Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

email / outlook is sending emails with my email address


  • This topic is locked This topic is locked
35 replies to this topic

#1 bpdx

bpdx

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:57 AM

Posted 27 June 2016 - 02:20 PM

hello:

 

i have been trying to fix my email/outlook spam issue.  emails are going out WITH my actual email address, sending emails to people in my contacts, etc.

I also have been getting a ton of spam emails myself.

 

I use:

 

-Windows 7 Pro

-64 Bit

-Outlook 2010

-I have our own domain name email address, that is hosted by Frontier

 

Odd thing:  I changed my password for my email, but my outlook kept sending/receiving with the old password.

When I tried to update  the new password in outlook (which I verified by using the webmail versus outlook), it would not accept it.

 

Thank you for any help you can provide.



BC AdBot (Login to Remove)

 


#2 bpdx

bpdx
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:57 AM

Posted 27 June 2016 - 02:25 PM

Here is my FRST logs:

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 26-06-2016 02
Ran by LS (administrator) on LS-PC (27-06-2016 12:22:27)
Running from C:\Users\LS\Downloads
Loaded Profiles: LS (Available Profiles: LS)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: English (United States)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\WINDOWS\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe
(Intel Corporation) C:\WINDOWS\System32\IPROSetMonitor.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Ready Mode Technology\IRMTService.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\nis.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\RtkBleServ.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\nis.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
() C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\WINDOWS\System32\GWX\GWX.exe
() C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\nacl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\nacl64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\SysWOW64\cmd.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\conathst.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
(Dell Products, LP.) C:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
(Dell) C:\Program Files\Dell\Dell Foundation Services\DFS.Common.Agent.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe
(Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe
(Intel Corporation) C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
(Dell Inc.) C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
(Dell Inc.) C:\Program Files\Dell\DellDataVault\DellDataVault.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRSync.exe
(PC-Doctor, Inc.) C:\Program Files\Dell\SupportAssist\uaclauncher.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
 
 
==================== Registry (Whitelisted) ===========================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8484056 2015-06-12] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1393880 2015-04-28] (Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [611248 2015-04-19] (Waves Audio Ltd.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1795888 2015-08-07] (NVIDIA Corporation)
HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [229080 2015-06-02] (Realtek Semiconductor Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [176952 2016-05-11] (Apple Inc.)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [296216 2015-06-15] (Intel Corporation)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems Inc.)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2016-02-03] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKU\S-1-5-21-1104474335-721816600-3274321384-1000\...\Run: [AdobeBridge] => [X]
ShellIconOverlayIdentifiers: [  OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.7.0.76\buShell.dll [2016-06-08] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.7.0.76\buShell.dll [2016-06-08] (Symantec Corporation)
ShellIconOverlayIdentifiers: [  OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Internet Security\Engine64\22.7.0.76\buShell.dll [2016-06-08] (Symantec Corporation)
ShellIconOverlayIdentifiers: [DBRShellOverlayBackupFile] -> {831CEBDD-6BAF-4432-BE76-9E0989C14AEF} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconBackuped.dll [2014-12-30] (Softthinks SAS)
ShellIconOverlayIdentifiers: [DBRShellOverlayModifiedBackupFile] -> {275E4FD7-21EF-45CF-A836-832E5D2CC1B3} => C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBROverlayIconNotBackuped.dll [2014-12-30] (Softthinks SAS)
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
Tcpip\Parameters: [DhcpNameServer] 10.0.0.1
Tcpip\..\Interfaces\{C77FF7E7-EA0C-46BB-AE12-0CBC3FD745D7}: [DhcpNameServer] 10.0.0.1
 
Internet Explorer:
==================
HKU\S-1-5-21-1104474335-721816600-3274321384-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.yardiasptx10.com/84641wilsonville/pages/Login.aspx
HKU\S-1-5-21-1104474335-721816600-3274321384-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://dell13.msn.com/?pc=DCTE
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 -> DefaultScope {FD41AE65-0BE9-4311-80CC-5680043B6909} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
SearchScopes: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 -> {01D9A51C-C515-480F-9C72-5C75F1FCBA78} URL = 
SearchScopes: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 -> {FD41AE65-0BE9-4311-80CC-5680043B6909} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine64\22.7.0.76\coIEPlg.dll [2016-05-31] (Symantec Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Norton Identity Protection -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\coIEPlg.dll [2016-05-31] (Symantec Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
Toolbar: HKLM - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.7.0.76\coIEPlg.dll [2016-05-31] (Symantec Corporation)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\coIEPlg.dll [2016-05-31] (Symantec Corporation)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 -> Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine64\22.7.0.76\coIEPlg.dll [2016-05-31] (Symantec Corporation)
Toolbar: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
DPF: HKLM-x32 {2DEF4530-8CE6-41C9-84B6-A54536C90213} hxxps://www.yardiasptx10.com/84641wilsonville/activexviewer9.cab
 
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-12-18] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-08-24] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-06] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-06] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.6.0.142\coFFAddon
FF Extension: Norton Identity Safe - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.6.0.142\coFFAddon [2016-06-21]
FF HKLM-x32\...\Firefox\Extensions: [{C1A2A613-35F1-4FCF-B27F-2840527B6556}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_22.6.0.142\coFFAddon
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2016-05-19] [not signed]
 
Chrome: 
=======
CHR Profile: C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-03]
CHR Extension: (Google Docs) - C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-03]
CHR Extension: (Google Drive) - C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-03]
CHR Extension: (YouTube) - C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-03]
CHR Extension: (Norton Security Toolbar) - C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjabmdjcfcfdmffimndhafhblfmpjdpe [2016-05-03]
CHR Extension: (Google Sheets) - C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-03]
CHR Extension: (Google Docs Offline) - C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-03]
CHR Extension: (Norton Identity Safe) - C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default\Extensions\iikflkcanblccfahdhdonehdalibjnif [2016-05-03]
CHR Extension: (Chrome Web Store Payments) - C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-03]
CHR Extension: (Gmail) - C:\Users\LS\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-03]
CHR HKLM\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\Exts\Chrome.crx [2016-06-20]
CHR HKLM\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [cjabmdjcfcfdmffimndhafhblfmpjdpe] - C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\Exts\Chrome.crx [2016-06-20]
CHR HKLM-x32\...\Chrome\Extension: [iikflkcanblccfahdhdonehdalibjnif] - hxxps://clients2.google.com/service/update2/crx
 
==================== Services (Whitelisted) ========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-03-02] (Apple Inc.)
R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [41176 2015-03-02] (Realtek Semiconductor Corporation)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [120024 2015-07-02] ()
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [139504 2016-01-27] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [139504 2016-01-27] (Dropbox, Inc.)
R2 Dell Foundation Services; C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe [153960 2016-04-29] (Dell)
R2 DellDataVault; C:\Program Files\Dell\DellDataVault\DellDataVault.exe [2572024 2016-03-10] (Dell Inc.)
R2 DellDataVaultWiz; C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe [202488 2016-03-10] (Dell Inc.)
R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237272 2015-08-27] (Dell Inc.)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [18856 2015-06-23] (Intel Corporation)
S3 Intel® Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Corporation)
R2 IRMTService; c:\Program Files\Intel\Intel® Ready Mode Technology\IRMTService.exe [181520 2015-06-17] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [207648 2015-09-04] (Intel Corporation)
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe [289080 2016-06-16] (Symantec Corporation)
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [294616 2015-05-22] (Realtek Semiconductor)
R2 RtkBleServ; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\RtkBleServ.exe [51416 2015-01-04] (Realtek Semiconductor Corporation)
R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [2020240 2015-01-23] (SoftThinks SAS)
R2 SupportAssistAgent; C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe [31928 2016-04-22] (Dell Inc.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
R2 WavesSysSvc; C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe [563456 2015-01-19] (Waves Audio Ltd.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2015-07-22] (Microsoft Corporation)
 
===================== Drivers (Whitelisted) ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
R1 BHDrvx64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\BASHDefs\20160621.003\BHDrvx64.sys [1832176 2016-05-12] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1607000.04C\ccSetx64.sys [174328 2016-06-01] (Symantec Corporation)
R3 DDDriver; C:\Windows\System32\drivers\DDDriver64Dcsa.sys [32464 2016-01-05] (Dell Computer Corporation)
R3 DellProf; C:\Windows\System32\drivers\DellProf.sys [24240 2016-01-05] (Dell Computer Corporation)
R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [501216 2015-07-09] (Intel Corporation)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [497392 2016-05-04] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [156912 2016-05-04] (Symantec Corporation)
S3 hitmanpro37; C:\Windows\system32\drivers\hitmanpro37.sys [49584 2016-05-06] ()
R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [31144 2015-06-22] (Intel Corporation)
R1 IDSVia64; C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\IPSDefs\20160624.001\IDSvia64.sys [876248 2016-05-25] (Symantec Corporation)
R3 IntelReadyModeDriver; C:\Windows\System32\DRIVERS\IntelReadyModeDriver.sys [33512 2015-06-17] (Intel Corporation)
S3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-06-27] (Malwarebytes)
R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [179456 2015-08-31] (Intel Corporation)
R3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [598272 2015-05-28] (Realtek Semiconductor Corporation)
R3 RTWlanE; C:\Windows\System32\DRIVERS\rtwlane.sys [4483288 2015-08-03] (Realtek Semiconductor Corporation                           )
R3 SRTSP; C:\Windows\System32\Drivers\NISx64\1607000.04C\SRTSP64.SYS [773360 2016-06-01] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1607000.04C\SRTSPX64.SYS [48888 2016-06-01] (Symantec Corporation)
R0 SymEFASI; C:\Windows\System32\drivers\NISx64\1607000.04C\SYMEFASI64.SYS [1627352 2016-06-01] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [101112 2016-06-20] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1607000.04C\Ironx64.SYS [291056 2016-06-01] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1607000.04C\SYMNETS.SYS [567536 2016-06-01] (Symantec Corporation)
S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\SDSDefs\20160621.001\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\SDSDefs\20160621.001\EX64.SYS [X]
 
==================== NetSvcs (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== One Month Created files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-06-27 12:22 - 2016-06-27 12:22 - 00024097 _____ C:\Users\LS\Downloads\FRST.txt
2016-06-27 12:22 - 2016-06-27 12:22 - 00000000 ____D C:\FRST
2016-06-27 12:21 - 2016-06-27 12:21 - 02389504 _____ (Farbar) C:\Users\LS\Downloads\FRST64.exe
2016-06-27 12:03 - 2016-06-27 12:03 - 03703360 _____ C:\Users\LS\Downloads\AdwCleaner.exe
2016-06-27 11:57 - 2016-06-27 11:57 - 00022395 _____ C:\Users\LS\Desktop\Ten Sellwood for Lucia.xlsx
2016-06-27 11:53 - 2016-06-27 11:53 - 00021974 _____ C:\Users\LS\Downloads\Ten Sellwood for Lucia.xlsx
2016-06-27 11:25 - 2016-06-27 11:25 - 00000000 ____D C:\Users\LS\AppData\Local\NPE
2016-06-22 12:48 - 2016-06-22 12:48 - 00169356 _____ C:\Users\LS\Desktop\Copy of 2016 Healthnet calculation 3-30-16 updated cj.xlsx
2016-06-22 10:16 - 2016-06-22 10:16 - 13677800 _____ (Google) C:\Users\LS\Downloads\picasa39-setup.exe
2016-06-21 09:46 - 2016-06-21 09:46 - 00000000 ____D C:\Program Files\Common Files\AV
2016-06-21 09:36 - 2016-06-21 09:36 - 00000000 ____D C:\Windows\System32\Tasks\Norton Internet Security
2016-06-21 09:30 - 2016-06-21 09:30 - 00003234 _____ C:\Windows\System32\Tasks\Norton WSC Integration
2016-06-20 09:49 - 2016-06-20 09:49 - 00004096 ____H C:\Users\LS\AppData\Local\keyfile3.drm
2016-06-20 09:48 - 2016-06-20 09:48 - 00001104 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-06-16 15:20 - 2016-06-16 15:22 - 00011875 _____ C:\Users\LS\Desktop\trip.xlsx
2016-06-16 12:32 - 2016-06-16 12:32 - 00000000 ____D C:\Users\LS\AppData\Local\Stamps.com
2016-06-16 12:30 - 2016-06-27 11:07 - 00000000 ____D C:\Users\LS\AppData\Local\IIIQ
2016-06-16 12:30 - 2016-06-16 12:32 - 00000000 ____D C:\ProgramData\miaA9C8.tmp
2016-06-16 12:30 - 2016-06-16 12:30 - 06740064 _____ (Stamps.com ) C:\Users\LS\Downloads\stamps.com.plugin.exe
2016-06-15 15:13 - 2016-06-20 14:36 - 01637694 _____ C:\Users\LS\Desktop\Amex 2016.xlsm
2016-06-15 14:20 - 2016-06-15 15:13 - 00012878 _____ C:\Users\LS\Documents\Apr 27, 2016 to May 27, 2016.xlsx
2016-06-14 12:58 - 2016-06-14 12:59 - 00023033 _____ C:\Users\LS\Desktop\Income_Statement_50036_accrual.xlsx
2016-06-14 12:57 - 2016-06-14 12:57 - 00010057 _____ C:\Users\LS\Desktop\Income_Statement_50036_accrual.xls.htm
2016-06-14 12:57 - 2016-06-14 12:57 - 00000000 ____D C:\Users\LS\Desktop\Income_Statement_50036_accrual.xls_files
2016-06-13 15:12 - 2016-06-13 15:12 - 00000095 _____ C:\Users\LS\Desktop\pop3.txt
2016-06-13 09:39 - 2016-06-13 09:39 - 02562453 _____ C:\Users\LS\Downloads\Chakraca.pdf
2016-06-10 13:26 - 2016-06-10 13:26 - 00009273 _____ C:\Users\LS\Downloads\e2e0dbe3315c403dc13e7ce9e5a4c0be
2016-06-07 11:53 - 2016-06-07 11:53 - 00012011 _____ C:\Users\LS\Desktop\bonuses.xlsx
2016-06-06 14:56 - 2016-06-06 15:00 - 00030208 _____ C:\Users\LS\Desktop\Copy of Pay rate history as of 6-6-16-2.xls
2016-06-06 14:54 - 2016-06-06 14:54 - 00030208 _____ C:\Users\LS\Desktop\Copy of Pay rate history as of 6-6-16.xls
2016-06-02 14:42 - 2016-06-02 14:42 - 00039285 _____ C:\Users\LS\Documents\Copy of 2016-06-01. TE CAP ACCT ANALAYSIS copy (2).xlsx
2016-06-02 13:00 - 2016-06-02 13:00 - 00001755 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-06-02 13:00 - 2016-06-02 13:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2016-06-02 13:00 - 2016-06-02 13:00 - 00000000 ____D C:\Program Files\iTunes
2016-06-02 13:00 - 2016-06-02 13:00 - 00000000 ____D C:\Program Files\iPod
2016-06-02 13:00 - 2016-06-02 13:00 - 00000000 ____D C:\Program Files (x86)\iTunes
2016-06-01 12:28 - 2016-06-01 12:28 - 00035328 _____ (Intuit) C:\Users\LS\Downloads\POS176125 (2).exe
2016-06-01 12:20 - 2016-06-01 12:20 - 00035328 _____ (Intuit) C:\Users\LS\Downloads\POS176125.exe
2016-06-01 12:20 - 2016-06-01 12:20 - 00035328 _____ (Intuit) C:\Users\LS\Downloads\POS176125 (1).exe
2016-06-01 10:31 - 2016-06-01 10:31 - 00000648 _____ C:\Users\LS\Downloads\8237E08DA053B199EF2ADE35B11FD041.ics
2016-06-01 10:24 - 2016-06-01 10:24 - 00000540 _____ C:\Users\LS\Downloads\event (1).ics
 
==================== One Month Modified files and folders ========
 
(If an entry is included in the fixlist, the file/folder will be moved.)
 
2016-06-27 12:17 - 2009-07-13 21:45 - 00021312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-06-27 12:17 - 2009-07-13 21:45 - 00021312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-06-27 12:16 - 2016-05-03 13:28 - 00000000 ____D C:\Users\LS\AppData\Local\CrashDumps
2016-06-27 12:16 - 2016-01-27 09:26 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery
2016-06-27 12:08 - 2016-01-27 09:33 - 00000904 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2016-06-27 12:08 - 2016-01-27 09:18 - 00000000 ____D C:\ProgramData\NVIDIA
2016-06-27 12:08 - 2009-07-13 22:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-06-27 12:06 - 2016-05-06 12:59 - 00000000 ____D C:\AdwCleaner
2016-06-27 11:38 - 2016-01-27 09:33 - 00000908 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2016-06-27 11:32 - 2016-05-06 12:53 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-06-27 11:26 - 2016-04-21 12:57 - 00000000 ____D C:\Program Files (x86)\Dell Update
2016-06-27 11:26 - 2016-01-27 09:24 - 00000000 ____D C:\Program Files (x86)\Dell Digital Delivery
2016-06-27 11:20 - 2016-05-04 13:44 - 00000336 _____ C:\Windows\BRCALIB.INI
2016-06-27 11:08 - 2016-05-03 11:57 - 00000898 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-06-27 11:08 - 2016-01-27 09:07 - 00000830 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-06-27 11:07 - 2016-05-18 12:07 - 00000000 ____D C:\Program Files (x86)\Stamps.com Internet Postage
2016-06-27 10:23 - 2016-05-03 12:08 - 00000000 ____D C:\Windows\System32\Tasks\Remediation
2016-06-23 11:25 - 2016-05-03 14:05 - 00003484 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2016-06-22 12:49 - 2016-05-09 13:15 - 00000000 ____D C:\Users\LS\Documents\BEA
2016-06-22 09:43 - 2016-05-03 12:05 - 00000000 ____D C:\Users\LS\AppData\Local\Adobe
2016-06-21 09:36 - 2009-07-13 22:13 - 00783606 _____ C:\Windows\system32\PerfStringBackup.INI
2016-06-21 09:36 - 2009-07-13 20:20 - 00000000 ____D C:\Windows\inf
2016-06-21 09:30 - 2016-05-03 12:07 - 00002409 _____ C:\Users\Public\Desktop\Norton Internet Security.lnk
2016-06-21 09:30 - 2016-05-03 12:06 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Norton Internet Security
2016-06-21 09:30 - 2016-05-03 12:06 - 00000000 ____D C:\Windows\system32\Drivers\NISx64
2016-06-20 10:12 - 2016-05-03 11:58 - 00002197 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-06-20 09:48 - 2016-05-06 12:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-06-20 09:48 - 2016-05-06 12:53 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-06-20 09:46 - 2016-05-03 12:07 - 00101112 _____ (Symantec Corporation) C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
2016-06-20 09:46 - 2016-05-03 12:07 - 00008270 _____ C:\Windows\system32\Drivers\SYMEVENT64x86.CAT
2016-06-16 12:32 - 2016-05-18 12:07 - 00000036 ____H C:\Windows\SysWOW64\f9t.dat
2016-06-15 14:23 - 2016-05-09 13:27 - 00032537 _____ C:\Users\LS\Documents\MileageInfo 2014.xlsx
2016-06-07 11:52 - 2016-04-21 12:36 - 00000000 ____D C:\Program Files\Dell
2016-06-07 11:52 - 2016-01-27 09:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell
2016-06-02 13:00 - 2016-05-03 14:46 - 00000000 ____D C:\Program Files\Common Files\Apple
2016-05-31 09:30 - 2016-01-27 09:10 - 00000000 ____D C:\ProgramData\Package Cache
2016-05-31 09:30 - 2016-01-27 09:10 - 00000000 ____D C:\Program Files\Intel
 
==================== Files in the root of some directories =======
 
2016-04-21 23:46 - 2016-06-27 12:08 - 0137379 _____ () C:\Users\LS\AppData\Local\BTServer.log
2016-06-20 09:49 - 2016-06-20 09:49 - 0004096 ____H () C:\Users\LS\AppData\Local\keyfile3.drm
2016-01-27 09:11 - 2016-01-27 09:11 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
 
Some files in TEMP:
====================
C:\Users\LS\AppData\Local\Temp\libeay32.dll
C:\Users\LS\AppData\Local\Temp\msvcr120.dll
C:\Users\LS\AppData\Local\Temp\ose00000.exe
C:\Users\LS\AppData\Local\Temp\sqlite3.dll
 
 
==================== Bamital & volsnap =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
 
 
LastRegBack: 2016-05-18 14:43
 
==================== End of FRST.txt ============================
 
Here is my ADDITION log:
 
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 26-06-2016 02
Ran by LS (2016-06-27 12:22:44)
Running from C:\Users\LS\Downloads
Windows 7 Professional Service Pack 1 (X64) (2016-04-22 06:45:41)
Boot Mode: Normal
==========================================================
 
 
==================== Accounts: =============================
 
Administrator (S-1-5-21-1104474335-721816600-3274321384-500 - Administrator - Disabled)
Guest (S-1-5-21-1104474335-721816600-3274321384-501 - Limited - Disabled)
LS (S-1-5-21-1104474335-721816600-3274321384-1000 - Administrator - Enabled) => C:\Users\LS
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
AV: Norton Internet Security (Enabled - Up to date) {53C7D717-52E2-B95E-FA61-6F32ECC805DB}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Norton Internet Security (Enabled - Up to date) {E8A636F3-74D8-B6D0-C0D1-5440974F4F66}
FW: Norton Internet Security (Enabled) {6BFC5632-188D-B806-D13E-C607121B42A0}
 
==================== Installed Programs ======================
 
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe CS6 Design and Web Premium (HKLM-x32\...\{402F6F2E-5683-491C-977D-0CA599A07CAF}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Reader XI  MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Alcor Micro USB Card Reader Driver  (HKLM-x32\...\InstallShield_{2282AFD7-5074-4BC6-B1F7-205AAC8F6AC9}) (Version: 18.6.1844.34416 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver  (x32 Version: 18.6.1844.34416 - Alcor Micro Corp.) Hidden
Apple Application Support (32-bit) (HKLM-x32\...\{26356515-5821-40FA-9C3D-9785052A1062}) (Version: 4.3.1 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{C2651553-6CA3-4822-B2E6-BC4ACA6E0EA2}) (Version: 4.3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Brother MFL-Pro Suite MFC-9970CDW (HKLM-x32\...\{979742CC-2CBB-49D8-9BEE-C2F7875F5393}) (Version: 1.1.5.0 - Brother Industries, Ltd.)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.8.0.66 - Dell Inc.)
Dell Data Vault (Version: 4.3.8.0 - Dell Inc.) Hidden
Dell Digital Delivery (HKLM-x32\...\{693A23FB-F28B-4F7A-A720-4C1263F97F43}) (Version: 3.1.1002.0 - Dell Products, LP)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Foundation Services (HKLM\...\{C1C53DA1-9497-4ABB-A3D6-A63039820B37}) (Version: 3.3.7200.0 - Dell Inc.)
Dell SupportAssist (HKLM\...\PC-Doctor for Windows) (Version: 1.2.6793.01 - Dell)
Dell SupportAssistAgent (HKLM-x32\...\{3ED468C2-2235-4747-90AD-A7A34F0FE70A}) (Version: 1.2.2.8 - Dell)
Dell Update (HKLM-x32\...\{DB82968B-57A4-4397-81A5-ECAB21B5DFCD}) (Version: 1.7.1015.0 - Dell Inc.)
Dropbox 20 GB (HKLM-x32\...\{736A97C6-8766-3699-84A9-71736C5E0CE3}) (Version: 3.1.11.0 - Dropbox, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 51.0.2704.103 - Google Inc.)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
iCloud (HKLM\...\{ADFDB647-35C0-4254-9EE6-2D9C3B7104BD}) (Version: 5.2.1.69 - Apple Inc.)
Intel® Chipset Device Software (x32 Version: 10.1.1.13 - Intel® Corporation) Hidden
Intel® Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1167 - Intel Corporation)
Intel® Network Connections 20.2.3001.0 (HKLM\...\PROSetDX) (Version: 20.2.3001.0 - Intel)
Intel® Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® Ready Mode Technology (HKLM\...\{885308A3-1E3C-4A84-BFEC-35A696600DF2}) (Version: 1.1.70.506 - Intel Corporation)
Intel® USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.0.36 - Intel Corporation)
iTunes (HKLM\...\{58D7E5F7-BAD1-49C5-93C8-B655736EDA00}) (Version: 12.4.0.119 - Apple Inc.)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Maxx Audio Installer (x64) (Version: 2.6.6073.1 - Waves Audio Ltd.) Hidden
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4693.1005 - Microsoft Corporation)
Microsoft Office Professional 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Norton Internet Security (HKLM-x32\...\NIS) (Version: 22.7.0.76 - Symantec Corporation)
NVIDIA 3D Vision Controller Driver 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 353.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 353.82 - NVIDIA Corporation)
NVIDIA Graphics Driver 353.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.82 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7541 - Realtek Semiconductor Corp.)
Realtek USB Audio (HKLM-x32\...\{0A46A65D-89AC-464C-8026-3CD44960BD04}) (Version: 6.3.9600.41 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN and Bluetooth Driver (HKLM-x32\...\{6BFBB929-C278-42B3-8065-FF1178E071B8}) (Version: 13.220.243 - REALTEK Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
 
==================== Custom CLSID (Whitelisted): ==========================
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
 
==================== Scheduled Tasks (Whitelisted) =============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
Task: {0791FBED-A67B-49EF-A147-CB3C5BA5E79D} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-27] (Dropbox, Inc.)
Task: {0DC6CBBD-0AF0-4562-94BA-C207A82CCB04} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\Dell\SupportAssist\sessionchecker.exe [2016-03-24] (PC-Doctor, Inc.)
Task: {115AA91B-1BD8-42CB-85E1-DBF519859D5A} - System32\Tasks\DropboxOEM => C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe [2016-04-04] ()
Task: {123560F8-A5DC-4687-8EFD-D416727FEF78} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Internet Security\Upgrade.exe [2016-06-16] (Symantec Corporation)
Task: {1969BDF5-9D2A-49EB-B64D-AC74AE3A34B3} - System32\Tasks\Dell SupportAssistAgent AutoUpdate => C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssist.exe [2016-04-22] (Dell Inc.)
Task: {35F157E9-E0DF-4F83-A915-78449A219A17} - System32\Tasks\Norton WSC Integration => C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\WSCStub.exe [2016-06-16] (Symantec Corporation)
Task: {66BE6EF6-2D6B-4A6A-98CE-A6BC44238A00} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\Dell\SupportAssist\uaclauncher.exe [2016-03-24] (PC-Doctor, Inc.)
Task: {6A55B116-8075-4EE7-B58E-769C8A49AD90} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-01-27] (Adobe Systems Incorporated)
Task: {6FF471D6-2DA9-4382-9F0F-1D2DC5AE2CA8} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [2016-04-22] (Apple Inc.)
Task: {7807D0F7-6523-4C26-BF39-01E30A4F4122} - System32\Tasks\Norton Internet Security\Norton Error Analyzer => C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\SymErr.exe [2016-05-23] (Symantec Corporation)
Task: {87EC136D-92F1-4949-B855-5AF9D1DBD1C7} - System32\Tasks\Norton Internet Security\Norton Error Processor => C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\SymErr.exe [2016-05-23] (Symantec Corporation)
Task: {98038A4C-5464-400D-A4DA-2AD975160AEC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-03] (Google Inc.)
Task: {A208B516-0173-4F89-891A-530E3AFCFD20} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-01-27] (Dropbox, Inc.)
Task: {ADA6BD16-E7F8-41EC-9C83-5B53CA2D8C77} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {B0295067-205D-4034-9A89-50DC191B6FD8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {D19B2101-01CF-472A-BB58-2D4F9F6B958B} - System32\Tasks\PCDDataUploadTask => uaclauncher.exe
Task: {DC7D04C8-76A8-4CB3-97CE-B944F2B62C70} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-03] (Google Inc.)
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
 
==================== Shortcuts =============================
 
(The entries could be listed to be restored or removed.)
 
