95D850C913A3A1DA1F966C44955C530004C228FA93B2A536F5C27 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
21:41:51.0782 0x2e54  SstpSvc - ok
21:41:51.0876 0x2e54  [ 97F839E8AEC48EE271509BF4BC764C24, 7B9B791E987ADC8991C128CD52CB253F295E41DF502BF8933DF388994E84560D ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
21:41:51.0891 0x2e54  STacSV - ok
21:41:51.0907 0x2e54  [ 366DEA74BBA65B362BCCFC6FC2ADFD8B, 4D28122AB9D8DAB724021E6513B4474BD34FCEDF47769B1D27AC7551FCA002F8 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
21:41:51.0922 0x2e54  stexstor - ok
21:41:51.0969 0x2e54  [ 7E89F65EB250463EE8665CFE19566FC3, 45849BAFA62E72A97103C5F02962D346D3F79DE9DB07297D1073FF355A506D9C ] STHDA           C:\WINDOWS\system32\DRIVERS\stwrt64.sys
21:41:51.0985 0x2e54  STHDA - ok
21:41:52.0063 0x2e54  [ 63E9CE568CF1192771A5F0460DE7D2B9, C27B21FD2C14AD41A59EF62EB8AC95C08EB13CCB1CEECD8378B8CDD4DC352E69 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
21:41:52.0079 0x2e54  stisvc - ok
21:41:52.0110 0x2e54  [ 0ED2E318ABB68C1A35A8B8038BDB4C90, 5C3ABC245F4BCFE64E646D9C0E2F5E211244956C84D03084C71FF6A7E0CDED30 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
21:41:52.0110 0x2e54  storahci - ok
21:41:52.0126 0x2e54  [ 8B9486B64E5FC17FB9CC04CA10B77A34, C1EAC9D27DC83E4C56B890D97988C3CCFAE3877309610601F2E3FFFE97686D43 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
21:41:52.0126 0x2e54  storflt - ok
21:41:52.0141 0x2e54  [ 6B06E2D11E604BE2B1A406C4CB3B90DE, 2DDEA1568A85AD64FCE5D10D348304FCD9BE6E96C2313353EF70A2933306D188 ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
21:41:52.0141 0x2e54  stornvme - ok
21:41:52.0172 0x2e54  [ A45F5AC9D8069D0EC66E3CA73103073B, 996788F1C58E016E8E5CF3FD1D220A3C40AFFD6C21361A34636415DB12E0D381 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
21:41:52.0172 0x2e54  StorSvc - ok
21:41:52.0188 0x2e54  [ 548759755BC73DAD663250239D7E0B9F, D31A05A8CE800B539420B6E545F1F4BF6E4B02EAF8366DE89CAF13A83C6CA48D ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
21:41:52.0188 0x2e54  storvsc - ok
21:41:52.0219 0x2e54  [ E395BE02F80A79A6CF973BA38DBB8135, 4C6F85B0EB8E7725BA720F9742561D229726C0D7C17505D1E79F19A5626F6325 ] svsvc           C:\WINDOWS\system32\svsvc.dll
21:41:52.0219 0x2e54  svsvc - ok
21:41:52.0251 0x2e54  [ 65454187E0F8B6C0DCECB0287D06EC43, 87550000CF5B3C1DF3E69633934AFE8554AE40B6638F190D3185AD63F1D7A2EE ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
21:41:52.0251 0x2e54  swenum - ok
21:41:52.0297 0x2e54  [ 1C71D72D4997A284128FBEE770726330, 21682BDE74A1108FED1124FB1EA35A03CBFA94ABE1B89CC0FADB4DD82596C43E ] swprv           C:\WINDOWS\System32\swprv.dll
21:41:52.0313 0x2e54  swprv - ok
21:41:52.0376 0x2e54  [ C9EC22D5B3C6B32A7C8B4A73870A7379, BA530C64FDE63D9A4023BB9E667497D5248B2910BC1A214B592318CC64034735 ] SymEFASI        C:\WINDOWS\system32\drivers\NISx64\1605040.018\SYMEFASI64.SYS
21:41:52.0407 0x2e54  SymEFASI - ok
21:41:52.0422 0x2e54  [ 1DE0CBF15AC67AE0E5B456ADEFB89493, C764815313BB4332279730AA02531A448A1D32F5B6D5689FF04549406A5B5212 ] SymELAM         C:\WINDOWS\system32\drivers\NISx64\1605040.018\SymELAM.sys
21:41:52.0438 0x2e54  SymELAM - ok
21:41:52.0454 0x2e54  [ 6DF8F618B93C821630C9BAA8DA3FAAAF, 553972D63F3347291EC8370AB910F741EF1DA61BC74FBA4192EF6E1DF567FB99 ] SymEvent        C:\windows\system32\Drivers\SYMEVENT64x86.SYS
21:41:52.0469 0x2e54  SymEvent - ok
21:41:52.0501 0x2e54  [ 0891E59A27208B9B727BAB863B853E80, 7BBDD53CB7AB003DF803D6D596A2B5216425DCC7FA8D3F311AE5BD4EC19FBB0A ] SymIRON         C:\WINDOWS\system32\drivers\NISx64\1605040.018\Ironx64.SYS
21:41:52.0501 0x2e54  SymIRON - ok
21:41:52.0547 0x2e54  [ 751C968945EFD42469FE52D6CE384196, 3386681036909F60A249951009822190EFB1C390D2F46E7EFE44893F28D0F31C ] SymNetS         C:\WINDOWS\System32\Drivers\NISx64\1605040.018\SYMNETS.SYS
21:41:52.0563 0x2e54  SymNetS - ok
21:41:52.0610 0x2e54  [ 7E85DB0463AD2403AE84AD162B162279, 996C42ECAFC6E24C623068AFAFCC0A2612526333AF9315F7536C6D40C2570632 ] SysMain         C:\WINDOWS\system32\sysmain.dll
21:41:52.0641 0x2e54  SysMain - ok
21:41:52.0673 0x2e54  [ D73DBBB96CEE90C2856164AAD8543425, D11ADB5D4C5DD355314CA656D375D0062CAE7462E866F94F1B26D5803F65DCB2 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
21:41:52.0673 0x2e54  SystemEventsBroker - ok
21:41:52.0719 0x2e54  [ D6A71B95ACF71ACA63B67232059F1BCD, C5CEC032E7AB507500D1CC7A4E65DA6322412C798201A9D770CBDE892E50DFC8 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
21:41:52.0719 0x2e54  TabletInputService - ok
21:41:52.0751 0x2e54  [ 5A5BAB1CA9621E73E25EE4744B67CDA6, 479EBD7BAE1E2AD431153FDC016742F7A8D824716EAB1A4CA87EBBD21D61DECD ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
21:41:52.0766 0x2e54  TapiSrv - ok
21:41:52.0844 0x2e54  [ 746DDF7D59AB8D721C88D48434597E8D, 78BDBAB8D1E86A11804FEB19B355C0FAD04ACE8DD4BDDFDADCE5461E259BCE82 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
21:41:52.0891 0x2e54  Tcpip - ok
21:41:52.0954 0x2e54  [ 746DDF7D59AB8D721C88D48434597E8D, 78BDBAB8D1E86A11804FEB19B355C0FAD04ACE8DD4BDDFDADCE5461E259BCE82 ] TCPIP6          C:\WINDOWS\system32\DRIVERS\tcpip.sys
21:41:53.0001 0x2e54  TCPIP6 - ok
21:41:53.0032 0x2e54  [ 41CF802064F72E55F50CA0A221FD36D4, 70ABCDF9E96611E8C83042C581575E26649FE479475E8E118CD3FF6CB1C84C3F ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
21:41:53.0048 0x2e54  tcpipreg - ok
21:41:53.0079 0x2e54  [ E0BD2D83875464FEEEB242CBA8B7E073, A3067165128F36035FA9F3CBA55CFED736E180C495497FA7332B3D97908C3D90 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
21:41:53.0079 0x2e54  tdx - ok
21:41:53.0094 0x2e54  [ 232D185D2337F141311D0CF1983E1431, 02EB56D3F26174AF1741C1A444CE30DE84D5BAF583C1A52C7A953BCC52445547 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
21:41:53.0094 0x2e54  terminpt - ok
21:41:53.0141 0x2e54  [ C50997E282576DA492EBA66B059D4196, EBD793CB396F9503376207FA60353F5672DEDB620C8E01C8D6AE0030B3B03339 ] TermService     C:\WINDOWS\System32\termsrv.dll
21:41:53.0173 0x2e54  TermService - ok
21:41:53.0204 0x2e54  [ 2180DBCE75B914E5E5BBFFFAAE97AA21, 8000AECC8855903DB50ABA7E304396D1FCEAE8DC9ADD4FC50275CF24B4D914DE ] Themes          C:\WINDOWS\system32\themeservice.dll
21:41:53.0204 0x2e54  Themes - ok
21:41:53.0235 0x2e54  [ 4C5179DB61B9E14BEC15CDC4B152B2E9, 9048BEC7AD6A3F4B640E99B1F0365AC9A46740B188758FBB2C160EF30AD6E64B ] THREADORDER     C:\WINDOWS\system32\mmcss.dll
21:41:53.0251 0x2e54  THREADORDER - ok
