Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

need help removing a .tmp virus I think ?


  • Please log in to reply
5 replies to this topic

#1 WayneHaven

WayneHaven

  • Members
  • 5 posts
  • OFFLINE
  •  

Posted 08 March 2017 - 05:32 AM

Hi there,

 

  I managed to pick up a virus that keeps popping up a install wizard window. I see someone else also had the same problem @ https://www.bleepingcomputer.com/forums/t/607159/help-removing-tmp-virus/

I'm going to follow the onscreen instructions & post the logs for you to have a look @. Maybe you can offer some help... Thanking you in advance

 

MiniToolBox by Farbar  Version: 17-06-2016
Ran by Wayne (administrator) on 08-03-2017 at 12:18:25
Running from "C:\Users\Wayne\Downloads"
Microsoft Windows 7 Professional   (X86)
Model: System Product Name Manufacturer: System manufacturer
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
========================= IP Configuration: ================================

NVIDIA nForce 10/100/1000 Mbps Ethernet  = Local Area Connection 2 (Disconnected)
NVIDIA nForce 10/100/1000 Mbps Ethernet  = Local Area Connection (Connecting)
Remote NDIS based Internet Sharing Device = Local Area Connection 3 (Connected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Wayne-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 3:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Remote NDIS based Internet Sharing Device
   Physical Address. . . . . . . . . : 02-0C-E7-0B-01-02
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::8cbb:2029:cd20:7f9d%15(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.9.136(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 08 March 2017 11:16:21 AM
   Lease Expires . . . . . . . . . . : 09 March 2017 11:16:21 AM
   Default Gateway . . . . . . . . . : 192.168.9.1
   DHCP Server . . . . . . . . . . . : 192.168.9.1
   DHCPv6 IAID . . . . . . . . . . . : 369233127
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-20-4F-2A-0B-00-22-15-3F-7F-5C
   DNS Servers . . . . . . . . . . . : 192.168.9.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection 2:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : NVIDIA nForce 10/100/1000 Mbps Ethernet #2
   Physical Address. . . . . . . . . : 00-22-15-3F-7A-C6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : NVIDIA nForce 10/100/1000 Mbps Ethernet
   Physical Address. . . . . . . . . : 00-22-15-3F-7F-5C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::584b:70b8:ff8d:33e4%11(Deprecated)
   Autoconfiguration IPv4 Address. . : 169.254.51.228(Tentative)
   Subnet Mask . . . . . . . . . . . : 255.255.0.0
   Default Gateway . . . . . . . . . :
   DNS Servers . . . . . . . . . . . : 10.0.0.2
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{29821037-29FF-4683-9284-177EBA2BA742}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.9.1

Name:    google.com
Addresses:  2c0f:fb50:4002:803::200e
      41.21.236.23
      41.21.236.44
      41.21.236.45
      41.21.236.30
      41.21.236.29
      41.21.236.15
      41.21.236.53
      41.21.236.27
      41.21.236.19
      41.21.236.34
      41.21.236.49
      41.21.236.42
      41.21.236.38
      41.21.236.59
      41.21.236.57


Pinging google.com [41.21.236.57] with 32 bytes of data:
Reply from 41.21.236.57: bytes=32 time=43ms TTL=52
Reply from 41.21.236.57: bytes=32 time=39ms TTL=52

Ping statistics for 41.21.236.57:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 39ms, Maximum = 43ms, Average = 41ms
Server:  UnKnown
Address:  192.168.9.1

Name:    yahoo.com
Addresses:  2001:4998:58:c02::a9
      2001:4998:44:204::a7
      2001:4998:c:a06::2:4008
      98.138.253.109
      206.190.36.45
      98.139.183.24


Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=284ms TTL=45
Reply from 98.139.183.24: bytes=32 time=290ms TTL=45

Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 284ms, Maximum = 290ms, Average = 287ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 15...02 0c e7 0b 01 02 ......Remote NDIS based Internet Sharing Device
 13...00 22 15 3f 7a c6 ......NVIDIA nForce 10/100/1000 Mbps Ethernet #2
 11...00 22 15 3f 7f 5c ......NVIDIA nForce 10/100/1000 Mbps Ethernet
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.9.1    192.168.9.136    200
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.9.0    255.255.255.0         On-link     192.168.9.136    281
    192.168.9.136  255.255.255.255         On-link     192.168.9.136    281
    192.168.9.255  255.255.255.255         On-link     192.168.9.136    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.9.136    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.9.136    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 15    281 fe80::/64                On-link
 15    281 fe80::8cbb:2029:cd20:7f9d/128
                                    On-link
  1    306 ff00::/8                 On-link
 15    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [51712] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 05 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 06 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (03/08/2017 12:18:31 PM) (Source: Application Error) (User: )
Description: Faulting application name: plugin-container.exe, version: 51.0.1.6234, time stamp: 0x5888f707
Faulting module name: mozglue.dll, version: 51.0.1.6234, time stamp: 0x5888f27e
Exception code: 0x80000003
Fault offset: 0x0000ec83
Faulting process id: 0x1704
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (03/07/2017 06:32:39 PM) (Source: Application Error) (User: )
Description: Faulting application name: MsiExec.exe, version: 5.0.7600.16385, time stamp: 0x4a5bc3e6
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x1003529e
Faulting process id: 0x1164
Faulting application start time: 0xMsiExec.exe0
Faulting application path: MsiExec.exe1
Faulting module path: MsiExec.exe2
Report Id: MsiExec.exe3

Error: (03/07/2017 06:32:29 PM) (Source: Application Error) (User: )
Description: Faulting application name: plugin-container.exe, version: 51.0.1.6234, time stamp: 0x5888f707
Faulting module name: mozglue.dll, version: 51.0.1.6234, time stamp: 0x5888f27e
Exception code: 0x80000003
Fault offset: 0x0000ec83
Faulting process id: 0xd70
Faulting application start time: 0xplugin-container.exe0
Faulting application path: plugin-container.exe1
Faulting module path: plugin-container.exe2
Report Id: plugin-container.exe3

Error: (03/06/2017 11:52:02 PM) (Source: Application Hang) (User: )
Description: The program AmericasCardroom.exe version 22.0.3125.33498 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 17e4

Start Time: 01d2969d186d5540

Termination Time: 105

Application Path: C:\AmericasCardroom\AmericasCardroom.exe

Report Id: 1f8b7f61-02b7-11e7-8b40-020ce70b0102

Error: (03/06/2017 05:33:17 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe) (User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (03/06/2017 05:27:19 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {35ceb975-d5b9-4670-8e19-ba853d04153b}

Error: (03/06/2017 04:53:40 PM) (Source: VSS) (User: )
Description: Volume Shadow Copy Service error: Unexpected error querying for the IVssWriterCallback interface.  hr = 0x80070005, Access is denied.
.
This is often caused by incorrect security settings in either the writer or requestor process.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {39e6e101-201a-4e0c-866d-7cc6b732338e}

Error: (03/06/2017 04:38:43 PM) (Source: Application Hang) (User: )
Description: The program iexplore.exe version 8.0.7600.16385 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: ef4

Start Time: 01d29686bab7a7e0

Termination Time: 15

Application Path: C:\Program Files\Internet Explorer\iexplore.exe

Report Id: 96bdeb01-027a-11e7-a793-0022153f7f5c


System errors:
=============
Error: (03/08/2017 11:26:51 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Streamer Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/08/2017 11:26:51 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Display Driver Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/08/2017 11:16:39 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (03/08/2017 11:15:47 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: Performance power management features on processor 1 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.

Error: (03/08/2017 11:15:47 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: Performance power management features on processor 0 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.

Error: (03/08/2017 10:00:36 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Streamer Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/08/2017 10:00:35 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Display Driver Service service terminated unexpectedly.  It has done this 1 time(s).

Error: (03/08/2017 06:24:21 AM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
cdrom

Error: (03/08/2017 06:23:38 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: Performance power management features on processor 1 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.

Error: (03/08/2017 06:23:38 AM) (Source: Microsoft-Windows-Kernel-Processor-Power) (User: NT AUTHORITY)
Description: Performance power management features on processor 0 in group 0 are disabled due to a firmware problem. Check with the computer manufacturer for updated firmware.


Microsoft Office Sessions:
=========================
Error: (03/08/2017 12:18:31 PM) (Source: Application Error)(User: )
Description: plugin-container.exe51.0.1.62345888f707mozglue.dll51.0.1.62345888f27e800000030000ec83170401d297f374630ff0C:\Program Files\Mozilla Firefox\plugin-container.exeC:\Program Files\Mozilla Firefox\mozglue.dll93c03240-03e8-11e7-8b11-020ce70b0102

Error: (03/07/2017 06:32:39 PM) (Source: Application Error)(User: )
Description: MsiExec.exe5.0.7600.163854a5bc3e6unknown0.0.0.000000000c00000051003529e116401d2976058aa0e00C:\Windows\system32\MsiExec.exeunknownada30380-0353-11e7-ab6e-020ce70b0102

Error: (03/07/2017 06:32:29 PM) (Source: Application Error)(User: )
Description: plugin-container.exe51.0.1.62345888f707mozglue.dll51.0.1.62345888f27e800000030000ec83d7001d2976055c6c430C:\Program Files\Mozilla Firefox\plugin-container.exeC:\Program Files\Mozilla Firefox\mozglue.dlla74b5370-0353-11e7-ab6e-020ce70b0102

Error: (03/06/2017 11:52:02 PM) (Source: Application Hang)(User: )
Description: AmericasCardroom.exe22.0.3125.3349817e401d2969d186d5540105C:\AmericasCardroom\AmericasCardroom.exe1f8b7f61-02b7-11e7-8b40-020ce70b0102

Error: (03/06/2017 05:33:17 PM) (Source: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe)(User: )
Description: C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exeCan't get user token [1008]

Error: (03/06/2017 05:27:19 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {35ceb975-d5b9-4670-8e19-ba853d04153b}

Error: (03/06/2017 04:53:40 PM) (Source: VSS)(User: )
Description: 0x80070005, Access is denied.


Operation:
   Gathering Writer Data

Context:
   Writer Class Id: {e8132975-6f93-4464-a53e-1050253ae220}
   Writer Name: System Writer
   Writer Instance ID: {39e6e101-201a-4e0c-866d-7cc6b732338e}

Error: (03/06/2017 04:38:43 PM) (Source: Application Hang)(User: )
Description: iexplore.exe8.0.7600.16385ef401d29686bab7a7e015C:\Program Files\Internet Explorer\iexplore.exe96bdeb01-027a-11e7-a793-0022153f7f5c


=========================== Installed Programs ============================

7-Zip 16.04 (HKLM\...\7-Zip) (Version: 16.04 - Igor Pavlov)
Adobe Flash Player 24 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
AI Suite (HKLM\...\{310BC5E2-31AF-49BB-904D-E71EB93645DC}) (Version: 1.05.33 - )
AmericasCardroom (HKLM\...\296836EA-EF3A-4C36-8C13-3A6C1DB2D4BE) (Version: 16.6 - IGSoft)
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version:  - )
GeForce Experience NvStream Client Components (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC) (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.32.7 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.165 - Google Inc.) Hidden
Haather (HKLM\...\{4D4E77C1-4046-473E-9F74-FDEE5108D6C6}) (Version: 8.9.5 - Arajoghckerpother)
IQ Option (HKLM\...\IQ Option) (Version: 1.0 - IQOption)
Java 8 Update 121 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Java Auto Updater (HKLM\...\{4A03706F-666A-4037-7777-5F2748764D10}) (Version: 2.8.121.13 - Oracle Corporation) Hidden
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mozilla Firefox 51.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 51.0.1 (x86 en-US)) (Version: 51.0.1 - Mozilla)
NetBet Poker (HKCU\...\Netbet Poker) (Version: 1.1.1.33 - NetBet Poker)
NVIDIA 3D Vision Controller Driver 335.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 335.21 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 335.23 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.5 - NVIDIA Corporation)
NVIDIA ForceWare Network Access Manager (HKLM\...\InstallShield_{7CFA46E3-CC2F-4355-82AE-6012DC3633FD}) (Version: 1.00.7313 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.2.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.2.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 335.23 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 335.23 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.20 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.20 - NVIDIA Corporation)
OpenAL (HKLM\...\OpenAL) (Version:  - )
Poker MIRA (HKLM\...\Poker MIRA 0) (Version:  - )
PokerStars (HKLM\...\PokerStars) (Version:  - PokerStars)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 1.7.321 - NVIDIA Corporation) Hidden
TigerGaming (HKLM\...\TigerGaming 0) (Version:  - )
Unibet Poker version 2.3.2 (HKLM\...\{E0DBCF0E-0758-4EDD-A7F1-A7BCA19ED37D}_is1) (Version: 2.3.2 - Relax Gaming Ltd.)
Vodafone Mobile Broadband (HKLM\...\{6C29152D-3FF9-43B2-84E4-9B35FC0BF5C2}) (Version: 10.3.414.50177 - Vodafone)

========================= Memory info: ===================================

Percentage of memory in use: 64%
Total physical RAM: 3326.55 MB
Available physical RAM: 1173.86 MB
Total Virtual: 6653.11 MB
Available Virtual: 4260.91 MB

========================= Partitions: =====================================

2 Drive c: () (Fixed) (Total:148.95 GB) (Free:127.06 GB) NTFS

========================= Users: ========================================

User accounts for \\WAYNE-PC

Administrator            Guest                    Wayne                    


**** End of log ****
 


Edited by hamluis, 08 March 2017 - 06:28 AM.
Moved from MRL to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 WayneHaven