==================== Loaded Modules (Whitelisted) ==============
 
2016-01-27 09:18 - 2015-08-06 17:44 - 00116528 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-03-18 22:56 - 2016-03-18 22:56 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-04-22 01:07 - 2016-04-22 01:07 - 01337144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-01-27 09:20 - 2015-07-02 08:41 - 00120024 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2016-01-27 09:20 - 2014-07-03 08:22 - 00277720 _____ () C:\Program Files (x86)\Realtek\Realtek Bluetooth\SkypePlugin.exe
2016-04-04 09:54 - 2016-04-04 09:54 - 00575432 _____ () C:\Program Files (x86)\Dropbox\DropboxOEM\DropboxOEM.exe
2016-05-04 13:43 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2016-03-18 13:26 - 2016-03-18 13:26 - 00207872 _____ () C:\Program Files (x86)\Dropbox\DropboxOEM\Ledger.dll
2016-03-18 12:19 - 2016-03-18 12:19 - 00107520 _____ () C:\Program Files (x86)\Dropbox\DropboxOEM\zlib1.dll
2016-06-20 10:12 - 2016-06-15 02:15 - 01745560 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libglesv2.dll
2016-06-20 10:12 - 2016-06-15 02:15 - 00091288 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\libegl.dll
2016-06-20 10:12 - 2016-06-15 02:15 - 17599640 _____ () C:\Program Files (x86)\Google\Chrome\Application\51.0.2704.103\PepperFlash\pepflashplayer.dll
2015-03-16 10:28 - 2015-03-16 10:28 - 00155528 _____ () c:\Program Files (x86)\Dell Digital Delivery\ServiceTagPlusPlus.dll
2015-09-04 19:34 - 2015-09-04 19:34 - 01243936 _____ () C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\ACE.dll
 
==================== Alternate Data Streams (Whitelisted) =========
 
(If an entry is included in the fixlist, only the ADS will be removed.)
 
 
==================== Safe Mode (Whitelisted) ===================
 
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"
 
==================== Association (Whitelisted) ===============
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
 
 
==================== Internet Explorer trusted/restricted ===============
 
(If an entry is included in the fixlist, it will be removed from the registry.)
 
 
==================== Hosts content: ===============================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2009-07-13 19:34 - 2009-06-10 14:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 
 
==================== Other Areas ============================
 
(Currently there is no automatic fix for this section.)
 
HKU\S-1-5-21-1104474335-721816600-3274321384-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\LS\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
 
==================== MSCONFIG/TASK MANAGER disabled items ==
 
(Currently there is no automatic fix for this section.)
 
 
==================== FirewallRules (Whitelisted) ===============
 
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
 
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{DF955BBB-8286-4576-ABA9-C98AAD65F199}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{305BD108-6B2D-422D-B796-C2ED16485B08}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6A2ADB79-7446-40AD-9F9F-1869A89AE1E1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{EF1396FA-6C83-4F39-AF07-7FA2DD5D218D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{21D47694-92FC-4A48-A497-AF78BC05DE9B}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{71F0ABBA-A180-4293-81D6-AA521E994811}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
 
==================== Restore Points =========================
 
31-05-2016 09:28:44 Dell Update: Intel® Management Engine  Interface Driver
31-05-2016 09:29:50 Dell Update: Intel 100 Series Chipset Driver
 
==================== Faulty Device Manager Devices =============
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (06/27/2016 12:16:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TOASTER.EXE, version: 2.8.0.10, time stamp: 0x548f51e2
Faulting module name: KERNELBASE.dll, version: 6.1.7601.23392, time stamp: 0x56eb30d1
Exception code: 0xe0434352
Fault offset: 0x0000c54f
Faulting process id: 0x17e0
Faulting application start time: 0xTOASTER.EXE0
Faulting application path: TOASTER.EXE1
Faulting module path: TOASTER.EXE2
Report Id: TOASTER.EXE3
 
Error: (06/27/2016 12:16:32 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: TOASTER.EXE
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentException
   at System.IO.Path.NormalizePath(System.String, Boolean, Int32, Boolean)
   at System.IO.Path.GetFullPathInternal(System.String)
   at System.IO.Path.GetFullPath(System.String)
   at System.IO.FileSystemWatcher.StartRaisingEvents()
   at System.IO.FileSystemWatcher.set_EnableRaisingEvents(Boolean)
   at STUICore.Notification.NotificationManager..ctor()
   at STUICore.Notification.NotificationManager.get_Instance()
   at Toaster.MainWindowViewModel.InitMenuItems()
   at Toaster.MainWindowViewModel.ChangeLabel()
   at Toaster.MainWindowViewModel..ctor()
   at Toaster.App.OnStartup(System.Windows.StartupEventArgs)
   at System.Windows.Application.<.ctor>b__1_0(System.Object)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.DispatcherOperation.InvokeImpl()
   at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Windows.Threading.DispatcherOperation.Invoke()
   at System.Windows.Threading.Dispatcher.ProcessQueue()
   at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   at System.Windows.Application.RunDispatcher(System.Object)
   at System.Windows.Application.RunInternal(System.Windows.Window)
   at System.Windows.Application.Run(System.Windows.Window)
   at Toaster.App.Main()
 
Error: (06/27/2016 12:16:32 PM) (Source: TOASTER.EXE) (EventID: 0) (User: )
Description: An Unhandled Exception occured.
The path is not of a legal form.
   at System.IO.Path.NormalizePath(String path, Boolean fullCheck, Int32 maxPathLength, Boolean expandShortPaths)
   at System.IO.Path.GetFullPathInternal(String path)
   at System.IO.Path.GetFullPath(String path)
   at System.IO.FileSystemWatcher.StartRaisingEvents()
   at System.IO.FileSystemWatcher.set_EnableRaisingEvents(Boolean value)
   at STUICore.Notification.NotificationManager..ctor()
   at STUICore.Notification.NotificationManager.get_Instance()
   at Toaster.MainWindowViewModel.InitMenuItems()
   at Toaster.MainWindowViewModel.ChangeLabel()
   at Toaster.MainWindowViewModel..ctor()
   at Toaster.App.OnStartup(StartupEventArgs e)
   at System.Windows.Application.<.ctor>b__1_0(Object unused)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
 
Error: (06/27/2016 12:08:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/27/2016 10:07:21 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TOASTER.EXE, version: 2.8.0.10, time stamp: 0x548f51e2
Faulting module name: KERNELBASE.dll, version: 6.1.7601.23392, time stamp: 0x56eb30d1
Exception code: 0xe0434352
Fault offset: 0x0000c54f
Faulting process id: 0x1f34
Faulting application start time: 0xTOASTER.EXE0
Faulting application path: TOASTER.EXE1
Faulting module path: TOASTER.EXE2
Report Id: TOASTER.EXE3
 
Error: (06/27/2016 10:07:18 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: TOASTER.EXE
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentException
   at System.IO.Path.NormalizePath(System.String, Boolean, Int32, Boolean)
   at System.IO.Path.GetFullPathInternal(System.String)
   at System.IO.Path.GetFullPath(System.String)
   at System.IO.FileSystemWatcher.StartRaisingEvents()
   at System.IO.FileSystemWatcher.set_EnableRaisingEvents(Boolean)
   at STUICore.Notification.NotificationManager..ctor()
   at STUICore.Notification.NotificationManager.get_Instance()
   at Toaster.MainWindowViewModel.InitMenuItems()
   at Toaster.MainWindowViewModel.ChangeLabel()
   at Toaster.MainWindowViewModel..ctor()
   at Toaster.App.OnStartup(System.Windows.StartupEventArgs)
   at System.Windows.Application.<.ctor>b__1_0(System.Object)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.DispatcherOperation.InvokeImpl()
   at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Windows.Threading.DispatcherOperation.Invoke()
   at System.Windows.Threading.Dispatcher.ProcessQueue()
   at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   at System.Windows.Application.RunDispatcher(System.Object)
   at System.Windows.Application.RunInternal(System.Windows.Window)
   at System.Windows.Application.Run(System.Windows.Window)
   at Toaster.App.Main()
 
Error: (06/27/2016 10:07:18 AM) (Source: TOASTER.EXE) (EventID: 0) (User: )
Description: An Unhandled Exception occured.
The path is not of a legal form.
   at System.IO.Path.NormalizePath(String path, Boolean fullCheck, Int32 maxPathLength, Boolean expandShortPaths)
   at System.IO.Path.GetFullPathInternal(String path)
   at System.IO.Path.GetFullPath(String path)
   at System.IO.FileSystemWatcher.StartRaisingEvents()
   at System.IO.FileSystemWatcher.set_EnableRaisingEvents(Boolean value)
   at STUICore.Notification.NotificationManager..ctor()
   at STUICore.Notification.NotificationManager.get_Instance()
   at Toaster.MainWindowViewModel.InitMenuItems()
   at Toaster.MainWindowViewModel.ChangeLabel()
   at Toaster.MainWindowViewModel..ctor()
   at Toaster.App.OnStartup(StartupEventArgs e)
   at System.Windows.Application.<.ctor>b__1_0(Object unused)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(Delegate callback, Object args, Int32 numArgs)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(Object source, Delegate callback, Object args, Int32 numArgs, Delegate catchHandler)
 
Error: (06/27/2016 09:59:22 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (06/23/2016 09:33:58 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: TOASTER.EXE, version: 2.8.0.10, time stamp: 0x548f51e2
Faulting module name: KERNELBASE.dll, version: 6.1.7601.23392, time stamp: 0x56eb30d1
Exception code: 0xe0434352
Fault offset: 0x0000c54f
Faulting process id: 0x1ec4
Faulting application start time: 0xTOASTER.EXE0
Faulting application path: TOASTER.EXE1
Faulting module path: TOASTER.EXE2
Report Id: TOASTER.EXE3
 
Error: (06/23/2016 09:33:57 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Application: TOASTER.EXE
Framework Version: v4.0.30319
Description: The process was terminated due to an unhandled exception.
Exception Info: System.ArgumentException
   at System.IO.Path.NormalizePath(System.String, Boolean, Int32, Boolean)
   at System.IO.Path.GetFullPathInternal(System.String)
   at System.IO.Path.GetFullPath(System.String)
   at System.IO.FileSystemWatcher.StartRaisingEvents()
   at System.IO.FileSystemWatcher.set_EnableRaisingEvents(Boolean)
   at STUICore.Notification.NotificationManager..ctor()
   at STUICore.Notification.NotificationManager.get_Instance()
   at Toaster.MainWindowViewModel.InitMenuItems()
   at Toaster.MainWindowViewModel.ChangeLabel()
   at Toaster.MainWindowViewModel..ctor()
   at Toaster.App.OnStartup(System.Windows.StartupEventArgs)
   at System.Windows.Application.<.ctor>b__1_0(System.Object)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.DispatcherOperation.InvokeImpl()
   at System.Windows.Threading.DispatcherOperation.InvokeInSecurityContext(System.Object)
   at System.Threading.ExecutionContext.RunInternal(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object, Boolean)
   at System.Threading.ExecutionContext.Run(System.Threading.ExecutionContext, System.Threading.ContextCallback, System.Object)
   at System.Windows.Threading.DispatcherOperation.Invoke()
   at System.Windows.Threading.Dispatcher.ProcessQueue()
   at System.Windows.Threading.Dispatcher.WndProcHook(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndWrapper.WndProc(IntPtr, Int32, IntPtr, IntPtr, Boolean ByRef)
   at MS.Win32.HwndSubclass.DispatcherCallbackOperation(System.Object)
   at System.Windows.Threading.ExceptionWrapper.InternalRealCall(System.Delegate, System.Object, Int32)
   at System.Windows.Threading.ExceptionWrapper.TryCatchWhen(System.Object, System.Delegate, System.Object, Int32, System.Delegate)
   at System.Windows.Threading.Dispatcher.LegacyInvokeImpl(System.Windows.Threading.DispatcherPriority, System.TimeSpan, System.Delegate, System.Object, Int32)
   at MS.Win32.HwndSubclass.SubclassWndProc(IntPtr, Int32, IntPtr, IntPtr)
   at MS.Win32.UnsafeNativeMethods.DispatchMessage(System.Windows.Interop.MSG ByRef)
   at System.Windows.Threading.Dispatcher.PushFrameImpl(System.Windows.Threading.DispatcherFrame)
   at System.Windows.Threading.Dispatcher.PushFrame(System.Windows.Threading.DispatcherFrame)
   at System.Windows.Application.RunDispatcher(System.Object)
   at System.Windows.Application.RunInternal(System.Windows.Window)
   at System.Windows.Application.Run(System.Windows.Window)
   at Toaster.App.Main()
 
 
System errors:
=============
Error: (06/27/2016 12:07:24 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.
 
Module Path: C:\Windows\system32\Rtlihvs.dll
 
Error: (06/27/2016 12:07:24 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.
 
Module Path: C:\Windows\system32\Rtlihvs.dll
 
Error: (06/27/2016 12:07:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Windows Search service failed to start due to the following error: 
%%1069 = The service did not start due to a logon failure.
 
 
Error: (06/27/2016 12:07:24 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: The WSearch service was unable to log on as NT AUTHORITY\SYSTEM with the currently configured password due to the following error: 
%%50 = The request is not supported.
 
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (06/27/2016 12:07:21 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has stopped unexpectedly.
 
Module Path: C:\Windows\system32\Rtlihvs.dll
 
Error: (06/27/2016 12:06:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: The Windows Modules Installer service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 120000 milliseconds: Restart the service.
 
Error: (06/27/2016 12:06:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Dell Data Vault service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (06/27/2016 12:06:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Office Software Protection Platform service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (06/27/2016 12:06:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The SoftThinks Agent Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (06/27/2016 12:06:54 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: The Intel® Dynamic Application Loader Host Interface Service service terminated unexpectedly.  It has done this 1 time(s).
 
 
CodeIntegrity:
===================================
  Date: 2016-04-28 15:42:04.738
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\WINDOWS\System32\drivers\bthport.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-04-28 15:42:04.722
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\WINDOWS\System32\drivers\bthport.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-04-28 15:23:19.274
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\WINDOWS\System32\win32k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-04-28 15:23:19.243
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\WINDOWS\System32\win32k.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-04-28 15:18:21.413
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\WINDOWS\System32\drivers\mfefirek.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-04-28 15:18:21.397
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\WINDOWS\System32\drivers\mfefirek.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-04-28 15:18:21.382
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\WINDOWS\System32\drivers\mfefirek.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-04-28 15:18:21.366
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\WINDOWS\System32\drivers\mfefirek.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-04-28 15:18:21.350
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\WINDOWS\System32\drivers\mfefirek.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2016-04-28 15:18:21.335
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\WINDOWS\System32\drivers\mfefirek.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
==================== Memory info =========================== 
 
Processor: Intel® Core™ i7-6700 CPU @ 3.40GHz
Percentage of memory in use: 30%
Total physical RAM: 16322.78 MB
Available physical RAM: 11404.62 MB
Total Virtual: 32643.75 MB
Available Virtual: 26938.66 MB
 
==================== Drives ================================
 
Drive c: (OS) (Fixed) (Total:919.74 GB) (Free:689.41 GB) NTFS
Drive y: (RECOVERY) (Fixed) (Total:11.73 GB) (Free:3.01 GB) NTFS ==>[system with boot components (obtained from drive)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 931.5 GB) (Disk ID: 56A8FE00)
Partition 1: (Not Active) - (Size=39 MB) - (Type=DE)
Partition 2: (Active) - (Size=11.7 GB) - (Type=27)
Partition 3: (Not Active) - (Size=919.7 GB) - (Type=07 NTFS)
 
==================== End of Addition.txt ============================


#3 bpdx

bpdx
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:57 AM

Posted 27 June 2016 - 02:37 PM

ADWARE log:

# AdwCleaner v5.200 - Logfile created 27/06/2016 at 12:29:42
# Updated 14/06/2016 by ToolsLib
# Database : 2016-06-26.1 [Server]
# Operating system : Windows 7 Professional Service Pack 1 (X64)
# Username : LS - LS-PC
# Running from : C:\Users\LS\Downloads\AdwCleaner.exe
# Option : Scan
 
***** [ Services ] *****
 
 
***** [ Folders ] *****
 
 
***** [ Files ] *****
 
 
***** [ DLL ] *****
 
 
***** [ WMI ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Scheduled tasks ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Web browsers ] *****
 
 
*************************
 
C:\AdwCleaner\AdwCleaner[C1].txt - [1284 bytes] - [06/05/2016 15:11:40]
C:\AdwCleaner\AdwCleaner[C2].txt - [1962 bytes] - [27/06/2016 12:06:56]
C:\AdwCleaner\AdwCleaner[S1].txt - [1449 bytes] - [06/05/2016 12:59:31]
C:\AdwCleaner\AdwCleaner[S2].txt - [1916 bytes] - [27/06/2016 12:03:53]
C:\AdwCleaner\AdwCleaner[S3].txt - [1081 bytes] - [27/06/2016 12:28:29]
C:\AdwCleaner\AdwCleaner[S4].txt - [999 bytes] - [27/06/2016 12:29:42]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [1071 bytes] ##########

JRT log:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 7 Professional x64 
Ran by LS (Administrator) on Mon 06/27/2016 at 12:30:43.14
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 26 
 
Successfully deleted: C:\Windows\system32\Tasks\PCDEventLauncherTask (Task)
Successfully deleted: C:\Windows\system32\Tasks\PCDoctorBackgroundMonitorTask (Task)
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0HEEAHWS (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6LNZK9F2 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\97REU3C3 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BN80WX9C (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KRTAKAAQ (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UY1LOMTZ (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V5OBXZO6 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\LS\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X9GLM58B (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0HEEAHWS (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6LNZK9F2 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\97REU3C3 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BN80WX9C (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KRTAKAAQ (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UY1LOMTZ (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\V5OBXZO6 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\X9GLM58B (Temporary Internet Files Folder) 
 
 
 
Registry: 3 
 
Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{01D9A51C-C515-480F-9C72-5C75F1FCBA78} (Registry Key)
Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Mon 06/27/2016 at 12:32:38.13
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#4 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:57 AM

Posted 02 July 2016 - 02:25 PM

Hello and welcome to Bleeping Computer!

I am HelpBot: an automated program designed to help the Bleeping Computer Staff better assist you! This message contains very important information, so please read through all of it before doing anything.

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

To help Bleeping Computer better assist you please perform the following steps:

***************************************************

step1.gif In order to continue receiving help at BleepingComputer.com, YOU MUST tell me if you still need help or if your issue has already been resolved on your own or through another resource! To tell me this, please click on the following link and follow the instructions there.

CLICK THIS LINK >>> http://www.bleepingcomputer.com/logreply/618396 <<< CLICK THIS LINK



If you no longer need help, then all you needed to do was the previous instructions of telling me so. You can skip the rest of this post. If you do need help please continue with Step 2 below.

***************************************************

step2.gifIf you still need help, I would like you to post a Reply to this topic (click the "Add Reply" button in the lower right hand of this page). In that reply, please include the following information:

  • If you have not done so already, include a clear description of the problems you're having, along with any steps you may have performed so far.
  • A new FRST log. For your convenience, you will find the instructions for generating these logs repeated at the bottom of this post.
    • Please do this even if you have previously posted logs for us.
    • If you were unable to produce the logs originally please try once more.
    • If you are unable to create a log please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
    • If you are unsure about any of these characteristics just post what you can and we will guide you.
  • Please tell us if you have your original Windows CD/DVD available.
  • Upon completing the above steps and posting a reply, another staff member will review your topic and do their best to resolve your issues.

Thank you for your patience, and again sorry for the delay.

***************************************************

We need to see some information about what is happening in your machine. Please perform the following scan again:

  • Download FRST by Farbar from the following link if you no longer have it available and save it to your destop.

    FRST Download Link

  • When you go to the above page, there will be 32-bit and 64-bit downloads available. Please click on the appropriate one for your version of Windows. If you are unsure as to whether your Windows is 32-bit or 64-bit, please see this tutorial.
  • Double click on the FRST icon and allow it to run.
  • Agree to the usage agreement and FRST will open. Do not make any changes and click on the Scan button.
  • Notepad will open with the results.
  • Post the new logs as explained in the prep guide.
  • Close the program window, and delete the program from your desktop.


As I am just a silly little program running on the BleepingComputer.com servers, please do not send me private messages as I do not know how to read and reply to them! Thanks!

#5 HelpBot

HelpBot

    Bleepin' Binary Bot


  • Bots
  • 12,769 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:04:57 AM

Posted 07 July 2016 - 02:30 PM

Hello again!

I haven't heard from you in 5 days. Therefore, I am going to assume that you no longer need our help, and close this topic.

If you do still need help, please send a Private Message to any Moderator within the next five days. Be sure to include a link to your topic in your Private Message.

Thank you for using Bleeping Computer, and have a great day!

#6 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 38,195 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:12:57 AM

Posted 20 July 2016 - 10:11 AM

Greetings bpdx and :welcome: to BleepingComputer's Virus/Trojan/Spyware/Malware Removal forum.

My name is Oh My! and I am here to help you! Now that we are "friends" please call me Gary.

If you would allow me to call you by your first name I would prefer to do that.

===================================================

Ground Rules:
  • First, I would like to inform you that most of us here at Bleeping Computer offer our expert assistance out of the goodness of our hearts. Please try to match our commitment to you with your patience toward us. If this was easy we would never have met.
  • Please do not run any tools or take any steps other than those I will provide for you while we work on your computer together. I need to be certain about the state of your computer in order to provide appropriate and effective steps for you to take. Most often "well intentioned" (and usually panic driven!) independent efforts can make things much worse for both of us. If at any point you would prefer to take your own steps please let me know, I will not be offended. I would be happy to focus on the many others who are waiting in line for assistance.
  • Please perform all steps in the order they are listed in each set of instructions. Some steps may be a bit complicated. If things are not clear, be sure to stop and let me know. We need to work on this together with confidence.
  • Please copy and paste all logs into your post unless directed otherwise. Please do not re-run any programs I suggest. If you encounter problems simply stop and tell me.
  • When you post your reply, use the Replytopic.jpg button instead.
  • In the upper right hand corner of the topic you will see the Followtopic.jpg button. Click on this then choose Immediate E-Mail notification and then Proceed and you will be sent an email once I have posted a response.
  • If you do not reply to your topic after 5 days we assume it has been abandoned and I will close it.
  • When your computer is clean I will alert you of such. I will also provide for you detailed information about how you can combat future infections.
  • I would like to remind you to make no further changes to your computer unless I direct you to do so.
===================================================

Now that I am assisting you, you can expect that I will be very responsive to your situation. If you are able, I would request you check this thread at least once per day so that we can try to resolve your issues effectively and efficiently. If you are going to be delayed please be considerate and post that information so that I know you are still with me. Unfortunately, there are many people waiting to be assisted and not enough of us at BleepingComputer to go around. I appreciate your understanding and diligence.

Thank you for your patience thus far.

Do you recognize these downloads?
 

2016-06-01 10:31 - 2016-06-01 10:31 - 00000648 _____ C:\Users\LS\Downloads\8237E08DA053B199EF2ADE35B11FD041.ics
2016-06-01 10:24 - 2016-06-01 10:24 - 00000540 _____ C:\Users\LS\Downloads\event (1).ics


Please do this.

===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the Windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Click Format and check Word Wrap
  • Please copy and paste the contents of the below code box into the open notepad and save it to your Desktop as fixlist.txt. If FRST.exe is not on your Deskptop please move it to that location. (<<<Important)
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-1104474335-721816600-3274321384-1000\...\Run: [AdobeBridge] => [X]
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 -> {01D9A51C-C515-480F-9C72-5C75F1FCBA78} URL =
Toolbar: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\SDSDefs\20160621.001\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\SDSDefs\20160621.001\EX64.SYS [X]
2016-06-01 10:31 - 2016-06-01 10:31 - 00000648 _____ C:\Users\LS\Downloads\8237E08DA053B199EF2ADE35B11FD041.ics
2016-06-01 10:24 - 2016-06-01 10:24 - 00000540 _____ C:\Users\LS\Downloads\event (1).ics
Folder: C:\Users\LS\AppData\Local\IIIQ
Folder: C:\ProgramData\miaA9C8.tmp
File: C:\Users\LS\Downloads\e2e0dbe3315c403dc13e7ce9e5a4c0be
  • Launch FRST and press the Fix button just once and wait, the program will automatically launch fixlist.txt.
  • The tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
===================================================

System Summary Information

--------------------
  • Press the windows key Windows_Logo_key.gif + r on your keyboard at the same time
  • Type msinfo32 and press Enter
  • Left click on System Summary
  • Click File, Save, and name the file Summary
  • Zip and attach the file to your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Recognize downloads?
  • Fixlog
  • System Summary Information
  • Update on computer behavior

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#7 bpdx

bpdx
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:57 AM

Posted 22 July 2016 - 02:32 PM

Hello:

 

THANK you so much for your help.

 

Here is the Fixlog:

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 20-07-2016
Ran by LS (2016-07-22 12:25:40) Run:1
Running from C:\Users\LS\Desktop
Loaded Profiles: LS (Available Profiles: LS)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-1104474335-721816600-3274321384-1000\...\Run: [AdobeBridge] => [X]
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-1104474335-721816600-3274321384-1000
-> {01D9A51C-C515-480F-9C72-5C75F1FCBA78} URL =
Toolbar: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 -> No Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  No File
S3 NAVENG; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\SDSDefs\20160621.001\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\SDSDefs\20160621.001\EX64.SYS [X]
2016-06-01 10:31 - 2016-06-01 10:31 - 00000648 _____ C:\Users\LS\Downloads\8237E08DA053B199EF2ADE35B11FD041.ics
2016-06-01 10:24 - 2016-06-01 10:24 - 00000540 _____ C:\Users\LS\Downloads\event (1).ics
Folder: C:\Users\LS\AppData\Local\IIIQ
Folder: C:\ProgramData\miaA9C8.tmp
File: C:\Users\LS\Downloads\e2e0dbe3315c403dc13e7ce9e5a4c0be
*****************
 
Restore point was successfully created.
Processes closed successfully.
HKU\S-1-5-21-1104474335-721816600-3274321384-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found. 
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found. 
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found. 
HKU\SearchScopes: HKU\S-1-5-21-1104474335-721816600-3274321384-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\SearchScopes: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 => value not found.
-> {01D9A51C-C515-480F-9C72-5C75F1FCBA78} URL = => Error: No automatic fix found for this entry.
HKU\S-1-5-21-1104474335-721816600-3274321384-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => value removed successfully
HKCR\CLSID\{47833539-D0C5-4125-9FA8-0819E2EAAC93} => key not found. 
NAVENG => service could not remove
NAVEX15 => service could not remove
C:\Users\LS\Downloads\8237E08DA053B199EF2ADE35B11FD041.ics => moved successfully
C:\Users\LS\Downloads\event (1).ics => moved successfully
 
========================= Folder: C:\Users\LS\AppData\Local\IIIQ ========================
 
2016-06-16 12:30 - 2016-06-27 11:07 - 0174080 _____ (Igor Pavlov) C:\Users\LS\AppData\Local\IIIQ\7z.dll
 
====== End of Folder: ======
 
 
========================= Folder: C:\ProgramData\miaA9C8.tmp ========================
 
 
====== End of Folder: ======
 
 
========================= File: C:\Users\LS\Downloads\e2e0dbe3315c403dc13e7ce9e5a4c0be ========================
 
File not signed
MD5: E7169B7EC789E6C4A3025B1CB5027441
Creation and modification date: 2016-06-10 13:26 - 2016-06-10 13:26
Size: 0009273
Attributes: ----A
Company Name: 
Internal Name: 
Original Name: 
Product: 
Description: 
File Version: 
Product Version: 
Copyright: 
 
====== End of File: ======
 
 
 
The system needed a reboot.
 