21:41:53.0282 0x2e54  [ B5ED9CC61798C7D44BD535D40B89EFB5, 1BDCEAA9AF2096381870D92129C748F4EE06A1167ABA9367B9DD43BAF27E3F5B ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
21:41:53.0313 0x2e54  TimeBroker - ok
21:41:53.0344 0x2e54  [ 80A2FC1A089A71F2DBE5D8394FFB009F, DEA30E751F6EA42E43E16869713FC7E37832B15DAFA0062B1798DFA476981385 ] TPM             C:\WINDOWS\system32\drivers\tpm.sys
21:41:53.0344 0x2e54  TPM - ok
21:41:53.0376 0x2e54  [ 884113C2BB703FE806C8608B75F34831, 24DE5750CA4363455412BABB0B1FAB08497153E8F158ED44958F100410F93506 ] TrkWks          C:\WINDOWS\System32\trkwks.dll
21:41:53.0391 0x2e54  TrkWks - ok
21:41:53.0438 0x2e54  [ 44A94FB4C76528D2382FFE04B05827C3, B0BCDF7CD1D65E61A9061D539D83527A89B69583958F8A26C6BF9766C1B61E0C ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
21:41:53.0438 0x2e54  TrustedInstaller - ok
21:41:53.0469 0x2e54  [ BF8F54CA37E9C9D6582C31C5761F8C93, 337C566792F6FB9B7FD5D1D4384B767CFE4CF5DBB2E4688CCC36CBB018A0DD0F ] TsUsbFlt        C:\WINDOWS\system32\drivers\tsusbflt.sys
21:41:53.0469 0x2e54  TsUsbFlt - ok
21:41:53.0501 0x2e54  [ 20185BEB7512EDE4EFECDFA148AC9F99, 6F539478493C0F87F3DDF67A4A6D4D41E9474EEF21434E856350CE149A34EA9F ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
21:41:53.0501 0x2e54  TsUsbGD - ok
21:41:53.0548 0x2e54  [ E85916632CD3B9E9B546968DB950BF42, DECE3852C763CC6293C7D1B772296C43A0AE1E47BBCC4979C96B3B2AD70413F3 ] tunnel          C:\WINDOWS\system32\DRIVERS\tunnel.sys
21:41:53.0548 0x2e54  tunnel - ok
21:41:53.0594 0x2e54  [ F6EEAD052943B5A3104C1405BB856C54, FE422813E6C1012E9F392EFF2AE4C6D3A4DBD9CB2BD5E6A5CAB57D4E89A29468 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
21:41:53.0594 0x2e54  uagp35 - ok
21:41:53.0626 0x2e54  [ FE6067B1FD4E63650C667B33D080565B, 2C330ED00E49BA55E25564230E0DFB8A35F2B5320EB18D4AF7CAACFA9A449044 ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
21:41:53.0626 0x2e54  UASPStor - ok
21:41:53.0673 0x2e54  [ 807F8CF3E973305FC435C61CBBEE2A49, 43CDEAC2BFC5091C11DFC0E7F7171AF9A598AE56CB056C3CF382AE7807F79EF0 ] UCX01000        C:\WINDOWS\System32\drivers\ucx01000.sys
21:41:53.0704 0x2e54  UCX01000 - ok
21:41:53.0751 0x2e54  [ C61EAF8E1E4B2F62BA4FDF457440B2C6, 961F76A789925234AC27F56AAE34556FA06088D71580B42C24B0BC209EAFD67E ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
21:41:53.0766 0x2e54  udfs - ok
21:41:53.0782 0x2e54  [ 9578691F297E1B1F519970FE6D47CB21, 080C352AAF22A16A4F3C4AB4DCEA5BFA656457C73F735CEBA30516FDACCF6301 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
21:41:53.0782 0x2e54  UEFI - ok
21:41:53.0813 0x2e54  [ A867F0F978EE64C87FADC3B100869EE4, 2686BE85F963D0D0BB275E92E5B543280D8742CF10772303E3189D0719B6A277 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
21:41:53.0813 0x2e54  UI0Detect - ok
21:41:53.0844 0x2e54  [ 5EAB5117DDB24FC4D39E6FFFCF1837B9, 2BC709240867F161E94BE6625A04F478EAAA3EEE7BC7C37ED0DFA9EEA5928E98 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
21:41:53.0844 0x2e54  uliagpkx - ok
21:41:53.0860 0x2e54  [ DA34C39A18E60E7C3FA0630566408034, 2F162504214053894C72760D9933D01DBF3578609FE5E2376C3272818599FE32 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
21:41:53.0860 0x2e54  umbus - ok
21:41:53.0876 0x2e54  [ AE8294875E5446E359B1E8035D40C05E, AE0357BAB47C07C3576BC76951CD258C009BC5A1B93259D2122A841BD9CDA8FA ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
21:41:53.0876 0x2e54  UmPass - ok
21:41:53.0923 0x2e54  [ A023F267A262D5DA6CE1436D9C5E8FD9, 92AD7AF91184C244A7E392F49663143193A80D5D81114546A00F18227DE31D23 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
21:41:53.0923 0x2e54  UmRdpService - ok
21:41:53.0985 0x2e54  [ C98493DD8E6A50154FAC75C15E1C36BB, CECD1C826C8F7AF05468871BF6A0ACDBB6B0202F4F87F48C6D367E5BD699E800 ] upnphost        C:\WINDOWS\System32\upnphost.dll
21:41:54.0001 0x2e54  upnphost - ok
21:41:54.0016 0x2e54  [ FF78D053A05E5A394F4E3C1816CC65A8, 5DAE02414271231F5FDBB751AFEB99874779B467947020815D4AE54432D4269D ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
21:41:54.0016 0x2e54  usbccgp - ok
21:41:54.0032 0x2e54  [ 0139248F6B95CF0D837B5B46A2722D40, 38E3E704E0364F07732DB418AEBD126B040FB3CDB7D78EA36E8605D50D528A80 ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
21:41:54.0048 0x2e54  usbcir - ok
21:41:54.0048 0x2e54  [ 48BA326A3DBA5B5BEB5F2777F4618696, B9EC8155F11A3A7644BD9DC8910681B46AE44AE3BF53F052DF50E9C5555E3229 ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
21:41:54.0048 0x2e54  usbehci - ok
21:41:54.0063 0x2e54  [ 4875DC63E548812C75D4FDEF84970C89, 6A29306BAB6F95F0384E16533A9588A654A6E3CFC35D55A4CEB2B14EF34EEE19 ] usbfilter       C:\WINDOWS\System32\drivers\usbfilter.sys
21:41:54.0079 0x2e54  usbfilter - ok
21:41:54.0094 0x2e54  [ FEF0BC107812B36849741C3211BA6B60, B3EF738BE1E6B6027F29C9713CD3F367EA067D2BE46580AFBC0FB58046EF6BBD ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
21:41:54.0094 0x2e54  usbhub - ok
21:41:54.0126 0x2e54  [ 95B0179BDA907252025DEEA183699FB3, A6BDFB93EE9418A83407024204A41640A08638C60E2BE75C249D102601DC1D80 ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
21:41:54.0141 0x2e54  USBHUB3 - ok
21:41:54.0173 0x2e54  [ 3019097FB6C985EF24C058090FF3BDBD, 24AC518D34E338D94BF3D5B3F72E53F8A1369BAA7F32FEA3EDBCF928C4FF1D17 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
21:41:54.0188 0x2e54  usbohci - ok
21:41:54.0204 0x2e54  [ 4D655E3B684BE9B0F7FFD8A2935C348C, 3A7FC1748C5AEA8CFE0E7C22ADC77E3DCA475455FC16D9C6A5C16EB5E949A516 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
21:41:54.0219 0x2e54  usbprint - ok
21:41:54.0251 0x2e54  [ 66732C13628BDB1AB0D6FD46027327C2, B582C0F348D8F79419CA5A58F10CA151E06D7CA3BE162344CADA46D9D7FED97C ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
21:41:54.0266 0x2e54  USBSTOR - ok
21:41:54.0282 0x2e54  [ 064260B3A5868AC894A4943543BC7AB7, D3534E98B34C4AC9A430D7E0AB301A0E5E1511E3117C2FEA392636B0DE2C38E2 ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
21:41:54.0282 0x2e54  usbuhci - ok
21:41:54.0313 0x2e54  [ 44603DA5A87FB491EF59C889EBBB4DDB, 59AA9B6B0B5D66F9312CD3F999D0D9F12F1A2C5D230365AD7287CD71FD86961C ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
21:41:54.0329 0x2e54  USBXHCI - ok
21:41:54.0344 0x2e54  [ 382100E75B6F4668AEAEF228C6CEFFAD, 9C7229F10F11D18E1FED6395391A46225A84B421034B9AB6F81AF7430FDC556F ] VaultSvc        C:\WINDOWS\system32\lsass.exe
21:41:54.0344 0x2e54  VaultSvc - ok
21:41:54.0360 0x2e54  [ FEB26E3B8345A7E8D62F945C4AE86562, 3AAFE87C402FC8E92542DFE60EC9540559863065F88D429A16D7B1BF829223FF ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
