Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Ok I think i need to run some threat scans...


  • Please log in to reply
19 replies to this topic

#1 AndyP5000

AndyP5000

  • Members
  • 123 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 13 May 2017 - 06:28 AM

In another post I have mentioned I have been getting lots of hits on my firewall this past few weeks.

 

To make sure I don't have anything lurking I need some help...

 

I have run Malware bytes- found nothing

Ran Avast full scan and Avast boot time scan: finds nothing

 

Next steps please... 


Edited by hamluis, 14 May 2017 - 05:11 PM.
Merged topics - Hamluis.


BC AdBot (Login to Remove)

 


#2 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,153 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:04:13 AM

Posted 13 May 2017 - 10:06 AM

Download Farbar MiniToolBox and save the file to your desktop.

  1. Open MiniToolBox by right-clicking it and selecting Run as Administrator.

  2. Make sure the following options are checked and then click Go:

Report IE Proxy Settings

Report FF Proxy Settings

List content of Hosts

List IP configuration

List Winsock Entries

List last 10 Event Viewer log

List Installed Programs

List Devices (Don't change any settings here)

List Users, Partitions and Memory size

List Restore Points

  1. Paste the log file contents into a post.

 

 

 

Download SecurityCheck by screen317.

 

  1. Click on the downloaded file and follow the instructions in the box on the screen.

  2. Paste the log file contents into a post.

  3. Important: If you get an error message, please restart your computer and try again.

 

 

 

 

Download Malwarebytes Anti-Malware from the provided link.

  1. Launch MBAM by clicking the .EXE file you downloaded.

  2. Run the installation wizard.

  3. Once complete, open MBAM and click Scan.

  4. Let the scan complete, then make sure all threats are selected and click Quarantine.

  5. Once done, go to History > Logs. Select the most recent Scan Log and paste its contents into a post.

 

 

 

Download ESET Online Scanner and save it to your desktop

 

  1. Double-click on the ESET Online Scanner icon to launch ESET.

  2. Click through the prompts and select “Enable detection of potentially unwanted applications.”

  3. Click “Scan” and let the tool run.

  4. Once done, click the “Save to text file...” Save the file to your desktop and paste the contents into a post.

 

Download Rkill from one of the below three links. (Use the one that runs on your PC without being blocked).

Link 1

Link 2

Link 3

 

  1. Double-click on the file you downloaded (either rkill.exe, iExplore.exe, or rkill.com) to launch Rkill.

  2. If a black box appears, the program is running correctly. If nothing happens, then try another link.

  3. Let the scan complete, then paste the contents of the text file that pops up at the end into a post.

  4. Important: Do not restart your computer once the scan is done!


Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#3 AndyP5000

AndyP5000
  • Topic Starter

  • Members
  • 123 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 14 May 2017 - 04:17 PM

Reporting my logs as requested... from this thread
https://www.bleepingcomputer.com/forums/t/646526/ok-i-think-i-need-to-run-some-threat-scans/
 
Had issues with my Chrome a while back- was not functioning correctly and have had lots of hits on my firewall past couple weeks also so this si to make sure i don't have any infections/ threats etc
 
Rkil
------
Rkill 2.8.4 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2017 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html
 
Program started at: 05/14/2017 10:07:09 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Defender Disabled
 
   [HKLM\SOFTWARE\Policies\Microsoft\Windows Defender]
   "DisableAntiSpyware" = dword:00000001
 
 * Windows Firewall Disabled
 
   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000
 
Checking Windows Service Integrity: 
 
 * Windows Defender (WinDefend) is not Running.
   Startup Type set to: Manual
 
 * TBS [Missing Service]
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * No issues found.
 
Program finished at: 05/14/2017 10:08:31 PM
Execution time: 0 hours(s), 1 minute(s), and 21 seconds(s)
 
MTB
------
MiniToolBox by Farbar  Version: 17-06-2016
Ran by Andy (administrator) on 14-05-2017 at 10:50:20
Running from "C:\Users\Andy\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Model: Aspire M3910 Manufacturer: Acer
Boot Mode: Normal
***************************************************************************
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
========================= Hosts content: =================================
========================= IP Configuration: ================================
 
Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
Realtek RTL8190 802.11n Wireless LAN (Mini-)PCI NIC = Wireless Network Connection (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Andy-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : lan
 
Wireless LAN adapter Wireless Network Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : lan
   Description . . . . . . . . . . . : Realtek RTL8190 802.11n Wireless LAN (Mini-)PCI NIC
   Physical Address. . . . . . . . . : 00-06-4F-96-A7-28
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : lan
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 10-78-D2-78-5A-35
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::1045:e424:1459:233f%11(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.64(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 13 May 2017 12:51:46
   Lease Expires . . . . . . . . . . : 15 May 2017 10:49:36
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 235960530
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-1B-44-8C-B8-10-78-D2-78-5A-35
   DNS Servers . . . . . . . . . . . : fe80::9e97:26ff:fe48:da4a%11
                                       192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.lan:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : lan
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:34e5:197e:a794:1ccb(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::34e5:197e:a794:1ccb%13(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
Server:  UnKnown
Address:  fe80::9e97:26ff:fe48:da4a
 
Name:    google.com
Addresses:  2a00:1450:4009:80d::200e
 216.58.204.46
 216.58.204.46
 216.58.204.46
 
 Pinging google.com [216.58.204.46] with 32 bytes of data:
Reply from 216.58.204.46: bytes=32 time=22ms TTL=55
Reply from 216.58.204.46: bytes=32 time=22ms TTL=55
 
Ping statistics for 216.58.204.46:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 22ms, Maximum = 22ms, Average = 22ms
Server:  UnKnown
Address:  fe80::9e97:26ff:fe48:da4a
 
Name:    yahoo.com
Addresses:  2001:4998:44:204::a7
 2001:4998:c:a06::2:4008
 2001:4998:58:c02::a9
 98.138.253.109
 206.190.36.45
 98.139.183.24
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=99ms TTL=52
Reply from 98.139.183.24: bytes=32 time=100ms TTL=52
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 99ms, Maximum = 100ms, Average = 99ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 14...00 06 4f 96 a7 28 ......Realtek RTL8190 802.11n Wireless LAN (Mini-)PCI NIC
 11...10 78 d2 78 5a 35 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 12...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.64     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.64    276
     192.168.1.64  255.255.255.255         On-link      192.168.1.64    276
    192.168.1.255  255.255.255.255         On-link      192.168.1.64    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.64    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.64    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:4137:9e76:34e5:197e:a794:1ccb/128
                                    On-link
 11    276 fe80::/64                On-link
 13    306 fe80::/64                On-link
 11    276 fe80::1045:e424:1459:233f/128
                                    On-link
 13    306 fe80::34e5:197e:a794:1ccb/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 11    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528] (Microsoft Corporation)
Catalog5 09 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304] (Microsoft Corporation)
x64-Catalog5 09 C:\Program Files\Bonjour\mdnsNSP.dll [133392] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (05/13/2017 12:25:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
 
Error: (05/13/2017 12:23:35 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (05/13/2017 12:12:05 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/11/2017 12:25:17 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
 
Error: (05/11/2017 12:23:56 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (05/11/2017 12:20:21 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005
 
Error: (05/11/2017 03:30:09 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/10/2017 05:54:49 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
 
Error: (05/10/2017 05:53:26 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" on line C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Component 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
 
Error: (05/10/2017 10:22:41 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 System errors:
=============
Error: (04/24/2017 04:04:15 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.
 
Error: (04/24/2017 04:04:15 PM) (Source: Schannel) (User: NT AUTHORITY)
Description: The following fatal alert was received: 40.
 
Error: (04/20/2017 11:14:07 PM) (Source: Ntfs) (User: )
Description: The file system structure on the disk is corrupt and unusable.
Please run the chkdsk utility on the volume \Device\HarddiskVolume2.
 
Error: (04/16/2017 06:09:26 PM) (Source: Service Control Manager) (User: )
Description: The Apple Mobile Device Service service failed to start due to the following error: 
%%1053 = The service did not respond to the start or control request in a timely fashion.
 
 
Error: (04/16/2017 06:09:26 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Apple Mobile Device Service service to connect.
 
Error: (04/14/2017 11:19:53 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Streamer Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (04/14/2017 11:19:50 AM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Display Driver Service service terminated unexpectedly.  It has done this 1 time(s).
 
Error: (04/13/2017 10:23:58 AM) (Source: Service Control Manager) (User: )
Description: The Superfetch service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
 
Error: (04/12/2017 03:41:10 AM) (Source: Service Control Manager) (User: )
Description: The Superfetch service terminated unexpectedly.  It has done this 1 time(s).  The following corrective action will be taken in 60000 milliseconds: Restart the service.
 
Error: (04/09/2017 10:44:10 PM) (Source: NetBT) (User: )
Description: Initialization failed because the transport refused to open initial addresses.
 
Microsoft Office Sessions:
=========================
Error: (05/13/2017 12:25:17 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestc:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe
 
Error: (05/13/2017 12:23:35 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestc:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe
 
Error: (05/13/2017 12:12:05 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/11/2017 12:25:17 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestc:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe
 
Error: (05/11/2017 12:23:56 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestc:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe
 
Error: (05/11/2017 12:20:21 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005
 
Error: (05/11/2017 03:30:09 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (05/10/2017 05:54:49 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestc:\program files (x86)\adobe\adobe creative cloud\utils\Creative Cloud Uninstaller.exe
 
Error: (05/10/2017 05:53:26 PM) (Source: SideBySide)(User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifestc:\program files (x86)\eset\eset online scanner\ESETSmartInstaller.exe
 
Error: (05/10/2017 10:22:41 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
=========================== Installed Programs ============================
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-1033-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 25.0.0.134 - Adobe Systems Incorporated)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.1.1 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.4.1.181 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 25.0.0.171 - Adobe Systems Incorporated)
Adobe Illustrator CC 2015 (HKLM-x32\...\ILST_19_2_0) (Version: 19.2.0 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Photoshop CS5.1 (HKLM-x32\...\{9158FF30-78D7-40EF-B83E-451AC5334640}) (Version: 12.1 - Adobe Systems Incorporated)
Akamai NetSession Interface (HKCU\...\Akamai) (Version:  - Akamai Technologies, Inc)
Apple Application Support (32-bit) (HKLM-x32\...\{FE5C2FAA-118D-4509-B51D-3F71CC9E1B3E}) (Version: 4.3 - Apple Inc.)
Apple Application Support (64-bit) (HKLM\...\{2937FD88-C9D6-4B82-B539-37CD0A572F42}) (Version: 4.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2E4AF2A6-50EA-4260-9BA4-5E582D11879A}) (Version: 9.3.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Autodesk Application Manager (HKLM-x32\...\Autodesk Application Manager) (Version: 4.0.69.0 - Autodesk)
Autodesk DirectConnect 2015 64-bit Hotfix1 (HKLM\...\Autodesk DirectConnect 2015 64-bit_9001) (Version: 9.0.56.4 - Autodesk)
Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 17.4.2294 - AVAST Software)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Dropbox (HKCU\...\Dropbox) (Version: 25.4.28 - Dropbox, Inc.)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
FileZilla Client 3.24.1 (HKLM-x32\...\FileZilla Client) (Version: 3.24.1 - Tim Kosse)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 58.0.3029.96 - Google Inc.)
Google Drive (HKLM-x32\...\{A1238426-ECDF-4639-BE2F-8D12A97AE23C}) (Version: 2.34.5075.1619 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GoToMeeting 8.5.0.6956 (HKCU\...\GoToMeeting) (Version: 8.5.0.6956 - CitrixOnline)
HP Deskjet 3050 J610 series Basic Device Software (HKLM\...\{650AF771-456D-418F-BFC7-F6FFC9D0235C}) (Version: 22.0.334.0 - Hewlett-Packard Co.)
HP Deskjet 3050 J610 series Help (HKLM-x32\...\{F7632A9B-661E-4FD9-B1A4-3B86BC99847F}) (Version: 140.0.63.63 - Hewlett Packard)
HP Deskjet 3050 J610 series Product Improvement Study (HKLM\...\{FEB2C4AA-661E-483F-9626-21A8ACFD10F2}) (Version: 22.0.334.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (HKLM-x32\...\{B6465A32-8BE9-4B38-ADC5-4B4BDDC10B0D}) (Version: 1.00.0001 - Microsoft) Hidden
Inkscape 0.91 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.91 - inkscape.org)
iTunes (HKLM\...\{A31C5565-90D9-4615-AE13-94D86C3836C7}) (Version: 12.3.3.17 - Apple Inc.)
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manga Studio (HKLM-x32\...\{CFA66508-B19D-4032-AB0A-EBBA2BDF1368}) (Version: 5.0.0 - Smith Micro)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 3.0.40818.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 53.0 (x86 en-GB) (HKLM-x32\...\Mozilla Firefox 53.0 (x86 en-GB)) (Version: 53.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 41.0.2.5765 - Mozilla)
NVIDIA 3D Vision Controller Driver 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Driver 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 341.44 - NVIDIA Corporation)
NVIDIA Display Control Panel (HKLM\...\NVIDIA Display Control Panel) (Version: 1.10 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Graphics Driver 341.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.44 - NVIDIA Corporation)
NVIDIA HD Audio Driver 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX System Software 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.16.2 - OBS Project)
OpenOffice 4.1.0 (HKLM-x32\...\{28B88897-774A-4005-BBFF-663B1F8EAA5A}) (Version: 4.10.9764 - Apache Software Foundation)
PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden
photoFXlab (HKLM-x32\...\photoFXlab) (Version: 1.2.8 - Topaz Labs)
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5983 - Realtek Semiconductor Corp.)
SafeZone Stable 3.55.2393.596 (HKLM-x32\...\SafeZone 3.55.2393.596) (Version: 3.55.2393.596 - Avast Software) Hidden
Sculptris Alpha 6 (HKLM-x32\...\Sculptris Alpha 6 Alpha 6) (Version: Alpha 6 - Pixologic)
SHIELD Streaming (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv) (Version: 3.1.100 - NVIDIA Corporation) Hidden
SketchUp 2014 (HKLM-x32\...\{F246092E-FA0B-47C8-9D3E-CF8C210293C8}) (Version: 14.1.1282 - Trimble Navigation Limited)
Skype™ 7.36 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.36.101 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Spotify (HKCU\...\Spotify) (Version: 1.0.53.758.gde3fc4b2 - Spotify AB)
SpriteIlluminator (HKLM-x32\...\{7B75E002-B64A-4162-937A-F117E7C9D5DD}) (Version: 1.2.0 - code-and-web.de)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
TexturePacker (HKLM\...\{16EF854E-5E03-4A72-88C8-9ADBEFFECEAD}) (Version: 3.9.1 - code-and-web.de)
Topaz Impression (HKLM\...\Topaz Impression) (Version: 1.1.0 - Topaz Labs, LLC)
Unity Web Player (HKCU\...\UnityWebPlayer) (Version: 4.5.3f3 - Unity Technologies ApS)
VSDC Free Video Editor version 5.5.0.601 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 5.5.0.601 - Flash-Integro LLC)
Wacom Tablet (HKLM\...\Wacom Tablet Driver) (Version: 6.3.8-4 - Wacom Technology Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
 
========================= Devices: ================================
 
Name: Microsoft PS/2 Mouse
Description: Microsoft PS/2 Mouse
Class Guid: {4d36e96f-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: i8042prt
Device ID: ACPI\PNP0F03\4&DC382E&0
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.
 