WayneHaven
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  

Posted 08 March 2017 - 05:40 AM

12:35:48.0252 0x12f8  TDSS rootkit removing tool 3.1.0.12 Nov  7 2016 07:10:01
12:35:52.0769 0x12f8  ============================================================
12:35:52.0769 0x12f8  Current date / time: 2017/03/08 12:35:52.0769
12:35:52.0769 0x12f8  SystemInfo:
12:35:52.0770 0x12f8  
12:35:52.0770 0x12f8  OS Version: 6.1.7600 ServicePack: 0.0
12:35:52.0770 0x12f8  Product type: Workstation
12:35:52.0770 0x12f8  ComputerName: WAYNE-PC
12:35:52.0778 0x12f8  UserName: Wayne
12:35:52.0779 0x12f8  Windows directory: C:\Windows
12:35:52.0779 0x12f8  System windows directory: C:\Windows
12:35:52.0779 0x12f8  Processor architecture: Intel x86
12:35:52.0779 0x12f8  Number of processors: 2
12:35:52.0779 0x12f8  Page size: 0x1000
12:35:52.0779 0x12f8  Boot type: Normal boot
12:35:52.0779 0x12f8  CodeIntegrityOptions = 0x00000000
12:35:52.0779 0x12f8  ============================================================
12:35:57.0381 0x12f8  KLMD registered as C:\Windows\system32\drivers\10840671.sys
12:35:57.0381 0x12f8  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7600.16385, osProperties = 0x0
12:36:02.0936 0x12f8  System UUID: {6996C818-F57A-AFF6-B764-CDF6FA08E9DB}
12:36:05.0537 0x12f8  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 ( 149.05 Gb ), SectorSize: 0x200, Cylinders: 0x50C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
12:36:07.0602 0x12f8  ============================================================
12:36:07.0602 0x12f8  \Device\Harddisk0\DR0:
12:36:07.0646 0x12f8  MBR partitions:
12:36:07.0646 0x12f8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:36:07.0646 0x12f8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x129E6800
12:36:07.0647 0x12f8  ============================================================
12:36:07.0866 0x12f8  C: <-> \Device\Harddisk0\DR0\Partition2
12:36:07.0866 0x12f8  ============================================================
12:36:07.0866 0x12f8  Initialize success
12:36:07.0867 0x12f8  ============================================================
12:36:09.0804 0x171c  ============================================================
12:36:09.0804 0x171c  Scan started
12:36:09.0804 0x171c  Mode: Manual;
12:36:09.0804 0x171c  ============================================================
12:36:09.0804 0x171c  KSN ping started
12:36:14.0423 0x171c  KSN ping finished: true
12:36:17.0200 0x171c  ================ Scan system memory ========================
12:36:17.0200 0x171c  System memory - ok
12:36:17.0200 0x171c  ================ Scan services =============================
12:36:18.0826 0x171c  [ 6D2ACA41739BFE8CB86EE8E85F29697D, 74A4F53C8309A8E5E94CDE4D440DD5308566185E6D8D98FD08E70A25BD728C91 ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
12:36:18.0831 0x171c  1394ohci - ok
12:36:18.0866 0x171c  [ F0E07D144C8685B8774BC32FC8DA4DF0, 39816ED2623CA9ABE2B2EDCDB2F8481634742F00FEEF7E324F34D2BAAD668A67 ] ACPI            C:\Windows\system32\DRIVERS\ACPI.sys
12:36:18.0874 0x171c  ACPI - ok
12:36:18.0894 0x171c  [ 98D81CA942D19F7D9153B095162AC013, ACE5C073323176621F3312AA9B1EE1A3382F8CDD590D90DC57B34035FD6BC281 ] AcpiPmi         C:\Windows\system32\DRIVERS\acpipmi.sys
12:36:18.0903 0x171c  AcpiPmi - ok
12:36:18.0940 0x171c  [ 21E785EBD7DC90A06391141AAC7892FB, A2D3D764C5E6DC0AD5AAF48485FFB8B121D2A40DC08ECF2D2CB92278A1002B25 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
12:36:18.0973 0x171c  adp94xx - ok
12:36:19.0012 0x171c  [ 0C676BC278D5B59FF5ABD57BBE9123F2, 339E8A433D186BAAB6FCB44C82CC9FB6FCD63C87981449494CBEB2072CB6B7BB ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
12:36:19.0053 0x171c  adpahci - ok
12:36:19.0079 0x171c  [ 7C7B5EE4B7B822EC85321FE23A27DB33, A934AFB71D439555E6376DA9B34F82E8D39A300A4547BE9AC9311F6A3C36270C ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
12:36:19.0138 0x171c  adpu320 - ok
12:36:19.0166 0x171c  [ 8B5EEFEEC1E6D1A72A06C526628AD161, 026CDF4C96F4D493E7BABF79A14C4B0B5ADCCEF0B081FFFA2E3B243B2414167F ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:36:19.0169 0x171c  AeLookupSvc - ok
12:36:19.0204 0x171c  [ DDC040FDB01EF1712A6B13E52AFB104C, BF17E91BBB85A04F1EEF580CD006101332CDE5B876A0D04C6932F30707BB184F ] AFD             C:\Windows\system32\drivers\afd.sys
12:36:19.0221 0x171c  AFD - ok
12:36:19.0247 0x171c  [ 507812C3054C21CEF746B6EE3D04DD6E, D7E59350AC338AD229E3D10C76E32AE16D120311B263714A9CD94AB538633B0E ] agp440          C:\Windows\system32\DRIVERS\agp440.sys
12:36:19.0267 0x171c  agp440 - ok
12:36:19.0301 0x171c  [ 8B30250D573A8F6B4BD23195160D8707, 64EC289AFCD63D84EAFD9D81C50D0A77BCC79A1EFF32C50B2776BB0C0151757D ] aic78xx         C:\Windows\system32\DRIVERS\djsvs.sys
12:36:19.0346 0x171c  aic78xx - ok
12:36:19.0383 0x171c  [ 18A54E132947CD98FEA9ACCC57F98F13, 9D39AF972785E49F0DD12C4BAEF39A79CD69F098886BF152AF1B7CCE2E902115 ] ALG             C:\Windows\System32\alg.exe
12:36:19.0386 0x171c  ALG - ok
12:36:19.0421 0x171c  [ 0D40BCF52EA90FC7DF2AEAB6503DEA44, 1D1AA8F50935D976C29DE7A84708CADBBBDD936F0DD2C059E820F0D21367B3B6 ] aliide          C:\Windows\system32\DRIVERS\aliide.sys
12:36:19.0453 0x171c  aliide - ok
12:36:19.0464 0x171c  [ 3C6600A0696E90A463771C7422E23AB5, 370B33DC1C25B981628A318BAE434A78A5F0A0DA93C2896DC7A3D7B87AE1A5E7 ] amdagp          C:\Windows\system32\DRIVERS\amdagp.sys
12:36:19.0490 0x171c  amdagp - ok
12:36:19.0514 0x171c  [ CD5914170297126B6266860198D1D4F0, 2239FCBD1A7EC27CE4F10DA36AE6BD6CCB87E5128C82CA71B84BFE5AF5602A60 ] amdide          C:\Windows\system32\DRIVERS\amdide.sys
12:36:19.0531 0x171c  amdide - ok
12:36:19.0549 0x171c  [ 00DDA200D71BAC534BF56A9DB5DFD666, CA316B1FFD85BA1CF8664B3229DA1F238A5341E016059F7ED89702324CFD124B ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
12:36:19.0553 0x171c  AmdK8 - ok
12:36:19.0576 0x171c  [ 3CBF30F5370FDA40DD3E87DF38EA53B6, 7EACF1743367BE805357B6FD10F8F99E9B1C301FE3782D77719347B13DFA65EC ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
12:36:19.0610 0x171c  AmdPPM - ok
12:36:19.0629 0x171c  [ 2101A86C25C154F8314B24EF49D7FBC2, E4C1326CF55850793B45B2BFDF361C4E98A07FB13E08BFD6DB50135489700998 ] amdsata         C:\Windows\system32\DRIVERS\amdsata.sys
12:36:19.0738 0x171c  amdsata - ok
12:36:19.0794 0x171c  [ EA43AF0C423FF267355F74E7A53BDABA, 3F1335909AB0281A2FBDD7AD90E18309E091656CD32B48894B992789D8C61DB4 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
12:36:19.0812 0x171c  amdsbs - ok
12:36:19.0817 0x171c  [ B81C2B5616F6420A9941EA093A92B150, DA2000C9E06533232F8716A6674BC9DFD5C3AAE1FC46F7A91B8E917DB913F42F ] amdxata         C:\Windows\system32\DRIVERS\amdxata.sys
12:36:19.0840 0x171c  amdxata - ok
12:36:19.0875 0x171c  [ FEB834C02CE1E84B6A38F953CA067706, E5A7F8B632ABFBD1283C3D44FB02449814EDB653B204E1720DAA780A6D64FD01 ] AppID           C:\Windows\system32\drivers\appid.sys
12:36:19.0883 0x171c  AppID - ok
12:36:19.0922 0x171c  [ 62A9C86CB6085E20DB4823E4E97826F5, E0F840B49710022C4FB437002AD06F64B0F6B5D628B32D00F2B66765E6B97E4B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:36:19.0945 0x171c  AppIDSvc - ok
12:36:19.0981 0x171c  [ 7DEAD9E3F65DCB2794F2711003BBF650, F541C30EEFD1BDB70F361B878B6E51DC728873695DD137148CE531FBACCDA21B ] Appinfo         C:\Windows\System32\appinfo.dll
12:36:19.0998 0x171c  Appinfo - ok
12:36:20.0029 0x171c  [ A45D184DF6A8803DA13A0B329517A64A, C1D16B60A6D69689AE951DC3D6884ED2E233D144B3FC0B86BC1C50AAAAA01ED2 ] AppMgmt         C:\Windows\System32\appmgmts.dll
12:36:20.0046 0x171c  AppMgmt - ok
12:36:20.0070 0x171c  [ 2932004F49677BD84DBC72EDB754FFB3, 73F84582244AC53994A2F4499A119B4A84A6BF7FD3046C29A8080C763DE540B8 ] arc             C:\Windows\system32\DRIVERS\arc.sys
12:36:20.0073 0x171c  arc - ok
12:36:20.0098 0x171c  [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7, F7C9C3B4F2C816F57A43B2921672858C291054220BADE291044343778216F6BA ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
12:36:20.0107 0x171c  arcsas - ok
12:36:20.0169 0x171c  [ 2B4E66FAC6503494A2C6F32BB6AB3826, 923EBBE8111E73D5B8ECC2DB10F8EA2629A3264C3A535D01C3C118A3B4C91782 ] AsIO            C:\Windows\system32\drivers\AsIO.sys
12:36:20.0259 0x171c  AsIO - ok
12:36:20.0915 0x171c  [ 537B2948976F5D9B5767B74A63EBB395, 1A14F8B582E74AD15B612EDA5B707AA3CB0B2A107ED14572B4232EAA7383B634 ] aspnet_state    C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
12:36:21.0225 0x171c  aspnet_state - ok
12:36:21.0272 0x171c  [ ADD2ADE1C2B285AB8378D2DAAF991481, 7965A705F37924C0EC7A934E64E89C5DF4069816E2EEA3509E0AC90F78910519 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:36:21.0288 0x171c  AsyncMac - ok
12:36:21.0339 0x171c  [ 338C86357871C167A96AB976519BF59E, F28CC534523D1701B0552F5D7E18E88369C4218BDB1F69110C3E31D395884AD6 ] atapi           C:\Windows\system32\DRIVERS\atapi.sys
12:36:21.0364 0x171c  atapi - ok
12:36:21.0412 0x171c  [ 510C873BFA135AA829F4180352772734, BC528D840EB338B0C5D11801C63D8EADD40AF8043DC77ACB4B42E8D20767538F ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:36:21.0463 0x171c  AudioEndpointBuilder - ok
12:36:21.0501 0x171c  [ 510C873BFA135AA829F4180352772734, BC528D840EB338B0C5D11801C63D8EADD40AF8043DC77ACB4B42E8D20767538F ] Audiosrv        C:\Windows\System32\Audiosrv.dll
12:36:21.0512 0x171c  Audiosrv - ok
12:36:21.0546 0x171c  [ DD6A431B43E34B91A767D1CE33728175, 8BFF6474C9DFBEC96FA7B2789EF9B17C7910B52DBCF70CDA1F0C698CFA5EFB6E ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:36:21.0555 0x171c  AxInstSV - ok
12:36:21.0603 0x171c  [ 1A231ABEC60FD316EC54C66715543CEC, 09E2897BA80737997A286EA5408C03DD3CC0EBACD24CB391C2455B6D4BE7D67E ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbdx.sys
12:36:21.0645 0x171c  b06bdrv - ok
12:36:21.0678 0x171c  [ BD8869EB9CDE6BBE4508D869929869EE, F4363A12EBFDBB89C69FD59B22F9EE05BADA07D477A1DF2DE01F59D6EE496543 ] b57nd60x        C:\Windows\system32\DRIVERS\b57nd60x.sys
12:36:21.0720 0x171c  b57nd60x - ok
12:36:21.0749 0x171c  [ EE1E9C3BB8228AE423DD38DB69128E71, ED54FD9795F3A4D32F02BED6052AD9404409A05644CDBEBFF19C662D104DA95A ] BDESVC          C:\Windows\System32\bdesvc.dll
12:36:21.0758 0x171c  BDESVC - ok
12:36:21.0798 0x171c  [ 505506526A9D467307B3C393DEDAF858, 8AD6F1492E357F57CF42261497BA29122045D4FC0DCC9669AA5AC9B2A4BABFA4 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:36:21.0808 0x171c  Beep - ok
12:36:21.0842 0x171c  [ 85AC71C045CEB054ED48A7841AAE0C11, BA0C0CC50E5C49838116AC9A12A7CF1A683601FD08D3CF6EC06620C51C0806FF ] BFE             C:\Windows\System32\bfe.dll
12:36:21.0884 0x171c  BFE - ok
12:36:21.0943 0x171c  [ 53F476476F55A27F580661BDE09C4EC4, 90DFBF97F011CFF41D2CFA2E33978BC746A7E693AC75EED1436130C4F10B4E67 ] BITS            C:\Windows\System32\qmgr.dll
12:36:22.0048 0x171c  BITS - ok
12:36:22.0067 0x171c  [ 2287078ED48FCFC477B05B20CF38F36F, 55BCA6174E6034A8D61CBE4126B2F1989F6052BFA624BEA9C0A0A664AEC74521 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
12:36:22.0101 0x171c  blbdrive - ok
12:36:22.0127 0x171c  [ FCAFAEF6798D7B51FF029F99A9898961, BFB37686B1386EB883B99DB6AC342C20514939F8B7A5CEC5D63865B3DC2B4D4F ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:36:22.0178 0x171c  bowser - ok
12:36:22.0201 0x171c  [ 9F9ACC7F7CCDE8A15C282D3F88B43309, A9131334BD9CF8FD60BA9D54AA054E2DF2BE1219FB650DF1464F2787BDEAE98F ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:36:22.0226 0x171c  BrFiltLo - ok
12:36:22.0230 0x171c  [ 56801AD62213A41F6497F96DEE83755A, 0DEB8318FB47DF6473C171C795C735E26A73FA12232876C6856549EA16F33361 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:36:22.0284 0x171c  BrFiltUp - ok
12:36:22.0315 0x171c  [ 598E1280E7FF3744F4B8329366CC5635, 9B6392AEBE7EF26253487AF8C7C114822ABB187BA32DA8DBF622DB1B8DA6F1C0 ] Browser         C:\Windows\System32\browser.dll
12:36:22.0332 0x171c  Browser - ok
12:36:22.0359 0x171c  [ 845B8CE732E67F3B4133164868C666EA, 9309B094CD9B5EBC46295A5EB806BED472C3CEDE3B5F6F497EBDABA496A2A27F ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
12:36:22.0409 0x171c  Brserid - ok
12:36:22.0427 0x171c  [ 203F0B1E73ADADBBB7B7B1FABD901F6B, 782FA7B26940FE479C49C9BAA2EB582CDAAAD607013E9BCFC85E6FBBB7D49A6D ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
12:36:22.0455 0x171c  BrSerWdm - ok
12:36:22.0461 0x171c  [ BD456606156BA17E60A04E18016AE54B, DFBDC9DA6A3EA40BACFF204BC6C55C2C122B5885D2CBF6D45054DE43EE15EC4D ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
12:36:22.0462 0x171c  BrUsbMdm - ok
12:36:22.0475 0x171c  [ AF72ED54503F717A43268B3CC5FAEC2E, 4A638669B0C30B1BDED242A8BF2015A37749570FF4D67D190BACC8D7E0C44468 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
12:36:22.0513 0x171c  BrUsbSer - ok
12:36:22.0518 0x171c  [ ED3DF7C56CE0084EB2034432FC56565A, B5B75E002E7BC0209582C635CCCA26DB569BDB23C33A126634E00C6434BF941B ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
12:36:22.0534 0x171c  BTHMODEM - ok
12:36:22.0586 0x171c  [ 1DF19C96EEF6C29D1C3E1A8678E07190, 1F4BB161FF3A1C5B1465BB52F3520FEDB7ACB1FAA132466F07D16DB8E394AEA5 ] bthserv         C:\Windows\system32\bthserv.dll
12:36:22.0589 0x171c  bthserv - ok
12:36:22.0628 0x171c  [ 77EA11B065E0A8AB902D78145CA51E10, 160EB3BBE9E5F3CC4A02584E6F2576A812C7565B940D74838B983F1EE51FA73A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:36:22.0632 0x171c  cdfs - ok
12:36:22.0682 0x171c  [ BA6E70AA0E6091BC39DE29477D866A77, A17A68BDA46995F75FB1C2C593A81CD3B2BFE290CEAA45FA2380DDF5537A23C9 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:36:22.0689 0x171c  cdrom - ok
12:36:22.0747 0x171c  [ 628A9E30EC5E18DD5DE6BE4DBDC12198, DDA43DCCB195440D6BD5752BD00D984F45BD6D23DBE2A656C33E3CD1E5D17AD7 ] CertPropSvc     C:\Windows\System32\certprop.dll
12:36:22.0755 0x171c  CertPropSvc - ok
12:36:22.0780 0x171c  [ 3FE3FE94A34DF6FB06E6418D0F6A0060, 6B3A2A26609A75B690D4C0B3059E40822F3B3DB08943F58EC496BABDA7D0A735 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
12:36:22.0811 0x171c  circlass - ok
12:36:22.0844 0x171c  [ 635181E0E9BBF16871BF5380D71DB02D, 58D5150C6F3B9F1730FFDF3A8A2ABF5FF207F9785BD66C0C1E03A0F1C223A26A ] CLFS            C:\Windows\system32\CLFS.sys
12:36:22.0860 0x171c  CLFS - ok
12:36:23.0024 0x171c  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:36:23.0175 0x171c  clr_optimization_v2.0.50727_32 - ok
12:36:23.0258 0x171c  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:36:23.0377 0x171c  clr_optimization_v4.0.30319_32 - ok
12:36:23.0413 0x171c  [ DEA805815E587DAD1DD2C502220B5616, 2D6A7668C95352B818F5EC59FF462894935833D34190257DA9CAC7E67FD3631C ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
12:36:23.0419 0x171c  CmBatt - ok
12:36:23.0443 0x171c  [ C537B1DB64D495B9B4717B4D6D9EDBF2, 400EEFE662DE117C9CC956E4CBD5E98F28F962E7447CD93E8A78FDD8CA39EB4B ] cmdide          C:\Windows\system32\DRIVERS\cmdide.sys
12:36:23.0455 0x171c  cmdide - ok
12:36:23.0497 0x171c  [ 1B675691ED940766149C93E8F4488D68, A55C41B2B343B1CF53D737ED1752D0510052094FFC60FDB833279A8A52398132 ] CNG             C:\Windows\system32\Drivers\cng.sys
12:36:23.0514 0x171c  CNG - ok
12:36:23.0537 0x171c  [ A6023D3823C37043986713F118A89BEE, FAC239A7FA6251C7EDFFA34B4BAE3910B8BC0BD4A3574B6DB6931A8D691E207B ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
12:36:23.0545 0x171c  Compbatt - ok
12:36:23.0562 0x171c  [ F1724BA27E97D627F808FB0BA77A28A6, F7D69082EEFEC0FB8B309F6AEE282D4A5DFC1A40851ED65904AA9582C5DEA5AB ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
12:36:23.0572 0x171c  CompositeBus - ok
12:36:23.0582 0x171c  COMSysApp - ok