==== End of Fixlog 12:25:49 ====


#8 bpdx

bpdx
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:57 AM

Posted 22 July 2016 - 02:44 PM

Here is my filesummary zip file.

 

thank youAttached File  filesummary.zip   88.91KB   3 downloads



#9 bpdx

bpdx
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:57 AM

Posted 22 July 2016 - 02:52 PM

Hello:

 

my answers to your questions:

 

  • Recognize downloads?   I tried to figure out exactly what they are, but I'm not sure.  I think .ics files are calendar event files that could be 'events' that I added to my calendar through either an email invitation I received or through the websites evite.com or signupgenius.com.  These are usually work or school events for my child where I accept a meeting or event, and it adds it to my outlook calendar.
  • Fixlog  submitted in post above
  • System Summary Information submitted in post above
  • Update on computer behavior same problems with tons of spam but more concerning are the emails that are being sent to co-workers, friends, etc. with my email address that are just awful spam emails

 

I am out of town again starting July 26-August 1.

I won't be able to access my work computer during this time, but please don't shut this topic.

 

Thank you!

  •  


#10 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 38,195 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:12:57 AM

Posted 22 July 2016 - 02:57 PM

Greetings,

My pleasure to work with you on this. Thanks for letting me know your schedule.

Have you contacted Frontier to see if they can assist you in changing your password?

I am going to send you a Personal Message with an email address I would like you to forward a sample email to if you can.

Please do this. Please post everything in one post if you can.

===================================================

Farbar's Recovery Scan Tool - Run Fix in Normal or Safe Mode

--------------------
  • Press the Windows key Windows_Logo_key.gif + r on your keyboard at the same time. Type in notepad and press Enter
  • Please copy and paste the contents of the below code box into the open notepad and save it as fixlist.txt in the same location/folder as FRST.exe (<<<Important)
C:\Users\LS\Downloads\e2e0dbe3315c403dc13e7ce9e5a4c0be
C:\ProgramData\miaA9C8.tmp
SearchScopes: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 -> {01D9A51C-C515-480F-9C72-5C75F1FCBA78} URL =
emptytemp:
  • Right click on FRST.exe, select Run as administrator then press the Fix button
  • When completed he tool will create a log on the desktop called Fixlog.txt. Please copy and paste the contents of the file in your reply.
===================================================

Run TDSSKiller by Kaspersky

--------------------
  • Please download Kaspersky's TDSSKiller and save it to your Desktop. <-Important!!!
  • Right-click on TDSSKiller.exe and select Run As Administrator.
  • When the program opens, click the Start Scan button.

tdss1.png

  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • Any objects found will show in the Scan results - Select action for found objects and offer three options.
  • If an infected file is detected, the default action will be Cure...do not change it.

tdss2.png

  • Click Continue > Reboot now to finish the cleaning process.<- Important!!

tdss4.png

  • If 'Suspicious' objects are detected, you will be given the option to Skip or Quarantine. Skip will be the default selection. Leave it as such for now.
  • A log file named TDSSKiller_version_date_time_log.txt will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply even if no threats are found.
-- If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these instructions. In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer or to perform the scan in "safe mode".

===================================================

aswMBR

--------------------
  • Download aswMBR and save it to your desktop
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. For additional help see here and here
  • Double click the aswMBR.exe file to run it. If requested, allow Avast to update the antivirus engine definitions
  • Leave the default settings then click Scan
  • When done, you will see Scan finished successfully. Click on Save log and save the file to your desktop
  • Copy and paste the contents of the log in your reply
NOTE: aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

===================================================

RogueKiller by Tigzy

--------------------
  • Download RogueKiller and save it to your desktop
  • Close all running programs
  • Right click on the setup.exe icon and select Run as Administrator
  • For Windows XP simply double click on the icon
  • Click OK on English
  • Select Install 32 and 64 bits versions (Recommended for Technicians), then click Next 3 times
  • Click Install
  • Click Finish then Accept
  • The program will conduct a prescan and when finished you wlll see Prescan Finished. Please hit the scan button
  • Click Start Scan twice
  • When completed click Open Report
  • Click Export Text and save the file on your Desktop as RK.txt
  • Close all open RogueKiller windows
  • Copy and paste the contents of the report in your reply
===================================================

Things I would like to see in your next reply. Please be sure to copy and paste any requested log information unless you are asked to attach it. :thumbsup2:
  • Fixlog
  • TDSSKiller log
  • aswMBR log
  • RogueKiller log

Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#11 bpdx

bpdx
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:57 AM

Posted 25 July 2016 - 06:29 PM

Fixlog:

 

Fix result of Farbar Recovery Scan Tool (x64) Version: 20-07-2016
Ran by LS (2016-07-22 14:43:11) Run:2
Running from C:\Users\LS\Desktop
Loaded Profiles: LS (Available Profiles: LS)
Boot Mode: Normal
==============================================
 
fixlist content:
*****************
C:\Users\LS\Downloads\e2e0dbe3315c403dc13e7ce9e5a4c0be
C:\ProgramData\miaA9C8.tmp
SearchScopes: HKU\S-1-5-21-1104474335-721816600-3274321384-1000 -> {01D9A51C-C515-480F-9C72-5C75F1FCBA78} URL =
emptytemp:
*****************
 
C:\Users\LS\Downloads\e2e0dbe3315c403dc13e7ce9e5a4c0be => moved successfully
C:\ProgramData\miaA9C8.tmp => moved successfully
HKU\S-1-5-21-1104474335-721816600-3274321384-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{01D9A51C-C515-480F-9C72-5C75F1FCBA78} => key not found. 
HKCR\CLSID\{01D9A51C-C515-480F-9C72-5C75F1FCBA78} => key not found. 
 
=========== EmptyTemp: ==========
 
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 21192805 B
Java, Flash, Steam htmlcache => 1008 B
Windows/system/drivers => 80835 B
Edge => 0 B
Chrome => 344713600 B
Firefox => 0 B
Opera => 0 B
 
Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16876 B
systemprofile32 => 65960 B
LocalService => 8724 B
NetworkService => 0 B
LS => 189916275 B
 
RecycleBin => 271074581 B
EmptyTemp: => 796.8 MB temporary data Removed.
 
================================
 
 
The system needed a reboot.
 
==== End of Fixlog 14:43:18 ====
 
----------------------------------------------------------------------------------------------
 
 
--------------------------------------------------------------------------------------------------------------------
 
aswMBR log:
 
aswMBR version 1.0.1.2252 Copyright© 2014 AVAST Software
Run date: 2016-07-25 15:40:06
-----------------------------
15:40:06.147    OS Version: Windows x64 6.1.7601 Service Pack 1
15:40:06.147    Number of processors: 8 586 0x5E03
15:40:06.147    ComputerName: LS-PC  UserName: LS
15:40:08.518    Initialize success
15:40:08.657    VM: initialized successfully
15:40:08.657    VM: Intel CPU supported 
15:40:13.096    VM: disk I/O iaStorA.sys
15:42:09.143    AVAST engine defs: 16072501
15:43:13.911    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000007b
15:43:13.913    Disk 0 Vendor: WD_____ 01.0 Size: 953869MB BusType: 8
15:43:13.988    Disk 0 MBR read successfully
15:43:13.989    Disk 0 MBR scan
15:43:13.992    Disk 0 Windows VISTA default MBR code
15:43:13.993    Disk 0 Partition 1 00     DE Dell Utility DELL 4.1       39 MB offset 63
15:43:14.003    Disk 0 Partition 2 80 (A) 27 Hidden NTFS WinRE NTFS        12014 MB offset 81920
15:43:14.006    Disk 0 Boot: NTFS     code=1
15:43:14.016    Disk 0 Partition 3 00     07    HPFS/NTFS NTFS       941814 MB offset 24686592
15:43:14.027    Disk 0 scanning C:\Windows\system32\drivers
15:43:17.354    Service scanning
15:43:28.183    Modules scanning
15:43:28.186    Disk 0 trace - called modules:
15:43:28.190    ntoskrnl.exe CLASSPNP.SYS disk.sys iaStorF.sys storport.sys hal.dll iaStorA.sys 
15:43:28.192    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa800ec05790]
15:43:28.193    3 CLASSPNP.SYS[fffff8800180143f] -> nt!IofCallDriver -> [0xfffffa800eb11a90]
15:43:28.198    5 iaStorF.sys[fffff88001e61a88] -> nt!IofCallDriver -> \Device\0000007b[0xfffffa800e3fc410]
15:43:29.302    AVAST engine scan C:\Windows
15:43:30.643    AVAST engine scan C:\Windows\system32
15:44:57.920    AVAST engine scan C:\Windows\system32\drivers
15:45:04.932    AVAST engine scan C:\Users\LS
15:54:30.225    AVAST engine scan C:\ProgramData
15:55:20.084    Disk 0 statistics 4524643/0/0 @ 3.54 MB/s
15:55:20.088    Scan finished successfully
15:57:09.247    Disk 0 MBR has been saved successfully to "C:\Users\LS\Desktop\MBR.dat"
15:57:09.249    The log file has been saved successfully to "C:\Users\LS\Desktop\aswMBR.txt"
 
----------------------------------------------------------------------------------------
 

Rogue:

 

RogueKiller V12.4.0.0 (x64) [Jul 18 2016] (Free) by Adlice Software

mail : http://www.adlice.com/contact/

Feedback : http://forum.adlice.com

Website : http://www.adlice.com/download/roguekiller/

Blog : http://www.adlice.com

 

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version

Started in : Normal mode

User : LS [Administrator]

Started from : C:\Program Files\RogueKiller\RogueKiller64.exe

Mode : Scan -- Date : 07/25/2016 16:20:27

 

¤¤¤ Processes : 0 ¤¤¤

 

¤¤¤ Registry : 16 ¤¤¤

[Suspicious.Path|Hidden.From.SCM] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\aswMBR (\??\C:\Users\LS\AppData\Local\Temp\aswMBR.sys) -> Found

[Suspicious.Path|Hidden.From.SCM] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\aswVmm (\??\C:\Users\LS\AppData\Local\Temp\aswVmm.sys) -> Found

[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\aswMBR (\??\C:\Users\LS\AppData\Local\Temp\aswMBR.sys) -> Found

[Suspicious.Path] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\aswVmm (\??\C:\Users\LS\AppData\Local\Temp\aswVmm.sys) -> Found

[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1104474335-721816600-3274321384-1000\Software\Microsoft\Internet Explorer\Main | Start Page : https://www.yardiasptx10.com/84641wilsonville/pages/Login.aspx  -> Found

[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1104474335-721816600-3274321384-1000\Software\Microsoft\Internet Explorer\Main | Start Page : https://www.yardiasptx10.com/84641wilsonville/pages/Login.aspx  -> Found

[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-1104474335-721816600-3274321384-1000\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://dell13.msn.com/?pc=DCTE  -> Found

[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-1104474335-721816600-3274321384-1000\Software\Microsoft\Internet Explorer\Main | Default_Page_URL : http://dell13.msn.com/?pc=DCTE  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.1 ([])  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.1 ([])  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters | DhcpNameServer : 10.0.0.1 ([])  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{C77FF7E7-EA0C-46BB-AE12-0CBC3FD745D7} | DhcpNameServer : 10.0.0.1 ([])  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Tcpip\Parameters\Interfaces\{C77FF7E7-EA0C-46BB-AE12-0CBC3FD745D7} | DhcpNameServer : 10.0.0.1 ([])  -> Found

[PUM.Dns] (X64) HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Tcpip\Parameters\Interfaces\{C77FF7E7-EA0C-46BB-AE12-0CBC3FD745D7} | DhcpNameServer : 10.0.0.1 ([])  -> Found

[PUM.StartMenu] (X64) HKEY_USERS\S-1-5-21-1104474335-721816600-3274321384-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found

[PUM.StartMenu] (X86) HKEY_USERS\S-1-5-21-1104474335-721816600-3274321384-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced | Start_ShowMyGames : 0  -> Found

 

¤¤¤ Tasks : 0 ¤¤¤

 

¤¤¤ Files : 0 ¤¤¤

 

¤¤¤ Hosts File : 0 ¤¤¤

 

¤¤¤ Antirootkit : 0 (Driver: Loaded) ¤¤¤

 

¤¤¤ Web browsers : 0 ¤¤¤

 

¤¤¤ MBR Check : ¤¤¤

+++++ PhysicalDrive0: WD      WD10EZEX-75M2NA0 SCSI Disk Device +++++

--- User ---

[MBR] d9f121a30db5b937314ef76fb0b1ed76

[BSP] 716f44b9e40cafeaeefd7f01b7f056f1 : HP|VT.Unknown MBR Code

Partition table:

0 - [XXXXXX] DELL-UTIL (0xde) [VISIBLE] Offset (sectors): 63 | Size: 39 MB

1 - [ACTIVE] ACER (0x27) [VISIBLE] Offset (sectors): 81920 | Size: 12014 MB

2 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 24686592 | Size: 941814 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]

User = LL1 ... OK

User = LL2 ... OK

 

+++++ PhysicalDrive1: SanDisk Cruzer USB Device +++++

--- User ---

[MBR] bfc2508142cb31e56488e57ad8f80c9c

[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code

Partition table:

0 - [XXXXXX] FAT32-LBA (0xc) [VISIBLE] Offset (sectors): 32 | Size: 30532 MB

User = LL1 ... OK

Error reading LL2 MBR! ([32] The request is not supported. )

 

+++++ PhysicalDrive2: Generic- Compact Flash +++++

Error reading User MBR! ([15] The device is not ready. )

Error reading LL1 MBR! NOT VALID!

Error reading LL2 MBR! ([32] The request is not supported. )

 

+++++ PhysicalDrive3: Generic- SD/MMC +++++

Error reading User MBR! ([15] The device is not ready. )

Error reading LL1 MBR! NOT VALID!

Error reading LL2 MBR! ([32] The request is not supported. )

 

+++++ PhysicalDrive4: Generic- MS/MS-PRO +++++

Error reading User MBR! ([15] The device is not ready. )

Error reading LL1 MBR! NOT VALID!

Error reading LL2 MBR! ([32] The request is not supported. )

 

+++++ PhysicalDrive5: Generic- xD-Picture +++++

Error reading User MBR! ([15] The device is not ready. )

Error reading LL1 MBR! NOT VALID!

Error reading LL2 MBR! ([32] The request is not supported. )

 