21:41:54.0360 0x2e54  vdrvroot - ok
21:41:54.0423 0x2e54  [ 8A4D808D1EC7C1C47B2C8BF488A9A07A, 63C07312ADB6F8A8BDE93361C30AC63DAB4DE1141AF54630EEF11E54B0BF983D ] vds             C:\WINDOWS\System32\vds.exe
21:41:54.0454 0x2e54  vds - ok
21:41:54.0469 0x2e54  [ A026EDEAA5EECAE0B08E2748B616D4BD, 2525A54DC7F49DDFBB999C22BF3FAB6D9E9F70C0806E58D81E90AC59F9F46089 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
21:41:54.0469 0x2e54  VerifierExt - ok
21:41:54.0516 0x2e54  [ C06E8481E068F170A258441639AC5792, 2F550530BACB511A195D5047F003B01CB6E04FA9A0DCCF638CB3D51FF5467DC7 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
21:41:54.0532 0x2e54  vhdmp - ok
21:41:54.0563 0x2e54  [ 06D38968028E9AB19DE9B618C7B6D199, 62022297A47F440D1C82CA0B0E57C0C8E9D5033D83DD3B40492B218DF65EBF68 ] viaide          C:\WINDOWS\system32\drivers\viaide.sys
21:41:54.0563 0x2e54  viaide - ok
21:41:54.0579 0x2e54  [ 511AD3FF957A0127E6BD336FF6F89C38, 55325BFD0857A1204F7F6F8ED8C91C07B0E20A50402105708E7365ECD9E25A21 ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
21:41:54.0594 0x2e54  vmbus - ok
21:41:54.0610 0x2e54  [ DA40BEA0A863CE768C940CA9723BF81F, 567C0C3F422325635808B0CF76E05D3B6187F96845C33F85F92F98C9FE53A5B8 ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
21:41:54.0610 0x2e54  VMBusHID - ok
21:41:54.0657 0x2e54  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
21:41:54.0673 0x2e54  vmicguestinterface - ok
21:41:54.0688 0x2e54  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
21:41:54.0704 0x2e54  vmicheartbeat - ok
21:41:54.0720 0x2e54  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
21:41:54.0720 0x2e54  vmickvpexchange - ok
21:41:54.0735 0x2e54  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
21:41:54.0751 0x2e54  vmicrdv - ok
21:41:54.0767 0x2e54  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
21:41:54.0782 0x2e54  vmicshutdown - ok
21:41:54.0798 0x2e54  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
21:41:54.0798 0x2e54  vmictimesync - ok
21:41:54.0813 0x2e54  [ C42C38E15C0DC39D4B0BDF34F733E468, 7264680C44FA68BB1FC0A490FE3988AFDE19892295F7458943D8CBEE6C01D4F0 ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
21:41:54.0829 0x2e54  vmicvss - ok
21:41:54.0845 0x2e54  [ 55D7D963DE85162F1C49721E502F9744, 5AD34D6DB707EF3E5242BD8CA67B21D6258EE7E7FC477D5227BD15500AE7F45F ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
21:41:54.0845 0x2e54  volmgr - ok
21:41:54.0860 0x2e54  [ CCB9E901F7254BF96D28EB1B0E5329B7, F0E3CA4EFA544CDAEF4092284CF3EC7DF07F806A770285E281816457AD8813F5 ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
21:41:54.0876 0x2e54  volmgrx - ok
21:41:54.0892 0x2e54  [ 64CA2B4A49A8EAF495E435623ECCE7DB, 81151F295A54DE2B8B88C7F48C86BF58CDFF96F98493509C06D6F41484594386 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
21:41:54.0907 0x2e54  volsnap - ok
21:41:54.0923 0x2e54  [ EF31713EE4C7CCFE4049F7E7F15645A2, 35D198D3F1061E19A7EF89FA1E75377049CD6BCA9702F8076B9F95BB8737E0D4 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
21:41:54.0923 0x2e54  vpci - ok
21:41:54.0954 0x2e54  [ 4539F45F9F4C9757A86A56C949421E07, DEC362314B2C66414F39354AFE79C02B18BF4EEF90787FB58307F6EB62237E2C ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
21:41:54.0970 0x2e54  vsmraid - ok
21:41:55.0032 0x2e54  [ 94FAFD473CDD80CE19A21FB9503D7ED1, 953E5E8C753C0017E1258695A76F60CC05D283F7476B9D9C5C8AC78B8E3FCE18 ] VSS             C:\WINDOWS\system32\vssvc.exe
21:41:55.0063 0x2e54  VSS - ok
21:41:55.0079 0x2e54  [ 0849B7260F26FE05EA56DED0672E2F4B, 7EAC0E7988F45CB4133A15932955B7B03CE715C967A3BAC9999D81543EBCAEC5 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
21:41:55.0095 0x2e54  VSTXRAID - ok
21:41:55.0142 0x2e54  [ BE970C369E43B509C1EDA2B8FA7CECB0, 18951F2AA842A0795AA79A4E164EE925A35E6270EBE4C4CDB19D0A891830E383 ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
21:41:55.0142 0x2e54  vwifibus - ok
21:41:55.0173 0x2e54  [ 35BF5C5F5E3C9902C98978C7640574DA, C61E50B04000DCEC72365723F0C0725C2E005529DAF2777A59E624C14DA29E55 ] vwififlt        C:\WINDOWS\system32\DRIVERS\vwififlt.sys
21:41:55.0173 0x2e54  vwififlt - ok
21:41:55.0188 0x2e54  [ 65ED7B9CFEA893DF7748D5FF692690DE, 73AB9D8BB928B3247BDFC7BB47AD7FCA763B375DC250C251DB4E0573531040E8 ] vwifimp         C:\WINDOWS\system32\DRIVERS\vwifimp.sys
21:41:55.0188 0x2e54  vwifimp - ok
21:41:55.0235 0x2e54  [ DC821E811EFBB65CDD77FBB8B6ECA385, B7C8AACDF81DBA298F2F384983D36B269876C31F0398D89BF9070217A069B96F ] W32Time         C:\WINDOWS\system32\w32time.dll
21:41:55.0251 0x2e54  W32Time - ok
21:41:55.0298 0x2e54  [ 8E553C859C83784DEC08B10AFC3EAC92, 41D8DBA1500DBD3AC9783169ACF545805EF05069F12866238992A30794369254 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
21:41:55.0313 0x2e54  w3logsvc - ok
21:41:55.0345 0x2e54  [ 0910AB9ED404C1434E2D0376C2AD5D8B, 62585CA5F1375BDA440D28D5DF1ADDC9DE3DDFA196D49BBFF3456A5A09EE1C6B ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
21:41:55.0345 0x2e54  WacomPen - ok
21:41:55.0392 0x2e54  [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:41:55.0392 0x2e54  Wanarp - ok
21:41:55.0407 0x2e54  [ 6505C9E72910F91D4C317EECF22D1DE6, 838BAEA6F0BBA916B3291EB165F65DA2F4EC35395678D450EEEB1E540A123FC4 ] Wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
21:41:55.0407 0x2e54  Wanarpv6 - ok
21:41:55.0470 0x2e54  [ 9BAE40BD31E3EE0B0C70BEF167E0A2BC, 2419AC815C95F2629E1832973501983D06F788728755605D42D6C8565C3CBBF1 ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
21:41:55.0501 0x2e54  WAS - ok
21:41:55.0563 0x2e54  [ A81988DCC4FA440AA88B84CA452F5E22, 3573AAA09971E8ADB6FEFA778E02B2D8EE5E4249267CF37A524D9F019CC836FB ] wbengine        C:\WINDOWS\system32\wbengine.exe
21:41:55.0595 0x2e54  wbengine - ok
21:41:55.0642 0x2e54  [ 0F1DFA2FED73FA78B8C3CDE332A870F6, 1089F6F585F5350D349A640EBD3117832DF6B3657EB6667CB00AE217E04ACA17 ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
21:41:55.0657 0x2e54  WbioSrvc - ok
21:41:55.0673 0x2e54  [ 0EAEC313B24837613621B4A2536ED382, 61C194ED7FA7D65BBE61A546D5FCA52F52AB08324E084D3EC23C9706E9BF0175 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
21:41:55.0688 0x2e54  Wcmsvc - ok
21:41:55.0720 0x2e54  [ F6B4C2280FF7C7156AC8A4687B9DA35E, 1899D584D7469BB49355D84080051E2575B033E6312009D9C6C1DD3F7F9AA4C5 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
21:41:55.0751 0x2e54  wcncsvc - ok
21:41:55.0782 0x2e54  [ B7BF1D783F5B2484E8CE1C0C78257F16, 468601199FCCF63DBAE86EE6B8825EA85B2A1EE177413353FFA2CC9CA5249FCD ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
