Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer acting strange - Help please


  • Please log in to reply
32 replies to this topic

#1 cbcac

cbcac

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 18 June 2016 - 12:26 PM

Sorry about the cruddy topic name.  I wish I could edit it now.  I was rushing. :(

 

Hi I have a Dell Computer that is running Windows 10.  It is a few years old and it was running windows 7 but it sort of auto upgraded to 10.  It has been acting funny both before and after the upgrade.  I would like someone to please walk me through checking it out.  I want to make sure it isn't infected with anything.  Once I am sure it isn't an infection I will post in the correct place about the lagging and some programs not responding.  

 

I know you are going to need a lot more details but I wanted to wait and let you ask instead of me guessing and tossing out a lot of unnecessary details. 

 

I am going to run some scans and post logs to be proactive. 


Edited by cbcac, 18 June 2016 - 05:59 PM.


BC AdBot (Login to Remove)

 


#2 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 18 June 2016 - 04:03 PM

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Charles11 (administrator) on 19-06-2016 at 00:58:51
Running from "C:\Users\Charles11\Downloads"
Microsoft Windows 10 Home  (X64)
Model: XPS 8300 Manufacturer: Dell Inc.
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ==============================
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com
 
There are 15468 entries.
 
========================= IP Configuration: ================================
 
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)
 

# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global
set interface interface="Local Area Connection 2" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 1" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
 

popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Charles11-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : attlocal.net
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : attlocal.net
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : D4-BE-D9-9B-36-30
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : fd5b:fc51:8959:0:e4b3:e739:9d16:506c(Preferred)
   Temporary IPv6 Address. . . . . . : fd5b:fc51:8959:0:2c37:abdb:6e1b:d2f1(Preferred)
   Link-local IPv6 Address . . . . . : fe80::e4b3:e739:9d16:506c%6(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.0.132(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Saturday, June 18, 2016 11:00:16 PM
   Lease Expires . . . . . . . . . . : Sunday, June 19, 2016 11:00:15 PM
   Default Gateway . . . . . . . . . : 192.168.0.1
   DHCP Server . . . . . . . . . . . : 192.168.0.1
   DHCPv6 IAID . . . . . . . . . . . : 248823513
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1C-58-2F-17-D4-BE-D9-9B-36-30
   DNS Servers . . . . . . . . . . . : 192.168.1.254
                                       192.168.0.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.attlocal.net:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : attlocal.net
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:9d38:6abd:3401:b90:932f:5dce(Preferred)
   Link-local IPv6 Address . . . . . : fe80::3401:b90:932f:5dce%7(Preferred)
   Default Gateway . . . . . . . . . :
   DHCPv6 IAID . . . . . . . . . . . : 167772160
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1C-58-2F-17-D4-BE-D9-9B-36-30
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  dsldevice.attlocal.net
Address:  192.168.1.254
 
Name:    google.com
Addresses:  2607:f8b0:4000:80d::200e
   216.58.218.174
 

Pinging google.com [216.58.195.238] with 32 bytes of data:
Reply from 216.58.195.238: bytes=32 time=62ms TTL=50
Reply from 216.58.195.238: bytes=32 time=62ms TTL=50
 
Ping statistics for 216.58.195.238:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 62ms, Maximum = 62ms, Average = 62ms
Server:  dsldevice.attlocal.net
Address:  192.168.1.254
 
Name:    yahoo.com
Addresses:  2001:4998:44:204::a7
   2001:4998:c:a06::2:4008
   2001:4998:58:c02::a9
   98.138.253.109
   98.139.183.24
   206.190.36.45
 

Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=58ms TTL=45
Reply from 98.139.183.24: bytes=32 time=58ms TTL=45
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 58ms, Maximum = 58ms, Average = 58ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
  6...d4 be d9 9b 36 30 ......Broadcom NetLink ™ Gigabit Ethernet
  1...........................Software Loopback Interface 1
  5...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
  7...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.0.1    192.168.0.132     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.0.0    255.255.255.0         On-link     192.168.0.132    266
    192.168.0.132  255.255.255.255         On-link     192.168.0.132    266
    192.168.0.255  255.255.255.255         On-link     192.168.0.132    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.0.132    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.0.132    266
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
  7    306 2001::/32                On-link
  7    306 2001:0:9d38:6abd:3401:b90:932f:5dce/128
                                    On-link
  6    266 fd5b:fc51:8959::/64      On-link
  6    266 fd5b:fc51:8959:0:2c37:abdb:6e1b:d2f1/128
                                    On-link
  6    266 fd5b:fc51:8959:0:e4b3:e739:9d16:506c/128
                                    On-link
  6    266 fe80::/64                On-link
  7    306 fe80::/64                On-link
  7    306 fe80::3401:b90:932f:5dce/128
                                    On-link
  6    266 fe80::e4b3:e739:9d16:506c/128
                                    On-link
  1    306 ff00::/8                 On-link
  6    266 ff00::/8                 On-link
  7    306 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\WINDOWS\SysWOW64\NLAapi.dll [65024] (Microsoft Corporation)
Catalog5 02 C:\WINDOWS\SysWOW64\napinsp.dll [55808] (Microsoft Corporation)
Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 04 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656] (Microsoft Corporation)
Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23552] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog9 01 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 02 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 03 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 04 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 06 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 07 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 08 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 09 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 10 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
Catalog9 11 C:\WINDOWS\SysWOW64\mswsock.dll [312160] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [80896] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [87040] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [31744] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [357216] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (06/19/2016 12:05:16 AM) (Source: Application Hang) (User: )
Description: The program ZHPDiag.exe version 2015.3.29.33 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Security and Maintenance control panel.
 
Process ID: 1f10
 
Start Time: 01d1c9e7ce63a842
 
Termination Time: 13
 
Application Path: C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe
 
Report Id: 6488025e-35db-11e6-9d97-d4bed99b3630
 
Faulting package full name:
 
Faulting package-relative application ID:
 
Error: (06/18/2016 11:46:32 PM) (Source: Application Error) (User: )
Description: Faulting application name: mbam.exe, version: 2.3.173.0, time stamp: 0x56e065b4
Faulting module name: mbam.exe, version: 2.3.173.0, time stamp: 0x56e065b4
Exception code: 0xc0000005
Fault offset: 0x001eb400
Faulting process id: 0x1fb8
Faulting application start time: 0xmbam.exe0
Faulting application path: mbam.exe1
Faulting module path: mbam.exe2
Report Id: mbam.exe3
Faulting package full name: mbam.exe4
Faulting package-relative application ID: mbam.exe5
 
Error: (06/18/2016 11:43:02 PM) (Source: Application Error) (User: )
Description: Faulting application name: mbam.exe, version: 2.3.125.0, time stamp: 0x5612a56b
Faulting module name: mbam.exe, version: 2.3.125.0, time stamp: 0x5612a56b
Exception code: 0xc0000005
Fault offset: 0x001e7742
Faulting process id: 0x20c4
Faulting application start time: 0xmbam.exe0
Faulting application path: mbam.exe1
Faulting module path: mbam.exe2
Report Id: mbam.exe3
Faulting package full name: mbam.exe4
Faulting package-relative application ID: mbam.exe5
 
Error: (06/18/2016 11:07:51 PM) (Source: Microsoft-Windows-CAPI2) (User: )
Description: Cryptographic Services failed while processing the OnIdentity() call in the System Writer Object.
 

Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
.
 
Error: (06/18/2016 07:34:24 PM) (Source: Bonjour Service) (User: )
Description: Client application bug: DNSServiceResolve(ac:bc:32:0d:35:a8@fe80::aebc:32ff:fe0d:35a8._apple-mobdev2._tcp.local.) active for over two minutes. This places considerable burden on the network.
 
Error: (06/18/2016 07:34:24 PM) (Source: Bonjour Service) (User: )
Description: Client application bug: DNSServiceResolve(e0:f5:c6:a1:b1:d9@fe80::e2f5:c6ff:fea1:b1d9._apple-mobdev2._tcp.local.) active for over two minutes. This places considerable burden on the network.
 
Error: (06/18/2016 07:34:24 PM) (Source: Bonjour Service) (User: )
Description: Client application bug: DNSServiceResolve(fc:e9:98:43:6d:c3@fe80::fee9:98ff:fe43:6dc3._apple-mobdev2._tcp.local.) active for over two minutes. This places considerable burden on the network.
 
Error: (06/18/2016 07:31:54 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 24
 
Error: (06/18/2016 07:31:54 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 23
 
Error: (06/18/2016 07:31:54 PM) (Source: Bonjour Service) (User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 22
 

System errors:
=============
Error: (06/18/2016 11:00:52 PM) (Source: Service Control Manager) (User: )
Description: The Garmin Device Interaction Service service failed to start due to the following error:
%%1053 = The service did not respond to the start or control request in a timely fashion.
 

Error: (06/18/2016 11:00:52 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Garmin Device Interaction Service service to connect.
 
Error: (06/18/2016 11:00:22 PM) (Source: Service Control Manager) (User: )
Description: The NetTcpActivator service depends on the NetTcpPortSharing service which failed to start because of the following error:
%%1058 = The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
 

Error: (06/18/2016 10:59:25 PM) (Source: Service Control Manager) (User: )
Description: The Windows Search service failed to start due to the following error:
%%1069 = The service did not start due to a logon failure.
 

Error: (06/18/2016 10:59:25 PM) (Source: Service Control Manager) (User: )
Description: The WSearch service was unable to log on as NT AUTHORITY\SYSTEM with the currently configured password due to the following error:
%%50 = The request is not supported.
 

To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (06/18/2016 10:59:20 PM) (Source: Service Control Manager) (User: )
Description: The User Data Access_110d7b5 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (06/18/2016 10:59:20 PM) (Source: Service Control Manager) (User: )
Description: The User Data Storage_110d7b5 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (06/18/2016 10:59:20 PM) (Source: Service Control Manager) (User: )
Description: The Contact Data_110d7b5 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (06/18/2016 10:59:20 PM) (Source: Service Control Manager) (User: )
Description: The Sync Host_110d7b5 service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 10000 milliseconds: Restart the service.
 
Error: (06/18/2016 10:58:55 PM) (Source: Service Control Manager) (User: )
Description: The Intel® Management and Security Application User Notification Service service terminated unexpectedly.  It has done this 1 time(s).
 

Microsoft Office Sessions:
=========================
Error: (06/19/2016 12:05:16 AM) (Source: Application Hang)(User: )
Description: ZHPDiag.exe2015.3.29.331f1001d1c9e7ce63a84213C:\Program Files (x86)\ZHPDiag\ZHPDiag.exe6488025e-35db-11e6-9d97-d4bed99b3630
 
Error: (06/18/2016 11:46:32 PM) (Source: Application Error)(User: )
Description: mbam.exe2.3.173.056e065b4mbam.exe2.3.173.056e065b4c0000005001eb4001fb801d1c9e57720e787C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe63f66ec7-e127-4860-93b6-155f91e2abf2
 
Error: (06/18/2016 11:43:02 PM) (Source: Application Error)(User: )
Description: mbam.exe2.3.125.05612a56bmbam.exe2.3.125.05612a56bc0000005001e774220c401d1c9e503a9854eC:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exeC:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe6275cea0-5f79-4666-bc8a-ced75338474f
 
Error: (06/18/2016 11:07:51 PM) (Source: Microsoft-Windows-CAPI2)(User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Microsoft Link-Layer Discovery Protocol.
 
System Error:
Access is denied.
 
Error: (06/18/2016 07:34:24 PM) (Source: Bonjour Service)(User: )
Description: Client application bug: DNSServiceResolve(ac:bc:32:0d:35:a8@fe80::aebc:32ff:fe0d:35a8._apple-mobdev2._tcp.local.) active for over two minutes. This places considerable burden on the network.
 
Error: (06/18/2016 07:34:24 PM) (Source: Bonjour Service)(User: )
Description: Client application bug: DNSServiceResolve(e0:f5:c6:a1:b1:d9@fe80::e2f5:c6ff:fea1:b1d9._apple-mobdev2._tcp.local.) active for over two minutes. This places considerable burden on the network.
 
Error: (06/18/2016 07:34:24 PM) (Source: Bonjour Service)(User: )
Description: Client application bug: DNSServiceResolve(fc:e9:98:43:6d:c3@fe80::fee9:98ff:fe43:6dc3._apple-mobdev2._tcp.local.) active for over two minutes. This places considerable burden on the network.
 
Error: (06/18/2016 07:31:54 PM) (Source: Bonjour Service)(User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 24
 
Error: (06/18/2016 07:31:54 PM) (Source: Bonjour Service)(User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 23
 
Error: (06/18/2016 07:31:54 PM) (Source: Bonjour Service)(User: )
Description: ERROR: handle_resolve_request bad interfaceIndex 22
 

CodeIntegrity Errors:
===================================
  Date: 2016-06-19 00:00:41.955
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\Windows\System32\appidapi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-06-19 00:00:41.937
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\Windows\System32\appidapi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-06-19 00:00:35.833
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\Windows\System32\drivers\appid.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-06-19 00:00:35.819
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\Windows\System32\drivers\appid.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-06-19 00:00:35.461
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\Windows\System32\drivers\atikmdag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-06-19 00:00:35.256
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\Windows\System32\drivers\atikmdag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-06-19 00:00:34.426
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-06-19 00:00:34.403
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\Windows\System32\drivers\atikmpag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-06-19 00:00:30.787
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\Windows\System32\DriverStore\FileRepository\c7187669.inf_amd64_neutral_3eef3e8955af93c8\B187676\atikmdag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-06-19 00:00:30.579
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows.old\Windows\System32\DriverStore\FileRepository\c7187669.inf_amd64_neutral_3eef3e8955af93c8\B187676\atikmdag.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

=========================== Installed Programs ============================
 
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 15.016.20045 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 4.4 64-bit (HKLM\...\{11A955CD-4398-405A-886D-E464C3618FBF}) (Version: 4.4.1 - Adobe)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Catalyst Install Manager (HKLM\...\{7E5DC2C5-115A-322B-976C-219237FAED66}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
ANT Drivers Installer x64 (HKLM\...\{AB456A86-C80C-4803-9393-B617E3157CCA}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
ATI AVIVO64 Codecs (HKLM\...\{72E244E5-ABBF-4905-B29C-4A8BA9190A9C}) (Version: 11.6.0.10419 - ATI Technologies Inc.) Hidden
Auslogics Duplicate File Finder (HKLM-x32\...\{6845255F-15CC-4DD1-94D5-D38F370118B3}_is1) (Version: 5.1.2.0 - Auslogics Labs Pty Ltd)
Beyond Compare 4.1.3 (HKCU\...\BeyondCompare4_is1) (Version: 4.1.3.20814 - Scooter Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom NetXtreme-I Netlink Driver and Management Installer (HKLM\...\{982E1601-0DFC-4FD3-A427-AC6570697858}) (Version: 14.2.4.1 - Broadcom Corporation)
Creative Audio Control Panel (HKLM-x32\...\AudioCS) (Version: 3.00 - Creative Technology Limited)
Creative Software AutoUpdate (HKLM-x32\...\Creative Software AutoUpdate) (Version: 1.41 - Creative Technology Limited)
Creative Sound Blaster Properties x64 Edition (HKLM-x32\...\Creative Sound Blaster Properties x64 Edition) (Version: 1.03 - Creative Technology Limited)
Dell System Detect (HKCU\...\73f463568823ebbe) (Version: 5.13.0.1 - Dell)
Dell Update (HKLM-x32\...\{DB82968B-57A4-4397-81A5-ECAB21B5DFCD}) (Version: 1.7.1015.0 - Dell Inc.)
Doro 1.98 (HKLM-x32\...\Doro_is1) (Version:  - CompSoft)
Dropbox (HKCU\...\Dropbox) (Version: 4.4.29 - Dropbox, Inc.)
Elevated Installer (HKLM-x32\...\{05557A22-E458-4673-BDB1-1CB929673429}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries) Hidden
Epson Connect Printer Setup (HKLM-x32\...\{D9B1D51B-EB56-410D-AEB5-1CCFAC4B6C8C}) (Version: 1.3.0 - SEIKO EPSON CORPORATION)
Epson Customer Participation (HKLM\...\{814FA673-A085-403C-9545-747FC1495069}) (Version: 1.0.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM-x32\...\{FA9D303D-0FB2-49C7-9397-8E6B11EA892D}) (Version: 2.50.0001 - SEIKO EPSON CORPORATION)
Epson E-Web Print (HKLM-x32\...\{6BF9F374-EC67-4808-A90C-F127DE6D989D}) (Version: 1.23.0000 - SEIKO EPSON CORPORATION)
Epson FAX Utility (HKLM-x32\...\{0CBE6C93-CB2E-4378-91EE-12BE6D4E2E4A}) (Version: 1.46.00 - SEIKO EPSON CORPORATION)
Epson PC-FAX Driver (HKLM-x32\...\EPSON PC-FAX Driver 2) (Version:  - )
EPSON Printer Finder (HKLM-x32\...\{B8ECD0D3-AE08-4891-B6C7-32F96B75EB6C}) (Version: 1.0.0 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON WorkForce 645 Series Printer Uninstall (HKLM\...\EPSON WorkForce 645 Series) (Version:  - SEIKO EPSON Corporation)
ESET NOD32 Antivirus (HKLM\...\{5F2AE448-CD4B-40BD-B245-5F0CD06A09B0}) (Version: 8.0.319.0 - ESET, spol s r. o.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
Garmin Express (HKLM-x32\...\{dee43f2c-65bf-40c0-97f2-b887178f63f4}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries)
Garmin Express (HKLM-x32\...\{EF8DE832-FCEE-48D6-85D0-716961D494A2}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (HKLM-x32\...\{10368821-483F-4EE9-8807-8A3DFB67F661}) (Version: 4.1.21.0 - Garmin Ltd or its subsidiaries) Hidden
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Earth Plug-in (HKLM-x32\...\{ADA8583A-C20B-414B-8CB7-3AA7A89F7952}) (Version: 7.1.4.1529 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.30.3 - Google Inc.) Hidden
Host OpenAL (HKLM-x32\...\Host OpenAL) (Version: 2.02 - Creative Technology Limited)
iCloud (HKLM\...\{ADFDB647-35C0-4254-9EE6-2D9C3B7104BD}) (Version: 5.2.1.69 - Apple Inc.)
ieSpell (HKLM-x32\...\ieSpell) (Version: 2.6.4 (build 573) - Red Egg Software)
Intel® Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1118 - Intel Corporation)
Intel® Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
iTunes (HKLM\...\{9F4BF859-C3A4-4AB6-BDD1-9C5D58188598}) (Version: 12.4.1.6 - Apple Inc.)
magicJack (HKCU\...\magicJack) (Version: 4.1.7574.5297 - magicJack L.P.)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office Home and Business 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{402ED4A1-8F5B-387A-8688-997ABF58B8F2}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.17.0 - NEC Electronics Corporation) Hidden
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.17.0 - NEC Electronics Corporation)
PDF Settings (HKLM-x32\...\{AC5B0C19-D851-42F4-BDA0-410ECF7F70A5}) (Version: 1.0 - Adobe Systems Incorporated) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek USB Audio (HKLM-x32\...\{0A46A65D-89AC-464C-8026-3CD44960BD04}) (Version: 6.3.9600.41 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.11w3 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows Driver Package - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows Driver Package - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Zemana AntiMalware (HKLM-x32\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.21.15 - Zemana Ltd.)
ZHPDiag 2015 (HKLM-x32\...\ZHPDiag_is1) (Version: 2015 - Nicolas Coolman)
 
========================= Devices: ================================
 

========================= Memory info: ===================================
 
Percentage of memory in use: 32%
Total physical RAM: 16366.44 MB
Available physical RAM: 11089.5 MB
Total Virtual: 32750.44 MB
Available Virtual: 27132.41 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:919.69 GB) (Free:667.06 GB) NTFS
2 Drive d: (Printables) (CDROM) (Total:0.01 GB) (Free:0 GB) UDF
10 Drive y: (Iomega HDD) (Fixed) (Total:931.51 GB) (Free:151.61 GB) NTFS
11 Drive z: (My Book) (Fixed) (Total:2794.49 GB) (Free:1812.42 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\CHARLES11-PC
 
Administrator            Charles11                DefaultAccount          
Guest                   
 

**** End of log ****

Edited by cbcac, 19 June 2016 - 01:00 AM.


#3 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 18 June 2016 - 04:12 PM

TDSSkiller

 