14:48:56.0266 0x18d0  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
14:49:04.0604 0x18d0  ============================================================
14:49:04.0604 0x18d0  Current date / time: 2016/07/22 14:49:04.0604
14:49:04.0604 0x18d0  SystemInfo:
14:49:04.0604 0x18d0  
14:49:04.0604 0x18d0  OS Version: 6.1.7601 ServicePack: 1.0
14:49:04.0604 0x18d0  Product type: Workstation
14:49:04.0604 0x18d0  ComputerName: LS-PC
14:49:04.0605 0x18d0  UserName: LS
14:49:04.0605 0x18d0  Windows directory: C:\Windows
14:49:04.0605 0x18d0  System windows directory: C:\Windows
14:49:04.0605 0x18d0  Running under WOW64
14:49:04.0605 0x18d0  Processor architecture: Intel x64
14:49:04.0605 0x18d0  Number of processors: 8
14:49:04.0605 0x18d0  Page size: 0x1000
14:49:04.0605 0x18d0  Boot type: Normal boot
14:49:04.0605 0x18d0  ============================================================
14:49:08.0511 0x18d0  KLMD registered as C:\Windows\system32\drivers\56093957.sys
14:49:09.0652 0x18d0  System UUID: {729FCE04-138E-B6CC-50F6-FD258E80DE07}
14:49:10.0563 0x18d0  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:49:10.0566 0x18d0  Drive \Device\Harddisk1\DR1 - Size: 0x774488000 ( 29.82 Gb ), SectorSize: 0x200, Cylinders: 0xF34, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:49:10.0583 0x18d0  ============================================================
14:49:10.0583 0x18d0  \Device\Harddisk0\DR0:
14:49:10.0583 0x18d0  MBR partitions:
14:49:10.0583 0x18d0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x178B000, BlocksNum 0x72F7B000
14:49:10.0583 0x18d0  \Device\Harddisk1\DR1:
14:49:10.0583 0x18d0  MBR partitions:
14:49:10.0583 0x18d0  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x3BA2420
14:49:10.0583 0x18d0  ============================================================
14:49:10.0606 0x18d0  C: <-> \Device\Harddisk0\DR0\Partition1
14:49:10.0606 0x18d0  ============================================================
14:49:10.0606 0x18d0  Initialize success
14:49:10.0606 0x18d0  ============================================================
14:49:16.0775 0x1adc  ============================================================
14:49:16.0775 0x1adc  Scan started
14:49:16.0775 0x1adc  Mode: Manual; 
14:49:16.0775 0x1adc  ============================================================
14:49:16.0775 0x1adc  KSN ping started
14:49:20.0499 0x1adc  KSN ping finished: true
14:49:23.0664 0x1adc  ================ Scan system memory ========================
14:49:23.0664 0x1adc  System memory - ok
14:49:23.0664 0x1adc  ================ Scan services =============================
14:49:23.0788 0x1adc  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
14:49:23.0801 0x1adc  1394ohci - ok
14:49:23.0855 0x1adc  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
14:49:23.0864 0x1adc  ACPI - ok
14:49:23.0883 0x1adc  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
14:49:23.0885 0x1adc  AcpiPmi - ok
14:49:23.0956 0x1adc  [ 68E7DEA59FDEF410BAF29FDB5B7A6EEF, B808FCF0C30B465A1330E47947B84FC722A3B4C46260E261C54B1EED725A288F ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:49:23.0959 0x1adc  AdobeARMservice - ok
14:49:24.0115 0x1adc  [ 328708CB8CDADD9C284B4E33E2B19904, 037854C773AA9C7A542A4ED04D61F6BDD10C933EE9BA98D7DD7DB128EC915970 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:49:24.0123 0x1adc  AdobeFlashPlayerUpdateSvc - ok
14:49:24.0146 0x1adc  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
14:49:24.0157 0x1adc  adp94xx - ok
14:49:24.0177 0x1adc  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
14:49:24.0184 0x1adc  adpahci - ok
14:49:24.0202 0x1adc  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
14:49:24.0206 0x1adc  adpu320 - ok
14:49:24.0282 0x1adc  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:49:24.0285 0x1adc  AeLookupSvc - ok
14:49:24.0322 0x1adc  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
14:49:24.0330 0x1adc  AFD - ok
14:49:24.0333 0x1adc  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
14:49:24.0334 0x1adc  agp440 - ok
14:49:24.0355 0x1adc  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
14:49:24.0356 0x1adc  ALG - ok
14:49:24.0359 0x1adc  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
14:49:24.0359 0x1adc  aliide - ok
14:49:24.0362 0x1adc  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
14:49:24.0362 0x1adc  amdide - ok
14:49:24.0365 0x1adc  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
14:49:24.0366 0x1adc  AmdK8 - ok
14:49:24.0368 0x1adc  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
14:49:24.0370 0x1adc  AmdPPM - ok
14:49:24.0373 0x1adc  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:49:24.0375 0x1adc  amdsata - ok
14:49:24.0383 0x1adc  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
14:49:24.0386 0x1adc  amdsbs - ok
14:49:24.0388 0x1adc  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:49:24.0389 0x1adc  amdxata - ok
14:49:24.0420 0x1adc  [ 7DAFE5E55DB412E3169B363766C0EC38, 36C6A1C10158E2B3720C74AD936E0FF28E843A08D6F511B9C0E64978408CDD58 ] AmUStor         C:\Windows\system32\drivers\AmUStor.SYS
14:49:24.0422 0x1adc  AmUStor - ok
14:49:24.0436 0x1adc  [ A9FB80B0BBA6F765F4E691B7AD4963A7, 06BC740AF47ACECEE3707C433357F872EA0D9F2CA1B9FC2489FA3B421A262EF0 ] AppID           C:\Windows\system32\drivers\appid.sys
14:49:24.0437 0x1adc  AppID - ok
14:49:24.0466 0x1adc  [ C47B6624AF9AEE4146743DCB133A159D, 10D1E6C9F972C3A8CC304F38B0A52818A78D70B4AF71F6E22CE1773397FC2AB4 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:49:24.0467 0x1adc  AppIDSvc - ok
14:49:24.0485 0x1adc  [ 046E837786271237A76C50F7CE1F5BC6, 10EFAEC9BCEF241B3046DFECA7659E137DF42C975E50B35D841024D44A58BB98 ] Appinfo         C:\Windows\System32\appinfo.dll
14:49:24.0486 0x1adc  Appinfo - ok
14:49:24.0656 0x1adc  [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:49:24.0657 0x1adc  Apple Mobile Device Service - ok
14:49:24.0678 0x1adc  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
14:49:24.0681 0x1adc  AppMgmt - ok
14:49:24.0684 0x1adc  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
14:49:24.0686 0x1adc  arc - ok
14:49:24.0689 0x1adc  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
14:49:24.0691 0x1adc  arcsas - ok
14:49:24.0746 0x1adc  [ 660D597B7A78256734D7F3230B21B355, CAA19E8EFAD63B8975A4CD8EFD5CE5F21E056856D36BC5A9E48517F1E574ABBA ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:49:24.0776 0x1adc  aspnet_state - ok
14:49:24.0778 0x1adc  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:49:24.0779 0x1adc  AsyncMac - ok
14:49:24.0781 0x1adc  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
14:49:24.0782 0x1adc  atapi - ok
14:49:24.0803 0x1adc  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:49:24.0811 0x1adc  AudioEndpointBuilder - ok
14:49:24.0824 0x1adc  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
14:49:24.0831 0x1adc  AudioSrv - ok
14:49:24.0862 0x1adc  [ 4B2469B9858FF03AA83947A05BE60447, ECA58D0DD3512251F1DB265B388E01923CDC87C5FB2521366004A637D7C93AAF ] AvrcpService    C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe
14:49:24.0863 0x1adc  AvrcpService - ok
14:49:24.0872 0x1adc  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:49:24.0874 0x1adc  AxInstSV - ok
14:49:24.0894 0x1adc  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
14:49:24.0902 0x1adc  b06bdrv - ok
14:49:24.0908 0x1adc  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
14:49:24.0912 0x1adc  b57nd60a - ok
14:49:24.0925 0x1adc  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
14:49:24.0927 0x1adc  BDESVC - ok
14:49:24.0929 0x1adc  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
14:49:24.0929 0x1adc  Beep - ok
14:49:24.0945 0x1adc  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
14:49:24.0954 0x1adc  BFE - ok
14:49:25.0048 0x1adc  [ 4E8EF55692BDCB8BA97888877CD034AC, 050C73032D77D57E3B79D1BFB3F2D7F2E9CED1188F53576223FE10149D86AB6C ] BHDrvx64        C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\BASHDefs\20160718.001\BHDrvx64.sys
14:49:25.0068 0x1adc  BHDrvx64 - ok
14:49:25.0105 0x1adc  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
14:49:25.0121 0x1adc  BITS - ok
14:49:25.0132 0x1adc  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
14:49:25.0132 0x1adc  blbdrive - ok
14:49:25.0170 0x1adc  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:49:25.0176 0x1adc  Bonjour Service - ok
14:49:25.0179 0x1adc  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:49:25.0181 0x1adc  bowser - ok
14:49:25.0183 0x1adc  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
14:49:25.0184 0x1adc  BrFiltLo - ok
14:49:25.0185 0x1adc  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
14:49:25.0186 0x1adc  BrFiltUp - ok
14:49:25.0197 0x1adc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
14:49:25.0199 0x1adc  Browser - ok
14:49:25.0236 0x1adc  [ 63A00CDBEB300522C49EC7CA77324060, 99CB6D37C7D898982A192AAA8DE5CE255E6FA482E19FE9032BAA7069E652F6F5 ] BrSerIb         C:\Windows\system32\DRIVERS\BrSerIb.sys
14:49:25.0237 0x1adc  BrSerIb - ok
14:49:25.0257 0x1adc  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
14:49:25.0261 0x1adc  Brserid - ok
14:49:25.0267 0x1adc  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
14:49:25.0268 0x1adc  BrSerWdm - ok
14:49:25.0271 0x1adc  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
14:49:25.0271 0x1adc  BrUsbMdm - ok
14:49:25.0274 0x1adc  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
14:49:25.0275 0x1adc  BrUsbSer - ok
14:49:25.0298 0x1adc  [ BBCFD6C6EF66449F55AF1BFDB08C9B12, D6D5D408FCFFF9ED69D095948E786C08EEECD5F55905A3D8FE2BB08944C5E1F2 ] BrUsbSIb        C:\Windows\system32\DRIVERS\BrUsbSIb.sys
14:49:25.0298 0x1adc  BrUsbSIb - ok
14:49:25.0344 0x1adc  [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
14:49:25.0347 0x1adc  BrYNSvc - ok
14:49:25.0370 0x1adc  [ F7D4C27E37E9C38C421054535FB714AA, E278357B5F3220475EC829FC3719160DFA68BFE0BF1B7BF1A66F057B9EF89477 ] BTDevManager    C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
14:49:25.0372 0x1adc  BTDevManager - ok
14:49:25.0374 0x1adc  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
14:49:25.0376 0x1adc  BthEnum - ok
14:49:25.0378 0x1adc  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
14:49:25.0380 0x1adc  BTHMODEM - ok
14:49:25.0385 0x1adc  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
14:49:25.0387 0x1adc  BthPan - ok
14:49:25.0421 0x1adc  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
14:49:25.0428 0x1adc  BTHPORT - ok
14:49:25.0448 0x1adc  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
14:49:25.0449 0x1adc  bthserv - ok
14:49:25.0460 0x1adc  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
14:49:25.0462 0x1adc  BTHUSB - ok
14:49:25.0519 0x1adc  [ 03427B8FF618BE50EB5027B4E549C0D8, 3C3815FE3C847B992E794B1BB0FDB87B8D18AEC95BA9E916591CF43EB8169D15 ] ccSet_NIS       C:\Windows\system32\drivers\NISx64\1607000.04C\ccSetx64.sys
14:49:25.0521 0x1adc  ccSet_NIS - ok
14:49:25.0524 0x1adc  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:49:25.0526 0x1adc  cdfs - ok
14:49:25.0529 0x1adc  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
14:49:25.0532 0x1adc  cdrom - ok
14:49:25.0540 0x1adc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
14:49:25.0542 0x1adc  CertPropSvc - ok
14:49:25.0544 0x1adc  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
14:49:25.0545 0x1adc  circlass - ok
14:49:25.0557 0x1adc  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
14:49:25.0563 0x1adc  CLFS - ok
14:49:25.0605 0x1adc  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:49:25.0607 0x1adc  clr_optimization_v2.0.50727_32 - ok
14:49:25.0621 0x1adc  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:49:25.0623 0x1adc  clr_optimization_v2.0.50727_64 - ok
14:49:25.0656 0x1adc  [ AB4CD527BEFCC43EE441E6C50CCE54C8, 13B776AE63049FFBA7E35EA0A4C26EBB57B10D973E05C4CF1214249754DC46E4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:49:25.0745 0x1adc  clr_optimization_v4.0.30319_32 - ok
14:49:25.0756 0x1adc  [ 1400C75FF021D6CFACE46AC41B60770E, 3FCB8D7714A79522F2738037D559F1FFFB2F05C5406D2A038EF5DDB4629CA1CE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:49:25.0785 0x1adc  clr_optimization_v4.0.30319_64 - ok
14:49:25.0788 0x1adc  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
14:49:25.0788 0x1adc  CmBatt - ok
14:49:25.0790 0x1adc  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
14:49:25.0791 0x1adc  cmdide - ok
14:49:25.0815 0x1adc  [ CA3FB5A6B626D8A00A89E049CF95954E, CD5E3E40972513195108BA46CEC1D0AEA6B09A67EEBDD17EB759BD1729B07C06 ] CNG             C:\Windows\system32\Drivers\cng.sys
14:49:25.0822 0x1adc  CNG - ok
14:49:25.0824 0x1adc  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
14:49:25.0825 0x1adc  Compbatt - ok
14:49:25.0828 0x1adc  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
14:49:25.0828 0x1adc  CompositeBus - ok
14:49:25.0830 0x1adc  COMSysApp - ok
14:49:25.0832 0x1adc  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
14:49:25.0833 0x1adc  crcdisk - ok
14:49:25.0848 0x1adc  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:49:25.0850 0x1adc  CryptSvc - ok
14:49:25.0866 0x1adc  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
14:49:25.0873 0x1adc  CSC - ok
14:49:25.0897 0x1adc  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
14:49:25.0906 0x1adc  CscService - ok
14:49:25.0942 0x1adc  dbupdate - ok
14:49:25.0944 0x1adc  dbupdatem - ok
14:49:25.0972 0x1adc  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:49:25.0979 0x1adc  DcomLaunch - ok
14:49:26.0000 0x1adc  [ 3802CBF4BDDE6F99974B27EE1782E5F9, 51562209E16A1C0247D73D7BFC8827AE4A2E57AF11350379A8FBA1EC44E56E54 ] DDDriver        C:\Windows\system32\drivers\DDDriver64Dcsa.sys
14:49:26.0001 0x1adc  DDDriver - ok
14:49:26.0015 0x1adc  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
14:49:26.0019 0x1adc  defragsvc - ok
14:49:26.0098 0x1adc  [ B503A0F8201068C75AB47A72EF18F225, 30A290EEC5D8616EB9B1D98DD4B745ABEC19AD49C1703691D0F50241B6EC43FC ] Dell Foundation Services C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
14:49:26.0100 0x1adc  Dell Foundation Services - ok
14:49:26.0200 0x1adc  [ E554163D138B79CD8C6EDF73187FC635, 0EDC0B76437B145607C39288F3E6B92975E3B406859EA8213BBE635A0C21922D ] DellDataVault   C:\Program Files\Dell\DellDataVault\DellDataVault.exe
14:49:26.0252 0x1adc  DellDataVault - ok
14:49:26.0281 0x1adc  [ D8F74B93897C8FDF2EAF4C99E30500A4, 565D69AE486074C3E2D30EC8DCF11D720F1887BF45BF7EE1DF24DB012ED1F4A3 ] DellDataVaultWiz C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
14:49:26.0284 0x1adc  DellDataVaultWiz - ok
14:49:26.0317 0x1adc  [ 188BCE1A33FAEE1F19A8D8875B0781DC, 0167783D063826325C856FC0FC0595A9E53F22D655D450EE01F04AB30EC6CECA ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
14:49:26.0319 0x1adc  DellDigitalDelivery - ok
14:49:26.0355 0x1adc  [ DC3BD578642252FD9569B9CD75CEF81E, 63F44BC19389C19BA9F9E974BF2E5236AF7F66D9076943B9CF46775264BBE413 ] DellProf        C:\Windows\system32\drivers\DellProf.sys
14:49:26.0355 0x1adc  DellProf - ok
14:49:26.0380 0x1adc  [ 44C694C2B542DB3CDAEBDB1FF3233F4D, 888CA6F60ECF508DE4D414FCAB680BC7A103237701D47840552F6CCA64FF7176 ] DellUpdate      C:\Program Files (x86)\Dell Update\DellUpService.exe
14:49:26.0383 0x1adc  DellUpdate - ok
14:49:26.0396 0x1adc  [ CF1F6326AC44C42F4615D4BD53188AC5, 28DC32F1957918C3D5DE72415CC32A51C6885CAA38119FE475D2631269D3B9B3 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
14:49:26.0397 0x1adc  DfsC - ok
14:49:26.0412 0x1adc  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:49:26.0416 0x1adc  Dhcp - ok
14:49:26.0443 0x1adc  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
14:49:26.0469 0x1adc  DiagTrack - ok
14:49:26.0472 0x1adc  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
14:49:26.0473 0x1adc  discache - ok
14:49:26.0485 0x1adc  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys
14:49:26.0486 0x1adc  Disk - ok
14:49:26.0489 0x1adc  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
14:49:26.0490 0x1adc  dmvsc - ok
14:49:26.0505 0x1adc  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:49:26.0508 0x1adc  Dnscache - ok
14:49:26.0514 0x1adc  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
14:49:26.0518 0x1adc  dot3svc - ok
14:49:26.0522 0x1adc  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
14:49:26.0524 0x1adc  DPS - ok
14:49:26.0557 0x1adc  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:49:26.0558 0x1adc  drmkaud - ok
14:49:26.0587 0x1adc  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:49:26.0597 0x1adc  DXGKrnl - ok
14:49:26.0628 0x1adc  [ F2E765FA3A1261A11A6D51B7ED370727, C4224D0BCD0FDB26CB6C8BCC018BD6E1B3CC0963924182A31E904C61E6E41D01 ] e1dexpress      C:\Windows\system32\DRIVERS\e1d62x64.sys
14:49:26.0634 0x1adc  e1dexpress - ok
14:49:26.0646 0x1adc  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
14:49:26.0647 0x1adc  EapHost - ok
14:49:26.0712 0x1adc  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
14:49:26.0771 0x1adc  ebdrv - ok
14:49:26.0832 0x1adc  [ E5C10FCFA331D2BA13B211D0454FEA38, 9363545317C655EED282BA1FE7C71B26E2C3599F35E42E7496F413961303A24D ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
14:49:26.0837 0x1adc  eeCtrl - ok
14:49:26.0855 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] EFS             C:\Windows\System32\lsass.exe
14:49:26.0855 0x1adc  EFS - ok
14:49:26.0895 0x1adc  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
14:49:26.0905 0x1adc  ehRecvr - ok
14:49:26.0916 0x1adc  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
14:49:26.0918 0x1adc  ehSched - ok
14:49:26.0928 0x1adc  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
14:49:26.0935 0x1adc  elxstor - ok
14:49:26.0951 0x1adc  [ 2BD3F1059975CE90F8D968DADD790DFF, 9FD4FA7DB54B0E1E4A48863435F728220978A271D2A28BB3E9E112C1A59B1D4C ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
14:49:26.0953 0x1adc  EraserUtilRebootDrv - ok
14:49:26.0955 0x1adc  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
14:49:26.0956 0x1adc  ErrDev - ok
14:49:26.0974 0x1adc  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
14:49:26.0980 0x1adc  EventSystem - ok
14:49:26.0984 0x1adc  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
14:49:26.0987 0x1adc  exfat - ok
14:49:26.0992 0x1adc  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:49:26.0995 0x1adc  fastfat - ok
14:49:27.0026 0x1adc  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
14:49:27.0035 0x1adc  Fax - ok
14:49:27.0038 0x1adc  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
14:49:27.0039 0x1adc  fdc - ok
14:49:27.0053 0x1adc  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
14:49:27.0054 0x1adc  fdPHost - ok
14:49:27.0078 0x1adc  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
14:49:27.0080 0x1adc  FDResPub - ok
14:49:27.0083 0x1adc  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:49:27.0084 0x1adc  FileInfo - ok
14:49:27.0086 0x1adc  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:49:27.0087 0x1adc  Filetrace - ok
14:49:27.0088 0x1adc  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
14:49:27.0089 0x1adc  flpydisk - ok
14:49:27.0101 0x1adc  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:49:27.0105 0x1adc  FltMgr - ok
14:49:27.0142 0x1adc  [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache       C:\Windows\system32\FntCache.dll
14:49:27.0168 0x1adc  FontCache - ok
14:49:27.0197 0x1adc  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:49:27.0199 0x1adc  FontCache3.0.0.0 - ok
14:49:27.0202 0x1adc  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:49:27.0203 0x1adc  FsDepends - ok
14:49:27.0205 0x1adc  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:49:27.0205 0x1adc  Fs_Rec - ok
14:49:27.0210 0x1adc  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:49:27.0213 0x1adc  fvevol - ok
14:49:27.0216 0x1adc  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
14:49:27.0217 0x1adc  gagp30kx - ok
14:49:27.0244 0x1adc  [ FE91DC3D9A696CCDDB9F51C25ACBC53A, 4E1A7BB3AC57530A1DF8AB7E981087275E89E6AC629F881C98E40F13150ED532 ] gpsvc           C:\Windows\System32\gpsvc.dll
14:49:27.0259 0x1adc  gpsvc - ok
14:49:27.0315 0x1adc  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:49:27.0318 0x1adc  gupdate - ok
14:49:27.0321 0x1adc  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:49:27.0323 0x1adc  gupdatem - ok
14:49:27.0326 0x1adc  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
14:49:27.0327 0x1adc  hcw85cir - ok
14:49:27.0343 0x1adc  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:49:27.0349 0x1adc  HdAudAddService - ok
14:49:27.0354 0x1adc  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
14:49:27.0356 0x1adc  HDAudBus - ok
14:49:27.0358 0x1adc  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
14:49:27.0360 0x1adc  HidBatt - ok
14:49:27.0363 0x1adc  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
14:49:27.0365 0x1adc  HidBth - ok
14:49:27.0367 0x1adc  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
14:49:27.0368 0x1adc  HidIr - ok
14:49:27.0388 0x1adc  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
14:49:27.0389 0x1adc  hidserv - ok
14:49:27.0392 0x1adc  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
14:49:27.0392 0x1adc  HidUsb - ok
14:49:27.0419 0x1adc  [ 2364E6D01B9364D286DACC0AD972A32F, E29A1D63F251C4EF86F277E435AC5026D9D4BCE1E780EF816C8BD3EE4DB0DFE3 ] hitmanpro37     C:\Windows\system32\drivers\hitmanpro37.sys
14:49:27.0429 0x1adc  hitmanpro37 - ok
14:49:27.0452 0x1adc  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:49:27.0454 0x1adc  hkmsvc - ok
14:49:27.0467 0x1adc  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:49:27.0471 0x1adc  HomeGroupListener - ok
14:49:27.0493 0x1adc  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:49:27.0496 0x1adc  HomeGroupProvider - ok
14:49:27.0499 0x1adc  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
14:49:27.0501 0x1adc  HpSAMD - ok
14:49:27.0526 0x1adc  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:49:27.0576 0x1adc  HTTP - ok
14:49:27.0579 0x1adc  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:49:27.0579 0x1adc  hwpolicy - ok
14:49:27.0582 0x1adc  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
14:49:27.0584 0x1adc  i8042prt - ok
14:49:27.0623 0x1adc  [ 12859E1215AA083A42E7ADCDE5C061D1, 262F9C65C3FA7EB69C4FA7C6547E1C79DB49697A083309909BC78726A116557F ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
14:49:27.0639 0x1adc  iaStorA - ok
14:49:27.0696 0x1adc  [ 14E3DB5ADA7E2187A404129F4E5CE336, 5925C8E9DC00A6C682D6A3B37C6EBF2C325D37C8E4BF584F0B5AAC5A7B666E47 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:49:27.0697 0x1adc  IAStorDataMgrSvc - ok
14:49:27.0712 0x1adc  [ 91F97C1A0ABCD7FA487E8EF7A249C15C, 834D85B7833DD1EDE0938320A68237315F60263ABCB6714974E711EBA91178E9 ] iaStorF         C:\Windows\system32\drivers\iaStorF.sys
14:49:27.0712 0x1adc  iaStorF - ok
14:49:27.0731 0x1adc  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:49:27.0737 0x1adc  iaStorV - ok
14:49:27.0805 0x1adc  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:49:27.0820 0x1adc  idsvc - ok
14:49:27.0881 0x1adc  [ DB2B8F970C2EA337C78C92B04C2E84D1, A5D2275AEA687A84BE2B6A355B11446F59A3DD549C4C6F0FCE337A9BF8C34049 ] IDSVia64        C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\IPSDefs\20160721.001\IDSvia64.sys
14:49:27.0890 0x1adc  IDSVia64 - ok
14:49:27.0892 0x1adc  IEEtwCollectorService - ok
14:49:27.0926 0x1adc  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
14:49:27.0927 0x1adc  iirsp - ok
14:49:27.0953 0x1adc  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
14:49:27.0969 0x1adc  IKEEXT - ok
14:49:28.0100 0x1adc  [ 3A2D6740F51BE48C0FD01AD907329DEE, 4FD899CD6E3B3D5C9803E52CB72F002B6CFC144D524FAF6845CF6D115EC6E059 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:49:28.0148 0x1adc  IntcAzAudAddService - ok
14:49:28.0183 0x1adc  [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
14:49:28.0199 0x1adc  Intel® Capability Licensing Service TCP IP Interface - ok
14:49:28.0227 0x1adc  [ 03CD3245E52C8A87E3B14832DC8A6A7D, C2AAB4E754479F0AA0AE86D51E721E5A11624681D5EC823E25E460EE146E70E9 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
14:49:28.0231 0x1adc  Intel® PROSet Monitoring Service - ok
14:49:28.0234 0x1adc  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
14:49:28.0234 0x1adc  intelide - ok
14:49:28.0237 0x1adc  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
14:49:28.0238 0x1adc  intelppm - ok
14:49:28.0265 0x1adc  [ 8479C6BEF185E3D0AEF8C269A0611984, 37A5E11543682705570FEA0C6FDA5471145D7D610562755CCB7FC33FC1A5E2AD ] IntelReadyModeDriver C:\Windows\system32\DRIVERS\IntelReadyModeDriver.sys
14:49:28.0266 0x1adc  IntelReadyModeDriver - ok
14:49:28.0285 0x1adc  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
14:49:28.0287 0x1adc  IPBusEnum - ok
14:49:28.0290 0x1adc  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:49:28.0291 0x1adc  IpFilterDriver - ok
14:49:28.0313 0x1adc  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:49:28.0321 0x1adc  iphlpsvc - ok
14:49:28.0324 0x1adc  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
14:49:28.0325 0x1adc  IPMIDRV - ok
14:49:28.0328 0x1adc  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:49:28.0330 0x1adc  IPNAT - ok
14:49:28.0379 0x1adc  [ F4B68F7C1666A2A6CD1D37A08F1D6DF1, 63A3D85B07D10E6B3F4E84FDD6EA6C00F2756E1C9B3E57C11A2FFCD815E99946 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:49:28.0388 0x1adc  iPod Service - ok
14:49:28.0391 0x1adc  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:49:28.0392 0x1adc  IRENUM - ok
14:49:28.0432 0x1adc  [ DC0B107DBFF0FDF94F6C8F792850EE9B, 4F73257CF5EBAC9B7E27ADE8C1667047E4658D69F2DD4696451AC74F352CEF36 ] IRMTService     c:\Program Files\Intel\Intel® Ready Mode Technology\IRMTService.exe
14:49:28.0435 0x1adc  IRMTService - ok
14:49:28.0437 0x1adc  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
14:49:28.0438 0x1adc  isapnp - ok
14:49:28.0451 0x1adc  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
14:49:28.0455 0x1adc  iScsiPrt - ok
14:49:28.0478 0x1adc  [ A7A2E0D3932B1986990AC7077B1658CD, F8CC75A711E6C4E5299557F05C0C6B957E8508EA496BC74CCF4827385B046CB4 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
14:49:28.0483 0x1adc  iusb3hub - ok
14:49:28.0519 0x1adc  [ FD9C74D20E6F97EDC442091F9DBC1189, 01DD3D862FD7A429E9D79B3B1BC657594628747B0C4C124E976D733065498EDB ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
14:49:28.0528 0x1adc  iusb3xhc - ok
14:49:28.0577 0x1adc  [ 5F3583770145A00FA1EDCF8089AD5CCA, AB7AF84EE1B452312F3F7BEB3978355E7F23F4BB2A2F045E718F7346ACDB5CB3 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
14:49:28.0580 0x1adc  jhi_service - ok
14:49:28.0583 0x1adc  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
14:49:28.0584 0x1adc  kbdclass - ok
14:49:28.0585 0x1adc  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
14:49:28.0586 0x1adc  kbdhid - ok
14:49:28.0596 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] KeyIso          C:\Windows\system32\lsass.exe
14:49:28.0597 0x1adc  KeyIso - ok
14:49:28.0623 0x1adc  [ B6C2FA7F5E5BC1A488A57C6344D29D64, 857245D664CF9ED8121E2087D73F85DA3FED721484DDC6B51AF6A344EC29A27F ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:49:28.0624 0x1adc  KSecDD - ok
14:49:28.0638 0x1adc  [ FB4397DDCC732DB6A7B33B747C7EB708, AD8B9500AAE12C1507B982B74B86731BE75AFAC7F64538332A380AC43EDEC271 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:49:28.0640 0x1adc  KSecPkg - ok
14:49:28.0643 0x1adc  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
14:49:28.0643 0x1adc  ksthunk - ok
14:49:28.0664 0x1adc  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:49:28.0669 0x1adc  KtmRm - ok
14:49:28.0703 0x1adc  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
14:49:28.0707 0x1adc  LanmanServer - ok
14:49:28.0729 0x1adc  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:49:28.0731 0x1adc  LanmanWorkstation - ok
14:49:28.0734 0x1adc  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:49:28.0736 0x1adc  lltdio - ok
14:49:28.0752 0x1adc  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:49:28.0757 0x1adc  lltdsvc - ok
14:49:28.0769 0x1adc  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:49:28.0770 0x1adc  lmhosts - ok
14:49:28.0798 0x1adc  [ 00B4184D8B269387EE48E42373E35181, F64B0C17A6BBC3B532724686123CE175A4CA6932DE5A1A357C823108CE9B81C4 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:49:28.0804 0x1adc  LMS - ok
14:49:28.0809 0x1adc  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
14:49:28.0811 0x1adc  LSI_FC - ok
14:49:28.0815 0x1adc  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
14:49:28.0816 0x1adc  LSI_SAS - ok
14:49:28.0819 0x1adc  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
14:49:28.0820 0x1adc  LSI_SAS2 - ok
14:49:28.0828 0x1adc  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
14:49:28.0830 0x1adc  LSI_SCSI - ok
14:49:28.0833 0x1adc  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
14:49:28.0835 0x1adc  luafv - ok
14:49:28.0859 0x1adc  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
14:49:28.0861 0x1adc  Mcx2Svc - ok
14:49:28.0863 0x1adc  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
14:49:28.0864 0x1adc  megasas - ok
14:49:28.0869 0x1adc  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
14:49:28.0873 0x1adc  MegaSR - ok
14:49:28.0885 0x1adc  [ F59C2E19189BEB21A57CB2CE32AE1618, 881E221B3FF4C65F89B215840CB16DE5A42BE2ED992344CC2C90FE7850CAE430 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
14:49:28.0887 0x1adc  MEIx64 - ok
14:49:28.0898 0x1adc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
14:49:28.0899 0x1adc  MMCSS - ok
14:49:28.0908 0x1adc  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
14:49:28.0909 0x1adc  Modem - ok
14:49:28.0930 0x1adc  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
14:49:28.0931 0x1adc  monitor - ok
14:49:28.0934 0x1adc  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
14:49:28.0935 0x1adc  mouclass - ok
14:49:28.0937 0x1adc  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
14:49:28.0937 0x1adc  mouhid - ok
14:49:28.0940 0x1adc  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:49:28.0942 0x1adc  mountmgr - ok
14:49:28.0956 0x1adc  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
14:49:28.0958 0x1adc  mpio - ok
14:49:28.0961 0x1adc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:49:28.0963 0x1adc  mpsdrv - ok
14:49:28.0989 0x1adc  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:49:29.0003 0x1adc  MpsSvc - ok
14:49:29.0024 0x1adc  [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:49:29.0027 0x1adc  MRxDAV - ok
14:49:29.0039 0x1adc  [ ACEC16415275E1AD6F7983EF472810E3, E5017E157954F6C21AA66233FF2C1A6B1FF3E4685F26648A8A21F2B9718DD97C ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:49:29.0042 0x1adc  mrxsmb - ok
14:49:29.0054 0x1adc  [ 0F276F2F2018296FABC7BD2BCCAAB40B, 378A36F7282EE9FFEC8A1D5783ECD0A428E0215B1774AAA166C5AA09B3C636F7 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:49:29.0059 0x1adc  mrxsmb10 - ok
14:49:29.0063 0x1adc  [ 1D4B7972375052F5B7877A6FD9BE33A0, B3FD235F6FE975F1869436ED1215913F0E8EB1123BB252FD221C35AB1121C3F5 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:49:29.0065 0x1adc  mrxsmb20 - ok
14:49:29.0067 0x1adc  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
14:49:29.0068 0x1adc  msahci - ok
14:49:29.0071 0x1adc  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
14:49:29.0073 0x1adc  msdsm - ok
14:49:29.0090 0x1adc  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
14:49:29.0092 0x1adc  MSDTC - ok
14:49:29.0096 0x1adc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:49:29.0097 0x1adc  Msfs - ok
14:49:29.0098 0x1adc  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:49:29.0099 0x1adc  mshidkmdf - ok
14:49:29.0101 0x1adc  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
14:49:29.0101 0x1adc  msisadrv - ok
14:49:29.0116 0x1adc  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:49:29.0119 0x1adc  MSiSCSI - ok
14:49:29.0121 0x1adc  msiserver - ok
14:49:29.0139 0x1adc  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:49:29.0140 0x1adc  MSKSSRV - ok
14:49:29.0142 0x1adc  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:49:29.0143 0x1adc  MSPCLOCK - ok
14:49:29.0145 0x1adc  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:49:29.0145 0x1adc  MSPQM - ok
14:49:29.0165 0x1adc  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:49:29.0181 0x1adc  MsRPC - ok
14:49:29.0184 0x1adc  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
14:49:29.0185 0x1adc  mssmbios - ok
14:49:29.0187 0x1adc  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:49:29.0187 0x1adc  MSTEE - ok
14:49:29.0189 0x1adc  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
14:49:29.0190 0x1adc  MTConfig - ok
14:49:29.0193 0x1adc  [ AA0C2BA3782E92BD85E2264BE418E67C, 8B0953926E83274DF16670F1EF6F4E302F7EE17418F486975C353A406850298C ] Mup             C:\Windows\system32\Drivers\mup.sys
14:49:29.0194 0x1adc  Mup - ok
14:49:29.0219 0x1adc  [ D0A5F9ACE1F0C459CEF714156DB1DE02, F877296E8506E6A1ACBDACDC5085B18C6842320A2775A329D286BAC796F08D54 ] NAL             C:\Windows\system32\Drivers\iqvw64e.sys
14:49:29.0219 0x1adc  NAL - ok
14:49:29.0264 0x1adc  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
14:49:29.0272 0x1adc  napagent - ok
14:49:29.0316 0x1adc  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:49:29.0320 0x1adc  NativeWifiP - ok
14:49:29.0337 0x1adc  NAVENG - ok
14:49:29.0338 0x1adc  NAVEX15 - ok