12:36:23.0597 0x171c  [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1, 6FC323217D82EF661BA0E3F949B61B05BB5235D1A69C81D24876C2153FAECEF6 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
12:36:23.0602 0x171c  crcdisk - ok
12:36:23.0647 0x171c  [ 9C231178CE4FB385F4B54B0A9080B8A4, 08EFAEBFF68D5CCE432D75116ED4BDC63FEA651459C9AD363CBEEDB769806527 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:36:23.0661 0x171c  CryptSvc - ok
12:36:23.0703 0x171c  [ 27C9490BDD0AE48911AB8CF1932591ED, 751F576F797F8A7BA576C32598BD6FD2E60D4FACC7836CC5BA3F68C38D27CCCA ] CSC             C:\Windows\system32\drivers\csc.sys
12:36:23.0745 0x171c  CSC - ok
12:36:23.0797 0x171c  [ 56FB5F222EA30D3D3FC459879772CB73, 2C4646774575858E26DBA9C73853E06D0BD18CC8A4C73C633071FF5FE04CA0F4 ] CscService      C:\Windows\System32\cscsvc.dll
12:36:23.0834 0x171c  CscService - ok
12:36:23.0874 0x171c  [ B82CD39E336973359D7C9BF911E8E84F, 45DB8F1E88FC25A81D2F3C2F8A8CDB6B34C44950B038E24FB71DCDD9823DB22A ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:36:23.0893 0x171c  DcomLaunch - ok
12:36:23.0922 0x171c  [ 8D6E10A2D9A5EED59562D9B82CF804E1, 888F9650F4E872BA8F4E0C27E38A6672A561042B17EBA40E306A22357965B0AD ] defragsvc       C:\Windows\System32\defragsvc.dll
12:36:23.0939 0x171c  defragsvc - ok
12:36:23.0976 0x171c  [ 8E09E52EE2E3CEB199EF3DD99CF9E3FB, B03D0CF11C1D0DCBB76E74D796F3AFA2F9598C918017C29670BED4E3A9962EF5 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:36:23.0984 0x171c  DfsC - ok
12:36:24.0023 0x171c  [ C56495FBD770712367CAD35E5DE72DA6, 9D5456A2E208F542F0B6C951EFCABA2A10919777C4287D7298A28F543D5BAC32 ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:36:24.0033 0x171c  Dhcp - ok
12:36:24.0051 0x171c  [ 1A050B0274BFB3890703D490F330C0DA, 79D74F4679A2EE040FAAF4D0392A9311239A10A5F8A5CCB48656C6F89B6D62FB ] discache        C:\Windows\system32\drivers\discache.sys
12:36:24.0054 0x171c  discache - ok
12:36:24.0088 0x171c  [ 565003F326F99802E68CA78F2A68E9FF, ABC42B24DBA4FFC411120E09278EF26AF56CCAB463B69B4BD6C530B4A07063D2 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
12:36:24.0105 0x171c  Disk - ok
12:36:24.0133 0x171c  [ D0722E963D3C6145446874241401B209, 542B3E6EC7E0161AB4732380343139959775E749996A97684A5D423833DDB196 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:36:24.0145 0x171c  Dnscache - ok
12:36:24.0179 0x171c  [ 4408C85C21EEA48EB0CE486BAEEF0502, 67EA726F4053665D94D7790EC89616EA0698A7548073A9211E3F75937B4384BE ] dot3svc         C:\Windows\System32\dot3svc.dll
12:36:24.0204 0x171c  dot3svc - ok
12:36:24.0229 0x171c  [ 7FA81C6E11CAA594ADB52084DA73A1E5, 9ED1C585D9CA091E75E4A2A1E5B923B104EBDC5FC9D12154DE909C583E4D0CAE ] DPS             C:\Windows\system32\dps.dll
12:36:24.0234 0x171c  DPS - ok
12:36:24.0267 0x171c  [ B918E7C5F9BF77202F89E1A9539F2EB4, C589A37DE50BBEF22E2DAA9682EA43147F614AA1AF7DAAA942BA5FC192313A0B ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:36:24.0270 0x171c  drmkaud - ok
12:36:24.0317 0x171c  [ 39806CFEDDCC55E686A49BCCD2972F23, EFD5816D3E8E7F0F8D8E52AB9C534737F32D2D6D3EACCA78940792C553881C64 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:36:24.0393 0x171c  DXGKrnl - ok
12:36:24.0462 0x171c  [ 8600142FA91C1B96367D3300AD0F3F3A, 5713625E27DF11FAAFDA7AC79899A6AD813166E167088FA990EC5DE87DBE83DF ] EapHost         C:\Windows\System32\eapsvc.dll
12:36:24.0480 0x171c  EapHost - ok
12:36:25.0062 0x171c  [ 560EDC0912BDB68290930E2542823A24, CB9578A19F717FBD388F2BE8179CF2D4755DF11AD246E13AF1D43E25CA026386 ] eapihdrv        C:\Users\Wayne\AppData\Local\Temp\ehdrv.sys
12:36:25.0206 0x171c  eapihdrv - ok
12:36:25.0847 0x171c  [ 024E1B5CAC09731E4D868E64DBFB4AB0, AB0826A74BBEE5B7A1B035861B665C79BC98305CFC7D82BEF420558FBD3EE994 ] ebdrv           C:\Windows\system32\DRIVERS\evbdx.sys
12:36:25.0996 0x171c  ebdrv - ok
12:36:26.0040 0x171c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] EFS             C:\Windows\System32\lsass.exe
12:36:26.0057 0x171c  EFS - ok
12:36:26.0249 0x171c  [ 3A74A6E33685662B125A3269B1F2114F, 183E180E4B35E549B5D7363D926E17226FF70CFDE7328F7B0B3676B9A27E2569 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:36:26.0287 0x171c  ehRecvr - ok
12:36:26.0324 0x171c  [ D389BFF34F80CAEDE417BF9D1507996A, 12859B9925D7A4631DE61A820922F43F56ED23C2AF014CBF36322685E5CF641E ] ehSched         C:\Windows\ehome\ehsched.exe
12:36:26.0349 0x171c  ehSched - ok
12:36:26.0387 0x171c  [ 0ED67910C8C326796FAA00B2BF6D9D3C, 97FAA7627A162B0AEC15545E0165D13355D535B4157604BB87F8EEB72ECD24A8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
12:36:26.0421 0x171c  elxstor - ok
12:36:26.0426 0x171c  [ 8FC3208352DD3912C94367A206AB3F11, 69B65C12BDADD4B730508674B1B77C5496612B4ACCC447DB9AFE49ADEA8CBF02 ] ErrDev          C:\Windows\system32\DRIVERS\errdev.sys
12:36:26.0435 0x171c  ErrDev - ok
12:36:26.0475 0x171c  [ F6916EFC29D9953D5D0DF06882AE8E16, ED41893960018D5EC2F7829B1DE4B6967D9FD074D60B11B9EB854E3E0948EC24 ] EventSystem     C:\Windows\system32\es.dll
12:36:26.0500 0x171c  EventSystem - ok
12:36:26.0534 0x171c  [ 2DC9108D74081149CC8B651D3A26207F, 75CB47923A867DDAC512701CE71DFCFC340FC3A2E27F4255D0836A1FBC463176 ] exfat           C:\Windows\system32\drivers\exfat.sys
12:36:26.0554 0x171c  exfat - ok
12:36:26.0567 0x171c  [ 7E0AB74553476622FB6AE36F73D97D35, 41463A255FDA1D550B3385EC7C73ABC343B1BBBE9CEE4DF9F2A8B3E7338C4947 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:36:26.0597 0x171c  fastfat - ok
12:36:26.0648 0x171c  [ F7EA23CC5E6BF2181F3F399D54F6EFC1, 4659A2EDC5D5171668FB20BED7B56466A674876888519D6F524F7456EBD11263 ] Fax             C:\Windows\system32\fxssvc.exe
12:36:26.0709 0x171c  Fax - ok
12:36:26.0742 0x171c  [ E817A017F82DF2A1F8CFDBDA29388B29, 4CC9320A21E6FEA2D16C48D6BEA14391B695BD541A3C5FDDAEEE086A414FC837 ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
12:36:26.0790 0x171c  fdc - ok
12:36:26.0807 0x171c  [ F3222C893BD2F5821A0179E5C71E88FB, A85B947249DBB986358CCD4B158DD58A9301F074F3C6CCCDEF2D01F432E59D1B ] fdPHost         C:\Windows\system32\fdPHost.dll
12:36:26.0809 0x171c  fdPHost - ok
12:36:26.0821 0x171c  [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B, 0E76C29D2A974A3F2FBFCB63D066D4136B78E02F6B1F579B1865CA7A76193987 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:36:26.0871 0x171c  FDResPub - ok
12:36:26.0885 0x171c  [ 6CF00369C97F3CF563BE99BE983D13D8, F65F35324A2FB9DFB533B1C4D089D990CC242218FE83414329D07B786D8EFF33 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:36:26.0900 0x171c  FileInfo - ok
12:36:26.0904 0x171c  [ 42C51DC94C91DA21CB9196EB64C45DB9, 388C68D12ECC8FFE3116FEAAF4DB7B80CF4A3F97E935788DD21C6ADE2369F635 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:36:26.0915 0x171c  Filetrace - ok
12:36:26.0936 0x171c  [ 87907AA70CB3C56600F1C2FB8841579B, CA1CD82A1CD453617CE5EA431A1836997F14E3580554E8A516D9FE1E9926D979 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
12:36:26.0944 0x171c  flpydisk - ok
12:36:26.0961 0x171c  [ 7520EC808E0C35E0EE6F841294316653, 6EC65511B4838A7172A8F89E35C2F9DF4F0BFCE3BE12EDA790F3EB567102FF67 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:36:26.0977 0x171c  FltMgr - ok
12:36:27.0049 0x171c  [ B6512A85815FDC3D560C3705F5BDB93D, A04D60BF4649DD7582C0E26E9CED93841D8B2729FDF6E1551F48A94AFD5A6436 ] FontCache       C:\Windows\system32\FntCache.dll
12:36:27.0090 0x171c  FontCache - ok
12:36:27.0170 0x171c  [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F, DBED26852B99B362152DA9CD4F31A1883EF6F9B496F3CF3772A197BA72DB61DA ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
12:36:27.0177 0x171c  FontCache3.0.0.0 - ok
12:36:27.0423 0x171c  [ B53D64A7BA4BC661B0BAF6453F6FC743, FA08513F56A77AC941927D3422A787400C253075F1D56C2CB6E0EC86C4756ED2 ] ForceWare Intelligent Application Manager (IAM) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
12:36:27.0462 0x171c  ForceWare Intelligent Application Manager (IAM) - ok
12:36:27.0492 0x171c  [ 1A16B57943853E598CFF37FE2B8CBF1D, 87609F46F3B8123552141FD70866E895220B1BBD92BC2B580CAF49201AA0197E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:36:27.0504 0x171c  FsDepends - ok
12:36:27.0518 0x171c  [ A574B4360E438977038AAE4BF60D79A2, 7255CCDDDAC4853FA72E6487408C4B7390CBA37549CE952929B2A9CF3327C616 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:36:27.0527 0x171c  Fs_Rec - ok
12:36:27.0566 0x171c  [ 5592F5DBA26282D24D2B080EB438A4D7, 5376D6CFFE9A1406CFA0BF4325EB65206F57A5C50034DA7EB4238BEB08D4D6DB ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:36:27.0608 0x171c  fvevol - ok
12:36:27.0713 0x171c  [ 65EE0C7A58B65E74AE05637418153938, 0E1A398ADD8411AF4CCC3344D67BE1B261320C58328BD5C5855A357476FAEBEF ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
12:36:27.0736 0x171c  gagp30kx - ok
12:36:27.0784 0x171c  [ 8BA3C04702BF8F927AB36AE8313CA4EE, 3B6460C8134AA9D6E4FB978201B35FE9B67DD5BBB6C8D9625F3097DDA30C2893 ] gpsvc           C:\Windows\System32\gpsvc.dll
12:36:27.0818 0x171c  gpsvc - ok
12:36:27.0990 0x171c  [ 2D8BBF6C7241AAD9EDE7708EBB7B43A4, 51AF8150C6CF738AF14F502E6BDAD1035773DD45980770E06393814B75259EF8 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
12:36:27.0994 0x171c  gupdate - ok
12:36:28.0037 0x171c  [ 2D8BBF6C7241AAD9EDE7708EBB7B43A4, 51AF8150C6CF738AF14F502E6BDAD1035773DD45980770E06393814B75259EF8 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
12:36:28.0041 0x171c  gupdatem - ok
12:36:28.0073 0x171c  [ C44E3C2BAB6837DB337DDEE7544736DB, 88A24FF7D2FECCEAFFD421B2039A0FB623DA47A6B220B80EF1E52DD26D9E222D ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
12:36:28.0084 0x171c  hcw85cir - ok
12:36:28.0227 0x171c  [ 3530CAD25DEBA7DC7DE8BB51632CBC5F, 6706B8AD211A4B89B6571ACD227412026EAD87D71456B3EC6E7DD8FA15B997BE ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:36:28.0295 0x171c  HdAudAddService - ok
12:36:28.0352 0x171c  [ 717A2207FD6F13AD3E664C7D5A43C7BF, BF28A6F00B64FA0E801493E3289CFFD5E313E724DF7B5AB521C9E37A20890DCF ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
12:36:28.0370 0x171c  HDAudBus - ok
12:36:28.0401 0x171c  [ 1D58A7F3E11A9731D0EAAAA8405ACC36, 7056FA18B86FBD52C4A6092D80476C02553EA053D6A0BEDB01A2FA5E152D5215 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
12:36:28.0493 0x171c  HidBatt - ok
12:36:28.0500 0x171c  [ 89448F40E6DF260C206A193A4683BA78, 71E0FCC32AE6FF8DFF420DB0383D6A200E1EAE14BD2E32453F92CE18B31C1F3C ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
12:36:28.0538 0x171c  HidBth - ok
12:36:28.0682 0x171c  [ CF50B4CF4A4F229B9F3C08351F99CA5E, B97843620AF80FF0EC8F2C438255C0A42A756C6314FAF3DEF415DE16E14C108F ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
12:36:28.0710 0x171c  HidIr - ok
12:36:28.0737 0x171c  [ 2BC6F6A1992B3A77F5F41432CA6B3B6B, 2AF3312F1C8C8923C0A29AA5DAE57CE269417E53DEA2F0CCCC8DB57029698FE1 ] hidserv         C:\Windows\system32\hidserv.dll
12:36:28.0740 0x171c  hidserv - ok
12:36:28.0791 0x171c  [ 25072FB35AC90B25F9E4E3BACF774102, EBCE089947CC5A251A517CB91E81FCB948B18405FBACA04C874D4A48AF88676D ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:36:28.0793 0x171c  HidUsb - ok
12:36:28.0844 0x171c  [ 741C2A45CA8407E374AABA3E330B7872, FCF31C46297CFDF8240F0E783A61C8463FEDB1EF7A676AB89DFF0EAE9F3534B4 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:36:28.0861 0x171c  hkmsvc - ok
12:36:28.0988 0x171c  [ A768CA158BB06782A2835B907F4873C3, EFF736C6BA38FB8FC8807286AB273E7274F505E8E59D952E8563DF77C412C5AE ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:36:29.0023 0x171c  HomeGroupListener - ok
12:36:29.0103 0x171c  [ FB08DEC5EF43D0C66D83B8E9694E7549, 9C9ECE9E90F524791FC5DCE797BAE39605F966592126FF058BA3FA0BEFD07BEB ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:36:29.0132 0x171c  HomeGroupProvider - ok
12:36:29.0210 0x171c  [ 295FDC419039090EB8B49FFDBB374549, 670E8015FD374640C6570F56F7FE8DE4D8F92E7A8072F5D1B2B95D0BD699CEF7 ] HpSAMD          C:\Windows\system32\DRIVERS\HpSAMD.sys
12:36:29.0217 0x171c  HpSAMD - ok
12:36:29.0286 0x171c  [ C531C7FD9E8B62021112787C4E2C5A5A, 09205E2A5BFB6C623B312B8AC82F7F7CA8A922B1D9A0E3952BD3BA47BBE1F18C ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:36:29.0336 0x171c  HTTP - ok
12:36:29.0349 0x171c  [ 8305F33CDE89AD6C7A0763ED0B5A8D42, A7CA4978DC1FF6105EA39124DF854F0B1FD478476B871ED0E018AF3AE2165282 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:36:29.0372 0x171c  hwpolicy - ok
12:36:29.0420 0x171c  [ F151F0BDC47F4A28B1B20A0818EA36D6, 84B24B5796D9F70A8C37773F5484A4606CC7908370CCD942627ACBEDC4952D79 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:36:29.0452 0x171c  i8042prt - ok
12:36:29.0484 0x171c  [ 934AF4D7C5F457B9F0743F4299B77B67, F232554352BB7CD716D6173FC1AB2661E49480994BB22E9A6FE7A33B51F0A51B ] iaStorV         C:\Windows\system32\DRIVERS\iaStorV.sys
12:36:29.0541 0x171c  iaStorV - ok
12:36:29.0751 0x171c  [ 5AF815EB5BC9802E5A064E2BA62BFC0C, DC8CED05F623D30C57E8A7A382A219B4266C9C766ABF8A8D71783EACB8607B82 ] idsvc           C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
12:36:29.0879 0x171c  idsvc - ok
12:36:29.0912 0x171c  [ 4173FF5708F3236CF25195FECD742915, 0A9C0701DF6EAC6602BE342FC13C7950EF04BB5BDF7D96C2C5DABBD2A29AA55D ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
12:36:29.0921 0x171c  iirsp - ok
12:36:29.0966 0x171c  [ FAC0EE6562B121B1399D6E855583F7A5, 034C9EE9232EB2CE64297EC4BCBEB5DA443ED9176C436CC754EF84FFB4AD4B08 ] IKEEXT          C:\Windows\System32\ikeext.dll
12:36:30.0000 0x171c  IKEEXT - ok
12:36:30.0020 0x171c  [ A0F12F2C9BA6C72F3987CE780E77C130, 5F53DF8BE1621AA7DFB655CFD9C95E0AFA1AD3CE2E290E19D7B7FB3C6E380034 ] intelide        C:\Windows\system32\DRIVERS\intelide.sys
12:36:30.0032 0x171c  intelide - ok
12:36:30.0056 0x171c  [ 3B514D27BFC4ACCB4037BC6685F766E0, F12D7AC62F8550E6F33B28AD751D8413AB7FFEF963242D99FFA76CE8A48B027A ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:36:30.0064 0x171c  intelppm - ok
12:36:30.0088 0x171c  [ ACB364B9075A45C0736E5C47BE5CAE19, 202F77C659103D2D0E787B8CB0A23BE32EA5AA2E6B3B0A0F0A8DFA906AB3C0C0 ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:36:30.0102 0x171c  IPBusEnum - ok
12:36:30.0115 0x171c  [ 709D1761D3B19A932FF0238EA6D50200, 0A9D2C3A6E91CA45540555B40CB4E2DF3EBE98C1D164C4EECEE20C86782F5823 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:36:30.0132 0x171c  IpFilterDriver - ok
12:36:30.0184 0x171c  [ 477397B432A256A50EE7E4339EB9EA14, 3722938E69D16962F773F39669E9B90279DC9527BBC63564B33C89DAFD283497 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:36:30.0221 0x171c  iphlpsvc - ok
12:36:30.0258 0x171c  [ E4454B6C37D7FFD5649611F6496308A7, 5B2AA8C06076C9A1FF944E5EA07C29BA7FABEBB38E6BFB388ED46933EAC465FB ] IPMIDRV         C:\Windows\system32\DRIVERS\IPMIDrv.sys
12:36:30.0325 0x171c  IPMIDRV - ok
12:36:30.0333 0x171c  [ A5FA468D67ABCDAA36264E463A7BB0CD, EDB828D596E43372F97DAE1AADA46428C4C45FB80646DDC64FAD5F25C826CF63 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:36:30.0342 0x171c  IPNAT - ok
12:36:30.0361 0x171c  [ 42996CFF20A3084A56017B7902307E9F, 688176DAB91BE569280E4822E4C5BDE755794D293591C53F8047AD59C441751D ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:36:30.0377 0x171c  IRENUM - ok
12:36:30.0390 0x171c  [ 1F32BB6B38F62F7DF1A7AB7292638A35, 86522358680FBB1CEBC56B4D139290689BB0F71A3EC78CE883E4D75D0B37586F ] isapnp          C:\Windows\system32\DRIVERS\isapnp.sys
12:36:30.0405 0x171c  isapnp - ok
12:36:30.0430 0x171c  [ ED46C223AE46C6866AB77CDC41C404B7, 1B2A4A3FF0E5F8F02717F20983D57612D62DFF809064A7E524700E7254BB7DB3 ] iScsiPrt        C:\Windows\system32\DRIVERS\msiscsi.sys
12:36:30.0455 0x171c  iScsiPrt - ok