21:41:55.0798 0x2e54  WcsPlugInService - ok
21:41:55.0813 0x2e54  [ 81285DDC994F03379DB46419300B2DCB, 98D3622E11F375718AEA1DE3B5F0104DDAB4F96B6D4C19788C14F7B338A6F235 ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
21:41:55.0813 0x2e54  WdBoot - ok
21:41:55.0860 0x2e54  [ CB6C63FF8342B467E2EF76E98D5B934D, BE017CE91E3BAB293DE6ECF143797CCE3F33CC63024437472B4E38C6961AD884 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
21:41:55.0876 0x2e54  Wdf01000 - ok
21:41:55.0907 0x2e54  [ 26B8FED3F3B85F5F0C4BD03FD00B9941, 7F94FE7954498223B33C025258DB588A3AC9FF25C58EEAD204514FD20652FE40 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
21:41:55.0923 0x2e54  WdFilter - ok
21:41:55.0954 0x2e54  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
21:41:55.0954 0x2e54  WdiServiceHost - ok
21:41:55.0970 0x2e54  [ F581F9C9D6953FABFA24E67105F0B614, 5A7BB72523D1C53BBE68700537D7AE0D150BC7E4B8227A916B2E29EE4CA267A9 ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
21:41:55.0970 0x2e54  WdiSystemHost - ok
21:41:55.0985 0x2e54  [ CE67080F00E0AF32755096CEA6430ABA, 0E5D626F9F76C0BC63B2D246AD66D9CBF7D92F34B56398417BCFD0C331DBD282 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
21:41:55.0985 0x2e54  WdNisDrv - ok
21:41:56.0048 0x2e54  WdNisSvc - ok
21:41:56.0095 0x2e54  [ 40F83492DB9ABBA59773A45FB487C8B2, 0D0DE0B0C9B929FEFD2674CCF17F5F2FC4B16EAB8E1981BBCE51B0305FD7D75E ] WebClient       C:\WINDOWS\System32\webclnt.dll
21:41:56.0110 0x2e54  WebClient - ok
21:41:56.0142 0x2e54  [ 384E1D04FE20845B2559D292F17A9FA1, AD3B0B2B2219691AC30FEEC8AFDB3BBB74B51BB7D02038AE2B4DEA514E245315 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
21:41:56.0157 0x2e54  Wecsvc - ok
21:41:56.0188 0x2e54  [ 455014F4E48B67EBE0F032E2B0E06BF2, A36435784A034B27056A0E606683A20C69F1B0AB2B6BAEDEAEAA190F6287CAEF ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
21:41:56.0188 0x2e54  WEPHOSTSVC - ok
21:41:56.0220 0x2e54  [ F13DBA57CEA9B7074B95EDCA6AD2635E, 1D9BA4841EF1343A5D9096B5FE27FC65DC1901D6683DD13516171638549666B5 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
21:41:56.0220 0x2e54  wercplsupport - ok
21:41:56.0267 0x2e54  [ FD7E58B6AA3EABF2D12B9762A20E11E4, 4C5E2E246C5C70074866BB3DBC2AAF483ECE4345004CCB8D1FE285047268685D ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
21:41:56.0267 0x2e54  WerSvc - ok
21:41:56.0313 0x2e54  [ 715ABA3DD164D06457A2A3C92F6EA9D5, E6F8269D2FFC4A548B65724C0A3F53756ED15E47229861FBD40B656EE40FE166 ] WFPLWFS         C:\WINDOWS\system32\DRIVERS\wfplwfs.sys
21:41:56.0313 0x2e54  WFPLWFS - ok
21:41:56.0360 0x2e54  [ 8C840E1FD7584E74BD0CC1EA581EC187, 148E534A94B4882E7396B13FABE17407802292E7890713540080D03D5629C81D ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
21:41:56.0360 0x2e54  WiaRpc - ok
21:41:56.0376 0x2e54  [ 5F66B7BB330AA80067FC66149A692620, 92C5D7115A168A23108B65EEEB5FBA8FA43D781855355792596D2419160263C2 ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
21:41:56.0392 0x2e54  WIMMount - ok
21:41:56.0392 0x2e54  WinDefend - ok
21:41:56.0454 0x2e54  [ 10DAD6A7FC617A221313BD584E3C3A00, F139B878668ECF38FE59831E8595A207D5CEEE76C6FFDA8C9F735435E601A763 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
21:41:56.0470 0x2e54  WinHttpAutoProxySvc - ok
21:41:56.0532 0x2e54  [ FC8BD690321216C32BB58B035B6D5674, D61698DB19D9DB2593B60B6BA13F7B7735667206F41D751D507135469D6D3CDD ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
21:41:56.0532 0x2e54  Winmgmt - ok
21:41:56.0642 0x2e54  [ 75436315AA383CF527695C6D49D0CA59, E3D55F2ACBD45D4D031FA6CA799394459C89BE50FF6ADE4FE36F2CAB2D2E63D0 ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
21:41:56.0704 0x2e54  WinRM - ok
21:41:56.0767 0x2e54  [ DC079BA8390089E4EBCA63D27EEA3ECB, 4D549217A68292E2B16C09FD9F84317011EE54A2DAF4E2AB85554267DF0D3249 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
21:41:56.0814 0x2e54  WlanSvc - ok
21:41:56.0876 0x2e54  [ 06BF5897949A8F24893F792E876B71F5, 9D3719492A86BF52A56E2EA798FD6FDB5862A03F6D360FCC4B0CEA9BE9792AE4 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
21:41:56.0907 0x2e54  wlidsvc - ok
21:41:56.0939 0x2e54  [ 2834D9D3B4F554A39C72F00EA3F0E128, D10124343C67FE9A0B711AD569BB8080495FCEA0ECEF9AC3F3FBD6865F436A44 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
21:41:56.0954 0x2e54  WmiAcpi - ok
21:41:56.0985 0x2e54  [ B96F7A1236C3F21212DE2C40A3DDB005, 5A29EBB6DA036E303611EB1304192655021405BB05452FD37886DDE604FF0D9D ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
21:41:56.0985 0x2e54  wmiApSrv - ok
21:41:57.0017 0x2e54  WMPNetworkSvc - ok
21:41:57.0048 0x2e54  [ 7FC5667DF73D4B04AA457CC3A4180E09, CB7B014945DCA16B6D120DBE0E5876C4C867A4ACD3C3536AEADC14B908613D4E ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
21:41:57.0048 0x2e54  Wof - ok
21:41:57.0142 0x2e54  [ 588040D595BBF0856CA1ADD941A8ED17, CBC92BB5453FE1BEA6F33239B7CE884F312559591383408EA5F95A006156C5D3 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
21:41:57.0173 0x2e54  workfolderssvc - ok
21:41:57.0220 0x2e54  [ A2468CC3509394A33C4C32F99563D845, 62690C7D41F382DF74B8F4B942647842858E37DE35FF2DE028192E4D09ABB2C5 ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
21:41:57.0220 0x2e54  wpcfltr - ok
21:41:57.0251 0x2e54  [ 19F4DF69876DA7E9C4965351560FE6B7, 127247A7964F55EE3AF842D25120F5ACD387632BEE2BF3D28FAC05840CEA19BA ] WPCSvc          C:\WINDOWS\System32\wpcsvc.dll
21:41:57.0267 0x2e54  WPCSvc - ok
21:41:57.0298 0x2e54  [ 2ADE11F3D84709C5F6781E4C59F11683, F003C43396CF8FCF44EAB87583650DB4D2A233322D28D6A78D1694945D9073BB ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
21:41:57.0314 0x2e54  WPDBusEnum - ok
21:41:57.0329 0x2e54  [ 9F2904B55F6CECCD1A8D986B5CE2609A, E19ED4DD3CEF3A22C058FC324824604FB3FC98A029C94E6C2A3389F938D680B6 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
21:41:57.0329 0x2e54  WpdUpFltr - ok
21:41:57.0360 0x2e54  [ AE072B0339D0A18E455DC21666CAD572, AB1DAEA25E2C7AD610818D4B4783F6D4190D85EBB3963BBAD410E8CEA7899EDB ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
21:41:57.0360 0x2e54  ws2ifsl - ok
21:41:57.0392 0x2e54  [ 5596C0960ED6ED7494BF2A55DE428684, C95CF09A657F37F421CC80E16F2F95B8EC59A8D5D48F104551155EAC8E53DCB2 ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
21:41:57.0407 0x2e54  wscsvc - ok
21:41:57.0407 0x2e54  WSearch - ok
21:41:57.0517 0x2e54  [ 6B2D71124C1EA86B74412F414C42431D, 078CC6C9667EF6BDA3E6900BC26A5A5B030CAA66928A6BBB7B7DC43C5C199EDC ] WSService       C:\WINDOWS\System32\WSService.dll