14:49:29.0363 0x1adc  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:49:29.0379 0x1adc  NDIS - ok
14:49:29.0382 0x1adc  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:49:29.0383 0x1adc  NdisCap - ok
14:49:29.0385 0x1adc  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:49:29.0386 0x1adc  NdisTapi - ok
14:49:29.0388 0x1adc  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:49:29.0389 0x1adc  Ndisuio - ok
14:49:29.0393 0x1adc  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:49:29.0395 0x1adc  NdisWan - ok
14:49:29.0398 0x1adc  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:49:29.0399 0x1adc  NDProxy - ok
14:49:29.0401 0x1adc  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:49:29.0402 0x1adc  NetBIOS - ok
14:49:29.0408 0x1adc  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:49:29.0412 0x1adc  NetBT - ok
14:49:29.0446 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] Netlogon        C:\Windows\system32\lsass.exe
14:49:29.0447 0x1adc  Netlogon - ok
14:49:29.0475 0x1adc  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
14:49:29.0480 0x1adc  Netman - ok
14:49:29.0501 0x1adc  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:49:29.0521 0x1adc  NetMsmqActivator - ok
14:49:29.0524 0x1adc  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:49:29.0526 0x1adc  NetPipeActivator - ok
14:49:29.0545 0x1adc  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
14:49:29.0551 0x1adc  netprofm - ok
14:49:29.0554 0x1adc  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:49:29.0556 0x1adc  NetTcpActivator - ok
14:49:29.0561 0x1adc  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:49:29.0563 0x1adc  NetTcpPortSharing - ok
14:49:29.0568 0x1adc  [ 73CE12B8BDD747B0063CB0A7EF44CEA7, F570BB52BE460DBA6203698CC96FFD9674E1903D0E0F5C49375BE3F8D8E89582 ] netvsc          C:\Windows\system32\DRIVERS\netvsc60.sys
14:49:29.0570 0x1adc  netvsc - ok
14:49:29.0573 0x1adc  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
14:49:29.0574 0x1adc  nfrd960 - ok
14:49:29.0728 0x1adc  [ 35DE4A8F863C173FA7EDDF3860FC7A77, 4EB472605B0FDA401A56F86BE3B2B118AE4BF512823235C0D6589E88538F288A ] NIS             C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe
14:49:29.0732 0x1adc  NIS - ok
14:49:29.0754 0x1adc  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:49:29.0758 0x1adc  NlaSvc - ok
14:49:29.0761 0x1adc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:49:29.0762 0x1adc  Npfs - ok
14:49:29.0778 0x1adc  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
14:49:29.0779 0x1adc  nsi - ok
14:49:29.0781 0x1adc  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:49:29.0782 0x1adc  nsiproxy - ok
14:49:29.0830 0x1adc  [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:49:29.0897 0x1adc  Ntfs - ok
14:49:29.0900 0x1adc  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
14:49:29.0901 0x1adc  Null - ok
14:49:29.0933 0x1adc  [ B9E5A80F646DDFEF158773722A466EA3, 028979FE600D17DA70445F44D81FAE4EDA3478FCC81FA5506133CCAC37C4E2BF ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
14:49:29.0935 0x1adc  NVHDA - ok
14:49:30.0122 0x1adc  [ 03AEFAA81567A31CAC586AB28AC84A49, 61D76ABD6DBDE8E655051478995C175B5A26F3E152689B8AC1EF1E97ED883109 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:49:30.0241 0x1adc  nvlddmkm - ok
14:49:30.0256 0x1adc  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:49:30.0258 0x1adc  nvraid - ok
14:49:30.0262 0x1adc  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:49:30.0265 0x1adc  nvstor - ok
14:49:30.0285 0x1adc  [ 1BC6175DAFB0BFEAF8C927F109F912BF, EDEAC4AD10518FEDA9E827E60B840F8CBD2E22CC796E798941A8C64268115224 ] nvsvc           C:\Windows\system32\nvvsvc.exe
14:49:30.0302 0x1adc  nvsvc - ok
14:49:30.0307 0x1adc  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
14:49:30.0309 0x1adc  nv_agp - ok
14:49:30.0312 0x1adc  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
14:49:30.0313 0x1adc  ohci1394 - ok
14:49:30.0350 0x1adc  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:49:30.0353 0x1adc  ose - ok
14:49:30.0478 0x1adc  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:49:30.0562 0x1adc  osppsvc - ok
14:49:30.0592 0x1adc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:49:30.0597 0x1adc  p2pimsvc - ok
14:49:30.0622 0x1adc  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
14:49:30.0668 0x1adc  p2psvc - ok
14:49:30.0671 0x1adc  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
14:49:30.0673 0x1adc  Parport - ok
14:49:30.0680 0x1adc  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:49:30.0682 0x1adc  partmgr - ok
14:49:30.0687 0x1adc  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:49:30.0690 0x1adc  PcaSvc - ok
14:49:30.0695 0x1adc  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
14:49:30.0697 0x1adc  pci - ok
14:49:30.0699 0x1adc  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
14:49:30.0699 0x1adc  pciide - ok
14:49:30.0704 0x1adc  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
14:49:30.0707 0x1adc  pcmcia - ok
14:49:30.0710 0x1adc  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
14:49:30.0711 0x1adc  pcw - ok
14:49:30.0723 0x1adc  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:49:30.0731 0x1adc  PEAUTH - ok
14:49:30.0757 0x1adc  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
14:49:30.0783 0x1adc  PeerDistSvc - ok
14:49:30.0837 0x1adc  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
14:49:30.0839 0x1adc  PerfHost - ok
14:49:30.0869 0x1adc  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
14:49:30.0891 0x1adc  pla - ok
14:49:30.0914 0x1adc  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:49:30.0919 0x1adc  PlugPlay - ok
14:49:30.0927 0x1adc  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:49:30.0928 0x1adc  PNRPAutoReg - ok
14:49:30.0936 0x1adc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:49:30.0940 0x1adc  PNRPsvc - ok
14:49:30.0966 0x1adc  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:49:30.0972 0x1adc  PolicyAgent - ok
14:49:30.0991 0x1adc  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll
14:49:30.0994 0x1adc  Power - ok
14:49:30.0998 0x1adc  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:49:30.0999 0x1adc  PptpMiniport - ok
14:49:31.0002 0x1adc  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
14:49:31.0003 0x1adc  Processor - ok
14:49:31.0016 0x1adc  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
14:49:31.0019 0x1adc  ProfSvc - ok
14:49:31.0030 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] ProtectedStorage C:\Windows\system32\lsass.exe
14:49:31.0030 0x1adc  ProtectedStorage - ok
14:49:31.0034 0x1adc  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:49:31.0035 0x1adc  Psched - ok
14:49:31.0074 0x1adc  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
14:49:31.0107 0x1adc  ql2300 - ok
14:49:31.0112 0x1adc  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
14:49:31.0114 0x1adc  ql40xx - ok
14:49:31.0134 0x1adc  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
14:49:31.0138 0x1adc  QWAVE - ok
14:49:31.0140 0x1adc  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:49:31.0141 0x1adc  QWAVEdrv - ok
14:49:31.0143 0x1adc  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:49:31.0144 0x1adc  RasAcd - ok
14:49:31.0166 0x1adc  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:49:31.0167 0x1adc  RasAgileVpn - ok
14:49:31.0179 0x1adc  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
14:49:31.0181 0x1adc  RasAuto - ok
14:49:31.0185 0x1adc  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:49:31.0187 0x1adc  Rasl2tp - ok
14:49:31.0195 0x1adc  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
14:49:31.0200 0x1adc  RasMan - ok
14:49:31.0203 0x1adc  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:49:31.0205 0x1adc  RasPppoe - ok
14:49:31.0207 0x1adc  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:49:31.0209 0x1adc  RasSstp - ok
14:49:31.0228 0x1adc  [ 71B6F78D6444CCE6F77BC42917A4E8F7, 34927A2C1CA349D251A327ED1F30018B065A8E6B886D9B5080A8AE2F6A8C0914 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:49:31.0233 0x1adc  rdbss - ok
14:49:31.0235 0x1adc  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
14:49:31.0235 0x1adc  rdpbus - ok
14:49:31.0237 0x1adc  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
14:49:31.0237 0x1adc  RDPCDD - ok
14:49:31.0243 0x1adc  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
14:49:31.0245 0x1adc  RDPDR - ok
14:49:31.0247 0x1adc  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
14:49:31.0247 0x1adc  RDPENCDD - ok
14:49:31.0249 0x1adc  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
14:49:31.0250 0x1adc  RDPREFMP - ok
14:49:31.0254 0x1adc  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
14:49:31.0257 0x1adc  RDPWD - ok
14:49:31.0262 0x1adc  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:49:31.0265 0x1adc  rdyboost - ok
14:49:31.0286 0x1adc  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:49:31.0288 0x1adc  RemoteAccess - ok
14:49:31.0310 0x1adc  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:49:31.0313 0x1adc  RemoteRegistry - ok
14:49:31.0326 0x1adc  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
14:49:31.0329 0x1adc  RFCOMM - ok
14:49:31.0355 0x1adc  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:49:31.0356 0x1adc  RpcEptMapper - ok
14:49:31.0385 0x1adc  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
14:49:31.0386 0x1adc  RpcLocator - ok
14:49:31.0414 0x1adc  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs           C:\Windows\system32\rpcss.dll
14:49:31.0420 0x1adc  RpcSs - ok
14:49:31.0423 0x1adc  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:49:31.0424 0x1adc  rspndr - ok
14:49:31.0483 0x1adc  [ C397166D21F4CD59D5AF339F8938CD0D, AC65C3238B0793BDDB43992AF1FF09CC70DA1DB89B8722A312FC1EF8BC97E272 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
14:49:31.0487 0x1adc  RtkAudioService - ok
14:49:31.0521 0x1adc  [ AAB2BDA0BFF508A417A2BB849D9E1D2F, 150294E8BCE4DFB468D730FB431859AE36F6F2A981985232E198D69A5B294C80 ] RtkBleServ      C:\Program Files (x86)\REALTEK\Realtek Bluetooth\RtkBleServ.exe
14:49:31.0522 0x1adc  RtkBleServ - ok
14:49:31.0544 0x1adc  [ BA56909FF032365EED28F8F2673DBF86, B7E3CBF2AC548CDDE90AB2528D77EF22BF131274F918EEECBBC33E9C2E55611D ] RtkBtFilter     C:\Windows\system32\DRIVERS\RtkBtfilter.sys
14:49:31.0550 0x1adc  RtkBtFilter - ok
14:49:31.0642 0x1adc  [ 80999836A819C7D8ED067E1E7DD1A766, 5FC46124ACB30BBF2DEC2E5DCA7205ADF401B180E3029659E756E7AB7F5A882F ] RTWlanE         C:\Windows\system32\DRIVERS\rtwlane.sys
14:49:31.0735 0x1adc  RTWlanE - ok
14:49:31.0787 0x1adc  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
14:49:31.0788 0x1adc  s3cap - ok
14:49:31.0790 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] SamSs           C:\Windows\system32\lsass.exe
14:49:31.0791 0x1adc  SamSs - ok
14:49:31.0805 0x1adc  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
14:49:31.0807 0x1adc  sbp2port - ok
14:49:31.0817 0x1adc  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:49:31.0820 0x1adc  SCardSvr - ok
14:49:31.0823 0x1adc  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:49:31.0823 0x1adc  scfilter - ok
14:49:31.0862 0x1adc  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
14:49:31.0888 0x1adc  Schedule - ok
14:49:31.0932 0x1adc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:49:31.0933 0x1adc  SCPolicySvc - ok
14:49:31.0944 0x1adc  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
14:49:31.0947 0x1adc  SDRSVC - ok
14:49:31.0949 0x1adc  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:49:31.0950 0x1adc  secdrv - ok
14:49:31.0971 0x1adc  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
14:49:31.0973 0x1adc  seclogon - ok
14:49:31.0987 0x1adc  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
14:49:31.0989 0x1adc  SENS - ok
14:49:32.0001 0x1adc  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:49:32.0002 0x1adc  SensrSvc - ok
14:49:32.0004 0x1adc  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
14:49:32.0005 0x1adc  Serenum - ok
14:49:32.0008 0x1adc  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
14:49:32.0010 0x1adc  Serial - ok
14:49:32.0012 0x1adc  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
14:49:32.0013 0x1adc  sermouse - ok
14:49:32.0031 0x1adc  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
14:49:32.0034 0x1adc  SessionEnv - ok
14:49:32.0036 0x1adc  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
14:49:32.0037 0x1adc  sffdisk - ok
14:49:32.0038 0x1adc  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
14:49:32.0039 0x1adc  sffp_mmc - ok
14:49:32.0041 0x1adc  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
14:49:32.0041 0x1adc  sffp_sd - ok
14:49:32.0043 0x1adc  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
14:49:32.0044 0x1adc  sfloppy - ok
14:49:32.0101 0x1adc  [ 68960DD826166C69BE15F28942573EC3, 6FCDF6BA3113C1F3B798B89C068F5ABFAA7C5D92678B4B07E5D9EA6C10612FEF ] SftService      C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
14:49:32.0135 0x1adc  SftService - ok
14:49:32.0166 0x1adc  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:49:32.0172 0x1adc  SharedAccess - ok
14:49:32.0187 0x1adc  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:49:32.0192 0x1adc  ShellHWDetection - ok
14:49:32.0194 0x1adc  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
14:49:32.0195 0x1adc  SiSRaid2 - ok
14:49:32.0198 0x1adc  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
14:49:32.0199 0x1adc  SiSRaid4 - ok
14:49:32.0211 0x1adc  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
14:49:32.0213 0x1adc  Smb - ok
14:49:32.0216 0x1adc  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:49:32.0217 0x1adc  SNMPTRAP - ok
14:49:32.0219 0x1adc  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
14:49:32.0220 0x1adc  spldr - ok
14:49:32.0235 0x1adc  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
14:49:32.0243 0x1adc  Spooler - ok
14:49:32.0323 0x1adc  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
14:49:32.0384 0x1adc  sppsvc - ok
14:49:32.0396 0x1adc  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
14:49:32.0398 0x1adc  sppuinotify - ok
14:49:32.0495 0x1adc  [ 050509118EFE916DE0FE07ED1E9BB9DA, 4DD9CE4740F4CB2208E14D7A38F0AE528D112D734A1A20A87C6C6E3E304B5320 ] SRTSP           C:\Windows\System32\Drivers\NISx64\1607000.04C\SRTSP64.SYS
14:49:32.0504 0x1adc  SRTSP - ok
14:49:32.0522 0x1adc  [ 27382B6CF36D08783212FCF8B3691649, 83ECFBE280BBA8A4073A34F1B36D57952543F1A9B31E13EF8A40D8A2F12C2F73 ] SRTSPX          C:\Windows\system32\drivers\NISx64\1607000.04C\SRTSPX64.SYS
14:49:32.0522 0x1adc  SRTSPX - ok
14:49:32.0536 0x1adc  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:49:32.0543 0x1adc  srv - ok
14:49:32.0551 0x1adc  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:49:32.0557 0x1adc  srv2 - ok
14:49:32.0561 0x1adc  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:49:32.0563 0x1adc  srvnet - ok
14:49:32.0589 0x1adc  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:49:32.0592 0x1adc  SSDPSRV - ok
14:49:32.0602 0x1adc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:49:32.0604 0x1adc  SstpSvc - ok
14:49:32.0658 0x1adc  [ 0E952C9DDE28962922CCDEFA0BF8C425, 41AEA8777DDDE907E94B69A0D03D4EAD4983DB1B798CB01A77E4D8E57CA4A9AD ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
14:49:32.0664 0x1adc  Stereo Service - ok
14:49:32.0666 0x1adc  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
14:49:32.0667 0x1adc  stexstor - ok
14:49:32.0702 0x1adc  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
14:49:32.0711 0x1adc  stisvc - ok
14:49:32.0713 0x1adc  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
14:49:32.0714 0x1adc  StorSvc - ok
14:49:32.0716 0x1adc  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
14:49:32.0718 0x1adc  storvsc - ok
14:49:32.0785 0x1adc  [ 1957C598952FBE08193EE43A109FD3DD, A0E77C20B263BD911AE3D7842210E65DD5D0E64191201553154205F64CFA8D70 ] SupportAssistAgent C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
14:49:32.0785 0x1adc  SupportAssistAgent - ok
14:49:32.0787 0x1adc  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
14:49:32.0788 0x1adc  swenum - ok
14:49:32.0838 0x1adc  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:49:32.0845 0x1adc  SwitchBoard - ok
14:49:32.0884 0x1adc  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
14:49:32.0892 0x1adc  swprv - ok
14:49:32.0929 0x1adc  [ 6ADFA39058484ADECCCF159627DC987E, FF8376D3441ABA6742773F83BF4DE46A0DB05FD9BA29902454E0E4C05ABC7E58 ] SymEFASI        C:\Windows\system32\drivers\NISx64\1607000.04C\SYMEFASI64.SYS
14:49:32.0963 0x1adc  SymEFASI - ok
14:49:33.0000 0x1adc  [ F612740A892E8F9E789A85DD92B51150, 67F43FC6CE7A2238DA875657F2223787829316B410EB9A1481C4DF92258C7804 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
14:49:33.0002 0x1adc  SymEvent - ok
14:49:33.0028 0x1adc  [ 9458A37D3A38597FBF62F97E05B3170A, 22724BBCC4426978B656F614B68FB1A80E0E14B56128122A29DAB33266C0E88C ] SymIRON         C:\Windows\system32\drivers\NISx64\1607000.04C\Ironx64.SYS
14:49:33.0031 0x1adc  SymIRON - ok
14:49:33.0056 0x1adc  [ 5A185256AE1689912B5EC53F69D53820, D692B735AF2764CE29C6182A5C496994AD3A9EF9D5FB600EE9CE8B664F39D0FA ] SymNetS         C:\Windows\System32\Drivers\NISx64\1607000.04C\SYMNETS.SYS
14:49:33.0063 0x1adc  SymNetS - ok
14:49:33.0079 0x1adc  [ 4CDD7DF58730D23BA9CB5829A6E2ECEA, 89A2A1604C2BF985894000F51D9D376B32F1327197866850B5BF8640272DE828 ] SynthVid        C:\Windows\system32\DRIVERS\VMBusVideoM.sys
14:49:33.0080 0x1adc  SynthVid - ok
14:49:33.0119 0x1adc  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
14:49:33.0153 0x1adc  SysMain - ok
14:49:33.0158 0x1adc  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:49:33.0160 0x1adc  TabletInputService - ok
14:49:33.0170 0x1adc  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:49:33.0175 0x1adc  TapiSrv - ok
14:49:33.0215 0x1adc  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:49:33.0249 0x1adc  Tcpip - ok
14:49:33.0292 0x1adc  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:49:33.0312 0x1adc  TCPIP6 - ok
14:49:33.0354 0x1adc  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:49:33.0355 0x1adc  tcpipreg - ok
14:49:33.0357 0x1adc  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
14:49:33.0358 0x1adc  TDPIPE - ok
14:49:33.0360 0x1adc  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
14:49:33.0361 0x1adc  TDTCP - ok
14:49:33.0365 0x1adc  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:49:33.0367 0x1adc  tdx - ok
14:49:33.0414 0x1adc  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
14:49:33.0415 0x1adc  TermDD - ok
14:49:33.0437 0x1adc  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
14:49:33.0447 0x1adc  TermService - ok
14:49:33.0488 0x1adc  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
14:49:33.0490 0x1adc  Themes - ok
14:49:33.0515 0x1adc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
14:49:33.0516 0x1adc  THREADORDER - ok
14:49:33.0549 0x1adc  [ 48DDEF0B921DD331536CC82C1A8FF64F, 540107E278E4C7DE4F43D37F7EA7BC094B6755399C22EE3A68574AA8A7719ACC ] Tpm             C:\Windows\system32\drivers\tpm.sys
14:49:33.0551 0x1adc  Tpm - ok
14:49:33.0566 0x1adc  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
14:49:33.0568 0x1adc  TrkWks - ok
14:49:33.0611 0x1adc  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:49:33.0613 0x1adc  TrustedInstaller - ok
14:49:33.0616 0x1adc  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
14:49:33.0617 0x1adc  tssecsrv - ok
14:49:33.0619 0x1adc  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
14:49:33.0621 0x1adc  TsUsbFlt - ok
14:49:33.0622 0x1adc  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
14:49:33.0623 0x1adc  TsUsbGD - ok
14:49:33.0627 0x1adc  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:49:33.0629 0x1adc  tunnel - ok
14:49:33.0632 0x1adc  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
14:49:33.0633 0x1adc  uagp35 - ok
14:49:33.0653 0x1adc  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:49:33.0658 0x1adc  udfs - ok
14:49:33.0672 0x1adc  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:49:33.0674 0x1adc  UI0Detect - ok
14:49:33.0678 0x1adc  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
14:49:33.0679 0x1adc  uliagpkx - ok
14:49:33.0682 0x1adc  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
14:49:33.0683 0x1adc  umbus - ok
14:49:33.0685 0x1adc  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
14:49:33.0685 0x1adc  UmPass - ok
14:49:33.0697 0x1adc  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
14:49:33.0701 0x1adc  UmRdpService - ok
14:49:33.0711 0x1adc  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
14:49:33.0717 0x1adc  upnphost - ok
14:49:33.0752 0x1adc  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
14:49:33.0754 0x1adc  USBAAPL64 - ok
14:49:33.0757 0x1adc  [ 724DABDE1A9C48C6E5FE0F9F7E583940, 6B5FB81D0D6096CB827AC32DD5EE7C92F1E2EEFD54EC9E047EC6AF50610B4885 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
14:49:33.0758 0x1adc  usbccgp - ok
14:49:33.0762 0x1adc  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
14:49:33.0764 0x1adc  usbcir - ok
14:49:33.0766 0x1adc  [ CA11C28D69925E356CC27749CC41C3E1, E0AEB9EA23E7EFB982C1548508583B16A89A5568750EA23A313C8AC40CCB84C5 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
14:49:33.0768 0x1adc  usbehci - ok
14:49:33.0774 0x1adc  [ 8FA7BAF75209D59E7302BCF0308C52A7, 00F5F7442BBD25E7455ECDE5AE5D40C60E878BAF53A7D535DB59EE2C3F027245 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
14:49:33.0786 0x1adc  usbhub - ok
14:49:33.0790 0x1adc  [ BB33E6D8006EDD67CAB91E9417417710, 16CC4A00FB1793C7B723F6A99A39725C87A71C2958CFA0916A55BB084973C96F ] usbohci         C:\Windows\system32\drivers\usbohci.sys
14:49:33.0790 0x1adc  usbohci - ok
14:49:33.0811 0x1adc  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
14:49:33.0812 0x1adc  usbprint - ok
14:49:33.0851 0x1adc  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
14:49:33.0852 0x1adc  usbscan - ok
14:49:33.0877 0x1adc  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:49:33.0878 0x1adc  USBSTOR - ok
14:49:33.0880 0x1adc  [ 8565793CAF1EF768DB669BE0C3C71EDF, 8FD8904C5C0F2BFC66A17EE51E2E50C4BB11B77A18F51F4893D079B2F37F6B21 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
14:49:33.0881 0x1adc  usbuhci - ok
14:49:33.0896 0x1adc  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
14:49:33.0897 0x1adc  UxSms - ok
14:49:33.0904 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] VaultSvc        C:\Windows\system32\lsass.exe
14:49:33.0905 0x1adc  VaultSvc - ok
14:49:33.0907 0x1adc  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
14:49:33.0908 0x1adc  vdrvroot - ok
14:49:33.0928 0x1adc  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
14:49:33.0936 0x1adc  vds - ok
14:49:33.0939 0x1adc  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
14:49:33.0940 0x1adc  vga - ok
14:49:33.0943 0x1adc  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
14:49:33.0944 0x1adc  VgaSave - ok
14:49:33.0980 0x1adc  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
14:49:34.0000 0x1adc  vhdmp - ok
14:49:34.0005 0x1adc  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
14:49:34.0006 0x1adc  viaide - ok
14:49:34.0010 0x1adc  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
14:49:34.0012 0x1adc  VMBusHID - ok
14:49:34.0027 0x1adc  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
14:49:34.0028 0x1adc  volmgr - ok
14:49:34.0036 0x1adc  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:49:34.0045 0x1adc  volmgrx - ok
14:49:34.0098 0x1adc  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:49:34.0106 0x1adc  volsnap - ok
14:49:34.0122 0x1adc  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
14:49:34.0130 0x1adc  vsmraid - ok
14:49:34.0172 0x1adc  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
14:49:34.0197 0x1adc  VSS - ok
14:49:34.0200 0x1adc  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
14:49:34.0202 0x1adc  vwifibus - ok
14:49:34.0205 0x1adc  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
14:49:34.0206 0x1adc  vwififlt - ok
14:49:34.0225 0x1adc  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
14:49:34.0226 0x1adc  vwifimp - ok
14:49:34.0240 0x1adc  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
14:49:34.0246 0x1adc  W32Time - ok
14:49:34.0254 0x1adc  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
14:49:34.0255 0x1adc  WacomPen - ok
14:49:34.0263 0x1adc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
14:49:34.0264 0x1adc  WANARP - ok
14:49:34.0275 0x1adc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:49:34.0276 0x1adc  Wanarpv6 - ok
14:49:34.0408 0x1adc  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
14:49:34.0458 0x1adc  WatAdminSvc - ok
14:49:34.0525 0x1adc  [ E73F4589AE772B60BC4D2ACAE3D73A1E, E1679694D94AC7E99F792A7E7F0B6DE9BEF45BEB63042959EE69E8849595BF74 ] WavesSysSvc     C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
14:49:34.0577 0x1adc  WavesSysSvc - ok
14:49:34.0616 0x1adc  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
14:49:34.0649 0x1adc  wbengine - ok
14:49:34.0676 0x1adc  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:49:34.0680 0x1adc  WbioSrvc - ok
14:49:34.0687 0x1adc  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:49:34.0705 0x1adc  wcncsvc - ok
14:49:34.0714 0x1adc  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:49:34.0715 0x1adc  WcsPlugInService - ok
14:49:34.0717 0x1adc  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
14:49:34.0718 0x1adc  Wd - ok
14:49:34.0739 0x1adc  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:49:34.0753 0x1adc  Wdf01000 - ok
14:49:34.0757 0x1adc  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:49:34.0758 0x1adc  WdiServiceHost - ok
14:49:34.0761 0x1adc  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:49:34.0762 0x1adc  WdiSystemHost - ok
14:49:34.0775 0x1adc  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
14:49:34.0779 0x1adc  WebClient - ok
14:49:34.0784 0x1adc  [ CBA25A299ECDBAE3A2300B68598AABA3, 5AC6F75FBDA58CD9D17922AF2780A37B89067EB4A97EE792A644B238BE94490D ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:49:34.0788 0x1adc  Wecsvc - ok
14:49:34.0794 0x1adc  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:49:34.0795 0x1adc  wercplsupport - ok
14:49:34.0820 0x1adc  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
14:49:34.0822 0x1adc  WerSvc - ok
14:49:34.0824 0x1adc  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
14:49:34.0824 0x1adc  WfpLwf - ok
14:49:34.0826 0x1adc  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:49:34.0827 0x1adc  WIMMount - ok
14:49:34.0840 0x1adc  WinDefend - ok
14:49:34.0842 0x1adc  WinHttpAutoProxySvc - ok
14:49:34.0887 0x1adc  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:49:34.0891 0x1adc  Winmgmt - ok
14:49:34.0948 0x1adc  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
14:49:34.0982 0x1adc  WinRM - ok
14:49:35.0020 0x1adc  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
14:49:35.0021 0x1adc  WinUsb - ok
14:49:35.0061 0x1adc  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
14:49:35.0076 0x1adc  Wlansvc - ok
14:49:35.0092 0x1adc  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
14:49:35.0093 0x1adc  WmiAcpi - ok
14:49:35.0110 0x1adc  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:49:35.0113 0x1adc  wmiApSrv - ok
14:49:35.0128 0x1adc  WMPNetworkSvc - ok
14:49:35.0139 0x1adc  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:49:35.0141 0x1adc  WPCSvc - ok
14:49:35.0152 0x1adc  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:49:35.0154 0x1adc  WPDBusEnum - ok
14:49:35.0156 0x1adc  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:49:35.0157 0x1adc  ws2ifsl - ok
14:49:35.0168 0x1adc  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
14:49:35.0170 0x1adc  wscsvc - ok
14:49:35.0172 0x1adc  WSearch - ok
14:49:35.0232 0x1adc  [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv        C:\Windows\system32\wuaueng.dll
14:49:35.0284 0x1adc  wuauserv - ok
14:49:35.0288 0x1adc  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:49:35.0290 0x1adc  WudfPf - ok
14:49:35.0311 0x1adc  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
14:49:35.0314 0x1adc  WUDFRd - ok
14:49:35.0340 0x1adc  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:49:35.0341 0x1adc  wudfsvc - ok
14:49:35.0348 0x1adc  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:49:35.0352 0x1adc  WwanSvc - ok
14:49:35.0366 0x1adc  ================ Scan global ===============================
14:49:35.0383 0x1adc  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
14:49:35.0406 0x1adc  [ 841BF993597DCD498247684B5D3AE845, B80FDDE2F36F7DC9BCE253FFE0148C918DC3DD4357F37761B364DE7B887239EA ] C:\Windows\system32\winsrv.dll
14:49:35.0414 0x1adc  [ 841BF993597DCD498247684B5D3AE845, B80FDDE2F36F7DC9BCE253FFE0148C918DC3DD4357F37761B364DE7B887239EA ] C:\Windows\system32\winsrv.dll
14:49:35.0426 0x1adc  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
14:49:35.0446 0x1adc  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
14:49:35.0451 0x1adc  [ Global ] - ok
14:49:35.0452 0x1adc  ================ Scan MBR ==================================
14:49:35.0453 0x1adc  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
14:49:35.0640 0x1adc  \Device\Harddisk0\DR0 - ok
14:49:35.0644 0x1adc  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:49:35.0647 0x1adc  \Device\Harddisk1\DR1 - ok
14:49:35.0647 0x1adc  ================ Scan VBR ==================================
14:49:35.0648 0x1adc  [ 2743B5081B3DB512CD57B8B2BC63B40E ] \Device\Harddisk0\DR0\Partition1
14:49:35.0715 0x1adc  \Device\Harddisk0\DR0\Partition1 - ok
14:49:35.0717 0x1adc  [ E767208227F55E04016576D7BDECCD72 ] \Device\Harddisk1\DR1\Partition1
14:49:35.0718 0x1adc  \Device\Harddisk1\DR1\Partition1 - ok
14:49:35.0718 0x1adc  ================ Scan generic autorun ======================
14:49:35.0870 0x1adc  [ A15FF7FFA54109281D5742D396271DFC, 2551B6203E594087858FA514FD73DC652AEC45AAAADDFC50240F4AC2BF5C1879 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
14:49:36.0021 0x1adc  RTHDVCPL - ok
14:49:36.0053 0x1adc  [ 813006C133576159EBB6DE770D55267D, B3FAA5B7943EC3C8B76B3D203A4C7F1F990F048BA28DF5C04F7A95235AA2EA2E ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
14:49:36.0077 0x1adc  RtHDVBg_MAXX6 - ok
14:49:36.0093 0x1adc  [ 3D608DBAF48A2B3761A5F42F7B98A80F, A2D2A901C4E2082CAC41515DC612FF932F93EE4E7AE3522799E892A9337D398A ] C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
14:49:36.0101 0x1adc  WavesSvc - ok
14:49:36.0139 0x1adc  [ BAEDADCD6509201F82CE5B404AB14814, 8C39C18CE00DB254F370D9C4AA80E88BF67C457240F3D30A58E39DBF9B96F44B ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
14:49:36.0142 0x1adc  IAStorIcon - ok
14:49:36.0185 0x1adc  [ 5E29842648557D1B2A9174D375AAD65A, 2D509557141170D64B29CE90CCDD183D7D46CD10316F5704C57D3291155DEA80 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
14:49:36.0218 0x1adc  NvBackend - ok
14:49:36.0229 0x1adc  [ BCD340300881BF94AB1C23C4D1D0E82C, 3ADBD036B668F0982C32FC084256909CBB0319840BA0916147CCA3EDFA5D1800 ] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe
14:49:36.0232 0x1adc  BtServer - ok
14:49:36.0270 0x1adc  [ 1315C5C5C54CE2AA37A155F97027DB59, 70CDA6AE7FF4FD08FAD931477C524957952EDC89985696FD988B9786A349C565 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
14:49:36.0276 0x1adc  AdobeAAMUpdater-1.0 - ok
14:49:36.0313 0x1adc  [ 404A6E6550DB206EA6E9B1AC642102B2, 33CAF3CDEF820DFC97844BBCA56B95B6D31D1C682C69A29D14F7A0C9058AC8EF ] C:\Program Files\iTunes\iTunesHelper.exe
14:49:36.0315 0x1adc  iTunesHelper - ok
14:49:36.0353 0x1adc  [ CB46168FFDEA91E2B3435E51BB436558, 848D12E11B79722B07C42D848D831C6B782E1338B8F844924CB8938FE11F379D ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
14:49:36.0357 0x1adc  USB3MON - ok
14:49:36.0379 0x1adc  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:49:36.0385 0x1adc  SwitchBoard - ok
14:49:36.0430 0x1adc  [ 8FE651ACBA3344E645CFEB6286FFF6B8, ECE4DFFEB7EB0B19B6790FD0F619A5C4B23CA0BA9CC3F25924925F8EA07264B6 ] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
14:49:36.0455 0x1adc  AdobeCS6ServiceManager - ok
14:49:36.0506 0x1adc  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
14:49:36.0532 0x1adc  Sidebar - ok
14:49:36.0554 0x1adc  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
14:49:36.0556 0x1adc  mctadmin - ok
14:49:36.0574 0x1adc  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
14:49:36.0586 0x1adc  Sidebar - ok
14:49:36.0589 0x1adc  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
14:49:36.0590 0x1adc  mctadmin - ok
14:49:36.0591 0x1adc  Waiting for KSN requests completion. In queue: 325
14:49:37.0591 0x1adc  Waiting for KSN requests completion. In queue: 325
14:49:38.0591 0x1adc  Waiting for KSN requests completion. In queue: 18
14:49:39.0599 0x1adc  AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\WSCStub.exe ( 22.7.0.0 ), 0x51000 ( enabled : updated )
14:49:39.0601 0x1adc  FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\WSCStub.exe ( 22.7.0.0 ), 0x51010 ( enabled )
14:49:42.0465 0x1adc  ============================================================
14:49:42.0465 0x1adc  Scan finished
14:49:42.0465 0x1adc  ============================================================
14:49:42.0469 0x10dc  Detected object count: 0
14:49:42.0469 0x10dc  Actual detected object count: 0
14:50:00.0669 0x0b4c  Deinitialize success