16:06:01.0076 0x0fcc  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
16:06:04.0931 0x0fcc  ============================================================
16:06:04.0931 0x0fcc  Current date / time: 2016/06/18 16:06:04.0931
16:06:04.0931 0x0fcc  SystemInfo:
16:06:04.0931 0x0fcc 
16:06:04.0931 0x0fcc  OS Version: 10.0.10586 ServicePack: 0.0
16:06:04.0931 0x0fcc  Product type: Workstation
16:06:04.0931 0x0fcc  ComputerName: CHARLES11-PC
16:06:04.0931 0x0fcc  UserName: Charles11
16:06:04.0931 0x0fcc  Windows directory: C:\WINDOWS
16:06:04.0931 0x0fcc  System windows directory: C:\WINDOWS
16:06:04.0931 0x0fcc  Running under WOW64
16:06:04.0931 0x0fcc  Processor architecture: Intel x64
16:06:04.0931 0x0fcc  Number of processors: 8
16:06:04.0931 0x0fcc  Page size: 0x1000
16:06:04.0931 0x0fcc  Boot type: Normal boot
16:06:04.0931 0x0fcc  ============================================================
16:06:05.0236 0x0fcc  KLMD registered as C:\WINDOWS\system32\drivers\41010473.sys
16:06:30.0090 0x0fcc  System UUID: {F23D60A5-F7DF-C59C-5D3E-8ADE55B4C9AF}
16:06:30.0533 0x0fcc  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:06:30.0605 0x0fcc  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:06:30.0635 0x0fcc  Drive \Device\Harddisk3\DR3 - Size: 0x2BA9F400000 ( 2794.49 Gb ), SectorSize: 0x1000, Cylinders: 0xB21F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:06:30.0663 0x0fcc  ============================================================
16:06:30.0663 0x0fcc  \Device\Harddisk0\DR0:
16:06:30.0663 0x0fcc  MBR partitions:
16:06:30.0663 0x0fcc  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1791000
16:06:30.0663 0x0fcc  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x17A5000, BlocksNum 0x72F61000
16:06:30.0663 0x0fcc  \Device\Harddisk1\DR1:
16:06:30.0664 0x0fcc  MBR partitions:
16:06:30.0664 0x0fcc  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x74705982
16:06:30.0664 0x0fcc  \Device\Harddisk3\DR3:
16:06:30.0664 0x0fcc  MBR partitions:
16:06:30.0664 0x0fcc  \Device\Harddisk3\DR3\Partition1: MBR, Type 0x7, StartLBA 0x100, BlocksNum 0x2BA9F300
16:06:30.0664 0x0fcc  ============================================================
16:06:30.0707 0x0fcc  C: <-> \Device\Harddisk0\DR0\Partition2
16:06:30.0710 0x0fcc  Y: <-> \Device\Harddisk1\DR1\Partition1
16:06:31.0599 0x0fcc  Z: <-> \Device\Harddisk3\DR3\Partition1
16:06:31.0599 0x0fcc  ============================================================
16:06:31.0599 0x0fcc  Initialize success
16:06:31.0599 0x0fcc  ============================================================
16:06:46.0771 0x1200  ============================================================
16:06:46.0771 0x1200  Scan started
16:06:46.0771 0x1200  Mode: Manual;
16:06:46.0771 0x1200  ============================================================
16:06:46.0771 0x1200  KSN ping started
16:06:46.0970 0x1200  KSN ping finished: true
16:06:48.0129 0x1200  ================ Scan system memory ========================
16:06:48.0129 0x1200  System memory - ok
16:06:48.0130 0x1200  ================ Scan services =============================
16:06:48.0255 0x1200  [ DF1C3D7E6C7929AD83BE22852B5B08CB, 9ECF6211CCD30273A23247E87C31B3A2ACDA623133CEF6E9B3243463C0609C5F ] 1394ohci        C:\WINDOWS\System32\drivers\1394ohci.sys
16:06:48.0263 0x1200  1394ohci - ok
16:06:48.0287 0x1200  [ 2C5B3035B86770ADD2FE9BFBAF5B35A4, 19E16F9144FE3E33B5FF248CF0040AB079ACAE22290B1369CC72AE4CB5FE3A90 ] 3ware           C:\WINDOWS\system32\drivers\3ware.sys
16:06:48.0289 0x1200  3ware - ok
16:06:48.0335 0x1200  [ 469441BAE3FF8A16826FC62C51EF5E18, E1204677B87F47222D05F670F8DF3DB65EA0881782A8DCFBE0103478ED71187C ] ACPI            C:\WINDOWS\system32\drivers\ACPI.sys
16:06:48.0346 0x1200  ACPI - ok
16:06:48.0360 0x1200  [ 7EADED8087C392876521F7EBCE846EF4, 99BF1BD948F97C1ECBC049C7F949B71D73D0B41FB505B2F75B208E655F7DC8A3 ] acpiex          C:\WINDOWS\system32\Drivers\acpiex.sys
16:06:48.0363 0x1200  acpiex - ok
16:06:48.0379 0x1200  [ C498887123327CDFD73A05E7A2780920, B45392C46254FCB8D79B6C3A82C8D894063199E6167D8E5F7EA7D60C75CD16EA ] acpipagr        C:\WINDOWS\System32\drivers\acpipagr.sys
16:06:48.0380 0x1200  acpipagr - ok
16:06:48.0403 0x1200  [ C8DBE6EFFCF014CAA010B9BDDAC833EC, 96FC29340C62A6B0910DCCBF8945F32089FC300F45B451A540B8854D53734298 ] AcpiPmi         C:\WINDOWS\System32\drivers\acpipmi.sys
16:06:48.0404 0x1200  AcpiPmi - ok
16:06:48.0414 0x1200  [ 17039DBEB3B7B9ADCDB4B4533AA9771F, A4D38B144639A20B8B31E4F35FB776A028DB502FAC849FC73EECEB3CCD91830B ] acpitime        C:\WINDOWS\System32\drivers\acpitime.sys
16:06:48.0415 0x1200  acpitime - ok
16:06:48.0544 0x1200  [ 36114214BF8D7C464D1E92E4EB6B2DD3, 8E7CB266D4ABCDF332A3D4D341753811D51B72985E36F24A7E757DCA11A65A2A ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:06:48.0547 0x1200  AdobeARMservice - ok
16:06:48.0645 0x1200  [ 6A050671F2C76FB48131F12786802807, 71B37A9CEAE5AB1B069FB010BC547E14445461885B74FA879E63F9F2DAF644A5 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:06:48.0650 0x1200  AdobeFlashPlayerUpdateSvc - ok
16:06:48.0689 0x1200  [ F7D0CD345D2DA42E7042ABCD73662403, 03183F90A994D69066F15C3DFC1D7D7514AEAF46A5AAC059B1FB327F8C30A35C ] ADP80XX         C:\WINDOWS\system32\drivers\ADP80XX.SYS
16:06:48.0708 0x1200  ADP80XX - ok
16:06:48.0731 0x1200  [ 70148EFA9A562E7185B75BBE7D376BF7, 8200E3349A1AFA1040B3D956A17BAF3CDC784A1A3CA396125E7872B36C03D84A ] AFD             C:\WINDOWS\system32\drivers\afd.sys
16:06:48.0739 0x1200  AFD - ok
16:06:48.0749 0x1200  [ 870F1A2C936F92B5D053DF7EC75B352F, D617524FD5886D6D3BC2EFBBB5EA310E906454CD7CA7257C3D7BDEA8C4F2DA71 ] agp440          C:\WINDOWS\system32\drivers\agp440.sys
16:06:48.0750 0x1200  agp440 - ok
16:06:48.0769 0x1200  [ 3DF7751D5DC6525E7DC6617FBB45054F, 8E6D4C809DB3B66E7558C4829E01F5C227EE614AC82F33FD99DCC629770D1BE3 ] ahcache         C:\WINDOWS\system32\DRIVERS\ahcache.sys
16:06:48.0773 0x1200  ahcache - ok
16:06:48.0803 0x1200  [ 19707ECBCEA71080A85DB2336580DB39, A09AE69C9DE2F3765417F212453B6927C317A94801AE68FBA6A8E8A7CB16CED7 ] AJRouter        C:\WINDOWS\System32\AJRouter.dll
16:06:48.0804 0x1200  AJRouter - ok
16:06:48.0826 0x1200  [ AA91A5E156D0364ABA7B01658C2EB014, F61055D581745023939C741CAB3370074D1416BB5A0BE0BD47642D5A75669E12 ] ALG             C:\WINDOWS\System32\alg.exe
16:06:48.0828 0x1200  ALG - ok
16:06:48.0857 0x1200  [ BBADD85854BFB5D43C60B7AC8EEA3DBA, 968C043ABEA46F5C79525863B3FE2681AC0FA4202036C9EFD20B408DECF407E2 ] AMD External Events Utility C:\WINDOWS\system32\atiesrxx.exe
16:06:48.0860 0x1200  AMD External Events Utility - ok
16:06:48.0873 0x1200  [ B70F0F2F54B4A4DB6E9C830454752F5A, C882DEAC30812E5FA4479A8CB688603C6AF269EF08236688F4C5E7EBED1D4572 ] AmdK8           C:\WINDOWS\System32\drivers\amdk8.sys
16:06:48.0875 0x1200  AmdK8 - ok
16:06:48.0878 0x1200  amdkmdag - ok
16:06:48.0901 0x1200  [ 17BA5C907E14947574CBB788F4CEB85F, EAA3DBF436637C58666A91905E388287FC54334EBB2589A00727EB09AC4870E3 ] amdkmdap        C:\WINDOWS\system32\DRIVERS\atikmpag.sys
16:06:48.0910 0x1200  amdkmdap - ok
16:06:48.0921 0x1200  [ 35E890482C9728DD5C552B85DA8A5AB2, 1E0EB7D902AB4C38E23CAFC0BEA250E7F6E180E8814385B4F29730BFC373A191 ] AmdPPM          C:\WINDOWS\System32\drivers\amdppm.sys
16:06:48.0923 0x1200  AmdPPM - ok
16:06:48.0933 0x1200  [ 5B30BCFE6E02E45D3EE268FF001BC5E0, 9901DB728885CE36911F79998629B2DD42D56AF9633B5277834F498CC59B0346 ] amdsata         C:\WINDOWS\system32\drivers\amdsata.sys
16:06:48.0934 0x1200  amdsata - ok
16:06:48.0958 0x1200  [ F20B30F35A5C7888441B4DCA001ECF8E, 695A5BC1F18B65992EB06A202AD3CBFA17228E76DDFD1AE6977FD315724F75C2 ] amdsbs          C:\WINDOWS\system32\drivers\amdsbs.sys
16:06:48.0966 0x1200  amdsbs - ok
16:06:48.0976 0x1200  [ AFE838D7576C581D6483529621AB10CC, 14476A04CC64E7A0F1BBFDACCBD7A87F384BE1877C27656DBB973AF3975D4AE2 ] amdxata         C:\WINDOWS\system32\drivers\amdxata.sys
16:06:48.0978 0x1200  amdxata - ok
16:06:49.0036 0x1200  [ ADFFD587A8CBDCEB0566521ACEF707DB, 17CF539B17FAAF4CC4306B6D2BBD36D80C93FB49A614293D7351A92445C6C1D0 ] AppHostSvc      C:\WINDOWS\system32\inetsrv\apphostsvc.dll
16:06:49.0039 0x1200  AppHostSvc - ok
16:06:49.0075 0x1200  [ EDDB0D726DBECDFC1DBCC6DB464E5A13, 98D128D1E6FA270ED9ADBFE50078F68A794C00D4CBB86E28EC6161FFAD0CA8FF ] AppID           C:\WINDOWS\system32\drivers\appid.sys
16:06:49.0080 0x1200  AppID - ok
16:06:49.0097 0x1200  [ 7A55F9237F726D1667073A47B0D1B90F, 7C2D9AA84F1D4CC6C1FAF6848DF9479A534E01029C4387E8C0647745F1E74603 ] AppIDSvc        C:\WINDOWS\System32\appidsvc.dll
16:06:49.0099 0x1200  AppIDSvc - ok
16:06:49.0118 0x1200  [ 56E219DF92BE16F62308F884739BE022, FE189EE8A52BC5A0E6B76C632021F84F60307A182F2A67C0C0C7CAA72DEFC723 ] Appinfo         C:\WINDOWS\System32\appinfo.dll
16:06:49.0122 0x1200  Appinfo - ok
16:06:49.0223 0x1200  [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:06:49.0226 0x1200  Apple Mobile Device Service - ok
16:06:49.0259 0x1200  [ 610499A73DF3599608EBB6B3F9929052, A9CA49C4A39A825916AB3791090BCFC7044FDB6B2C3538E01F0CFBC2A9931152 ] AppReadiness    C:\WINDOWS\system32\AppReadiness.dll
16:06:49.0273 0x1200  AppReadiness - ok
16:06:49.0341 0x1200  [ 1CF69EF4E2844F9D297F309CF80122CB, 577428E4A364212AA5E650059C99139B8F9F4952DF228D6150D6B93E7D06AF61 ] AppXSvc         C:\WINDOWS\system32\appxdeploymentserver.dll
16:06:49.0370 0x1200  AppXSvc - ok
16:06:49.0385 0x1200  [ E3FE8F610B1CC12BC3B2E6BC43DC97E2, 0E18542CF2095A9ADA1759AB8F986E78B0A50A3C6B2AD4EACD80A23D832A2C6D ] arcsas          C:\WINDOWS\system32\drivers\arcsas.sys
16:06:49.0387 0x1200  arcsas - ok
16:06:49.0454 0x1200  [ 00B0FDD484914F388B5441285FDE24CB, 90AA8A12BB235BFC3A924F0E23BCEE8742817E3BC5A85E49D8AF8B52E8158ECB ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:06:49.0456 0x1200  aspnet_state - ok
16:06:49.0474 0x1200  [ 5E00748A1AD246CAECBBB7553BED36CC, DAD2C93F0894E7BB5E5D8D767D8286A909086B49172C504A01097C3A180998C6 ] AsyncMac        C:\WINDOWS\System32\drivers\asyncmac.sys
16:06:49.0475 0x1200  AsyncMac - ok
16:06:49.0509 0x1200  [ 492B99D2E3D5D7BFD5F0AE1BE7BD37DD, A3F6BFC4FDC1933FBF3145019B118689A414108B04F43E2563946B2673C89324 ] atapi           C:\WINDOWS\system32\drivers\atapi.sys
16:06:49.0510 0x1200  atapi - ok
16:06:49.0541 0x1200  [ 4BF5BCA6E2608CD8A00BC4A6673A9F47, 172240231981162F67DD2CF13C6D8C807EFFCE9C24B476F2942BC3E1F41C1A71 ] AtiHDAudioService C:\WINDOWS\system32\drivers\AtihdW76.sys
16:06:49.0545 0x1200  AtiHDAudioService - ok
16:06:49.0586 0x1200  [ 42BF7FA295F453618104B5A50BEE105B, AB44BA2AD2FC5AF3B6BE4489C444C03FD1AB02C22109BF5F39BE459294C4CB18 ] AudioEndpointBuilder C:\WINDOWS\System32\AudioEndpointBuilder.dll
16:06:49.0595 0x1200  AudioEndpointBuilder - ok
16:06:49.0634 0x1200  [ 2A2C0983B6FE62F02E7183335B1F5C20, 07845269FE72894D31D3FC927EECE26333AE9A2149A995DA4AE007276B05C647 ] Audiosrv        C:\WINDOWS\System32\Audiosrv.dll
16:06:49.0648 0x1200  Audiosrv - ok
16:06:49.0672 0x1200  [ 7062CE507814D5306DCA5D6A15B7B6B6, 9D60506003A66C2E516B1FCB70CC5B26FB3A9948B95D97C828DD0328E76F2C91 ] AxInstSV        C:\WINDOWS\System32\AxInstSV.dll
16:06:49.0674 0x1200  AxInstSV - ok
16:06:49.0701 0x1200  [ 6447BA6FA709514B6C803D159B4C7D1E, 549DDCEAD93DF333F6BBD56A9258A867E4DA219741C00D48C68F8F230A87B11A ] b06bdrv         C:\WINDOWS\system32\drivers\bxvbda.sys
16:06:49.0718 0x1200  b06bdrv - ok
16:06:49.0737 0x1200  [ B4AC08B1D04D0CE085435E5CD0E663C5, 61E641388E5692B2EB351E44BA1DB86B5305DD105EE56865D59072CA9407C8AC ] BasicDisplay    C:\WINDOWS\System32\drivers\BasicDisplay.sys
16:06:49.0738 0x1200  BasicDisplay - ok
16:06:49.0751 0x1200  [ 25B5BB369DEE2BAE4BF459C978FF9035, DBC2157B2AC0BC92B4011CE5E01F2DCDAAE71E37D9D21102503C6455FAAC4DCA ] BasicRender     C:\WINDOWS\System32\drivers\BasicRender.sys
16:06:49.0752 0x1200  BasicRender - ok
16:06:49.0762 0x1200  [ 3F5523DCEFE42B385659C5CB46A6B810, CA24A3DF002B19E7BDEDE9B5EB60623F299D0E78B2E4F58DCFC028D76DEFE52D ] bcmfn           C:\WINDOWS\System32\drivers\bcmfn.sys
16:06:49.0763 0x1200  bcmfn - ok
16:06:49.0771 0x1200  [ 0B750A6A6D847E73CA48ADD7A0F5A393, 6A43020F23846EFB1AFA3C070465B0059E9DF60DEB16899E09559462DF30939F ] bcmfn2          C:\WINDOWS\System32\drivers\bcmfn2.sys
16:06:49.0771 0x1200  bcmfn2 - ok
16:06:49.0801 0x1200  [ F374C27099807E99A156953F8416D34A, D267B8CD837290F9FC6B4FFD2DB8F54867D808FB155698FC7713BCAB3AE475B5 ] BDESVC          C:\WINDOWS\System32\bdesvc.dll
16:06:49.0808 0x1200  BDESVC - ok
16:06:49.0840 0x1200  [ 5A88834AEE15D97695FAE0837B73B3E4, 03035FB51DE218B8EDB15129A0376DDED0C7E7B6DA58DD95B12E4E5C8D852ED8 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
16:06:49.0840 0x1200  Beep - ok
16:06:49.0886 0x1200  [ 37F5E2385CB4D10AB42186974B9C241A, D38FA2B8CE19AC32056060F04B04D031F1621C07528DEDCCD5A8C01AB0A35995 ] BFE             C:\WINDOWS\System32\bfe.dll
16:06:49.0901 0x1200  BFE - ok
16:06:49.0953 0x1200  [ 64582C924C48175D52AED0D0E64AB413, 75DC6BC01D26A4BABEDB8013F0C106780F0991CA63075798C7C24B66022F58E3 ] BITS            C:\WINDOWS\System32\qmgr.dll
16:06:49.0970 0x1200  BITS - ok
16:06:50.0053 0x1200  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:06:50.0061 0x1200  Bonjour Service - ok
16:06:50.0073 0x1200  [ DA2C6F7ACE392193C424FEA975C5BFFB, 668F91F3E5F8EA170C10823D6959E0EDB32434C51FAA68BEA782EDDF5618690E ] bowser          C:\WINDOWS\system32\DRIVERS\bowser.sys
16:06:50.0076 0x1200  bowser - ok
16:06:50.0112 0x1200  [ 96AFB6D33247FE90421A5B2E76F4ED59, 4BBA27CF3AF63F223A5AB6C5535B3BB9B70C98EB482C11C7F4941667535D7368 ] BrcmMgmtAgent   C:\Program Files\Broadcom\MgmtAgent\BrcmMgmtAgent.exe
16:06:50.0117 0x1200  BrcmMgmtAgent - ok
16:06:50.0165 0x1200  [ 4F2621E187382D22045D0BC65B23858E, E6AB3B1EB13446128BA69A4D0B00BCA36625BB656F0056D3D43F3A252F6F09AC ] BrokerInfrastructure C:\WINDOWS\System32\bisrv.dll
16:06:50.0177 0x1200  BrokerInfrastructure - ok
16:06:50.0229 0x1200  [ A617BE5E429A035A1CA8217C1B16F0BB, 197EE6C6EB22FF8A626540886F5A2163CC4CB177504C5423856F54BF01EB0FF1 ] Browser         C:\WINDOWS\System32\browser.dll
16:06:50.0232 0x1200  Browser - ok
16:06:50.0246 0x1200  [ CAEC7BC11AF69A181AF7932E636E09E4, 503C69045F1E025CBEE2405043BB71CC58478985ECAF6587F73FCB57860F5709 ] BthAvrcpTg      C:\WINDOWS\System32\drivers\BthAvrcpTg.sys
16:06:50.0247 0x1200  BthAvrcpTg - ok
16:06:50.0263 0x1200  [ 5F2B4B32E986C058525D3BA2A475A16C, CEC5BB0B025DD9525CFBBEDF6EB6F63336534798495A4F95763CE112DF915088 ] BthHFEnum       C:\WINDOWS\System32\drivers\bthhfenum.sys
16:06:50.0264 0x1200  BthHFEnum - ok
16:06:50.0280 0x1200  [ 5406289E8AE2CB52FC408154E0A64BA7, 0A3795F2E6E2B51198452CF69A99159D8E11650E95F41DF0B575CB72F9C6C6B5 ] bthhfhid        C:\WINDOWS\System32\drivers\BthHFHid.sys
16:06:50.0281 0x1200  bthhfhid - ok
16:06:50.0312 0x1200  [ BAB101E7826BE287F79C4BA721621989, E6DD25C89267FE87253B8226292F2894F5E702075D3B23B09339D3B28744C060 ] BthHFSrv        C:\WINDOWS\System32\BthHFSrv.dll
16:06:50.0317 0x1200  BthHFSrv - ok
16:06:50.0334 0x1200  [ A76F20CCCA31895A1DA78A875E50F946, ECD4B3670DA5984AA24F4354457B4E45983938A89FF6DB03B556A633B4B37E3C ] BTHMODEM        C:\WINDOWS\System32\drivers\bthmodem.sys
16:06:50.0336 0x1200  BTHMODEM - ok
16:06:50.0348 0x1200  [ 7A177E18AA6A6A6365E6351C2BF8EDAE, A35224A20014B1215A6824AE5E17B8869A775EA272EF7F25EAFFA18733F8D09D ] bthserv         C:\WINDOWS\system32\bthserv.dll
16:06:50.0350 0x1200  bthserv - ok
16:06:50.0360 0x1200  [ BF89BDBA5D3A0B4256D3F6FC8D31880D, 940F3BF55B88261C9E9A951A092331559FC5B24FE3BA0F1E1AB3450D2CA364C1 ] buttonconverter C:\WINDOWS\System32\drivers\buttonconverter.sys
16:06:50.0361 0x1200  buttonconverter - ok
16:06:50.0370 0x1200  [ C24C27FDF93B85A4EFCF25F830253AA2, 35C87518BB59663B57C2361A13AD4E57E37392598F1EB9F07F86CA5A6321AF5A ] CapImg          C:\WINDOWS\System32\drivers\capimg.sys
16:06:50.0372 0x1200  CapImg - ok
16:06:50.0385 0x1200  [ 7F9C7226D743B232907ED2537B8A574F, 2211AFC30E8F8FA03020DB48EE14914CD31E50BB6A63FF20AC7C6FA481E72C18 ] cdfs            C:\WINDOWS\system32\DRIVERS\cdfs.sys
16:06:50.0386 0x1200  cdfs - ok
16:06:50.0406 0x1200  [ 0A92DC116CFC7F6BE8167DD25CB925CC, 50CAC7BE14FF69B10C029E049F7C441A5572540F027F95F940B185C76C689409 ] CDPSvc          C:\WINDOWS\System32\CDPSvc.dll
16:06:50.0411 0x1200  CDPSvc - ok
16:06:50.0435 0x1200  [ 82D97776BF982AA143BDC7DFB5054EA8, 954F56728371E6B3514586DCEAF15C4727BAED6CAFBF788654C4E03BD702942C ] cdrom           C:\WINDOWS\System32\drivers\cdrom.sys
16:06:50.0437 0x1200  cdrom - ok
16:06:50.0464 0x1200  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] CertPropSvc     C:\WINDOWS\System32\certprop.dll
16:06:50.0467 0x1200  CertPropSvc - ok
16:06:50.0483 0x1200  [ 0505C1D991D0F9D47F3353BB98597C7E, 3B801CCF4980256327A4A9FBD98007DA1E3ACE9C94E5A4C23AB21303B46E8B5A ] circlass        C:\WINDOWS\System32\drivers\circlass.sys
16:06:50.0484 0x1200  circlass - ok
16:06:50.0505 0x1200  [ 8B4B39C507ABA09AAFE8E3932D1B392C, 734700155A658BC08FC96E8F99A01DE7F7251D7DDEFA79D258B2EEB370BA7AA8 ] CLFS            C:\WINDOWS\system32\drivers\CLFS.sys
16:06:50.0511 0x1200  CLFS - ok
16:06:50.0552 0x1200  [ F7526C133AC265F283012E9CD751F873, 6AABDD92FD880F49F63C1CC478C3D8291AF670802CEC58B32730E7675D858D88 ] ClipSVC         C:\WINDOWS\System32\ClipSVC.dll
16:06:50.0561 0x1200  ClipSVC - ok
16:06:50.0587 0x1200  [ 95832B049E2833B9F5189823CDF946C7, 72773A42A89220B4A6AC72D1633B16F11191A44D876A44FAB5CEFB717CE3223D ] CmBatt          C:\WINDOWS\System32\drivers\CmBatt.sys
16:06:50.0588 0x1200  CmBatt - ok
16:06:50.0616 0x1200  [ 3F7C80D9F16B94367646CBF8B8C052F4, 3F33980348E92876CD2A367C31E4B959C92BA6572266B1C75CB0C062095DFCB7 ] CNG             C:\WINDOWS\system32\Drivers\cng.sys
16:06:50.0628 0x1200  CNG - ok
16:06:50.0669 0x1200  [ 58D640BC2294C71BDE0953F12D4B432F, 0B3B7659FCB97791A2A1F895C8E6F9078F855C94C13EB47464492588C4B02B85 ] cnghwassist     C:\WINDOWS\system32\DRIVERS\cnghwassist.sys
16:06:50.0671 0x1200  cnghwassist - ok
16:06:50.0724 0x1200  [ 14F9883588398A1BDE49C75098C75DE6, D9D82DE89FAFE60BC902683BC44C7555533A030150FD5E5A35A24542FACC5CAD ] CompositeBus    C:\WINDOWS\System32\DriverStore\FileRepository\compositebus.inf_amd64_912dfdedc3d2f520\CompositeBus.sys
16:06:50.0726 0x1200  CompositeBus - ok
16:06:50.0731 0x1200  COMSysApp - ok
16:06:50.0746 0x1200  [ 02B8E49148DE5E0A2F6FDF28CE94A6AC, EEA405823F441CA604BEAA44EB71A1D20BC80E124FF7B27380D0201AAF2E0849 ] condrv          C:\WINDOWS\system32\drivers\condrv.sys
16:06:50.0748 0x1200  condrv - ok
16:06:50.0787 0x1200  [ 86BE19C6A177AEB93302EA5C4FBE2D11, 5404AB84D270549B1A46574EBDC857525F71B117BE3BA0098FA0A696E56D5C39 ] CoreMessagingRegistrar C:\WINDOWS\system32\coremessaging.dll
16:06:50.0806 0x1200  CoreMessagingRegistrar - ok
16:06:50.0873 0x1200  [ C0EAD9F8AB83D41FF07303C75589C2B8, C89CAC39BCD2FA2DCC56D7EE84FF66127BCECCAE400E119FE41BF4C4D769504B ] Creative Audio Engine Licensing Service C:\Program Files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
16:06:50.0876 0x1200  Creative Audio Engine Licensing Service - ok
16:06:50.0916 0x1200  [ 9E79A2208A9ED205A7383CBC92C28053, 2E6599DF30DF19BD7BE6FEF1B21FED7F349A3F2306CC5CFDB767ABA7283E8A55 ] CryptSvc        C:\WINDOWS\system32\cryptsvc.dll
16:06:50.0920 0x1200  CryptSvc - ok
16:06:50.0953 0x1200  [ 5CE3D0E1D1B3832EE052CFC442EEE0FA, 6B9DB2C350140ED547C7A96DB0EAD812E8987176B312C79AF52FC9B23EEEB8C4 ] CTAudSvcService C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
16:06:50.0962 0x1200  CTAudSvcService - ok
16:06:50.0978 0x1200  [ 2619DC483579DB9FE804044C1ADFFD1A, 23A5420288735A980917091532BE7BB36EB51660AA4555C615AF736357EB02EC ] dam             C:\WINDOWS\system32\drivers\dam.sys
16:06:50.0981 0x1200  dam - ok
16:06:51.0040 0x1200  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
16:06:51.0054 0x1200  DcomLaunch - ok
16:06:51.0080 0x1200  [ 620921E77351FB651632322AD2C195C4, 5A98971995D7A2B5AE6BEA69344FCC6687B582FEF74BDA206D32FB2E6CEB0478 ] DcpSvc          C:\WINDOWS\system32\dcpsvc.dll
16:06:51.0084 0x1200  DcpSvc - ok
16:06:51.0122 0x1200  [ 6129EA4294C5C69E4665801E95B16AB2, CE419186CF0F57434426FF925A09F13BE87639679CBB5F2074B0E1A243349D27 ] defragsvc       C:\WINDOWS\System32\defragsvc.dll
16:06:51.0135 0x1200  defragsvc - ok
16:06:51.0183 0x1200  [ 44C694C2B542DB3CDAEBDB1FF3233F4D, 888CA6F60ECF508DE4D414FCAB680BC7A103237701D47840552F6CCA64FF7176 ] DellUpdate      C:\Program Files (x86)\Dell Update\DellUpService.exe
16:06:51.0187 0x1200  DellUpdate - ok
16:06:51.0204 0x1200  [ D12B9B6A6C4885824876422AACC89954, 5853ED5CAF84B7AAFF3EDC5C71FE23EB121DB681D81267D77118424BA9AB6F88 ] DeviceAssociationService C:\WINDOWS\system32\das.dll
16:06:51.0210 0x1200  DeviceAssociationService - ok
16:06:51.0227 0x1200  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] DeviceInstall   C:\WINDOWS\system32\umpnpmgr.dll
16:06:51.0231 0x1200  DeviceInstall - ok