 
========================= Memory info: ===================================
 
Percentage of memory in use: 46%
Total physical RAM: 3063.07 MB
Available physical RAM: 1624.53 MB
Total Virtual: 6124.33 MB
Available Virtual: 3574.77 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:292.87 GB) (Free:106.43 GB) NTFS
2 Drive d: (Data) (Fixed) (Total:303.2 GB) (Free:128.6 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\ANDY-PC
 
Administrator            Andy                     Guest                    
 
========================= Restore Points ==================================
 
17-02-2017 05:05:57 Scheduled Checkpoint
24-02-2017 03:00:10 Windows Update
02-03-2017 12:10:07 JRT Pre-Junkware Removal
04-03-2017 14:17:45 JRT Pre-Junkware Removal
12-03-2017 00:00:05 Scheduled Checkpoint
15-03-2017 01:29:13 Device Driver Package Install: Avast Network Service
15-03-2017 12:33:23 Windows Update
16-03-2017 10:57:25 JRT Pre-Junkware Removal
24-03-2017 00:00:05 Scheduled Checkpoint
31-03-2017 00:26:52 Scheduled Checkpoint
08-04-2017 01:23:23 Scheduled Checkpoint
12-04-2017 02:00:23 Windows Update
14-04-2017 10:18:55 JRT Pre-Junkware Removal
20-04-2017 14:30:21 Windows Backup
27-04-2017 23:00:08 Scheduled Checkpoint
05-05-2017 23:00:08 Scheduled Checkpoint
11-05-2017 02:00:21 Windows Update
 
**** End of log ****
 
Mbam
--------
 

Malwarebytes Anti-Malware
www.malwarebytes.org
 
Scan Date: 14/05/2017
Scan Time: 11:52
Logfile: 
Administrator: Yes
 
Version: 2.2.1.1043
Malware Database: v2017.05.14.02
Rootkit Database: v2017.04.02.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled
 
OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Andy
 
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 442906
Time Elapsed: 34 min, 41 sec
 
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
 
Processes: 0
(No malicious items detected)
 
Modules: 0
(No malicious items detected)
 
Registry Keys: 0
(No malicious items detected)
 
Registry Values: 0
(No malicious items detected)
 
Registry Data: 0
(No malicious items detected)
 
Folders: 0
(No malicious items detected)
 
Files: 0
(No malicious items detected)
 
Physical Sectors: 0
(No malicious items detected)
 
 
(end)
 
ESET
-------
 
Scan detected no threats
 
Checkup
-----------
 

 Results of screen317's Security Check version 1.014 --- 12/23/15  
 Windows 7 Service Pack 1 x64 (UAC is enabled)  
 Internet Explorer 11  
``````````````Antivirus/Firewall Check:``````````````
 Windows Firewall Enabled!  
 Windows Firewall Disabled!  
Avast Antivirus   
 Antivirus up to date!   
`````````Anti-malware/Other Utilities Check:`````````
 Java 8 Update 131  
 Java version 32-bit out of Date!
 Mozilla Firefox (53.0) 
 Google Chrome (58.0.3029.96) 
 Google Chrome (SetupMetrics...) 
````````Process Check: objlist.exe by Laurent````````
 AVAST Software Avast AvastSvc.exe  
 AVAST Software Avast afwServ.exe  
 AVAST Software Avast x64 aswidsagenta.exe 
 AVAST Software Avast AvastUI.exe  
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C: 0% 
````````````````````End of Log``````````````````````
 
 
Java 32 bit out of date? Hmm just ran the updater and it says I have latest version.
 
Ah it says I have _131 and _60 versions how do I remove the obsolete version?


Edited by hamluis, 14 May 2017 - 05:08 PM.
Moved from MRL to Am I Infected - Hamluis.


#4 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,153 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:04:13 AM

Posted 14 May 2017 - 08:11 PM

Any more hits on your firewall?

 

Download Junkware Removal Tool and save it to your desktop.

  1. Double-click on the JRT.exe file on your desktop.

  2. Let JRT scan your computer and remove any infections.

  3. On your desktop, there will be a logfile called JRT.txt. Paste its contents into a post.

 

 

Download AdwCleaner and save it to your desktop.

  1. Click on the file you downloaded.

  2. Click Scan to start AdwCleaner's scanning process.

  3. Once done, make sure to delete all found threats.

  4. Open the “Logfile” and paste its contents into a post.

 

 

 

 

 

 

 

 

 

Download Hitman Pro and save it to your desktop.(32 bit)(64 bit)

  1. Double-click on the Hitman Pro EXE file on your desktop.

  2. Once it's open, click Settings, then uncheck Scan for Tracking Cookies. 

  3. Click OK, then click Next.

  4. Select No, I only want to perform a one time scan the click Next.

  5. HitmanPro will start scanning your system. Once done scanning, HitmanPro will display a screen with any threats found. Important: Click on the drop-down tab next to the infection name and then click Apply to All > Ignore. If not, you could cause damage to your operating system! Make sure you choose to Ignore the files and then click next. You will be at the results window. Click "Save Log" and save it to your desktop. Paste its contents into a post.


Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#5 AndyP5000

AndyP5000
  • Topic Starter

  • Members
  • 123 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 15 May 2017 - 01:46 AM

# AdwCleaner v6.046 - Logfile created 15/05/2017 at 07:12:35
# Updated on 24/04/2017 by Malwarebytes
# Database : 2017-05-14.2 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Andy - ANDY-PC
# Running from : C:\Users\Andy\Downloads\AdwCleaner (1).exe
# Mode: Scan
 
 
 
***** [ Services ] *****
 
No malicious services found.
 
 
***** [ Folders ] *****
 
Folder Found:  C:\Windows\SysWOW64\config\systemprofile\AppData\Local\LavasoftTcpService
 
 
***** [ Files ] *****
 
File Found:  C:\Windows\SysNative\LavasoftTcpService64.dll
 
 
***** [ DLL ] *****
 
No malicious DLLs found.
 
 
***** [ WMI ] *****
 
No malicious keys found.
 
 
***** [ Shortcuts ] *****
 
No infected shortcut found.
 
 
***** [ Scheduled Tasks ] *****
 
No malicious task found.
 
 
***** [ Registry ] *****
 
Key Found:  HKLM\SOFTWARE\Classes\AppID\{2CE0F1DC-C504-4B7B-A385-D94A2531DFFB}
Key Found:  HKLM\SOFTWARE\Classes\AppID\LavasoftTcpService.exe
 
 
***** [ Web browsers ] *****
 
No malicious Firefox based browser items found.
No malicious Chromium based browser items found.
 
*************************
 
C:\AdwCleaner\AdwCleaner[C0].txt - [6672 Bytes] - [11/01/2017 17:35:07]
C:\AdwCleaner\AdwCleaner[R0].txt - [1731 Bytes] - [02/04/2015 10:31:02]
C:\AdwCleaner\AdwCleaner[R10].txt - [1626 Bytes] - [20/05/2015 20:28:01]
C:\AdwCleaner\AdwCleaner[R11].txt - [1806 Bytes] - [14/06/2015 07:03:06]
C:\AdwCleaner\AdwCleaner[R1].txt - [1790 Bytes] - [02/04/2015 10:36:15]
C:\AdwCleaner\AdwCleaner[R2].txt - [1856 Bytes] - [03/04/2015 11:23:23]
C:\AdwCleaner\AdwCleaner[R3].txt - [1091 Bytes] - [06/04/2015 08:19:32]
C:\AdwCleaner\AdwCleaner[R4].txt - [1150 Bytes] - [06/04/2015 08:48:16]
C:\AdwCleaner\AdwCleaner[R5].txt - [1210 Bytes] - [06/04/2015 18:34:43]
C:\AdwCleaner\AdwCleaner[R6].txt - [1327 Bytes] - [30/04/2015 15:23:40]
C:\AdwCleaner\AdwCleaner[R7].txt - [1524 Bytes] - [30/04/2015 15:26:29]
C:\AdwCleaner\AdwCleaner[R8].txt - [1761 Bytes] - [07/05/2015 00:34:47]
C:\AdwCleaner\AdwCleaner[R9].txt - [1566 Bytes] - [08/05/2015 15:36:35]
C:\AdwCleaner\AdwCleaner[S0].txt - [1900 Bytes] - [03/04/2015 11:25:10]
C:\AdwCleaner\AdwCleaner[S10].txt - [2869 Bytes] - [06/02/2017 13:34:06]
C:\AdwCleaner\AdwCleaner[S11].txt - [2951 Bytes] - [02/03/2017 09:06:53]
C:\AdwCleaner\AdwCleaner[S12].txt - [2380 Bytes] - [15/05/2017 07:12:35]
C:\AdwCleaner\AdwCleaner[S1].txt - [1276 Bytes] - [06/04/2015 18:35:44]
C:\AdwCleaner\AdwCleaner[S2].txt - [1592 Bytes] - [30/04/2015 15:27:16]
C:\AdwCleaner\AdwCleaner[S3].txt - [6249 Bytes] - [09/01/2017 11:00:10]
C:\AdwCleaner\AdwCleaner[S4].txt - [6275 Bytes] - [11/01/2017 17:34:26]
C:\AdwCleaner\AdwCleaner[S5].txt - [2502 Bytes] - [11/01/2017 17:42:44]
C:\AdwCleaner\AdwCleaner[S6].txt - [2575 Bytes] - [12/01/2017 12:03:04]
C:\AdwCleaner\AdwCleaner[S7].txt - [2648 Bytes] - [13/01/2017 18:19:03]
C:\AdwCleaner\AdwCleaner[S8].txt - [2721 Bytes] - [03/02/2017 01:51:15]
C:\AdwCleaner\AdwCleaner[S9].txt - [2794 Bytes] - [04/02/2017 15:07:37]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S12].txt - [3111 Bytes] ##########
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.3 (04.10.2017)
Operating System: Windows 7 Home Premium x64 
Ran by Andy (Administrator) on 15/05/2017 at  7:13:52.99
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
File System: 16 
 
Successfully deleted: C:\Users\Andy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3K5OF7G7 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Andy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CFUU0898 (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Andy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EZXZXL8C (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Andy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GAOH1W7E (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Andy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L43UWDCO (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Andy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LZKXV7RH (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Andy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O657S0JL (Temporary Internet Files Folder) 
Successfully deleted: C:\Users\Andy\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z0LRP6YG (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\3K5OF7G7 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\CFUU0898 (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\EZXZXL8C (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\GAOH1W7E (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\L43UWDCO (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LZKXV7RH (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O657S0JL (Temporary Internet Files Folder) 
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z0LRP6YG (Temporary Internet Files Folder) 
 
 
 
Registry: 0 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 15/05/2017 at  7:17:11.71
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
I will run hitman pro next- I have to pop out for a little while, will do on return


#6 AndyP5000

AndyP5000
  • Topic Starter

  • Members
  • 123 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 15 May 2017 - 03:16 AM

After unchecking scan for cookies and hit OK then Next it takes me to EULA screen (I assume i need to accept this screen and it will take me to next step? Just checking to make sure as EULA not in the instruction notes)

It does not show the 'Select No, I only want to perform a one time scan' option 



#7 Havachat

Havachat

  • Members
  • 1,079 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sleepy Hollow - Geelong - Go Cats.
  • Local time:06:13 PM

Posted 15 May 2017 - 04:30 AM

I just downloaded Hitman to test procedure from the above Link.

 

1/ Download and Save to Desktop or Folder...... from https://www.bleepingcomputer.com/download/hitmanpro/dl/175/

2/ Right Click and Run as Admin / Accept UAC if Prompted....OK 

    Hitman Updated also at same time.

3/ Click  "Settings"  Uncheck Scan For Cookies.

4/ Click Ok

5/ Click Next .....Select No, I only want to perform a one time scan .....should allready be Checked.

6/ Click Next again.

 

The Scan then Started ........... 1 min 20 sec = No Malware for Me.

I didnt see any Eula to accept at anytime.

 

Hope this works for you.


Edited by Havachat, 15 May 2017 - 04:58 AM.


#8 AndyP5000

AndyP5000
  • Topic Starter

  • Members
  • 123 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 15 May 2017 - 08:24 AM

Hitman log...