#12 bpdx

bpdx
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:57 AM

Posted 25 July 2016 - 06:31 PM

Hi:  the TDSSKiller log was too long for one post, so seperated it out here:

 

TDSSKiller log:
 
14:48:56.0266 0x18d0  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
14:49:04.0604 0x18d0  ============================================================
14:49:04.0604 0x18d0  Current date / time: 2016/07/22 14:49:04.0604
14:49:04.0604 0x18d0  SystemInfo:
14:49:04.0604 0x18d0  
14:49:04.0604 0x18d0  OS Version: 6.1.7601 ServicePack: 1.0
14:49:04.0604 0x18d0  Product type: Workstation
14:49:04.0604 0x18d0  ComputerName: LS-PC
14:49:04.0605 0x18d0  UserName: LS
14:49:04.0605 0x18d0  Windows directory: C:\Windows
14:49:04.0605 0x18d0  System windows directory: C:\Windows
14:49:04.0605 0x18d0  Running under WOW64
14:49:04.0605 0x18d0  Processor architecture: Intel x64
14:49:04.0605 0x18d0  Number of processors: 8
14:49:04.0605 0x18d0  Page size: 0x1000
14:49:04.0605 0x18d0  Boot type: Normal boot
14:49:04.0605 0x18d0  ============================================================
14:49:08.0511 0x18d0  KLMD registered as C:\Windows\system32\drivers\56093957.sys
14:49:09.0652 0x18d0  System UUID: {729FCE04-138E-B6CC-50F6-FD258E80DE07}
14:49:10.0563 0x18d0  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
14:49:10.0566 0x18d0  Drive \Device\Harddisk1\DR1 - Size: 0x774488000 ( 29.82 Gb ), SectorSize: 0x200, Cylinders: 0xF34, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
14:49:10.0583 0x18d0  ============================================================
14:49:10.0583 0x18d0  \Device\Harddisk0\DR0:
14:49:10.0583 0x18d0  MBR partitions:
14:49:10.0583 0x18d0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x178B000, BlocksNum 0x72F7B000
14:49:10.0583 0x18d0  \Device\Harddisk1\DR1:
14:49:10.0583 0x18d0  MBR partitions:
14:49:10.0583 0x18d0  \Device\Harddisk1\DR1\Partition1: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x3BA2420
14:49:10.0583 0x18d0  ============================================================
14:49:10.0606 0x18d0  C: <-> \Device\Harddisk0\DR0\Partition1
14:49:10.0606 0x18d0  ============================================================
14:49:10.0606 0x18d0  Initialize success
14:49:10.0606 0x18d0  ============================================================
14:49:16.0775 0x1adc  ============================================================
14:49:16.0775 0x1adc  Scan started
14:49:16.0775 0x1adc  Mode: Manual; 
14:49:16.0775 0x1adc  ============================================================
14:49:16.0775 0x1adc  KSN ping started
14:49:20.0499 0x1adc  KSN ping finished: true
14:49:23.0664 0x1adc  ================ Scan system memory ========================
14:49:23.0664 0x1adc  System memory - ok
14:49:23.0664 0x1adc  ================ Scan services =============================
14:49:23.0788 0x1adc  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
14:49:23.0801 0x1adc  1394ohci - ok
14:49:23.0855 0x1adc  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
14:49:23.0864 0x1adc  ACPI - ok
14:49:23.0883 0x1adc  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
14:49:23.0885 0x1adc  AcpiPmi - ok
14:49:23.0956 0x1adc  [ 68E7DEA59FDEF410BAF29FDB5B7A6EEF, B808FCF0C30B465A1330E47947B84FC722A3B4C46260E261C54B1EED725A288F ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
14:49:23.0959 0x1adc  AdobeARMservice - ok
14:49:24.0115 0x1adc  [ 328708CB8CDADD9C284B4E33E2B19904, 037854C773AA9C7A542A4ED04D61F6BDD10C933EE9BA98D7DD7DB128EC915970 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
14:49:24.0123 0x1adc  AdobeFlashPlayerUpdateSvc - ok
14:49:24.0146 0x1adc  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
14:49:24.0157 0x1adc  adp94xx - ok
14:49:24.0177 0x1adc  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
14:49:24.0184 0x1adc  adpahci - ok
14:49:24.0202 0x1adc  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
14:49:24.0206 0x1adc  adpu320 - ok
14:49:24.0282 0x1adc  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
14:49:24.0285 0x1adc  AeLookupSvc - ok
14:49:24.0322 0x1adc  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
14:49:24.0330 0x1adc  AFD - ok
14:49:24.0333 0x1adc  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
14:49:24.0334 0x1adc  agp440 - ok
14:49:24.0355 0x1adc  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
14:49:24.0356 0x1adc  ALG - ok
14:49:24.0359 0x1adc  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
14:49:24.0359 0x1adc  aliide - ok
14:49:24.0362 0x1adc  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
14:49:24.0362 0x1adc  amdide - ok
14:49:24.0365 0x1adc  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
14:49:24.0366 0x1adc  AmdK8 - ok
14:49:24.0368 0x1adc  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
14:49:24.0370 0x1adc  AmdPPM - ok
14:49:24.0373 0x1adc  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
14:49:24.0375 0x1adc  amdsata - ok
14:49:24.0383 0x1adc  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
14:49:24.0386 0x1adc  amdsbs - ok
14:49:24.0388 0x1adc  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
14:49:24.0389 0x1adc  amdxata - ok
14:49:24.0420 0x1adc  [ 7DAFE5E55DB412E3169B363766C0EC38, 36C6A1C10158E2B3720C74AD936E0FF28E843A08D6F511B9C0E64978408CDD58 ] AmUStor         C:\Windows\system32\drivers\AmUStor.SYS
14:49:24.0422 0x1adc  AmUStor - ok
14:49:24.0436 0x1adc  [ A9FB80B0BBA6F765F4E691B7AD4963A7, 06BC740AF47ACECEE3707C433357F872EA0D9F2CA1B9FC2489FA3B421A262EF0 ] AppID           C:\Windows\system32\drivers\appid.sys
14:49:24.0437 0x1adc  AppID - ok
14:49:24.0466 0x1adc  [ C47B6624AF9AEE4146743DCB133A159D, 10D1E6C9F972C3A8CC304F38B0A52818A78D70B4AF71F6E22CE1773397FC2AB4 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
14:49:24.0467 0x1adc  AppIDSvc - ok
14:49:24.0485 0x1adc  [ 046E837786271237A76C50F7CE1F5BC6, 10EFAEC9BCEF241B3046DFECA7659E137DF42C975E50B35D841024D44A58BB98 ] Appinfo         C:\Windows\System32\appinfo.dll
14:49:24.0486 0x1adc  Appinfo - ok
14:49:24.0656 0x1adc  [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
14:49:24.0657 0x1adc  Apple Mobile Device Service - ok
14:49:24.0678 0x1adc  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
14:49:24.0681 0x1adc  AppMgmt - ok
14:49:24.0684 0x1adc  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
14:49:24.0686 0x1adc  arc - ok
14:49:24.0689 0x1adc  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
14:49:24.0691 0x1adc  arcsas - ok
14:49:24.0746 0x1adc  [ 660D597B7A78256734D7F3230B21B355, CAA19E8EFAD63B8975A4CD8EFD5CE5F21E056856D36BC5A9E48517F1E574ABBA ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
14:49:24.0776 0x1adc  aspnet_state - ok
14:49:24.0778 0x1adc  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
14:49:24.0779 0x1adc  AsyncMac - ok
14:49:24.0781 0x1adc  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
14:49:24.0782 0x1adc  atapi - ok
14:49:24.0803 0x1adc  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
14:49:24.0811 0x1adc  AudioEndpointBuilder - ok
14:49:24.0824 0x1adc  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
14:49:24.0831 0x1adc  AudioSrv - ok
14:49:24.0862 0x1adc  [ 4B2469B9858FF03AA83947A05BE60447, ECA58D0DD3512251F1DB265B388E01923CDC87C5FB2521366004A637D7C93AAF ] AvrcpService    C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe
14:49:24.0863 0x1adc  AvrcpService - ok
14:49:24.0872 0x1adc  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
14:49:24.0874 0x1adc  AxInstSV - ok
14:49:24.0894 0x1adc  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
14:49:24.0902 0x1adc  b06bdrv - ok
14:49:24.0908 0x1adc  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
14:49:24.0912 0x1adc  b57nd60a - ok
14:49:24.0925 0x1adc  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
14:49:24.0927 0x1adc  BDESVC - ok
14:49:24.0929 0x1adc  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
14:49:24.0929 0x1adc  Beep - ok
14:49:24.0945 0x1adc  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
14:49:24.0954 0x1adc  BFE - ok
14:49:25.0048 0x1adc  [ 4E8EF55692BDCB8BA97888877CD034AC, 050C73032D77D57E3B79D1BFB3F2D7F2E9CED1188F53576223FE10149D86AB6C ] BHDrvx64        C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\BASHDefs\20160718.001\BHDrvx64.sys
14:49:25.0068 0x1adc  BHDrvx64 - ok
14:49:25.0105 0x1adc  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
14:49:25.0121 0x1adc  BITS - ok
14:49:25.0132 0x1adc  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
14:49:25.0132 0x1adc  blbdrive - ok
14:49:25.0170 0x1adc  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
14:49:25.0176 0x1adc  Bonjour Service - ok
14:49:25.0179 0x1adc  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
14:49:25.0181 0x1adc  bowser - ok
14:49:25.0183 0x1adc  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
14:49:25.0184 0x1adc  BrFiltLo - ok
14:49:25.0185 0x1adc  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
14:49:25.0186 0x1adc  BrFiltUp - ok
14:49:25.0197 0x1adc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
14:49:25.0199 0x1adc  Browser - ok
14:49:25.0236 0x1adc  [ 63A00CDBEB300522C49EC7CA77324060, 99CB6D37C7D898982A192AAA8DE5CE255E6FA482E19FE9032BAA7069E652F6F5 ] BrSerIb         C:\Windows\system32\DRIVERS\BrSerIb.sys
14:49:25.0237 0x1adc  BrSerIb - ok
14:49:25.0257 0x1adc  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
14:49:25.0261 0x1adc  Brserid - ok
14:49:25.0267 0x1adc  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
14:49:25.0268 0x1adc  BrSerWdm - ok
14:49:25.0271 0x1adc  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
14:49:25.0271 0x1adc  BrUsbMdm - ok
14:49:25.0274 0x1adc  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
14:49:25.0275 0x1adc  BrUsbSer - ok
14:49:25.0298 0x1adc  [ BBCFD6C6EF66449F55AF1BFDB08C9B12, D6D5D408FCFFF9ED69D095948E786C08EEECD5F55905A3D8FE2BB08944C5E1F2 ] BrUsbSIb        C:\Windows\system32\DRIVERS\BrUsbSIb.sys
14:49:25.0298 0x1adc  BrUsbSIb - ok
14:49:25.0344 0x1adc  [ DB109DA005B6FE2A350C5DD7CA768DFD, 241A0BFAEFB1B165C00EE75E8CA382B5935F5DF447DAD5AE9022B2B78317668E ] BrYNSvc         C:\Program Files (x86)\Browny02\BrYNSvc.exe
14:49:25.0347 0x1adc  BrYNSvc - ok
14:49:25.0370 0x1adc  [ F7D4C27E37E9C38C421054535FB714AA, E278357B5F3220475EC829FC3719160DFA68BFE0BF1B7BF1A66F057B9EF89477 ] BTDevManager    C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
14:49:25.0372 0x1adc  BTDevManager - ok
14:49:25.0374 0x1adc  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
14:49:25.0376 0x1adc  BthEnum - ok
14:49:25.0378 0x1adc  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
14:49:25.0380 0x1adc  BTHMODEM - ok
14:49:25.0385 0x1adc  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
14:49:25.0387 0x1adc  BthPan - ok
14:49:25.0421 0x1adc  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
14:49:25.0428 0x1adc  BTHPORT - ok
14:49:25.0448 0x1adc  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
14:49:25.0449 0x1adc  bthserv - ok
14:49:25.0460 0x1adc  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
14:49:25.0462 0x1adc  BTHUSB - ok
14:49:25.0519 0x1adc  [ 03427B8FF618BE50EB5027B4E549C0D8, 3C3815FE3C847B992E794B1BB0FDB87B8D18AEC95BA9E916591CF43EB8169D15 ] ccSet_NIS       C:\Windows\system32\drivers\NISx64\1607000.04C\ccSetx64.sys
14:49:25.0521 0x1adc  ccSet_NIS - ok
14:49:25.0524 0x1adc  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
14:49:25.0526 0x1adc  cdfs - ok
14:49:25.0529 0x1adc  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
14:49:25.0532 0x1adc  cdrom - ok
14:49:25.0540 0x1adc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
14:49:25.0542 0x1adc  CertPropSvc - ok
14:49:25.0544 0x1adc  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
14:49:25.0545 0x1adc  circlass - ok
14:49:25.0557 0x1adc  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
14:49:25.0563 0x1adc  CLFS - ok
14:49:25.0605 0x1adc  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
14:49:25.0607 0x1adc  clr_optimization_v2.0.50727_32 - ok
14:49:25.0621 0x1adc  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
14:49:25.0623 0x1adc  clr_optimization_v2.0.50727_64 - ok
14:49:25.0656 0x1adc  [ AB4CD527BEFCC43EE441E6C50CCE54C8, 13B776AE63049FFBA7E35EA0A4C26EBB57B10D973E05C4CF1214249754DC46E4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
14:49:25.0745 0x1adc  clr_optimization_v4.0.30319_32 - ok
14:49:25.0756 0x1adc  [ 1400C75FF021D6CFACE46AC41B60770E, 3FCB8D7714A79522F2738037D559F1FFFB2F05C5406D2A038EF5DDB4629CA1CE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
14:49:25.0785 0x1adc  clr_optimization_v4.0.30319_64 - ok
14:49:25.0788 0x1adc  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
14:49:25.0788 0x1adc  CmBatt - ok
14:49:25.0790 0x1adc  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
14:49:25.0791 0x1adc  cmdide - ok
14:49:25.0815 0x1adc  [ CA3FB5A6B626D8A00A89E049CF95954E, CD5E3E40972513195108BA46CEC1D0AEA6B09A67EEBDD17EB759BD1729B07C06 ] CNG             C:\Windows\system32\Drivers\cng.sys
14:49:25.0822 0x1adc  CNG - ok
14:49:25.0824 0x1adc  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
14:49:25.0825 0x1adc  Compbatt - ok
14:49:25.0828 0x1adc  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
14:49:25.0828 0x1adc  CompositeBus - ok
14:49:25.0830 0x1adc  COMSysApp - ok
14:49:25.0832 0x1adc  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
14:49:25.0833 0x1adc  crcdisk - ok
14:49:25.0848 0x1adc  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
14:49:25.0850 0x1adc  CryptSvc - ok
14:49:25.0866 0x1adc  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
14:49:25.0873 0x1adc  CSC - ok
14:49:25.0897 0x1adc  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
14:49:25.0906 0x1adc  CscService - ok
14:49:25.0942 0x1adc  dbupdate - ok
14:49:25.0944 0x1adc  dbupdatem - ok
14:49:25.0972 0x1adc  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] DcomLaunch      C:\Windows\system32\rpcss.dll
14:49:25.0979 0x1adc  DcomLaunch - ok
14:49:26.0000 0x1adc  [ 3802CBF4BDDE6F99974B27EE1782E5F9, 51562209E16A1C0247D73D7BFC8827AE4A2E57AF11350379A8FBA1EC44E56E54 ] DDDriver        C:\Windows\system32\drivers\DDDriver64Dcsa.sys
14:49:26.0001 0x1adc  DDDriver - ok
14:49:26.0015 0x1adc  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
14:49:26.0019 0x1adc  defragsvc - ok
14:49:26.0098 0x1adc  [ B503A0F8201068C75AB47A72EF18F225, 30A290EEC5D8616EB9B1D98DD4B745ABEC19AD49C1703691D0F50241B6EC43FC ] Dell Foundation Services C:\Program Files\Dell\Dell Foundation Services\DFSSvc.exe
14:49:26.0100 0x1adc  Dell Foundation Services - ok
14:49:26.0200 0x1adc  [ E554163D138B79CD8C6EDF73187FC635, 0EDC0B76437B145607C39288F3E6B92975E3B406859EA8213BBE635A0C21922D ] DellDataVault   C:\Program Files\Dell\DellDataVault\DellDataVault.exe
14:49:26.0252 0x1adc  DellDataVault - ok
14:49:26.0281 0x1adc  [ D8F74B93897C8FDF2EAF4C99E30500A4, 565D69AE486074C3E2D30EC8DCF11D720F1887BF45BF7EE1DF24DB012ED1F4A3 ] DellDataVaultWiz C:\Program Files\Dell\DellDataVault\DellDataVaultWiz.exe
14:49:26.0284 0x1adc  DellDataVaultWiz - ok
14:49:26.0317 0x1adc  [ 188BCE1A33FAEE1F19A8D8875B0781DC, 0167783D063826325C856FC0FC0595A9E53F22D655D450EE01F04AB30EC6CECA ] DellDigitalDelivery c:\Program Files (x86)\Dell Digital Delivery\DeliveryService.exe
14:49:26.0319 0x1adc  DellDigitalDelivery - ok
14:49:26.0355 0x1adc  [ DC3BD578642252FD9569B9CD75CEF81E, 63F44BC19389C19BA9F9E974BF2E5236AF7F66D9076943B9CF46775264BBE413 ] DellProf        C:\Windows\system32\drivers\DellProf.sys
14:49:26.0355 0x1adc  DellProf - ok
14:49:26.0380 0x1adc  [ 44C694C2B542DB3CDAEBDB1FF3233F4D, 888CA6F60ECF508DE4D414FCAB680BC7A103237701D47840552F6CCA64FF7176 ] DellUpdate      C:\Program Files (x86)\Dell Update\DellUpService.exe
14:49:26.0383 0x1adc  DellUpdate - ok
14:49:26.0396 0x1adc  [ CF1F6326AC44C42F4615D4BD53188AC5, 28DC32F1957918C3D5DE72415CC32A51C6885CAA38119FE475D2631269D3B9B3 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
14:49:26.0397 0x1adc  DfsC - ok
14:49:26.0412 0x1adc  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
14:49:26.0416 0x1adc  Dhcp - ok
14:49:26.0443 0x1adc  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
14:49:26.0469 0x1adc  DiagTrack - ok
14:49:26.0472 0x1adc  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
14:49:26.0473 0x1adc  discache - ok
14:49:26.0485 0x1adc  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys
14:49:26.0486 0x1adc  Disk - ok
14:49:26.0489 0x1adc  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
14:49:26.0490 0x1adc  dmvsc - ok
14:49:26.0505 0x1adc  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
14:49:26.0508 0x1adc  Dnscache - ok
14:49:26.0514 0x1adc  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
14:49:26.0518 0x1adc  dot3svc - ok
14:49:26.0522 0x1adc  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
14:49:26.0524 0x1adc  DPS - ok
14:49:26.0557 0x1adc  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
14:49:26.0558 0x1adc  drmkaud - ok
14:49:26.0587 0x1adc  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
14:49:26.0597 0x1adc  DXGKrnl - ok
14:49:26.0628 0x1adc  [ F2E765FA3A1261A11A6D51B7ED370727, C4224D0BCD0FDB26CB6C8BCC018BD6E1B3CC0963924182A31E904C61E6E41D01 ] e1dexpress      C:\Windows\system32\DRIVERS\e1d62x64.sys
14:49:26.0634 0x1adc  e1dexpress - ok
14:49:26.0646 0x1adc  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
14:49:26.0647 0x1adc  EapHost - ok
14:49:26.0712 0x1adc  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
14:49:26.0771 0x1adc  ebdrv - ok
14:49:26.0832 0x1adc  [ E5C10FCFA331D2BA13B211D0454FEA38, 9363545317C655EED282BA1FE7C71B26E2C3599F35E42E7496F413961303A24D ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
14:49:26.0837 0x1adc  eeCtrl - ok
14:49:26.0855 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] EFS             C:\Windows\System32\lsass.exe
14:49:26.0855 0x1adc  EFS - ok
14:49:26.0895 0x1adc  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
14:49:26.0905 0x1adc  ehRecvr - ok
14:49:26.0916 0x1adc  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
14:49:26.0918 0x1adc  ehSched - ok
14:49:26.0928 0x1adc  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
14:49:26.0935 0x1adc  elxstor - ok
14:49:26.0951 0x1adc  [ 2BD3F1059975CE90F8D968DADD790DFF, 9FD4FA7DB54B0E1E4A48863435F728220978A271D2A28BB3E9E112C1A59B1D4C ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
14:49:26.0953 0x1adc  EraserUtilRebootDrv - ok
14:49:26.0955 0x1adc  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
14:49:26.0956 0x1adc  ErrDev - ok
14:49:26.0974 0x1adc  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
14:49:26.0980 0x1adc  EventSystem - ok
14:49:26.0984 0x1adc  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
14:49:26.0987 0x1adc  exfat - ok
14:49:26.0992 0x1adc  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
14:49:26.0995 0x1adc  fastfat - ok
14:49:27.0026 0x1adc  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
14:49:27.0035 0x1adc  Fax - ok
14:49:27.0038 0x1adc  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
14:49:27.0039 0x1adc  fdc - ok
14:49:27.0053 0x1adc  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
14:49:27.0054 0x1adc  fdPHost - ok
14:49:27.0078 0x1adc  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
14:49:27.0080 0x1adc  FDResPub - ok
14:49:27.0083 0x1adc  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
14:49:27.0084 0x1adc  FileInfo - ok
14:49:27.0086 0x1adc  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
14:49:27.0087 0x1adc  Filetrace - ok
14:49:27.0088 0x1adc  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
14:49:27.0089 0x1adc  flpydisk - ok
14:49:27.0101 0x1adc  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
14:49:27.0105 0x1adc  FltMgr - ok
14:49:27.0142 0x1adc  [ BCB16AE33AA58E0042F3EF34CFB6396A, E8ADA10DE60A94E4BABE9FCA6D0AA83B11520C092D49057E17F6C6059D35A323 ] FontCache       C:\Windows\system32\FntCache.dll
14:49:27.0168 0x1adc  FontCache - ok
14:49:27.0197 0x1adc  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
14:49:27.0199 0x1adc  FontCache3.0.0.0 - ok
14:49:27.0202 0x1adc  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
14:49:27.0203 0x1adc  FsDepends - ok
14:49:27.0205 0x1adc  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
14:49:27.0205 0x1adc  Fs_Rec - ok
14:49:27.0210 0x1adc  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
14:49:27.0213 0x1adc  fvevol - ok
14:49:27.0216 0x1adc  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
14:49:27.0217 0x1adc  gagp30kx - ok
14:49:27.0244 0x1adc  [ FE91DC3D9A696CCDDB9F51C25ACBC53A, 4E1A7BB3AC57530A1DF8AB7E981087275E89E6AC629F881C98E40F13150ED532 ] gpsvc           C:\Windows\System32\gpsvc.dll
14:49:27.0259 0x1adc  gpsvc - ok
14:49:27.0315 0x1adc  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:49:27.0318 0x1adc  gupdate - ok
14:49:27.0321 0x1adc  [ 750446ED76A5D13E902174DDDDA1A62B, F67355A6659E21D8D97E6982B28F22453F8C298E822E27FADDB440DA4A6DE7C0 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
14:49:27.0323 0x1adc  gupdatem - ok
14:49:27.0326 0x1adc  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
14:49:27.0327 0x1adc  hcw85cir - ok
14:49:27.0343 0x1adc  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
14:49:27.0349 0x1adc  HdAudAddService - ok
14:49:27.0354 0x1adc  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
14:49:27.0356 0x1adc  HDAudBus - ok
14:49:27.0358 0x1adc  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
14:49:27.0360 0x1adc  HidBatt - ok
14:49:27.0363 0x1adc  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
14:49:27.0365 0x1adc  HidBth - ok
14:49:27.0367 0x1adc  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
14:49:27.0368 0x1adc  HidIr - ok
14:49:27.0388 0x1adc  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
14:49:27.0389 0x1adc  hidserv - ok
14:49:27.0392 0x1adc  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
14:49:27.0392 0x1adc  HidUsb - ok
14:49:27.0419 0x1adc  [ 2364E6D01B9364D286DACC0AD972A32F, E29A1D63F251C4EF86F277E435AC5026D9D4BCE1E780EF816C8BD3EE4DB0DFE3 ] hitmanpro37     C:\Windows\system32\drivers\hitmanpro37.sys
14:49:27.0429 0x1adc  hitmanpro37 - ok
14:49:27.0452 0x1adc  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
14:49:27.0454 0x1adc  hkmsvc - ok
14:49:27.0467 0x1adc  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
14:49:27.0471 0x1adc  HomeGroupListener - ok
14:49:27.0493 0x1adc  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
14:49:27.0496 0x1adc  HomeGroupProvider - ok
14:49:27.0499 0x1adc  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
14:49:27.0501 0x1adc  HpSAMD - ok
14:49:27.0526 0x1adc  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
14:49:27.0576 0x1adc  HTTP - ok
14:49:27.0579 0x1adc  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
14:49:27.0579 0x1adc  hwpolicy - ok
14:49:27.0582 0x1adc  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
14:49:27.0584 0x1adc  i8042prt - ok
14:49:27.0623 0x1adc  [ 12859E1215AA083A42E7ADCDE5C061D1, 262F9C65C3FA7EB69C4FA7C6547E1C79DB49697A083309909BC78726A116557F ] iaStorA         C:\Windows\system32\drivers\iaStorA.sys
14:49:27.0639 0x1adc  iaStorA - ok
14:49:27.0696 0x1adc  [ 14E3DB5ADA7E2187A404129F4E5CE336, 5925C8E9DC00A6C682D6A3B37C6EBF2C325D37C8E4BF584F0B5AAC5A7B666E47 ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
14:49:27.0697 0x1adc  IAStorDataMgrSvc - ok