16:06:51.0245 0x1200  [ 5BF8BD9B19D665452494C8D56DF4B28D, E5FC649207EF42C04B6737D442FECD3383E82F8998B140319FF400773F1D0978 ] DevQueryBroker  C:\WINDOWS\system32\DevQueryBroker.dll
16:06:51.0247 0x1200  DevQueryBroker - ok
16:06:51.0275 0x1200  [ 935823F79CBEDB91637B63D37E3A5A36, BE9A46F1CA631B9252C71758901D55456DC3C143053003D9FA7D67811A1E5026 ] Dfsc            C:\WINDOWS\system32\Drivers\dfsc.sys
16:06:51.0278 0x1200  Dfsc - ok
16:06:51.0302 0x1200  [ D461D2BECEFA661291EB1B748A8D2CCB, 7275859FCDE58DE6C0C683AFDAD910EB4602336CC724EEE42495A8839213469D ] Dhcp            C:\WINDOWS\system32\dhcpcore.dll
16:06:51.0307 0x1200  Dhcp - ok
16:06:51.0347 0x1200  [ 9F5AC03F5A0000DD96FA29CD68A6605B, 6964E077635E65DA902CA6C69E704A9DCD5856D22BA75E1CF823E63E62266AF7 ] diagnosticshub.standardcollector.service C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe
16:06:51.0349 0x1200  diagnosticshub.standardcollector.service - ok
16:06:51.0410 0x1200  [ 15D174719872A30F2FDD6B5B1B8BA5D9, B0E6FF6FC47B731C204F110D4B768231906B144B31F602ECE8EAC24D70BA880D ] DiagTrack       C:\WINDOWS\system32\diagtrack.dll
16:06:51.0433 0x1200  DiagTrack - ok
16:06:51.0469 0x1200  [ 4904B152E4942BF700F2D73228B4D477, 0E5646DCA05A24C71F057C9F9F64AE992D338DA72DF3126175C2FA178854C30F ] disk            C:\WINDOWS\system32\drivers\disk.sys
16:06:51.0470 0x1200  disk - ok
16:06:51.0486 0x1200  [ E32F15E26724F3BB6423FB29FF3E2A8F, E8CF9829D2A74F4423424F8D169E726B88F50734F0B1ADC735691C37C9F32DAA ] DmEnrollmentSvc C:\WINDOWS\system32\Windows.Internal.Management.dll
16:06:51.0492 0x1200  DmEnrollmentSvc - ok
16:06:51.0504 0x1200  [ 0197AE4B9790A4E73751CACFAA480126, 86BBB398F1A93754B2C329271F13A88FD2F285F30225C38F068F565CCA14EB9F ] dmvsc           C:\WINDOWS\System32\drivers\dmvsc.sys
16:06:51.0504 0x1200  dmvsc - ok
16:06:51.0537 0x1200  [ 5EF8EC71A7A91F3DF7798BEFE6786B0E, A3A56B43C72926881C66B7A17C9EAA35C2D9603C8D3849438838536BCD3F4633 ] dmwappushservice C:\WINDOWS\system32\dmwappushsvc.dll
16:06:51.0539 0x1200  dmwappushservice - ok
16:06:51.0578 0x1200  [ 5839A317C25F70979433E0905DFABB1B, 7F1CD50C77A33A10259D8A208A355BE7ECAFEA69F810AD908EF8878A792741AF ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
16:06:51.0583 0x1200  Dnscache - ok
16:06:51.0605 0x1200  [ 1B15297A3A2CAB6BD586676154F389D8, 623D5F5FC8622B7D9AEEEB1787E6846C1570F0EEF94341239440B616D09D672A ] dot3svc         C:\WINDOWS\System32\dot3svc.dll
16:06:51.0609 0x1200  dot3svc - ok
16:06:51.0627 0x1200  [ 316C2D8B8E3C0727969F1C3790EF7193, 631F8578FDB26578C8436E4B9C4DF21E1F58FCFE6DA66E5769AAC3739005D465 ] DPS             C:\WINDOWS\system32\dps.dll
16:06:51.0631 0x1200  DPS - ok
16:06:51.0658 0x1200  [ 25FA06D3B49D6ADF8E874FFCDCD76B50, 9AF09B96ED79D94EA36581ABE6CC73313A72891779774B15860D018BEA2BBA0F ] drmkaud         C:\WINDOWS\System32\drivers\drmkaud.sys
16:06:51.0658 0x1200  drmkaud - ok
16:06:51.0689 0x1200  [ 16EE6701115BECF8C657D9D6E123F6A1, 16E115B5245C3C988F8B58B90D30F183021C7C7792D3D1C74BEC606E49672B2A ] DsmSvc          C:\WINDOWS\System32\DeviceSetupManager.dll
16:06:51.0693 0x1200  DsmSvc - ok
16:06:51.0720 0x1200  [ FBC8C56814642A7CA88ACBCA8DD1121F, 108690704A359991C3D6577477E232F5F2F46B36DF6B4B0738A893EF05D7D4EB ] DsSvc           C:\WINDOWS\System32\DsSvc.dll
16:06:51.0724 0x1200  DsSvc - ok
16:06:51.0784 0x1200  [ 8B83335B6A86F39785FC7C9DE5F5B29F, 2B9D6BB75E0AB6408C685EBB2CEC6291D7B1F41486E30CAB1EC132C83455CE3D ] DXGKrnl         C:\WINDOWS\System32\drivers\dxgkrnl.sys
16:06:51.0811 0x1200  DXGKrnl - ok
16:06:51.0857 0x1200  [ 16C9267276497C768CA3181DD69DEB67, 7D47FB76F4FEA10375EAB4A77181AEF9C2F890C8170E659B0DA0DF1BEC055C14 ] eamonm          C:\WINDOWS\system32\DRIVERS\eamonm.sys
16:06:51.0860 0x1200  eamonm - ok
16:06:51.0884 0x1200  [ 0CDF6B61D7F7FFCD195AF0113B9B2C16, 828D3FA31742B54075EAED2E67BBB5166D2EF4F84B791077E96DC0BD5557F11E ] Eaphost         C:\WINDOWS\System32\eapsvc.dll
16:06:51.0886 0x1200  Eaphost - ok
16:06:51.0967 0x1200  [ 491275B864B704B54EC08168344E0F38, B4849400C3F819CF7809A2001EA2ECB527022483F7DFE31C3930F951EAFE50CE ] ebdrv           C:\WINDOWS\system32\drivers\evbda.sys
16:06:52.0012 0x1200  ebdrv - ok
16:06:52.0048 0x1200  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] EFS             C:\WINDOWS\System32\lsass.exe
16:06:52.0050 0x1200  EFS - ok
16:06:52.0074 0x1200  [ CA0945B6123F41E4B0D6B46183AD8DC1, E7B180F13A521C4E8338CA7F0AC68A372B6935E4C4430E68C0BE08A73139DD7F ] ehdrv           C:\WINDOWS\system32\DRIVERS\ehdrv.sys
16:06:52.0077 0x1200  ehdrv - ok
16:06:52.0093 0x1200  [ CEF108FCE06892CFA5F1B49527D4BF49, FA337584024B6E6EE4AF519F57FFA4C0FCA19EDC148FF309336C4CCA8F9C9CE8 ] EhStorClass     C:\WINDOWS\system32\drivers\EhStorClass.sys
16:06:52.0094 0x1200  EhStorClass - ok
16:06:52.0106 0x1200  [ 5B1EAAE3001A7A320C106FC3859F4111, 700BA2C7D4DFAFFEB78D3804B310A4EE5B4295C84600442665693FF661673951 ] EhStorTcgDrv    C:\WINDOWS\system32\drivers\EhStorTcgDrv.sys
16:06:52.0108 0x1200  EhStorTcgDrv - ok
16:06:52.0267 0x1200  [ 0F32048BF3EA2A85FE3AC48E8E7B7C85, 5267511EEA80B37816C3ECA165602EF40CD644A4DA63A02C5DA37B16A889DA0C ] ekrn            C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
16:06:52.0287 0x1200  ekrn - ok
16:06:52.0311 0x1200  [ E34DEFC09F2843C2C24C2248F1ABE6D8, 1FD67EB5820A1D2F4402DE9D95DE288DB69D421A8473074FF23491D7CA8B5ACE ] embeddedmode    C:\WINDOWS\System32\embeddedmodesvc.dll
16:06:52.0314 0x1200  embeddedmode - ok
16:06:52.0330 0x1200  [ 062152DD5B225518A991DFCD8536770C, 5C8EF4E0C7DE3B24387FF239A8D0CDA39C2376826F16EAFF09739A6C7EDA01E0 ] EntAppSvc       C:\WINDOWS\system32\EnterpriseAppMgmtSvc.dll
16:06:52.0336 0x1200  EntAppSvc - ok
16:06:52.0365 0x1200  [ 0FA1A81B8D6D76D3C59E68433A17323F, 0E3B71AABC6EFC901DB47EA5A84B45243F05B4C51AD2C3B2ACFE81D37B6BFAE6 ] epfwwfpr        C:\WINDOWS\system32\DRIVERS\epfwwfpr.sys
16:06:52.0367 0x1200  epfwwfpr - ok
16:06:52.0410 0x1200  [ 757305C7AD34222F4A46D86FE0BEE241, 94540DC1EA19821EACC796EF4FE247005B02E417B30E91383D1260E9D9A8B747 ] EpsonCustomerParticipation C:\Program Files\EPSON\EpsonCustomerParticipation\EPCP.exe
16:06:52.0426 0x1200  EpsonCustomerParticipation - ok
16:06:52.0461 0x1200  [ DFEB7EE15BA8BA03E722C375F7E6A379, 6B73561E91D699576FD28AE36FB194443E3807C3696B435224B9D60808803344 ] EPSON_PM_RPCV4_05 C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_WT50RP.EXE
16:06:52.0464 0x1200  EPSON_PM_RPCV4_05 - ok
16:06:52.0480 0x1200  [ 7A2705148A4BB3CA255F81624338B461, 68AC8F8D2DD8AA4E8F2224A0054DE2AF67EA199217E87CD3C7299B021048F14F ] ErrDev          C:\WINDOWS\System32\drivers\errdev.sys
16:06:52.0480 0x1200  ErrDev - ok
16:06:52.0501 0x1200  [ 17BE4A35829B37C742084DC02D48E5F0, 7FDA62B56DF585C3F2C6FFB10AC7C0D8F70FA921C4DEA47B2789745CFE2618CE ] EventSystem     C:\WINDOWS\system32\es.dll
16:06:52.0509 0x1200  EventSystem - ok
16:06:52.0530 0x1200  [ DFE8A33FBCF6F38182631A4D6097B92D, F9D06780830E74FD5309E6DC5C3EEDB9334A8AE284F381FA91EF2729297F8632 ] exfat           C:\WINDOWS\system32\drivers\exfat.sys
16:06:52.0535 0x1200  exfat - ok
16:06:52.0563 0x1200  [ C330883C06E2D4CE4F6982F048265D37, 26044DE176056B7F5BF2A50A659243CFD7F25CFEE035B3A3C3165B3699872926 ] fastfat         C:\WINDOWS\system32\drivers\fastfat.sys
16:06:52.0568 0x1200  fastfat - ok
16:06:52.0602 0x1200  [ 952F10D2116B91BA433842D07879AE7A, 9E1EC0C719877EF198AA4DDBE896E9DDEAD360AAC1FC6DF305E7C5C73C7A761D ] Fax             C:\WINDOWS\system32\fxssvc.exe
16:06:52.0612 0x1200  Fax - ok
16:06:52.0636 0x1200  [ 9D299AE86D671488926126A84DF77BFD, C076EEDD0524B7D88BC56C97089E0A836CC1AD725E1A544CC4F8DDBB6670C366 ] fdc             C:\WINDOWS\System32\drivers\fdc.sys
16:06:52.0637 0x1200  fdc - ok
16:06:52.0648 0x1200  [ 47D09B8C312658ACE433E46DDF51C3A5, E76948DA0F51C7DC6D69B7E36D63CE6E98FDE619FA30E91637F75B5084107D22 ] fdPHost         C:\WINDOWS\system32\fdPHost.dll
16:06:52.0649 0x1200  fdPHost - ok
16:06:52.0654 0x1200  [ 177AC945B20C81400A1525ED7B49A425, FD215A2E718EA38A95D985F53AB3DD44B50C2549AA67F44BA98C4709E492051F ] FDResPub        C:\WINDOWS\system32\fdrespub.dll
16:06:52.0656 0x1200  FDResPub - ok
16:06:52.0673 0x1200  [ 3E78BEC276DA5A062E4D55F3291B3463, 62983457F506C70D1F89F527AB61C1C0F4D1B002631256A2708F9AF092A8C95E ] fhsvc           C:\WINDOWS\system32\fhsvc.dll
16:06:52.0676 0x1200  fhsvc - ok
16:06:52.0699 0x1200  [ 8F2523C9D8F1448FF2156452AF60FA00, 1D39CA54F5F1E62385D9EC041F9445BDDCB63740859B9418AE904FDF3D8388ED ] FileCrypt       C:\WINDOWS\system32\drivers\filecrypt.sys
16:06:52.0701 0x1200  FileCrypt - ok
16:06:52.0712 0x1200  [ 92ECCFA58C8195B8EA33ED942469D4E6, 8DB12E8CF80ECA22182F9A1F4CA922336A430297F1F596F204ECF4D9D19F30D9 ] FileInfo        C:\WINDOWS\system32\drivers\fileinfo.sys
16:06:52.0714 0x1200  FileInfo - ok
16:06:52.0724 0x1200  [ 87C51FDD50C17882BA93E28BBABB9847, 8987D80FB77D1D3F9E89B491B1287B027DA26FFC4E4BA7B01E07D4D4FC69E236 ] Filetrace       C:\WINDOWS\system32\drivers\filetrace.sys
16:06:52.0725 0x1200  Filetrace - ok
16:06:52.0772 0x1200  [ 227846995AFEEFA70D328BF5334A86A5, B8EF22DE552B44E7DC352742C775BB6B4992B653AF4B66B231A60182CE7A7201 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:06:52.0780 0x1200  FLEXnet Licensing Service - ok
16:06:52.0797 0x1200  [ E99261DD76D1C9E05AF575939CAE5AC5, A789724FD2E22AFB2F921836F5C19A21D17F4BBD604771E2908C2651BD31989C ] flpydisk        C:\WINDOWS\System32\drivers\flpydisk.sys
16:06:52.0798 0x1200  flpydisk - ok
16:06:52.0815 0x1200  [ 25D7A58625E1453E40D36825DE74E4F1, 74119803D35E3C3CC349B44C6CD9EDF6B797F88584B847F0BF9EED542719B86B ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys
16:06:52.0820 0x1200  FltMgr - ok
16:06:52.0861 0x1200  [ 4387DE200BF8DD0E2EE828E655434B9A, 9148D65E54663EEC139E754091F47ABF439A637BEA83F600D30736522DAA845D ] FontCache       C:\WINDOWS\system32\FntCache.dll
16:06:52.0885 0x1200  FontCache - ok
16:06:52.0939 0x1200  [ E79DAC43A5E191FC4DDB04197A704BFA, 2FA6C8B5B2DFE66C05828E3F55DFD6268A8210E9BD083F2D09367AD59AF1C6C1 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:06:52.0941 0x1200  FontCache3.0.0.0 - ok
16:06:52.0966 0x1200  [ B4175E8BE60B099686FF55CA7D692316, 3158FC5B4D1A2F1FC1346754392AE24AE58999B9061B1CE78A65E785BFFADD52 ] FsDepends       C:\WINDOWS\system32\drivers\FsDepends.sys
16:06:52.0969 0x1200  FsDepends - ok
16:06:52.0975 0x1200  [ CC71372CEB811A72F1DC99089C5CBF53, BB9DDE74D60E534A6F8A51B63DDBB441245F06A00A0AFD37DBBE86255690946D ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:06:52.0977 0x1200  Fs_Rec - ok
16:06:53.0017 0x1200  [ 50DFE05C698E9B0A63D95E3D669A105C, 3A7D5AE4A01B90C2ECF22AD2783A84C2329EAB9BACFA5237A7DCC3DC5995A864 ] fvevol          C:\WINDOWS\system32\DRIVERS\fvevol.sys
16:06:53.0028 0x1200  fvevol - ok
16:06:53.0043 0x1200  [ B9981A4CB9F728B3312A3885BFAA7204, 12FB2EB2E5D2A912769823DD9C1B33DB358CD0B7FBFC788529EF83DD584334F8 ] gagp30kx        C:\WINDOWS\system32\drivers\gagp30kx.sys
16:06:53.0044 0x1200  gagp30kx - ok
16:06:53.0132 0x1200  [ A6411F2FAE2B998D9A6D67270001CB16, 8A25D221821170BD50EC36F9F677DCE32CCFEEC386CEEF4EB59E0F0858EFA8F9 ] Garmin Device Interaction Service C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
16:06:53.0147 0x1200  Garmin Device Interaction Service - ok
16:06:53.0174 0x1200  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
16:06:53.0175 0x1200  GEARAspiWDM - ok
16:06:53.0207 0x1200  [ 77555B11B264991DDC26872FFCF1AB97, D5F230EEF74EB869F771F8A4AB19C1E6C845BB0EF4A1234882EBDA4FDC431E44 ] gencounter      C:\WINDOWS\System32\drivers\vmgencounter.sys
16:06:53.0207 0x1200  gencounter - ok
16:06:53.0222 0x1200  [ F3AC9652D88BF87BA6596CBEA28CE10F, 115F3C0A5B9903B17ADEA80E1825FE927B7361F5BDDF80CE3685EF2D327EDF4F ] genericusbfn    C:\WINDOWS\System32\drivers\genericusbfn.sys
16:06:53.0223 0x1200  genericusbfn - ok
16:06:53.0241 0x1200  [ F802FBABF0C4DF1BAA733187B2E476F5, E2533284CEBBB872196B013DD1FBBCA794DB1CAAA37D64849BD9264ECDD2CEE6 ] GPIOClx0101     C:\WINDOWS\system32\Drivers\msgpioclx.sys
16:06:53.0244 0x1200  GPIOClx0101 - ok
16:06:53.0301 0x1200  [ B89C353AFC8F56D961D07FF1FE7B4BCD, C4491A1E33E0151AF3D7589769D4DCFABC68518A22393A7584FB573B47643B2F ] gpsvc           C:\WINDOWS\System32\gpsvc.dll
16:06:53.0320 0x1200  gpsvc - ok
16:06:53.0345 0x1200  [ D011B0ADB15F4815310CE1BF4780B33E, 3860630917F83A89FE7A6407CC544505FA4BD754619CF273DD630ABFBAAE42EE ] GpuEnergyDrv    C:\WINDOWS\system32\drivers\gpuenergydrv.sys
16:06:53.0346 0x1200  GpuEnergyDrv - ok
16:06:53.0406 0x1200  [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:06:53.0408 0x1200  gupdate - ok
16:06:53.0412 0x1200  [ E1B44A75947137F4143308D566889837, EC7E883E7AF38BF3AC0AC513CFDE0186038443E9ACC7AD616EE6BD0EC09AACB9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:06:53.0414 0x1200  gupdatem - ok
16:06:53.0428 0x1200  [ 84BC034B6BB763733C1949B7B9BAF976, 18C2C0F15BAFA46197F0BB629C4F585D893C2A78324CA198F88A04527D524F23 ] HDAudBus        C:\WINDOWS\System32\drivers\HDAudBus.sys
16:06:53.0429 0x1200  HDAudBus - ok
16:06:53.0443 0x1200  [ 6B8CB114B8E64C0636EB49F7B914D1FC, 1AD7A43CC5CD99DCEF60C61242B6843D4AD925CE93BA5D75CD8395C7125EF5A7 ] HidBatt         C:\WINDOWS\System32\drivers\HidBatt.sys
16:06:53.0444 0x1200  HidBatt - ok
16:06:53.0458 0x1200  [ D1AD197CCDAAC0CB4819DA1D6EB17BAE, C370F974D0A1F7B60F47EAFF57B6CCABE82913187F8BFEE169B8237AE91247B1 ] HidBth          C:\WINDOWS\System32\drivers\hidbth.sys
16:06:53.0460 0x1200  HidBth - ok
16:06:53.0470 0x1200  [ 64909DECCFCC6FB5D9A5BAFDCCB31FEE, E19C91FD8D5102A8C4F6C6FF70CA058BB272FEC1B6E9CBA3A473C49948E6AC7E ] hidi2c          C:\WINDOWS\System32\drivers\hidi2c.sys
16:06:53.0472 0x1200  hidi2c - ok
16:06:53.0481 0x1200  [ F510F7B7BF61DEAAC04E65C3B65E8D59, 11566086B06FB08B6A179E3068E022DA381C762DC8962D1E1D63DC646DD4D301 ] hidinterrupt    C:\WINDOWS\System32\drivers\hidinterrupt.sys
16:06:53.0482 0x1200  hidinterrupt - ok
16:06:53.0493 0x1200  [ 90F3ED42D423C942BA5EA54E2FFE7AC7, BF7DE0C8141CD20A6235657BA897A019ABEFF6A01AA3FB202C73C33433CDEAF8 ] HidIr           C:\WINDOWS\System32\drivers\hidir.sys
16:06:53.0494 0x1200  HidIr - ok
16:06:53.0515 0x1200  [ F6C1CAF52246BD4F8503BC78A04A56C2, 07844E7EFCAE19CE0DE4089A01D8B5B4F7A52770CCE4EA7BFD78A00EF8B6CD6C ] hidkmdf         C:\WINDOWS\System32\drivers\hidkmdf.sys
16:06:53.0516 0x1200  hidkmdf - ok
16:06:53.0547 0x1200  [ 46DE2EF6382DD9613CB506760648F262, 419555220794380134A64E1956B83B2FD1D1B6E403C5FC729A9107E14A12E968 ] hidserv         C:\WINDOWS\system32\hidserv.dll
16:06:53.0550 0x1200  hidserv - ok
16:06:53.0579 0x1200  [ 128DEDDD61915DBA4D451D91D21F0513, 961A0DDA02B0879989300C15E4FF9022882A4CD895D65335C263AC0DD1918314 ] HidUsb          C:\WINDOWS\System32\drivers\hidusb.sys
16:06:53.0581 0x1200  HidUsb - ok
16:06:53.0615 0x1200  [ 7CEC266216126BC9A0E1072E1A7E5702, 6B2C0768C8F2590E65B9520D266C07D1A9D89B9E185CC359B0453F399836759F ] HomeGroupListener C:\WINDOWS\system32\ListSvc.dll
16:06:53.0624 0x1200  HomeGroupListener - ok
16:06:53.0662 0x1200  [ E2145534FB853921788F52701BED0CAB, DF71F842772FAC21DD8994C97F578A78AC43D06C5F26F752FB69B47DFE3BB112 ] HomeGroupProvider C:\WINDOWS\system32\provsvc.dll
16:06:53.0673 0x1200  HomeGroupProvider - ok
16:06:53.0691 0x1200  [ FF442DCDCE1F6E9FAA9C8AD0CD1D199B, A239414E97B310C9545995B0E723B5E792B08D71F651450EB006AD4D1765E4F7 ] HpSAMD          C:\WINDOWS\system32\drivers\HpSAMD.sys
16:06:53.0692 0x1200  HpSAMD - ok
16:06:53.0743 0x1200  [ 63C3F74DC398A1C1A77E39DFB9C312CA, 283A13899838B4313BFBC406E832042696C549640A1AB11E23C0B9E499289836 ] HTTP            C:\WINDOWS\system32\drivers\HTTP.sys
16:06:53.0758 0x1200  HTTP - ok
16:06:53.0762 0x1200  [ CBA5E88A0F0475B7F49653BB72150BEF, 0F03560D9C30E069D117A555AEE729C81E6BCAE443FA25172D0E9E6903695C67 ] hwpolicy        C:\WINDOWS\system32\drivers\hwpolicy.sys
16:06:53.0763 0x1200  hwpolicy - ok
16:06:53.0775 0x1200  [ D668FAB4B0397B426EE3D41683B9A1C0, 66F3E3B2ABC3C9B25A0DADBF09818547ED301230374AC5302B4794629A95DDF8 ] hyperkbd        C:\WINDOWS\System32\drivers\hyperkbd.sys
16:06:53.0775 0x1200  hyperkbd - ok
16:06:53.0790 0x1200  [ 40115A0F8E7FF9E786EBBD1D33D39AD7, 5190D3970950251CD0946521C428BF26BF7D68C2984B990B8EFDD406EC9CDFE1 ] HyperVideo      C:\WINDOWS\system32\DRIVERS\HyperVideo.sys
16:06:53.0791 0x1200  HyperVideo - ok
16:06:53.0802 0x1200  [ 53FDD9E69189E546DE4740F8C4D8AB2F, 45ED5B229ED5FD0CEE8BF52EFF88FD8B1889BF348ED7187926F290B3AD48A76D ] i8042prt        C:\WINDOWS\System32\drivers\i8042prt.sys
16:06:53.0804 0x1200  i8042prt - ok
16:06:53.0819 0x1200  [ 9A2A2F3C69B9A30B6E78536F6D258BAD, 5E28E132A7300E6F5E0C6439D6BA00F1AEF66D729FF671FDA91274A25A921463 ] iai2c           C:\WINDOWS\System32\drivers\iai2c.sys
16:06:53.0821 0x1200  iai2c - ok
16:06:53.0835 0x1200  [ 59A20F5AD9F4AE54098154359519408E, E27B7389C9D123CDDA4EC9CBDB06C4AA5000012391F940EE1492419B593608FE ] iaLPSS2i_I2C    C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys
16:06:53.0838 0x1200  iaLPSS2i_I2C - ok
16:06:53.0845 0x1200  [ 16A10CCEDCF5AC4CAAE43DC9FC40392F, F77696AE55B992154A3B35F7660BD73E0AB35A6ECEEC1931C0D35748CFA605C0 ] iaLPSSi_GPIO    C:\WINDOWS\System32\drivers\iaLPSSi_GPIO.sys
16:06:53.0847 0x1200  iaLPSSi_GPIO - ok
16:06:53.0861 0x1200  [ EB82A11613326691508D9ED9A4FE29E7, 8445E41BAB21964C7F014742795E462BDDC6C37A261990B3D6BF4E637A719547 ] iaLPSSi_I2C     C:\WINDOWS\System32\drivers\iaLPSSi_I2C.sys
16:06:53.0863 0x1200  iaLPSSi_I2C - ok
16:06:53.0887 0x1200  [ 6B0029A0253098CCE28EACCFDB9E7208, E33AD69644E1683A971DA1169B704FBCFD9F715E9550816058E420BB5DE4D946 ] iaStorAV        C:\WINDOWS\system32\drivers\iaStorAV.sys
16:06:53.0896 0x1200  iaStorAV - ok
16:06:53.0911 0x1200  [ 9652E1E35A92D8C75710C17A63B15796, 72F8C4A49B874226DEE9B7C9704F0E0A98DAA2DF4EAE2F2258E8324ACBD242E4 ] iaStorV         C:\WINDOWS\system32\drivers\iaStorV.sys
16:06:53.0917 0x1200  iaStorV - ok
16:06:53.0941 0x1200  [ FFADF691F7BF727AF5C863454A372723, FCF5A5595E8C9C937BE9F1C3AB5D9BD0EFE82DE1298D12085E0CCD84A186D2F2 ] ibbus           C:\WINDOWS\System32\drivers\ibbus.sys
16:06:53.0948 0x1200  ibbus - ok
16:06:53.0975 0x1200  [ 57C88C15CEC97318F580D7F4327AAA46, FD3AD83576804DA819F48E3E198FE470420E730F6118AD0E719A91E67C80D3FE ] icssvc          C:\WINDOWS\System32\tetheringservice.dll
16:06:53.0979 0x1200  icssvc - ok
16:06:53.0983 0x1200  IEEtwCollectorService - ok
16:06:54.0031 0x1200  [ 95A03F67830FDCB950E70261128D540D, D052CB703500E2871CF51E015E444F2A99FA9A7579AC422104F0E411F6107BD0 ] IKEEXT          C:\WINDOWS\System32\ikeext.dll
16:06:54.0050 0x1200  IKEEXT - ok
16:06:54.0077 0x1200  [ ECDB27420D3A98424666904525A8562A, BDA98C3C95F2AD79945EF8213D5C65064052C09C82DD36F0D6724E1D21DCC30A ] intelide        C:\WINDOWS\system32\drivers\intelide.sys
16:06:54.0078 0x1200  intelide - ok
16:06:54.0102 0x1200  [ 8FF1978643EFD219C5BA49690191D701, 6FD78A8490107C80090D7125644B8C910855374BE1373D1D6B199307C79680BA ] intelpep        C:\WINDOWS\system32\drivers\intelpep.sys
16:06:54.0103 0x1200  intelpep - ok
16:06:54.0122 0x1200  [ B61B60F36E1C8022FA8166ABF0F66B07, 23161F1DA51D44D936329E62DF4C2DAEE3DDD4B3D62CC501A888C0E149788968 ] intelppm        C:\WINDOWS\System32\drivers\intelppm.sys
16:06:54.0125 0x1200  intelppm - ok
16:06:54.0132 0x1200  [ CA0D42029AFFC4514D295E1EF823D02D, F2A05CB2B2E8C843FD02DC37E86F23CF928A4B2F9044424A60DE4E82B87DF5C3 ] IoQos           C:\WINDOWS\system32\drivers\ioqos.sys
16:06:54.0133 0x1200  IoQos - ok
16:06:54.0146 0x1200  [ 6E3F9D95235DFC9417384080A216F310, 6F13D72661038A91CFABB360621F4B169D78955C3EAD64956A7C825ABAEC5121 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:06:54.0147 0x1200  IpFilterDriver - ok
16:06:54.0176 0x1200  [ 5AAB28A6AC2AAC9F66D4EAB6695D0474, BDAB1D04989788EA945C7FE0DE962F0FEC672D9703C271F8469822A91D7462B9 ] iphlpsvc        C:\WINDOWS\System32\iphlpsvc.dll
16:06:54.0190 0x1200  iphlpsvc - ok
16:06:54.0206 0x1200  [ 4F527ECB5EAB47D8EAF34A469666C469, 8FFBEEF42515B6A7758BE579ED69E3911856CBF7710D9785011332C5E3DFE495 ] IPMIDRV         C:\WINDOWS\System32\drivers\IPMIDrv.sys
16:06:54.0208 0x1200  IPMIDRV - ok
16:06:54.0219 0x1200  [ 9E5E8F2A1996F23B7E9687846AA81B01, 29E59384A4F92B3B4F2974942C91A12380113C13D3800900B5F44E2355D05455 ] IPNAT           C:\WINDOWS\system32\drivers\ipnat.sys
16:06:54.0222 0x1200  IPNAT - ok
16:06:54.0269 0x1200  [ 2BFF13AC46A5850161317D0F924B5B42, B8A09F66435EC6582F8772515988503CC13DC200A370EBB8C3FE661F2EA688DA ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:06:54.0277 0x1200  iPod Service - ok
16:06:54.0287 0x1200  [ C317EB660138BC9CBFE37CCDE56351AE, F3AF6C573419D7F65C96A4841D4F056CA281CD5AFACDC7A5F586A390DC6E615B ] IRENUM          C:\WINDOWS\system32\drivers\irenum.sys
16:06:54.0288 0x1200  IRENUM - ok
16:06:54.0304 0x1200  [ 531994A6D9399D9B74BE12B5BB58A81E, 6D5CF540C777F4828E1D4C5FE58EE41E6C2F5F399C554DC85F19D1E52229B094 ] isapnp          C:\WINDOWS\system32\drivers\isapnp.sys
16:06:54.0305 0x1200  isapnp - ok