 

 

HitmanPro 3.7.18.284
www.hitmanpro.com
 
   Computer name . . . . : ANDY-PC
   Windows . . . . . . . : 6.1.1.7601.X64/4
   User name . . . . . . : Andy-PC\Andy
   UAC . . . . . . . . . : Enabled
   License . . . . . . . : Free
 
   Scan date . . . . . . : 2017-05-15 14:12:51
   Scan mode . . . . . . : Normal
   Scan duration . . . . : 9m 23s
   Disk access mode  . . : Direct disk access (SRB)
   Cloud . . . . . . . . : Internet
   Reboot  . . . . . . . : No
 
   Threats . . . . . . . : 0
   Traces  . . . . . . . : 4
 
   Objects scanned . . . : 2,623,422
   Files scanned . . . . : 164,530
   Remnants scanned  . . : 930,953 files / 1,527,939 keys
 
Suspicious files ____________________________________________________________
 
   C:\Users\Andy\Downloads\FRST64.exe
      Size . . . . . . . : 2,407,424 bytes
      Age  . . . . . . . : 201.6 days (2016-10-25 23:30:07)
      Entropy  . . . . . : 7.6
      SHA-256  . . . . . : D716445A0AECB02C49F5E33D9D8B0BC34AA0F0BAF4DFAFBD51ABFBC7C36A39B7
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 22.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
 
   C:\Users\Andy\Downloads\MiniToolBox.exe
      Size . . . . . . . : 403,456 bytes
      Age  . . . . . . . : 700.9 days (2015-06-14 16:55:54)
      Entropy  . . . . . : 7.9
      SHA-256  . . . . . : 364F807CA4EDBFBBFED7F610148A22EFEDB5D79D4B9B09841E9DC8B7EAB329C1
      Needs elevation  . : Yes
      Fuzzy  . . . . . . : 22.0
         Program has no publisher information but prompts the user for permission elevation.
         Entropy (or randomness) indicates the program is encrypted, compressed or obfuscated. This is not typical for most programs.
         Authors name is missing in version info. This is not common to most programs.
         Version control is missing. This file is probably created by an individual. This is not typical for most programs.
 
 
Potential Unwanted Programs _________________________________________________
 
   HKLM\SOFTWARE\Classes\Interface\{6E780F0B-BCD6-40CB-B2DB-7AF47AB4D4A4}\ (CouponBar)
   HKLM\SOFTWARE\Classes\Interface\{A138BE8B-F051-4802-9A3F-A750A6D862D4}\ (CouponBar)
 
 


#9 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,153 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:04:13 AM

Posted 15 May 2017 - 10:49 AM

No need to remove anything HitmanPro detected, as it seems to just be FRST and MiniToolBox, which are both legitimate programs.

 

Download Kaspersky TDSSKiller and save it to your desktop.

  1. Open TDSSKiller and click Change Parameters.

  2. Select Detect TDLFS File System and then click OK.

  3. Click Start Scan to begin scanning your PC.

  4. If anything is found, make sure any Unsigned Files or Suspicious Objects are set to Skip. Click COntinue, then wait for TDSSKiller to remove the malwares from your computer.

  5. Click Report once done and paste the logfile into a post. Restart the PC if needed.


Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#10 AndyP5000

AndyP5000
  • Topic Starter

  • Members
  • 123 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 15 May 2017 - 04:47 PM