14:49:27.0712 0x1adc  [ 91F97C1A0ABCD7FA487E8EF7A249C15C, 834D85B7833DD1EDE0938320A68237315F60263ABCB6714974E711EBA91178E9 ] iaStorF         C:\Windows\system32\drivers\iaStorF.sys
14:49:27.0712 0x1adc  iaStorF - ok
14:49:27.0731 0x1adc  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
14:49:27.0737 0x1adc  iaStorV - ok
14:49:27.0805 0x1adc  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
14:49:27.0820 0x1adc  idsvc - ok
14:49:27.0881 0x1adc  [ DB2B8F970C2EA337C78C92B04C2E84D1, A5D2275AEA687A84BE2B6A355B11446F59A3DD549C4C6F0FCE337A9BF8C34049 ] IDSVia64        C:\Program Files (x86)\Norton Internet Security\NortonData\22.6.0.142\Definitions\IPSDefs\20160721.001\IDSvia64.sys
14:49:27.0890 0x1adc  IDSVia64 - ok
14:49:27.0892 0x1adc  IEEtwCollectorService - ok
14:49:27.0926 0x1adc  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
14:49:27.0927 0x1adc  iirsp - ok
14:49:27.0953 0x1adc  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
14:49:27.0969 0x1adc  IKEEXT - ok
14:49:28.0100 0x1adc  [ 3A2D6740F51BE48C0FD01AD907329DEE, 4FD899CD6E3B3D5C9803E52CB72F002B6CFC144D524FAF6845CF6D115EC6E059 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
14:49:28.0148 0x1adc  IntcAzAudAddService - ok
14:49:28.0183 0x1adc  [ B63CF22D1AD2ABDC39D85851B2BEAA6D, 37E9043BABB5895BFD2B59AFB60C438B992C6EAA1B5FDE5B3445314343F4C406 ] Intel® Capability Licensing Service TCP IP Interface C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
14:49:28.0199 0x1adc  Intel® Capability Licensing Service TCP IP Interface - ok
14:49:28.0227 0x1adc  [ 03CD3245E52C8A87E3B14832DC8A6A7D, C2AAB4E754479F0AA0AE86D51E721E5A11624681D5EC823E25E460EE146E70E9 ] Intel® PROSet Monitoring Service C:\Windows\system32\IProsetMonitor.exe
14:49:28.0231 0x1adc  Intel® PROSet Monitoring Service - ok
14:49:28.0234 0x1adc  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
14:49:28.0234 0x1adc  intelide - ok
14:49:28.0237 0x1adc  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
14:49:28.0238 0x1adc  intelppm - ok
14:49:28.0265 0x1adc  [ 8479C6BEF185E3D0AEF8C269A0611984, 37A5E11543682705570FEA0C6FDA5471145D7D610562755CCB7FC33FC1A5E2AD ] IntelReadyModeDriver C:\Windows\system32\DRIVERS\IntelReadyModeDriver.sys
14:49:28.0266 0x1adc  IntelReadyModeDriver - ok
14:49:28.0285 0x1adc  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
14:49:28.0287 0x1adc  IPBusEnum - ok
14:49:28.0290 0x1adc  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
14:49:28.0291 0x1adc  IpFilterDriver - ok
14:49:28.0313 0x1adc  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
14:49:28.0321 0x1adc  iphlpsvc - ok
14:49:28.0324 0x1adc  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
14:49:28.0325 0x1adc  IPMIDRV - ok
14:49:28.0328 0x1adc  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
14:49:28.0330 0x1adc  IPNAT - ok
14:49:28.0379 0x1adc  [ F4B68F7C1666A2A6CD1D37A08F1D6DF1, 63A3D85B07D10E6B3F4E84FDD6EA6C00F2756E1C9B3E57C11A2FFCD815E99946 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
14:49:28.0388 0x1adc  iPod Service - ok
14:49:28.0391 0x1adc  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
14:49:28.0392 0x1adc  IRENUM - ok
14:49:28.0432 0x1adc  [ DC0B107DBFF0FDF94F6C8F792850EE9B, 4F73257CF5EBAC9B7E27ADE8C1667047E4658D69F2DD4696451AC74F352CEF36 ] IRMTService     c:\Program Files\Intel\Intel® Ready Mode Technology\IRMTService.exe
14:49:28.0435 0x1adc  IRMTService - ok
14:49:28.0437 0x1adc  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
14:49:28.0438 0x1adc  isapnp - ok
14:49:28.0451 0x1adc  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
14:49:28.0455 0x1adc  iScsiPrt - ok
14:49:28.0478 0x1adc  [ A7A2E0D3932B1986990AC7077B1658CD, F8CC75A711E6C4E5299557F05C0C6B957E8508EA496BC74CCF4827385B046CB4 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
14:49:28.0483 0x1adc  iusb3hub - ok
14:49:28.0519 0x1adc  [ FD9C74D20E6F97EDC442091F9DBC1189, 01DD3D862FD7A429E9D79B3B1BC657594628747B0C4C124E976D733065498EDB ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
14:49:28.0528 0x1adc  iusb3xhc - ok
14:49:28.0577 0x1adc  [ 5F3583770145A00FA1EDCF8089AD5CCA, AB7AF84EE1B452312F3F7BEB3978355E7F23F4BB2A2F045E718F7346ACDB5CB3 ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
14:49:28.0580 0x1adc  jhi_service - ok
14:49:28.0583 0x1adc  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
14:49:28.0584 0x1adc  kbdclass - ok
14:49:28.0585 0x1adc  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
14:49:28.0586 0x1adc  kbdhid - ok
14:49:28.0596 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] KeyIso          C:\Windows\system32\lsass.exe
14:49:28.0597 0x1adc  KeyIso - ok
14:49:28.0623 0x1adc  [ B6C2FA7F5E5BC1A488A57C6344D29D64, 857245D664CF9ED8121E2087D73F85DA3FED721484DDC6B51AF6A344EC29A27F ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
14:49:28.0624 0x1adc  KSecDD - ok
14:49:28.0638 0x1adc  [ FB4397DDCC732DB6A7B33B747C7EB708, AD8B9500AAE12C1507B982B74B86731BE75AFAC7F64538332A380AC43EDEC271 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
14:49:28.0640 0x1adc  KSecPkg - ok
14:49:28.0643 0x1adc  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
14:49:28.0643 0x1adc  ksthunk - ok
14:49:28.0664 0x1adc  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
14:49:28.0669 0x1adc  KtmRm - ok
14:49:28.0703 0x1adc  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
14:49:28.0707 0x1adc  LanmanServer - ok
14:49:28.0729 0x1adc  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
14:49:28.0731 0x1adc  LanmanWorkstation - ok
14:49:28.0734 0x1adc  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
14:49:28.0736 0x1adc  lltdio - ok
14:49:28.0752 0x1adc  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
14:49:28.0757 0x1adc  lltdsvc - ok
14:49:28.0769 0x1adc  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
14:49:28.0770 0x1adc  lmhosts - ok
14:49:28.0798 0x1adc  [ 00B4184D8B269387EE48E42373E35181, F64B0C17A6BBC3B532724686123CE175A4CA6932DE5A1A357C823108CE9B81C4 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
14:49:28.0804 0x1adc  LMS - ok
14:49:28.0809 0x1adc  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
14:49:28.0811 0x1adc  LSI_FC - ok
14:49:28.0815 0x1adc  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
14:49:28.0816 0x1adc  LSI_SAS - ok
14:49:28.0819 0x1adc  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
14:49:28.0820 0x1adc  LSI_SAS2 - ok
14:49:28.0828 0x1adc  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
14:49:28.0830 0x1adc  LSI_SCSI - ok
14:49:28.0833 0x1adc  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
14:49:28.0835 0x1adc  luafv - ok
14:49:28.0859 0x1adc  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
14:49:28.0861 0x1adc  Mcx2Svc - ok
14:49:28.0863 0x1adc  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
14:49:28.0864 0x1adc  megasas - ok
14:49:28.0869 0x1adc  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
14:49:28.0873 0x1adc  MegaSR - ok
14:49:28.0885 0x1adc  [ F59C2E19189BEB21A57CB2CE32AE1618, 881E221B3FF4C65F89B215840CB16DE5A42BE2ED992344CC2C90FE7850CAE430 ] MEIx64          C:\Windows\system32\DRIVERS\TeeDriverx64.sys
14:49:28.0887 0x1adc  MEIx64 - ok
14:49:28.0898 0x1adc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
14:49:28.0899 0x1adc  MMCSS - ok
14:49:28.0908 0x1adc  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
14:49:28.0909 0x1adc  Modem - ok
14:49:28.0930 0x1adc  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
14:49:28.0931 0x1adc  monitor - ok
14:49:28.0934 0x1adc  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
14:49:28.0935 0x1adc  mouclass - ok
14:49:28.0937 0x1adc  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
14:49:28.0937 0x1adc  mouhid - ok
14:49:28.0940 0x1adc  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
14:49:28.0942 0x1adc  mountmgr - ok
14:49:28.0956 0x1adc  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
14:49:28.0958 0x1adc  mpio - ok
14:49:28.0961 0x1adc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
14:49:28.0963 0x1adc  mpsdrv - ok
14:49:28.0989 0x1adc  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
14:49:29.0003 0x1adc  MpsSvc - ok
14:49:29.0024 0x1adc  [ D7ADC2B83CA0B0381F75A98351F72CEE, 05476B7CA0486DF770AE492B5A90C85E3D3E7485152EB2FA30A19EC9BE44ED81 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
14:49:29.0027 0x1adc  MRxDAV - ok
14:49:29.0039 0x1adc  [ ACEC16415275E1AD6F7983EF472810E3, E5017E157954F6C21AA66233FF2C1A6B1FF3E4685F26648A8A21F2B9718DD97C ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
14:49:29.0042 0x1adc  mrxsmb - ok
14:49:29.0054 0x1adc  [ 0F276F2F2018296FABC7BD2BCCAAB40B, 378A36F7282EE9FFEC8A1D5783ECD0A428E0215B1774AAA166C5AA09B3C636F7 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
14:49:29.0059 0x1adc  mrxsmb10 - ok
14:49:29.0063 0x1adc  [ 1D4B7972375052F5B7877A6FD9BE33A0, B3FD235F6FE975F1869436ED1215913F0E8EB1123BB252FD221C35AB1121C3F5 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
14:49:29.0065 0x1adc  mrxsmb20 - ok
14:49:29.0067 0x1adc  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
14:49:29.0068 0x1adc  msahci - ok
14:49:29.0071 0x1adc  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
14:49:29.0073 0x1adc  msdsm - ok
14:49:29.0090 0x1adc  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
14:49:29.0092 0x1adc  MSDTC - ok
14:49:29.0096 0x1adc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
14:49:29.0097 0x1adc  Msfs - ok
14:49:29.0098 0x1adc  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
14:49:29.0099 0x1adc  mshidkmdf - ok
14:49:29.0101 0x1adc  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
14:49:29.0101 0x1adc  msisadrv - ok
14:49:29.0116 0x1adc  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
14:49:29.0119 0x1adc  MSiSCSI - ok
14:49:29.0121 0x1adc  msiserver - ok
14:49:29.0139 0x1adc  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
14:49:29.0140 0x1adc  MSKSSRV - ok
14:49:29.0142 0x1adc  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
14:49:29.0143 0x1adc  MSPCLOCK - ok
14:49:29.0145 0x1adc  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
14:49:29.0145 0x1adc  MSPQM - ok
14:49:29.0165 0x1adc  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
14:49:29.0181 0x1adc  MsRPC - ok
14:49:29.0184 0x1adc  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
14:49:29.0185 0x1adc  mssmbios - ok
14:49:29.0187 0x1adc  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
14:49:29.0187 0x1adc  MSTEE - ok
14:49:29.0189 0x1adc  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
14:49:29.0190 0x1adc  MTConfig - ok
14:49:29.0193 0x1adc  [ AA0C2BA3782E92BD85E2264BE418E67C, 8B0953926E83274DF16670F1EF6F4E302F7EE17418F486975C353A406850298C ] Mup             C:\Windows\system32\Drivers\mup.sys
14:49:29.0194 0x1adc  Mup - ok
14:49:29.0219 0x1adc  [ D0A5F9ACE1F0C459CEF714156DB1DE02, F877296E8506E6A1ACBDACDC5085B18C6842320A2775A329D286BAC796F08D54 ] NAL             C:\Windows\system32\Drivers\iqvw64e.sys
14:49:29.0219 0x1adc  NAL - ok
14:49:29.0264 0x1adc  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
14:49:29.0272 0x1adc  napagent - ok
14:49:29.0316 0x1adc  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
14:49:29.0320 0x1adc  NativeWifiP - ok
14:49:29.0337 0x1adc  NAVENG - ok
14:49:29.0338 0x1adc  NAVEX15 - ok
14:49:29.0363 0x1adc  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
14:49:29.0379 0x1adc  NDIS - ok
14:49:29.0382 0x1adc  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
14:49:29.0383 0x1adc  NdisCap - ok
14:49:29.0385 0x1adc  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
14:49:29.0386 0x1adc  NdisTapi - ok
14:49:29.0388 0x1adc  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
14:49:29.0389 0x1adc  Ndisuio - ok
14:49:29.0393 0x1adc  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
14:49:29.0395 0x1adc  NdisWan - ok
14:49:29.0398 0x1adc  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
14:49:29.0399 0x1adc  NDProxy - ok
14:49:29.0401 0x1adc  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
14:49:29.0402 0x1adc  NetBIOS - ok
14:49:29.0408 0x1adc  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
14:49:29.0412 0x1adc  NetBT - ok
14:49:29.0446 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] Netlogon        C:\Windows\system32\lsass.exe
14:49:29.0447 0x1adc  Netlogon - ok
14:49:29.0475 0x1adc  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
14:49:29.0480 0x1adc  Netman - ok
14:49:29.0501 0x1adc  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:49:29.0521 0x1adc  NetMsmqActivator - ok
14:49:29.0524 0x1adc  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:49:29.0526 0x1adc  NetPipeActivator - ok
14:49:29.0545 0x1adc  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
14:49:29.0551 0x1adc  netprofm - ok
14:49:29.0554 0x1adc  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:49:29.0556 0x1adc  NetTcpActivator - ok
14:49:29.0561 0x1adc  [ 15CBA881E10968E33B43D31BE6097BA3, 69449ACA82B67F308C9F7DAB7A4C75BD88A95B98FC7F9102C72AD3D233A48346 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
14:49:29.0563 0x1adc  NetTcpPortSharing - ok
14:49:29.0568 0x1adc  [ 73CE12B8BDD747B0063CB0A7EF44CEA7, F570BB52BE460DBA6203698CC96FFD9674E1903D0E0F5C49375BE3F8D8E89582 ] netvsc          C:\Windows\system32\DRIVERS\netvsc60.sys
14:49:29.0570 0x1adc  netvsc - ok
14:49:29.0573 0x1adc  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
14:49:29.0574 0x1adc  nfrd960 - ok
14:49:29.0728 0x1adc  [ 35DE4A8F863C173FA7EDDF3860FC7A77, 4EB472605B0FDA401A56F86BE3B2B118AE4BF512823235C0D6589E88538F288A ] NIS             C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\NIS.exe
14:49:29.0732 0x1adc  NIS - ok
14:49:29.0754 0x1adc  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
14:49:29.0758 0x1adc  NlaSvc - ok
14:49:29.0761 0x1adc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
14:49:29.0762 0x1adc  Npfs - ok
14:49:29.0778 0x1adc  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
14:49:29.0779 0x1adc  nsi - ok
14:49:29.0781 0x1adc  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
14:49:29.0782 0x1adc  nsiproxy - ok
14:49:29.0830 0x1adc  [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
14:49:29.0897 0x1adc  Ntfs - ok
14:49:29.0900 0x1adc  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
14:49:29.0901 0x1adc  Null - ok
14:49:29.0933 0x1adc  [ B9E5A80F646DDFEF158773722A466EA3, 028979FE600D17DA70445F44D81FAE4EDA3478FCC81FA5506133CCAC37C4E2BF ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
14:49:29.0935 0x1adc  NVHDA - ok
14:49:30.0122 0x1adc  [ 03AEFAA81567A31CAC586AB28AC84A49, 61D76ABD6DBDE8E655051478995C175B5A26F3E152689B8AC1EF1E97ED883109 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
14:49:30.0241 0x1adc  nvlddmkm - ok
14:49:30.0256 0x1adc  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
14:49:30.0258 0x1adc  nvraid - ok
14:49:30.0262 0x1adc  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
14:49:30.0265 0x1adc  nvstor - ok
14:49:30.0285 0x1adc  [ 1BC6175DAFB0BFEAF8C927F109F912BF, EDEAC4AD10518FEDA9E827E60B840F8CBD2E22CC796E798941A8C64268115224 ] nvsvc           C:\Windows\system32\nvvsvc.exe
14:49:30.0302 0x1adc  nvsvc - ok
14:49:30.0307 0x1adc  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
14:49:30.0309 0x1adc  nv_agp - ok
14:49:30.0312 0x1adc  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
14:49:30.0313 0x1adc  ohci1394 - ok
14:49:30.0350 0x1adc  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
14:49:30.0353 0x1adc  ose - ok
14:49:30.0478 0x1adc  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
14:49:30.0562 0x1adc  osppsvc - ok
14:49:30.0592 0x1adc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
14:49:30.0597 0x1adc  p2pimsvc - ok
14:49:30.0622 0x1adc  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
14:49:30.0668 0x1adc  p2psvc - ok
14:49:30.0671 0x1adc  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
14:49:30.0673 0x1adc  Parport - ok
14:49:30.0680 0x1adc  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
14:49:30.0682 0x1adc  partmgr - ok
14:49:30.0687 0x1adc  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
14:49:30.0690 0x1adc  PcaSvc - ok
14:49:30.0695 0x1adc  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
14:49:30.0697 0x1adc  pci - ok
14:49:30.0699 0x1adc  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
14:49:30.0699 0x1adc  pciide - ok
14:49:30.0704 0x1adc  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
14:49:30.0707 0x1adc  pcmcia - ok
14:49:30.0710 0x1adc  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
14:49:30.0711 0x1adc  pcw - ok
14:49:30.0723 0x1adc  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
14:49:30.0731 0x1adc  PEAUTH - ok
14:49:30.0757 0x1adc  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
14:49:30.0783 0x1adc  PeerDistSvc - ok
14:49:30.0837 0x1adc  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
14:49:30.0839 0x1adc  PerfHost - ok
14:49:30.0869 0x1adc  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
14:49:30.0891 0x1adc  pla - ok
14:49:30.0914 0x1adc  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
14:49:30.0919 0x1adc  PlugPlay - ok
14:49:30.0927 0x1adc  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
14:49:30.0928 0x1adc  PNRPAutoReg - ok
14:49:30.0936 0x1adc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
14:49:30.0940 0x1adc  PNRPsvc - ok
14:49:30.0966 0x1adc  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
14:49:30.0972 0x1adc  PolicyAgent - ok
14:49:30.0991 0x1adc  [ A2CCA4FB273E6050F17A0A416CFF2FCD, C42BA18DF0C8E3F7358669A784E51E4DC7A4112096345EA699EDC95F561E0255 ] Power           C:\Windows\system32\umpo.dll
14:49:30.0994 0x1adc  Power - ok
14:49:30.0998 0x1adc  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
14:49:30.0999 0x1adc  PptpMiniport - ok
14:49:31.0002 0x1adc  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
14:49:31.0003 0x1adc  Processor - ok
14:49:31.0016 0x1adc  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
14:49:31.0019 0x1adc  ProfSvc - ok
14:49:31.0030 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] ProtectedStorage C:\Windows\system32\lsass.exe
14:49:31.0030 0x1adc  ProtectedStorage - ok
14:49:31.0034 0x1adc  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
14:49:31.0035 0x1adc  Psched - ok
14:49:31.0074 0x1adc  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
14:49:31.0107 0x1adc  ql2300 - ok
14:49:31.0112 0x1adc  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
14:49:31.0114 0x1adc  ql40xx - ok
14:49:31.0134 0x1adc  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
14:49:31.0138 0x1adc  QWAVE - ok
14:49:31.0140 0x1adc  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
14:49:31.0141 0x1adc  QWAVEdrv - ok
14:49:31.0143 0x1adc  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
14:49:31.0144 0x1adc  RasAcd - ok
14:49:31.0166 0x1adc  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
14:49:31.0167 0x1adc  RasAgileVpn - ok
14:49:31.0179 0x1adc  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
14:49:31.0181 0x1adc  RasAuto - ok
14:49:31.0185 0x1adc  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
14:49:31.0187 0x1adc  Rasl2tp - ok
14:49:31.0195 0x1adc  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
14:49:31.0200 0x1adc  RasMan - ok
14:49:31.0203 0x1adc  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
14:49:31.0205 0x1adc  RasPppoe - ok
14:49:31.0207 0x1adc  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
14:49:31.0209 0x1adc  RasSstp - ok
14:49:31.0228 0x1adc  [ 71B6F78D6444CCE6F77BC42917A4E8F7, 34927A2C1CA349D251A327ED1F30018B065A8E6B886D9B5080A8AE2F6A8C0914 ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
14:49:31.0233 0x1adc  rdbss - ok
14:49:31.0235 0x1adc  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
14:49:31.0235 0x1adc  rdpbus - ok
14:49:31.0237 0x1adc  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
14:49:31.0237 0x1adc  RDPCDD - ok
14:49:31.0243 0x1adc  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
14:49:31.0245 0x1adc  RDPDR - ok
14:49:31.0247 0x1adc  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
14:49:31.0247 0x1adc  RDPENCDD - ok
14:49:31.0249 0x1adc  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
14:49:31.0250 0x1adc  RDPREFMP - ok
14:49:31.0254 0x1adc  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
14:49:31.0257 0x1adc  RDPWD - ok
14:49:31.0262 0x1adc  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
14:49:31.0265 0x1adc  rdyboost - ok
14:49:31.0286 0x1adc  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
14:49:31.0288 0x1adc  RemoteAccess - ok
14:49:31.0310 0x1adc  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
14:49:31.0313 0x1adc  RemoteRegistry - ok
14:49:31.0326 0x1adc  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
14:49:31.0329 0x1adc  RFCOMM - ok
14:49:31.0355 0x1adc  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
14:49:31.0356 0x1adc  RpcEptMapper - ok
14:49:31.0385 0x1adc  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
14:49:31.0386 0x1adc  RpcLocator - ok
14:49:31.0414 0x1adc  [ 622C96AFB07BB82C8650B47172137AC4, B74CEA5A3F4945E5A3EAE7AF1B1FA75F611C65C6FACE393052A512FA81B0C17C ] RpcSs           C:\Windows\system32\rpcss.dll
14:49:31.0420 0x1adc  RpcSs - ok
14:49:31.0423 0x1adc  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
14:49:31.0424 0x1adc  rspndr - ok
14:49:31.0483 0x1adc  [ C397166D21F4CD59D5AF339F8938CD0D, AC65C3238B0793BDDB43992AF1FF09CC70DA1DB89B8722A312FC1EF8BC97E272 ] RtkAudioService C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
14:49:31.0487 0x1adc  RtkAudioService - ok
14:49:31.0521 0x1adc  [ AAB2BDA0BFF508A417A2BB849D9E1D2F, 150294E8BCE4DFB468D730FB431859AE36F6F2A981985232E198D69A5B294C80 ] RtkBleServ      C:\Program Files (x86)\REALTEK\Realtek Bluetooth\RtkBleServ.exe
14:49:31.0522 0x1adc  RtkBleServ - ok
14:49:31.0544 0x1adc  [ BA56909FF032365EED28F8F2673DBF86, B7E3CBF2AC548CDDE90AB2528D77EF22BF131274F918EEECBBC33E9C2E55611D ] RtkBtFilter     C:\Windows\system32\DRIVERS\RtkBtfilter.sys
14:49:31.0550 0x1adc  RtkBtFilter - ok
14:49:31.0642 0x1adc  [ 80999836A819C7D8ED067E1E7DD1A766, 5FC46124ACB30BBF2DEC2E5DCA7205ADF401B180E3029659E756E7AB7F5A882F ] RTWlanE         C:\Windows\system32\DRIVERS\rtwlane.sys
14:49:31.0735 0x1adc  RTWlanE - ok
14:49:31.0787 0x1adc  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
14:49:31.0788 0x1adc  s3cap - ok
14:49:31.0790 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] SamSs           C:\Windows\system32\lsass.exe
14:49:31.0791 0x1adc  SamSs - ok
14:49:31.0805 0x1adc  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
14:49:31.0807 0x1adc  sbp2port - ok
14:49:31.0817 0x1adc  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
14:49:31.0820 0x1adc  SCardSvr - ok
14:49:31.0823 0x1adc  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
14:49:31.0823 0x1adc  scfilter - ok
14:49:31.0862 0x1adc  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
14:49:31.0888 0x1adc  Schedule - ok
14:49:31.0932 0x1adc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
14:49:31.0933 0x1adc  SCPolicySvc - ok
14:49:31.0944 0x1adc  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
14:49:31.0947 0x1adc  SDRSVC - ok
14:49:31.0949 0x1adc  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
14:49:31.0950 0x1adc  secdrv - ok
14:49:31.0971 0x1adc  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
14:49:31.0973 0x1adc  seclogon - ok
14:49:31.0987 0x1adc  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
14:49:31.0989 0x1adc  SENS - ok