16:06:54.0322 0x1200  [ 68D5354A4A9692EEC24664C60F47D4A2, 92124E98B6E286B6127DC6D0BFACC9C6D293D58EAE2B47B45532714CE6A6D0CD ] iScsiPrt        C:\WINDOWS\System32\drivers\msiscsi.sys
16:06:54.0326 0x1200  iScsiPrt - ok
16:06:54.0349 0x1200  [ 8438B8A45E16258064C19FBEC4EE069F, 9128F825403B26A39BC769A53555DF1FD2B82882AF1384135D0329FCF2BBAC6D ] k57nd60a        C:\WINDOWS\System32\drivers\k57nd60a.sys
16:06:54.0355 0x1200  k57nd60a - ok
16:06:54.0362 0x1200  [ 701D7DB13B0815E7076EF4CB4CE981F8, 02585661656C0069AC318B82DE83DAC660451A0B970FDBCA0F7A8B4CBF7D93A9 ] kbdclass        C:\WINDOWS\System32\drivers\kbdclass.sys
16:06:54.0363 0x1200  kbdclass - ok
16:06:54.0373 0x1200  [ 884EBBDDBF5968003B40185BD96FF0E6, E3934D0FF0BEDDF5526AF529F7D15BA8BE479383894975B1AF1A1818C394A6E3 ] kbdhid          C:\WINDOWS\System32\drivers\kbdhid.sys
16:06:54.0375 0x1200  kbdhid - ok
16:06:54.0382 0x1200  [ 6B3A0C7902811E6372643447E41F7048, 30667B56A306CFD5D15BC46F8E7D9E167612E71B6C8F554406E706A6330F5B94 ] kdnic           C:\WINDOWS\System32\drivers\kdnic.sys
16:06:54.0383 0x1200  kdnic - ok
16:06:54.0390 0x1200  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] KeyIso          C:\WINDOWS\system32\lsass.exe
16:06:54.0392 0x1200  KeyIso - ok
16:06:54.0400 0x1200  [ 982C795DE20CED7AEDD2E7899B5D9BC1, 9F4E7536DB253CD83AA2AB89E9F3311714CD70F13AFD16F9B4D4CD86A70FC164 ] KSecDD          C:\WINDOWS\system32\Drivers\ksecdd.sys
16:06:54.0402 0x1200  KSecDD - ok
16:06:54.0429 0x1200  [ 425CFD45BDF5B9F8B790BEB20E0A8721, 0AB57F9C450A53308B41C8C884E92AACF643A74056F14E3D6C49BE2C61614879 ] KSecPkg         C:\WINDOWS\system32\Drivers\ksecpkg.sys
16:06:54.0431 0x1200  KSecPkg - ok
16:06:54.0434 0x1200  [ E9BB0023D730701BB5D9839B44F5E6B5, 19D4BAC09424D331922472CFD2D0E32BEFA9188A6AF194C8D1F93FD77CE36691 ] ksthunk         C:\WINDOWS\system32\drivers\ksthunk.sys
16:06:54.0435 0x1200  ksthunk - ok
16:06:54.0466 0x1200  [ 71DE1AD9B23661EEC4F2A6EAA5A7D33D, 3219AEF3D6AE5933AE669FD2ED9ED95A8780612E39F31DB3DB9ED6B6244C5F7B ] KtmRm           C:\WINDOWS\system32\msdtckrm.dll
16:06:54.0472 0x1200  KtmRm - ok
16:06:54.0508 0x1200  [ 8BBB2B4429AF340481520C20C17FC5B6, 9E32815349195FC4B1BE213600FD407F2EAEEC8368289EB3E6B769125A739C08 ] LanmanServer    C:\WINDOWS\system32\srvsvc.dll
16:06:54.0520 0x1200  LanmanServer - ok
16:06:54.0538 0x1200  [ 1F5D48B1DA1B812BD2411CA44D75DD32, D1BDB8142CB13E8C6DD6F42E07C9D19BBBF6410D5122A04C01B34B95B442DD95 ] LanmanWorkstation C:\WINDOWS\System32\wkssvc.dll
16:06:54.0545 0x1200  LanmanWorkstation - ok
16:06:54.0578 0x1200  [ 02C54C5C7EBE371EC0C59795ED22213F, 712AFE0EDF40436124F3FD55ED9B5A3A33A8761A58F4D482BB65229741B1C270 ] lfsvc           C:\WINDOWS\System32\lfsvc.dll
16:06:54.0580 0x1200  lfsvc - ok
16:06:54.0593 0x1200  [ 01BF128CC327A2E53898F732AF52B3DB, D62ACDA69D9942F9CEF400874DBB6EAF9811D9657CBFEF89174F88D76BB8D8EA ] LicenseManager  C:\WINDOWS\system32\LicenseManagerSvc.dll
16:06:54.0595 0x1200  LicenseManager - ok
16:06:54.0611 0x1200  [ EC34EED89C34B27C292166B725AC7A7B, 58F1BA0CB7743314AC012A82F8CE4072CBDD05D9570C52BC18DC551882F5B1BA ] lltdio          C:\WINDOWS\system32\drivers\lltdio.sys
16:06:54.0613 0x1200  lltdio - ok
16:06:54.0633 0x1200  [ 2C23283A0815B048C06D8C0ED76AAD95, 4335546939C1A98CFE9A4403CC82D79CC713439E4DFD1F4760FDD867305151E0 ] lltdsvc         C:\WINDOWS\System32\lltdsvc.dll
16:06:54.0639 0x1200  lltdsvc - ok
16:06:54.0661 0x1200  [ CB6365E995F4DB856866500EDD8F61C1, 717ED387F245CAC68217B0F393D7B8AB3805721AB2C4D2D43430FE6E740F0856 ] lmhosts         C:\WINDOWS\System32\lmhsvc.dll
16:06:54.0663 0x1200  lmhosts - ok
16:06:54.0712 0x1200  [ 926EBA26A8B49D1597751CED06B50862, 886FC610E379BD77146ADDC376D77437D88B593C7F1C3FEE2B93D934A67310F8 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
16:06:54.0722 0x1200  LMS - ok
16:06:54.0756 0x1200  [ 961F28D879D345BFA50AF51285C90F2E, F9931A436651F695B746BC0C07E833D9C9F64126746DF976E691E6CAE26DAC9B ] LSI_SAS         C:\WINDOWS\system32\drivers\lsi_sas.sys
16:06:54.0759 0x1200  LSI_SAS - ok
16:06:54.0777 0x1200  [ 6BFB8D1B3407518BE06B6F81F92FA0F5, DE0818DCC0D8D1D30A29AB167C65461A78100ABE2368637CEB9D0ED2B4E88D8E ] LSI_SAS2i       C:\WINDOWS\system32\drivers\lsi_sas2i.sys
16:06:54.0780 0x1200  LSI_SAS2i - ok
16:06:54.0796 0x1200  [ BE0E47988D78F731DEC2C0CB03E765CB, CA0015E87A3962611DBF714253FA618A6568346BAE640884432C1D44DE4C8684 ] LSI_SAS3i       C:\WINDOWS\system32\drivers\lsi_sas3i.sys
16:06:54.0798 0x1200  LSI_SAS3i - ok
16:06:54.0809 0x1200  [ F99BF02BE9219986817BF094981EEB18, 4303C772366065885C5D937B2E9AC0BF80C84BFB2737716055AD57BF6AADD673 ] LSI_SSS         C:\WINDOWS\system32\drivers\lsi_sss.sys
16:06:54.0811 0x1200  LSI_SSS - ok
16:06:54.0838 0x1200  [ FFAA37FBBDD161E8C200C83B40F7872E, 0637B3119FC220CB8E23EE6694A9F1F25CF8D61008B14F6E30FDC17DCF9E077E ] LSM             C:\WINDOWS\System32\lsm.dll
16:06:54.0852 0x1200  LSM - ok
16:06:54.0895 0x1200  [ 2FCF837196082864F66CFD9CAB256275, 8BE01C3BCBC1E6E5D1FD7F49E936482E61ACB805F397AB81B8D39C2F0F1083BD ] luafv           C:\WINDOWS\system32\drivers\luafv.sys
16:06:54.0897 0x1200  luafv - ok
16:06:54.0921 0x1200  [ FA2CDF42B3E9F53B12E506BA48BE16AA, 2E3757F21C0F6B5EBBC2F86415C1E858673B94DC4830C675567F3DCC2CD35BE5 ] MapsBroker      C:\WINDOWS\System32\moshost.dll
16:06:54.0925 0x1200  MapsBroker - ok
16:06:54.0940 0x1200  [ 2ED29B635F35E31A1C0D3DDB7DD2AD03, F70CC20B98C2DBCD13B0D509D92B3BC3828D1B88F3ACD60C860E163064844181 ] megasas         C:\WINDOWS\system32\drivers\megasas.sys
16:06:54.0943 0x1200  megasas - ok
16:06:54.0973 0x1200  [ 22E3CB85870879CBAE13C5095A8B12E3, 5FA5A8EFBA117089CFDBE09743A16BC3A7CC2042C96ABA1F57901747493106BF ] megasr          C:\WINDOWS\system32\drivers\megasr.sys
16:06:54.0983 0x1200  megasr - ok
16:06:55.0002 0x1200  [ 1C6E73FC46B509EFF9D0086AA37132DF, B4FB5512D75112C553FC22593F6123A7C9B9B7825D40148F604CCEFEB149FD97 ] MEIx64          C:\WINDOWS\system32\DRIVERS\HECIx64.sys
16:06:55.0004 0x1200  MEIx64 - ok
16:06:55.0031 0x1200  [ F2C23E25636BCA3543E6AD7858E861B7, 0CAB0A037471B4858CE9477E49BF50A5E3E6685E05F8A4BD2D9238551D5073A6 ] MessagingService C:\WINDOWS\System32\MessagingService.dll
16:06:55.0033 0x1200  MessagingService - ok
16:06:55.0095 0x1200  [ D41920FBFFF2BBCBBC69A5B383AD022E, E66218A8303422EA10C19BA12343740B9A1A70B11B39E185E805B4F74CD2B75E ] mlx4_bus        C:\WINDOWS\System32\drivers\mlx4_bus.sys
16:06:55.0107 0x1200  mlx4_bus - ok
16:06:55.0118 0x1200  [ 64BD0C87064EA20C2D3DC4199F9C239C, ED69706277A58ED2C5F2B1B4E9A4A9C7C20173D46EB57FB31D8B63340BA23193 ] MMCSS           C:\WINDOWS\system32\drivers\mmcss.sys
16:06:55.0120 0x1200  MMCSS - ok
16:06:55.0131 0x1200  [ 8D4B46FA84A3A3702EDADD37FAC6EDBA, E3B9E12BD324FE637C365FDC5E490C41889047004D4FC8F7D78339484F2F717B ] Modem           C:\WINDOWS\system32\drivers\modem.sys
16:06:55.0132 0x1200  Modem - ok
16:06:55.0147 0x1200  [ 78FEC1BDB168370F131BFBFEA0A04E9D, E07B1BC429C2CFBD6162F89A6502C67A4BAD904ADC05D3505D87A0B2BCE1061B ] monitor         C:\WINDOWS\System32\drivers\monitor.sys
16:06:55.0148 0x1200  monitor - ok
16:06:55.0156 0x1200  [ D1CC0833CFBC4222A95CAA5D0C8C78FF, 54F04374C6D3EFF5C1B794C069870458F10757E5773AEE911957089EAF51EC8D ] mouclass        C:\WINDOWS\System32\drivers\mouclass.sys
16:06:55.0157 0x1200  mouclass - ok
16:06:55.0169 0x1200  [ C2E05EC6B80BCF5AE362DA873E1BCE64, 4ABE5CA2005A54E92259EDB52205A5C59BDB83026FC0CD7CBB1E3A003C2B535B ] mouhid          C:\WINDOWS\System32\drivers\mouhid.sys
16:06:55.0170 0x1200  mouhid - ok
16:06:55.0185 0x1200  [ D5B7668A8F6C67C51FA5C6C513396D6C, 35985AD89344A8464BD78B8DA6A772E4E60A2EB93072AC23673A86EFD0B2270A ] mountmgr        C:\WINDOWS\system32\drivers\mountmgr.sys
16:06:55.0190 0x1200  mountmgr - ok
16:06:55.0202 0x1200  [ 5FBCB85D127BE21E3A9DAF11A13C00EA, D00AB99CC813E26B0BD2D39161D4138AB89A06B3E3A28712F2D5BCA60905BEC4 ] mpsdrv          C:\WINDOWS\system32\drivers\mpsdrv.sys
16:06:55.0205 0x1200  mpsdrv - ok
16:06:55.0259 0x1200  [ 0B28F2ACE5103586D322AD98FAA01309, CE3053DEB6E452C6DCDFD371CF113EB0D740DED6C1C537CB749D1BE5E97FAB09 ] MpsSvc          C:\WINDOWS\system32\mpssvc.dll
16:06:55.0275 0x1200  MpsSvc - ok
16:06:55.0315 0x1200  [ 2B9A1FF2450BAF7A795941BE471F16EF, DD213BACDAE4E3C4F89BFE54BCE77B2F66D12AA85949147AE8A31049876CAA3E ] MQAC            C:\WINDOWS\system32\drivers\mqac.sys
16:06:55.0318 0x1200  MQAC - ok
16:06:55.0330 0x1200  [ BF6CA7EA5ECD6CF72D3D76652A9B8280, 8EC031D0D8E75CB583B129CBA518701097697498621307108388FA05FBF604BB ] MRxDAV          C:\WINDOWS\system32\drivers\mrxdav.sys
16:06:55.0333 0x1200  MRxDAV - ok
16:06:55.0365 0x1200  [ 0B3B0C1D86050355676640488FA897D3, DBED9D6F7AAFB11F4C00C1F69DB7A887A3058E5FA66615A1640242439822B60C ] mrxsmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:06:55.0378 0x1200  mrxsmb - ok
16:06:55.0415 0x1200  [ 1A490555FD330CA2764D89191177C867, 1004AE2F80BEA9A6DBA3E6B5D2DDFA44FBA253F7137D60B000B094699DE1CB12 ] mrxsmb10        C:\WINDOWS\system32\DRIVERS\mrxsmb10.sys
16:06:55.0420 0x1200  mrxsmb10 - ok
16:06:55.0437 0x1200  [ 0F47A6C09F0A7FB5513D322A2B9BE4EC, 00A17CB55D232E11F3D24D0B43FE4FA9E55F7EF5E5607B26ED84C13108AAC4FA ] mrxsmb20        C:\WINDOWS\system32\DRIVERS\mrxsmb20.sys
16:06:55.0441 0x1200  mrxsmb20 - ok
16:06:55.0452 0x1200  [ A4411C522D41707D5BCA817A5BB9E30B, EF7505BE475ECAB2B5E66A7419EDAF42A7E7A65BAD3BBE346A8CEE5DD69782CC ] MsBridge        C:\WINDOWS\system32\drivers\bridge.sys
16:06:55.0455 0x1200  MsBridge - ok
16:06:55.0490 0x1200  [ 807A6636828E5F43C10A01474B8907EE, F275645F4F0D0A796C33C03EA7FA563A0B890AB3A93E5F99C5EA166F91D249B1 ] MSDTC           C:\WINDOWS\System32\msdtc.exe
16:06:55.0495 0x1200  MSDTC - ok
16:06:55.0510 0x1200  [ D123343DDB02E372B02BF2C4293F835F, 8E02D9F7E5DA717B64538444B3FE1C55AA4B0F26F51DA20947E971D27EA09D12 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
16:06:55.0511 0x1200  Msfs - ok
16:06:55.0525 0x1200  [ B3358F380BA3F29F56BE0F7734C24D5F, 229D9E72C429AC51BF6E7C8306218620CB1AA50FE39BA6C11ED0F643E7AF90E5 ] msgpiowin32     C:\WINDOWS\System32\drivers\msgpiowin32.sys
16:06:55.0527 0x1200  msgpiowin32 - ok
16:06:55.0534 0x1200  [ B2044D5D125F249680508EC0B2AAEFAC, 9631FF42DA5A7CEE1F2607AA8972EF0A67616F0EEEBC95F97B1C8F5A577ED5C4 ] mshidkmdf       C:\WINDOWS\System32\drivers\mshidkmdf.sys
16:06:55.0534 0x1200  mshidkmdf - ok
16:06:55.0549 0x1200  [ 36ABE7FC80BED4FE44754AE5CFB51432, FB89DF3A50C52B69D4E831A370157D1901810093A0D7D7120A120FC5C6E14BF5 ] mshidumdf       C:\WINDOWS\System32\drivers\mshidumdf.sys
16:06:55.0550 0x1200  mshidumdf - ok
16:06:55.0559 0x1200  [ 59307FEAFC9E72EEEC56B7FD7D294F4C, 56576635870FC68980977FFA0E7F8E8D69A7981DECF5B52D0B2A82E3BA6685EA ] msisadrv        C:\WINDOWS\system32\drivers\msisadrv.sys
16:06:55.0560 0x1200  msisadrv - ok
16:06:55.0596 0x1200  [ 236A38F5CB0A23BF0ACCD70ED0BD7F70, 8106B528458E6C8E4437D9064D58F10FF195E67CD308AEBBD5F860AD2D59DCC4 ] MSiSCSI         C:\WINDOWS\system32\iscsiexe.dll
16:06:55.0599 0x1200  MSiSCSI - ok
16:06:55.0602 0x1200  msiserver - ok
16:06:55.0612 0x1200  [ E9457EDFEBC774199F907395C6D09CA2, C3655CE83F4AD1258382722E9A99C33FDD3AA40B62CFEB8DFDD141E254E6DCE2 ] MSKSSRV         C:\WINDOWS\system32\DRIVERS\MSKSSRV.sys
16:06:55.0613 0x1200  MSKSSRV - ok
16:06:55.0628 0x1200  [ C85D79735641D27C5821C35ECDDC2334, C1BAFD98122B04665870171C143EC119181351D10777A83680A63BF305703FF3 ] MsLldp          C:\WINDOWS\system32\drivers\mslldp.sys
16:06:55.0630 0x1200  MsLldp - ok
16:06:55.0656 0x1200  [ 30130E99810283026C5FA2F57A4BB488, 3CF97CC2F63A7CDEA19C8B2DD73EED161309A7C334FF80567C18423F2DA34249 ] MSMQ            C:\WINDOWS\system32\mqsvc.exe
16:06:55.0658 0x1200  MSMQ - ok
16:06:55.0669 0x1200  [ EF75184B64356850D0F04D049C253526, 325476F53372BD70201347F044C8EFEC0DB939E1926454B6DCC0CF7864969650 ] MSPCLOCK        C:\WINDOWS\system32\DRIVERS\MSPCLOCK.sys
16:06:55.0669 0x1200  MSPCLOCK - ok
16:06:55.0681 0x1200  [ 543933D166C618E7588EA77707EC1683, 84A65D277E28FDD7CE2345188891093AC88B577E4C528AD39AB629E341199688 ] MSPQM           C:\WINDOWS\system32\DRIVERS\MSPQM.sys
16:06:55.0681 0x1200  MSPQM - ok
16:06:55.0713 0x1200  [ 182711E9DDF70121A20EBB61B2DFB9E8, 70606503F6280EA3175B9AEC8370A8F461575755DA86EF6E9C9D04EAD61481FA ] MsRPC           C:\WINDOWS\system32\drivers\MsRPC.sys
16:06:55.0718 0x1200  MsRPC - ok
16:06:55.0742 0x1200  [ E887FFDD6734C496407E9219225CB6FF, 0EC9A79224BCE5D0A782E62CC38E3494E8FB65DFC07C66D25C5A1A351121C27D ] mssmbios        C:\WINDOWS\System32\drivers\mssmbios.sys
16:06:55.0743 0x1200  mssmbios - ok
16:06:55.0758 0x1200  [ 83A2AB75951000D681FABDB80C07AEFC, 3B2F582F097E3F934C4587B27CB05525350F36924B74CA6BCD364878FA8EC273 ] MSTEE           C:\WINDOWS\system32\DRIVERS\MSTEE.sys
16:06:55.0758 0x1200  MSTEE - ok
16:06:55.0767 0x1200  [ 4FA0483896FC16583851EFB733FCB083, BB59243ABE32FBE92EC1B04D24239BE2DF7C2354A407C2EFF97623F07DCBDA35 ] MTConfig        C:\WINDOWS\System32\drivers\MTConfig.sys
16:06:55.0767 0x1200  MTConfig - ok
16:06:55.0780 0x1200  [ 60F88248608315E13391C2F1C3B4473F, 99E8B74118A01FC281A1C6B323EFD1A8EA1997B81A013442205066F55327D555 ] Mup             C:\WINDOWS\system32\Drivers\mup.sys
16:06:55.0783 0x1200  Mup - ok
16:06:55.0792 0x1200  [ 218705233D02776AE4D19CC37D985C1B, 3D92925867B6B8FFAF78E4080139DCB3D45E1E6E1D0AFB6A4FE248B002BD8471 ] mvumis          C:\WINDOWS\system32\drivers\mvumis.sys
16:06:55.0794 0x1200  mvumis - ok
16:06:55.0833 0x1200  [ AA4CD20708B7E0412A5316D7E2875103, 4E60A0865B7656735F3AB34AF5FE48304138F47DE961D4D16661617D711DEBC0 ] NativeWifiP     C:\WINDOWS\system32\DRIVERS\nwifi.sys
16:06:55.0841 0x1200  NativeWifiP - ok
16:06:55.0863 0x1200  [ A340A4B27CC7DEDDF953B7E2C9699747, 4C5AB23BD0C69B17E9BD29CAFEDC100A6EFC78BAB645B007FCAE4318C459D345 ] NcaSvc          C:\WINDOWS\System32\ncasvc.dll
16:06:55.0867 0x1200  NcaSvc - ok
16:06:55.0885 0x1200  [ 24146738C422814EEB2A98FF1FC5C6E1, 3C70C6768681CE63DED339822EFB36194037B987D92456B9E955061A3A3C63BC ] NcbService      C:\WINDOWS\System32\ncbservice.dll
16:06:55.0892 0x1200  NcbService - ok
16:06:55.0899 0x1200  [ 476466DC3AB2327E2DBFAEC11798E2EE, 9ACD74720664CF3F239601DF0BE80AC443AF0FBF666CBB8509169364FB22B95D ] NcdAutoSetup    C:\WINDOWS\System32\NcdAutoSetup.dll
16:06:55.0902 0x1200  NcdAutoSetup - ok
16:06:55.0917 0x1200  [ B57CE307DA101C739885B7CC0678077F, F7F45DB6D306060F0FE0E59F39C3B95F6A9B6173930F22C5C41B2003895D6642 ] ndfltr          C:\WINDOWS\System32\drivers\ndfltr.sys
16:06:55.0918 0x1200  ndfltr - ok
16:06:55.0966 0x1200  [ E582DA849A58524E645545FB68B6625D, B74E2CF078F6C575EFC4A2E4293D03FE6BA933307D656E0E57FFA17EF324948D ] NDIS            C:\WINDOWS\system32\drivers\ndis.sys
16:06:55.0982 0x1200  NDIS - ok
16:06:56.0015 0x1200  [ 202260E7CDD731A32AF62ABD1ABEE008, 0E019FAE09B2659CC3267756DB962CCD69172BA67E3288B491F7B455287A5392 ] NdisCap         C:\WINDOWS\system32\drivers\ndiscap.sys
16:06:56.0016 0x1200  NdisCap - ok
16:06:56.0026 0x1200  [ A1D473D0CF10561F29B58EA7C5412A92, 3DBFC1D769E03E30C87FF4F30A9B523A69A7E0CD4EB87F8A9ECE190FEB84C569 ] NdisImPlatform  C:\WINDOWS\system32\drivers\NdisImPlatform.sys
16:06:56.0028 0x1200  NdisImPlatform - ok
16:06:56.0037 0x1200  [ 1A0AE283B8DE6BB76412A0F8213D45AC, 91AFFDC7A9277EB59CD54021049BEA715078F90470B8A12F3E9F1386DF068D2D ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:06:56.0037 0x1200  NdisTapi - ok
16:06:56.0052 0x1200  [ A74EE2D2C0BFF5EC3A6185791868C4CA, A346320DEBEAE890575B4C6594FB3A3A9890A0E86881ADD8376E442282C88D38 ] Ndisuio         C:\WINDOWS\system32\drivers\ndisuio.sys
16:06:56.0054 0x1200  Ndisuio - ok
16:06:56.0070 0x1200  [ 32A9BD1342640D48AD85C8B3E812B984, B702B05A0180472139B35B105DD3B6B6F75AEDC9DD1EE342FB576259076455AE ] NdisVirtualBus  C:\WINDOWS\System32\drivers\NdisVirtualBus.sys
16:06:56.0071 0x1200  NdisVirtualBus - ok
16:06:56.0084 0x1200  [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] NdisWan         C:\WINDOWS\System32\drivers\ndiswan.sys
16:06:56.0087 0x1200  NdisWan - ok
16:06:56.0094 0x1200  [ 6A6A8CF5EE61801375A38EBB871D4057, AE8EFF18D82BBE83101B380189A6889822891A993EB865E2E81C1D2F60B77C4C ] ndiswanlegacy   C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:06:56.0096 0x1200  ndiswanlegacy - ok
16:06:56.0107 0x1200  [ 50AEF8EF0064A91ABB08D858D039C9DE, 16F1CBE1EC3778D157CC054261068C8D7F8A72D85853CB70178F8DF81D238C8F ] ndproxy         C:\WINDOWS\system32\DRIVERS\NDProxy.sys
16:06:56.0109 0x1200  ndproxy - ok
16:06:56.0138 0x1200  [ 883A36E2FF7FA3E1281CB575579FE3AF, F1BE02B13C090E2E36BD211055FC980E79BD14F72042773A3619A5143AAEE485 ] Ndu             C:\WINDOWS\system32\drivers\Ndu.sys
16:06:56.0142 0x1200  Ndu - ok
16:06:56.0166 0x1200  [ 026618ECF6C4BEBDCB7885D42EC0DBE4, 8E7E13361DCF8748FA3AD518B3DE0A3DCE932316EE32E5529E75785BC5395AD1 ] NetBIOS         C:\WINDOWS\system32\drivers\netbios.sys
16:06:56.0169 0x1200  NetBIOS - ok
16:06:56.0199 0x1200  [ C03E926B0E7D66D68994067231DC3246, 1895BE28921431AA78BEF9AFE01411FE8CDA570867E527E4D925E6FAA35D8BC0 ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
16:06:56.0209 0x1200  NetBT - ok
16:06:56.0224 0x1200  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] Netlogon        C:\WINDOWS\system32\lsass.exe
16:06:56.0229 0x1200  Netlogon - ok
16:06:56.0260 0x1200  [ 7FD4C3D32DAE890608F44074A3437CD8, 5B7D9E9AEE26896B818F3C5DBE4C96A33D43CE2CF7716B95AAB7203611C03BFE ] Netman          C:\WINDOWS\System32\netman.dll
16:06:56.0267 0x1200  Netman - ok
16:06:56.0312 0x1200  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetMsmqActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:06:56.0314 0x1200  NetMsmqActivator - ok
16:06:56.0318 0x1200  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetPipeActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:06:56.0320 0x1200  NetPipeActivator - ok
16:06:56.0366 0x1200  [ A059F75402710535A90A8D043674A514, E98536DF74A2B75FDBA6B866DC1909544292DFE5E14F984941470FBA6E8D810C ] netprofm        C:\WINDOWS\System32\netprofmsvc.dll
16:06:56.0383 0x1200  netprofm - ok
16:06:56.0398 0x1200  [ A3AA03C0C5002F3D89397637B770A1BA, CB40F8FFE2850C11C9EA309BFDBB97C2C978202AF70D052573D8CF18A0677AEB ] NetSetupSvc     C:\WINDOWS\System32\NetSetupSvc.dll
16:06:56.0403 0x1200  NetSetupSvc - ok
16:06:56.0408 0x1200  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpActivator C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:06:56.0410 0x1200  NetTcpActivator - ok
16:06:56.0415 0x1200  [ 9E9BEB22644CE1DA521A1D7821BF891F, 5480D52AE1942205B513F916DBCBF5B5F2FFF92D927F4E598FBA618E75BBC2E9 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:06:56.0417 0x1200  NetTcpPortSharing - ok
16:06:56.0435 0x1200  [ 2BB62723C835F75F0C7C9E6A736881FB, CBA690F5205BE8AE1E8ED8A47BC1594E05391DAC30AAEE0A055366F24602346C ] netvsc          C:\WINDOWS\System32\drivers\netvsc.sys
16:06:56.0437 0x1200  netvsc - ok
16:06:56.0478 0x1200  [ 0FB83658FBB2C5A18AB98C5C94DB9FAF, 2D15A49F47D8185D7914D26916D1237FCBE2F8351A64877CDDDDE26E766C3D2F ] NgcCtnrSvc      C:\WINDOWS\System32\NgcCtnrSvc.dll
16:06:56.0490 0x1200  NgcCtnrSvc - ok
16:06:56.0520 0x1200  [ 7AAA9916AA10F4B0E9743798A5BA6549, 2E38EEF3F487A7DD0B719A048FFA0EB36B2487A1068BB322553E9DD2FCE46711 ] NgcSvc          C:\WINDOWS\system32\ngcsvc.dll
16:06:56.0532 0x1200  NgcSvc - ok
16:06:56.0553 0x1200  [ 1B8F07B59F7DAE02264FB8A16088C467, 1795DA9F72C34A9F47D9AAF5E95D40C3296948EB89D9600679AB4660671A5C65 ] NlaSvc          C:\WINDOWS\System32\nlasvc.dll
16:06:56.0560 0x1200  NlaSvc - ok
16:06:56.0569 0x1200  [ 465DC580170CD844206D7E3EF1DBF2A1, 5A14001029BE154C708CCA34449B280905DB79978FC7F0BE0CF20B20E47752CF ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
16:06:56.0570 0x1200  Npfs - ok
16:06:56.0595 0x1200  [ 29395C214D2CD4C81F73166AB988A797, 3631EB2EA17E455ECD151C0BC9A3DF6EC87C75B15DC9B607CFB68D7C463E04B7 ] npsvctrig       C:\WINDOWS\System32\drivers\npsvctrig.sys
16:06:56.0596 0x1200  npsvctrig - ok
16:06:56.0602 0x1200  [ AF8B7848E102A83AAECCD24B181CEBE5, B2AAE3567EE3A7975CDFCB3FE41D33C74D4486BFF35FF56E0516A01C744BA52B ] nsi             C:\WINDOWS\system32\nsisvc.dll
16:06:56.0604 0x1200  nsi - ok
16:06:56.0612 0x1200  [ 2871225495F832A8C8A7DD1A17EDB3DC, 2F6664C7F5FB2341B2AAF3C5A258FA0D7AEEE447562D7F39FD5A4EE905C18C6D ] nsiproxy        C:\WINDOWS\system32\drivers\nsiproxy.sys
16:06:56.0613 0x1200  nsiproxy - ok
16:06:56.0696 0x1200  [ 19BD8A88AAC580592668B070AC0727D9, 60DB84895C40E6412BEB2D0E4D7F05891446B9DE992D70579CC90BA3FB27FC01 ] NTFS            C:\WINDOWS\system32\drivers\NTFS.sys
16:06:56.0724 0x1200  NTFS - ok
16:06:56.0735 0x1200  [ 6DBD703320484C37CEA9E4E2D266A8CE, 85D6F73C0E3FDE16829C9BC0D13DD89E64183EAE02F84607F6B8440CB7F366E6 ] Null            C:\WINDOWS\system32\drivers\Null.sys
16:06:56.0736 0x1200  Null - ok
16:06:56.0753 0x1200  [ 604D27CC38CC23493F218D0BB834B3FF, EF5E5759CCF16DD97271C82DAF47FB2086EBCA5DE7D05177B70CA1197B95F41E ] nvraid          C:\WINDOWS\system32\drivers\nvraid.sys