21:41:57.0610 0x2e54  WSService - ok
21:41:57.0735 0x2e54  [ 4BD3138EF061E24F9FDC722B49274B40, F9339F6AA8822E5E1334E41BE4140F9E8E5B24D1CD85B4C746D714AFDD485B49 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
21:41:57.0814 0x2e54  wuauserv - ok
21:41:57.0860 0x2e54  [ 481286719402E4BAEFEA0604AB1B5113, F3CF65DF2AB39F79AE4C1335831408418E40726706E0242677E8B96B0FAD988F ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
21:41:57.0860 0x2e54  WudfPf - ok
21:41:57.0907 0x2e54  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
21:41:57.0907 0x2e54  WUDFRd - ok
21:41:57.0907 0x2e54  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFSensorLP    C:\WINDOWS\System32\drivers\WUDFRd.sys
21:41:57.0923 0x2e54  WUDFSensorLP - ok
21:41:57.0954 0x2e54  [ 51D28F7F1F888DDCF2C67DCF3B79A5D3, 74FF2936AFCEB9A36175D5B00EB91A5AD614B52BE3FB3FA9B994A025A484D2B7 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
21:41:57.0954 0x2e54  wudfsvc - ok
21:41:57.0985 0x2e54  [ D7B4859227B02BCC1055B279A63C937F, 82C99844CC596C2723523B1B98573488FF23337947B78AA04BA21E58394BB751 ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
21:41:57.0985 0x2e54  WUDFWpdFs - ok
21:41:58.0017 0x2e54  [ A0900F8F628B5AF6841414EB3CF11E50, 8A531F2472FF4B4D895D469D28C215C834ECADBEF539894B8F3F606079A86184 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
21:41:58.0032 0x2e54  WwanSvc - ok
21:41:58.0048 0x2e54  ================ Scan global ===============================
21:41:58.0079 0x2e54  [ 05B08C20B8428ECE088CB5635696A48D, 471642A2D0E5C3BB235962FC8D86A49AC30D7DDE80B97E348425BBFCDE4DCDC3 ] C:\WINDOWS\system32\basesrv.dll
21:41:58.0110 0x2e54  [ EAB311B0A7A8EA0346F14F08D4BC8F46, 11168E4074679F8A69DA714C0ABD0C68BA49D171B379343F14783C9C563202CA ] C:\WINDOWS\system32\winsrv.dll
21:41:58.0157 0x2e54  [ 3600ED7EA8AED849E20700551C0BD63B, 4A8C346C1646E80B58EF93F87F915A41E05CA2E993BB1C96955AE62A0669AF66 ] C:\WINDOWS\system32\sxssrv.dll
21:41:58.0189 0x2e54  [ E0C7813A97CA7947FF5C18A8F3B61A45, 083BB4F3B20419C87DB656F1465E5F782ACDE76838CDE6207F26AAD035C69DE0 ] C:\WINDOWS\system32\services.exe
21:41:58.0204 0x2e54  [ Global ] - ok
21:41:58.0204 0x2e54  ================ Scan MBR ==================================
21:41:58.0204 0x2e54  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
21:41:58.0220 0x2e54  \Device\Harddisk0\DR0 - ok
21:41:58.0220 0x2e54  ================ Scan VBR ==================================
21:41:58.0220 0x2e54  [ 7CA6896C8D01984EE8C105C1E7399BDD ] \Device\Harddisk0\DR0\Partition1
21:41:58.0298 0x2e54  \Device\Harddisk0\DR0\Partition1 - ok
21:41:58.0314 0x2e54  [ F3CA7430CA93593FA36F1EAC96E24DF3 ] \Device\Harddisk0\DR0\Partition2
21:41:58.0376 0x2e54  \Device\Harddisk0\DR0\Partition2 - ok
21:41:58.0392 0x2e54  [ B1E27AA018409DE6BFD73F8AFB883A65 ] \Device\Harddisk0\DR0\Partition3
21:41:58.0392 0x2e54  \Device\Harddisk0\DR0\Partition3 - ok
21:41:58.0407 0x2e54  [ 3F721E04EDF01CE385ACB16A7F70BEC9 ] \Device\Harddisk0\DR0\Partition4
21:41:58.0485 0x2e54  \Device\Harddisk0\DR0\Partition4 - ok
21:41:58.0517 0x2e54  [ 23EEE7A38B5030B7BD4960D9AF15C5BC ] \Device\Harddisk0\DR0\Partition5
21:41:58.0532 0x2e54  \Device\Harddisk0\DR0\Partition5 - ok
21:41:58.0548 0x2e54  [ 1C2700FAE2E515850B2F5E3F76673E15 ] \Device\Harddisk0\DR0\Partition6
21:41:58.0548 0x2e54  \Device\Harddisk0\DR0\Partition6 - ok
21:41:58.0548 0x2e54  ================ Scan generic autorun ======================
21:41:58.0595 0x2e54  [ 49BD5663071AA799AC0B1E6B48EB9257, 39364B7E08C87545B4E48264509D73800FE5B0A76E34E0B169DA489895820B22 ] C:\Program Files\IDT\WDM\beats64.exe
21:41:58.0595 0x2e54  BeatsOSDApp - ok
21:41:58.0673 0x2e54  [ 94BFCE236D6340011721470E394056E3, 42A7808F6C53C268354E9E47F0689FE2B4717F61E97CBAA0ABF33E0275B908EF ] C:\Program Files\IDT\WDM\sttray64.exe
21:41:58.0704 0x2e54  SysTrayApp - ok
21:41:58.0767 0x2e54  [ 724CB7A116F7E1A67009D751BCF86586, F0C4BE7451C5573AD584F5EF125C0702841E30D928909B5B3EA702831EF2FD9B ] c:\Program Files (x86)\CyberLink\Power2Go8\CLMLSvc_P2G8.exe
21:41:58.0767 0x2e54  CLMLServer_For_P2G8 - ok
21:41:58.0814 0x2e54  [ B35B97FC934A9A7D02232094128CD636, 08F9E36F7DB86325986712210DF1B235DAC4F76FB599D2756E863A9FAFEBD57B ] c:\Program Files (x86)\CyberLink\Power2Go8\VirtualDrive.exe
21:41:58.0829 0x2e54  CLVirtualDrive - ok
21:41:58.0923 0x2e54  [ 5B6E8E09BE6401A7E022F52FDFCB2FF8, 471C556CF9405BBB380A8CEFE945C126B954B7C94F79CC72441B51F80141FC5E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
21:41:58.0923 0x2e54  SunJavaUpdateSched - ok
21:41:59.0001 0x2e54  [ 79C28DDF889C26FDD6162F796FD49BC4, C1E2468B4F0F52BD707D16656F33CC438AF8E18A38BB6CFB64D11F23993F72F0 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
21:41:59.0001 0x2e54  iTunesHelper - ok
21:41:59.0064 0x2e54  [ 3F45A43BF4B0E06B42E474B9BDA63985, 0C3F80761C4149B1D417D2F6093639963A2537E020A7BA2F97B7148E3A9FAC64 ] c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
21:41:59.0095 0x2e54  StartCCC - ok
21:41:59.0095 0x2e54  Waiting for KSN requests completion. In queue: 351
21:42:00.0111 0x2e54  Waiting for KSN requests completion. In queue: 351
21:42:01.0127 0x2e54  Waiting for KSN requests completion. In queue: 351
21:42:01.0314 0x1e74  Object required for P2P: [ 2081A822CBCD8F5861863B8C9EA6B1C9 ] netr28x
21:42:02.0142 0x2e54  Waiting for KSN requests completion. In queue: 229
21:42:03.0142 0x2e54  Waiting for KSN requests completion. In queue: 229
21:42:04.0143 0x2e54  Waiting for KSN requests completion. In queue: 187
21:42:05.0158 0x2e54  Waiting for KSN requests completion. In queue: 187
21:42:06.0018 0x1e74  Object send P2P result: true
21:42:06.0252 0x2e54  AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\WSCStub.exe ( 22.5.0.0 ), 0x50010 ( disabled : outofdate )
21:42:06.0252 0x2e54  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.8.207.0 ), 0x60100 ( disabled : updated )
21:42:06.0268 0x2e54  FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\22.5.4.24\WSCStub.exe ( 22.5.0.0 ), 0x50010 ( disabled )
21:42:06.0268 0x2e54  Win FW state via NFP2: enabled ( trusted )
21:42:10.0800 0x2e54  ============================================================
21:42:10.0800 0x2e54  Scan finished
21:42:10.0800 0x2e54  ============================================================
21:42:10.0815 0x2414  Detected object count: 0
21:42:10.0815 0x2414  Actual detected object count: 0
21:42:58.0330 0x1f24  Deinitialize success
 