12:36:30.0489 0x171c  [ ADEF52CA1AEAE82B50DF86B56413107E, A3AE1E96B04AC81665ABBD3CB267DFB3F78376DAE18FB0DBD447908DDAAA22D2 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
12:36:30.0506 0x171c  kbdclass - ok
12:36:30.0514 0x171c  [ 3D9F0EBF350EDCFD6498057301455964, B3CB5F0C045B06C86E683F3C67DC0D4E37AF16E20B189B05C926A5A7011438FB ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
12:36:30.0531 0x171c  kbdhid - ok
12:36:30.0563 0x171c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] KeyIso          C:\Windows\system32\lsass.exe
12:36:30.0565 0x171c  KeyIso - ok
12:36:30.0588 0x171c  [ E36A061EC11B373826905B21BE10948F, CB9F8B76E0A99307A841B66CBD96C7087CC0B068699CBEF01040E37C6EA60E6A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:36:30.0641 0x171c  KSecDD - ok
12:36:30.0648 0x171c  [ 26C046977E85B95036453D7B88BA1820, 375B284AFB407CAE417D2090B112A0ED1CCD516ABFDDBFCD5D6AADE859F14ACD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:36:30.0654 0x171c  KSecPkg - ok
12:36:30.0695 0x171c  [ 89A7B9CC98D0D80C6F31B91C0A310FCD, 4583CAEEE0D50C0C7CE955E533FDA063CDC37B69033D41EF22EF1BA242E4C747 ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:36:30.0729 0x171c  KtmRm - ok
12:36:30.0763 0x171c  [ BCA92CB047A4326925ECEF759DBAA233, C2A188F5526882A2E3AC4CC0190452DA37CBD93043DFE5571A20E8EFE9D56DA3 ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:36:30.0780 0x171c  LanmanServer - ok
12:36:30.0806 0x171c  [ B9891F885DCF1F0513A51CB58493CB1F, C883D243E1E7B7AEA031FB90FE4FCEED631F835DC95F9D9D60BC554E6EC358C2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:36:30.0823 0x171c  LanmanWorkstation - ok
12:36:30.0858 0x171c  [ F7611EC07349979DA9B0AE1F18CCC7A6, 879AA7A391966F00761CA039C25EBC62F6712DD5461694911EEC673E12DE103E ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:36:30.0867 0x171c  lltdio - ok
12:36:30.0894 0x171c  [ 5700673E13A2117FA3B9020C852C01E2, 6684A2905EE8C438F2A64BE47E51A54D287B08DEFB8E0AE7FC2809D845EE3C5F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:36:30.0911 0x171c  lltdsvc - ok
12:36:30.0932 0x171c  [ 55CA01BA19D0006C8F2639B6C045E08B, 4DBBDC820C514DB18CC13F8EE178F8C4E39C295C6E3C255416C235553CE7BDC1 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:36:30.0940 0x171c  lmhosts - ok
12:36:30.0971 0x171c  [ EB119A53CCF2ACC000AC71B065B78FEF, 1FD60735C4945AE565C223F0B47EAF9602D8777E3D15600914C1A9D761215AF9 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
12:36:30.0975 0x171c  LSI_FC - ok
12:36:30.0998 0x171c  [ 8ADE1C877256A22E49B75D1CC9161F9C, 3D64F233DC866537E50549A7C1A2B40A954055B22F0BDA39825B04C38C607CB7 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
12:36:31.0007 0x171c  LSI_SAS - ok
12:36:31.0017 0x171c  [ DC9DC3D3DAA0E276FD2EC262E38B11E9, A264990857CBC74036799E17A087130626C0A09BE19879019BAF2D761C62AECC ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:36:31.0035 0x171c  LSI_SAS2 - ok
12:36:31.0060 0x171c  [ 0A036C7D7CAB643A7F07135AC47E0524, 2F662D07FCB74B8D493156DB555EAA90A47E93CF14C7B30039D2FE47EB8682B8 ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:36:31.0064 0x171c  LSI_SCSI - ok
12:36:31.0070 0x171c  [ 6703E366CC18D3B6E534F5CF7DF39CEE, 7396B9AF938284D99EC51206A7B2FA4A0DC10A493DCE6707818B03A7473782C4 ] luafv           C:\Windows\system32\drivers\luafv.sys
12:36:31.0082 0x171c  luafv - ok
12:36:31.0112 0x171c  [ E2B0887816ED336685954E3D8FDAA51D, 4DCB08ADC6A89DCA68D1285734B283B567888EF72249F6BBA73A63D1BD462466 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:36:31.0124 0x171c  Mcx2Svc - ok
12:36:31.0147 0x171c  [ 0FFF5B045293002AB38EB1FD1FC2FB74, 49071B565FD5B2DE43EC00D8518C3BE70843F38919E82F13104B8C1FAFB20374 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
12:36:31.0172 0x171c  megasas - ok
12:36:31.0207 0x171c  [ DCBAB2920C75F390CAF1D29F675D03D6, 85C3A7A010BEA5E3C6179161B295F2CB900A6A214833A5F87A4327392880E2BB ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
12:36:31.0257 0x171c  MegaSR - ok
12:36:31.0282 0x171c  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] MMCSS           C:\Windows\system32\mmcss.dll
12:36:31.0298 0x171c  MMCSS - ok
12:36:31.0310 0x171c  [ F001861E5700EE84E2D4E52C712F4964, F4DC5AEED6F34D76CCEF360862CC47EF71097BE0813C8CE04EE5F0DB387DFFAE ] Modem           C:\Windows\system32\drivers\modem.sys
12:36:31.0315 0x171c  Modem - ok
12:36:31.0336 0x171c  [ 79D10964DE86B292320E9DFE02282A23, 52714827B7EEDACA55326A4E4F6158D4942DFAA3BACDE303A2F569BF3F4FAA72 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:36:31.0353 0x171c  monitor - ok
12:36:31.0372 0x171c  [ FB18CC1D4C2E716B6B903B0AC0CC0609, F10CCA63493782B16DE6B96B94A27078DBE68AECEF34FDF840CFF86D2C6E3C5E ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:36:31.0376 0x171c  mouclass - ok
12:36:31.0426 0x171c  [ 2C388D2CD01C9042596CF3C8F3C7B24D, B2FB72272BB01AEDA4047B57C943B7E9BD8A6497854F8CC34672AAA592D0A703 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:36:31.0448 0x171c  mouhid - ok
12:36:31.0456 0x171c  [ 921C18727C5920D6C0300736646931C2, 19ACE502982E9C5B0134676102EAEE96675C9CA237E410DB36C389D6B4078301 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:36:31.0469 0x171c  mountmgr - ok
12:36:31.0586 0x171c  [ B4F616842A51D40DEB3C1D3CC45D86AC, 5951D60569CC287E7DF3062A1C430D42DD4BC6047CD46DFDF3491848217FC967 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
12:36:31.0635 0x171c  MpFilter - ok
12:36:31.0673 0x171c  [ 2AF5997438C55FB79D33D015C30E1974, E8F048A02FEB400C133D0BFC1659921E73B59549E3F7D2A13929901B87A1901F ] mpio            C:\Windows\system32\DRIVERS\mpio.sys
12:36:31.0690 0x171c  mpio - ok
12:36:31.0933 0x171c  [ BB7BB66A8DAF16950F83AE7BF498AF8F, A96FC3BE055C52B98E7ECDF68D69081620F829B04B5496C73D87F271E40EA638 ] MpKsl3f344b8e   c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6792D9A9-88EE-4DD9-8FCA-E9838A4E7E91}\MpKsl3f344b8e.sys
12:36:31.0934 0x171c  MpKsl3f344b8e - ok
12:36:31.0948 0x171c  [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0, 1D6DCFA0E56C3E55B6AED819176E751502F863BA0FCF4F0B3253A81D208141A2 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:36:31.0971 0x171c  mpsdrv - ok
12:36:32.0265 0x171c  [ 5CD996CECF45CBC3E8D109C86B82D69E, ABE40DA4DA555D3D5054BE28BF82E775D90DCB9E31409DC95FABF2F016B17700 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:36:32.0319 0x171c  MpsSvc - ok
12:36:32.0386 0x171c  [ B1BE47008D20E43DA3ADC37C24CDB89D, 6E8555E84B42E5098227B35EA5ABADF2CD3AC247B37CB9E9304FF67064EBE59B ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:36:32.0406 0x171c  MRxDAV - ok
12:36:32.0545 0x171c  [ F4A054BE78AF7F410129C4B64B07DC9B, 65E14D38CCAB4FBB0C0D4A12F11B2E150AEC00AC692EE92A5CE6C982CF1190F5 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:36:32.0624 0x171c  mrxsmb - ok
12:36:32.0688 0x171c  [ DEFFA295BD1895C6ED8E3078412AC60B, 3F13CD67659EC2C8ABADC2C5B48B939ECDC6DB7CAAAAC3C2823AC12842BC1630 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:36:32.0720 0x171c  mrxsmb10 - ok
12:36:32.0732 0x171c  [ 24D76ABE5DCAD22F19D105F76FDF0CE1, D0A7E033B4DF4AA5A9600A2A7A890FDE20AC7CE87C660817EB92FE10E2DAD343 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:36:32.0741 0x171c  mrxsmb20 - ok
12:36:32.0772 0x171c  [ 4326D168944123F38DD3B2D9C37A0B12, 322AE93418BE3BA6B3E11C86431EC3F4B23CADC3B968B92978A08A7C0D0D8902 ] msahci          C:\Windows\system32\DRIVERS\msahci.sys
12:36:32.0783 0x171c  msahci - ok
12:36:32.0790 0x171c  [ 455029C7174A2DBB03DBA8A0D8BDDD9A, 614D71978B024109ADD9A7A74F74ABD5FAA1C36A2E859AF288398EAE7CD76DF2 ] msdsm           C:\Windows\system32\DRIVERS\msdsm.sys
12:36:32.0808 0x171c  msdsm - ok
12:36:32.0835 0x171c  [ E1BCE74A3BD9902B72599C0192A07E27, 5162EB623FE64E9DFEAC6CA2410EFA1314E62EC13207FFBFED2D61AA887603C4 ] MSDTC           C:\Windows\System32\msdtc.exe
12:36:32.0869 0x171c  MSDTC - ok
12:36:32.0911 0x171c  [ DAEFB28E3AF5A76ABCC2C3078C07327F, 6EB558532400B489763BAE7203538DE5F196282A8CB46A1B31D59120FC5AFCEF ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:36:32.0913 0x171c  Msfs - ok
12:36:32.0941 0x171c  [ 3E1E5767043C5AF9367F0056295E9F84, B2EDFECD3C14E4FE1BA87D9A86334043A9BD696A554EBD186DA7EAEB2EBD4F70 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:36:32.0944 0x171c  mshidkmdf - ok
12:36:32.0982 0x171c  [ 0A4E5757AE09FA9622E3158CC1AEF114, ED574E420E57374E328C7C526504ECA569C164287966F06019EC207CB17F2C54 ] msisadrv        C:\Windows\system32\DRIVERS\msisadrv.sys
12:36:33.0006 0x171c  msisadrv - ok
12:36:33.0040 0x171c  [ 90F7D9E6B6F27E1A707D4A297F077828, BEFC220EAA7307849600748842ACB9254A6A91158812D9B23EFAF912C498BA7F ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:36:33.0068 0x171c  MSiSCSI - ok
12:36:33.0072 0x171c  msiserver - ok
12:36:33.0134 0x171c  [ 8C0860D6366AAFFB6C5BB9DF9448E631, 949C5A14E57F2D7385543C17C3485E7ADE36EA2016F6E0A1866571D2EDE90A77 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:36:33.0150 0x171c  MSKSSRV - ok
12:36:33.0295 0x171c  [ B4C5CD5ABC0673E6531A973DCF2FFEFA, 80C3E22B640B47E0C41F4185F091E2C523A9EF291A75B7007303E2267B8D68C5 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
12:36:33.0318 0x171c  MsMpSvc - ok
12:36:33.0371 0x171c  [ 3EA8B949F963562CEDBB549EAC0C11CE, 1B0B2F16A1790282504F3C548D47C3281EFB440D5D9711A1EF76D6371B768D2D ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:36:33.0383 0x171c  MSPCLOCK - ok
12:36:33.0504 0x171c  [ F456E973590D663B1073E9C463B40932, 48BA6D5580EE7B6A4C06E04772FD35B51779553FC0DD6C5C30DD8B5DEEB25B11 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:36:33.0552 0x171c  MSPQM - ok
12:36:33.0570 0x171c  [ 0E008FC4819D238C51D7C93E7B41E560, 141FCEBDD05874407EAEC35A9DCD3BB16F2A428F23E55487D6A5DBFCADBF10D2 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:36:33.0587 0x171c  MsRPC - ok
12:36:33.0613 0x171c  [ FC6B9FF600CC585EA38B12589BD4E246, F05DB01AE1955D2468CE6B51E51998B111CA3B0BDEED090EE6B99B625CBA564A ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
12:36:33.0615 0x171c  mssmbios - ok
12:36:33.0652 0x171c  [ B42C6B921F61A6E55159B8BE6CD54A36, 6BB0A7BE005B8F281E551D1B8046CE4202372BC7AE0161881C858BFAC675FE1C ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:36:33.0715 0x171c  MSTEE - ok
12:36:33.0768 0x171c  [ 33599130F44E1F34631CEA241DE8AC84, E15B31D1AFDC8DC6D2B21D4215796A99ECC69EEDBB06CEED01AECC3C99A44C8B ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
12:36:33.0770 0x171c  MTConfig - ok
12:36:33.0841 0x171c  [ 0F24624106D8042E7F27882D9D6FF5C0, 2CD6E0962FB20EB8E1033CE1663FD223807BAE1FBE27D3AC9582FB765F2C70F0 ] MTsensor        C:\Windows\system32\DRIVERS\ASACPI.sys
12:36:33.0882 0x171c  MTsensor - ok
12:36:33.0948 0x171c  [ 159FAD02F64E6381758C990F753BCC80, E55AB01DCFA95ECAB24A2A9656E28FF9D064BA08B3D82DC8AA42F5991BA09598 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:36:33.0962 0x171c  Mup - ok
12:36:33.0997 0x171c  [ 80284F1985C70C86F0B5F86DA2DFE1DF, 424A5BBC28C72DA0DBABEB9E423B8C409754CD1BA3DFC9E174BF22D8BCE1BE63 ] napagent        C:\Windows\system32\qagentRT.dll
12:36:34.0031 0x171c  napagent - ok
12:36:34.0119 0x171c  [ 26384429FCD85D83746F63E798AB1480, 957C115C263A4B4DC854558B43ECE632D8E2BCCB744E23A01EBA7476BA2E7FFB ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:36:34.0147 0x171c  NativeWifiP - ok
12:36:34.0245 0x171c  [ 23759D175A0A9BAAF04D05047BC135A8, 2C8C553B4E1ED3A644F619F16BCEDD5A3C6D74A17E6E75A3E740E06B1D636348 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:36:34.0284 0x171c  NDIS - ok
12:36:34.0300 0x171c  [ 0E1787AA6C9191D3D319E8BAFE86F80C, F535022747355B2C66424BDA892D7DCB820C2EB8EE05BAE5BC6D1B1D65186278 ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:36:34.0304 0x171c  NdisCap - ok
12:36:34.0325 0x171c  [ E4A8AEC125A2E43A9E32AFEEA7C9C888, 6EA181117126FC70B3C1DD1AC73CC26D1603A2CF49E47F66623E2C9489C49B55 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:36:34.0327 0x171c  NdisTapi - ok
12:36:34.0360 0x171c  [ B30AE7F2B6D7E343B0DF32E6C08FCE75, 39BBBF7AF886732CB9ED3E6C06DA4318554089F3BEA74C74328FE1C6EF68E70B ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:36:34.0367 0x171c  Ndisuio - ok
12:36:34.0373 0x171c  [ 267C415EADCBE53C9CA873DEE39CF3A4, BAA8626BDA7B68176B19A99FBBD40FB2A774C8F44B56F9FFB99A1F5C16A1C555 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:36:34.0397 0x171c  NdisWan - ok
12:36:34.0416 0x171c  [ AF7E7C63DCEF3F8772726F86039D6EB4, 1CFDED48E8844138864786DBF9D5519162A6DB28F885A781934E8AFBD52EAC50 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:36:34.0440 0x171c  NDProxy - ok
12:36:34.0457 0x171c  [ 80B275B1CE3B0E79909DB7B39AF74D51, 75B406B0D9D28239D4EB2A298419A5F78A58237D88C5FD688EF1DFFAFACCF796 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:36:34.0491 0x171c  NetBIOS - ok
12:36:34.0525 0x171c  [ DD52A733BF4CA5AF84562A5E2F963B91, 5CEB9664CED3D120F5408A12035748728710D41090A289CF66023CED4C838A1F ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:36:34.0540 0x171c  NetBT - ok
12:36:34.0553 0x171c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] Netlogon        C:\Windows\system32\lsass.exe
12:36:34.0601 0x171c  Netlogon - ok
12:36:34.0755 0x171c  [ 7CCCFCA7510684768DA22092D1FA4DB2, BB9E4F8FABBF596D888E6D303CB54A336D9DFF95B36AEA9369D2ED787DDC4B5D ] Netman          C:\Windows\System32\netman.dll
12:36:34.0789 0x171c  Netman - ok
12:36:34.0824 0x171c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:36:35.0136 0x171c  NetMsmqActivator - ok
12:36:35.0167 0x171c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:36:35.0171 0x171c  NetPipeActivator - ok
12:36:35.0245 0x171c  [ 8C338238C16777A802D6A9211EB2BA50, 0D08A47CD403EDA5E8CAD7409BBBBCDC29A9861D2DC41D42B68B22B1AA1EBDD6 ] netprofm        C:\Windows\System32\netprofm.dll
12:36:35.0274 0x171c  netprofm - ok
12:36:35.0304 0x171c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:36:35.0308 0x171c  NetTcpActivator - ok
12:36:35.0340 0x171c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
12:36:35.0343 0x171c  NetTcpPortSharing - ok
12:36:35.0383 0x171c  [ 1D85C4B390B0EE09C7A46B91EFB2C097, 6A8850B151E88EE371F3CC543A946302DDF9494908D684B8B0C706A42CC54348 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
12:36:35.0412 0x171c  nfrd960 - ok
12:36:35.0474 0x171c  [ BCE0BE7D7FCD681436410FB5398ADC12, 0DABD220B47065CD8D95C2057728C4961CF00654DE005D5EAC41E489C4053780 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
12:36:35.0498 0x171c  NisDrv - ok
12:36:35.0633 0x171c  [ 244794F86176D3E05FC33A99DD02BA54, 636C283CDFB0442B348865059CAE4D30BCF5D81302AFFE4326A947E9987328BE ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
12:36:35.0675 0x171c  NisSrv - ok
12:36:35.0743 0x171c  [ 2226496E34BD40734946A054B1CD657F, 98392D98C9213822268971432BB55047ABD8B4EBD42483FA69BF50FB8FAD64A2 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:36:35.0777 0x171c  NlaSvc - ok
12:36:35.0794 0x171c  [ 1DB262A9F8C087E8153D89BEF3D2235F, A51EE5D5AD3CD76B74BEA9C66C462608BF3B50C53DAA4110A75DB10495A8C101 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:36:35.0798 0x171c  Npfs - ok
12:36:35.0819 0x171c  [ BA387E955E890C8A88306D9B8D06BF17, 3477BD9686C5777A93251C154512671AAA7533B18C536DF51F7B1D6D28E7F8A5 ] nsi             C:\Windows\system32\nsisvc.dll
12:36:35.0822 0x171c  nsi - ok
12:36:35.0845 0x171c  [ E9A0A4D07E53D8FEA2BB8387A3293C58, 690CAD6C4E35ECC1172A2E1FD3933DF73158B3BF42CB21244269612A53DE4D7A ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:36:35.0871 0x171c  nsiproxy - ok
12:36:35.0963 0x171c  [ 168437A522D178DF6A372F09782B084F, A7FBFEF6B21926B8F405CC0D5C5EA618C3E8C93EF97BE07EF407BAC54099296B ] nSvcIp          C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
12:36:36.0014 0x171c  nSvcIp - ok