16:06:56.0756 0x1200  nvraid - ok
16:06:56.0772 0x1200  [ 8B50D897657AB4A15FD9E251BBF7D107, 36036130DD46D9BF105AC7176E219F3BE7D1168A660A0F8DFF76F61FBFA4B417 ] nvstor          C:\WINDOWS\system32\drivers\nvstor.sys
16:06:56.0775 0x1200  nvstor - ok
16:06:56.0788 0x1200  [ 31F990B2B6B91E9D7A667405CE12FCB1, 907E095D1E83CDAFF34BE789FC41CDD7BB4DEE23261E1D03C1CF0D4D030534AC ] nv_agp          C:\WINDOWS\system32\drivers\nv_agp.sys
16:06:56.0790 0x1200  nv_agp - ok
16:06:56.0820 0x1200  [ 7F3A0D052B8E00E730316210B1DD092F, 14BD026EA759F6C81ED6B4DBB04E0584B7F6456725503FC73CD4347B7743005F ] OneSyncSvc      C:\WINDOWS\System32\APHostService.dll
16:06:56.0826 0x1200  OneSyncSvc - ok
16:06:56.0890 0x1200  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:06:56.0895 0x1200  ose - ok
16:06:57.0062 0x1200  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:06:57.0128 0x1200  osppsvc - ok
16:06:57.0169 0x1200  [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] p2pimsvc        C:\WINDOWS\system32\pnrpsvc.dll
16:06:57.0176 0x1200  p2pimsvc - ok
16:06:57.0209 0x1200  [ 4A5634915AF62C983E08425905D0C04C, 09BC3F7AD9F79C5FF59520933D06FE155AC21CD0ABAFE66B81C9F87D83A2339F ] p2psvc          C:\WINDOWS\system32\p2psvc.dll
16:06:57.0217 0x1200  p2psvc - ok
16:06:57.0241 0x1200  [ 7D0FC96264C0F8F2C1321E33E8EB646C, 82A06437B9B096BCCF5CE31BDF3539696E2E41DFA9870C358566EEE2F7D3B447 ] Parport         C:\WINDOWS\System32\drivers\parport.sys
16:06:57.0243 0x1200  Parport - ok
16:06:57.0274 0x1200  [ D330D74B5F99309B5CCA30AE41C57CDE, AE5186CB4B639A5241BF0D17FE8A73D6DAFA505C31E250EA225CD498C8A4A07E ] partmgr         C:\WINDOWS\system32\drivers\partmgr.sys
16:06:57.0276 0x1200  partmgr - ok
16:06:57.0297 0x1200  [ 0ECA2ADD5FBCE73183A68935C71B40B7, 08CC5F2F10D1DD1A1396CC29196314003491D3AF3DE59CADB281F252577F1860 ] PcaSvc          C:\WINDOWS\System32\pcasvc.dll
16:06:57.0305 0x1200  PcaSvc - ok
16:06:57.0324 0x1200  [ CF78AF126B00C1B0A6FF45BD838E8EFE, AE01B107E1D9072F10F194AEE2AE4F9D75A4EC8FF3A46E45D27E7BF615CE0985 ] pci             C:\WINDOWS\system32\drivers\pci.sys
16:06:57.0328 0x1200  pci - ok
16:06:57.0339 0x1200  [ 2B4D98DF0CA57FB9536DBC80D2449D1F, AB34FA8585A20854369C0FAEB18BF5C7734D7E3C791F644B0576E40D609FCD09 ] pciide          C:\WINDOWS\system32\drivers\pciide.sys
16:06:57.0340 0x1200  pciide - ok
16:06:57.0356 0x1200  [ F4D5793BF2E58AF15C6CF2FEEF9E73EB, 9B5A40AF8838063F8F0A2B1480B39A2711AAE78BD972CDA60CCA0EB2BA211A87 ] pcmcia          C:\WINDOWS\system32\drivers\pcmcia.sys
16:06:57.0358 0x1200  pcmcia - ok
16:06:57.0370 0x1200  [ 22A53744CEEADFFFD33BA010FAD95229, 30B775EC9795105B8BF785BD63115C160955E7EFF74B995D3EC288138D1825A3 ] pcw             C:\WINDOWS\system32\drivers\pcw.sys
16:06:57.0371 0x1200  pcw - ok
16:06:57.0408 0x1200  [ 67B9684B8272D5EBD1CCBB1DBD425EC8, 09BE2A2EB3A71E594D08B8D817820965DEEAD283029EBB0B74CCC658A2706233 ] pdc             C:\WINDOWS\system32\drivers\pdc.sys
16:06:57.0412 0x1200  pdc - ok
16:06:57.0464 0x1200  [ E2F8376F9731D12A009C522036C6073A, 5B8B68D3C013AAA8ED368C97042984C35E8D023542DBA404E7A03E89F2357E66 ] PEAUTH          C:\WINDOWS\system32\drivers\peauth.sys
16:06:57.0478 0x1200  PEAUTH - ok
16:06:57.0498 0x1200  [ 1398A85E59698067CBBE1D66A9C13ADF, E3609F183068BFAED756B2F9237181D60A6F6D78691248B8BF5B0AEB6A367E3D ] percsas2i       C:\WINDOWS\system32\drivers\percsas2i.sys
16:06:57.0500 0x1200  percsas2i - ok
16:06:57.0513 0x1200  [ 35F7C7AD709D909D618D9EDF987FC3ED, EE713E33688E74C5A2546CC58EBD8EA8F8116F25E42DCF8DA21DCBC7C7590E0E ] percsas3i       C:\WINDOWS\system32\drivers\percsas3i.sys
16:06:57.0515 0x1200  percsas3i - ok
16:06:57.0579 0x1200  [ 0DAF7B7D85F7AF38E29161460899C63F, F2609F2BD02C714857F5D5E6EF580643429C54E175AA72D38467F8F3A4E7F59F ] PerfHost        C:\WINDOWS\SysWow64\perfhost.exe
16:06:57.0582 0x1200  PerfHost - ok
16:06:57.0619 0x1200  [ 57606281E23B0F53347527691E947B2B, 7030182E706CEBE6BD52BDC71CA8F2230AD445AE6554188E76F09A5E2612BD2E ] PhoneSvc        C:\WINDOWS\System32\PhoneService.dll
16:06:57.0633 0x1200  PhoneSvc - ok
16:06:57.0652 0x1200  [ 04F7878E7017105AB782353231561749, FB2811D98216720D4FDF0AC0EDF16C6CD33D7224B4CAFA752B4D2A839E6DD88A ] PimIndexMaintenanceSvc C:\WINDOWS\System32\PimIndexMaintenance.dll
16:06:57.0657 0x1200  PimIndexMaintenanceSvc - ok
16:06:57.0712 0x1200  [ A546F72EFFE5CBBC98003A0CA19DA0F8, 89AE396676A37D851F46427E421E8E8ED5B4BADC33023F1E215CC352A4110F44 ] pla             C:\WINDOWS\system32\pla.dll
16:06:57.0734 0x1200  pla - ok
16:06:57.0752 0x1200  [ 15BA68662CED4B0618010A54478E18E5, 1B913BFA7AA11F3A82D80E95FC4857B810D341F9E68545710F90EBE44DAC1DF8 ] PlugPlay        C:\WINDOWS\system32\umpnpmgr.dll
16:06:57.0756 0x1200  PlugPlay - ok
16:06:57.0777 0x1200  [ 6BF7093B27EA90FD9222845D19C1BE5F, CF8A6764BB6B369258F21FD303E4CAE08632195620A0BD66B62F62F5D7B762B8 ] PNRPAutoReg     C:\WINDOWS\system32\pnrpauto.dll
16:06:57.0780 0x1200  PNRPAutoReg - ok
16:06:57.0803 0x1200  [ 334131C162B118EF49930D41B0E17825, 10EF08870B6E118AED2E0E3F45E06BA8A485439823BE98F44E34E7D2B65AA2EF ] PNRPsvc         C:\WINDOWS\system32\pnrpsvc.dll
16:06:57.0809 0x1200  PNRPsvc - ok
16:06:57.0837 0x1200  [ D67052BD0DA9C17BCBBF8AB5B6D354EE, 7FE9B414C74CF69E531B27C506216F7F5CBE00B67E90305A4A4A2ECADAA4F349 ] PolicyAgent     C:\WINDOWS\System32\ipsecsvc.dll
16:06:57.0844 0x1200  PolicyAgent - ok
16:06:57.0857 0x1200  [ AE3B1056FC1795F18D990C4908A6ECBF, 1C41F7714EBF54DF358D9B19D6AFE7281D3EABE20038B568A12031B76E1D50D9 ] Power           C:\WINDOWS\system32\umpo.dll
16:06:57.0861 0x1200  Power - ok
16:06:57.0883 0x1200  [ 5BA6B9AD03B81546BA64E488C4EF9D17, C43442577685FA1A7C32094B2F14FC92BA6B511FD9FDBA6FD82473A1B165FC61 ] PptpMiniport    C:\WINDOWS\System32\drivers\raspptp.sys
16:06:57.0884 0x1200  PptpMiniport - ok
16:06:58.0325 0x1200  [ 15709A9AB1411565754CEE33AAB36387, 77CBC04346F8F247B4614CE65FBD225F0A24827EDD1FDB34900D05673B682D84 ] PrintNotify     C:\WINDOWS\system32\spool\drivers\x64\3\PrintConfig.dll
16:06:58.0370 0x1200  PrintNotify - ok
16:06:58.0402 0x1200  [ 21AECFF3EB5748CBE12538A2500EFDE5, A1679F21363E99E3698B9C6F7E7E3BB2877D47089BC381AF0C51B1DD8B24325B ] Processor       C:\WINDOWS\System32\drivers\processr.sys
16:06:58.0404 0x1200  Processor - ok
16:06:58.0439 0x1200  [ 7E0078F1EFEB6F8F47CF85C1D73C7EBC, 831BC3CE72F29AD259DEE7121D6F785CE0A8462CFB69DD7FB1F3BDAF16CDBF3E ] ProfSvc         C:\WINDOWS\system32\profsvc.dll
16:06:58.0445 0x1200  ProfSvc - ok
16:06:58.0483 0x1200  [ 596FB6C5A72F34B7566930985E543806, 870B43783DB4CF845FA72BC5E40CE76BE6DFC66FE9E9B4B0A52D6B7FE7EA65FC ] Psched          C:\WINDOWS\system32\drivers\pacer.sys
16:06:58.0488 0x1200  Psched - ok
16:06:58.0527 0x1200  [ E84F66BA185934C166F8DF0FA8F88455, 2E0380E98DA29B3F43FB3FE0E1ECA52B3C9AEF54CE982D5514F70FAE81758449 ] QWAVE           C:\WINDOWS\system32\qwave.dll
16:06:58.0539 0x1200  QWAVE - ok
16:06:58.0550 0x1200  [ CFBA9C976CBF6796E5DC39EF59984021, A1C956AD828FC70ED92D702516E0F88A4BDAF8C93C571D7CA20F1695FD8E70C2 ] QWAVEdrv        C:\WINDOWS\system32\drivers\qwavedrv.sys
16:06:58.0551 0x1200  QWAVEdrv - ok
16:06:58.0564 0x1200  [ 7B2AD8C55217B514C14281AB97B4E21D, A1E295897B864B9C0177FF1C502EB060084A1783C0E7E53636291F901C2E2AA8 ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:06:58.0565 0x1200  RasAcd - ok
16:06:58.0590 0x1200  [ E15A9CE1E2E7D1C8DF97A4FC1FFE6289, 44B53418D6BC51ACC567CF6917A0981889B44AE420489C9C03F5A30418B37267 ] RasAgileVpn     C:\WINDOWS\System32\drivers\AgileVpn.sys
16:06:58.0592 0x1200  RasAgileVpn - ok
16:06:58.0619 0x1200  [ D60BA4C76D194472D6602FF3D2D51ADE, 01272663897685C75FFBC3F1C0CFDB8D0E1A58182049E0B607D634536A8F6400 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
16:06:58.0622 0x1200  RasAuto - ok
16:06:58.0651 0x1200  [ E3C82823B22463BC38AA4F8ADA852624, FF601B117F4003E2CC65B6143C2A270331EB257EE82B3BC020247D1AB1CD625F ] Rasl2tp         C:\WINDOWS\System32\drivers\rasl2tp.sys
16:06:58.0653 0x1200  Rasl2tp - ok
16:06:58.0676 0x1200  [ 3655D86C5E2982B131FC0935DE24F98F, 0386B31FECDDED77450609A807097B2307361CB59B236DEC41037BDC95897463 ] RasMan          C:\WINDOWS\System32\rasmans.dll
16:06:58.0687 0x1200  RasMan - ok
16:06:58.0702 0x1200  [ 3369023EB5790A75BA7DABA14B75D922, 36B63D5B74FDC932AAF1A876514024602D2F3EAF2CA33D1247CBA1E52FDB0418 ] RasPppoe        C:\WINDOWS\System32\drivers\raspppoe.sys
16:06:58.0703 0x1200  RasPppoe - ok
16:06:58.0719 0x1200  [ 1E32A8CD65C4AD0A827CFEB13034DA29, 5D9A92E13020D994CCD39F701BACAFE2177A40A9CC89649441B91E3F3DECD911 ] RasSstp         C:\WINDOWS\System32\drivers\rassstp.sys
16:06:58.0720 0x1200  RasSstp - ok
16:06:58.0738 0x1200  [ 2B648363E4C5E34B469C58596F377DD9, 30F82770468BBA562CEA0E9E39B24ACEFBE022343D0180C82E2ACE8957B73E44 ] rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:06:58.0745 0x1200  rdbss - ok
16:06:58.0751 0x1200  [ D0221C13960E274CC539D72D5A842ED0, A5A961506B9D7429D97D0635FD69E74736C0E8405487E1D22BB5CD978A60044C ] rdpbus          C:\WINDOWS\System32\drivers\rdpbus.sys
16:06:58.0752 0x1200  rdpbus - ok
16:06:58.0766 0x1200  [ 1DC2CC74B51E4DC4CD5A20C1021E4010, 46B7D17EE27439F2191504D1C6F6C70B2540BD4F2261DBB1F4BE783BEA99B04C ] RDPDR           C:\WINDOWS\system32\drivers\rdpdr.sys
16:06:58.0769 0x1200  RDPDR - ok
16:06:58.0785 0x1200  [ 177DF954D0DEC0465A380C75F6E7F65F, 6B30C78223029BD5DBA586BF961968F85762209BA55CD031460A215B20F93AB2 ] RdpVideoMiniport C:\WINDOWS\system32\drivers\rdpvideominiport.sys
16:06:58.0787 0x1200  RdpVideoMiniport - ok
16:06:58.0806 0x1200  [ 5D1680871054D2B0B8A971BC8AB3B837, 9CAB0B2E3857829D34A82A78B120D07E292D4D5060168D964295EB23339B7DE7 ] rdyboost        C:\WINDOWS\system32\drivers\rdyboost.sys
16:06:58.0810 0x1200  rdyboost - ok
16:06:58.0849 0x1200  [ 341E6830DA70F65730300DAB4CB0B490, 341EC8DB5E39963EF89E726F08730AFB2356C3BAD71CCE9EECCAB4D9B31C4863 ] ReFSv1          C:\WINDOWS\system32\drivers\ReFSv1.sys
16:06:58.0863 0x1200  ReFSv1 - ok
16:06:58.0891 0x1200  [ 8355BCA85B0928382DFCDD02FCD1681A, F306F038DA09C8D2095C311818E2F991B55BCD96B40B95D2A53A60EA6AC37014 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
16:06:58.0900 0x1200  RemoteAccess - ok
16:06:58.0931 0x1200  [ 2C82F4DCABAB389CEBB1C9E86C715C9C, 70354621D3D467616A419A818C54D2C89EA013C5050BA9944E3A7A4F25CAD6BA ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
16:06:58.0935 0x1200  RemoteRegistry - ok
16:06:58.0975 0x1200  [ DF7A59E70F398EEB9FDCDD310987D8AE, 67817FC336B2046351BDEB84A57252D6708E17656CD84FF5BCA85FCA24F430E0 ] RetailDemo      C:\WINDOWS\system32\RDXService.dll
16:06:58.0991 0x1200  RetailDemo - ok
16:06:59.0017 0x1200  [ 176D8470B15CD9080861594F9A33FA01, CFB66D7FEB9465985C2866D64EA03B7E7BE830DCF6C02B3FE2244D7F7E5343E2 ] RpcEptMapper    C:\WINDOWS\System32\RpcEpMap.dll
16:06:59.0020 0x1200  RpcEptMapper - ok
16:06:59.0040 0x1200  [ 1A563653DAEDFE4CA81936E0D2FD8B56, 308B0DFEBA63333D407093C449A08ABFECE118C9274100809356BDAF7FA32EB6 ] RpcLocator      C:\WINDOWS\system32\locator.exe
16:06:59.0042 0x1200  RpcLocator - ok
16:06:59.0069 0x1200  [ B339861C6A2A86FBCA67C2006B461473, 228ADC8A8603C0A4342C6CBC6F2CC919271D42391365061AF660E0D7151C66A4 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
16:06:59.0083 0x1200  RpcSs - ok
16:06:59.0094 0x1200  [ 0AC5FCDC29ED97ECDEF1276425EE2059, 8A12D1732D4AA18A9ED8416F4D4A49B81CE7C4C86ABCEE8FF28A16EA61993CFE ] rspndr          C:\WINDOWS\system32\drivers\rspndr.sys
16:06:59.0096 0x1200  rspndr - ok
16:06:59.0111 0x1200  [ 044890BB0D6CF1E23C1087234D320509, FA6C79D24BE4ACCFAC617D2850B922BFAA7C2766AE625C725F3ACF43C934EFAF ] s3cap           C:\WINDOWS\System32\drivers\vms3cap.sys
16:06:59.0112 0x1200  s3cap - ok
16:06:59.0123 0x1200  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] SamSs           C:\WINDOWS\system32\lsass.exe
16:06:59.0126 0x1200  SamSs - ok
16:06:59.0155 0x1200  [ 530F797129776AA7E81994783A97E2AD, F131EF036702C6E741E5A6851AE07E81043CE8BAEED0768838C0F31CE14FEC1A ] sbp2port        C:\WINDOWS\system32\drivers\sbp2port.sys
16:06:59.0157 0x1200  sbp2port - ok
16:06:59.0184 0x1200  [ 0C12493B333B96797AFC5F3C7831C051, BEE786D7ED14221B1A9450060597393AC44116D776B913E045B5F6066D720F74 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.dll
16:06:59.0190 0x1200  SCardSvr - ok
16:06:59.0206 0x1200  [ 40110802D217FE1CB581D9A70B1FD16F, CCB920593CCC6663676039F3F731536DFEF535C3F715F6DB6F34D0D733BEF89B ] ScDeviceEnum    C:\WINDOWS\System32\ScDeviceEnum.dll
16:06:59.0210 0x1200  ScDeviceEnum - ok
16:06:59.0227 0x1200  [ 9B6B1D4DB35A3D9BEAF023BC95E1F49D, CA44124CA3E9958FB77A891CD234A993B63E8AC6632AE801CDEC6666267E7C7E ] scfilter        C:\WINDOWS\system32\DRIVERS\scfilter.sys
16:06:59.0228 0x1200  scfilter - ok
16:06:59.0270 0x1200  [ EA195B8BC11C1CDB313CFD456EFFA0E9, EEDF349C59ED0645B04040707906BB4496527243858C2A6BE46BE7029B4A7F37 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
16:06:59.0284 0x1200  Schedule - ok
16:06:59.0322 0x1200  [ 4E9158CECF77A029AB98E8FBB43FCED5, AFF8BDB8F8F8DDF4FC0D65712E031DC360856CD3CE5C8A4C8FF960388F37462F ] SCPolicySvc     C:\WINDOWS\System32\certprop.dll
16:06:59.0325 0x1200  SCPolicySvc - ok
16:06:59.0348 0x1200  [ B24408471C1BCB17FC44F5B47EA8DEA3, 1CFE07C793F2A3D883E9071B8703C01A7619C8C0A02AAEBAA1130F36654AFD4F ] sdbus           C:\WINDOWS\System32\drivers\sdbus.sys
16:06:59.0352 0x1200  sdbus - ok
16:06:59.0369 0x1200  [ 811EC0B1221402FCED0BA37E112BF627, 366EB8AF04C603BED6CF53652CC937099B247D5DD8C58D699D0D8DA22F8FDD51 ] SDRSVC          C:\WINDOWS\System32\SDRSVC.dll
16:06:59.0373 0x1200  SDRSVC - ok
16:06:59.0390 0x1200  [ DE6D7DC78D956928F59F7415A0F41E13, C0F8EEED29BF63A0D8FB5A0286C1C768BFEF598EC52715D910B5BB1A76231805 ] sdstor          C:\WINDOWS\System32\drivers\sdstor.sys
16:06:59.0392 0x1200  sdstor - ok
16:06:59.0414 0x1200  [ EBD07BD20B5E0E92A398566EF8720F79, 8A88C861D4113B9938C32CBD28FD3D7F1C3133E700E23E17F5DFD7B26CCDA04A ] seclogon        C:\WINDOWS\system32\seclogon.dll
16:06:59.0417 0x1200  seclogon - ok
16:06:59.0428 0x1200  [ B7B9EEBCB7466338403A75D15AC120D7, B8F79DA71F8CD0F30983F7D92B625A431C212DD543DE2B3DC03EC5A68C41B00D ] SENS            C:\WINDOWS\System32\sens.dll
16:06:59.0431 0x1200  SENS - ok
16:06:59.0476 0x1200  [ D14DD7D766664F880FECF44CE6017966, ECF966E3ACF4EBD5A3259468A076619A539E35F1B97AB6A98FBD7882F1FBBBAB ] SensorDataService C:\WINDOWS\System32\SensorDataService.exe
16:06:59.0510 0x1200  SensorDataService - ok
16:06:59.0551 0x1200  [ 45D26646E3AD737E5DE3DB91CCCE7DBA, B05AB32700998C8347BC5797B18EB97F303FCB2302BED852348F2703DEDE72F9 ] SensorService   C:\WINDOWS\system32\SensorService.dll
16:06:59.0559 0x1200  SensorService - ok
16:06:59.0573 0x1200  [ 7363A65C738F5A5292D7BDBE55D8C3C2, C53C10A0AE58613DFCC91E62E004D9B188E4793C2A19B4BE871A705EEE77048E ] SensrSvc        C:\WINDOWS\system32\sensrsvc.dll
16:06:59.0577 0x1200  SensrSvc - ok
16:06:59.0589 0x1200  [ 67585C295FF2D221679E376B68893B35, 4B5E9A8DA8C6F7B1F7129F80A0603503D467E5650306FB4C309977D74037E46B ] SerCx           C:\WINDOWS\system32\drivers\SerCx.sys
16:06:59.0591 0x1200  SerCx - ok
16:06:59.0621 0x1200  [ B8C4852CBCAAC1374C08EC7445443824, DDE577A81B3E11B5B56096317BC47AA6E286573042407B96A9D29BE981F3FA4D ] SerCx2          C:\WINDOWS\system32\drivers\SerCx2.sys
16:06:59.0624 0x1200  SerCx2 - ok
16:06:59.0651 0x1200  [ D3A103944A8FCD78FD48B2B19092790C, 252DB8395DA8639E748658D3BE7863C1700E27AA5C41BB700CFCE193FE3F04E9 ] Serenum         C:\WINDOWS\System32\drivers\serenum.sys
16:06:59.0652 0x1200  Serenum - ok
16:06:59.0664 0x1200  [ 249A563C48DFD9E42A37587653E003BB, D022FAE2B7AC9D99B9F230A4DF0B045891588162587E1F468B5E05C8DA98AA9A ] Serial          C:\WINDOWS\System32\drivers\serial.sys
16:06:59.0666 0x1200  Serial - ok
16:06:59.0678 0x1200  [ 0F5B43074AE731D2C6F061241C9D84A6, 05CFEB30A4FC11441552D37687608C8C2FD6DC2F2266AE9D6526753E26283DE6 ] sermouse        C:\WINDOWS\System32\drivers\sermouse.sys
16:06:59.0679 0x1200  sermouse - ok
16:06:59.0699 0x1200  [ CD90E445F6458512A5BA884D561EFCF1, E792FAB8AFF4126C1977024060842D788A06475139782896AFD7B39C85FCDF3F ] SessionEnv      C:\WINDOWS\system32\sessenv.dll
16:06:59.0706 0x1200  SessionEnv - ok
16:06:59.0721 0x1200  [ D9FE59276BD56A9643C32D5FACE2F251, 591862D868A545F468496DE97DEE42C9DB3AFBFC0881CBA79EB6641A254AF033 ] sfloppy         C:\WINDOWS\System32\drivers\sfloppy.sys
16:06:59.0722 0x1200  sfloppy - ok
16:06:59.0766 0x1200  [ F8083C536BEDE61AFB4069D8A8C16DA7, 13AADAD7B5582911B8ABBE0CF7132CC517F7413A361CCF8ED502F803D061FFA3 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
16:06:59.0773 0x1200  SharedAccess - ok
16:06:59.0798 0x1200  [ AE6E4D3172FBF45B944668CB3998B8A8, E7D7F98CB464C236A17069987F7B678D7688D9D577334151EF09DF5C6F22AFFC ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
16:06:59.0809 0x1200  ShellHWDetection - ok
16:06:59.0826 0x1200  [ ABBE803FE0BDAE0E5BE74DDEFBE62F23, 5009F489F7A6D66628C23A0FA3D7632399D0AD72BD11A1B70D7E768ED507377D ] SiSRaid2        C:\WINDOWS\system32\drivers\SiSRaid2.sys
16:06:59.0827 0x1200  SiSRaid2 - ok
16:06:59.0844 0x1200  [ 6043DF55CFE3C7ACF477645FA64DEA98, 0E18EF8EC589841BC319C17FBABA7383FD247C9441ABF64A0D830976F3E611AE ] SiSRaid4        C:\WINDOWS\system32\drivers\sisraid4.sys
16:06:59.0846 0x1200  SiSRaid4 - ok
16:06:59.0869 0x1200  [ B922D32039A3B5991E64429EC4EE52A9, 5EB7EB1F6D2C25F06044D8CA9F3BA0471FB40C8C96432BDC2C80CC36DC49BA0B ] smphost         C:\WINDOWS\System32\smphost.dll
16:06:59.0871 0x1200  smphost - ok
16:06:59.0908 0x1200  [ F07301C282AA222C33F8C28B4F545275, 2938943A3A62B33C8296DF3B57897D32293F5395A5E2A01C76B0160A98C12520 ] SmsRouter       C:\WINDOWS\system32\SmsRouterSvc.dll
16:06:59.0918 0x1200  SmsRouter - ok
16:06:59.0944 0x1200  [ 0B6BECB2651EF947249CDC3715E8B9CC, EB7281AF3529DE16FE8CD0C0C0C8877641865A5864D58628DBAB865B510B0D0B ] SNMPTRAP        C:\WINDOWS\System32\snmptrap.exe
16:06:59.0946 0x1200  SNMPTRAP - ok
16:06:59.0969 0x1200  [ 1A6CB30F0EFC1632E6F1B852CA892583, 0E6BDCEE837AEC3D02C437478143C75550C94A50E36895DDB095F54A2FA18E2A ] spaceport       C:\WINDOWS\system32\drivers\spaceport.sys
16:06:59.0976 0x1200  spaceport - ok
16:06:59.0993 0x1200  [ E1C158F6C00359278727A2CEE5D2ED71, 1591F942C6DD99D3BA7FD4D72D957864117B2263F205468A15F1D1417C6F799D ] SpbCx           C:\WINDOWS\system32\drivers\SpbCx.sys
16:06:59.0994 0x1200  SpbCx - ok
16:07:00.0036 0x1200  [ D1241DFC397FA8CCFB4BB4B63AAD31AC, F8C57C2F7CA8B6D8FEE1505A143A3FECF502C8DCFFC375F9C8848A87D9714C9E ] Spooler         C:\WINDOWS\System32\spoolsv.exe
16:07:00.0056 0x1200  Spooler - ok
16:07:00.0201 0x1200  [ 7C58AFEC26E9F7730A8AA7FD40225937, 546EAD8889F2A1BB6DCCB7781976B975F34DA1C9047F95FEAA52CF38EC60C6DD ] sppsvc          C:\WINDOWS\system32\sppsvc.exe
16:07:00.0290 0x1200  sppsvc - ok
16:07:00.0329 0x1200  [ BE88248427A6AA548A904FD867667F70, 37E7BB76881F4E896311721B1FCB7B1908524591D36F7D63B233CA0115FECC2C ] srv             C:\WINDOWS\system32\DRIVERS\srv.sys
16:07:00.0335 0x1200  srv - ok
16:07:00.0360 0x1200  [ 2568B86F6A50D254324CB89022CA9EFC, 001B7A0061227E8E78A35FDC095C71A6974F18B1289FA392FA0B864A88C20672 ] srv2            C:\WINDOWS\system32\DRIVERS\srv2.sys
16:07:00.0370 0x1200  srv2 - ok
16:07:00.0394 0x1200  [ 6E520D6B16EA8AE23D1F81C1194F00C8, 42CAB0772D351023DBF1DAD4BDB1FC214827CEA660284838B41062B8DF89DF10 ] srvnet          C:\WINDOWS\system32\DRIVERS\srvnet.sys
16:07:00.0397 0x1200  srvnet - ok
16:07:00.0430 0x1200  [ 8C1786C073A496B8C0C8A5450A4FFD5B, 13BF3B42A63CE6C461259D4CE767FB0DE1F10433512A11D2B2C033E36E652542 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
16:07:00.0436 0x1200  SSDPSRV - ok
16:07:00.0469 0x1200  [ 217A982201052EFC8C3C0C88D229791C, 11509E3446ED7B75C9A05CDC4A7AF18926CB463E0D98BAE1CD5DB43E88F94F90 ] SstpSvc         C:\WINDOWS\system32\sstpsvc.dll
16:07:00.0474 0x1200  SstpSvc - ok
16:07:00.0552 0x1200  [ 58863C57E4598C4F9DA967C5C36CFA5D, BB34FBC324E84E05128258CE3755241ECB63F7F2AE7F96716AC373931FAF92A8 ] StateRepository C:\WINDOWS\system32\windows.staterepository.dll
16:07:00.0592 0x1200  StateRepository - ok
16:07:00.0616 0x1200  [ CCDA497C880AD16D87EDFAEFCFB2EDF5, 622599AA35ACFF0375DA252210BE42E7E90F30EDFEFF2F62FDB14AE6E45B5F88 ] stexstor        C:\WINDOWS\system32\drivers\stexstor.sys
16:07:00.0617 0x1200  stexstor - ok
16:07:00.0656 0x1200  [ 75476CAA8FA0A4E573948CDE8C7F0304, 68C4405CACA77AEED71761875A9AF60BCFBDD39E356BEA1BA8226E099BAA5FA4 ] stisvc          C:\WINDOWS\System32\wiaservc.dll
16:07:00.0666 0x1200  stisvc - ok
16:07:00.0675 0x1200  [ BF8EA6FC3358C2F69678E3E94F764F84, D274DAD7B5756DD49CA44277C73497F1EC465C8E365CC730CD194932C3825920 ] storahci        C:\WINDOWS\system32\drivers\storahci.sys
16:07:00.0678 0x1200  storahci - ok
16:07:00.0693 0x1200  [ 32FF460DA8C1F370F5C08B7654899B73, 0C9D5D38D033109BA672ABAFEF0F0CD295E9FFA108ACFCA9044429D9B2CA9057 ] storflt         C:\WINDOWS\system32\drivers\vmstorfl.sys