22:44:44.0628 0x21b0  TDSS rootkit removing tool 3.1.0.15 Apr 18 2017 11:34:02
22:44:57.0325 0x21b0  ============================================================
22:44:57.0325 0x21b0  Current date / time: 2017/05/15 22:44:57.0325
22:44:57.0325 0x21b0  SystemInfo:
22:44:57.0325 0x21b0  
22:44:57.0325 0x21b0  OS Version: 6.1.7601 ServicePack: 1.0
22:44:57.0325 0x21b0  Product type: Workstation
22:44:57.0325 0x21b0  ComputerName: ANDY-PC
22:44:57.0325 0x21b0  UserName: Andy
22:44:57.0325 0x21b0  Windows directory: C:\Windows
22:44:57.0325 0x21b0  System windows directory: C:\Windows
22:44:57.0325 0x21b0  Running under WOW64
22:44:57.0325 0x21b0  Processor architecture: Intel x64
22:44:57.0325 0x21b0  Number of processors: 4
22:44:57.0325 0x21b0  Page size: 0x1000
22:44:57.0325 0x21b0  Boot type: Normal boot
22:44:57.0325 0x21b0  CodeIntegrityOptions = 0x00000001
22:44:57.0325 0x21b0  ============================================================
22:44:59.0222 0x21b0  KLMD registered as C:\Windows\system32\drivers\07820284.sys
22:44:59.0222 0x21b0  KLMD ARK init status: drvProperties = 0xFFF00, osBuild = 7601.23796, osProperties = 0x1
22:44:59.0659 0x21b0  System UUID: {FED6CAB4-4C6A-F2B8-1FCD-5B36A968F3B1}
22:45:00.0379 0x21b0  Drive \Device\Harddisk0\DR0 - Size: 0x950B056000 ( 596.17 Gb ), SectorSize: 0x200, Cylinders: 0x13001, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
22:45:00.0442 0x21b0  ============================================================
22:45:00.0442 0x21b0  \Device\Harddisk0\DR0:
22:45:00.0442 0x21b0  MBR partitions:
22:45:00.0442 0x21b0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
22:45:00.0442 0x21b0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x249BE000
22:45:00.0442 0x21b0  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x249F0800, BlocksNum 0x25E67000
22:45:00.0442 0x21b0  ============================================================
22:45:00.0488 0x21b0  C: <-> \Device\Harddisk0\DR0\Partition2
22:45:00.0520 0x21b0  D: <-> \Device\Harddisk0\DR0\Partition3
22:45:00.0535 0x21b0  ============================================================
22:45:00.0535 0x21b0  Initialize success
22:45:00.0535 0x21b0  ============================================================
22:46:25.0943 0x03dc  ============================================================
22:46:25.0943 0x03dc  Scan started
22:46:25.0943 0x03dc  Mode: Manual; TDLFS; 
22:46:25.0943 0x03dc  ============================================================
22:46:25.0943 0x03dc  KSN ping started
22:46:26.0255 0x03dc  KSN ping finished: true
22:46:27.0128 0x03dc  ================ Scan system memory ========================
22:46:27.0128 0x03dc  System memory - ok
22:46:27.0128 0x03dc  ================ Scan services =============================
22:46:27.0238 0x03dc  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
22:46:27.0253 0x03dc  1394ohci - ok
22:46:27.0269 0x03dc  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
22:46:27.0284 0x03dc  ACPI - ok
22:46:27.0316 0x03dc  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
22:46:27.0316 0x03dc  AcpiPmi - ok
22:46:27.0425 0x03dc  [ CBDF353624D1744734F2FD13B4786F90, 615C695F842D2F777C7D0DAA19B3674AB903FDC401E22A130C04DB0D0C1486D2 ] AdAppMgrSvc     C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
22:46:27.0440 0x03dc  AdAppMgrSvc - ok
22:46:27.0503 0x03dc  [ 8D6BA8E7676038A27FD4ECF12CC744B0, F5D59B764DCB4A06A51939533DC7B2391FD68E3979C48939C023A60DCE0D2101 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
22:46:27.0503 0x03dc  AdobeARMservice - ok
22:46:27.0581 0x03dc  [ E6A1D864EC90F4397DF5AB2633B34DD4, 05F1B7291EBDD9CA1D74649C0DAFCBE5F2CF93E92C5CA16A8AC10B6DF83101A0 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
22:46:27.0581 0x03dc  AdobeFlashPlayerUpdateSvc - ok
22:46:27.0612 0x03dc  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
22:46:27.0628 0x03dc  adp94xx - ok
22:46:27.0643 0x03dc  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
22:46:27.0659 0x03dc  adpahci - ok
22:46:27.0674 0x03dc  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
22:46:27.0690 0x03dc  adpu320 - ok
22:46:27.0706 0x03dc  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
22:46:27.0768 0x03dc  AeLookupSvc - ok
22:46:27.0799 0x03dc  [ 0DC2A9882540DEA4A55B08785E09D8FC, 69B15724B0034F9915AACE109A6C596D6AF2DA350FC18C9A0CD98C81CB7EDEE3 ] AFD             C:\Windows\system32\drivers\afd.sys
22:46:27.0830 0x03dc  AFD - ok
22:46:27.0846 0x03dc  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
22:46:27.0846 0x03dc  agp440 - ok
22:46:27.0955 0x03dc  [ A32EA26C90A47B2BC93D7B0B94994B11, 1CF8DB09CA27EAC5741489EDFDFC04D69485B51C726F539BFCDC3C78E8E09EBE ] AGSService      C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
22:46:28.0018 0x03dc  AGSService - ok
22:46:28.0033 0x03dc  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
22:46:28.0033 0x03dc  ALG - ok
22:46:28.0064 0x03dc  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
22:46:28.0064 0x03dc  aliide - ok
22:46:28.0080 0x03dc  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
22:46:28.0080 0x03dc  amdide - ok
22:46:28.0096 0x03dc  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
22:46:28.0096 0x03dc  AmdK8 - ok
22:46:28.0111 0x03dc  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
22:46:28.0127 0x03dc  AmdPPM - ok
22:46:28.0142 0x03dc  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
22:46:28.0142 0x03dc  amdsata - ok
22:46:28.0174 0x03dc  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
22:46:28.0174 0x03dc  amdsbs - ok
22:46:28.0189 0x03dc  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
22:46:28.0189 0x03dc  amdxata - ok
22:46:28.0220 0x03dc  [ 4DE0D5D747A73797C95A97DCCE5018B5, 17EC669675C2E43515EFE2D8BCC9DDFFBE64F99EBFB9A6DAB429F65A2B504560 ] androidusb      C:\Windows\system32\Drivers\ssadadb.sys
22:46:28.0220 0x03dc  androidusb - ok
22:46:28.0252 0x03dc  [ 00D77B30CA9CB1D7793AC952549331A0, 73EF665E1C70B8E66C879203291B28736C928AC5621C8FF79F5CA21DD2E9E159 ] AppID           C:\Windows\system32\drivers\appid.sys
22:46:28.0252 0x03dc  AppID - ok
22:46:28.0283 0x03dc  [ 3756F12C129CE5292D633FCD1F7D467E, 0889514E2D6EEC929434BF570BD9B4C26D5715F65A762F1B9F5A2DFFA305018B ] AppIDSvc        C:\Windows\System32\appidsvc.dll
22:46:28.0283 0x03dc  AppIDSvc - ok
22:46:28.0298 0x03dc  [ DE23E052E557580674785CDF45B613F3, A955ADC6CC7D816BA7CE1065F911E7A3295A1908C22BE0A3C506C38CFEE8DE0D ] Appinfo         C:\Windows\System32\appinfo.dll
22:46:28.0314 0x03dc  Appinfo - ok
22:46:28.0392 0x03dc  [ 3B3774C868868257533EC7E715BB6D53, 4AF1DADCEDBD80BE6EDEC696DF59E65B51D31E33F4C84413CA03C7BD959FF4E5 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
22:46:28.0392 0x03dc  Apple Mobile Device Service - ok
22:46:28.0408 0x03dc  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
22:46:28.0408 0x03dc  arc - ok
22:46:28.0423 0x03dc  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
22:46:28.0423 0x03dc  arcsas - ok
22:46:28.0517 0x03dc  [ 92C120176C43C62AFE107B5D945CE6EC, E3BA1200BD04167589D7AF29F6550F3242DB321DDCD6890D645A2053CC78C7E6 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
22:46:28.0532 0x03dc  aspnet_state - ok
22:46:28.0782 0x03dc  [ A760C2AFBA1A71E0F7310A6E900CB0E4, 3827C8D4DFC3FC850E9BD049E1B127BD1076DDEFDA19BBA9445FF201F6AE99F8 ] aswbIDSAgent    C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
22:46:28.0969 0x03dc  aswbIDSAgent - ok
22:46:29.0033 0x03dc  [ 0C19C91ED99964925FF8B05C23743AB1, BF513CCC0E5D2D2CE7D06F17ABC34CD3A55B59588267A5868ADFB723454AF6EB ] aswbidsdriver   C:\Windows\system32\drivers\aswbidsdrivera.sys
22:46:29.0048 0x03dc  aswbidsdriver - ok
22:46:29.0095 0x03dc  [ 670839F4BA6D82F3035AADFE8274F02E, E4E8B1F3B9138CB2600158CC8507CBA31637E48BBA4D67398E05970B2CECA671 ] aswbidsh        C:\Windows\system32\drivers\aswbidsha.sys
22:46:29.0095 0x03dc  aswbidsh - ok
22:46:29.0126 0x03dc  [ 5C561968CF601D76A98692DCC8CF74ED, 26D0F34CE4485A813200032CE6889575A13196E79A4B124DD19E4584B0C102DC ] aswblog         C:\Windows\system32\drivers\aswbloga.sys
22:46:29.0142 0x03dc  aswblog - ok
22:46:29.0157 0x03dc  [ 335E5F19E7397A283B7ED20FE7B369EB, 6A31ABA0BA671EA796E8920EBD64DB28D3D7EB65C4FF68C3EB1DEF4FFC002163 ] aswbuniv        C:\Windows\system32\drivers\aswbuniva.sys
22:46:29.0157 0x03dc  aswbuniv - ok
22:46:29.0173 0x03dc  [ BA02CA77D989710F79FD662019C4DF94, 2E989847BEE92EB8DE7492DE7AB9B4658CEFC38E678346B7548E6ECB528300D6 ] aswHwid         C:\Windows\system32\drivers\aswHwid.sys
22:46:29.0189 0x03dc  aswHwid - ok
22:46:29.0220 0x03dc  [ 5E6FD2CB74138C6AF591779D2619BD6C, 7410384AE4280156451EB1EAC5CBA9E44834C49BD5A31049339895D5994AEF4E ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
22:46:29.0220 0x03dc  aswKbd - ok
22:46:29.0251 0x03dc  [ 2B1490F2F1CC76C9C9B61CE63D6E7973, BFD456C598E74974B81453805ADD0792BD9636BF8213306F40029560B20DE036 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
22:46:29.0251 0x03dc  aswMonFlt - ok
22:46:29.0298 0x03dc  [ 5EC2F4301B830B4C4F8A84549F042C81, 8EA2C3E2949ED2A4FD07DF99BA5A23CAC8873496BE4D85DA9949678A44E11919 ] aswNetNd6       C:\Windows\system32\DRIVERS\aswNetNd6.sys
22:46:29.0298 0x03dc  aswNetNd6 - ok
22:46:29.0329 0x03dc  [ DEC5206C45CBB8D8C7EDACFEAE0968B1, AE7E24C6CDAF5A500288FDC7EE03374D460520FE73122A2DF57980CD6EBB24F2 ] aswNetSec       C:\Windows\system32\drivers\aswNetSec.sys
22:46:29.0345 0x03dc  aswNetSec - ok
22:46:29.0360 0x03dc  [ F26D1F761E14789743275FA5D258EAB8, D532AD4DFFC73BE8A889B75BB50D33FFF674B5AB31F05AA75D9E0667363057F1 ] aswRdr          C:\Windows\system32\drivers\aswRdr2.sys
22:46:29.0376 0x03dc  aswRdr - ok
22:46:29.0407 0x03dc  [ C1007774450CFAB19D784D50C3410FC7, 2752FD77412D54D78A81DED9F05F094E589BCA5E360ECD420E28ECC844D35921 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
22:46:29.0407 0x03dc  aswRvrt - ok
22:46:29.0469 0x03dc  [ EB1991686949400C51B8C21CE013621E, 248545BDD5E8D1BD2D752AF7D3B77E8F1EA6453FD3B007851A04E9B634966448 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
22:46:29.0501 0x03dc  aswSnx - ok
22:46:29.0532 0x03dc  [ 7A17BD26C74F5329CB1DF029AE4DD357, 31F98B74F6BC2D75BDC83E3E2E60C9541D57912B6DF2C8A9241F3CFB17E0ACBB ] aswSP           C:\Windows\system32\drivers\aswSP.sys
22:46:29.0563 0x03dc  aswSP - ok
22:46:29.0594 0x03dc  [ 2933CBC7643168E4288D443B4125941C, 19DF1EB9F3EBF2496633D8D789E56EC8A59CF664ECC12A6BF69045BC2BC6CF48 ] aswStm          C:\Windows\system32\drivers\aswStm.sys
22:46:29.0594 0x03dc  aswStm - ok
22:46:29.0625 0x03dc  [ E76C21203E29F2DCC489EF585E0B1A38, F64B8F5F2EFA10ADD64DE0574ADDE05DF1DFDEACF0E72879C9DD6DEB037E01A3 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
22:46:29.0641 0x03dc  aswVmm - ok
22:46:29.0672 0x03dc  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
22:46:29.0672 0x03dc  AsyncMac - ok
22:46:29.0719 0x03dc  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
22:46:29.0719 0x03dc  atapi - ok
22:46:29.0766 0x03dc  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
22:46:29.0797 0x03dc  AudioEndpointBuilder - ok
22:46:29.0813 0x03dc  [ 67C717EC24FCAAE7B518D9E06AD036AB, F08550E4FCEC2899FACEF2A18CEE3D068D5911FFD2FF5534E4921E56FB0AEF59 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
22:46:29.0828 0x03dc  AudioSrv - ok
22:46:29.0875 0x03dc  [ D961A7C05A76302E782B1B0CF6546BA7, DAE7481B4FFC0746944213D10EF59C21BBA9937138D660E72E63F43BCDC1F799 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
22:46:29.0875 0x03dc  avast! Antivirus - ok
22:46:29.0922 0x03dc  [ FCE853F74DED74D58D2D5C477429F36A, D422278D70C487AA7E262A83A32EBF358A657254D299655F28BC909CFE75E4A2 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
22:46:29.0937 0x03dc  avast! Firewall - ok
22:46:29.0953 0x03dc  AvastVBoxSvc - ok
22:46:29.0984 0x03dc  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
22:46:29.0984 0x03dc  AxInstSV - ok
22:46:30.0015 0x03dc  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
22:46:30.0031 0x03dc  b06bdrv - ok
22:46:30.0047 0x03dc  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
22:46:30.0062 0x03dc  b57nd60a - ok
22:46:30.0078 0x03dc  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
22:46:30.0093 0x03dc  BDESVC - ok
22:46:30.0109 0x03dc  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
22:46:30.0109 0x03dc  Beep - ok
22:46:30.0156 0x03dc  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
22:46:30.0171 0x03dc  BFE - ok
22:46:30.0218 0x03dc  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
22:46:30.0265 0x03dc  BITS - ok
22:46:30.0296 0x03dc  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
22:46:30.0296 0x03dc  blbdrive - ok
22:46:30.0327 0x03dc  [ B5C2F92EE1106DFE7BB1CCE4D35B6037, E399C390687589194D8AAD385055F0CFA7D52AD9E837D8FF95008B8EB2B34E50 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
22:46:30.0359 0x03dc  Bonjour Service - ok
22:46:30.0390 0x03dc  [ ABA3984C822E4D3F889699912D85D6C5, 2251FA135CC290DA13DAE4743F393C7CC9E6A737C054707CB8D72C369D1FFACB ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
22:46:30.0390 0x03dc  bowser - ok
22:46:30.0405 0x03dc  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
22:46:30.0405 0x03dc  BrFiltLo - ok
22:46:30.0421 0x03dc  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
22:46:30.0421 0x03dc  BrFiltUp - ok
22:46:30.0437 0x03dc  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
22:46:30.0437 0x03dc  Browser - ok
22:46:30.0452 0x03dc  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
22:46:30.0468 0x03dc  Brserid - ok
22:46:30.0483 0x03dc  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
22:46:30.0483 0x03dc  BrSerWdm - ok
22:46:30.0499 0x03dc  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
22:46:30.0499 0x03dc  BrUsbMdm - ok
22:46:30.0515 0x03dc  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
22:46:30.0515 0x03dc  BrUsbSer - ok
22:46:30.0546 0x03dc  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
22:46:30.0546 0x03dc  BTHMODEM - ok
22:46:30.0577 0x03dc  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
22:46:30.0577 0x03dc  bthserv - ok
22:46:30.0593 0x03dc  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
22:46:30.0593 0x03dc  cdfs - ok
22:46:30.0624 0x03dc  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
22:46:30.0624 0x03dc  cdrom - ok
22:46:30.0639 0x03dc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
22:46:30.0639 0x03dc  CertPropSvc - ok
22:46:30.0655 0x03dc  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
22:46:30.0671 0x03dc  circlass - ok
22:46:30.0702 0x03dc  [ 3D67C27DD17B254D7915FA16A5AE3573, 5B3A6C6A7F940C06362775DAF13CEADA37C7AA84A509458A57C23B4369970A90 ] CLFS            C:\Windows\system32\CLFS.sys
22:46:30.0717 0x03dc  CLFS - ok
22:46:30.0764 0x03dc  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:46:30.0764 0x03dc  clr_optimization_v2.0.50727_32 - ok
22:46:30.0795 0x03dc  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
22:46:30.0811 0x03dc  clr_optimization_v2.0.50727_64 - ok
22:46:30.0873 0x03dc  [ 1A3D6CABDC37B34D85059185272DBB2F, C7FAB62EC4D9947ADAD0E065D4CDAF8D6EA2AF9FD0C3A1F1A676276825808FD8 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:46:30.0951 0x03dc  clr_optimization_v4.0.30319_32 - ok
22:46:30.0984 0x03dc  [ 59B44C95D56A9BB269B1D4A3F25468C2, 462799657FA493866A14F0D36D5D92C95E8886E6AC5F199D069E6938425A9218 ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
22:46:30.0999 0x03dc  clr_optimization_v4.0.30319_64 - ok
22:46:31.0015 0x03dc  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
22:46:31.0015 0x03dc  CmBatt - ok
22:46:31.0030 0x03dc  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
22:46:31.0030 0x03dc  cmdide - ok
22:46:31.0046 0x03dc  [ A98CED39AD91B445E2E442A9BD67E8B4, B4189DEEF1C0EE22AE983119047B1A40FFDD8F3E163DFFABD7C2706231B0B1B0 ] CNG             C:\Windows\system32\Drivers\cng.sys
22:46:31.0077 0x03dc  CNG - ok
22:46:31.0093 0x03dc  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
22:46:31.0093 0x03dc  Compbatt - ok
22:46:31.0108 0x03dc  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
22:46:31.0108 0x03dc  CompositeBus - ok
22:46:31.0108 0x03dc  COMSysApp - ok
22:46:31.0108 0x03dc  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
22:46:31.0108 0x03dc  crcdisk - ok
22:46:31.0155 0x03dc  [ 48FEDBE324F1EA9417BA1D62AE863011, 2C3D84F0842237A3BF2838DDB4126807977EB36588FA669B1E6671077584EF18 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
22:46:31.0155 0x03dc  CryptSvc - ok
22:46:31.0186 0x03dc  [ 5E9F8D029D9B03110D835CBFC058068B, 038FDF99C643C8102026BA26A75899A56E91AD0C239DF71AA5443FD35C718C78 ] DcomLaunch      C:\Windows\system32\rpcss.dll
22:46:31.0218 0x03dc  DcomLaunch - ok
22:46:31.0233 0x03dc  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
22:46:31.0264 0x03dc  defragsvc - ok
22:46:31.0296 0x03dc  [ 9B38580063D281A99E68EF5813022A5F, D91676B0E0A8E2A090E3E5DD340ABCFC20AE0F55B4C82869D6CFB34239BD27DA ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
22:46:31.0296 0x03dc  DfsC - ok
22:46:31.0311 0x03dc  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