Edited by RickJames, 23 November 2015 - 09:59 PM.


#8 RickJames

RickJames
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:28 AM

Posted 23 November 2015 - 10:03 PM

Here is the MiniToolBox Log:

 

MiniToolBox by Farbar  Version: 02-11-2015
Ran by Jack (administrator) on 23-11-2015 at 22:00:41
Running from "C:\Users\Jack\Downloads"
Microsoft Windows 8.1  (X64)
Model: p7-1414 Manufacturer: Hewlett-Packard
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
========================= IP Configuration: ================================

Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30) = Ethernet (Connected)
802.11n Wireless LAN Card = Wi-Fi 2 (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 12" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="wireless_6" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="wireless_0" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="ethernet_3" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Jack
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : attlocal.net

Wireless LAN adapter Local Area Connection* 12:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 20-10-7A-7A-D4-80
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . : attlocal.net
   Description . . . . . . . . . . . : Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
   Physical Address. . . . . . . . . : 78-E3-B5-B2-91-58
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2602:306:3030:7880:4160:271d:632:3175(Preferred)
   Temporary IPv6 Address. . . . . . : 2602:306:3030:7880:99b8:9524:bdc7:ca91(Preferred)
   Link-local IPv6 Address . . . . . : fe80::4160:271d:632:3175%4(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.65(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Monday, November 23, 2015 9:53:57 PM
   Lease Expires . . . . . . . . . . : Tuesday, November 24, 2015 9:53:56 PM
   Default Gateway . . . . . . . . . : fe80::21f:b3ff:fed3:6999%4
                                       192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 259580853
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1A-9C-19-92-78-E3-B5-B2-91-58
   DNS Servers . . . . . . . . . . . : 192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled

Wireless LAN adapter Wi-Fi 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : 802.11n Wireless LAN Card
   Physical Address. . . . . . . . . : 20-10-7A-7A-D4-86
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
Server:  homeportal
Address:  192.168.1.254

Name:    google.com
Addresses:  2607:f8b0:4002:c03::8b
      173.194.219.138
      173.194.219.113
      173.194.219.139
      173.194.219.102
      173.194.219.100
      173.194.219.101


Pinging google.com [2607:f8b0:4002:c08::8b] with 32 bytes of data:
Reply from 2607:f8b0:4002:c08::8b: time=703ms
Reply from 2607:f8b0:4002:c08::8b: time=739ms

Ping statistics for 2607:f8b0:4002:c08::8b:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 703ms, Maximum = 739ms, Average = 721ms
Server:  homeportal
Address:  192.168.1.254

Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
      2001:4998:c:a06::2:4008
      2001:4998:44:204::a7
      98.139.183.24
      206.190.36.45
      98.138.253.109


Pinging yahoo.com [2001:4998:58:c02::a9] with 32 bytes of data:
Reply from 2001:4998:58:c02::a9: time=611ms
Reply from 2001:4998:58:c02::a9: time=637ms

Ping statistics for 2001:4998:58:c02::a9:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 611ms, Maximum = 637ms, Average = 624ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  5...20 10 7a 7a d4 80 ......Microsoft Wi-Fi Direct Virtual Adapter
  4...78 e3 b5 b2 91 58 ......Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
  2...20 10 7a 7a d4 86 ......802.11n Wireless LAN Card
  1...........................Software Loopback Interface 1
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.65     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.65    276
     192.168.1.65  255.255.255.255         On-link      192.168.1.65    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.65    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.65    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.65    276
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  4    276 ::/0                     fe80::21f:b3ff:fed3:6999
  1    306 ::1/128                  On-link
  4    276 2602:306:3030:7880::/64  On-link
  4    276 2602:306:3030:7880:4160:271d:632:3175/128
                                    On-link
  4    276 2602:306:3030:7880:99b8:9524:bdc7:ca91/128
                                    On-link
  4    276 fe80::/64                On-link
  4    276 fe80::4160:271d:632:3175/128
                                    On-link
  1    306 ff00::/8                 On-link
  4    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\WINDOWS\SysWOW64\napinsp.dll [55296] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70144] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\NLAapi.dll [65536] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23040] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [286208] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [69120] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [88576] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [30720] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [339456] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (11/23/2015 09:44:43 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.

Error: (11/23/2015 09:44:09 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest1".Error in manifest or policy file "C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest2" on line C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifest.
Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifest.

Error: (11/23/2015 07:25:46 PM) (Source: Microsoft-Windows-RestartManager) (User: JACK)
Description: Application or service 'RealNetworks Downloader Resolver Service' could not be restarted.

Error: (11/23/2015 07:25:36 PM) (Source: Microsoft-Windows-RestartManager) (User: JACK)
Description: Application or service 'RealPlayer Update Service' could not be restarted.