12:36:36.0301 0x171c  [ 3795DCD21F740EE799FB7223234215AF, B03DBFD33B201134473D23038E0BD86CFE64556754BF4EBA42C10B67AEECAEA6 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:36:36.0389 0x171c  Ntfs - ok
12:36:36.0436 0x171c  [ F9756A98D69098DCA8945D62858A812C, 572ADBFCFDE2030B34A013AADC14DBC144EB3F34D06991E2464A3EA9605BC045 ] Null            C:\Windows\system32\drivers\Null.sys
12:36:36.0481 0x171c  Null - ok
12:36:36.0864 0x171c  [ B5E37E31C053BC9950455A257526514B, 16E2880621F3AA12BDADE71CD7682CA79E2A199D3C9E3E5927C49DCEF0F6183B ] NVENETFD        C:\Windows\system32\DRIVERS\nvm62x32.sys
12:36:36.0890 0x171c  NVENETFD - ok
12:36:36.0967 0x171c  [ 9F8EE4948B7ADD9D12F778F61A2758A4, 9848C7D97AC000BF7A00BAE12593E48E14D36D7FFFCF25A163FAAB446691032F ] NVHDA           C:\Windows\system32\drivers\nvhda32v.sys
12:36:37.0011 0x171c  NVHDA - ok
12:36:39.0975 0x171c  [ 8E3BD4ED84EEF035B1AF3F90141D13D1, 764C700D9C08548225B1F0CD978265976B9CE65F20931970B69B2953CD00B611 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
12:36:40.0514 0x171c  nvlddmkm - ok
12:36:40.0736 0x171c  [ C9C82E1A08955FDBDF92AAC55BC3A4E4, 9B5D633E2C852D0948B1B0D0BDCC9B80933D24BD10A80BA09538FC1D53A9C6B4 ] NVNET           C:\Windows\system32\DRIVERS\nvmf6232.sys
12:36:40.0755 0x171c  NVNET - ok
12:36:41.0354 0x171c  [ D2FE0376285A783693469422678E878B, 9F0B1A6694CA7BDAAA3B26BE1D344A3FC7B98162518A259C273360EFF075CD75 ] NvNetworkService C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
12:36:41.0436 0x171c  NvNetworkService - ok
12:36:41.0464 0x171c  [ 3F3D04B1D08D43C16EA7963954EC768D, BA82C1D3D9F4AA5F1C9729D61D4E06DB961FDF2B1E9B483D29DB308204DF0754 ] nvraid          C:\Windows\system32\DRIVERS\nvraid.sys
12:36:41.0469 0x171c  nvraid - ok
12:36:41.0494 0x171c  [ C99F251A5DE63C6F129CF71933ACED0F, 24D48A5F5D699AB0DD4D4435F8F7C6B73A924AEF8F9D1170FD644E26499546A2 ] nvstor          C:\Windows\system32\DRIVERS\nvstor.sys
12:36:41.0502 0x171c  nvstor - ok
12:36:41.0536 0x171c  [ 032EF66DD96692AD3A9D36160F467F67, CE3A5E5A51EE3AB0FFBE4A2F0C227BAB3D78611C7D360C6E527C73A0551D8F73 ] nvstor32        C:\Windows\system32\DRIVERS\nvstor32.sys
12:36:41.0541 0x171c  nvstor32 - ok
12:36:45.0178 0x171c  [ DA09A1DAEBD38226C0CB22BA8D967F63, 55654C3D4D96185E5754DE63C08D40FA6CB46FAECBAACA6CEAB0F48E643C392C ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
12:36:51.0639 0x171c  NvStreamSvc - ok
12:36:51.0905 0x171c  [ 7A50B5448C45C0BEBFCF0E6481ABD73F, 6890320DD8DC9A58F845D6C6E058858F4651067B62E25AEED9F94436F10A4EA1 ] nvsvc           C:\Windows\system32\nvvsvc.exe
12:36:52.0918 0x171c  nvsvc - ok
12:36:53.0011 0x171c  [ D230D757C084FB8D7BC4936E3D6334B8, 28F6416C2C8B174F388B42F7951E2D35B42EA5443DC9A89A016FCDE8A3D57F4A ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad32v.sys
12:36:53.0024 0x171c  nvvad_WaveExtensible - ok
12:36:53.0041 0x171c  [ 5A0983915F02BAE73267CC2A041F717D, D83461D74597BF2BE042FEFCC27FCD18BF63CB8135B0666D731D50951C3468A8 ] nv_agp          C:\Windows\system32\DRIVERS\nv_agp.sys
12:36:53.0054 0x171c  nv_agp - ok
12:36:53.0103 0x171c  [ 08A70A1F2CDDE9BB49B885CB817A66EB, 0BB98123B544124B144F3E95D77E01E973D060B8B2302503FF24ABBBE803EB63 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
12:36:53.0113 0x171c  ohci1394 - ok
12:36:53.0213 0x171c  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:36:53.0265 0x171c  p2pimsvc - ok
12:36:53.0359 0x171c  [ 59C3DDD501E39E006DAC31BF55150D91, E02B63AB7F34CF6FF3F644AF354D10004E6F50014E03172D80BD78934EF71EF1 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:36:53.0384 0x171c  p2psvc - ok
12:36:53.0417 0x171c  [ 2EA877ED5DD9713C5AC74E8EA7348D14, 14BA3722CE5F8FF07F2D97DCDD6558EB49C9B02E5E6FAD6D9F18D354733EFECE ] Parport         C:\Windows\system32\DRIVERS\parport.sys
12:36:53.0441 0x171c  Parport - ok
12:36:53.0458 0x171c  [ FF4218952B51DE44FE910953A3E686B9, 871E4F8300AFE2AE770B8F00C12911A08D8BBD8E07C37A11AFF67CA92607A602 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:36:53.0467 0x171c  partmgr - ok
12:36:53.0517 0x171c  [ EB0A59F29C19B86479D36B35983DAADC, AC09AFE7F13BE4079D01383BAC44091997E1AAF6512C9673A42B9E3780EB08A8 ] Parvdm          C:\Windows\system32\DRIVERS\parvdm.sys
12:36:53.0539 0x171c  Parvdm - ok
12:36:53.0609 0x171c  [ 358AB7956D3160000726574083DFC8A6, 6CAFD4D1B8AB8C1D167ADC018985DDAB5AC2CBFFB3434FE6390F14AF50C19025 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:36:53.0644 0x171c  PcaSvc - ok
12:36:53.0717 0x171c  [ C858CB77C577780ECC456A892E7E7D0F, 21AE545B736739DE5A7B02CF227516BA6D02B1AAAECD8CC516CCF9F1FD710BCF ] pci             C:\Windows\system32\DRIVERS\pci.sys
12:36:53.0747 0x171c  pci - ok
12:36:53.0772 0x171c  [ AFE86F419014DB4E5593F69FFE26CE0A, CAF36E61BE7B511D3A03A65FF5A3017CEE4D2F53005B410F2D4A2AAE9FED4C00 ] pciide          C:\Windows\system32\DRIVERS\pciide.sys
12:36:53.0779 0x171c  pciide - ok
12:36:53.0858 0x171c  [ F396431B31693E71E8A80687EF523506, BC614FC21E029E2497F1CCE3131BBD295B827F2310762B47D5BBC7703D80554B ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
12:36:53.0890 0x171c  pcmcia - ok
12:36:53.0920 0x171c  [ 250F6B43D2B613172035C6747AEEB19F, A91F15B133F2619912CF750E6F3662E011CD0FA4B9477CE532CE3196D23307D9 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:36:53.0932 0x171c  pcw - ok
12:36:54.0115 0x171c  [ 9E0104BA49F4E6973749A02BF41344ED, B32F39F38DB48D77FBA884DEE34112BAB81CCEF5DD2EAAA12D9589D73D2BB116 ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:36:54.0194 0x171c  PEAUTH - ok
12:36:54.0511 0x171c  [ AF4D64D2A57B9772CF3801950B8058A6, C9C493A3775E6E1660CE5DF75DA574D0C04245FB88CF41B96217A725359C350D ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
12:36:54.0595 0x171c  PeerDistSvc - ok
12:36:54.0880 0x171c  [ 9C1BFF7910C89A1D12E57343475840CB, 62E00E1278BD263B2AC8CB803C31F2818C54DB143C49470FAD07731E04BD2DE3 ] pla             C:\Windows\system32\pla.dll
12:36:54.0969 0x171c  pla - ok
12:36:55.0097 0x171c  [ 2CC2008F1296968FBA162ED9F9AFE328, 670E2BE4EB8210C9D6AEA635DFA20E390936762A22B2BB413BF9C7AF418150D6 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:36:55.0126 0x171c  PlugPlay - ok
12:36:55.0158 0x171c  [ 63FF8572611249931EB16BB8EED6AFC8, 9732CCBCB93A7A4BEC88812B952C20244479E9BD781240C195E57F09E619EA33 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:36:55.0172 0x171c  PNRPAutoReg - ok
12:36:55.0196 0x171c  [ 82A8521DDC60710C3D3D3E7325209BEC, C4E34571EDD57C7FBB3D736B5FE8BD154624705B5C8EA2EC898F19F75B9A5942 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:36:55.0204 0x171c  PNRPsvc - ok
12:36:55.0254 0x171c  [ 48E1B75C6DC0232FD92BAAE4BD344721, 5BA4EB5A60725836D8085EABF87F51160BA57E318A0C4378410217911A393CE7 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:36:55.0301 0x171c  PolicyAgent - ok
12:36:55.0339 0x171c  [ DBFF83F709A91049621C1D35DD45C92C, 0A722A44F431CAB5EA77FF5F25EB6975C2111B605564FF9FB59751067E7CD3A7 ] Power           C:\Windows\system32\umpo.dll
12:36:55.0358 0x171c  Power - ok
12:36:55.0417 0x171c  [ 631E3E205AD6D86F2AED6A4A8E69F2DB, 1D3BF0CFC37D91A3A56246920B9CF1084E78A055D56E85A773417809C58C8065 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:36:55.0433 0x171c  PptpMiniport - ok
12:36:55.0454 0x171c  [ 85B1E3A0C7585BC4AAE6899EC6FCF011, 1E067113C146D6842D7FB04007F363D6FB7783C6BC7C9AB6614E44075C4F86C3 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
12:36:55.0465 0x171c  Processor - ok
12:36:55.0535 0x171c  [ 630CF26F0227498B7D5A92B12548960F, 7B6E2A3C398DF2E8F63C03ED5B59BB8DA47D5C1ACA9F37438F71F35633ACD6CD ] ProfSvc         C:\Windows\system32\profsvc.dll
12:36:55.0562 0x171c  ProfSvc - ok
12:36:55.0586 0x171c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:36:55.0600 0x171c  ProtectedStorage - ok
12:36:55.0655 0x171c  [ 6270CCAE2A86DE6D146529FE55B3246A, 463209CBAF1B0E269DC8FC6FBDEE5BB7E5ADB5D3F024930BFD0B97E0A9678883 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:36:55.0667 0x171c  Psched - ok
12:36:56.0016 0x171c  [ AB95ECF1F6659A60DDC166D8315B0751, 0ED6D3460D28978BADF31B930DBB3298A6A10EFF8883763EABA0E36A21A0E83D ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
12:36:56.0092 0x171c  ql2300 - ok
12:36:56.0120 0x171c  [ B4DD51DD25182244B86737DC51AF2270, 7E62B04F054A6330B7F9968222523BDE8F3EE47A11D17E6C0E2D5ACDC07B9E6B ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
12:36:56.0136 0x171c  ql40xx - ok
12:36:56.0190 0x171c  [ 31AC809E7707EB580B2BDB760390765A, A8481FD19A0F778F5591B7676F591F664ADC68B6867E663C0F9564173F4AC909 ] QWAVE           C:\Windows\system32\qwave.dll
12:36:56.0216 0x171c  QWAVE - ok
12:36:56.0302 0x171c  [ 584078CA1B95CA72DF2A27C336F9719D, 836F115C92D343463C14A9DE39648C1EFA7C7EE4720F5C692EE0F68B84830121 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:36:56.0320 0x171c  QWAVEdrv - ok
12:36:56.0352 0x171c  [ 30A81B53C766D0133BB86D234E5556AB, 726C6B83B5ACAA84CAB1689B6DD6DDAE3199D61A57B5D7B5B5A0F62FCF838090 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:36:56.0366 0x171c  RasAcd - ok
12:36:56.0412 0x171c  [ 57EC4AEF73660166074D8F7F31C0D4FD, C66B425EC4DB5E7FD289AE631C9B019EB16717C55E80FAE964BB22203E4AACEF ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:36:56.0426 0x171c  RasAgileVpn - ok
12:36:56.0489 0x171c  [ A60F1839849C0C00739787FD5EC03F13, B210DFA5A843CF1DA73635F168E2EA5052CBED15C664F8523CDFB34CA165D0E0 ] RasAuto         C:\Windows\System32\rasauto.dll
12:36:56.0500 0x171c  RasAuto - ok
12:36:56.0547 0x171c  [ D9F91EAFEC2815365CBE6D167E4E332A, 8350457A39D141C13807E7DB5A8D4113197C4016F7744B9993391F4AEA0C4A5C ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:36:56.0559 0x171c  Rasl2tp - ok
12:36:56.0693 0x171c  [ 0CE66EC736B7FC526D78F7624C7D2A94, D70B45AA413691CF84B24E966EBA1689955E54BDDA206380CAB7CD50F56D5CEB ] RasMan          C:\Windows\System32\rasmans.dll
12:36:56.0794 0x171c  RasMan - ok
12:36:56.0848 0x171c  [ 0FE8B15916307A6AC12BFB6A63E45507, 64119474DE7499E6E8B82E78BBD50074B3AA70B3E8329089FAE9B7F29919004E ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:36:56.0862 0x171c  RasPppoe - ok
12:36:56.0927 0x171c  [ 44101F495A83EA6401D886E7FD70096B, 56A0CE5C89870752B9B2AB795C1A248CA28209E049B2F20CCA0308CBE2488A0A ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:36:56.0938 0x171c  RasSstp - ok
12:36:57.0000 0x171c  [ 835D7E81BF517A3B72384BDCC85E1CE6, DC855AF17150C1B27926293115C01B5E1FD00FABCE18AFAEAB3DC68BDE4C908B ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:36:57.0016 0x171c  rdbss - ok
12:36:57.0058 0x171c  [ 0D8F05481CB76E70E1DA06EE9F0DA9DF, 2AFCBE3237D27AFBF095F91F1FCCA63E6890F34A9E4F00E5C34C92394CDA89FB ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
12:36:57.0067 0x171c  rdpbus - ok
12:36:57.0072 0x171c  [ 1E016846895B15A99F9A176A05029075, 78AE674B6E7D3A69099B24AC07E06563A4C867F9DCD8548E4DAAE6FC5ACA4E29 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:36:57.0091 0x171c  RDPCDD - ok
12:36:57.0102 0x171c  [ C5FF95883FFEF704D50C40D21CFB3AB5, 26CC53DDE126A6BD99F606695F063BB7FDC4BBABB9F75F7AD7A84B58C837EEAA ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
12:36:57.0125 0x171c  RDPDR - ok
12:36:57.0151 0x171c  [ 5A53CA1598DD4156D44196D200C94B8A, 8112FE14FEC94C67B1C5BDE4171E37584F1D0098D2C557C9E4BDD3E0291E25E4 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:36:57.0168 0x171c  RDPENCDD - ok
12:36:57.0178 0x171c  [ 44B0A53CD4F27D50ED461DAE0C0B4E1F, CDA80B08E67AD034081C0C920CD66147689F1844403CBC552F65005E7C011A91 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
12:36:57.0185 0x171c  RDPREFMP - ok
12:36:57.0199 0x171c  [ 801371BA9782282892D00AADB08EE367, 884DDC24B8400E76F65F54C249053333AD29543224F9EC156C64A6BDF584DDCD ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:36:57.0240 0x171c  RDPWD - ok
12:36:57.0260 0x171c  [ 4EA225BF1CF05E158853F30A99CA29A7, F211480F13E2FE36C31110AE67ABE74E9D572D3A36BEEDE29E14ECBD8C246878 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:36:57.0279 0x171c  rdyboost - ok
12:36:57.0368 0x171c  [ 7B5E1419717FAC363A31CC302895217A, 048B96B127CC20833948DAE53C59886D5C725ECA7A744424A01339447D2DDC32 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:36:57.0384 0x171c  RemoteAccess - ok
12:36:57.0444 0x171c  [ CB9A8683F4EF2BF99E123D79950D7935, B9FA3E7E91E76D975CF40BFA37909E50F29CC13AB1399007884710651827E9AA ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:36:57.0462 0x171c  RemoteRegistry - ok
12:36:57.0757 0x171c  [ 97FD3C9C9CBC75D27D2549A9C18AAA39, 92261ACEFEA45296D3FD4A8154BEB4F321FE411D1CF94410F64FE17D12298B99 ] rixogijy        C:\Program Files\a084dc77-40bd-4681-9d6d-4d032830ced01488904591\kns9937.tmp
12:36:57.0838 0x171c  rixogijy - ok
12:36:57.0933 0x171c  [ 78D072F35BC45D9E4E1B61895C152234, 80C924EE1156B4E3172E83DCB9C60817E87885FB9377647E0BF90153E415B1CA ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:36:57.0946 0x171c  RpcEptMapper - ok
12:36:57.0975 0x171c  [ 94D36C0E44677DD26981D2BFEEF2A29D, D77A93AC60536F3706E8A0154C0C2199E888B7748C84DB7437254FF175F4DF55 ] RpcLocator      C:\Windows\system32\locator.exe
12:36:57.0997 0x171c  RpcLocator - ok
12:36:58.0035 0x171c  [ B82CD39E336973359D7C9BF911E8E84F, 45DB8F1E88FC25A81D2F3C2F8A8CDB6B34C44950B038E24FB71DCDD9823DB22A ] RpcSs           C:\Windows\system32\rpcss.dll
12:36:58.0047 0x171c  RpcSs - ok
12:36:58.0086 0x171c  [ 032B0D36AD92B582D869879F5AF5B928, 0F8F18A6A0A689957B886D9368015889091094EDA18BE532093F06A70A7CE184 ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:36:58.0103 0x171c  rspndr - ok
12:36:58.0172 0x171c  [ 5423D8437051E89DD34749F242C98648, 28FD190E13676B0FD452A73C3069B72206E2938DB2240BAA9BDB56687C748A2B ] s3cap           C:\Windows\system32\DRIVERS\vms3cap.sys
12:36:58.0197 0x171c  s3cap - ok
12:36:58.0217 0x171c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] SamSs           C:\Windows\system32\lsass.exe
12:36:58.0220 0x171c  SamSs - ok
12:36:58.0264 0x171c  [ 34EE0C44B724E3E4CE2EFF29126DE5B5, D27AAF77CB8830893558A600E19CDBF9A6AA7D69DE4B34F317ED4AFD38E8CAFB ] sbp2port        C:\Windows\system32\DRIVERS\sbp2port.sys
12:36:58.0278 0x171c  sbp2port - ok
12:36:58.0378 0x171c  [ 8FC518FFE9519C2631D37515A68009C4, 21E10585470CF9FC3BD1977F8A426686CD2FA6BD2094B9E3594B21C7C4541D25 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:36:58.0411 0x171c  SCardSvr - ok
12:36:58.0454 0x171c  [ A95C54B2AC3CC9C73FCDF9E51A1D6B51, 8C0189A6AF9AEC46CBA4DA422C52B2D3E4858B2F2658DB6CA7996B5F368D2503 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:36:58.0461 0x171c  scfilter - ok
12:36:58.0765 0x171c  [ 3E8B0C453E25613A1F59762A5C42AA75, 86801C49664441A08F7E95031E52AD2518D61CCB945A857A18F0714351A8158C ] Schedule        C:\Windows\system32\schedsvc.dll
12:36:58.0818 0x171c  Schedule - ok
12:36:59.0023 0x171c  [ 628A9E30EC5E18DD5DE6BE4DBDC12198, DDA43DCCB195440D6BD5752BD00D984F45BD6D23DBE2A656C33E3CD1E5D17AD7 ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:36:59.0026 0x171c  SCPolicySvc - ok
12:36:59.0120 0x171c  [ 5FD90ABDBFAEE85986802622CBB03446, 0A8D9DC09C2ACA9EAABED04737E9EBF6EFB92BB2B9E5F37F10BFDF47CBF7DEDB ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:36:59.0166 0x171c  SDRSVC - ok
12:36:59.0330 0x171c  [ 90A3935D05B494A5A39D37E71F09A677, F72733A69BC6E1A2BB91D7632FF3463C12563F60FDCC00A2CDD67FF20D479952 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:36:59.0372 0x171c  secdrv - ok
12:36:59.0423 0x171c  [ A59B3A4442C52060CC7A85293AA3546F, 1776D6DEE51991149265AAF39E17065E301C5FA1FF4068653DC0010B9B27185D ] seclogon        C:\Windows\system32\seclogon.dll
12:36:59.0437 0x171c  seclogon - ok