22:46:31.0327 0x03dc  Dhcp - ok
22:46:31.0405 0x03dc  [ EE9954237F15BE4DD9304D12E4D305ED, F295C9BAF20F0E669B673AFCC16B4969EE31B6A3808980DAB93D9B0F167DA3C0 ] DiagTrack       C:\Windows\system32\diagtrack.dll
22:46:31.0436 0x03dc  DiagTrack - ok
22:46:31.0452 0x03dc  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
22:46:31.0452 0x03dc  discache - ok
22:46:31.0467 0x03dc  [ 616387BBD83372220B09DE95F4E67BBC, 5E2D5280BB775576E7CDE3FA6BDE494E183123635E5908CF7EBF1FF52966D07D ] Disk            C:\Windows\system32\drivers\disk.sys
22:46:31.0483 0x03dc  Disk - ok
22:46:31.0498 0x03dc  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
22:46:31.0498 0x03dc  Dnscache - ok
22:46:31.0514 0x03dc  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
22:46:31.0514 0x03dc  dot3svc - ok
22:46:31.0530 0x03dc  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
22:46:31.0545 0x03dc  DPS - ok
22:46:31.0576 0x03dc  [ 26FE888505E5A945B0536AF9A2A27A6F, A6B16ED498BAFE300E1F0E0A241E3D62F7A1C5973EE775904ED14F33A2BC08A6 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
22:46:31.0576 0x03dc  drmkaud - ok
22:46:31.0623 0x03dc  [ 30545EF2A1E3EF79450AED5DF80F5884, A7109F481680237481E28C17088D7608EB39C49513BD0AF3F1E9E63E17F250C1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
22:46:31.0654 0x03dc  DXGKrnl - ok
22:46:31.0670 0x03dc  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
22:46:31.0670 0x03dc  EapHost - ok
22:46:31.0765 0x03dc  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
22:46:31.0843 0x03dc  ebdrv - ok
22:46:31.0889 0x03dc  [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] EFS             C:\Windows\System32\lsass.exe
22:46:31.0905 0x03dc  EFS - ok
22:46:31.0952 0x03dc  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
22:46:31.0983 0x03dc  ehRecvr - ok
22:46:31.0983 0x03dc  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
22:46:31.0999 0x03dc  ehSched - ok
22:46:32.0030 0x03dc  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
22:46:32.0045 0x03dc  elxstor - ok
22:46:32.0045 0x03dc  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
22:46:32.0045 0x03dc  ErrDev - ok
22:46:32.0077 0x03dc  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
22:46:32.0108 0x03dc  EventSystem - ok
22:46:32.0139 0x03dc  [ 7E45F8B117419ABA3BB26579F6E70324, 03FE86519860153E1BE571F10ACC9BA58FFB5A661C5C3EBDF3B77973BCD96C84 ] exfat           C:\Windows\system32\drivers\exfat.sys
22:46:32.0139 0x03dc  exfat - ok
22:46:32.0139 0x03dc  [ 6EDFA237D25433C03F42FBFDB16BDD24, A30F89A40F7AFC475D3C2D3591FB9AFC06AE3FEBC915FDCB24ED77946FBA4E2C ] fastfat         C:\Windows\system32\drivers\fastfat.sys
22:46:32.0155 0x03dc  fastfat - ok
22:46:32.0186 0x03dc  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
22:46:32.0217 0x03dc  Fax - ok
22:46:32.0233 0x03dc  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
22:46:32.0233 0x03dc  fdc - ok
22:46:32.0248 0x03dc  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
22:46:32.0264 0x03dc  fdPHost - ok
22:46:32.0264 0x03dc  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
22:46:32.0279 0x03dc  FDResPub - ok
22:46:32.0295 0x03dc  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
22:46:32.0295 0x03dc  FileInfo - ok
22:46:32.0311 0x03dc  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
22:46:32.0311 0x03dc  Filetrace - ok
22:46:32.0311 0x03dc  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
22:46:32.0311 0x03dc  flpydisk - ok
22:46:32.0342 0x03dc  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
22:46:32.0357 0x03dc  FltMgr - ok
22:46:32.0404 0x03dc  [ CF0108CBA6D1860563BA20E3D74C6646, 737B5E89A858D7E3AEC8BF660AA4FCC56501A69468EA143531286016AF7C0B33 ] FontCache       C:\Windows\system32\FntCache.dll
22:46:32.0451 0x03dc  FontCache - ok
22:46:32.0482 0x03dc  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
22:46:32.0482 0x03dc  FontCache3.0.0.0 - ok
22:46:32.0498 0x03dc  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
22:46:32.0498 0x03dc  FsDepends - ok
22:46:32.0513 0x03dc  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
22:46:32.0529 0x03dc  Fs_Rec - ok
22:46:32.0545 0x03dc  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
22:46:32.0545 0x03dc  fvevol - ok
22:46:32.0560 0x03dc  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
22:46:32.0576 0x03dc  gagp30kx - ok
22:46:32.0607 0x03dc  [ E4AE497857409127ED57562AF913A903, 262ADD713B1FBF6200550967D1F8635B55D01BBD8FA2E753536E71A4EC87867B ] gpsvc           C:\Windows\System32\gpsvc.dll
22:46:32.0654 0x03dc  gpsvc - ok
22:46:32.0716 0x03dc  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:46:32.0716 0x03dc  gupdate - ok
22:46:32.0732 0x03dc  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
22:46:32.0732 0x03dc  gupdatem - ok
22:46:32.0747 0x03dc  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
22:46:32.0747 0x03dc  hcw85cir - ok
22:46:32.0763 0x03dc  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
22:46:32.0779 0x03dc  HdAudAddService - ok
22:46:32.0810 0x03dc  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
22:46:32.0810 0x03dc  HDAudBus - ok
22:46:32.0825 0x03dc  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
22:46:32.0825 0x03dc  HidBatt - ok
22:46:32.0841 0x03dc  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
22:46:32.0841 0x03dc  HidBth - ok
22:46:32.0857 0x03dc  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
22:46:32.0872 0x03dc  HidIr - ok
22:46:32.0903 0x03dc  [ C6AB0711E75F90B501F30260463CB026, B5CF27552A000D2BCE0C9B557F0FA2CE60FACAB596B262F07BED57D00422C388 ] hidkmdf         C:\Windows\system32\DRIVERS\hidkmdf.sys
22:46:32.0903 0x03dc  hidkmdf - ok
22:46:32.0919 0x03dc  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
22:46:32.0919 0x03dc  hidserv - ok
22:46:32.0950 0x03dc  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
22:46:32.0950 0x03dc  HidUsb - ok
22:46:32.0982 0x03dc  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
22:46:32.0982 0x03dc  hkmsvc - ok
22:46:32.0998 0x03dc  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
22:46:32.0998 0x03dc  HomeGroupListener - ok
22:46:33.0029 0x03dc  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
22:46:33.0029 0x03dc  HomeGroupProvider - ok
22:46:33.0045 0x03dc  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
22:46:33.0045 0x03dc  HpSAMD - ok
22:46:33.0092 0x03dc  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
22:46:33.0123 0x03dc  HTTP - ok
22:46:33.0138 0x03dc  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
22:46:33.0138 0x03dc  hwpolicy - ok
22:46:33.0154 0x03dc  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
22:46:33.0154 0x03dc  i8042prt - ok
22:46:33.0170 0x03dc  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
22:46:33.0185 0x03dc  iaStorV - ok
22:46:33.0232 0x03dc  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
22:46:33.0248 0x03dc  idsvc - ok
22:46:33.0263 0x03dc  IEEtwCollectorService - ok
22:46:33.0279 0x03dc  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
22:46:33.0279 0x03dc  iirsp - ok
22:46:33.0326 0x03dc  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
22:46:33.0357 0x03dc  IKEEXT - ok
22:46:33.0435 0x03dc  [ 52D9171838BB92319F23656F502916E9, 882FDD02E2036412C8B9DE979EBB6B63461B1260CF7109BA2D6A7E9BC8F85BF7 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
22:46:33.0497 0x03dc  IntcAzAudAddService - ok
22:46:33.0513 0x03dc  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
22:46:33.0513 0x03dc  intelide - ok
22:46:33.0528 0x03dc  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
22:46:33.0528 0x03dc  intelppm - ok
22:46:33.0560 0x03dc  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
22:46:33.0560 0x03dc  IPBusEnum - ok
22:46:33.0575 0x03dc  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:46:33.0575 0x03dc  IpFilterDriver - ok
22:46:33.0606 0x03dc  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
22:46:33.0638 0x03dc  iphlpsvc - ok
22:46:33.0638 0x03dc  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
22:46:33.0653 0x03dc  IPMIDRV - ok
22:46:33.0653 0x03dc  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
22:46:33.0669 0x03dc  IPNAT - ok
22:46:33.0717 0x03dc  [ F96B9EDC032E61EB87652896E92ED526, F9E3CD2FA2D963C56034A4F606869467FDC6647B916CF457249270E6C337A8A5 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
22:46:33.0748 0x03dc  iPod Service - ok
22:46:33.0763 0x03dc  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
22:46:33.0763 0x03dc  IRENUM - ok
22:46:33.0779 0x03dc  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
22:46:33.0779 0x03dc  isapnp - ok
22:46:33.0810 0x03dc  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
22:46:33.0826 0x03dc  iScsiPrt - ok
22:46:33.0841 0x03dc  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
22:46:33.0841 0x03dc  kbdclass - ok
22:46:33.0857 0x03dc  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
22:46:33.0857 0x03dc  kbdhid - ok
22:46:33.0873 0x03dc  [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] KeyIso          C:\Windows\system32\lsass.exe
22:46:33.0873 0x03dc  KeyIso - ok
22:46:33.0904 0x03dc  [ 15682ED7B70B186C9C2BE6CA423D8E74, 02C6D35271D01925A2D9069589D75F7341988B8AFC1AC0A43401A5C63A959E37 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
22:46:33.0904 0x03dc  KSecDD - ok
22:46:33.0935 0x03dc  [ 945F4DA63A76EB2725C070BF3A86B5A5, EB778A52FCD2FCF98CFC0E7363F25B4CCE778C79E7308DF47C3D1AC92A791ED0 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
22:46:33.0935 0x03dc  KSecPkg - ok
22:46:33.0951 0x03dc  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
22:46:33.0951 0x03dc  ksthunk - ok
22:46:33.0982 0x03dc  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
22:46:34.0013 0x03dc  KtmRm - ok
22:46:34.0029 0x03dc  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
22:46:34.0044 0x03dc  LanmanServer - ok
22:46:34.0060 0x03dc  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
22:46:34.0075 0x03dc  LanmanWorkstation - ok
22:46:34.0091 0x03dc  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
22:46:34.0091 0x03dc  lltdio - ok
22:46:34.0107 0x03dc  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
22:46:34.0122 0x03dc  lltdsvc - ok
22:46:34.0153 0x03dc  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
22:46:34.0153 0x03dc  lmhosts - ok
22:46:34.0185 0x03dc  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
22:46:34.0185 0x03dc  LSI_FC - ok
22:46:34.0185 0x03dc  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
22:46:34.0200 0x03dc  LSI_SAS - ok
22:46:34.0200 0x03dc  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
22:46:34.0200 0x03dc  LSI_SAS2 - ok
22:46:34.0216 0x03dc  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
22:46:34.0216 0x03dc  LSI_SCSI - ok
22:46:34.0231 0x03dc  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
22:46:34.0231 0x03dc  luafv - ok
22:46:34.0247 0x03dc  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
22:46:34.0263 0x03dc  Mcx2Svc - ok
22:46:34.0278 0x03dc  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
22:46:34.0278 0x03dc  megasas - ok
22:46:34.0278 0x03dc  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
22:46:34.0294 0x03dc  MegaSR - ok
22:46:34.0325 0x03dc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
22:46:34.0325 0x03dc  MMCSS - ok
22:46:34.0341 0x03dc  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
22:46:34.0341 0x03dc  Modem - ok
22:46:34.0356 0x03dc  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
22:46:34.0356 0x03dc  monitor - ok
22:46:34.0356 0x03dc  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
22:46:34.0372 0x03dc  mouclass - ok
22:46:34.0372 0x03dc  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
22:46:34.0372 0x03dc  mouhid - ok
22:46:34.0403 0x03dc  [ 8ADB5445B29941CB41AF2846FD5C93C7, 689582430FE29EC0845B1DB841D3CC49D5D09DE264586E3999EEFE616986D12B ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
22:46:34.0403 0x03dc  mountmgr - ok
22:46:34.0450 0x03dc  [ C34AB4280614658903BE848CE79ACDB5, 9A943D9B3CF941DAE4EA4E2771B5EC5DA37AB16AD43095EF092B4259D62FF810 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
22:46:34.0450 0x03dc  MozillaMaintenance - ok
22:46:34.0481 0x03dc  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
22:46:34.0481 0x03dc  mpio - ok
22:46:34.0528 0x03dc  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
22:46:34.0528 0x03dc  mpsdrv - ok
22:46:34.0559 0x03dc  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
22:46:34.0606 0x03dc  MpsSvc - ok
22:46:34.0637 0x03dc  [ 98DB1790F0A584E0A2528B92B052417F, 9AA04CA73AFE599810CD233B9CEC212E16D44DCEDF5C7D0181C7257F498068B5 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
22:46:34.0637 0x03dc  MRxDAV - ok
22:46:34.0668 0x03dc  [ 054F780A442DB96F9FE10501B35E75CA, 72DF4BCEB6E14745CBEBF29B1F2882EC05C2952CED233E038105721494C984A4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
22:46:34.0668 0x03dc  mrxsmb - ok
22:46:34.0699 0x03dc  [ A1EAC982807B3179DD92235B6B709C0A, 8AD2652391B40D94E0FC4C9132630A7122679EF05B67328E4467043A45CD2737 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:46:34.0715 0x03dc  mrxsmb10 - ok
22:46:34.0746 0x03dc  [ E6B504F163094F2DB84F7D34A893FA00, 389413D7A4188DE226FD5ED996355C93BC90B7F460E31F5991B8714CE701CCC8 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:46:34.0762 0x03dc  mrxsmb20 - ok
22:46:34.0762 0x03dc  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
22:46:34.0762 0x03dc  msahci - ok
22:46:34.0777 0x03dc  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
22:46:34.0793 0x03dc  msdsm - ok
22:46:34.0793 0x03dc  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
22:46:34.0809 0x03dc  MSDTC - ok
22:46:34.0809 0x03dc  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
22:46:34.0824 0x03dc  Msfs - ok
22:46:34.0824 0x03dc  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
22:46:34.0824 0x03dc  mshidkmdf - ok
22:46:34.0840 0x03dc  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
22:46:34.0840 0x03dc  msisadrv - ok
22:46:34.0871 0x03dc  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
22:46:34.0871 0x03dc  MSiSCSI - ok
22:46:34.0887 0x03dc  msiserver - ok
22:46:34.0887 0x03dc  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
22:46:34.0902 0x03dc  MSKSSRV - ok
22:46:34.0918 0x03dc  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
22:46:34.0918 0x03dc  MSPCLOCK - ok
22:46:34.0933 0x03dc  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
22:46:34.0933 0x03dc  MSPQM - ok
22:46:34.0949 0x03dc  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
22:46:34.0980 0x03dc  MsRPC - ok
22:46:34.0980 0x03dc  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
22:46:34.0980 0x03dc  mssmbios - ok
22:46:34.0997 0x03dc  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
22:46:34.0997 0x03dc  MSTEE - ok
22:46:35.0012 0x03dc  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
22:46:35.0012 0x03dc  MTConfig - ok
22:46:35.0028 0x03dc  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
22:46:35.0028 0x03dc  Mup - ok
22:46:35.0059 0x03dc  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
22:46:35.0090 0x03dc  napagent - ok
22:46:35.0122 0x03dc  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
22:46:35.0137 0x03dc  NativeWifiP - ok
22:46:35.0184 0x03dc  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
22:46:35.0215 0x03dc  NDIS - ok
22:46:35.0231 0x03dc  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
22:46:35.0231 0x03dc  NdisCap - ok
22:46:35.0231 0x03dc  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
22:46:35.0246 0x03dc  NdisTapi - ok
22:46:35.0246 0x03dc  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
22:46:35.0246 0x03dc  Ndisuio - ok
22:46:35.0262 0x03dc  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
22:46:35.0262 0x03dc  NdisWan - ok
22:46:35.0278 0x03dc  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
22:46:35.0278 0x03dc  NDProxy - ok
22:46:35.0293 0x03dc  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
22:46:35.0293 0x03dc  NetBIOS - ok
22:46:35.0309 0x03dc  [ E47D571FEC2C76E867935109AB2A770C, F349D25890B6F476B106FD75BFB081DB737CA9B224D95E44927942FFF2DF82CD ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
22:46:35.0324 0x03dc  NetBT - ok
22:46:35.0324 0x03dc  [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] Netlogon        C:\Windows\system32\lsass.exe
22:46:35.0340 0x03dc  Netlogon - ok
22:46:35.0356 0x03dc  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
22:46:35.0387 0x03dc  Netman - ok
22:46:35.0402 0x03dc  [ 0A84CDBA132359052C017888C2DFC8E6, C1B0524171E8E2BF2209747D4129018A38F8AC7737670B362CE9F691D57E8C07 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:35.0402 0x03dc  NetMsmqActivator - ok
22:46:35.0418 0x03dc  [ 0A84CDBA132359052C017888C2DFC8E6, C1B0524171E8E2BF2209747D4129018A38F8AC7737670B362CE9F691D57E8C07 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:35.0418 0x03dc  NetPipeActivator - ok