Error: (11/23/2015 06:06:42 PM) (Source: Application Hang) (User: )
Description: The program LiveComm.exe version 17.5.9600.20911 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1ed0

Start Time: 01d12642e506467c

Termination Time: 4294967295

Application Path: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe

Report Id: d8b68b94-9236-11e5-bf12-78e3b5b29158

Faulting package full name: microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe

Faulting package-relative application ID: ppleae38af2e007f4358a809ac99a64a67c1

Error: (11/23/2015 04:51:46 PM) (Source: Application Hang) (User: )
Description: The program wwahost.exe version 6.3.9600.17415 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 2e24

Start Time: 01d126386acdf737

Termination Time: 4294967295

Application Path: C:\WINDOWS\syswow64\wwahost.exe

Report Id: 5ead9689-922c-11e5-bf12-78e3b5b29158

Faulting package full name: Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5c

Faulting package-relative application ID: App

Error: (11/08/2015 05:37:56 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15297

Error: (11/08/2015 05:37:56 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15297

Error: (11/08/2015 05:37:56 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/03/2015 08:02:07 PM) (Source: Application Error) (User: )
Description: Faulting application name: Explorer.EXE, version: 6.3.9600.17667, time stamp: 0x54c6f7c2
Faulting module name: HPSFTaskbar.dll, version: 8.0.0.2, time stamp: 0x5609087b
Exception code: 0xc0000005
Fault offset: 0x0000000000002560
Faulting process id: 0x2cd8
Faulting application start time: 0xExplorer.EXE0
Faulting application path: Explorer.EXE1
Faulting module path: Explorer.EXE2
Report Id: Explorer.EXE3
Faulting package full name: Explorer.EXE4
Faulting package-relative application ID: Explorer.EXE5


System errors:
=============
Error: (11/23/2015 09:53:38 PM) (Source: sptd) (User: )
Description: Driver detected an internal error in its data structures for .

Error: (11/23/2015 09:53:19 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device service failed to start due to the following error:
%%3

Error: (11/23/2015 09:52:55 PM) (Source: DCOM) (User: JACK)
Description: {9BA05972-F6A8-11CF-A442-00A0C90A8F39}

Error: (11/23/2015 09:52:50 PM) (Source: Service Control Manager) (User: )
Description: The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the Windows Search service, but this action failed with the following error:
%%1056

Error: (11/23/2015 09:52:23 PM) (Source: Service Control Manager) (User: )
Description: The HP Software Framework Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/23/2015 09:52:22 PM) (Source: Service Control Manager) (User: )
Description: The HP Connected Remote Service service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 5000 milliseconds: Restart the service.

Error: (11/23/2015 09:52:22 PM) (Source: Service Control Manager) (User: )
Description: The HP Support Solutions Framework Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/23/2015 09:52:21 PM) (Source: Service Control Manager) (User: )
Description: The iPod Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (11/23/2015 09:52:20 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 30000 milliseconds: Restart the service.

Error: (11/23/2015 09:52:19 PM) (Source: Service Control Manager) (User: )
Description: The Bonjour Service service terminated unexpectedly.  It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (11/23/2015 09:44:43 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifestC:\Users\Jack\Desktop\esetsmartinstaller_enu.exe

Error: (11/23/2015 09:44:09 PM) (Source: SideBySide)(User: )
Description: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_623f33d3ecbe86e8.manifestC:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.18006_none_a9ec6aab013aafee.manifestC:\Users\Jack\Downloads\esetsmartinstaller_enu.exe

Error: (11/23/2015 07:25:46 PM) (Source: Microsoft-Windows-RestartManager)(User: JACK)
Description: 0rndlresolversvc.exeRealNetworks Downloader Resolver Service0302621784080

Error: (11/23/2015 07:25:36 PM) (Source: Microsoft-Windows-RestartManager)(User: JACK)
Description: 0RealPlayerUpdateSvc.exeRealPlayer Update Service03026217812440

Error: (11/23/2015 06:06:42 PM) (Source: Application Hang)(User: )
Description: LiveComm.exe17.5.9600.209111ed001d12642e506467c4294967295C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exed8b68b94-9236-11e5-bf12-78e3b5b29158microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbweppleae38af2e007f4358a809ac99a64a67c1

Error: (11/23/2015 04:51:46 PM) (Source: Application Hang)(User: )
Description: wwahost.exe6.3.9600.174152e2401d126386acdf7374294967295C:\WINDOWS\syswow64\wwahost.exe5ead9689-922c-11e5-bf12-78e3b5b29158Microsoft.SkypeApp_3.1.0.1016_x86__kzf8qxf38zg5cApp

Error: (11/08/2015 05:37:56 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15297

Error: (11/08/2015 05:37:56 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15297

Error: (11/08/2015 05:37:56 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/03/2015 08:02:07 PM) (Source: Application Error)(User: )
Description: Explorer.EXE6.3.9600.1766754c6f7c2HPSFTaskbar.dll8.0.0.25609087bc000000500000000000025602cd801d10f41a271e3fcC:\WINDOWS\Explorer.EXEC:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPSFMessenger\HPSFTaskbar.dllab057aa6-828f-11e5-bf11-78e3b5b29158


=========================== Installed Programs ============================

Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\{7F28165B-148D-4672-AA21-469D9E6E3CB6}) (Version: 20.21.3317.03861 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\AmUStor) (Version: 20.21.3317.03861 - Alcor Micro Corp.)
AMD Catalyst Install Manager (HKLM\...\{CC6CCF1E-F361-910A-E41D-EB5176F1255C}) (Version: 8.0.915.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1.5510 - CyberLink Corp.)
CyberLink Media Suite 10 (HKLM-x32\...\InstallShield_{1FBF6C24-C1fD-4101-A42B-0C564F9E8E79}) (Version: 10.0.1.1916 - CyberLink Corp.)
CyberLink PhotoDirector (HKLM-x32\...\InstallShield_{4862344A-A39C-4897-ACD4-A1BED5163C5A}) (Version: 2.0.1.3109 - CyberLink Corp.)
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.1.1902 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.1.1925 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.1.4319 - CyberLink Corp.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
Hewlett-Packard ACLM.NET v1.2.2.3 (HKLM-x32\...\{6F340107-F9AA-47C6-B54C-C3A19F11553F}) (Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Connected Music (Meridian - installer) (HKLM-x32\...\StartHPConnectedMusic) (Version: v1.0 - Meridian Audio Ltd)
HP Connected Remote (HKLM-x32\...\{F243A34B-AB7F-4065-B770-B85B767C247C}) (Version: 1.0.1202 - Hewlett-Packard)
HP Games (HKLM-x32\...\WildTangent hp Master Uninstall) (Version: 1.0.3.0 - WildTangent)
HP MyRoom (HKLM-x32\...\{9C35EDE5-4B0F-45E7-A438-314BA889948E}) (Version: 9.0.0.0 - Hewlett-Packard Company)
HP Registration Service (HKLM\...\{E4D6CCF2-0AAF-4B9C-9DE5-893EDC9B4BAA}) (Version: 1.0.5976.4186 - Hewlett-Packard)
HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company)
HP Support Information (HKLM-x32\...\{B2B7B1C8-7C8B-476C-BE2C-049731C55992}) (Version: 12.00.0000 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{55065080-504F-43BB-BE00-36B80D7D39A5}) (Version: 12.0.30.219 - Hewlett-Packard Company)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6418.0 - IDT)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 7 Update 55 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.550 - Oracle)
Malwarebytes Anti-Malware version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Microsoft Access 2000 Runtime (HKLM-x32\...\{00180409-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2729 - Microsoft Corporation)
Microsoft OneDrive (HKCU\...\OneDriveSetup.exe) (Version: 17.0.4023.1211 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 42.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 en-US)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 22.5.4.24 - Symantec Corporation)
Ralink 802.11n Wireless LAN Card (HKLM-x32\...\{8FC4F1DD-F7FD-4766-804D-3C8FF1D309AF}) (Version: 5.0.48.0 - Mediatek)
Recovery Manager (HKLM-x32\...\{44B2A0AB-412E-4F8C-B058-D1E8AECCDFF5}) (Version: 5.5.0.5530 - CyberLink Corp.) Hidden
RollerCoaster Tycoon 3 Platinum (HKLM-x32\...\{907B4640-266B-4A21-92FB-CD1A86CD0F63}) (Version: 1.00.000 - Atari)
StarCraft (HKLM-x32\...\StarCraft) (Version:  - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Ventrilo Client for Windows x64 (HKLM\...\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}) (Version: 3.0.8.0 - Flagship Industries, Inc.)
Warcraft III (HKLM-x32\...\Warcraft III) (Version:  - Blizzard Entertainment)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
WinRAR 5.21 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Warcraft Classic (HKLM-x32\...\{D55ED80F-FAFD-40E1-99FC-89AF8614A9B5}_is1) (Version: 1.12.1.5875 - Blizzard Entertainment)