12:36:59.0500 0x171c  [ DCB7FCDCC97F87360F75D77425B81737, F8289AF2C458C167038EEFE613EE5E3D6D5B3308B8784168374BC81C47891CE5 ] SENS            C:\Windows\System32\sens.dll
12:36:59.0544 0x171c  SENS - ok
12:36:59.0567 0x171c  [ 50087FE1EE447009C9CC2997B90DE53F, B5E6CF1D991F87C29C5E28198E0962E31FFB499A46C3BD43FC20391693389959 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:36:59.0613 0x171c  SensrSvc - ok
12:36:59.0634 0x171c  [ 9AD8B8B515E3DF6ACD4212EF465DE2D1, E2F019BCD1446236D078D46065DD151DD068778F33BE2F1E8A0CC1EA2F954E86 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
12:36:59.0709 0x171c  Serenum - ok
12:36:59.0821 0x171c  [ 5FB7FCEA0490D821F26F39CC5EA3D1E2, A26DB2EB9F3E2509B4EBA949DB97595CC32332D9321DF68283BFC102E66D766F ] Serial          C:\Windows\system32\DRIVERS\serial.sys
12:36:59.0835 0x171c  Serial - ok
12:36:59.0896 0x171c  [ 79BFFB520327FF916A582DFEA17AA813, 7A2A9D69BE02228591186A9F4453D4B5FD98837CA422C873C48040170E8BD18C ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
12:36:59.0922 0x171c  sermouse - ok
12:36:59.0971 0x171c  [ 8F55CE568C543D5ADF45C409D16718FC, 64D45854A91B656C1AF36EB272FDC54E9B5FB0200CB93E20F7D997DDA109EF7F ] SessionEnv      C:\Windows\system32\sessenv.dll
12:37:00.0014 0x171c  SessionEnv - ok
12:37:00.0087 0x171c  [ 9F976E1EB233DF46FCE808D9DEA3EB9C, 6A5C53F27F8BCA85CE206EE7D196176F67EC6FFA5D4830373A20792C149B5E75 ] sffdisk         C:\Windows\system32\DRIVERS\sffdisk.sys
12:37:00.0120 0x171c  sffdisk - ok
12:37:00.0127 0x171c  [ 932A68EE27833CFD57C1639D375F2731, 11D6B98FBEEE2B9C7B06EF7091857BBD3B349077997D6261D66280668FD1B5C3 ] sffp_mmc        C:\Windows\system32\DRIVERS\sffp_mmc.sys
12:37:00.0134 0x171c  sffp_mmc - ok
12:37:00.0154 0x171c  [ 4F1E5B0FE7C8050668DBFADE8999AEFB, E36DAACC3D11F004808A3F44C471BBFDC2F33411D9F5C18B55B0DB2A6DA6E74C ] sffp_sd         C:\Windows\system32\DRIVERS\sffp_sd.sys
12:37:00.0187 0x171c  sffp_sd - ok
12:37:00.0224 0x171c  [ DB96666CC8312EBC45032F30B007A547, C3AE60FC65A36E96E0D2CC6E184481D70F91A19DC3E2E17E2873DD670A592DD7 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
12:37:00.0249 0x171c  sfloppy - ok
12:37:00.0302 0x171c  [ D1A079A0DE2EA524513B6930C24527A2, E2BC16DBCF38841EECD49C6FA1A9AC89C17F332F12606CA826F058E995E1B83D ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:37:00.0344 0x171c  SharedAccess - ok
12:37:00.0531 0x171c  [ CD2E48FA5B29EE2B3B5858056D246EF2, B743F92D0121CF3D827753C85F1F5A14C2DAA1CAFD42C7810C3BECB853DB6175 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:37:00.0648 0x171c  ShellHWDetection - ok
12:37:00.0699 0x171c  [ 2565CAC0DC9FE0371BDCE60832582B2E, 1A775214E86B83C2F1799F12D71077D81C89AD32734A248BA88787B7F104B79D ] sisagp          C:\Windows\system32\DRIVERS\sisagp.sys
12:37:00.0718 0x171c  sisagp - ok
12:37:00.0800 0x171c  [ A9F0486851BECB6DDA1D89D381E71055, 7E909538AB758C18AC2CCBFFEE17BA36FA6ED2E674AA70924AA87AC61375FF35 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:37:00.0830 0x171c  SiSRaid2 - ok
12:37:00.0894 0x171c  [ 3727097B55738E2F554972C3BE5BC1AA, 75D52A596A298C33EC79A3B0B80F25492C08A182ABC679401502DA9597687566 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
12:37:00.0901 0x171c  SiSRaid4 - ok
12:37:00.0954 0x171c  [ 3E21C083B8A01CB70BA1F09303010FCE, 803F8F91299C387110F34A49340E7136AAE91B418E2977A36285EA8F432FF197 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:37:00.0958 0x171c  Smb - ok
12:37:00.0987 0x171c  [ 6A984831644ECA1A33FFEAE4126F4F37, 753E23D2B33D47C52C05D892B052CFD96D93B97FB6E9FCB58EF1E4C4A125BF78 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:37:01.0007 0x171c  SNMPTRAP - ok
12:37:01.0037 0x171c  [ 95CF1AE7527FB70F7816563CBC09D942, CE8BACB91A5A86CBCE82619C6C1873B4D7593B00CED3B522E41B8F7F6258CC65 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:37:01.0040 0x171c  spldr - ok
12:37:01.0077 0x171c  [ 49B6DD6AB3715B7A67965F17194E98A9, 331D69F3630BA978AC13471A2E7465351D04416343A595C62B94BADFFCD02B3A ] Spooler         C:\Windows\System32\spoolsv.exe
12:37:01.0112 0x171c  Spooler - ok
12:37:01.0346 0x171c  [ 4C287F9069FEDBD791178876EE9DE536, 6099E76FF6FBA002EBA2BA7BE4E3238D91332E077524D1DD402E0C9ADA22E852 ] sppsvc          C:\Windows\system32\sppsvc.exe
12:37:01.0478 0x171c  sppsvc - ok
12:37:01.0572 0x171c  [ D8E3E19EEBDAB49DD4A8D3062EAD4EC7, E7A8A5774C62DC12B56DC3E0A385ACA9069F3A5E6AC664AD0C383EF44DCF81B3 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
12:37:01.0614 0x171c  sppuinotify - ok
12:37:01.0692 0x171c  [ 2BA4EBC7DFBA845A1EDBE1F75913BE33, 58D0B957469D55026A53C3963508C8B36BDB360A0A5B870332B79A39200DB3AC ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:37:01.0733 0x171c  srv - ok
12:37:01.0785 0x171c  [ DCE7E10FEAABD4CAE95948B3DE5340BB, B1E9CD14DC24BB161EFC83D83CE95D0A98008AD790041785C6C8B87564A491D7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:37:01.0833 0x171c  srv2 - ok
12:37:01.0859 0x171c  [ B5665BAA2120B8A54E22E9CD07C05106, 86E50853D412ACDC752AD182ED52B49DD679D75843E1E9D6A6425E750594692C ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:37:01.0871 0x171c  srvnet - ok
12:37:01.0911 0x171c  [ D887C9FD02AC9FA880F6E5027A43E118, F38BAD90EC791368C37C21090302708D2DFB83ECE9096609AD9AA667B2E5592E ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:37:01.0961 0x171c  SSDPSRV - ok
12:37:02.0010 0x171c  [ D318F23BE45D5E3A107469EB64815B50, D74355E6FF215AA8CE53BC9DF16AF2740F2FC2FD754939478A3608BDA8C6DDA0 ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:37:02.0027 0x171c  SstpSvc - ok
12:37:02.0155 0x171c  [ CDA9313E34887A111B8309B55BCDCD82, AC070AA093B7013E4D1B29F4FAF9B469C3C261E4D3D1512B4F77CC609CBD1484 ] Stereo Service  C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
12:37:02.0181 0x171c  Stereo Service - ok
12:37:02.0216 0x171c  [ DB32D325C192B801DF274BFD12A7E72B, F089DBA719E22BC269720A6B840B873A4AF5639745DB0C3DBC8BD2F2839A1ABA ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
12:37:02.0238 0x171c  stexstor - ok
12:37:02.0315 0x171c  [ A22825E7BB7018E8AF3E229A5AF17221, 5C97557F8BC6ABBB5BE624AE41AAC22C3D845F76C3E930337A4C07B2381086D7 ] StiSvc          C:\Windows\System32\wiaservc.dll
12:37:02.0359 0x171c  StiSvc - ok
12:37:02.0381 0x171c  [ 957E346CA948668F2496A6CCF6FF82CC, 5C0E0F0E0F2D36E3213885C60BC3B075AFD2257FEB4B8186FC1FE253E0C218AF ] storflt         C:\Windows\system32\DRIVERS\vmstorfl.sys
12:37:02.0392 0x171c  storflt - ok
12:37:02.0410 0x171c  [ 0BF669F0A910BEDA4A32258D363AF2A5, 83EEBACDE4F69A2866B69CAA633F5C8B3CB01D88CEDB01B6EA5988E0A25CEE47 ] StorSvc         C:\Windows\system32\storsvc.dll
12:37:02.0427 0x171c  StorSvc - ok
12:37:02.0444 0x171c  [ D5751969DC3E4B88BF482AC8EC9FE019, DAEB50C0045364C75965B0E94744C6E2E1E85C8D00F1E8A5593F3EC780BDD7D9 ] storvsc         C:\Windows\system32\DRIVERS\storvsc.sys
12:37:02.0453 0x171c  storvsc - ok
12:37:02.0553 0x171c  [ E58C78A848ADD9610A4DB6D214AF5224, 1575A90EB22A4FB066459BDA00C6CAC10198C3C8C74493721EC6D34B51F50426 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
12:37:02.0745 0x171c  swenum - ok
12:37:02.0788 0x171c  [ A28BD92DF340E57B024BA433165D34D7, 889CC7FF143C3549982128473FF927CD80CF36485A347EF399C1271C8CE12CE4 ] swprv           C:\Windows\System32\swprv.dll
12:37:02.0846 0x171c  swprv - ok
12:37:03.0243 0x171c  [ 04105C8DA62353589C29BDAEB8D88BD8, CC7A3A779A143E09FE5C0AA6795A7B13496C4E121347949CB23F7946EE5E2DED ] SysMain         C:\Windows\system32\sysmain.dll
12:37:03.0318 0x171c  SysMain - ok
12:37:03.0388 0x171c  [ FCFB6C552FBC0DA299799CBD50AD9FD4, A2A90829087B1A7F9B57D6F184EB4AE38D10B2986B0DC8D2ACA5EE9412CA3976 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:37:03.0462 0x171c  TabletInputService - ok
12:37:03.0611 0x171c  [ 2F46B0C70A4ADC8C90CF825DA3B4FEAF, FF66CBA014F3F8B721088F5AB3D004C1711E7F587CC8D4AC3DCFB45CDB746800 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:37:03.0648 0x171c  TapiSrv - ok
12:37:03.0717 0x171c  [ B799D9FDB26111737F58288D8DC172D9, 409A60819A4305699E2E492A6190637FAAEBD19E745A5DB2A5D6977106C86591 ] TBS             C:\Windows\System32\tbssvc.dll
12:37:03.0777 0x171c  TBS - ok
12:37:04.0081 0x171c  [ 2CC3D75488ABD3EC628BBB9A4FC84EFC, 62917CDBC6529D1CC3D7F6E211C717DC44033955749333DCBD052F9BF6639767 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:37:04.0150 0x171c  Tcpip - ok
12:37:04.0525 0x171c  [ 2CC3D75488ABD3EC628BBB9A4FC84EFC, 62917CDBC6529D1CC3D7F6E211C717DC44033955749333DCBD052F9BF6639767 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:37:04.0570 0x171c  TCPIP6 - ok
12:37:04.0745 0x171c  [ E64444523ADD154F86567C469BC0B17F, FBE8A1DC28C102068183754F6BF0D03F5D18FD24BEB7E4B57D1CFCEBB13B381F ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:37:04.0810 0x171c  tcpipreg - ok
12:37:04.0873 0x171c  [ 1875C1490D99E70E449E3AFAE9FCBADF, FFDF03826DAB748D51B53B648B632E79B3CD6238F684FDEA749B4D0F93BE5A77 ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:37:04.0894 0x171c  TDPIPE - ok
12:37:04.0908 0x171c  [ 7551E91EA999EE9A8E9C331D5A9C31F3, C98C97DFD6C7276CD999545A7BC67B56E1BDDFB2886412E9198012322F95A10D ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:37:04.0914 0x171c  TDTCP - ok
12:37:04.0921 0x171c  [ CB39E896A2A83702D1737BFD402B3542, FA77D98EA3606CA2FCEF0E0949FDE2C32A080B47CAFDE46CE903CA3CBFC5DF35 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:37:04.0926 0x171c  tdx - ok
12:37:05.0001 0x171c  [ C36F41EE20E6999DBF4B0425963268A5, 9DB789A17DF2C283D6E803EEA15F2BDFC56EE3BE342A5606DD5C179C3550ECA6 ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
12:37:05.0018 0x171c  TermDD - ok
12:37:05.0109 0x171c  [ A01E50A04D7B1960B33E92B9080E6A94, 0512BF11F2FD62BDBD2B1AA34D509BE82AC374C37B925C8C0ED119C6331930FD ] TermService     C:\Windows\System32\termsrv.dll
12:37:05.0152 0x171c  TermService - ok
12:37:05.0202 0x171c  [ 42FB6AFD6B79D9FE07381609172E7CA4, B57C85091209A2FAD19ED490B8FA7FC98F12911F9C9CACE9AF1E540780CE6700 ] Themes          C:\Windows\system32\themeservice.dll
12:37:05.0218 0x171c  Themes - ok
12:37:05.0233 0x171c  [ 146B6F43A673379A3C670E86D89BE5EA, C4412DCF80DE6B55466F399413271364F14BC0819C224AA161EDDC31A9775440 ] THREADORDER     C:\Windows\system32\mmcss.dll
12:37:05.0237 0x171c  THREADORDER - ok
12:37:05.0299 0x171c  [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A, 532A3A812578B2DFD83001DE66FC73689D79EC729409EB572E07E6D65B281712 ] TrkWks          C:\Windows\System32\trkwks.dll
12:37:05.0317 0x171c  TrkWks - ok
12:37:05.0451 0x171c  [ 41A4C781D2286208D397D72099304133, 447CAAD5589AA499EEE49FBA2CB53210359DB76AFF1DF2F0BD4D92A397037C1D ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:37:05.0527 0x171c  TrustedInstaller - ok
12:37:05.0568 0x171c  [ 98AE6FA07D12CB4EC5CF4A9BFA5F4242, 9606DACB8CBDAF520282BE8C8F064535767405F138D9E9A215D2C59183E93CC1 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:37:05.0603 0x171c  tssecsrv - ok
12:37:05.0645 0x171c  [ 3E461D890A97F9D4C168F5FDA36E1D00, 82A8778F404F7AC5102802CF46F279F1E58AC74244665D06FD0C68A8BD887536 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:37:05.0676 0x171c  tunnel - ok
12:37:05.0816 0x171c  [ 750FBCB269F4D7DD2E420C56B795DB6D, E1A95C59148FE463539C34336FD0E74B31A33B8AB2B8E34AA10349C3347471D7 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
12:37:05.0896 0x171c  uagp35 - ok
12:37:05.0924 0x171c  [ 09CC3E16F8E5EE7168E01CF8FCBE061A, 81EEAC72A7C4D72666C743DEFF8096FDB465AA1FA8076C60D19CC192846F01CA ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:37:05.0989 0x171c  udfs - ok
12:37:06.0017 0x171c  [ 8344FD4FCE927880AA1AA7681D4927E5, 1B54EFA60A221E2B9FFE59BB41C7E7D8B5AC6826F1C5577456D81371D464255A ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:37:06.0024 0x171c  UI0Detect - ok
12:37:06.0155 0x171c  [ 44E8048ACE47BEFBFDC2E9BE4CBC8880, 5D96D90FDF68AE470CC92CA9DF9DA2C05A53EF455A5A109DBBF7C96F3238257C ] uliagpkx        C:\Windows\system32\DRIVERS\uliagpkx.sys
12:37:06.0181 0x171c  uliagpkx - ok
12:37:06.0347 0x171c  [ 049B3A50B3D646BAEEEE9EEC9B0668DC, 5774438BBD0976424C20559E14BA2AC158D9FF5D4E1FDC1C9C9F4D7A5CE8C377 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:37:06.0417 0x171c  umbus - ok
12:37:06.0440 0x171c  [ 7550AD0C6998BA1CB4843E920EE0FEAC, 24C001E422C3B3B920CDCF6003A3179CE464DE4284775403DD5122EF9780460D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
12:37:06.0482 0x171c  UmPass - ok
12:37:06.0705 0x171c  [ 8ECACA5454844F66386F7BE4AE0D7CD1, F3B02A9F598C6A9EFA019F5833959DD1A86FDFDB9FDDF99A8687BBB6211AAD00 ] UmRdpService    C:\Windows\System32\umrdp.dll
12:37:06.0930 0x171c  UmRdpService - ok
12:37:07.0242 0x171c  [ 833FBB672460EFCE8011D262175FAD33, C0C3067A305993CBF056C229771CB0593DD60C9C7AC5130FF1CA610BCA812AB5 ] upnphost        C:\Windows\System32\upnphost.dll
12:37:07.0284 0x171c  upnphost - ok
12:37:07.0343 0x171c  [ 8455C4ED038EFD09E99327F9D2D48FFA, D166F98EA3D85F7DD6B5258949C186714A17EF89B6FDC9804165F7B4FA811C30 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:37:07.0375 0x171c  usbccgp - ok
12:37:07.0412 0x171c  [ 04EC7CEC62EC3B6D9354EEE93327FC82, 6CB41D8644618A5F701F6CA91FB65BB94AA83EA48992133B5262DC539B334B2E ] usbcir          C:\Windows\system32\DRIVERS\usbcir.sys
12:37:07.0480 0x171c  usbcir - ok
12:37:07.0512 0x171c  [ 1C333BFD60F2FED2C7AD5DAF533CB742, 97AE9CA39482B886FCD063E80B8AB153E1FC1459452657393D8B1745EF69E1C3 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
12:37:07.0529 0x171c  usbehci - ok
12:37:07.0619 0x171c  [ EE6EF93CCFA94FAE8C6AB298273D8AE2, CBEE16CEAD02E994F0C2AD77DD8C01CB9964C6B42DE49FF7A787849CD25767B4 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
12:37:07.0667 0x171c  usbhub - ok
12:37:07.0728 0x171c  [ A6FB7957EA7AFB1165991E54CE934B74, 1CE83D9E3276AE380F720C7700A17D58A37A2A77FD72DA69EE0C756B88DB3689 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
12:37:07.0806 0x171c  usbohci - ok
12:37:07.0844 0x171c  [ 797D862FE0875E75C7CC4C1AD7B30252, 1BBE745E4C85F8911076F6032ACD7A35FAC048D3CB1500C64E08D8B2C70A1069 ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:37:07.0888 0x171c  usbprint - ok
12:37:07.0912 0x171c  [ D8889D56E0D27E57ED4591837FE71D27, DB1B65EEBFB036086EC3347C1181D9D01FF65870EAEC4A1BA08AF43C35075647 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:37:07.0958 0x171c  USBSTOR - ok
12:37:07.0972 0x171c  [ 78780C3EBCE17405B1CCD07A3A8A7D72, FBFF3111E22EE0B4BCAFA81F89AAE985135BFF48EEFD130C09B49CCF8A9946B9 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
12:37:07.0990 0x171c  usbuhci - ok
12:37:08.0041 0x171c  [ D82F43D15FDAA666856C0190CB73E7C9, A998F5F0535ADCFE0E6F37E4B222262F59D4E43CB596D62E785EF8E0D7E296F6 ] usb_rndisx      C:\Windows\system32\DRIVERS\usb8023x.sys
12:37:08.0083 0x171c  usb_rndisx - ok
12:37:08.0124 0x171c  [ 081E6E1C91AEC36758902A9F727CD23C, 9FDAA17A3B99067E035E5D76305427F15FFDBC5D304B2BB78AFC6463EDDE1A75 ] UxSms           C:\Windows\System32\uxsms.dll
12:37:08.0140 0x171c  UxSms - ok
12:37:08.0171 0x171c  [ F42309C4191C506B71DB5D1126D26318, 29B0A8889857CEBFA6CBD795D5EECDDFFA04E794BD3C73FC488725B2A160F326 ] VaultSvc        C:\Windows\system32\lsass.exe
12:37:08.0175 0x171c  VaultSvc - ok
12:37:08.0224 0x171c  [ A059C4C3EDB09E07D21A8E5C0AABD3CB, BDD3729B49DF2E2FC72FFEF9D10235B481A671DE5A721B6B9A80873B7A343F07 ] vdrvroot        C:\Windows\system32\DRIVERS\vdrvroot.sys
12:37:08.0232 0x171c  vdrvroot - ok
12:37:08.0426 0x171c  [ 8C4E7C49D3641BC9E299E466A7F8867D, 4F2E742EFE2DE47EE187B3BCDFDCB525FE484B74700A226D7894F9633F957AFA ] vds             C:\Windows\System32\vds.exe
12:37:08.0462 0x171c  vds - ok
12:37:08.0482 0x171c  [ 17C408214EA61696CEC9C66E388B14F3, 829C0416672E2B2DFABCFE641E7F281F41E8DBB3C0EF11C7784CB9BB94F87E97 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:37:08.0487 0x171c  vga - ok