22:46:35.0449 0x03dc  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
22:46:35.0480 0x03dc  netprofm - ok
22:46:35.0480 0x03dc  [ 0A84CDBA132359052C017888C2DFC8E6, C1B0524171E8E2BF2209747D4129018A38F8AC7737670B362CE9F691D57E8C07 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:35.0480 0x03dc  NetTcpActivator - ok
22:46:35.0496 0x03dc  [ 0A84CDBA132359052C017888C2DFC8E6, C1B0524171E8E2BF2209747D4129018A38F8AC7737670B362CE9F691D57E8C07 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
22:46:35.0496 0x03dc  NetTcpPortSharing - ok
22:46:35.0512 0x03dc  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
22:46:35.0512 0x03dc  nfrd960 - ok
22:46:35.0543 0x03dc  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
22:46:35.0560 0x03dc  NlaSvc - ok
22:46:35.0576 0x03dc  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
22:46:35.0576 0x03dc  Npfs - ok
22:46:35.0576 0x03dc  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
22:46:35.0576 0x03dc  nsi - ok
22:46:35.0592 0x03dc  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
22:46:35.0592 0x03dc  nsiproxy - ok
22:46:35.0654 0x03dc  [ 47B2D0B31BDC3EBE6090228E2BA3764D, 984A4B38300954164BCBF57EC1A09C18B53779E60A26E9618B50E26016735787 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
22:46:35.0718 0x03dc  Ntfs - ok
22:46:35.0734 0x03dc  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
22:46:35.0734 0x03dc  Null - ok
22:46:35.0765 0x03dc  [ E366A5681C50785D4ED04FCFD65C3415, 7FF7B4B8F09E773401AE879897E60BF494B57B9ACEE990204A4C98A3FB183A33 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
22:46:35.0765 0x03dc  NVHDA - ok
22:46:36.0124 0x03dc  [ 5D89C0070BC2643117CF33D0367AFABA, C245E0C0DB6665B6226B4D188F620272C175F0FEA63617ECA45B4FA86273E20C ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
22:46:36.0436 0x03dc  nvlddmkm - ok
22:46:36.0530 0x03dc  [ 45D6780D0525D7BC29E2E3605CA73C18, C8BBE8BE9824CD1D3C4314FE370FA03BD6000187B4FC4FC935F8342E1A02FA7E ] NvNetworkService C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
22:46:36.0592 0x03dc  NvNetworkService - ok
22:46:36.0608 0x03dc  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
22:46:36.0608 0x03dc  nvraid - ok
22:46:36.0623 0x03dc  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
22:46:36.0623 0x03dc  nvstor - ok
22:46:36.0686 0x03dc  [ A0D870DCE152EE5B92A41AD927201D19, 67FB025CB380D933BF0FDD4AFE9BE4E3C1D69A59865E02A96533BBE9EC260D71 ] NvStreamKms     C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys
22:46:36.0686 0x03dc  NvStreamKms - ok
22:46:37.0139 0x03dc  [ E5597D09E5239C0F908948DB7057AC26, A6045D4D9D2F8007B0F75DAAABB2AD9FEB4A898E33A51ECE9A9D788D8E8F84A4 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
22:46:37.0576 0x03dc  NvStreamSvc - ok
22:46:37.0638 0x03dc  [ C5647FB500C2A1F946B77C953528042D, E0A53D158B2141EBBE6762165154B4DE9524E6BD3AD7247B6D25AC96E0A34AA0 ] nvsvc           C:\Windows\system32\nvvsvc.exe
22:46:37.0685 0x03dc  nvsvc - ok
22:46:37.0685 0x03dc  [ 75034A4D7C02327D150B617571D4196A, 8E7DAFEC4307E883D52BD0B5F0732E26E019C953770B52ACBBAD3074A66393CB ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
22:46:37.0685 0x03dc  nvvad_WaveExtensible - ok
22:46:37.0701 0x03dc  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
22:46:37.0716 0x03dc  nv_agp - ok
22:46:37.0732 0x03dc  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
22:46:37.0732 0x03dc  ohci1394 - ok
22:46:37.0764 0x03dc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
22:46:37.0780 0x03dc  p2pimsvc - ok
22:46:37.0811 0x03dc  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
22:46:37.0842 0x03dc  p2psvc - ok
22:46:37.0842 0x03dc  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
22:46:37.0858 0x03dc  Parport - ok
22:46:37.0873 0x03dc  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
22:46:37.0873 0x03dc  partmgr - ok
22:46:37.0904 0x03dc  [ 3CD83692C43D87088E85E3C916146FFB, 9E812535E8FBA045FDA30F68E9EB2031132C37721D542A2DC9D4C33E2B137FCF ] PcaSvc          C:\Windows\System32\pcasvc.dll
22:46:37.0904 0x03dc  PcaSvc - ok
22:46:37.0920 0x03dc  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
22:46:37.0920 0x03dc  pci - ok
22:46:37.0951 0x03dc  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
22:46:37.0951 0x03dc  pciide - ok
22:46:37.0967 0x03dc  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
22:46:37.0967 0x03dc  pcmcia - ok
22:46:37.0982 0x03dc  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
22:46:37.0982 0x03dc  pcw - ok
22:46:38.0029 0x03dc  [ EA4D67448BE493D543F1730D6CD04694, 24717C5E41B7CA522F3330EF2228B6685E710A5259396E9887A1C1E7A413F8CA ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
22:46:38.0060 0x03dc  PEAUTH - ok
22:46:38.0123 0x03dc  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
22:46:38.0123 0x03dc  PerfHost - ok
22:46:38.0185 0x03dc  [ BC5F8C5C7ACCD0B884FCB8B67616F537, 5C99E9D7E7095CED52B1F5F4A569E54F124602C573DD2B25731E0D57FDA22A27 ] pla             C:\Windows\system32\pla.dll
22:46:38.0232 0x03dc  pla - ok
22:46:38.0263 0x03dc  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
22:46:38.0279 0x03dc  PlugPlay - ok
22:46:38.0294 0x03dc  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
22:46:38.0294 0x03dc  PNRPAutoReg - ok
22:46:38.0326 0x03dc  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
22:46:38.0326 0x03dc  PNRPsvc - ok
22:46:38.0372 0x03dc  [ 80D6B0563ED2BF10656B1D4748331082, B7E6B5E1148B7EE537E8D5C3A65450876B61CD45A395267D08699746E98AD574 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
22:46:38.0404 0x03dc  PolicyAgent - ok
22:46:38.0419 0x03dc  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
22:46:38.0435 0x03dc  Power - ok
22:46:38.0450 0x03dc  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
22:46:38.0466 0x03dc  PptpMiniport - ok
22:46:38.0482 0x03dc  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
22:46:38.0482 0x03dc  Processor - ok
22:46:38.0513 0x03dc  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
22:46:38.0513 0x03dc  ProfSvc - ok
22:46:38.0528 0x03dc  [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] ProtectedStorage C:\Windows\system32\lsass.exe
22:46:38.0528 0x03dc  ProtectedStorage - ok
22:46:38.0544 0x03dc  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
22:46:38.0560 0x03dc  Psched - ok
22:46:38.0606 0x03dc  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
22:46:38.0669 0x03dc  ql2300 - ok
22:46:38.0700 0x03dc  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
22:46:38.0716 0x03dc  ql40xx - ok
22:46:38.0731 0x03dc  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
22:46:38.0747 0x03dc  QWAVE - ok
22:46:38.0762 0x03dc  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
22:46:38.0763 0x03dc  QWAVEdrv - ok
22:46:38.0779 0x03dc  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
22:46:38.0779 0x03dc  RasAcd - ok
22:46:38.0795 0x03dc  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
22:46:38.0795 0x03dc  RasAgileVpn - ok
22:46:38.0810 0x03dc  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
22:46:38.0810 0x03dc  RasAuto - ok
22:46:38.0826 0x03dc  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
22:46:38.0826 0x03dc  Rasl2tp - ok
22:46:38.0841 0x03dc  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
22:46:38.0857 0x03dc  RasMan - ok
22:46:38.0873 0x03dc  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
22:46:38.0888 0x03dc  RasPppoe - ok
22:46:38.0888 0x03dc  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
22:46:38.0888 0x03dc  RasSstp - ok
22:46:38.0919 0x03dc  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
22:46:38.0935 0x03dc  rdbss - ok
22:46:38.0935 0x03dc  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
22:46:38.0951 0x03dc  rdpbus - ok
22:46:38.0966 0x03dc  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
22:46:38.0966 0x03dc  RDPCDD - ok
22:46:38.0982 0x03dc  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
22:46:38.0982 0x03dc  RDPENCDD - ok
22:46:38.0982 0x03dc  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
22:46:38.0997 0x03dc  RDPREFMP - ok
22:46:39.0076 0x03dc  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
22:46:39.0092 0x03dc  RdpVideoMiniport - ok
22:46:39.0139 0x03dc  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
22:46:39.0139 0x03dc  RDPWD - ok
22:46:39.0154 0x03dc  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
22:46:39.0170 0x03dc  rdyboost - ok
22:46:39.0186 0x03dc  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
22:46:39.0186 0x03dc  RemoteAccess - ok
22:46:39.0217 0x03dc  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
22:46:39.0217 0x03dc  RemoteRegistry - ok
22:46:39.0232 0x03dc  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
22:46:39.0232 0x03dc  RpcEptMapper - ok
22:46:39.0264 0x03dc  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
22:46:39.0264 0x03dc  RpcLocator - ok
22:46:39.0295 0x03dc  [ 5E9F8D029D9B03110D835CBFC058068B, 038FDF99C643C8102026BA26A75899A56E91AD0C239DF71AA5443FD35C718C78 ] RpcSs           C:\Windows\system32\rpcss.dll
22:46:39.0310 0x03dc  RpcSs - ok
22:46:39.0310 0x03dc  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
22:46:39.0310 0x03dc  rspndr - ok
22:46:39.0357 0x03dc  [ 7EA8D2EB9BBFD2AB8A3117A1E96D3B3A, 9F6CFBE7E64A63E0AFEF546C4B8D889657B2055CE80279EA1B63EB5650E730F8 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
22:46:39.0388 0x03dc  RTL8167 - ok
22:46:39.0404 0x03dc  [ 2362226743449C713E1CD3210595F9AB, BF67F04BBDEAE83A1A298FBA8360722A735D42574914526AEFDAE99548CCEA80 ] rtl819xpn64     C:\Windows\system32\DRIVERS\rtl819xp.sys
22:46:39.0435 0x03dc  rtl819xpn64 - ok
22:46:39.0451 0x03dc  [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] SamSs           C:\Windows\system32\lsass.exe
22:46:39.0451 0x03dc  SamSs - ok
22:46:39.0466 0x03dc  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
22:46:39.0466 0x03dc  sbp2port - ok
22:46:39.0482 0x03dc  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
22:46:39.0498 0x03dc  SCardSvr - ok
22:46:39.0513 0x03dc  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
22:46:39.0513 0x03dc  scfilter - ok
22:46:39.0560 0x03dc  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
22:46:39.0607 0x03dc  Schedule - ok
22:46:39.0622 0x03dc  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
22:46:39.0622 0x03dc  SCPolicySvc - ok
22:46:39.0638 0x03dc  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
22:46:39.0638 0x03dc  SDRSVC - ok
22:46:39.0669 0x03dc  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
22:46:39.0669 0x03dc  secdrv - ok
22:46:39.0685 0x03dc  [ A19623BDD61E66A12AB53992002B4F3A, E351CEEC086084A417BA3BD0EEF46114D3147EC38E3EF8BE49B724F9D028CC56 ] seclogon        C:\Windows\system32\seclogon.dll
22:46:39.0685 0x03dc  seclogon - ok
22:46:39.0700 0x03dc  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
22:46:39.0700 0x03dc  SENS - ok
22:46:39.0716 0x03dc  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
22:46:39.0716 0x03dc  SensrSvc - ok
22:46:39.0732 0x03dc  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
22:46:39.0732 0x03dc  Serenum - ok
22:46:39.0763 0x03dc  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
22:46:39.0763 0x03dc  Serial - ok
22:46:39.0763 0x03dc  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
22:46:39.0778 0x03dc  sermouse - ok
22:46:39.0794 0x03dc  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
22:46:39.0794 0x03dc  SessionEnv - ok
22:46:39.0810 0x03dc  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
22:46:39.0810 0x03dc  sffdisk - ok
22:46:39.0825 0x03dc  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
22:46:39.0825 0x03dc  sffp_mmc - ok
22:46:39.0825 0x03dc  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
22:46:39.0825 0x03dc  sffp_sd - ok
22:46:39.0841 0x03dc  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
22:46:39.0841 0x03dc  sfloppy - ok
22:46:39.0872 0x03dc  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
22:46:39.0888 0x03dc  SharedAccess - ok
22:46:39.0903 0x03dc  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
22:46:39.0934 0x03dc  ShellHWDetection - ok
22:46:39.0950 0x03dc  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
22:46:39.0950 0x03dc  SiSRaid2 - ok
22:46:39.0966 0x03dc  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
22:46:39.0966 0x03dc  SiSRaid4 - ok
22:46:40.0028 0x03dc  [ E6DA1192D36D2D29FF8387917C2D70A6, 6F6AB7A2E45D7E05F5ED0B08B1ED9FFA03BDBFAF5E80F8B9E2C4D6CF6F74B851 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
22:46:40.0044 0x03dc  SkypeUpdate - ok
22:46:40.0075 0x03dc  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
22:46:40.0075 0x03dc  Smb - ok
22:46:40.0090 0x03dc  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
22:46:40.0090 0x03dc  SNMPTRAP - ok
22:46:40.0106 0x03dc  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
22:46:40.0106 0x03dc  spldr - ok
22:46:40.0137 0x03dc  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
22:46:40.0168 0x03dc  Spooler - ok
22:46:40.0262 0x03dc  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
22:46:40.0356 0x03dc  sppsvc - ok
22:46:40.0371 0x03dc  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
22:46:40.0387 0x03dc  sppuinotify - ok
22:46:40.0418 0x03dc  [ 546C81F238F084A393EC54114741A0A8, AA223A2A8E8503CBDB0CE6A70620B372E0591070F9FF7D8532A93B54EF7B7E51 ] srv             C:\Windows\system32\DRIVERS\srv.sys
22:46:40.0449 0x03dc  srv - ok
22:46:40.0480 0x03dc  [ 431D2B06E8F93EAEC53E8FA37FCFF2F1, 4CB94D250E9D2646FCE7284D4D3CED1BB02E4D79AD33A414D16EF794195868CA ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
22:46:40.0496 0x03dc  srv2 - ok
22:46:40.0543 0x03dc  [ 42EDAB3E3E8E25C7093674936C2DB4BD, B2D5E006B748F24F0FF2CEFFC3D056F3D50E8A818BDFF4231C87C022A25F44ED ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
22:46:40.0543 0x03dc  srvnet - ok
22:46:40.0590 0x03dc  [ 8F8324ED1DE63FFC7B1A02CD2D963C72, E58603F81DEAFF1D45CB83FB6E625E6A13868741B833B1C9E60D672179D18EE0 ] ssadbus         C:\Windows\system32\DRIVERS\ssadbus.sys
22:46:40.0590 0x03dc  ssadbus - ok
22:46:40.0621 0x03dc  [ 58221EFCB74167B73667F0024C661CE0, D9B67A8897B4DC3E4729187F17ABEB4710CF57440D718E17ED828439198D34DB ] ssadmdfl        C:\Windows\system32\DRIVERS\ssadmdfl.sys
22:46:40.0621 0x03dc  ssadmdfl - ok
22:46:40.0636 0x03dc  [ 4DA7C71BFAC5AD71255B7E4CAB980163, 4CC0F9C8E96ECEF36EEB021E448A9734B63512D030516DC38B1A2EEAA1043AEC ] ssadmdm         C:\Windows\system32\DRIVERS\ssadmdm.sys
22:46:40.0636 0x03dc  ssadmdm - ok
22:46:40.0668 0x03dc  [ D33D1BD3EC0E766211A234F56A12726D, 53EEAA94865554F8422D111D717B548DF553B5B8647D2A45F3718BF4AEEBEC27 ] ssadserd        C:\Windows\system32\DRIVERS\ssadserd.sys
22:46:40.0668 0x03dc  ssadserd - ok
22:46:40.0699 0x03dc  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
22:46:40.0699 0x03dc  SSDPSRV - ok
22:46:40.0730 0x03dc  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
22:46:40.0730 0x03dc  SstpSvc - ok
22:46:40.0808 0x03dc  [ A4FC868F6FC03876E29E4D87731B8E31, C774DA022879A69CBC2178CA1BB779438CD69D1582B4ECF22C90E4F0C4E9D9E4 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
22:46:40.0839 0x03dc  Steam Client Service - ok
22:46:40.0980 0x03dc  [ 32B37DD6E7D423DF3CF3B196C8005F85, 5989DD72AB03009625D5A49CC05D7955D07E3A933AEB292882F22928C5D60565 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
22:46:40.0995 0x03dc  Stereo Service - ok
22:46:41.0011 0x03dc  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
22:46:41.0011 0x03dc  stexstor - ok
22:46:41.0059 0x03dc  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
22:46:41.0090 0x03dc  stisvc - ok
22:46:41.0105 0x03dc  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
22:46:41.0105 0x03dc  swenum - ok
22:46:41.0168 0x03dc  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:46:41.0199 0x03dc  SwitchBoard - ok
22:46:41.0230 0x03dc  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
22:46:41.0261 0x03dc  swprv - ok
22:46:41.0339 0x03dc  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
22:46:41.0402 0x03dc  SysMain - ok
22:46:41.0417 0x03dc  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
22:46:41.0417 0x03dc  TabletInputService - ok
22:46:41.0433 0x03dc  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
22:46:41.0449 0x03dc  TapiSrv - ok
22:46:41.0542 0x03dc  [ 351A21ED3971ADD558956FF3EB0F6FED, 44C3A5452F120E9D29FB9840E811CF0C1D7D8F675ED1B2E501C746A4CC0BF8A7 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
22:46:41.0605 0x03dc  Tcpip - ok
22:46:41.0667 0x03dc  [ 351A21ED3971ADD558956FF3EB0F6FED, 44C3A5452F120E9D29FB9840E811CF0C1D7D8F675ED1B2E501C746A4CC0BF8A7 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
22:46:41.0698 0x03dc  TCPIP6 - ok
22:46:41.0729 0x03dc  [ 7FE5586314EE7D6AA8483264A089E5AF, 4E3EA68713A45C22F1B9A1AA125E15D06D0C5E637B815537431ADFB6D7563879 ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
22:46:41.0729 0x03dc  tcpipreg - ok
22:46:41.0761 0x03dc  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