16:07:00.0695 0x1200  storflt - ok
16:07:00.0710 0x1200  [ CC21DB3EF619B9480FE31A4EFE92CBEB, 256EFCA2F231F41D34250E1460BF88894D943EAE83A0B153FCADE700AB4DE11E ] stornvme        C:\WINDOWS\system32\drivers\stornvme.sys
16:07:00.0711 0x1200  stornvme - ok
16:07:00.0715 0x1200  [ 390B8A75768E2689586539C224520895, D72F52E6D7AC5DC318FF9C1DF1F4E8A435D65B6BB59D7F1642222EC026BC54DB ] storqosflt      C:\WINDOWS\system32\drivers\storqosflt.sys
16:07:00.0717 0x1200  storqosflt - ok
16:07:00.0751 0x1200  [ FE42F8A07885E518ED1E846C93E4B78C, 264B21A5E07654F159A3E324F3B38A8C11AF619F61B5779A46367DD99EBD00A6 ] StorSvc         C:\WINDOWS\system32\storsvc.dll
16:07:00.0761 0x1200  StorSvc - ok
16:07:00.0771 0x1200  [ 770A92D9D3A0BF61C97C3AFCB36847D9, 21A8CC3F8E63B971C4FF8DDED5C7032E093A7B0F16E2128A9BD2E890BA76A1D9 ] storufs         C:\WINDOWS\system32\drivers\storufs.sys
16:07:00.0772 0x1200  storufs - ok
16:07:00.0783 0x1200  [ 736A2418E3E7F3DB3CF6EB0A55D1D581, 2D3BBC4E0C7B51EDE7479A978E4BCD5F47A7257745179F01D2D9ECFD83CCCC82 ] storvsc         C:\WINDOWS\system32\drivers\storvsc.sys
16:07:00.0784 0x1200  storvsc - ok
16:07:00.0799 0x1200  [ FA8F6E3AD3F92B35D2673CC9FD20429C, 62F81CBACF7E16FEF9DE3BE95FA5C9BDB51BAE4667AE5AE71399864A390FF6D5 ] svsvc           C:\WINDOWS\system32\svsvc.dll
16:07:00.0802 0x1200  svsvc - ok
16:07:00.0812 0x1200  [ BD98B0225BCD49E8A62F4F8EE1D1F613, CDAD11969B2DA417079547724BECC3DB4FC4711B3C01590EB0D02774B69B6D90 ] swenum          C:\WINDOWS\System32\drivers\swenum.sys
16:07:00.0814 0x1200  swenum - ok
16:07:00.0830 0x1200  [ 22E539A9B96C66A713583EC017562616, 210DA61DFC7AA9AD23277D9CC0239B781F4EABD322D0803AEC9434D68B81FABD ] swprv           C:\WINDOWS\System32\swprv.dll
16:07:00.0838 0x1200  swprv - ok
16:07:00.0864 0x1200  [ CAE4B27B469C583131EA5AAE622F5D76, 3979006EB22489D1AAD2EC2E9F32C286EEDCDB83B37B97E58BA831263EC33B84 ] Synth3dVsc      C:\WINDOWS\System32\drivers\Synth3dVsc.sys
16:07:00.0865 0x1200  Synth3dVsc - ok
16:07:00.0905 0x1200  [ 34A3EB84B2A830E6F450B8F885AE4E6E, E61AC6D17B815CB71F26D71CA3CCAFD9E66A170E3ED2E64A4F20D097A0C683B5 ] SysMain         C:\WINDOWS\system32\sysmain.dll
16:07:00.0921 0x1200  SysMain - ok
16:07:00.0957 0x1200  [ FA8E0A9C648035CA1B47C9DA77EDB7EA, 4097AB89D2DB4741B138F3939AED4C5DB00BA124BF66E5DC2218ACF3A37513A3 ] SystemEventsBroker C:\WINDOWS\System32\SystemEventsBrokerServer.dll
16:07:00.0964 0x1200  SystemEventsBroker - ok
16:07:00.0999 0x1200  [ 8ACA2C15F9FB643F8C22FFD76A88BF07, 90AA897C9E3281C5005B1DB31DB6E4D6FAC47FDFAAE39AA7D0F6FB8388162B9F ] t3              C:\WINDOWS\system32\drivers\t3.sys
16:07:01.0008 0x1200  t3 - ok
16:07:01.0038 0x1200  [ 6979A147C0D5C5CAB621ADC394D32B80, C30B8E3D271A1591D965559EA4A11A1BE63A34D832ED53B26CE91799C888DF77 ] TabletInputService C:\WINDOWS\System32\TabSvc.dll
16:07:01.0044 0x1200  TabletInputService - ok
16:07:01.0068 0x1200  [ 86B62FC8CB89946446F9B24FE49A66FD, 7B095310D1C78B82E5ACAC4713E101DD1323A3CF6FB39218C2E78ABE2B0385B5 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
16:07:01.0074 0x1200  TapiSrv - ok
16:07:01.0156 0x1200  [ 083A727D784009F9CCFB120C7841B7AF, 14242ECC3EB17154AD856A2C5229324BA6914291F4E2CD93E6AE251A31130448 ] Tcpip           C:\WINDOWS\system32\drivers\tcpip.sys
16:07:01.0189 0x1200  Tcpip - ok
16:07:01.0248 0x1200  [ 083A727D784009F9CCFB120C7841B7AF, 14242ECC3EB17154AD856A2C5229324BA6914291F4E2CD93E6AE251A31130448 ] Tcpip6          C:\WINDOWS\system32\drivers\tcpip.sys
16:07:01.0280 0x1200  Tcpip6 - ok
16:07:01.0300 0x1200  [ 17F37EC9042D84561C550620643D9A85, B01620BA319A1383D403E6E50C7724879520F3267654556D975CAFFF91A82C78 ] tcpipreg        C:\WINDOWS\system32\drivers\tcpipreg.sys
16:07:01.0302 0x1200  tcpipreg - ok
16:07:01.0325 0x1200  [ 91D3F2A6253EF83EFBD7903028F58C4D, C15768CCCF734093B0F8A5E76882B35927B716E4F14D91ACEE897E1C078D43D1 ] tdx             C:\WINDOWS\system32\DRIVERS\tdx.sys
16:07:01.0327 0x1200  tdx - ok
16:07:01.0339 0x1200  [ E730D0EB1B84EBC98423FC8D285EDBC0, 442DD433F9D22304E64EC7ACFC4E04892D4D92D8AC545A3530FC932A2EEC4767 ] terminpt        C:\WINDOWS\System32\drivers\terminpt.sys
16:07:01.0340 0x1200  terminpt - ok
16:07:01.0374 0x1200  [ 14307D4801C8CEF0A615907C09E886B3, C7F34C294D70DE689F673E0B5E9253B27EFEBBE6FA38B68B3B0B0374A896407E ] TermService     C:\WINDOWS\System32\termsrv.dll
16:07:01.0408 0x1200  TermService - ok
16:07:01.0426 0x1200  [ D009D1BC14FD5F2AC93D1878735F6C39, D8BCE505B66E05BC00075E46B38359CA4D0FA484EB7981A74221885E8A1FFB87 ] Themes          C:\WINDOWS\system32\themeservice.dll
16:07:01.0429 0x1200  Themes - ok
16:07:01.0464 0x1200  [ 5F27DE2082E16D4C1D6C627C8ECBD341, 08DA3EB3EF2B2006B6F9F2C8C149DF55DE6738975D556206A814096CAB5C1411 ] TieringEngineService C:\WINDOWS\system32\TieringEngineService.exe
16:07:01.0471 0x1200  TieringEngineService - ok
16:07:01.0485 0x1200  [ 7ECACE6D0B4C2D323408EB00FD93C682, EE7F5E5185EA8C8098046FA573659443014ED7C9DA9E710D9EF3FCACBBFFA100 ] tiledatamodelsvc C:\WINDOWS\system32\tileobjserver.dll
16:07:01.0493 0x1200  tiledatamodelsvc - ok
16:07:01.0522 0x1200  [ 7E81E3E0D7F83BFE3C3975020B6C7F12, 316F9415646CC7A4E9A5F1E07310D433457E623B3E589543E4A6C73C4F77712C ] TimeBroker      C:\WINDOWS\System32\TimeBrokerServer.dll
16:07:01.0526 0x1200  TimeBroker - ok
16:07:01.0561 0x1200  [ 87B9ABB965F7AF987D52791F0DD1663D, 6E42F764D47ACAD644E5F547E503B7AEA8D700C335674D1B0EB5493914F747E7 ] TPM             C:\WINDOWS\System32\drivers\tpm.sys
16:07:01.0564 0x1200  TPM - ok
16:07:01.0581 0x1200  [ AA84AF93CE5AF1F05838B51D20295419, 85B3EE773C691EEDFA080CD9C59D31CB58A5BC577AEE91A929F5DFBE1368AB6D ] TrkWks          C:\WINDOWS\System32\trkwks.dll
16:07:01.0585 0x1200  TrkWks - ok
16:07:01.0643 0x1200  [ E50DD57F496CED8873FA3E7D38BCCD42, 36B95F6F2CF48078C6B19FB452C87BB07E95C8804A5C6B526D349AC6227CAB26 ] TrustedInstaller C:\WINDOWS\servicing\TrustedInstaller.exe
16:07:01.0648 0x1200  TrustedInstaller - ok
16:07:01.0669 0x1200  [ 48E828C66AB016E48F2CB4DD585315FD, 063809B610F6B177B65D62D12605FB94F108DB26A9FD3067E6D6C51F0D92E774 ] tsusbflt        C:\WINDOWS\system32\drivers\TsUsbFlt.sys
16:07:01.0671 0x1200  tsusbflt - ok
16:07:01.0677 0x1200  [ 267C76EE60736EA5A1811A53FA02AABE, 28D4C4CB972534204B8336D0403B70E4EFE4F8369ABDE7401FFCCF7D4E3EA165 ] TsUsbGD         C:\WINDOWS\System32\drivers\TsUsbGD.sys
16:07:01.0680 0x1200  TsUsbGD - ok
16:07:01.0702 0x1200  [ 8CE72F094B822AD5EE9C3A3AFC0C16B6, 827CCD849544E1DA364B03DBC82A848D2F93AD32BA14ED52709C609BC70CE5CA ] tunnel          C:\WINDOWS\System32\drivers\tunnel.sys
16:07:01.0708 0x1200  tunnel - ok
16:07:01.0739 0x1200  [ 56C238ACFE4CB020D3E38508249039EA, 172868080F07D98175229A02410FE751B5958ED5A3D567D4AE5736F4025DF432 ] tzautoupdate    C:\WINDOWS\system32\tzautoupdate.dll
16:07:01.0746 0x1200  tzautoupdate - ok
16:07:01.0779 0x1200  [ 42C546414F80BD6C0137FC3A106F8A69, 067FFCAF0059935851888BD984E848E4E1A6CC1941A8F4534067CCF0B2A3B2E6 ] uagp35          C:\WINDOWS\system32\drivers\uagp35.sys
16:07:01.0782 0x1200  uagp35 - ok
16:07:01.0791 0x1200  [ 1686DBC81748B096232B15F16C302985, 63D72D1838C42A95599AF3C0B19A069E310ADB091208011D7D6FBAC968D1A59A ] UASPStor        C:\WINDOWS\System32\drivers\uaspstor.sys
16:07:01.0795 0x1200  UASPStor - ok
16:07:01.0813 0x1200  [ 82D3B1F4D80057826AA649D78147DE36, 344A738F6866BFD3095BB802206DDB2F9E9AD89DC39CAA7DE96455F410683829 ] UcmCx0101       C:\WINDOWS\system32\Drivers\UcmCx.sys
16:07:01.0815 0x1200  UcmCx0101 - ok
16:07:01.0831 0x1200  [ 1C95F7CE37D9EFB90EBE987A9712356C, B9EE7743ADA50276F05D735C5C29E44039D630A7DC93766A0EAF400DA037E4AF ] UcmUcsi         C:\WINDOWS\System32\drivers\UcmUcsi.sys
16:07:01.0833 0x1200  UcmUcsi - ok
16:07:01.0848 0x1200  [ AED081772091C98173905E2DF28C223B, 08541CF3354EBB634BD590E0019128F70A6FCA9075B7E785A9E9BD82EC234DD3 ] Ucx01000        C:\WINDOWS\system32\drivers\ucx01000.sys
16:07:01.0853 0x1200  Ucx01000 - ok
16:07:01.0868 0x1200  [ DCA34A111C29E4578DF2B8CEA3C7CDBD, 86BCE4C8EC228724D5896067A85A4768B6069D10A482ECC51A8F828DBD3880C9 ] UdeCx           C:\WINDOWS\system32\drivers\udecx.sys
16:07:01.0870 0x1200  UdeCx - ok
16:07:01.0893 0x1200  [ 718A956AE00CE086F381044AB66CC29C, E4EED1600C72CECE1D4507827C329A93D356BBA027470FCF6C4B5C1651DED643 ] udfs            C:\WINDOWS\system32\DRIVERS\udfs.sys
16:07:01.0899 0x1200  udfs - ok
16:07:01.0910 0x1200  [ BA760F8E66428BA9FF1E8BFBC6248136, BE7DCBB293B12672CB3653E640C46F669BD738D320F34F4FA4A26F6B248561F0 ] UEFI            C:\WINDOWS\System32\drivers\UEFI.sys
16:07:01.0911 0x1200  UEFI - ok
16:07:01.0943 0x1200  [ 05DD22294A4F3F89E52351C7721E6D2C, 300A7D4BD5F26814CF73400E01DEB810CA3F91BD190B3D37B74ADF080F582829 ] Ufx01000        C:\WINDOWS\system32\drivers\ufx01000.sys
16:07:01.0949 0x1200  Ufx01000 - ok
16:07:01.0964 0x1200  [ 2B1DABA97DDF5365FC66EE7DEDD86A13, 2FF3355862938B37EE63FCA149415CE5032BF54747B07517BB21460733B65AD8 ] UfxChipidea     C:\WINDOWS\System32\drivers\UfxChipidea.sys
16:07:01.0966 0x1200  UfxChipidea - ok
16:07:01.0985 0x1200  [ 2A87EA182EA333D79AA0B03833EA67F2, 227792A8B4E63CF60A3DEECF829448C8FD59A40DEF3F42414E432820F8D34F64 ] ufxsynopsys     C:\WINDOWS\System32\drivers\ufxsynopsys.sys
16:07:01.0988 0x1200  ufxsynopsys - ok
16:07:02.0022 0x1200  [ 63451BD694651307254B8DD37A3D79C7, C781E2D876AF42D5972CCDCF86B7A59F6AF8AF0C6350647F3FA1B209119B5EF9 ] UI0Detect       C:\WINDOWS\system32\UI0Detect.exe
16:07:02.0026 0x1200  UI0Detect - ok
16:07:02.0041 0x1200  [ 6DE78C04BF32ECA7AF3064F53687C9A5, 164D3BB24EBA3EAF613799928063FE75220A4E583D985F53A895017782C18600 ] uliagpkx        C:\WINDOWS\system32\drivers\uliagpkx.sys
16:07:02.0043 0x1200  uliagpkx - ok
16:07:02.0058 0x1200  [ 67D1E0E6E4D5D33AF0AEF0E33B4DA0F4, BA2E6F16B6B3B54C943F1E7B9F79A6D1332A7ED228D754CC5AE70E3CD78B1F37 ] umbus           C:\WINDOWS\System32\drivers\umbus.sys
16:07:02.0060 0x1200  umbus - ok
16:07:02.0072 0x1200  [ 11680607944A719EF20E0E740785712A, 1567C2B3AAD702DCC2DC9C6B7B92EE5B681C06701A39DAC3AA7E2BE9E1E04F47 ] UmPass          C:\WINDOWS\System32\drivers\umpass.sys
16:07:02.0073 0x1200  UmPass - ok
16:07:02.0101 0x1200  [ FD949725D9EB52C0B87435CDE1134668, 96E2B3D3379E9AE225E5A4C5251207F1E7DA573901F4F026758EDE9FAEF4F2C5 ] UmRdpService    C:\WINDOWS\System32\umrdp.dll
16:07:02.0110 0x1200  UmRdpService - ok
16:07:02.0152 0x1200  [ CB902A15DD21B363FECA5DCCF34F5C57, 6A0836A12A410EBD5C667982852B58CA9E9EDB11EA666C413CC0F811E01A549D ] UnistoreSvc     C:\WINDOWS\System32\unistore.dll
16:07:02.0170 0x1200  UnistoreSvc - ok
16:07:02.0340 0x1200  [ FDF92EC84FECEE834FB10A2A0A19BCDA, F81FCA3BEC10C84335DBAD9D2CDAB98C62252A864F23BDD482F97F86D5FA0B15 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
16:07:02.0374 0x1200  UNS - ok
16:07:02.0399 0x1200  [ B85A8CF2BE74DFF1E80097AC94584112, B1DBACC33A4143FEE2CF54E567590A69580312AD7A053BCC85B487C4D451FBDA ] upnphost        C:\WINDOWS\System32\upnphost.dll
16:07:02.0407 0x1200  upnphost - ok
16:07:02.0430 0x1200  [ 2410A0C20D21A25E6C01979FA886BE90, DD3F92D8CF110D47B9E36BA0EB10EB34C0FDD28FE0D57E4B60F9326703388F75 ] UrsChipidea     C:\WINDOWS\System32\drivers\urschipidea.sys
16:07:02.0430 0x1200  UrsChipidea - ok
16:07:02.0442 0x1200  [ 6E59CE43B6BA5AA1ADCF36A4DBBB92BB, 647D66775A90F67D803043DE8C8AE8BC2F7A042A8DCF9C95BF5458C79609481B ] UrsCx01000      C:\WINDOWS\system32\drivers\urscx01000.sys
16:07:02.0443 0x1200  UrsCx01000 - ok
16:07:02.0454 0x1200  [ E8A59FA109A22FC07E44BDFCC9727DBD, 0DC5928C0FF7E5B38917660D6EFECCC22172DB0BB9B23216F33E750790529C16 ] UrsSynopsys     C:\WINDOWS\System32\drivers\urssynopsys.sys
16:07:02.0455 0x1200  UrsSynopsys - ok
16:07:02.0479 0x1200  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\WINDOWS\System32\Drivers\usbaapl64.sys
16:07:02.0480 0x1200  USBAAPL64 - ok
16:07:02.0494 0x1200  [ 9F9D5E2086BB9AEEA96E9BF73B7B2D32, AFA84CE1E96C07EBFB7A05D0181C876E027B848AF6C6DB932765912B814CAF56 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys
16:07:02.0496 0x1200  usbaudio - ok
16:07:02.0508 0x1200  [ D8A44550ECE102B6443F5D54DCE7DAB3, 97F5AE7B17DAC4A4F3186C77116BC8E49874FB0018C99D8E2CDA29D89E8B0912 ] usbccgp         C:\WINDOWS\System32\drivers\usbccgp.sys
16:07:02.0510 0x1200  usbccgp - ok
16:07:02.0525 0x1200  [ 66B3D22DAB5312FF238ABF5C6D9F8FAB, 4A644AFC1C27D692D352BEB8801398A00EA5B4055476063AF905A0A46DDBF8BB ] usbcir          C:\WINDOWS\System32\drivers\usbcir.sys
16:07:02.0527 0x1200  usbcir - ok
16:07:02.0552 0x1200  [ 3E4F20DB902D2E2914F3FF3DB9772200, F3D32BE06A26164B5F6E8DB67160D1DBBDC6D14666EEF84EA43C78CB7706E31C ] usbehci         C:\WINDOWS\System32\drivers\usbehci.sys
16:07:02.0554 0x1200  usbehci - ok
16:07:02.0571 0x1200  [ 41F7F00D76904416EF1F9EFA1A4C37A2, 7A4250EB2E2E0037B3AE1480C13B229ECFF5C575E68E4F934EE011DB1833B46A ] usbhub          C:\WINDOWS\System32\drivers\usbhub.sys
16:07:02.0578 0x1200  usbhub - ok
16:07:02.0616 0x1200  [ E7463CE8579A0418A98BE9BE42C647D7, 923CD51C82FCF9DC4E9EEA99E53634EE07EBF62FB5DFC337F01309D7D5C7622C ] USBHUB3         C:\WINDOWS\System32\drivers\UsbHub3.sys
16:07:02.0623 0x1200  USBHUB3 - ok
16:07:02.0638 0x1200  [ DAB35CCA86F5FBE77D870A40089BC4A1, 4A47D59D882D0F2B93F2EE7F10995E7D68B58009434E2CBD04C659E0D1F059D8 ] usbohci         C:\WINDOWS\System32\drivers\usbohci.sys
16:07:02.0639 0x1200  usbohci - ok
16:07:02.0642 0x1200  [ 21162F65C7756AAECAEBED9E67D0A5FE, DE3B43964171DB5B0464DA5E7A674A5D200A8695E6EF1AE2030681066ABA2688 ] usbprint        C:\WINDOWS\System32\drivers\usbprint.sys
16:07:02.0644 0x1200  usbprint - ok
16:07:02.0666 0x1200  [ D67B6A4A6FB99D29444C2DBA2B636799, 62BC778D60593B2AB0DA13C4DB3EA5971895AE09DA06E8AB2D03973C940C890C ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:07:02.0667 0x1200  usbscan - ok
16:07:02.0694 0x1200  [ 4AAD6547953D373A1EB5B2DF583D868B, 4E3DCEC9644550996C314FCC39F885DDE4AA7AD821B8596D96C5BEA5D60795F7 ] usbser          C:\WINDOWS\System32\drivers\usbser.sys
16:07:02.0696 0x1200  usbser - ok
16:07:02.0710 0x1200  [ 8949F77132A4F8F3BA17C6727099F002, 86AD4A2263B34983335180FDAE775D1744E042D2A11300D27DF546F15F285A25 ] USBSTOR         C:\WINDOWS\System32\drivers\USBSTOR.SYS
16:07:02.0712 0x1200  USBSTOR - ok
16:07:02.0723 0x1200  [ 8B3E458A8851F9A3B2109B1680EE1159, 753AC8F82F65564F00EA2F60B43E4B815FEAABE0DA35B6356210A5F4B1CA3EFC ] usbuhci         C:\WINDOWS\System32\drivers\usbuhci.sys
16:07:02.0724 0x1200  usbuhci - ok
16:07:02.0751 0x1200  [ 9E9D58F5E1702955B2F4D62996F80E8E, 6C21C250B9D98346D0D5CB7D6C11AB120A1D195C28313BDB0CE532663F0114E2 ] USBXHCI         C:\WINDOWS\System32\drivers\USBXHCI.SYS
16:07:02.0756 0x1200  USBXHCI - ok
16:07:02.0808 0x1200  [ 2771EBB565F5C121E66060B173991D4D, 1EB34A6262A18E47ADCA392FDB2D58E8428A1CA43EB4196D76A897F74A03CA7F ] UserDataSvc     C:\WINDOWS\System32\userdataservice.dll
16:07:02.0829 0x1200  UserDataSvc - ok
16:07:02.0890 0x1200  [ 36EC82F0E399F36BD25F593D63DC144A, 2A9E916A098ACD5A5074A5FD053ECAB027A0932A348C728F20CD63EF16289533 ] UserManager     C:\WINDOWS\System32\usermgr.dll
16:07:02.0904 0x1200  UserManager - ok
16:07:02.0930 0x1200  [ 0D33D06EF42E3BC6A7BBC4F7F7517C25, 1B19739341F5D76C0C491D20BD676877D7D59C73AFC3108567C81E6963E6384A ] UsoSvc          C:\WINDOWS\system32\usocore.dll
16:07:02.0937 0x1200  UsoSvc - ok
16:07:02.0949 0x1200  [ 889459F1FDDC5EC58B437AA6C436F33F, 8ACC32C88D81943A8A90FDAF4772C3EDE06CAB5F489F59525BEA7AAB99DAAE73 ] VaultSvc        C:\WINDOWS\system32\lsass.exe
16:07:02.0952 0x1200  VaultSvc - ok
16:07:02.0958 0x1200  [ E1BE37312785A71862516F66B3FD24CE, D248C513DBEACB192653C6E46809209F341771B146544BBF43B86369280B4F8B ] vdrvroot        C:\WINDOWS\system32\drivers\vdrvroot.sys
16:07:02.0959 0x1200  vdrvroot - ok
16:07:02.0989 0x1200  [ 67A6E949395A09914AD8B38FE14B8D15, 593F2FAA880B2E0468F98BD58B5214A170E5890907B25294D7A47C66505A3D45 ] vds             C:\WINDOWS\System32\vds.exe
16:07:02.0999 0x1200  vds - ok
16:07:03.0020 0x1200  [ E42C0F2850735FF9D908B9DB581E6314, E2204A56BF37FC57CD2ED96E3F908882D72B4BFF1BFB97C5172C851F1E4F9650 ] VerifierExt     C:\WINDOWS\system32\drivers\VerifierExt.sys
16:07:03.0023 0x1200  VerifierExt - ok
16:07:03.0046 0x1200  [ EC15FD6A28757793E2DA394CD94ABD52, DC758BBEE9C6952D7B3F7171EF67B037B4068E88189A2C4A894122D1D1209468 ] vhdmp           C:\WINDOWS\System32\drivers\vhdmp.sys
16:07:03.0056 0x1200  vhdmp - ok
16:07:03.0068 0x1200  [ D0C9632C350F46786643A069251BC249, CF65BA0D3F3D2B821C10E2D4F53F5B6BF6236CA9767419392A561CFA79254C3B ] vhf             C:\WINDOWS\System32\drivers\vhf.sys
16:07:03.0069 0x1200  vhf - ok
16:07:03.0083 0x1200  [ E886CB75DA2B6EB35469EF10135624C7, 3AFC59A0709B984F517A918D5BBEBEB1C80001BEC87C133447DCEAEDE00E516D ] vmbus           C:\WINDOWS\system32\drivers\vmbus.sys
16:07:03.0085 0x1200  vmbus - ok
16:07:03.0094 0x1200  [ 46D2EC27820EC0F798F85821E53C2942, D298A7D6AC16F76A069F843C8DD323ECB340D361733CB9B076BCDE8FC5F1FEFC ] VMBusHID        C:\WINDOWS\System32\drivers\VMBusHID.sys
16:07:03.0095 0x1200  VMBusHID - ok
16:07:03.0135 0x1200  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicguestinterface C:\WINDOWS\System32\ICSvc.dll
16:07:03.0142 0x1200  vmicguestinterface - ok
16:07:03.0152 0x1200  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicheartbeat   C:\WINDOWS\System32\ICSvc.dll
16:07:03.0159 0x1200  vmicheartbeat - ok
16:07:03.0169 0x1200  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmickvpexchange C:\WINDOWS\System32\ICSvc.dll
16:07:03.0177 0x1200  vmickvpexchange - ok
16:07:03.0187 0x1200  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicrdv         C:\WINDOWS\System32\ICSvc.dll
16:07:03.0194 0x1200  vmicrdv - ok
16:07:03.0204 0x1200  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicshutdown    C:\WINDOWS\System32\ICSvc.dll
16:07:03.0212 0x1200  vmicshutdown - ok
16:07:03.0222 0x1200  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmictimesync    C:\WINDOWS\System32\ICSvc.dll
16:07:03.0230 0x1200  vmictimesync - ok
16:07:03.0239 0x1200  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvmsession   C:\WINDOWS\System32\ICSvc.dll
16:07:03.0247 0x1200  vmicvmsession - ok
16:07:03.0257 0x1200  [ 9AFCCEBFC4D311B62EF0C5457FBB405C, 965736DD97D7BF23AA62D4DFB4563534B252E26C66A3FDD1461024FD2315C53A ] vmicvss         C:\WINDOWS\System32\ICSvc.dll
16:07:03.0265 0x1200  vmicvss - ok
16:07:03.0272 0x1200  [ B9265F47E7A354BAAA0AF5CBA3F8F7CE, F836E7BEDC7CAB1C01225164D171A0210D8F909F52992E4C0BF3C92B365BCD52 ] volmgr          C:\WINDOWS\system32\drivers\volmgr.sys
16:07:03.0274 0x1200  volmgr - ok
16:07:03.0291 0x1200  [ BEE9C8B72AB752B794F69C2B9B3678AA, 49A5093C26F3CDCD60577F7F2D7F936C7B2BD010B27F2C49A7B6AA41E42DF98D ] volmgrx         C:\WINDOWS\system32\drivers\volmgrx.sys
16:07:03.0297 0x1200  volmgrx - ok
16:07:03.0311 0x1200  [ E1F91A727A04C9F8199D04FF3BBBF63C, 076CAEE621DBF7DE24ED92BA239C440879FDB674CF3213DF3E35AEC03D0D2031 ] volsnap         C:\WINDOWS\system32\drivers\volsnap.sys
16:07:03.0317 0x1200  volsnap - ok
16:07:03.0346 0x1200  [ F7B1B1101271E31F43CC76E890704F51, 2282D82B220C3D13FF980ED8E40443C83816D3DA9557EACEA137873F92BB9CF4 ] vpci            C:\WINDOWS\System32\drivers\vpci.sys
16:07:03.0348 0x1200  vpci - ok
16:07:03.0367 0x1200  [ D48ED0A08BD2FD25A833E6AC99623091, 6CA7580878D3893E14B4938023A00CDFC9BE215A0CE4ED59A94F95DFD9FDF4D8 ] vsmraid         C:\WINDOWS\system32\drivers\vsmraid.sys
16:07:03.0370 0x1200  vsmraid - ok
16:07:03.0423 0x1200  [ 4CF5A1E0C4FCA956ACD6C654E2A8610E, 57F3C7200C25E8717AF92AF2ED7615C6605179D3514B432220FA6EA94CAB4F2E ] VSS             C:\WINDOWS\system32\vssvc.exe
16:07:03.0444 0x1200  VSS - ok
16:07:03.0460 0x1200  [ 6990D4AFDF545669D4E6C232F26DE1FB, 9B8F99A035188FD96BA79E935E8EF387BEA2223ECA0B74CF64AB993DABAA5722 ] VSTXRAID        C:\WINDOWS\system32\drivers\vstxraid.sys
16:07:03.0464 0x1200  VSTXRAID - ok
16:07:03.0479 0x1200  [ 1EE11F0508C58EF081F4176E66D6970B, 9069B3FC8850C7CF617909C6DBFC3753FEB59A9E708379CC57190F4097FB374E ] vwifibus        C:\WINDOWS\System32\drivers\vwifibus.sys
16:07:03.0480 0x1200  vwifibus - ok
16:07:03.0490 0x1200  [ 938E4EF58E42D252B742B0E243011B90, AC0C21FBAF15924CB271CA43ACB7A86287936C78B4852BCFC59EC7EC703E036C ] vwififlt        C:\WINDOWS\system32\drivers\vwififlt.sys
16:07:03.0491 0x1200  vwififlt - ok
16:07:03.0533 0x1200  [ 48C1A256591297C43ECFC4E30D144EAA, 8E66833ED2CEB6D7E499EB2E4282B4F9DFA28B6D21757BB88EC52FD069D7FACE ] W32Time         C:\WINDOWS\system32\w32time.dll
16:07:03.0541 0x1200  W32Time - ok
16:07:03.0605 0x1200  [ CDA9A00B16808D7A5BBB66287B89EE21, B25F98F26B0153E5DD5C744539CB6ACAFAA13E0F7B5D140C1844158B79BC9006 ] w3logsvc        C:\WINDOWS\system32\inetsrv\w3logsvc.dll
16:07:03.0608 0x1200  w3logsvc - ok
16:07:03.0656 0x1200  [ 1430B095A4DF52C04BDBC31C861C9324, B686C97D13CE966D44A7695BE78A4501F96CF8E69B24AFFE6C8E643132BB8861 ] W3SVC           C:\WINDOWS\system32\inetsrv\iisw3adm.dll
16:07:03.0672 0x1200  W3SVC - ok