========================= Memory info: ===================================

Percentage of memory in use: 27%
Total physical RAM: 5527.51 MB
Available physical RAM: 4006.64 MB
Total Virtual: 5927.51 MB
Available Virtual: 4280.67 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:910.21 GB) (Free:664.53 GB) NTFS
2 Drive d: (Recovery Image) (Fixed) (Total:19.38 GB) (Free:2.42 GB) NTFS

========================= Users: ========================================

User accounts for \\JACK

Administrator            Guest                    Jack                     


**** End of log ****



#9 RickJames

RickJames
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:28 AM

Posted 23 November 2015 - 10:13 PM

Junkware scan:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.0 (11.12.2015)
Operating System: Windows 8.1 x64
Ran by Jack (Administrator) on Mon 11/23/2015 at 22:06:19.02
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 29

Successfully deleted: C:\Users\Jack\AppData\Local\{0831E835-DAEB-4F9A-9F50-6D4BF6CB4FD6} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{0D9BECA2-79F5-48F4-8A6E-AC705213A8BD} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{0E2242FD-EA65-422B-A373-A81FA8629B15} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{1C6D8CB0-31E1-49C5-B1A5-C4A71B446E0A} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{1CEC907E-5DD3-4DFD-86B0-D1BD58A08A8F} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{1E7CB931-1B5F-43AE-B0E3-0FC4DEC091C3} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{20833CD6-EEC7-4D9C-936A-8902F32028E4} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{28F32D0F-014B-40F7-A382-A9F59B1EE8B7} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{31E50E41-ED3D-456A-B4FD-13BC7591F8FB} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{398B5C48-4EEF-477A-8750-616A551F5F15} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{3A1DA2C5-041D-41A8-B6C2-893BC2396C87} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{4129EEAF-A4C1-44E1-B332-956A5AB83363} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{4724EB3B-8F06-47AD-9880-C5A69142E01C} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{55CABEC1-E9A8-4658-8276-AA4B6CE73DD4} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{59A26E02-0C66-43B7-B1E9-E1138FEA8878} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{5F15BCB5-5AE3-4F8F-8C83-F1480589C3DA} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{6832683F-79C5-4B27-838D-6B1ACA1DAA0D} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{760D3343-A248-43AE-BEA8-DFB7B20244E8} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{97B8152A-41DB-4A8B-B6F0-DB6E59104026} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{9F9BACA8-03C9-44B1-8E4D-B1042E1BA047} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{A7783168-FAA9-43EF-AB68-1D591981C1D2} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{AAA27B7D-435F-4D69-A34D-7EBE65198291} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{DCF7835C-D832-4C31-9887-0BB9747C4061} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{DF9C376F-88CC-40EC-8007-356BC48F95C4} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{E7C9415F-5C3E-47D7-9A94-DAB1FEE230A2} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{ED762C5F-5562-44D6-94B1-3B9CE5B7A401} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{EEBD7F4B-871C-4806-83A0-570CAC60E66F} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{F659C5BA-977A-456C-A2C2-BD94F2F588A7} (Empty Folder)
Successfully deleted: C:\Users\Jack\AppData\Local\{F864F81C-A5F7-44EE-9C0C-E63D333AC3D7} (Empty Folder)



Registry: 2

Successfully deleted: HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{8DBB0F05-5FE0-414E-A561-FF366A747882} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{8DBB0F05-5FE0-414E-A561-FF366A747882} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 11/23/2015 at 22:09:16.38
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:28 AM

Posted 23 November 2015 - 10:47 PM

OK good, ESET will probably be a couple hours so I will look back tomorrow.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 RickJames

RickJames
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:28 AM

Posted 23 November 2015 - 11:00 PM

Yeah ESET is taking a good amount of time :)



#12 RickJames

RickJames
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:28 AM

Posted 24 November 2015 - 12:05 AM

Here is the ESET file:

 

C:\AdwCleaner\Quarantine\C\Users\Jack\AppData\Roaming\Mozilla\Firefox\Profiles\44p1lj6l.default\Extensions\7R@iyUOQ.net\content\bg.js.vir    JS/Adware.MultiPlug.I application    cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\WINDOWS\System32\drivers\wStLibG64.sys.vir    a variant of Win64/BrowseFox.BG potentially unwanted application    cleaned by deleting - quarantined
C:\Program Files (x86)\Lionhead Studios Ltd\Black & White\XFolder\AIM_Install.exe    Win32/OpenCandy potentially unsafe application    deleted - quarantined
C:\Program Files (x86)\Lionhead Studios Ltd\Black & White\XFolder\cbsidlm-cbsi183-Black__White_12_Clan_patch-SEO-10236148(1).exe    a variant of Win32/CNETInstaller.B potentially unwanted application    cleaned by deleting - quarantined
C:\Program Files (x86)\Lionhead Studios Ltd\Black & White\XFolder\cbsidlm-cbsi183-Black__White_12_Clan_patch-SEO-10236148.exe    a variant of Win32/CNETInstaller.B potentially unwanted application    cleaned by deleting - quarantined
C:\Program Files (x86)\Lionhead Studios Ltd\Black & White\XFolder\cbsidlm-cbsi183-RM_Converter-SEO-10178407.exe    a variant of Win32/CNETInstaller.B potentially unwanted application    cleaned by deleting - quarantined
C:\Users\Jack\AppData\Local\Microsoft\Windows\INetCache\IE\XOGWXQGU\askrt_en[1].cab    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application    deleted - quarantined
C:\Users\Jack\AppData\Local\Temp\12E0\temp\ParallelPlatform.xyz    a variant of Win32/Adware.MultiPlug.ER application    cleaned by deleting - quarantined
C:\Users\Jack\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\14.00\agent\stub_data\askrt_en.cab    a variant of Win32/Bundled.Toolbar.Ask.G potentially unsafe application    deleted - quarantined
 


Edited by RickJames, 24 November 2015 - 12:05 AM.


#13 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:28 AM

Posted 24 November 2015 - 03:04 PM

Ok, that was a lot of junk.. should be running better now..
Do this next and see how it is.

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista or above, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#14 RickJames

RickJames
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:28 AM

Posted 24 November 2015 - 05:22 PM

Done! Let me know if you need any logs from this or anything.



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:28 AM

Posted 24 November 2015 - 10:52 PM

OK that's good..
one last scan, quick one,

Download 51a46ae42d560-malwarebytes_anti_malware.MalwareBytes Anti-Malware to your desktop.
  • Double-click mbam-setup-2.0.exe to start the installation of Malwarebytes Anti-Malware.
  • Follow the instructions on your screen to complete the installation. You can find the complete installation procedure here.
  • Click the Scan Now button, a threat scan will start automatically.
  • MalwareBytes Anti-Malware will now check for the latest updates. Click Update Now if new updates are available.
  • Your computer is now being scanned, please do not use your computer during the scan.
  • If no threats were found, click View detailed log.
    • Click Export and save the log as a .txt file on your Desktop or another location.
  • If the scan detected any threats, click Apply Actions.
    • To complete any actions taken you will be prompted to restart your computer...click on Yes.
    • After reboot, start Malwarebytes Anti-Malware again and click the History Tab at the top and select Application Logs.
    • Check the box next to Scan Log. Choose the most current scan and click View.
    • Click Export and save the log as a .txt file on your Desktop or another location.
Providing the MalwareBytes' Anti-Malware log file
  • Attach the log file you just saved to your next reply for further review.
How is it running?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users