22:46:41.0761 0x03dc  TDPIPE - ok
22:46:41.0776 0x03dc  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
22:46:41.0776 0x03dc  TDTCP - ok
22:46:41.0807 0x03dc  [ EC75A942C32F7F405659D86156DCE4C5, 01EA22B0F8ADD1674E3DE785F5ABC3C0F0DAE42E69CD9EEADDDCDDD4C652CBFD ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
22:46:41.0807 0x03dc  tdx - ok
22:46:41.0807 0x03dc  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
22:46:41.0807 0x03dc  TermDD - ok
22:46:41.0854 0x03dc  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
22:46:41.0885 0x03dc  TermService - ok
22:46:41.0901 0x03dc  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
22:46:41.0917 0x03dc  Themes - ok
22:46:41.0932 0x03dc  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
22:46:41.0932 0x03dc  THREADORDER - ok
22:46:41.0948 0x03dc  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
22:46:41.0948 0x03dc  TrkWks - ok
22:46:41.0995 0x03dc  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
22:46:41.0995 0x03dc  TrustedInstaller - ok
22:46:42.0010 0x03dc  [ 19BEDA57F3E0A06B8D5EB6D619BD5624, 952D5FAFD662C93628C12A6F7EB8E240A44216C0A15CBD2F5016BC357CBFE821 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
22:46:42.0010 0x03dc  tssecsrv - ok
22:46:42.0026 0x03dc  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
22:46:42.0026 0x03dc  TsUsbFlt - ok
22:46:42.0057 0x03dc  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
22:46:42.0057 0x03dc  TsUsbGD - ok
22:46:42.0073 0x03dc  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
22:46:42.0073 0x03dc  tunnel - ok
22:46:42.0088 0x03dc  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
22:46:42.0088 0x03dc  uagp35 - ok
22:46:42.0119 0x03dc  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
22:46:42.0135 0x03dc  udfs - ok
22:46:42.0151 0x03dc  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
22:46:42.0151 0x03dc  UI0Detect - ok
22:46:42.0166 0x03dc  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
22:46:42.0166 0x03dc  uliagpkx - ok
22:46:42.0197 0x03dc  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
22:46:42.0197 0x03dc  umbus - ok
22:46:42.0213 0x03dc  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
22:46:42.0213 0x03dc  UmPass - ok
22:46:42.0229 0x03dc  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
22:46:42.0260 0x03dc  upnphost - ok
22:46:42.0291 0x03dc  [ 28B81917A195B67617AF7DCF4DFE5736, 40A4D2AAE1BDE5ABA8708ED150396E913C566ECD5CDA40D6C6DB256F1B9FD4A9 ] usbccgp         C:\Windows\system32\drivers\usbccgp.sys
22:46:42.0291 0x03dc  usbccgp - ok
22:46:42.0322 0x03dc  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
22:46:42.0322 0x03dc  usbcir - ok
22:46:42.0338 0x03dc  [ B626F048318DAE65A3317F0592BE592C, 284D8FFE1D35F852EFDA182A72288AC3A10D6ED825FE2CC5812497D3FE291AF1 ] usbehci         C:\Windows\system32\drivers\usbehci.sys
22:46:42.0338 0x03dc  usbehci - ok
22:46:42.0353 0x03dc  [ 390109E8E05BA00375DCB1ED64DC60AF, B8628502590B423BEFB6F7C8C69FAD0667AD0746FF6B444EE02016E8E1052B78 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
22:46:42.0369 0x03dc  usbhub - ok
22:46:42.0385 0x03dc  [ B4DF0F4C1D9D25DFE1DAD1D8670F1D4F, 4317C2DEDC639527B53864BAEC46CBE022D298C0503E29E1072DD1C851D92BFC ] usbohci         C:\Windows\system32\drivers\usbohci.sys
22:46:42.0385 0x03dc  usbohci - ok
22:46:42.0416 0x03dc  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
22:46:42.0416 0x03dc  usbprint - ok
22:46:42.0431 0x03dc  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
22:46:42.0431 0x03dc  usbscan - ok
22:46:42.0463 0x03dc  [ D029DD09E22EB24318A8FC3D8138BA43, C95805E8BF75ECB939520AE86420B16467B0771C161C51C9F1A37649ADFADCD0 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:46:42.0463 0x03dc  USBSTOR - ok
22:46:42.0478 0x03dc  [ CFEAAF96E666E3DCBD8F6DFF516784AE, 006218A3DB5851790CC0A7F3DCD7B3AF82F624DA679296DE507AFD36C5468317 ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
22:46:42.0478 0x03dc  usbuhci - ok
22:46:42.0494 0x03dc  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
22:46:42.0494 0x03dc  UxSms - ok
22:46:42.0509 0x03dc  [ 7404CDF0B904C6B8AA36C1D167D9F286, 3194BF2EC8078E1EE5FAC0F1C35463629DB106B84D309052F47D0DD39595287E ] VaultSvc        C:\Windows\system32\lsass.exe
22:46:42.0509 0x03dc  VaultSvc - ok
22:46:42.0541 0x03dc  VBoxAswDrv - ok
22:46:42.0572 0x03dc  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
22:46:42.0572 0x03dc  vdrvroot - ok
22:46:42.0603 0x03dc  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
22:46:42.0619 0x03dc  vds - ok
22:46:42.0634 0x03dc  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
22:46:42.0634 0x03dc  vga - ok
22:46:42.0650 0x03dc  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
22:46:42.0650 0x03dc  VgaSave - ok
22:46:42.0681 0x03dc  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
22:46:42.0681 0x03dc  vhdmp - ok
22:46:42.0697 0x03dc  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
22:46:42.0697 0x03dc  viaide - ok
22:46:42.0712 0x03dc  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
22:46:42.0712 0x03dc  volmgr - ok
22:46:42.0743 0x03dc  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
22:46:42.0759 0x03dc  volmgrx - ok
22:46:42.0790 0x03dc  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
22:46:42.0806 0x03dc  volsnap - ok
22:46:42.0837 0x03dc  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
22:46:42.0837 0x03dc  vsmraid - ok
22:46:42.0899 0x03dc  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
22:46:42.0946 0x03dc  VSS - ok
22:46:42.0962 0x03dc  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
22:46:42.0962 0x03dc  vwifibus - ok
22:46:42.0977 0x03dc  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
22:46:42.0977 0x03dc  vwififlt - ok
22:46:42.0993 0x03dc  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
22:46:42.0993 0x03dc  vwifimp - ok
22:46:43.0009 0x03dc  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
22:46:43.0040 0x03dc  W32Time - ok
22:46:43.0056 0x03dc  [ 90A7D70E48A69F6E4FFB49440674B3B8, 6C31BE40D9FF3C91B420AB2CFF17FA0D463BD97DF94B9CFCB8735A9EBC8FDFB0 ] WacHidRouter    C:\Windows\system32\DRIVERS\wachidrouter.sys
22:46:43.0072 0x03dc  WacHidRouter - ok
22:46:43.0072 0x03dc  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
22:46:43.0072 0x03dc  WacomPen - ok
22:46:43.0103 0x03dc  [ A46EA18DFA3CB657732909570F021578, 36A87A8A3402BBD79367B6F0D9C59C3BAF18AAE154A273DA067D7F08A7B94CC8 ] wacomrouterfilter C:\Windows\system32\DRIVERS\wacomrouterfilter.sys
22:46:43.0103 0x03dc  wacomrouterfilter - ok
22:46:43.0119 0x03dc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
22:46:43.0119 0x03dc  WANARP - ok
22:46:43.0134 0x03dc  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
22:46:43.0134 0x03dc  Wanarpv6 - ok
22:46:43.0197 0x03dc  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
22:46:43.0228 0x03dc  WatAdminSvc - ok
22:46:43.0290 0x03dc  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
22:46:43.0337 0x03dc  wbengine - ok
22:46:43.0353 0x03dc  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
22:46:43.0368 0x03dc  WbioSrvc - ok
22:46:43.0384 0x03dc  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
22:46:43.0415 0x03dc  wcncsvc - ok
22:46:43.0431 0x03dc  [ BC00873272B3771CCDA38336AF2B4D4B, 3E412DEC5F172B4C5FD5C227CD790EE56B90A00A8B538704E8F973D230BE2289 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
22:46:43.0446 0x03dc  WcsPlugInService - ok
22:46:43.0446 0x03dc  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
22:46:43.0446 0x03dc  Wd - ok
22:46:43.0493 0x03dc  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
22:46:43.0524 0x03dc  Wdf01000 - ok
22:46:43.0571 0x03dc  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
22:46:43.0571 0x03dc  WdiServiceHost - ok
22:46:43.0571 0x03dc  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
22:46:43.0587 0x03dc  WdiSystemHost - ok
22:46:43.0618 0x03dc  [ EE841B6D1F2B9508D3ABAE52AC05A94F, F1AE981FCDBFC4672A4EABABD41382E93762EFC2EDAD96E75530E7ACA5AF1FD8 ] WebClient       C:\Windows\System32\webclnt.dll
22:46:43.0634 0x03dc  WebClient - ok
22:46:43.0649 0x03dc  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
22:46:43.0665 0x03dc  Wecsvc - ok
22:46:43.0665 0x03dc  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
22:46:43.0680 0x03dc  wercplsupport - ok
22:46:43.0696 0x03dc  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
22:46:43.0712 0x03dc  WerSvc - ok
22:46:43.0727 0x03dc  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
22:46:43.0727 0x03dc  WfpLwf - ok
22:46:43.0743 0x03dc  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
22:46:43.0743 0x03dc  WIMMount - ok
22:46:43.0758 0x03dc  WinDefend - ok
22:46:43.0774 0x03dc  WinHttpAutoProxySvc - ok
22:46:43.0805 0x03dc  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
22:46:43.0821 0x03dc  Winmgmt - ok
22:46:43.0899 0x03dc  [ EBDA1B0F15CB9B2CBCC6C94824E4E054, C51314F7D611E4903DA00EFA8EB99365414436324D256083CE0B5A8E055E8E06 ] WinRM           C:\Windows\system32\WsmSvc.dll
22:46:43.0961 0x03dc  WinRM - ok
22:46:44.0024 0x03dc  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
22:46:44.0024 0x03dc  WinUsb - ok
22:46:44.0055 0x03dc  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
22:46:44.0086 0x03dc  Wlansvc - ok
22:46:44.0195 0x03dc  [ 98F138897EF4246381D197CB81846D62, A9FA88475AFBB8883297708608EC7C1AC29F229C3299A84D557172604813A18C ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
22:46:44.0258 0x03dc  wlidsvc - ok
22:46:44.0289 0x03dc  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
22:46:44.0289 0x03dc  WmiAcpi - ok
22:46:44.0304 0x03dc  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
22:46:44.0320 0x03dc  wmiApSrv - ok
22:46:44.0336 0x03dc  WMPNetworkSvc - ok
22:46:44.0367 0x03dc  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
22:46:44.0367 0x03dc  WPCSvc - ok
22:46:44.0382 0x03dc  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
22:46:44.0382 0x03dc  WPDBusEnum - ok
22:46:44.0398 0x03dc  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
22:46:44.0398 0x03dc  ws2ifsl - ok
22:46:44.0414 0x03dc  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
22:46:44.0414 0x03dc  wscsvc - ok
22:46:44.0414 0x03dc  WSearch - ok
22:46:44.0507 0x03dc  [ 6F6F1A862FBC10F8FC7634ABBC651EA2, 2EBC3080205A00368D98066A61708A7DAFBC90974F3D603053F7048B81F195E0 ] WTabletServicePro C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
22:46:44.0538 0x03dc  WTabletServicePro - ok
22:46:44.0632 0x03dc  [ F24A345C584EC2EFC49F9F375EBDA2A5, 85FBB211CA2320363B5503E06AC23C6A89007D3777D696DF6D7ADB2369965ECD ] wuauserv        C:\Windows\system32\wuaueng.dll
22:46:44.0710 0x03dc  wuauserv - ok
22:46:44.0726 0x03dc  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
22:46:44.0726 0x03dc  WudfPf - ok
22:46:44.0741 0x03dc  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
22:46:44.0741 0x03dc  WUDFRd - ok
22:46:44.0757 0x03dc  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
22:46:44.0757 0x03dc  wudfsvc - ok
22:46:44.0788 0x03dc  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
22:46:44.0804 0x03dc  WwanSvc - ok
22:46:44.0819 0x03dc  ================ Scan global ===============================
22:46:44.0850 0x03dc  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
22:46:44.0882 0x03dc  [ C635B3578DBAFB1E03497C0D2F2418A5, 697454B3EC86078F0C37C258BDEDA8E2798BB574B0C11E652D4A0141E827174C ] C:\Windows\system32\winsrv.dll
22:46:44.0897 0x03dc  [ C635B3578DBAFB1E03497C0D2F2418A5, 697454B3EC86078F0C37C258BDEDA8E2798BB574B0C11E652D4A0141E827174C ] C:\Windows\system32\winsrv.dll
22:46:44.0913 0x03dc  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
22:46:44.0944 0x03dc  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
22:46:44.0975 0x03dc  [ Global ] - ok
22:46:44.0975 0x03dc  ================ Scan MBR ==================================
22:46:44.0975 0x03dc  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
22:46:45.0241 0x03dc  \Device\Harddisk0\DR0 - ok
22:46:45.0241 0x03dc  ================ Scan VBR ==================================
22:46:45.0241 0x03dc  [ 60007249AB80CAAB4DE1AC57E010EBE1 ] \Device\Harddisk0\DR0\Partition1
22:46:45.0241 0x03dc  \Device\Harddisk0\DR0\Partition1 - ok
22:46:45.0241 0x03dc  [ C855C0A9D8133A0A49381B66A082BD27 ] \Device\Harddisk0\DR0\Partition2
22:46:45.0241 0x03dc  \Device\Harddisk0\DR0\Partition2 - ok
22:46:45.0241 0x03dc  [ 5917605CE58AB563D6FEE9ECCE28E2EF ] \Device\Harddisk0\DR0\Partition3
22:46:45.0241 0x03dc  \Device\Harddisk0\DR0\Partition3 - ok
22:46:45.0241 0x03dc  ================ Scan generic autorun ======================
22:46:45.0522 0x03dc  [ 899886E81E666D147036C9358FA94A01, D128722D325DFE300D37DC924412E12CAF2E3BB1D674EAB60C7F95A9B2728D87 ] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
22:46:45.0756 0x03dc  RtHDVCpl - ok
22:46:45.0834 0x03dc  [ 48515EEA1608ECD83FE26C7490460F59, C7C552D13ED12B4165FDE45F69E170D4F18B746D84B3B08E7254AAF8D9671D0C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
22:46:45.0865 0x03dc  AdobeAAMUpdater-1.0 - ok
22:46:45.0943 0x03dc  [ 05470C684B62C2F86325D8685E4513CB, EDE70A162AFA104D774AE1D8D3A077F2C12940851EC5BA785242F4032EEA902E ] C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
22:46:46.0021 0x03dc  NvBackend - ok
22:46:46.0037 0x03dc  [ DD81D91FF3B0763C392422865C9AC12E, F5691B8F200E3196E6808E932630E862F8F26F31CD949981373F23C9D87DB8B9 ] C:\Windows\system32\rundll32.exe
22:46:46.0037 0x03dc  ShadowPlay - ok
22:46:46.0068 0x03dc  [ 8DD6F98101EBBA3FC92C8092333A6B32, 80FE7E4433731614B92F8C0256EA5440508C535EBDA45188D1225BFEDA6F0F67 ] C:\Program Files\AVAST Software\Avast\AvLaunch.exe
22:46:46.0084 0x03dc  AvastUI.exe - ok
22:46:46.0099 0x03dc  [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
22:46:46.0099 0x03dc  SwitchBoard - ok
22:46:46.0177 0x03dc  [ E1636F57581CAB5D995FD54D2991EF57, BB6B3D005054D386D596A4BA4D9D2F1284D7C845C1CD5EE63775B4569559E0EB ] C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe
22:46:46.0224 0x03dc  AdobeCS5.5ServiceManager - ok
22:46:46.0255 0x03dc  [ E971C2901BC0E9934D01D84AD127FAAF, 2DC4B1D898430CD152B16D0909C9DEF252579F91E093632E78D47F77CBFDC843 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
22:46:46.0255 0x03dc  APSDaemon - ok
22:46:46.0365 0x03dc  [ 9DA1DA12855A1CA6BEF78185552F1DFA, 1A76AE144009DFAAEC560DDECBDE0FFFB2B9466236A369BCCB5A16D5FDE5EDA6 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
22:46:46.0443 0x03dc  Adobe Creative Cloud - ok
22:46:46.0536 0x03dc  [ 9582680F41C0C4C6E6A2ACCADD7E723E, FC1B9973D679B43B0D476252532A3A5009E94CF79D0757A1DAC422E8EEA6D2A6 ] C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe
22:46:46.0552 0x03dc  ADSKAppManager - ok
22:46:46.0630 0x03dc  [ 34D296AFC913E302953C70463EF09A48, BC413307CBC56C039EE8A05B51A56E14EF59678FBB33815AEB320078056C8CE7 ] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
22:46:46.0630 0x03dc  HP Software Update - ok
22:46:46.0692 0x03dc  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:46:46.0723 0x03dc  Sidebar - ok
22:46:46.0755 0x03dc  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:46:46.0755 0x03dc  mctadmin - ok
22:46:46.0801 0x03dc  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
22:46:46.0817 0x03dc  Sidebar - ok
22:46:46.0817 0x03dc  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
22:46:46.0817 0x03dc  mctadmin - ok
22:46:46.0848 0x03dc  GoogleDriveSync - ok
22:46:46.0926 0x03dc  [ E3BF29CED96790CDAAFA981FFDDF53A3, 76CB27EF7B27E5636EDA9D95229519B2A2870729A0BB694F1FD11CD602BAC4DC ] C:\Program Files\Windows Sidebar\sidebar.exe
22:46:46.0957 0x03dc  Sidebar - ok
22:46:47.0035 0x03dc  [ A12401E177E869FB3C24902E489C9A63, EC877F3100414CB66D99BED6C7A63A08EC8BCB4E7D6A3930D5FD099A8A007049 ] C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe
22:46:47.0067 0x03dc  Adobe Acrobat Synchronizer - ok
22:46:47.0146 0x03dc  [ A1F58FFF448E4099297D6EE0641D4D0E, 47839789332AAF8861F7731BF2D3FBB5E0991EA0D0B457BB4C8C1784F76C73DC ] C:\Users\Andy\AppData\Local\Dropbox\Update\DropboxUpdate.exe
22:46:47.0146 0x03dc  Dropbox Update - ok
22:46:47.0224 0x03dc  [ 243F49E6B1AA97E01876020E17BDB4A9, 97E9CE8E9F1A77599B85B5952520B7D8BDDCE215F7EADAA884BA9F7E0D5BE568 ] C:\Users\Andy\AppData\Roaming\Spotify\SpotifyWebHelper.exe
22:46:47.0270 0x03dc  Spotify Web Helper - ok
22:46:47.0270 0x03dc  Waiting for KSN requests completion. In queue: 104
22:46:48.0300 0x03dc  AV detected via SS2: Avast Antivirus, C:\Program Files\AVAST Software\Avast\wsc_proxy.exe ( 17.4.3482.0 ), 0x41000 ( enabled : updated )
22:46:48.0300 0x03dc  FW detected via SS2: Avast Antivirus, C:\Program Files\AVAST Software\Avast\wsc_proxy.exe ( 17.4.3482.0 ), 0x41010 ( enabled )
22:46:48.0895 0x03dc  ============================================================
22:46:48.0895 0x03dc  Scan finished
22:46:48.0895 0x03dc  ============================================================
22:46:48.0895 0x1924  Detected object count: 0
22:46:48.0895 0x1924  Actual detected object count: 0