14:49:32.0001 0x1adc  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
14:49:32.0002 0x1adc  SensrSvc - ok
14:49:32.0004 0x1adc  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
14:49:32.0005 0x1adc  Serenum - ok
14:49:32.0008 0x1adc  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
14:49:32.0010 0x1adc  Serial - ok
14:49:32.0012 0x1adc  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
14:49:32.0013 0x1adc  sermouse - ok
14:49:32.0031 0x1adc  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
14:49:32.0034 0x1adc  SessionEnv - ok
14:49:32.0036 0x1adc  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
14:49:32.0037 0x1adc  sffdisk - ok
14:49:32.0038 0x1adc  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
14:49:32.0039 0x1adc  sffp_mmc - ok
14:49:32.0041 0x1adc  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
14:49:32.0041 0x1adc  sffp_sd - ok
14:49:32.0043 0x1adc  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
14:49:32.0044 0x1adc  sfloppy - ok
14:49:32.0101 0x1adc  [ 68960DD826166C69BE15F28942573EC3, 6FCDF6BA3113C1F3B798B89C068F5ABFAA7C5D92678B4B07E5D9EA6C10612FEF ] SftService      C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe
14:49:32.0135 0x1adc  SftService - ok
14:49:32.0166 0x1adc  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
14:49:32.0172 0x1adc  SharedAccess - ok
14:49:32.0187 0x1adc  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
14:49:32.0192 0x1adc  ShellHWDetection - ok
14:49:32.0194 0x1adc  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
14:49:32.0195 0x1adc  SiSRaid2 - ok
14:49:32.0198 0x1adc  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
14:49:32.0199 0x1adc  SiSRaid4 - ok
14:49:32.0211 0x1adc  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
14:49:32.0213 0x1adc  Smb - ok
14:49:32.0216 0x1adc  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
14:49:32.0217 0x1adc  SNMPTRAP - ok
14:49:32.0219 0x1adc  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
14:49:32.0220 0x1adc  spldr - ok
14:49:32.0235 0x1adc  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
14:49:32.0243 0x1adc  Spooler - ok
14:49:32.0323 0x1adc  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
14:49:32.0384 0x1adc  sppsvc - ok
14:49:32.0396 0x1adc  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
14:49:32.0398 0x1adc  sppuinotify - ok
14:49:32.0495 0x1adc  [ 050509118EFE916DE0FE07ED1E9BB9DA, 4DD9CE4740F4CB2208E14D7A38F0AE528D112D734A1A20A87C6C6E3E304B5320 ] SRTSP           C:\Windows\System32\Drivers\NISx64\1607000.04C\SRTSP64.SYS
14:49:32.0504 0x1adc  SRTSP - ok
14:49:32.0522 0x1adc  [ 27382B6CF36D08783212FCF8B3691649, 83ECFBE280BBA8A4073A34F1B36D57952543F1A9B31E13EF8A40D8A2F12C2F73 ] SRTSPX          C:\Windows\system32\drivers\NISx64\1607000.04C\SRTSPX64.SYS
14:49:32.0522 0x1adc  SRTSPX - ok
14:49:32.0536 0x1adc  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
14:49:32.0543 0x1adc  srv - ok
14:49:32.0551 0x1adc  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
14:49:32.0557 0x1adc  srv2 - ok
14:49:32.0561 0x1adc  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
14:49:32.0563 0x1adc  srvnet - ok
14:49:32.0589 0x1adc  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
14:49:32.0592 0x1adc  SSDPSRV - ok
14:49:32.0602 0x1adc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
14:49:32.0604 0x1adc  SstpSvc - ok
14:49:32.0658 0x1adc  [ 0E952C9DDE28962922CCDEFA0BF8C425, 41AEA8777DDDE907E94B69A0D03D4EAD4983DB1B798CB01A77E4D8E57CA4A9AD ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
14:49:32.0664 0x1adc  Stereo Service - ok
14:49:32.0666 0x1adc  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
14:49:32.0667 0x1adc  stexstor - ok
14:49:32.0702 0x1adc  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
14:49:32.0711 0x1adc  stisvc - ok
14:49:32.0713 0x1adc  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
14:49:32.0714 0x1adc  StorSvc - ok
14:49:32.0716 0x1adc  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
14:49:32.0718 0x1adc  storvsc - ok
14:49:32.0785 0x1adc  [ 1957C598952FBE08193EE43A109FD3DD, A0E77C20B263BD911AE3D7842210E65DD5D0E64191201553154205F64CFA8D70 ] SupportAssistAgent C:\Program Files (x86)\Dell\SupportAssistAgent\bin\SupportAssistAgent.exe
14:49:32.0785 0x1adc  SupportAssistAgent - ok
14:49:32.0787 0x1adc  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
14:49:32.0788 0x1adc  swenum - ok
14:49:32.0838 0x1adc  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:49:32.0845 0x1adc  SwitchBoard - ok
14:49:32.0884 0x1adc  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
14:49:32.0892 0x1adc  swprv - ok
14:49:32.0929 0x1adc  [ 6ADFA39058484ADECCCF159627DC987E, FF8376D3441ABA6742773F83BF4DE46A0DB05FD9BA29902454E0E4C05ABC7E58 ] SymEFASI        C:\Windows\system32\drivers\NISx64\1607000.04C\SYMEFASI64.SYS
14:49:32.0963 0x1adc  SymEFASI - ok
14:49:33.0000 0x1adc  [ F612740A892E8F9E789A85DD92B51150, 67F43FC6CE7A2238DA875657F2223787829316B410EB9A1481C4DF92258C7804 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
14:49:33.0002 0x1adc  SymEvent - ok
14:49:33.0028 0x1adc  [ 9458A37D3A38597FBF62F97E05B3170A, 22724BBCC4426978B656F614B68FB1A80E0E14B56128122A29DAB33266C0E88C ] SymIRON         C:\Windows\system32\drivers\NISx64\1607000.04C\Ironx64.SYS
14:49:33.0031 0x1adc  SymIRON - ok
14:49:33.0056 0x1adc  [ 5A185256AE1689912B5EC53F69D53820, D692B735AF2764CE29C6182A5C496994AD3A9EF9D5FB600EE9CE8B664F39D0FA ] SymNetS         C:\Windows\System32\Drivers\NISx64\1607000.04C\SYMNETS.SYS
14:49:33.0063 0x1adc  SymNetS - ok
14:49:33.0079 0x1adc  [ 4CDD7DF58730D23BA9CB5829A6E2ECEA, 89A2A1604C2BF985894000F51D9D376B32F1327197866850B5BF8640272DE828 ] SynthVid        C:\Windows\system32\DRIVERS\VMBusVideoM.sys
14:49:33.0080 0x1adc  SynthVid - ok
14:49:33.0119 0x1adc  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
14:49:33.0153 0x1adc  SysMain - ok
14:49:33.0158 0x1adc  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
14:49:33.0160 0x1adc  TabletInputService - ok
14:49:33.0170 0x1adc  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
14:49:33.0175 0x1adc  TapiSrv - ok
14:49:33.0215 0x1adc  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
14:49:33.0249 0x1adc  Tcpip - ok
14:49:33.0292 0x1adc  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
14:49:33.0312 0x1adc  TCPIP6 - ok
14:49:33.0354 0x1adc  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
14:49:33.0355 0x1adc  tcpipreg - ok
14:49:33.0357 0x1adc  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
14:49:33.0358 0x1adc  TDPIPE - ok
14:49:33.0360 0x1adc  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
14:49:33.0361 0x1adc  TDTCP - ok
14:49:33.0365 0x1adc  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
14:49:33.0367 0x1adc  tdx - ok
14:49:33.0414 0x1adc  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
14:49:33.0415 0x1adc  TermDD - ok
14:49:33.0437 0x1adc  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
14:49:33.0447 0x1adc  TermService - ok
14:49:33.0488 0x1adc  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
14:49:33.0490 0x1adc  Themes - ok
14:49:33.0515 0x1adc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
14:49:33.0516 0x1adc  THREADORDER - ok
14:49:33.0549 0x1adc  [ 48DDEF0B921DD331536CC82C1A8FF64F, 540107E278E4C7DE4F43D37F7EA7BC094B6755399C22EE3A68574AA8A7719ACC ] Tpm             C:\Windows\system32\drivers\tpm.sys
14:49:33.0551 0x1adc  Tpm - ok
14:49:33.0566 0x1adc  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
14:49:33.0568 0x1adc  TrkWks - ok
14:49:33.0611 0x1adc  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
14:49:33.0613 0x1adc  TrustedInstaller - ok
14:49:33.0616 0x1adc  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
14:49:33.0617 0x1adc  tssecsrv - ok
14:49:33.0619 0x1adc  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
14:49:33.0621 0x1adc  TsUsbFlt - ok
14:49:33.0622 0x1adc  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
14:49:33.0623 0x1adc  TsUsbGD - ok
14:49:33.0627 0x1adc  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
14:49:33.0629 0x1adc  tunnel - ok
14:49:33.0632 0x1adc  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
14:49:33.0633 0x1adc  uagp35 - ok
14:49:33.0653 0x1adc  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
14:49:33.0658 0x1adc  udfs - ok
14:49:33.0672 0x1adc  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
14:49:33.0674 0x1adc  UI0Detect - ok
14:49:33.0678 0x1adc  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
14:49:33.0679 0x1adc  uliagpkx - ok
14:49:33.0682 0x1adc  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
14:49:33.0683 0x1adc  umbus - ok
14:49:33.0685 0x1adc  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
14:49:33.0685 0x1adc  UmPass - ok
14:49:33.0697 0x1adc  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
14:49:33.0701 0x1adc  UmRdpService - ok
14:49:33.0711 0x1adc  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
14:49:33.0717 0x1adc  upnphost - ok
14:49:33.0752 0x1adc  [ F957092C63CD71D85903CA0D8370F473, 4DEC2FC20329F248135DA24CB6694FD972DCCE8B1BBEA8D872FDE41939E96AAF ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
14:49:33.0754 0x1adc  USBAAPL64 - ok
14:49:33.0757 0x1adc  [ 724DABDE1A9C48C6E5FE0F9F7E583940, 6B5FB81D0D6096CB827AC32DD5EE7C92F1E2EEFD54EC9E047EC6AF50610B4885 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
14:49:33.0758 0x1adc  usbccgp - ok
14:49:33.0762 0x1adc  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
14:49:33.0764 0x1adc  usbcir - ok
14:49:33.0766 0x1adc  [ CA11C28D69925E356CC27749CC41C3E1, E0AEB9EA23E7EFB982C1548508583B16A89A5568750EA23A313C8AC40CCB84C5 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
14:49:33.0768 0x1adc  usbehci - ok
14:49:33.0774 0x1adc  [ 8FA7BAF75209D59E7302BCF0308C52A7, 00F5F7442BBD25E7455ECDE5AE5D40C60E878BAF53A7D535DB59EE2C3F027245 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
14:49:33.0786 0x1adc  usbhub - ok
14:49:33.0790 0x1adc  [ BB33E6D8006EDD67CAB91E9417417710, 16CC4A00FB1793C7B723F6A99A39725C87A71C2958CFA0916A55BB084973C96F ] usbohci         C:\Windows\system32\drivers\usbohci.sys
14:49:33.0790 0x1adc  usbohci - ok
14:49:33.0811 0x1adc  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
14:49:33.0812 0x1adc  usbprint - ok
14:49:33.0851 0x1adc  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
14:49:33.0852 0x1adc  usbscan - ok
14:49:33.0877 0x1adc  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
14:49:33.0878 0x1adc  USBSTOR - ok
14:49:33.0880 0x1adc  [ 8565793CAF1EF768DB669BE0C3C71EDF, 8FD8904C5C0F2BFC66A17EE51E2E50C4BB11B77A18F51F4893D079B2F37F6B21 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
14:49:33.0881 0x1adc  usbuhci - ok
14:49:33.0896 0x1adc  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
14:49:33.0897 0x1adc  UxSms - ok
14:49:33.0904 0x1adc  [ 626BE7CD27F44185AA4DCD3603830312, EBE197BAA8F0ACEA219B402A1D03534A448048F1010A50680D728493A9B0641E ] VaultSvc        C:\Windows\system32\lsass.exe
14:49:33.0905 0x1adc  VaultSvc - ok
14:49:33.0907 0x1adc  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
14:49:33.0908 0x1adc  vdrvroot - ok
14:49:33.0928 0x1adc  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
14:49:33.0936 0x1adc  vds - ok
14:49:33.0939 0x1adc  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
14:49:33.0940 0x1adc  vga - ok
14:49:33.0943 0x1adc  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
14:49:33.0944 0x1adc  VgaSave - ok
14:49:33.0980 0x1adc  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
14:49:34.0000 0x1adc  vhdmp - ok
14:49:34.0005 0x1adc  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
14:49:34.0006 0x1adc  viaide - ok
14:49:34.0010 0x1adc  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
14:49:34.0012 0x1adc  VMBusHID - ok
14:49:34.0027 0x1adc  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
14:49:34.0028 0x1adc  volmgr - ok
14:49:34.0036 0x1adc  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
14:49:34.0045 0x1adc  volmgrx - ok
14:49:34.0098 0x1adc  [ DF8126BD41180351A093A3AD2FC8903B, AEFF4AA89CDDAAAD43CDE17C6B6EB2A397A0AC1651CBD51B889161EC2BC6527A ] volsnap         C:\Windows\system32\drivers\volsnap.sys
14:49:34.0106 0x1adc  volsnap - ok
14:49:34.0122 0x1adc  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
14:49:34.0130 0x1adc  vsmraid - ok
14:49:34.0172 0x1adc  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
14:49:34.0197 0x1adc  VSS - ok
14:49:34.0200 0x1adc  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
14:49:34.0202 0x1adc  vwifibus - ok
14:49:34.0205 0x1adc  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
14:49:34.0206 0x1adc  vwififlt - ok
14:49:34.0225 0x1adc  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
14:49:34.0226 0x1adc  vwifimp - ok
14:49:34.0240 0x1adc  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
14:49:34.0246 0x1adc  W32Time - ok
14:49:34.0254 0x1adc  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
14:49:34.0255 0x1adc  WacomPen - ok
14:49:34.0263 0x1adc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
14:49:34.0264 0x1adc  WANARP - ok
14:49:34.0275 0x1adc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
14:49:34.0276 0x1adc  Wanarpv6 - ok
14:49:34.0408 0x1adc  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
14:49:34.0458 0x1adc  WatAdminSvc - ok
14:49:34.0525 0x1adc  [ E73F4589AE772B60BC4D2ACAE3D73A1E, E1679694D94AC7E99F792A7E7F0B6DE9BEF45BEB63042959EE69E8849595BF74 ] WavesSysSvc     C:\Program Files\Waves\MaxxAudio\WavesSysSvc64.exe
14:49:34.0577 0x1adc  WavesSysSvc - ok
14:49:34.0616 0x1adc  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
14:49:34.0649 0x1adc  wbengine - ok
14:49:34.0676 0x1adc  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
14:49:34.0680 0x1adc  WbioSrvc - ok
14:49:34.0687 0x1adc  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
14:49:34.0705 0x1adc  wcncsvc - ok
14:49:34.0714 0x1adc  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
14:49:34.0715 0x1adc  WcsPlugInService - ok
14:49:34.0717 0x1adc  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
14:49:34.0718 0x1adc  Wd - ok
14:49:34.0739 0x1adc  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
14:49:34.0753 0x1adc  Wdf01000 - ok
14:49:34.0757 0x1adc  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
14:49:34.0758 0x1adc  WdiServiceHost - ok
14:49:34.0761 0x1adc  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
14:49:34.0762 0x1adc  WdiSystemHost - ok
14:49:34.0775 0x1adc  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
14:49:34.0779 0x1adc  WebClient - ok
14:49:34.0784 0x1adc  [ CBA25A299ECDBAE3A2300B68598AABA3, 5AC6F75FBDA58CD9D17922AF2780A37B89067EB4A97EE792A644B238BE94490D ] Wecsvc          C:\Windows\system32\wecsvc.dll
14:49:34.0788 0x1adc  Wecsvc - ok
14:49:34.0794 0x1adc  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
14:49:34.0795 0x1adc  wercplsupport - ok
14:49:34.0820 0x1adc  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
14:49:34.0822 0x1adc  WerSvc - ok
14:49:34.0824 0x1adc  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
14:49:34.0824 0x1adc  WfpLwf - ok
14:49:34.0826 0x1adc  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
14:49:34.0827 0x1adc  WIMMount - ok
14:49:34.0840 0x1adc  WinDefend - ok
14:49:34.0842 0x1adc  WinHttpAutoProxySvc - ok
14:49:34.0887 0x1adc  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
14:49:34.0891 0x1adc  Winmgmt - ok
14:49:34.0948 0x1adc  [ D929ABD465A2DED963DA8B30946A8D5C, DE8DBFB01C11D2AE903CBD6A974D6F995E9813CE2D6484B7DA06EAE4C545842A ] WinRM           C:\Windows\system32\WsmSvc.dll
14:49:34.0982 0x1adc  WinRM - ok
14:49:35.0020 0x1adc  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
14:49:35.0021 0x1adc  WinUsb - ok
14:49:35.0061 0x1adc  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
14:49:35.0076 0x1adc  Wlansvc - ok
14:49:35.0092 0x1adc  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
14:49:35.0093 0x1adc  WmiAcpi - ok
14:49:35.0110 0x1adc  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
14:49:35.0113 0x1adc  wmiApSrv - ok
14:49:35.0128 0x1adc  WMPNetworkSvc - ok
14:49:35.0139 0x1adc  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
14:49:35.0141 0x1adc  WPCSvc - ok
14:49:35.0152 0x1adc  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
14:49:35.0154 0x1adc  WPDBusEnum - ok
14:49:35.0156 0x1adc  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
14:49:35.0157 0x1adc  ws2ifsl - ok
14:49:35.0168 0x1adc  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
14:49:35.0170 0x1adc  wscsvc - ok
14:49:35.0172 0x1adc  WSearch - ok
14:49:35.0232 0x1adc  [ 86F11B85102AFA6A1A6101DCE2F09386, 68A0F0E628C8F33FDAC114876DA8ED14776DD74E80AC5A6A52257E19DE011091 ] wuauserv        C:\Windows\system32\wuaueng.dll
14:49:35.0284 0x1adc  wuauserv - ok
14:49:35.0288 0x1adc  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
14:49:35.0290 0x1adc  WudfPf - ok
14:49:35.0311 0x1adc  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
14:49:35.0314 0x1adc  WUDFRd - ok
14:49:35.0340 0x1adc  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
14:49:35.0341 0x1adc  wudfsvc - ok
14:49:35.0348 0x1adc  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
14:49:35.0352 0x1adc  WwanSvc - ok
14:49:35.0366 0x1adc  ================ Scan global ===============================
14:49:35.0383 0x1adc  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
14:49:35.0406 0x1adc  [ 841BF993597DCD498247684B5D3AE845, B80FDDE2F36F7DC9BCE253FFE0148C918DC3DD4357F37761B364DE7B887239EA ] C:\Windows\system32\winsrv.dll
14:49:35.0414 0x1adc  [ 841BF993597DCD498247684B5D3AE845, B80FDDE2F36F7DC9BCE253FFE0148C918DC3DD4357F37761B364DE7B887239EA ] C:\Windows\system32\winsrv.dll
14:49:35.0426 0x1adc  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
14:49:35.0446 0x1adc  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
14:49:35.0451 0x1adc  [ Global ] - ok
14:49:35.0452 0x1adc  ================ Scan MBR ==================================
14:49:35.0453 0x1adc  [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0
14:49:35.0640 0x1adc  \Device\Harddisk0\DR0 - ok
14:49:35.0644 0x1adc  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk1\DR1
14:49:35.0647 0x1adc  \Device\Harddisk1\DR1 - ok
14:49:35.0647 0x1adc  ================ Scan VBR ==================================
14:49:35.0648 0x1adc  [ 2743B5081B3DB512CD57B8B2BC63B40E ] \Device\Harddisk0\DR0\Partition1
14:49:35.0715 0x1adc  \Device\Harddisk0\DR0\Partition1 - ok
14:49:35.0717 0x1adc  [ E767208227F55E04016576D7BDECCD72 ] \Device\Harddisk1\DR1\Partition1
14:49:35.0718 0x1adc  \Device\Harddisk1\DR1\Partition1 - ok
14:49:35.0718 0x1adc  ================ Scan generic autorun ======================
14:49:35.0870 0x1adc  [ A15FF7FFA54109281D5742D396271DFC, 2551B6203E594087858FA514FD73DC652AEC45AAAADDFC50240F4AC2BF5C1879 ] C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
14:49:36.0021 0x1adc  RTHDVCPL - ok
14:49:36.0053 0x1adc  [ 813006C133576159EBB6DE770D55267D, B3FAA5B7943EC3C8B76B3D203A4C7F1F990F048BA28DF5C04F7A95235AA2EA2E ] C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
14:49:36.0077 0x1adc  RtHDVBg_MAXX6 - ok
14:49:36.0093 0x1adc  [ 3D608DBAF48A2B3761A5F42F7B98A80F, A2D2A901C4E2082CAC41515DC612FF932F93EE4E7AE3522799E892A9337D398A ] C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe
14:49:36.0101 0x1adc  WavesSvc - ok
14:49:36.0139 0x1adc  [ BAEDADCD6509201F82CE5B404AB14814, 8C39C18CE00DB254F370D9C4AA80E88BF67C457240F3D30A58E39DBF9B96F44B ] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIconLaunch.exe
14:49:36.0142 0x1adc  IAStorIcon - ok
14:49:36.0185 0x1adc  [ 5E29842648557D1B2A9174D375AAD65A, 2D509557141170D64B29CE90CCDD183D7D46CD10316F5704C57D3291155DEA80 ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
14:49:36.0218 0x1adc  NvBackend - ok
14:49:36.0229 0x1adc  [ BCD340300881BF94AB1C23C4D1D0E82C, 3ADBD036B668F0982C32FC084256909CBB0319840BA0916147CCA3EDFA5D1800 ] C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe
14:49:36.0232 0x1adc  BtServer - ok
14:49:36.0270 0x1adc  [ 1315C5C5C54CE2AA37A155F97027DB59, 70CDA6AE7FF4FD08FAD931477C524957952EDC89985696FD988B9786A349C565 ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
14:49:36.0276 0x1adc  AdobeAAMUpdater-1.0 - ok
14:49:36.0313 0x1adc  [ 404A6E6550DB206EA6E9B1AC642102B2, 33CAF3CDEF820DFC97844BBCA56B95B6D31D1C682C69A29D14F7A0C9058AC8EF ] C:\Program Files\iTunes\iTunesHelper.exe
14:49:36.0315 0x1adc  iTunesHelper - ok
14:49:36.0353 0x1adc  [ CB46168FFDEA91E2B3435E51BB436558, 848D12E11B79722B07C42D848D831C6B782E1338B8F844924CB8938FE11F379D ] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
14:49:36.0357 0x1adc  USB3MON - ok
14:49:36.0379 0x1adc  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
14:49:36.0385 0x1adc  SwitchBoard - ok
14:49:36.0430 0x1adc  [ 8FE651ACBA3344E645CFEB6286FFF6B8, ECE4DFFEB7EB0B19B6790FD0F619A5C4B23CA0BA9CC3F25924925F8EA07264B6 ] C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe
14:49:36.0455 0x1adc  AdobeCS6ServiceManager - ok
14:49:36.0506 0x1adc  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
14:49:36.0532 0x1adc  Sidebar - ok
14:49:36.0554 0x1adc  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
14:49:36.0556 0x1adc  mctadmin - ok
14:49:36.0574 0x1adc  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
14:49:36.0586 0x1adc  Sidebar - ok
14:49:36.0589 0x1adc  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
14:49:36.0590 0x1adc  mctadmin - ok
14:49:36.0591 0x1adc  Waiting for KSN requests completion. In queue: 325
14:49:37.0591 0x1adc  Waiting for KSN requests completion. In queue: 325
14:49:38.0591 0x1adc  Waiting for KSN requests completion. In queue: 18
14:49:39.0599 0x1adc  AV detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\WSCStub.exe ( 22.7.0.0 ), 0x51000 ( enabled : updated )
14:49:39.0601 0x1adc  FW detected via SS2: Norton Internet Security, C:\Program Files (x86)\Norton Internet Security\Engine\22.7.0.76\WSCStub.exe ( 22.7.0.0 ), 0x51010 ( enabled )
14:49:42.0465 0x1adc  ============================================================
14:49:42.0465 0x1adc  Scan finished
14:49:42.0465 0x1adc  ============================================================
14:49:42.0469 0x10dc  Detected object count: 0
14:49:42.0469 0x10dc  Actual detected object count: 0
14:50:00.0669 0x0b4c  Deinitialize success

 



#13 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 38,195 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:12:57 AM

Posted 25 July 2016 - 08:50 PM

Thank you.

Do you recognize this?

https://www.yardiasptx10.com/84641wilsonville/pages/Login.aspx
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."

#14 bpdx

bpdx
  • Topic Starter

  • Members
  • 16 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:01:57 AM

Posted 26 July 2016 - 11:50 AM

Yes, that is for my work and safe.

 

Thank you.

 

Still trying to figure out how to get some of these emails to you, sorry!



#15 Oh My!

Oh My!

    Adware and Spyware and Malware.....


  • Malware Response Instructor
  • 38,195 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:California
  • Local time:12:57 AM

Posted 26 July 2016 - 01:31 PM

Please take a screen shot of the email information and upload the file here.
Gary
 
If I do not reply within 24 hours please send me a Personal Message.

"Lord, to whom would we go? You have the words that give eternal life. We believe, and we know you are the Holy One of God."




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users