16:07:03.0708 0x1200  [ C465E2A166B7C349FC48F9CC9F77F3D7, D3990A02041FFE14D8B1B22FF18082FD39C59A6D6EB28B4E44BFD22232061AD1 ] WacHidRouter    C:\WINDOWS\System32\drivers\wachidrouter.sys
16:07:03.0710 0x1200  WacHidRouter - ok
16:07:03.0721 0x1200  [ 00C27B64C758C111E5D78A70DE6CA2B6, C99761B9B671B3A1FF1C52796CCA3F4F825BF50D9657D13B551E849CDD82055D ] WacomPen        C:\WINDOWS\System32\drivers\wacompen.sys
16:07:03.0722 0x1200  WacomPen - ok
16:07:03.0739 0x1200  [ 89AEAEAD593723EA7182AA72691E98C5, E506085A538050C683666F767C0BD5A6590ECAA893AB1CEF20F5C1E4C710A2BD ] wacomrouterfilter C:\WINDOWS\System32\drivers\wacomrouterfilter.sys
16:07:03.0740 0x1200  wacomrouterfilter - ok
16:07:03.0766 0x1200  [ D76D1AC4F2C642D09A68227D129A4726, D14D6C4D94E9660848C74B220359683D91A4A3D70750E781A20B6D86D46794CE ] WalletService   C:\WINDOWS\system32\WalletService.dll
16:07:03.0774 0x1200  WalletService - ok
16:07:03.0783 0x1200  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:07:03.0785 0x1200  wanarp - ok
16:07:03.0788 0x1200  [ 8CB53620B2C2F0641DD7563EA0FDF491, D62FE75C908409A54949F0E3C39558DC7A8F11AF7496ED7B0872D80D08CB67A7 ] wanarpv6        C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:07:03.0789 0x1200  wanarpv6 - ok
16:07:03.0810 0x1200  [ 1430B095A4DF52C04BDBC31C861C9324, B686C97D13CE966D44A7695BE78A4501F96CF8E69B24AFFE6C8E643132BB8861 ] WAS             C:\WINDOWS\system32\inetsrv\iisw3adm.dll
16:07:03.0818 0x1200  WAS - ok
16:07:03.0870 0x1200  [ 2598BBF11C9E7D0885DCA52E7FD5BCBD, 46B1FB080A2CD88C89A0EB8BA2594A1FA2C341ED77A6C6835CBFFE42907FAC55 ] wbengine        C:\WINDOWS\system32\wbengine.exe
16:07:03.0898 0x1200  wbengine - ok
16:07:03.0922 0x1200  [ 642EFABF900374FA85639D83B5533AFD, 292692D6AAC2A785D237ADFBC7CA3D379E8FC79FA366A8CE7D06F5CA5CE6866B ] WbioSrvc        C:\WINDOWS\System32\wbiosrvc.dll
16:07:03.0933 0x1200  WbioSrvc - ok
16:07:03.0964 0x1200  [ 0BF8D8C7EC9FB15D6480A12101E88B71, E7BC6A4E53D8C9D73BF83097DFE43ED8038B7BED0AE56E5AF7983F74562F15A3 ] Wcmsvc          C:\WINDOWS\System32\wcmsvc.dll
16:07:03.0974 0x1200  Wcmsvc - ok
16:07:03.0991 0x1200  [ 53A036CED1270F2459E708A05922FD49, 2F281A72E4B0408DE6C8153F5988C9AA38591FB1E72558767D389637D0666A85 ] wcncsvc         C:\WINDOWS\System32\wcncsvc.dll
16:07:04.0000 0x1200  wcncsvc - ok
16:07:04.0014 0x1200  [ 965B6197A659782B6A0F68411A180AAD, 5541AB78B71E4FA655BCBF2D80D574B2A3B4AA8871F65D26620BDE549FA5459A ] WcsPlugInService C:\WINDOWS\System32\WcsPlugInService.dll
16:07:04.0017 0x1200  WcsPlugInService - ok
16:07:04.0039 0x1200  [ 069D3D6E20AD753B34FCE856F0436869, CF8C12295DDAA56E7350019AADBA533D7857CFB3F20DEE14E557963645A9331B ] WdBoot          C:\WINDOWS\system32\drivers\WdBoot.sys
16:07:04.0040 0x1200  WdBoot - ok
16:07:04.0063 0x1200  [ A556768CC1FA4F36022BEE2F0EDE2566, 3A4BC9DE614F43CD94FA354A565C66B2E1E36C0608D84C6288010B97B9D811AA ] WDC_SAM         C:\WINDOWS\System32\drivers\wdcsam64.sys
16:07:04.0064 0x1200  WDC_SAM - ok
16:07:04.0110 0x1200  [ 6CC727E94CD84E9720FDCDA8089CABCC, BCF66056B06DED6BC2D329E910FCD3E685D627BAD3B5D7F4B0E970B45CD9CEF4 ] Wdf01000        C:\WINDOWS\system32\drivers\Wdf01000.sys
16:07:04.0121 0x1200  Wdf01000 - ok
16:07:04.0135 0x1200  [ E3E97151A1D1E87BB2D5371F66C5F169, 0ED0B9852FE0533816F5EE2F06045B3964A00FD749A7011DB3C663AB6FA369E2 ] WdFilter        C:\WINDOWS\system32\drivers\WdFilter.sys
16:07:04.0139 0x1200  WdFilter - ok
16:07:04.0154 0x1200  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiServiceHost  C:\WINDOWS\system32\wdi.dll
16:07:04.0158 0x1200  WdiServiceHost - ok
16:07:04.0162 0x1200  [ 75DC67553051103547B693898CB32D08, 4FCF2C3DBBE85461364B1F3A3F3629B52C8664487D30142D15937A4C96EF6A8F ] WdiSystemHost   C:\WINDOWS\system32\wdi.dll
16:07:04.0165 0x1200  WdiSystemHost - ok
16:07:04.0200 0x1200  [ 2BC2E99623119521EEF7910A11D0FDE0, 3F3E48A79534F0F65F961D9B170D534562E04901B630127B16DF02E6D42F2BBF ] wdiwifi         C:\WINDOWS\system32\DRIVERS\wdiwifi.sys
16:07:04.0210 0x1200  wdiwifi - ok
16:07:04.0215 0x1200  [ 07B043160399AF4009054E2EA3464BF4, 8D652D7CD75F8FB2B5414155355F0C970015914E1AC6522DBB8387BB8662F542 ] WdNisDrv        C:\WINDOWS\system32\Drivers\WdNisDrv.sys
16:07:04.0218 0x1200  WdNisDrv - ok
16:07:04.0237 0x1200  WdNisSvc - ok
16:07:04.0258 0x1200  [ 9972D395DBD05D91DA5EDADEB9325680, 9382D846793F285721A1A0FED42F914035A53D856B902FADB0B7144C471BDA91 ] WebClient       C:\WINDOWS\System32\webclnt.dll
16:07:04.0269 0x1200  WebClient - ok
16:07:04.0283 0x1200  [ B6BF579761489720BCE787F723F596E5, 879B17F6A4F23F5E85A09126B7B407955DDCEB1BA4A8FFC0A418B7F47311C056 ] Wecsvc          C:\WINDOWS\system32\wecsvc.dll
16:07:04.0290 0x1200  Wecsvc - ok
16:07:04.0300 0x1200  [ 10C9CF8771A2A87F575F9FB56821474E, 15E3DFFE9CF6777F67E426ECF797D2DF743EA152DEE336DCC9C2F92A0E6EB9A3 ] WEPHOSTSVC      C:\WINDOWS\system32\wephostsvc.dll
16:07:04.0303 0x1200  WEPHOSTSVC - ok
16:07:04.0317 0x1200  [ 357C083FE35D030D991D163AAF622A06, F301852D49DBDEF0D28F56CD74CBDC71CA003EBD07D3F46EA5C870DC1BD07896 ] wercplsupport   C:\WINDOWS\System32\wercplsupport.dll
16:07:04.0322 0x1200  wercplsupport - ok
16:07:04.0342 0x1200  [ 2235AF716D15D9DFE4C59DC2AC0C440C, 2DCFCEBEA77E7E40CEF9A785BE1A794B390B36E40FBCF49B494F9CEA3F6A28C4 ] WerSvc          C:\WINDOWS\System32\WerSvc.dll
16:07:04.0348 0x1200  WerSvc - ok
16:07:04.0364 0x1200  [ C11272713719922DE5711094333BD166, 61D4F07E02AECF04964FF51EEA31069A2B0EAA549AD2B29B5FD3E1E6BB543593 ] WFPLWFS         C:\WINDOWS\system32\drivers\wfplwfs.sys
16:07:04.0368 0x1200  WFPLWFS - ok
16:07:04.0389 0x1200  [ 205A1FAE910F5C493D236245850BB62A, DBA4D1D734BAA3CDEB8A7F9C81A8DAA88CEA55AF5C4C5908E76FB8E522C5EC8A ] WiaRpc          C:\WINDOWS\System32\wiarpc.dll
16:07:04.0394 0x1200  WiaRpc - ok
16:07:04.0408 0x1200  [ EF536C54AB9281FDC4E83B07279FCFC4, 22E4F133170682EE14413CA8FDC2DBE73AB31960D6ACB728A6B398229FDDFD3B ] WIMMount        C:\WINDOWS\system32\drivers\wimmount.sys
16:07:04.0409 0x1200  WIMMount - ok
16:07:04.0412 0x1200  WinDefend - ok
16:07:04.0442 0x1200  [ D8966A76408107224C6013993135DD78, 6159F69BC26FF817078E68C70E6DFC9075FEBF9EF9F4F046C7A65BC377544AE6 ] WindowsTrustedRT C:\WINDOWS\system32\drivers\WindowsTrustedRT.sys
16:07:04.0444 0x1200  WindowsTrustedRT - ok
16:07:04.0455 0x1200  [ 8B102A7B6CE326FD4208CC7C2D183343, E47C1D76CBFD2A382C3A7BB048D752FB6DD4616FADDEB1C3ADD5DDAE149742AF ] WindowsTrustedRTProxy C:\WINDOWS\system32\drivers\WindowsTrustedRTProxy.sys
16:07:04.0456 0x1200  WindowsTrustedRTProxy - ok
16:07:04.0494 0x1200  [ D4B30E23A3B373648F61290DAF432CB2, 7084E24A2E813BDD11C880F2B2D2626CD3600D9BABAA8AA8F068748E90BC8D58 ] WinHttpAutoProxySvc C:\WINDOWS\system32\winhttp.dll
16:07:04.0507 0x1200  WinHttpAutoProxySvc - ok
16:07:04.0536 0x1200  [ 4A53441C1C4D2878BEF27E381138BB2D, C221E74491E6FD2AF472B53876B46788D5CF62F4E645457F3B3816FD0ED2BAA1 ] WinMad          C:\WINDOWS\System32\drivers\winmad.sys
16:07:04.0537 0x1200  WinMad - ok
16:07:04.0606 0x1200  [ 1033C37122C7404C3B926ADF84874832, 163B3A7112F13AE7BB2655A28C6B19AF9B263F2AD2FF1B75314BE3E2B9118903 ] Winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
16:07:04.0614 0x1200  Winmgmt - ok
16:07:04.0700 0x1200  [ 703D0F62C5AA4D08EE8756516C0D125D, 02015A5E62490C11EC968160C528C2AFD1D7194AACA27F407B06EB462657511F ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
16:07:04.0738 0x1200  WinRM - ok
16:07:04.0759 0x1200  [ 260907CE034FE327AC99BDA4153AB22F, B96501F43248713C2E153B9D22B78D51412A3C6989A2FB5F53A406C6CDC98D30 ] WINUSB          C:\WINDOWS\System32\drivers\WinUSB.SYS
16:07:04.0761 0x1200  WINUSB - ok
16:07:04.0769 0x1200  [ 40A3E8D729F458B2C9A8BD9380FF83D5, CD42FFC138969EF8C9588FD113F0B9A98FBA282D46A5B6BCFA765F55ED6E97A1 ] WinVerbs        C:\WINDOWS\System32\drivers\winverbs.sys
16:07:04.0771 0x1200  WinVerbs - ok
16:07:04.0834 0x1200  [ 453740989239803FE363FF8B40EA2E08, 25499705627C38D3431B3C336E0CF3BF55ABB0C461B88DA6D3767CAAE1E2B893 ] WlanSvc         C:\WINDOWS\System32\wlansvc.dll
16:07:04.0865 0x1200  WlanSvc - ok
16:07:04.0945 0x1200  [ E48BBF1363F843E030757EC190DD33E6, B37199495115ED423BA99B7317377CE865BB482D4E847861E871480AC49D4A84 ] wlidsvc         C:\WINDOWS\system32\wlidsvc.dll
16:07:04.0974 0x1200  wlidsvc - ok
16:07:04.0991 0x1200  [ 8F010BF65238F3F822D22BA12831796E, 2CA830F259B742D2F5CDD0437960BF512D40FB4A4C2342E3BABB38D468F79694 ] WmiAcpi         C:\WINDOWS\System32\drivers\wmiacpi.sys
16:07:04.0992 0x1200  WmiAcpi - ok
16:07:05.0013 0x1200  [ 74ACA5A7880C1F0BB9D60E32E1705A70, A89817BCCBFF94D7394614DA81D1C6C4F53AF47A539E674EEF6DC3FC496BF702 ] wmiApSrv        C:\WINDOWS\system32\wbem\WmiApSrv.exe
16:07:05.0017 0x1200  wmiApSrv - ok
16:07:05.0041 0x1200  WMPNetworkSvc - ok
16:07:05.0076 0x1200  [ 2A9650FCC696DB28E45EA8B33B99B8E6, FBEBC6C05D50F578C6EEE0A7285EBE1DEADB08DD21FA3232630FD8D5A68FC3FB ] Wof             C:\WINDOWS\system32\drivers\Wof.sys
16:07:05.0083 0x1200  Wof - ok
16:07:05.0152 0x1200  [ 4090C6738AA92B428220857B4D44F638, 4A3EE47494051E5BA8393F2AC8226EF434DA3AA1895CF4BADC9BC1BC378647C6 ] workfolderssvc  C:\WINDOWS\system32\workfolderssvc.dll
16:07:05.0178 0x1200  workfolderssvc - ok
16:07:05.0204 0x1200  [ 22C52D7EE7C7D0E02C8EFD8CAE8E3A71, 126605A12CEC9CC07DE3050F12E43CECABEAF0D00DF12300AF70F34700F7FE8E ] wpcfltr         C:\WINDOWS\system32\DRIVERS\wpcfltr.sys
16:07:05.0206 0x1200  wpcfltr - ok
16:07:05.0247 0x1200  [ 45FA01F8B7971ACB65202038E34D04A3, 9B2C2ABC7DB716295B0BD0AF04DA08E6B4200D7CF1C7DB59DD8FD8FEBD56D94C ] WPDBusEnum      C:\WINDOWS\system32\wpdbusenum.dll
16:07:05.0250 0x1200  WPDBusEnum - ok
16:07:05.0259 0x1200  [ 1C08E424CBDD5065BB7266F8C048C1B1, 0452C85EDA6CBAB75C2617886C5D8117ED25D91F1BE0F8377B08D55B6629B028 ] WpdUpFltr       C:\WINDOWS\system32\drivers\WpdUpFltr.sys
16:07:05.0260 0x1200  WpdUpFltr - ok
16:07:05.0276 0x1200  [ 2C6EEFFBB7FB1C51CCD3737C77AB9109, 8C2ED309FAF4312512E7BCCBBC51B1353603A3499077A1DE21991F0692AF1620 ] WpnService      C:\WINDOWS\system32\WpnService.dll
16:07:05.0279 0x1200  WpnService - ok
16:07:05.0289 0x1200  [ 638B43D39A3D0B47024555CF1095E6F1, C7EA0A6ED227A5256EB02CA76FEC538DF196B8DC38DA2A567757D2B221C9473E ] ws2ifsl         C:\WINDOWS\system32\drivers\ws2ifsl.sys
16:07:05.0290 0x1200  ws2ifsl - ok
16:07:05.0314 0x1200  [ 5B813FADEA5BE9195F01C83287F823F7, B186175B12AF444F987FE9F0F9D329A0F9186C06E3D228824E0929BB0084853F ] wscsvc          C:\WINDOWS\System32\wscsvc.dll
16:07:05.0319 0x1200  wscsvc - ok
16:07:05.0322 0x1200  WSearch - ok
16:07:05.0421 0x1200  [ 6E04BBE242E2889B37300C4DF5CE1126, FBDAEAC62C48A4FC5EF412AE47FF10590AE83E8871412F76F6F9BAE910542DFA ] WSService       C:\WINDOWS\System32\WSService.dll
16:07:05.0468 0x1200  WSService - ok
16:07:05.0553 0x1200  [ 520A0FE5C4BC5B6A70A37171B8389C30, 3B79EFEB92A8FF33C1BEBD364E1CA9CE6974DCB89C60A0410244046CD5CC0D35 ] WTabletServicePro C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
16:07:05.0562 0x1200  WTabletServicePro - ok
16:07:05.0614 0x1200  [ 8D3AC00C88BC2A63D1D3CC320E0EAA19, 0E46765269B6FAD8ED8F032C42B38FA5998610CD9E85EB91A414135C595B3E75 ] wuauserv        C:\WINDOWS\system32\wuaueng.dll
16:07:05.0645 0x1200  wuauserv - ok
16:07:05.0663 0x1200  [ A928F25CB62232F413EE655352856E10, 1D2B278A24DDDE8792ADE7649FF90A98E186B79F13AA296C30E4180293BE906A ] WudfPf          C:\WINDOWS\system32\drivers\WudfPf.sys
16:07:05.0665 0x1200  WudfPf - ok
16:07:05.0675 0x1200  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFRd          C:\WINDOWS\System32\drivers\WUDFRd.sys
16:07:05.0678 0x1200  WUDFRd - ok
16:07:05.0692 0x1200  [ 1336DA39FE006EAB2733CA4DE5B3560C, F0D6C71ADCB66D4D14EC6D09FD43F5521A3A8CA53F248DFD01696FB4F033BE77 ] wudfsvc         C:\WINDOWS\System32\WUDFSvc.dll
16:07:05.0696 0x1200  wudfsvc - ok
16:07:05.0702 0x1200  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdFs       C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
16:07:05.0705 0x1200  WUDFWpdFs - ok
16:07:05.0711 0x1200  [ A932391623D5CEC4EF4A2A17D3CEBFCD, 54AA17F385347DED262BDA84F2D99106DC5D9BF8765D647BD76265356193BDFA ] WUDFWpdMtp      C:\WINDOWS\system32\DRIVERS\WUDFRd.sys
16:07:05.0714 0x1200  WUDFWpdMtp - ok
16:07:05.0775 0x1200  [ 5DA95027DF2317174E8C39B4A8D1FCD8, 99B356411CB08B8BCCF2348DBF1FD5D4F417EA509D9C7CE23E5877C333F4D304 ] WwanSvc         C:\WINDOWS\System32\wwansvc.dll
16:07:05.0794 0x1200  WwanSvc - ok
16:07:05.0827 0x1200  [ 5DFAF8BE5A3CABAABF6795BC09EB7876, 1AFD0BC50EA5C2CCB2874E97FE5205175C80849BD6C9BDAF9FBC49174D478997 ] XblAuthManager  C:\WINDOWS\System32\XblAuthManager.dll
16:07:05.0842 0x1200  XblAuthManager - ok
16:07:05.0891 0x1200  [ 7118498F6E48758A2EF5A7D1982E2B62, 1FF75AE64CB6DB263E8B35515E092B325AA71A6B2210F8F2B0AD087B3BA33345 ] XblGameSave     C:\WINDOWS\System32\XblGameSave.dll
16:07:05.0909 0x1200  XblGameSave - ok
16:07:05.0945 0x1200  [ F279536122B83FD0D8E158AA753E1B7C, 6A542F28E24B30DBDC2EEE24DA33C2F4ADB3596AEDDD71DC1495DD40577CE4BB ] xboxgip         C:\WINDOWS\System32\drivers\xboxgip.sys
16:07:05.0953 0x1200  xboxgip - ok
16:07:06.0009 0x1200  [ 69E727F94BEA64E66C284F3C482F33E6, B3E0F287E7A251E0FC17C41089C45737027E54F0213BDE847356AC882B4D3700 ] XboxNetApiSvc   C:\WINDOWS\system32\XboxNetApiSvc.dll
16:07:06.0026 0x1200  XboxNetApiSvc - ok
16:07:06.0054 0x1200  [ DA0807D87A62D076C29C4E30F1E84F46, CA3079350038091AEE04D4DA7C06865E9DB3095120AE61AAB575AA77E86A6223 ] xinputhid       C:\WINDOWS\System32\drivers\xinputhid.sys
16:07:06.0055 0x1200  xinputhid - ok
16:07:06.0059 0x1200  ================ Scan global ===============================
16:07:06.0075 0x1200  [ 82E25186617BA6C15010F0D47C705705, 5BF9E38918E6EAE86448137E2D120B80318AA1143CDDF539A2BFBEE227646816 ] C:\WINDOWS\system32\basesrv.dll
16:07:06.0109 0x1200  [ E2899695BD30B5F93EC626EBBEF2CB69, B190D2903A109D2C146D881F90769060A0E971942F4AA61AEAD81861032D89C3 ] C:\WINDOWS\system32\winsrv.dll
16:07:06.0148 0x1200  [ 09E92888FFF86F3334E59778724DCA6F, 2344763B52395EF565A9DE5F55BEDCA026AD2E8072FFD06F826BF366B3BA2AB4 ] C:\WINDOWS\system32\sxssrv.dll
16:07:06.0173 0x1200  [ 6FF8248F3A9D69A095C7F3F42BC29CB2, 9077B1AA0AFB8DB329FDED0E51085DE1C51B22A986162F29037FCA404A80D512 ] C:\WINDOWS\system32\services.exe
16:07:06.0182 0x1200  [ Global ] - ok
16:07:06.0183 0x1200  ================ Scan MBR ==================================
16:07:06.0196 0x1200  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:07:06.0348 0x1200  \Device\Harddisk0\DR0 - ok
16:07:06.0352 0x1200  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk1\DR1
16:07:06.0360 0x1200  \Device\Harddisk1\DR1 - ok
16:07:06.0372 0x1200  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk3\DR3
16:07:06.0388 0x1200  \Device\Harddisk3\DR3 - ok
16:07:06.0389 0x1200  ================ Scan VBR ==================================
16:07:06.0393 0x1200  [ FFCCA868ACF21512E5ED85E616E208AB ] \Device\Harddisk0\DR0\Partition1
16:07:06.0477 0x1200  \Device\Harddisk0\DR0\Partition1 - ok
16:07:06.0480 0x1200  [ C5F81F9C9FA7B7817556924EC5C118CF ] \Device\Harddisk0\DR0\Partition2
16:07:06.0516 0x1200  \Device\Harddisk0\DR0\Partition2 - ok
16:07:06.0518 0x1200  [ 181EFC0222B36B24131684E8F807451D ] \Device\Harddisk1\DR1\Partition1
16:07:06.0522 0x1200  \Device\Harddisk1\DR1\Partition1 - ok
16:07:06.0524 0x1200  [ F0F58B385A84D1DF39C14D10FBB42C20 ] \Device\Harddisk3\DR3\Partition1
16:07:06.0530 0x1200  \Device\Harddisk3\DR3\Partition1 - ok
16:07:06.0530 0x1200  ================ Scan generic autorun ======================
16:07:06.0735 0x1200  [ A118C52E94780AEBFA52D05A3313CCF6, 26537CC3312B2C0477751152FDA18CECAC14023DCD1DB033944A11E12F449885 ] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
16:07:06.0807 0x1200  egui - ok
16:07:06.0812 0x1200  IgfxTray - ok
16:07:06.0813 0x1200  HotKeysCmds - ok
16:07:06.0814 0x1200  Persistence - ok
16:07:06.0857 0x1200  [ 747CEF68DA0B3BABD64B74C0E06C050E, C640AF94F66025E8B9937A37A361547580DB3F0B5F62F21E8B30A087BE018015 ] C:\Program Files\iTunes\iTunesHelper.exe
16:07:06.0863 0x1200  iTunesHelper - ok
16:07:06.0893 0x1200  [ 08B438A5A06CD877F19B92F6868C031D, 2011F2AE42A0F28D449167BD1003F7EFD6FDB4B22D52BFF9A8B556039148D556 ] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
16:07:06.0895 0x1200  NUSB3MON - ok
16:07:06.0984 0x1200  [ D3AC38E80E928CC61A22650E04423BB8, 8DB324E5BCC2A721EB0C48F0F3ECC21E49D6172A3BF8ACC55244C08FAEB3101C ] C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
16:07:07.0006 0x1200  EEventManager - ok
16:07:07.0055 0x1200  [ 256912AE51F711E74603C79D3EC668E2, DB133AA902F77C9728C997BABE7BD994459449B6114D2410B61D329C09C67411 ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXRCV.exe
16:07:07.0064 0x1200  FUFAXRCV - ok
16:07:07.0087 0x1200  [ A96A03B2F861024EACC1BC25664FFFC9, 00CF3B8AD668DB305EF93A89381AAC7252779B380F8CD00F82BEEED65469590A ] C:\Program Files (x86)\Epson Software\FAX Utility\FUFAXSTM.exe
16:07:07.0098 0x1200  FUFAXSTM - ok
16:07:07.0100 0x1200  SPIRunE - ok
16:07:07.0159 0x1200  [ 317CF97588135D958119B9B95F1A3BAE, 17F20B68B0840B2794087D3614E425B659748A183A96C390FBDB2456E043BA91 ] C:\Program Files (x86)\DoroPDFWriter\DoroServer.exe
16:07:07.0162 0x1200  DoroServer - ok
16:07:07.0247 0x1200  [ 12DDA5DE47461555B28954C6711399B4, 35AD5AD8C6E0479EC2FCEBEFA38E69227E5178B9B9D70E7891F9CEBE7491B80A ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
16:07:07.0273 0x1200  Wondershare Helper Compact.exe - ok
16:07:07.0368 0x1200  [ D153F7BA81BE77350F60E4942E00F34E, 8AA6A7500E88D547ED305788FA6084C89CA4D33F1B0B19EC29EA6656B889D230 ] C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
16:07:07.0394 0x1200  DelaypluginInstall - ok
16:07:07.0476 0x1200  [ 4C6AAABB264526A9C845A39AEBB79B69, B27F869E8B44CC5F1F9ADCA53AA848C16D706587ED9C7F995AE59BF9B0426523 ] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe
16:07:07.0486 0x1200  StartCCC - ok
16:07:07.0711 0x1200  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
16:07:07.0812 0x1200  OneDriveSetup - ok
16:07:07.0984 0x1200  [ 88F8A731DEA7F49D92F84A0A77C5CC67, 030458922DA43AAF6C95EC430860A73032616851E03E58170F71E918720717CB ] C:\Windows\SysWOW64\OneDriveSetup.exe
16:07:08.0083 0x1200  OneDriveSetup - ok
16:07:08.0196 0x1200  [ 7C0AA66E6352337EF923BA8B3AEB099D, C5498B7CBB6D8359BBFFBF998CF903626780D494B6AB88FC5951A7DE576DA3F6 ] C:\Users\Charles11\AppData\Roaming\mjusbsp\cdloader2.exe
16:07:08.0198 0x1200  cdloader - ok
16:07:08.0310 0x1200  [ F26070DBD5DF726CA0D0DF8661DF07DE, CD3E269AC07A1A0A96F22A723EBEBA32AAFF35E76A72C23BB8D95A6F0BFF5E91 ] C:\Program Files (x86)\i-Funbox DevTeam\iFunBox_x64.exe
16:07:08.0343 0x1200  iFunBox Fast App Install Handler - ok
16:07:08.0434 0x1200  [ F7BF95877017F53DDAEBC4E87A309168, F7849DBC61E5E7C42B97D011364ADC7C20257994FECBFA988C8CB2E779392F80 ] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
16:07:08.0438 0x1200  iCloudServices - ok
16:07:08.0505 0x1200  [ 7C6D524C78A1722AD987B9E47AC1FEE2, FFDC6C92ABB547D0DCD2621EC423C755A78079B061A41FA1751A56799D1A79A5 ] C:\Users\Charles11\AppData\Local\Dropbox\Update\DropboxUpdate.exe
16:07:08.0509 0x1200  Dropbox Update - ok
16:07:08.0572 0x1200  [ E129C1DABBB7A119C5C8A130ED1B861E, ADA962CF7956BDC9895FBA0E437330D3A5636C770B03F802AC98C7B985754B28 ] C:\Users\Charles11\AppData\Local\MangoApps\TinyTake by MangoApps\TinyTake by MangoApps.exe
16:07:08.0583 0x1200  TinyTake by MangoApps - ok
16:07:08.0660 0x1200  [ 8F2EA5EE0695CCE2285D92C44108375C, 2C96A8E7E41E87C27B6A3325526F99A03333357EF2682C17A4892BE4A58D157E ] C:\Users\Charles11\AppData\Local\Microsoft\OneDrive\OneDrive.exe
16:07:08.0677 0x1200  OneDrive - ok
16:07:08.0784 0x1200  [ CE5815B8C139B59291651CC4960D7421, B199606B8EE21BFFF1EA5F0F658AE70A8B105BC58FB3C0D586A4F728D726EBD8 ] C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
16:07:08.0805 0x1200  GarminExpressTrayApp - ok
16:07:08.0879 0x1200  [ 8D6D691AA7AA121AC048BA594AD7E647, 8583202D26BA894F30C222EF1DA155427E738DA7DF6C7EBDAA982DE070B88095 ] C:\Users\Charles11\AppData\Local\Apps\2.0\6LVLT6NP.9G2\YKVQ5ZGH.7ZE\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe
16:07:08.0889 0x1200  DellSystemDetect - ok
16:07:08.0973 0x1200  [ 41E25E514D90E9C8BC570484DBAFF62B, E6C49F7CE186DC4C9DA2C393469B070C0F1B95A01D281AE2B89538DA453D1583 ] C:\WINDOWS\system32\cmd.exe
16:07:08.0981 0x1200  Uninstall C:\Users\Charles11\AppData\Local\Microsoft\OneDrive\17.3.5892.0626\amd64 - ok
16:07:08.0982 0x1200  Waiting for KSN requests completion. In queue: 217
16:07:10.0003 0x1200  AV detected via SS2: Windows Defender, C:\Program Files\Windows Defender\MSASCui.exe ( 4.9.10586.0 ), 0x61100 ( enabled : updated )
16:07:10.0008 0x1200  Win FW state via NFP2: enabled ( trusted )
16:07:10.0312 0x1200  ============================================================
16:07:10.0312 0x1200  Scan finished
16:07:10.0312 0x1200  ============================================================
16:07:10.0322 0x1bc0  Detected object count: 0
16:07:10.0322 0x1bc0  Actual detected object count: 0