#11 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,153 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:04:13 AM

Posted 15 May 2017 - 05:04 PM

Any more hits on your firewall?

 

Download Sophos Virus Removal Tool and save it to your desktop.

 

  1. Double-click on the EXE file you downloaded to launch the Installation Wizard.

  2. Follow the Install Wizard prompts to install Sophos.

  3. Once all the virus definitions are done updating, click Start Scanning.

  4. If no threats are found, just close the program. If threats are found, click Details, the View Log File.

  5. Copy and paste the logfile into your reply. Close the threat details screen and then select Start Cleanup.

  6. Click Exit to quit the program.


Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#12 AndyP5000

AndyP5000
  • Topic Starter

  • Members
  • 123 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 16 May 2017 - 02:58 AM

No not had any hits since reporting - ive stuck to only a couple of pages as wanted to resolve this first.

 

Many more things to download after this one?

 

 

Sophos found nothing (clean)


Edited by AndyP5000, 16 May 2017 - 06:25 AM.


#13 iMacg3

iMacg3

    Bleepin' 68000


  • Malware Study Hall Senior
  • 1,153 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Indiana, USA
  • Local time:04:13 AM

Posted 16 May 2017 - 08:28 AM

No more things to download except a tool that cleans up all the malware removal programs.

 

Download Xplode Delfix and save it to your desktop.

 

  1. Run the Delfix file you downloaded.

  2. Make sure that Remove disinfecton tools is selected and that nothing else is checked. This will remove all the tools we used to clean up the malware.

  3. Click OK and paste the log file for Delfix into a post. Delete Delfix from your computer.

If you have any more concerns, please post in the Virus, Trojan, Spyware, and Malware removal logs section and read the guide before you post.

 

Good luck and happy computing!


Edited by iMacg3, 16 May 2017 - 08:28 AM.

Regards, iMacg3

"Do, or do not. There is no try." - Yoda

#14 AndyP5000

AndyP5000
  • Topic Starter

  • Members
  • 123 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 16 May 2017 - 05:30 PM

cheers


Edited by AndyP5000, 16 May 2017 - 06:02 PM.


#15 AndyP5000

AndyP5000
  • Topic Starter

  • Members
  • 123 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 17 May 2017 - 03:27 AM

Ok so i've had three more hits. Started on me starting up Chrome Browser- Time of hits plus time of me starting browser match.

 

The initial hits also seemed to be directed at Chrome. exe Or could it be a conflict between Chrome and Avast with Avast mistaking true Chrome items as false positives?

 

I have recently updated Avast with latest version so was wondering if its become super sensitive on the firewall?

 

I've just checked when Chrome updated last. According to my version it was updated on the 17th April, my initial firewall hits' were on the 19th and I reported Chrome not working 100% correctly on the 20th. 


Edited by AndyP5000, 17 May 2017 - 04:06 AM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users