12:37:08.0507 0x171c  [ 8E38096AD5C8570A6F1570A61E251561, 4DBA3C1397A2203548F45F006E66D99F837903F601ABBCE2304754F783CA8A39 ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:37:08.0523 0x171c  VgaSave - ok
12:37:08.0558 0x171c  [ 3BE6E1F3A4F1AFEC8CEE0D7883F93583, 33DF8F7C9A3176175113CA10D69FAF17A5412C055943F14DDC9923531FADB82D ] vhdmp           C:\Windows\system32\DRIVERS\vhdmp.sys
12:37:08.0577 0x171c  vhdmp - ok
12:37:08.0631 0x171c  [ C829317A37B4BEA8F39735D4B076E923, 55D1796AE750071E1E05BD7702B6C355CCFFE27B4C00E93E7044C3184732B497 ] viaagp          C:\Windows\system32\DRIVERS\viaagp.sys
12:37:08.0657 0x171c  viaagp - ok
12:37:08.0664 0x171c  [ E02F079A6AA107F06B16549C6E5C7B74, B530DCE3EE4F285B3D5F69F7148D17E016D54F04E6F93706B829A34567748788 ] ViaC7           C:\Windows\system32\DRIVERS\viac7.sys
12:37:08.0712 0x171c  ViaC7 - ok
12:37:08.0732 0x171c  [ E43574F6A56A0EE11809B48C09E4FD3C, 3687BF638E21C00E62ABFED70D728B91ADA08F7164CA898E654F31DA196589E9 ] viaide          C:\Windows\system32\DRIVERS\viaide.sys
12:37:08.0740 0x171c  viaide - ok
12:37:09.0324 0x171c  [ AAEBFBB125E2B1D4C1A6352F707DEFF7, 0ABADD245EFDB8C12C10C275A53661F31E4DB046CC1C7B825015EFB7E5E25850 ] VmbService      C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
12:37:09.0332 0x171c  VmbService - ok
12:37:09.0362 0x171c  [ 379B349F65F453D2A6E75EA6B7448E49, F52B1B3AE9F5D38B45C889A7B1EBE59533C17E73678D355D1466B5EF3338BF16 ] vmbus           C:\Windows\system32\DRIVERS\vmbus.sys
12:37:09.0396 0x171c  vmbus - ok
12:37:09.0402 0x171c  [ EC2BBAB4B84D0738C6C83D2234DC36FE, 8BA2FA187DAC6994D5A29897AE5F46E6424FB53C827553E0BB148E31825D6676 ] VMBusHID        C:\Windows\system32\DRIVERS\VMBusHID.sys
12:37:09.0409 0x171c  VMBusHID - ok
12:37:09.0431 0x171c  [ 384E5A2AA49934295171E499F86BA6F3, C79271F98506392422325C075144F45436F9979FE1E002B57F9426F3DA96CEF0 ] volmgr          C:\Windows\system32\DRIVERS\volmgr.sys
12:37:09.0434 0x171c  volmgr - ok
12:37:09.0450 0x171c  [ B5BB72067DDDDBBFB04B2F89FF8C3C87, 65B9AD55F43940A5FDD88B6EC5034A7E375DF8E6F5F1AE6519A4BD6B7E992EBC ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:37:09.0465 0x171c  volmgrx - ok
12:37:09.0490 0x171c  [ 58DF9D2481A56EDDE167E51B334D44FD, C77D7BE83CF1C0DEC80429C5A519E794FD2E8C1E6DAD6F5C92B5EB5694CEB8EA ] volsnap         C:\Windows\system32\DRIVERS\volsnap.sys
12:37:09.0942 0x171c  volsnap - ok
12:37:10.0177 0x171c  [ 9DFA0CC2F8855A04816729651175B631, 37FD9E43A2A3F125E94A315FB4CD8A1B5499A5FD74806EB2D1E5DA88C070D3A3 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
12:37:10.0201 0x171c  vsmraid - ok
12:37:10.0631 0x171c  [ 7EA2BCD94D9CFAF4C556F5CC94532A6C, 7CD6637BE0A08E3B0F9991D79751DCA8AEC9224B83301821DAA29C9F42B7A9E3 ] VSS             C:\Windows\system32\vssvc.exe
12:37:10.0707 0x171c  VSS - ok
12:37:10.0740 0x171c  [ 90567B1E658001E79D7C8BBD3DDE5AA6, EFC23BEEA7F54A2DC56CB523DAD1AF0358D904C5278BF08873910E2DB3F13557 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
12:37:10.0755 0x171c  vwifibus - ok
12:37:10.0840 0x171c  [ 55187FD710E27D5095D10A472C8BAF1C, AE298E2D3BA366BCBDC092C717214C181E8843FA564A6DFB07FC3238A5A68DC3 ] W32Time         C:\Windows\system32\w32time.dll
12:37:10.0875 0x171c  W32Time - ok
12:37:10.0924 0x171c  [ DE3721E89C653AA281428C8A69745D90, 501C78056ED4295625D8A5412025FD2F0CA24077044D3A5800BA79DF3D946516 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
12:37:10.0927 0x171c  WacomPen - ok
12:37:10.0959 0x171c  [ 692A712062146E96D28BA0B7D75DE31B, B6D260272330E0C8EBFAD8F09212F48F1EFED42E6BD3F29A5780D0B691D55B34 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:37:10.0968 0x171c  WANARP - ok
12:37:10.0976 0x171c  [ 692A712062146E96D28BA0B7D75DE31B, B6D260272330E0C8EBFAD8F09212F48F1EFED42E6BD3F29A5780D0B691D55B34 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:37:10.0978 0x171c  Wanarpv6 - ok
12:37:11.0162 0x171c  [ 7790B77FE1E5EE47DCC66247095BB4C9, FFB541F83CDE32E65007D41217C2F46CDDF68121E2846B638EAB620ACA940B05 ] wbengine        C:\Windows\system32\wbengine.exe
12:37:11.0231 0x171c  wbengine - ok
12:37:11.0289 0x171c  [ 9614B5D29DC76AC3C29F6D2D3AA70E67, A2FFB92F0030B4CD771E862DA575ECCF2F3A5B4B85858C1241A0C59262C0EC88 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:37:11.0304 0x171c  WbioSrvc - ok
12:37:11.0424 0x171c  [ D0F88AA11EE1A62BCC6D6A8A7783CA11, 3DBC1806E6F8CD58A9E93EA2A0CDC83C1A90E37B5E385209E4D9A0C81922F447 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:37:11.0453 0x171c  wcncsvc - ok
12:37:11.0484 0x171c  [ 5D930B6357A6D2AF4D7653BDABBF352F, 677FF2ED14EE0B0CAA710DA81556CC16D5971DAB10E7C7432D167A87CA6F0EAA ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:37:11.0510 0x171c  WcsPlugInService - ok
12:37:11.0535 0x171c  [ 1112A9BADACB47B7C0BB0392E3158DFF, 1AE2AFA125973571F91E6945FE8A735F63D76EBB250A0075D98C580167FD9ED4 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
12:37:11.0555 0x171c  Wd - ok
12:37:11.0789 0x171c  [ 9950E3D0F08141C7E89E64456AE7DC73, DE4B96812B305A63F5874BBF2DC40354FB45B3D96C1D33436E677099760BA448 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:37:11.0849 0x171c  Wdf01000 - ok
12:37:11.0935 0x171c  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:37:11.0977 0x171c  WdiServiceHost - ok
12:37:12.0028 0x171c  [ 46EF9DC96265FD0B423DB72E7C38C2A5, 43801A51FB0E45CFFC73DF6441B54A75FC2FEAF5E0424DFE7AB04FC26CF6CD16 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:37:12.0033 0x171c  WdiSystemHost - ok
12:37:12.0095 0x171c  [ D87C7D2C517F82A5AB7A73E203063D9E, 8861AB4ECEDAE801008BE0406FCB19418AA2864E89D0776B94E25773E6DB5E88 ] WebClient       C:\Windows\System32\webclnt.dll
12:37:12.0110 0x171c  WebClient - ok
12:37:12.0163 0x171c  [ 760F0AFE937A77CFF27153206534F275, A53940BA28854486FF18F16B98A3314B36322B0B6EFB54D08B921315BEB0ADD5 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:37:12.0188 0x171c  Wecsvc - ok
12:37:12.0237 0x171c  [ AC804569BB2364FB6017370258A4091B, 1856F354146A5946F3E7D0DD09726FC8A3502B0F0776FEADDF10669C81CC28E2 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:37:12.0251 0x171c  wercplsupport - ok
12:37:12.0304 0x171c  [ 08E420D873E4FD85241EE2421B02C4A4, E1E9436EB096FF7DE9A76DA6217035257EF9FC7565DDB9016DCA3859E7F1EF0F ] WerSvc          C:\Windows\System32\WerSvc.dll
12:37:12.0314 0x171c  WerSvc - ok
12:37:12.0391 0x171c  [ 8B9A943F3B53861F2BFAF6C186168F79, 88E2F79F32AFBA17CB8377A508B83A1EC2315E9F3A365F591C87FE4525AA6713 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
12:37:12.0393 0x171c  WfpLwf - ok
12:37:12.0399 0x171c  [ 5CF95B35E59E2A38023836FFF31BE64C, CEA21302B3E855EE592810D4E0DE10E47A47A393064C435463CD54598735CD8D ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:37:12.0416 0x171c  WIMMount - ok
12:37:12.0621 0x171c  [ 3FAE8F94296001C32EAB62CD7D82E0FD, 180FAECC426CF8F46700C855022E5865D528B1A20686F96D11080AB2FE2E0430 ] WinDefend       C:\Program Files\Windows Defender\mpsvc.dll
12:37:12.0657 0x171c  WinDefend - ok
12:37:12.0670 0x171c  WinHttpAutoProxySvc - ok
12:37:13.0018 0x171c  [ F62E510B6AD4C21EB9FE8668ED251826, FA3E5CAC3E67E49377320CFBE4646585E6B62168292768FEA81E4623F9166890 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:37:13.0263 0x171c  Winmgmt - ok
12:37:13.0690 0x171c  [ C4F5D3901D1B41D602DDC196E0B95B51, 20FF2A9DEE3ECBFB163DFA62A407E30ED49F609EF46936F286C2A08A24EA3E7C ] WinRM           C:\Windows\system32\WsmSvc.dll
12:37:13.0785 0x171c  WinRM - ok
12:37:14.0077 0x171c  [ 16935C98FF639D185086A3529B1F2067, E9C6B73A572A04FCE9B1B0E6815F941B10332D9A6D55B92927C2B1275F119091 ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:37:14.0143 0x171c  Wlansvc - ok
12:37:14.0209 0x171c  [ 0217679B8FCA58714C3BF2726D2CA84E, 4494984B922DCF24D37BCD0E6831CEBD07D1CA49235D04E821D17ED3DF84ED2A ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
12:37:14.0219 0x171c  WmiAcpi - ok
12:37:14.0270 0x171c  [ 6EB6B66517B048D87DC1856DDF1F4C3F, EBB534C4829477C70062ADBB5626236B02FE563A544C53FA255E79F3CA170FE8 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:37:14.0544 0x171c  wmiApSrv - ok
12:37:15.0112 0x171c  [ 77FBD400984CF72BA0FC4B3489D65F74, 9AA404F17177FEB43A9EA1A86061B452E7C4A93C873E61B68269047519CD433E ] WMPNetworkSvc   C:\Program Files\Windows Media Player\wmpnetwk.exe
12:37:15.0176 0x171c  WMPNetworkSvc - ok
12:37:15.0268 0x171c  [ A2F0EC770A92F2B3F9DE6D518E11409C, 6838F2148B11285E00DC449D51F8AD85AAE57694E89BA2C607B87AC1C650D845 ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:37:15.0302 0x171c  WPCSvc - ok
12:37:15.0340 0x171c  [ B7F658A2EBC07129538AD9AB35212637, 86774A760189E4B126C972A778F890C00C1C30EDD28044DD43B40644A8778B4D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:37:15.0357 0x171c  WPDBusEnum - ok
12:37:15.0426 0x171c  [ 6DB3276587B853BF886B69528FDB048C, 9972FF6DF0DF6F86D1E9BCEF4C29064748B217DA196B0633C30D3D580144951C ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:37:15.0445 0x171c  ws2ifsl - ok
12:37:15.0475 0x171c  [ 6F5D49EFE0E7164E03AE773A3FE25340, 15B6AFF7455538189A96F8863CC995A271E02C6FBDAC15B037D44DDA65E61339 ] wscsvc          C:\Windows\System32\wscsvc.dll
12:37:15.0503 0x171c  wscsvc - ok
12:37:15.0511 0x171c  WSearch - ok
12:37:16.0368 0x171c  [ FC3EC24FCE372C89423E015A2AC1A31E, 8D028182CF83667D3E4D148979972D208FA6D9B8540EE47A0A7831B770ECD257 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:37:16.0496 0x171c  wuauserv - ok
12:37:16.0583 0x171c  [ 6F9B6C0C93232CFF47D0F72D6DB1D21E, C685A458951820ED0F09E6197251CE6FC55AAB75D4FBEFF2992805309239A47A ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:37:16.0615 0x171c  WudfPf - ok
12:37:16.0747 0x171c  [ F91FF1E51FCA30B3C3981DB7D5924252, D7052B58F22638CA8B59C6FD7408D6D6DD1C33910912CACC05C133472CE0DDCE ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:37:16.0756 0x171c  WUDFRd - ok
12:37:16.0857 0x171c  [ DDEE3682FE97037C45F4D7AB467CB8B6, D5A8F07AF4EDD9D7E17FEC6222D187E2981C177A479511E407756E0E5CB8D387 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:37:16.0878 0x171c  wudfsvc - ok
12:37:16.0986 0x171c  [ FF2D745B560F7C71B31F30F4D49F73D2, B2FBF7E5F58E34AC64FE6CF65800F1F07939279203BDE89375FAC92B884A4F37 ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:37:17.0010 0x171c  WwanSvc - ok
12:37:17.0098 0x171c  ================ Scan global ===============================
12:37:17.0142 0x171c  [ 9A595DF601070DA78C40481120DD2C06, 4C2D6216F212DE9346339ED29152962A39E4435E70F18DD655156727E70818F6 ] C:\Windows\system32\basesrv.dll
12:37:17.0331 0x171c  [ 827E4F75901CA3F990B1487D3301841E, A0B17C83D52DB95EDBA81C6ABD78E5E4E3BB65CB57F977B07172A96D4C2B743B ] C:\Windows\system32\winsrv.dll
12:37:17.0391 0x171c  [ 827E4F75901CA3F990B1487D3301841E, A0B17C83D52DB95EDBA81C6ABD78E5E4E3BB65CB57F977B07172A96D4C2B743B ] C:\Windows\system32\winsrv.dll
12:37:17.0498 0x171c  [ 364455805E64882844EE9ACB72522830, 906561DBBB33F744844CF27E456226044C85DF0FCFD26DE1FD11E09E2CFA6F8F ] C:\Windows\system32\sxssrv.dll
12:37:17.0661 0x171c  [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6, D7BC4ED605B32274B45328FD9914FB0E7B90D869A38F0E6F94FB1BF4E9E2B407 ] C:\Windows\system32\services.exe
12:37:17.0692 0x171c  [ Global ] - ok
12:37:17.0703 0x171c  ================ Scan MBR ==================================
12:37:17.0748 0x171c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:37:21.0177 0x171c  \Device\Harddisk0\DR0 - ok
12:37:21.0178 0x171c  ================ Scan VBR ==================================
12:37:21.0192 0x171c  [ DDCD83E0CC53013D4D75878D0A2F0793 ] \Device\Harddisk0\DR0\Partition1
12:37:21.0195 0x171c  \Device\Harddisk0\DR0\Partition1 - ok
12:37:21.0207 0x171c  [ BE7E476B710FE21D044678AA75F5EBC4 ] \Device\Harddisk0\DR0\Partition2
12:37:21.0209 0x171c  \Device\Harddisk0\DR0\Partition2 - ok
12:37:21.0210 0x171c  ================ Scan generic autorun ======================
12:37:21.0320 0x171c  [ 395CB6E8C67BFB1063AD86987909C184, 15F3BA6DF6D0C5C8FB9FF0AB661A5A652F26BAB7A0FB0DB47874069522400B16 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
12:37:22.0126 0x171c  SunJavaUpdateSched - ok
12:37:22.0569 0x171c  [ 02EB2E4B04C485A1AE2A728245306E8C, 1C3D564E13601A1EC0B93652C00FE582D86BED902E83ED79677E0E9B4DFA40B4 ] C:\Program Files\ASUS\AI Suite\AiNap\AiNap.exe
12:37:22.0659 0x171c  Ai Nap - ok
12:37:22.0866 0x171c  [ 6EBF0C03E5F0D65F283128218AEEBFDB, 01B02CB336F8F13FBC40046F9B9A05D21026A63B6282115FB355E87DAF2F3504 ] C:\Program Files\ASUS\AI Suite\QFan3\QFanHelp.exe
12:37:23.0669 0x171c  QFan Help - ok
12:37:23.0950 0x171c  [ F8AD38B9C87E7303C587E1983A069C08, 61E44B70AA3F90DA016567DF66CE159511530E1B552389BEA324DBB106FF076F ] C:\Program Files\ASUS\AI Suite\AiGear3\CpuPowerMonitor.exe
12:37:24.0012 0x171c  CPU Power Monitor - ok
12:37:24.0331 0x171c  [ D1E067AB6A1D1F3EAAA9FED1058E898D, B98442F92E32EA2A3FE802CACC35F5EAE0BFE0FE5ED791F8F721186826270136 ] C:\Program Files\ASUS\AI Suite\CPU Level UPEx\CpuLevelUp.exe
12:37:24.0999 0x171c  Cpu Level Up - ok
12:37:25.0125 0x171c  [ EE73B56ED71EB6383F25FA5468923BB2, 0A13F25C55D97A3F86766BED449265514147D41ABB392C9451B9FB070EC7E8E4 ] C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
12:37:25.0221 0x171c  NvBackend - ok
12:37:25.0256 0x171c  [ 51138BEEA3E2C21EC44D0932C71762A8, 5AD3C37E6F2B9DB3EE8B5AEEDC474645DE90C66E3D95F8620C48102F1EBA4124 ] C:\Windows\system32\rundll32.exe
12:37:25.0264 0x171c  ShadowPlay - ok
12:37:25.0296 0x171c  [ 06A9971B6F5701B95624532C65193D87, 731AD2C67CD91CC1FA8CB90FB672A8EB4083D7C1685F42BC1D76F3CF21356B14 ] C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe
12:37:25.0361 0x171c  MobileBroadband - ok
12:37:26.0065 0x171c  [ E10C1403D635EEABCA1DB5B82B98EB87, 806854D712212657F6BA84242FBCDBB84DF98CCD2B1216C9B21E4B4A5A128F1B ] C:\Program Files\Vodafone\Vodafone Mobile Broadband\Bin\VmbNotifier.exe
12:37:26.0165 0x171c  VmbNotifier - ok
12:37:26.0270 0x171c  [ 9A5A07D2545390A76435F8E3A11B9B42, 2C6109D15AAED1991A9B4835D5E1337F7D154D2F6EA5C1CFF19C8B01A46971D9 ] c:\Program Files\Microsoft Security Client\msseces.exe
12:37:26.0336 0x171c  MSC - ok
12:37:26.0549 0x171c  [ EA6EADF6314E43783BA8EEE79F93F73C, 1A4BC2D8DFBDC37AF85C73DEE76A6EE901EBA188D43856BD2FFA96B79A126F73 ] C:\Program Files\Windows Sidebar\Sidebar.exe
12:37:27.0147 0x171c  Sidebar - ok
12:37:27.0215 0x171c  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
12:37:27.0228 0x171c  mctadmin - ok
12:37:27.0567 0x171c  [ EA6EADF6314E43783BA8EEE79F93F73C, 1A4BC2D8DFBDC37AF85C73DEE76A6EE901EBA188D43856BD2FFA96B79A126F73 ] C:\Program Files\Windows Sidebar\Sidebar.exe
12:37:27.0595 0x171c  Sidebar - ok
12:37:27.0639 0x171c  [ BBA1A5B86134F496B926DDAF247DB871, 636990AE49C55189B7EF69C419787440B57EC0BAD98A9C280E1028F741BB222E ] C:\Windows\System32\mctadmin.exe
12:37:27.0643 0x171c  mctadmin - ok
12:37:27.0647 0x171c  Waiting for KSN requests completion. In queue: 14
12:37:28.0647 0x171c  Waiting for KSN requests completion. In queue: 14
12:37:29.0647 0x171c  Waiting for KSN requests completion. In queue: 14
12:37:30.0647 0x171c  Waiting for KSN requests completion. In queue: 14
12:37:31.0687 0x171c  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.10.209.0 ), 0x61000 ( enabled : updated )
12:37:31.0790 0x171c  Win FW state via NFP2: enabled ( trusted )
12:37:34.0782 0x171c  ============================================================
12:37:34.0782 0x171c  Scan finished
12:37:34.0782 0x171c  ============================================================
12:37:34.0802 0x0e78  Detected object count: 0
12:37:34.0802 0x0e78  Actual detected object count: 0
12:37:47.0354 0x1478  Deinitialize success