#4 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 18 June 2016 - 04:27 PM

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [842 bytes] ##########
# AdwCleaner v5.200 - Logfile created 18/06/2016 at 22:58:56
# Updated 14/06/2016 by ToolsLib
# Database : 2016-06-17.1 [Server]
# Operating system : Windows 10 Home  (X64)
# Username : Charles11 - CHARLES11-PC
# Running from : C:\Users\Charles11\Downloads\adwcleaner_5.200.exe
# Option : Clean
# Support : https://toolslib.net/forum

 
***** [ Services ] *****
 

***** [ Folders ] *****
 

***** [ Files ] *****
 

***** [ DLLs ] *****
 

***** [ WMI ] *****
 

***** [ Shortcuts ] *****
 

***** [ Scheduled tasks ] *****
 

***** [ Registry ] *****
 
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1663C10B-0D55-438D-8496-19A3DBAEC0E4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\dotomi.com
 
***** [ Web browsers ] *****
 

*************************
 
:: "Tracing" keys deleted
:: Winsock settings cleared
 
*************************
 
C:\AdwCleaner\AdwCleaner[C1].txt - [2002 bytes] - [29/01/2016 01:31:29]
C:\AdwCleaner\AdwCleaner[S1].txt - [2007 bytes] - [29/01/2016 01:29:03]
C:\AdwCleaner\AdwCleaner[S2].txt - [1260 bytes] - [18/06/2016 16:18:46]
C:\AdwCleaner\AdwCleaner[S3].txt - [1333 bytes] - [18/06/2016 16:20:49]
C:\AdwCleaner\AdwCleaner[S4].txt - [1412 bytes] - [18/06/2016 22:57:04]
 
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [2367 bytes] ##########

Edited by cbcac, 18 June 2016 - 11:06 PM.


#5 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 18 June 2016 - 04:30 PM

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 10 Home x64
Ran by Charles11 (Administrator) on Sat 06/18/2016 at 23:07:37.05
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 

File System: 0
 
 
 

Registry: 0
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 06/18/2016 at 23:08:54.52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Edited by cbcac, 18 June 2016 - 11:09 PM.


#6 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 18 June 2016 - 11:28 PM

* * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
 
Adware Removal Tool 5.1
Time: 2016_06_18_23_10_43
OS: Windows 10 Home - x64 Bit
Account Name: Charles11
Adware Definition: 06172016
Elapsed time: 10:34
Scan Status:- Automatic Done
 
\\\\\\\\\\\\\\\\\\\\\\\ Scan Logs \\\\\\\\\\\\\\\\\\\\\\
 
File Found : PUP.DnsUnlocker : C:\Users\Charles11\Appdata\Local\MangoApps\TinyTake by MangoApps\Microsoft.Win32.TaskScheduler.dll
 
* * * * * * * * * * * * * * * * * * * * * * * * * * * * * *

 

Adware Removal Tool 5.1

Time: 2016_06_18_23_10_43

OS: Windows 10 Home - x64 Bit

Account Name: Charles11

Adware Definition: 06172016

Elapsed time: 10:34

Repair Status:- Automatic Done

\\\\\\\\\\\\\\\\\\\\\\\ Repair Logs \\\\\\\\\\\\\\\\\\\\\\

[-] Deleted ->> File ->> C:\Users\Charles11\Appdata\Local\MangoApps\TinyTake by MangoApps\Microsoft.Win32.TaskScheduler.dll



#7 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 18 June 2016 - 11:41 PM

Zemana AntiMalware 2.21.2.15 (Installed)
 
-------------------------------------------------------
Scan Result            : Completed
Scan Date              : 2016/6/19
Operating System       : Windows 10 64-bit
Processor              : 8X Intel® Core™ i7-2600 CPU @ 3.40GHz
BIOS Mode              : Legacy
CUID                   : 12978D8DA9D68828FE5C39
Scan Type              : Deep Scan
Duration               : 24m 21s
Scanned Objects        : 598532
Detected Objects       : 0
Excluded Objects       : 0
Read Level             : SCSI
Auto Upload            : Enabled
Detect All Extensions  : Disabled
Scan Documents         : Disabled
Domain Info            : WORKGROUP,0,2
 
Detected Objects
-------------------------------------------------------
 
There are no detected objects

Edited by cbcac, 19 June 2016 - 12:13 AM.


#8 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 19 June 2016 - 12:54 AM

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 6/19/2016
Scan Time: 12:15 AM
Logfile: Mal.txt
Administrator: Yes
 
Version: 2.2.1.1043
Malware Database: v2016.06.18.03
Rootkit Database: v2016.05.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
 
OS: Windows 10
CPU: x64
File System: NTFS
User: Charles11
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 360859
Time Elapsed: 36 min, 46 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 1
PUP.Optional.VulnerableDellSystemDetect, HKU\S-1-5-21-2864688965-1921290554-1084152024-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN|DellSystemDetect, C:\Users\Charles11\AppData\Local\Apps\2.0\6LVLT6NP.9G2\YKVQ5ZGH.7ZE\dell..tion_e30b47f5d4a30e9e_0005.000d_4ab2a66cfade09be\DellSystemDetect.exe, , [f07bd826b5e40036b81889443cc7ac54]
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 

(end)


#9 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 19 June 2016 - 01:02 AM

SecurityCheck by glax24 & Severnyj v.1.4.0.40 [21.05.16]
WebSite: www.safezone.cc
DateLog: 19.06.2016 01:00:57
Path starting: C:\Users\Charles11\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe
Log directory: C:\SecurityCheck\
IsAdmin: True
User: Charles11
VersionXML: 3.09is-18.06.2016
___________________________________________________________________________
 
Windows 10(6.3.10586) (x64) Core Lang: English(0409)
Installation date OS: 17.05.2016 22:54:12
LicenseStatus: Windows®, Core edition The machine is permanently activated.
Boot Mode: Normal
Default Browser: Internet Explorer (C:\Program Files\Internet Explorer\iexplore.exe)
SystemDrive: C: FS: [NTFS] Capacity: [919.7 Gb] Used: [252.6 Gb] Free: [667.1 Gb]
------------------------------- [ Windows ] -------------------------------
Internet Explorer 11.420.10586.0
User Account Control enabled
Automatic download and scheduled installation
Windows Update (wuauserv) - The service has stopped
Security Center (wscsvc) - The service is running
Remote Registry (RemoteRegistry) - The service has stopped
SSDP Discovery (SSDPSRV) - The service is running
Remote Desktop Services (TermService) - The service has stopped
World Wide Web Publishing Service (W3SVC) - The service is running
Windows Remote Management (WS-Management) (WinRM) - The service has stopped
------------------------------ [ MS Office ] ------------------------------
Microsoft Office 2010 x86 v.14.0.7015.1000
---------------------------- [ Antivirus_WMI ] ----------------------------
Windows Defender (disabled and up to date)
--------------------------- [ FirewallWindows ] ---------------------------
Windows Firewall (MpsSvc) - The service is running
--------------------------- [ AntiSpyware_WMI ] ---------------------------
Windows Defender (disabled and up to date)
ESET NOD32 Antivirus 8.0 (disabled)
---------------------- [ AntiVirusFirewallInstall ] -----------------------
ESET NOD32 Antivirus v.8.0.319.0
ESET Online Scanner v3
-------------------------- [ SecurityUtilities ] --------------------------
Malwarebytes Anti-Malware version 2.2.1.1043 v.2.2.1.1043
Zemana AntiMalware v.2.21.15
Spybot - Search & Destroy v.1.6.2
--------------------------- [ AppleProduction ] ---------------------------
Bonjour v.3.1.0.1
iTunes v.12.4.1.6
QuickTime 7 v.7.79.80.95 Warning! This software is no longer supported. Please uninstall it and use another software.
Bonjour Service (Bonjour Service) - The service is running
--------------------------- [ AdobeProduction ] ---------------------------
Adobe Acrobat Reader DC v.15.016.20045
--------------------------- [ RunningProcess ] ----------------------------
C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe v.11.0.10586.420
------------------ [ AntivirusFirewallProcessServices ] -------------------
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe v.8.0.319.0
ESET Service (ekrn) - The service is running
C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe v.8.0.319.0
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe v.2.3.173.0
MBAMScheduler (MBAMScheduler) - The service is running
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe v.3.1.7.0
MBAMService (MBAMService) - The service is running
C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe v.3.2.21.0
Windows Defender Network Inspection Service (WdNisSvc) - The service has stopped
Windows Defender Service (WinDefend) - The service has stopped
Windows Defender Network Inspection Service (WdNisSvc) - The service has stopped
ZAM Controller Service (ZAMSvc) - The service is running
C:\Program Files (x86)\Zemana AntiMalware\ZAM.exe v.0.0.0.0
---------------------------- [ UnwantedApps ] -----------------------------
Auslogics Duplicate File Finder v.5.1.2.0 Warning! Suspected demo version of anti-spyware or optimization program - scareware or badware. Uninstallation recommended. Possible you became a victim of fraud or social engineering.
----------------------------- [ End of Log ] ------------------------------


#10 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 19 June 2016 - 01:33 AM

-|x| RstHosts v2.0 - Rapport créé le 19/06/2016 à 01:32:34
-|x| Système d'exploitation : Windows 10 Home  (64 bits)
-|x| Nom d'utilisateur : Charles11 - CHARLES11-PC (Administrateur)
 
-|x|- Informations -|x|-
 
Emplacement : C:\WINDOWS\System32\drivers\etc\hosts
Attribut(s) : RASH
Propriétaire : Administrators - BUILTIN
Taille : 89 bytes
Date de création : 13/07/2009 - 21:34:48
Date de modification : 19/06/2016 - 01:32:21
Date de dernier accès : 19/06/2016 - 01:32:21
 
-|x|- Contenu du fichier -|x|-
 
# Fichier Hosts créé par RstHosts
 
127.0.0.1       localhost
::1             localhost
 
-|x|- E.O.F - C:\RstHosts.txt - 611 bytes -|x|-


#11 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 19 June 2016 - 09:17 AM

¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Pre_Scan | g3n-h@ckm@n | 6_13.06.2016.1 ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤
 
¤¤¤¤¤ XP | Vista | 7 | 8 - 32/64 bits ¤¤¤¤¤ - Start 01:36:51
 
Updated 13/06/2016 | 18.25 by g3n-h@ckm@n
Contact : http://www.sosvirus.net/
Pre_scan Feedbacks : http://www.sosvirus.net/feedback-t74962.html
 
[Charles11 (Administrator)] - [CHARLES11-PC]
SID = S-1-5-21-2864688965-1921290554-1084152024-1000
 
Boot: Normal boot
System : Windows 10 Home (64 bits) Core
ProcessorNameString : Intel® Core™ i7-2600 CPU @ 3.40GHz
Identifier : Intel64 Family 6 Model 42 Stepping 7
CoreTemp : -1 Celsius - Max :  Celsius
 
Memory RAM = Total (MB) : 16759 | Free (MB) : 13714
Pagefile = Total (MB) : 17808 | Free (MB) : 14901
Virtual = Total (MB) : 4194 | Free (MB) : 3941
 
¤¤¤¤¤¤¤¤¤¤ # Components of starting up
 

¤¤¤¤¤¤¤¤¤¤¤ # Drives
 
Z:\-> [Fixed] | [My Book] | Total : 2794.49 Go | Free : 1812.42 Go -> NTFS [USB]
Y:\-> [Fixed] | [Iomega HDD] | Total : 931.51 Go | Free : 151.61 Go -> NTFS [USB]
D:\-> [CDROM] | [Printables] | Total : 0.01 Go | Free : 0 Go -> UDF [SATA]
C:\-> [Fixed] | [] | Total : 919.69 Go | Free : 693.14 Go -> NTFS [SATA]
 
¤¤¤¤¤¤¤¤¤¤ # Windows updates
 
No detected update !!!
 
Microsoft : +
 

¤¤¤¤¤¤¤¤¤¤ # Sessions
 
C:\WINDOWS\system32\config\systemprofile
C:\Windows\ServiceProfiles\LocalService
C:\Windows\ServiceProfiles\NetworkService
C:\Users\Charles11
 
Registry saved , to restore :  Shortcut on the desktop 'Pre_Scan_Restore' Restore the register (C:\Pre_Scan\Save\Registry [19.06.2016 @ 01_36_19])
To restore File or Folder : Shortcut on the desktop 'Pre_Scan_Restore' , select 'restore File - Folder' , select an Item and click on Restore
 
¤¤¤¤¤¤¤¤¤¤ # Browsers
 
IE : 11.0.10586.420     (© Microsoft Corporation.)
 
¤¤¤¤¤¤¤¤¤¤ # FlashPlayer
 
ActiveX : 22.0.0.192
 
���������� # Security
 
AM : Malwarebytes Anti-Malware   (2.3.173.0)     []
FW :
WMI : OK
WU: Windows Update Service [Manual(3)] = Running
AS: Windows Defender [Auto(2)] = Running
FW: Windows FireWall Service [Auto(2)] = Running
 
¤¤¤¤¤¤¤¤¤¤ # Stopped processes
 
4716 | [Owner : SYSTEM |Parent : 832] - (.Microsoft Corporation - Sink to receive asynchronous callbacks for WMI client application.) - (10.0.10586.0) = C:\Windows\System32\wbem\unsecapp.exe
2968 | [Owner : Charles11 |Parent : 368] - (.Microsoft Corporation - Shell Infrastructure Host.) - (10.0.10586.0) = C:\Windows\System32\sihost.exe
768 | [Owner : Charles11 |Parent : 4756] - (.Microsoft Corporation - Windows Explorer.) - (10.0.10586.420) = C:\Windows\explorer.exe
5100 | [Owner : LogonSessionId_0_607649 |Parent : 732] - (.Microsoft Corporation - Microsoft Windows Search Indexer.) - (7.0.10586.0) = C:\Windows\System32\SearchIndexer.exe
9256 | [Owner : SYSTEM |Parent : 5100] - (.Microsoft Corporation - Microsoft Windows Search Protocol Host.) - (7.0.10586.0) = C:\Windows\System32\SearchProtocolHost.exe
9912 | [Owner :  |Parent : 732] - (.Microsoft Corporation - Antimalware Service Executable.) - (4.9.10586.0) = C:\Program Files\Windows Defender\MsMpEng.exe
4972 | [Owner : LOCAL SERVICE |Parent : 444] - (.Microsoft Corporation - Device Association Framework Provider Host.) - (10.0.10586.0) = C:\Windows\System32\dasHost.exe
2236 | [Owner : LOCAL SERVICE |Parent : 444] - (.Microsoft Corporation - Windows Driver Foundation - User-mode Driver Framework Host Process.) - (10.0.10586.0) = C:\Windows\System32\WUDFHost.exe
7176 | [Owner : Charles11 |Parent : 832] - (. - .) - (10.1.2123.36) = C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
1100 | [Owner : Charles11 |Parent : 832] - (.Microsoft Corporation - Runtime Broker.) - (10.0.10586.0) = C:\Windows\System32\RuntimeBroker.exe
8792 | [Owner : Charles11 |Parent : 11180] - (.Microsoft Corporation - Windows Command Processor.) - (10.0.10586.0) = C:\Windows\SysWOW64\cmd.exe
4652 | [Owner : Charles11 |Parent : 8792] - (.Microsoft Corporation - Console Window Host.) - (10.0.10586.0) = C:\Windows\System32\conhost.exe
7468 | [Owner : Charles11 |Parent : 8792] - (.SteelWerX - Freeware implementation of XCACLS.) - (1.0.2.0) = C:\AdsFix\smss.exe
7828 | [Owner : LogonSessionId_0_5714668 |Parent : 732] - (.Microsoft Corporation - Spooler SubSystem App.) - (10.0.10586.122) = C:\Windows\System32\spoolsv.exe
11148 | [Owner : SYSTEM |Parent : 732] - (.Intel Corporation - Local Manageability Service.) - (7.0.0.1135) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
8940 | [Owner : Charles11 |Parent : 732] - (.Microsoft Corporation - Host Process for Windows Services.) - (10.0.10586.0) = C:\Windows\System32\svchost.exe
4124 | [Owner : SYSTEM |Parent : 732] - (.Apple Inc. - MobileDeviceService.) - (17.364.0.84) = C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
9492 | [Owner : LogonSessionId_0_6144930 |Parent : 732] - (.Microsoft Corporation - Message Queuing Service.) - (10.0.10586.0) = C:\Windows\System32\mqsvc.exe
7124 | [Owner : Charles11 |Parent : 832] - (.Microsoft Corporation - Application Frame Host.) - (10.0.10586.0) = C:\Windows\System32\ApplicationFrameHost.exe
10984 | [Owner : Charles11 |Parent : 832] - (.Microsoft Corporation - Microsoft Edge.) - (11.0.10586.420) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
9652 | [Owner : Charles11 |Parent : 832] - (.Microsoft Corporation - Browser_Broker.) - (11.0.10586.0) = C:\Windows\System32\browser_broker.exe
7616 | [Owner : Charles11 |Parent : 1100] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.10586.20) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
9668 | [Owner : Charles11 |Parent : 1100] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.10586.20) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
7832 | [Owner : Charles11 |Parent : 1100] - (.Microsoft Corporation - Microsoft Edge Content Process.) - (11.0.10586.20) = C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
3600 | [Owner : Charles11 |Parent : 832] - (.Microsoft Corporation - Settings.) - (10.0.10586.11) = C:\Windows\ImmersiveControlPanel\SystemSettings.exe
3652 | [Owner : Charles11 |Parent : 768] - (.Microsoft Corporation - Windows Defender User Interface.) - (4.9.10586.0) = C:\Program Files\Windows Defender\MSASCui.exe
 
¤¤¤¤¤¤¤¤¤¤ # Winlogon user
 

¤¤¤¤¤¤¤¤¤¤ # Winlogon machine
 
Repaired : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon]~[userinit] :  -> C:\WINDOWS\SYSWOW64\userinit.exe,
 
¤¤¤¤¤¤¤¤¤¤ # SafeBoot
 
Safeboot Keys are O.K
 
Alternate shell is OK !
 
 

¤¤¤¤¤¤¤¤¤¤ # IFEO
 

¤¤¤¤¤¤¤¤¤¤ # Mountpoints2
 
 
 
¤¤¤¤¤¤¤¤¤¤ # Windows
 
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]~[Shell] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon
[HKLM\Software\Microsoft\Windows NT\CurrentVersion\IniFileMapping\win.ini]~[winlogon] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon
[HKLM\Software\WOW6432Node\Microsoft\Windows NT\CurrentVersion\IniFileMapping\system.ini\Boot]~[Shell] : SYS:Microsoft\Windows NT\CurrentVersion\Winlogon
 
¤¤¤¤¤¤¤¤¤¤ # Security center
 
 
 

¤¤¤¤¤¤¤¤¤¤ # Services
 

Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\Compbatt]~[Start] :  -> 0
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\srService]~[Start] :  -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\PlugPlay]~[Start] : 3 -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\Parvdm]~[Start] :  -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\NVSvc]~[Start] :  -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\NIHardwareService]~[Start] :  -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\IKEEXT]~[Start] : 3 -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\IAStorDataMgrsvc]~[Start] :  -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\lmhosts]~[Start] : 3 -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\agp440]~[Start] : 0 -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\ERSvc]~[Start] :  -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\EapHost]~[Start] : 3 -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\Wlansvc]~[Start] : 3 -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess]~[Start] : 4 -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\wuauserv]~[Start] : 3 -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\wudfsvc]~[Start] : 3 -> 2
Repaired : [HKLM\SYSTEM\CurrentControlSet\Services\WerSvc]~[Start] : 3 -> 2
 
¤¤¤¤¤¤¤¤¤¤ # Internet Explorer
 

¤¤¤¤¤¤¤¤¤¤ # reparsepoint
 
 
 
¤¤¤¤¤¤¤¤¤¤ # Offsets
 

¤¤¤¤¤¤¤¤¤¤ # Files | Folders | Registry
 

Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$I1TWFQA.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$I4TMG1H.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$I8SRME6.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$I9DDJ46.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IAFZ5IG.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IC9XNOY.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$ICYUY5O.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$ID2XZIG.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IDYKLIS.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IF64TJR.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IIYYG61.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IJKRSXB.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IKCCEKT.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IN1XHOP.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$INTXTRC.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IO0LYXY.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IPGH7UX.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IQQXFLO.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IQSPHFX.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IR2ZDK1.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$ITOUMKJ.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IUQWIDW.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IVO3AWI.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IVSA6KK.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IY6O0N5.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IYJCTVS.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IYXLIEG.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$IZY9QJ5.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$R1TWFQA.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$R4TMG1H.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$R9DDJ46.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RAFZ5IG.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RC9XNOY.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RCYUY5O.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RD2XZIG.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RDYKLIS.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RF64TJR.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RIYYG61.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RJKRSXB.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RKCCEKT.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RN1XHOP.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RNTXTRC.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RO0LYXY.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RPGH7UX.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RQQXFLO.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RQSPHFX.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RR2ZDK1.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RTOUMKJ.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RUQWIDW.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RVO3AWI.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RVSA6KK.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RY6O0N5.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RYJCTVS.exe
Moved to quarantine successfully : C:\$Recycle.bin\S-1-5-21-2864688965-1921290554-1084152024-1000\$RYXLIEG.exe
Deleted : HKU\S-1-5-21-2864688965-1921290554-1084152024-1000\Software\talk4free
 

¤¤¤¤¤¤¤¤¤¤ # ADS
 

Prefetch -> cleaned
 

Y:\ : Vaccinated (Vaccin created by Pre_Scan)
Z:\ : Vaccinated (Vaccin created by Pre_Scan)
 
���������� | Hidden files
 
~ [Drive Y:] : Hidden : 2117 | Restored : 2117
~ [Drive Z:] : Hidden : 3583 | Restored : 3583
~ [Drive C:] : Hidden : 3 | Restored : 3
~ [Program Files] : Hidden : 2 | Restored : 2
~ [Users] : Hidden : 2 | Restored : 2
~ [Music] : Hidden : 2 | Restored : 2
~ [Searches] : Hidden : 2 | Restored : 2
~ [Windows] : Hidden : 46 | Restored : 43
~ [AppData] : Hidden : 24 | Restored : 24
 

¤¤¤¤¤¤¤¤¤¤ # Drives
 
 Disk: 0   Size=954G
 Pos MBRndx Type/Name  Size Active Hide Start Sector   Sectors
 --- ------ ---------- ---- ------ ---- ------------ ------------
  0    0    DE-UNKNWN   39M   No    No            63       80,262
  1    1    07-NTFS     12G   Yes   No        81,920   24,711,168
  2    2    07-NTFS    942G   No    No    24,793,088  928,728,576
 
¤¤¤¤¤¤¤¤¤¤
 
Repaired : [HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]~[AutoRestartShell] : 0 -> 1
Repaired : [HKLM\SOFTWARE\WOW6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon]~[AutoRestartShell] :  -> 1
 
End : 02:35:51
 

¤¤¤¤¤¤¤¤¤¤( EOF )¤¤¤¤¤¤¤¤¤¤ - 256


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:48 PM

Posted 28 June 2016 - 12:58 PM

Did ESET online scan find anything?

Try uninstalling
Garmin Device

Auslogics

QuickTime 7 v.7.79.80.95 Warning! This software is no longer supported


Reboot
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 28 June 2016 - 10:05 PM

Garmin and Quicktime are gone.  Auslogics is a cool dup finder that helps me with the project of cleaning up some drives I have that have become cluttered over the years.  I could remove it if you think it is a problem but I have had it along time and didn't notice it being a problem back then. 

 

I have ESET NOD 32 Antivirus but it just expired.  You helped me with a virus back in 2014.  I bought ESET after you helped me with some recommendations.  Thanks for that because it has been great.  I am trying to decide if I should renew it or get something new.  I now need something for two computers and it needs to have parental controls.  I wasn't going to mention it here just saying that to say I didn't run the online scanner at first because I had the ESET AV installed.  I am running it now because it is expired now.  Results in next post....it is still running.  Should I start another post with the AV/parental control question or do you want to give an opinion here?  I wasn't sure what forum it belonged in so I didn't post it yet.



#14 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,082 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:01:48 PM

Posted 29 June 2016 - 09:07 AM

Ok , I'll look back.. I like ESET.. I have no experiencewith Parenatal controls.
We can put Auslogics back.. I was seeing errors with those apps and wanted to see if we can clear them.

after ESET and app removal rerun MiniToolBox
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#15 cbcac

cbcac
  • Topic Starter

  • Members
  • 79 posts
  • OFFLINE
  •  
  • Local time:11:48 AM

Posted 29 June 2016 - 02:58 PM

ESET was clear.  It wont let me post the screen shot though I am not sure why. 






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users