#3 WayneHaven

WayneHaven
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  

Posted 08 March 2017 - 05:48 AM

# AdwCleaner v6.044 - Logfile created 08/03/2017 at 12:47:32
# Updated on 28/02/2017 by Malwarebytes
# Database : 2017-03-07.1 [Local]
# Operating System : Windows 7 Professional  (X86)
# Username : Wayne - WAYNE-PC
# Running from : C:\Users\Wayne\Downloads\AdwCleaner(2).exe
# Mode: Scan
# Support : https://www.malwarebytes.com/support



***** [ Services ] *****

No malicious services found.


***** [ Folders ] *****

No malicious folders found.


***** [ Files ] *****

No malicious files found.


***** [ DLL ] *****

No malicious DLLs found.


***** [ WMI ] *****

No malicious keys found.


***** [ Shortcuts ] *****

No infected shortcut found.


***** [ Scheduled Tasks ] *****

No malicious task found.


***** [ Registry ] *****

No malicious registry entries found.


***** [ Web browsers ] *****

No malicious Firefox based browser items found.
No malicious Chromium based browser items found.

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [2285 Bytes] - [07/03/2017 18:54:54]
C:\AdwCleaner\AdwCleaner[C2].txt - [3303 Bytes] - [07/03/2017 19:40:30]
C:\AdwCleaner\AdwCleaner[C3].txt - [1375 Bytes] - [07/03/2017 22:40:32]
C:\AdwCleaner\AdwCleaner[C4].txt - [1595 Bytes] - [08/03/2017 00:32:57]
C:\AdwCleaner\AdwCleaner[C5].txt - [1814 Bytes] - [08/03/2017 01:22:23]
C:\AdwCleaner\AdwCleaner[C6].txt - [5833 Bytes] - [08/03/2017 06:22:33]
C:\AdwCleaner\AdwCleaner[S0].txt - [1144 Bytes] - [06/03/2017 21:14:00]
C:\AdwCleaner\AdwCleaner[S10].txt - [2317 Bytes] - [08/03/2017 09:36:51]
C:\AdwCleaner\AdwCleaner[S11].txt - [2391 Bytes] - [08/03/2017 11:25:41]
C:\AdwCleaner\AdwCleaner[S12].txt - [1654 Bytes] - [08/03/2017 12:47:32]
C:\AdwCleaner\AdwCleaner[S1].txt - [2212 Bytes] - [07/03/2017 18:54:31]
C:\AdwCleaner\AdwCleaner[S2].txt - [3097 Bytes] - [07/03/2017 19:39:20]
C:\AdwCleaner\AdwCleaner[S3].txt - [1508 Bytes] - [07/03/2017 22:39:58]
C:\AdwCleaner\AdwCleaner[S4].txt - [1654 Bytes] - [08/03/2017 00:07:57]
C:\AdwCleaner\AdwCleaner[S5].txt - [1727 Bytes] - [08/03/2017 00:30:29]
C:\AdwCleaner\AdwCleaner[S6].txt - [1877 Bytes] - [08/03/2017 00:46:31]
C:\AdwCleaner\AdwCleaner[S7].txt - [1946 Bytes] - [08/03/2017 01:13:23]
C:\AdwCleaner\AdwCleaner[S8].txt - [6397 Bytes] - [08/03/2017 06:19:37]
C:\AdwCleaner\AdwCleaner[S9].txt - [2242 Bytes] - [08/03/2017 07:01:04]

########## EOF - C:\AdwCleaner\AdwCleaner[S12].txt - [2385 Bytes] ##########



#4 WayneHaven

WayneHaven
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  

Posted 08 March 2017 - 06:22 AM

Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.1 (02.11.2017)
Operating System: Windows 7 Professional x86
Ran by Wayne (Administrator) on 2017/03/08 at 13:13:09.48
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 8

Successfully deleted: C:\Users\Wayne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0HCQN40Q (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Wayne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4D2H051B (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Wayne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BAE6VR3J (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Wayne\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UAL9E9C2 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0HCQN40Q (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4D2H051B (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\BAE6VR3J (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\UAL9E9C2 (Temporary Internet Files Folder)



Registry: 0





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 2017/03/08 at 13:14:45.42
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 



#5 hamluis

hamluis

    Moderator


  • Moderator
  • 55,559 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:11:52 PM

Posted 08 March 2017 - 06:31 AM

Please don't post any more unrequested data.  Topic moved from MRL to appropriate forum.

 

Louis



#6 WayneHaven

WayneHaven
  • Topic Starter

  • Members
  • 5 posts
  • OFFLINE
  •  

Posted 08 March 2017 - 07:55 AM

O.K. Louis

sorry I thought it would be helpful


Edited by WayneHaven, 08 March 2017 - 07:59 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users