Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

malisious .exe delivered via email [Solved]

Started by briz_dad , Jun 18 2014 11:01 PM

usps email executable

This topic is locked

#31
Essexboy

Posted 30 June 2014 - 11:15 AM

GeekU Moderator

Retired Staff
69,964 posts

Which programme deleted them ? As they were not reported in combofix or OTL

#32
briz_dad

Posted 30 June 2014 - 11:44 AM

Member

Topic Starter
Member
251 posts

MS Security Essentials is the one I think deleted it.

(I'm diving into work now - will be back up in a few hours... QB is back up and running courtesy of their "fix" program: QB_Component_Repair_Tool)

Edited by briz_dad, 30 June 2014 - 11:44 AM.

#33
Essexboy

Posted 30 June 2014 - 11:48 AM

GeekU Moderator

Retired Staff
69,964 posts

Phew

OK when you get the time if you could let me know of any outstanding problems

#34
briz_dad

Posted 30 June 2014 - 12:48 PM

Member

Topic Starter
Member
251 posts

FYI... machine seems to be running smooothly - i just ran the Malwarebytes program... all clean. :-)

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 6/30/2014
Scan Time: 11:33:23 AM
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.06.30.09
Rootkit Database: v2014.06.30.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Self-protection: Disabled

OS: Windows 7 Service Pack 1
CPU: x64
File System: NTFS
User: Greg

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 336665
Time Elapsed: 7 min, 38 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)

(end)

#35
Essexboy

Posted 30 June 2014 - 12:50 PM

GeekU Moderator

Retired Staff
69,964 posts

Excellent

In that case methinks I will send you on your merry way

Subject to no further problems

I will remove my tools now and give some recommendations, but, I would like you to run for 24 hours or so and come back if you have any problems

Now the best part of the day ----- Your log now appears clean :thumbsup:

A good workman always cleans up after himself so..The following will implement some cleanup procedures as well as reset System Restore points:

Download and run Delfix

Now that you are clean, to help protect your computer in the future I recommend that you get the following free programmes:

CryptoPrevent install this programme to lock down and prevent crypto ransome ware

Malwarebytes.

Update and run weekly to keep your system clean

It is critical to have both a firewall and anti virus to protect your system and to keep them updated.

To learn more about how to protect yourself while on the internet read this little guide Best security practices Keep safe :wave:

#36
briz_dad

Posted 01 July 2014 - 10:39 AM

Member

Topic Starter
Member
251 posts

I'm not sure what to do... I ran MS Security Essentials this morning, before I was to do your advised cleanup, and it found the following (screenshot attached as well):

Category: Virus

Description: This program is dangerous and replicates by infecting other files.

Recommended action: Remove this software immediately.

Items:
boot:\\.\PHYSICALDRIVE0\Partition0 (NTFS)

What do you advise?

Attached Thumbnails

#37
briz_dad

Posted 01 July 2014 - 10:41 AM

Member

Topic Starter
Member
251 posts

by the way, I did choose "Apply actions" to clean it.

I am running MS Security Essentials scan again - and will run Malwarebytes after if MSSE is a clean scan.

#38
briz_dad

Posted 01 July 2014 - 10:45 AM

Member

Topic Starter
Member
251 posts

2nd scan showed the same result - I'm choosing remove this time.

Attached Thumbnails

#39
briz_dad

Posted 01 July 2014 - 10:47 AM

Member

Topic Starter
Member
251 posts

scanning again with MSSE
also going to run Microsoft Safety Scanner

#40
Essexboy

Posted 01 July 2014 - 11:06 AM

GeekU Moderator

Retired Staff
69,964 posts

Intriguing there was no indication of this old bootkit on the logs. Both ESET and AswMBR detect this

Let me know the result please and we will go from there

#41
briz_dad

Posted 01 July 2014 - 01:56 PM

Member

Topic Starter
Member
251 posts

OK - Microsoft Safety Scanner found two items... see attached screenshot.

Rovnix.gen!A is a pesky thing!!

:alarm:

Attached Thumbnails

#42
Essexboy

Posted 01 July 2014 - 02:19 PM

GeekU Moderator

Retired Staff
69,964 posts

OK lets try a specialist tool for bootkits

Download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application
Then click on Change parameters.
Check the boxes beside Verify Driver Digital Signature, Detect TDLFS file system and Use KSN to scan objects , then click OK.
Click the Start Scan button.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results and offer three (3) options.
Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Get the report by selecting Reports
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

Please copy and paste its contents on your next reply.

#43
Essexboy

Posted 01 July 2014 - 03:01 PM

GeekU Moderator

Retired Staff
69,964 posts

As an aside I have another case of this and AswMBR reported it ???

aswMBR version 1.0.1.2041 Copyright© 2014 AVAST Software
Run date: 2014-06-28 16:16:49
-----------------------------
16:16:49.078 OS Version: Windows 5.1.2600 Service Pack 3
16:16:49.078 Number of processors: 2 586 0x209
16:16:49.078 ComputerName: SYSTEM13 UserName: Owner
16:16:50.156 Initialize success
16:16:50.156 VM: initialized successfully
16:16:50.187 VM: Intel CPU virtualization not supported
16:16:59.671 AVAST engine defs: 14062800
16:17:13.125 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-c
16:17:13.125 Disk 0 Vendor: ST340014A 3.10 Size: 38162MB BusType: 3
16:17:13.234 Disk 0 MBR read successfully
16:17:13.250 Disk 0 MBR scan
16:17:13.250 Disk 0 Windows XP default MBR code
16:17:13.250 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 38154 MB offset 63
16:17:13.250 Disk 0 default boot code
16:17:13.265 Disk 0 scanning sectors +78140160
16:17:13.437 File: C:\$Boot **INFECTED** Boot:Cidox-A [Rtk]
16:17:13.437 Disk 0 scanning C:\WINDOWS\system32\drivers
16:17:33.593 Service scanning
16:18:03.140 Modules scanning
16:18:19.734 Disk 0 trace - called modules:
16:18:19.750 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys
16:18:19.765 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8a5a6ab8]
16:18:19.765 3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\00000068[0x8a5f69e8]
16:18:19.765 5 ACPI.sys[f75ae620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T1L0-c[0x8a5ebb00]
16:18:20.546 AVAST engine scan C:\WINDOWS
16:18:42.343 AVAST engine scan C:\WINDOWS\system32
16:22:59.484 AVAST engine scan C:\WINDOWS\system32\drivers
16:23:21.421 AVAST engine scan C:\Documents and Settings\Owner
16:27:26.812 AVAST engine scan C:\Documents and Settings\All Users
16:28:15.921 Scan finished successfully
16:28:35.390 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Owner\Desktop\MBR.dat"
16:28:35.406 The log file has been saved successfully to "C:\Documents and Settings\Owner\Desktop\aswMBR.txt"

#44
briz_dad

Posted 01 July 2014 - 05:09 PM

Member

Topic Starter
Member
251 posts

16:01:43.0528 0x1638 TDSS rootkit removing tool 3.0.0.39 Jun 5 2014 20:35:54
16:01:48.0062 0x1638 ============================================================
16:01:48.0062 0x1638 Current date / time: 2014/07/01 16:01:48.0062
16:01:48.0063 0x1638 SystemInfo:
16:01:48.0063 0x1638
16:01:48.0063 0x1638 OS Version: 6.1.7601 ServicePack: 1.0
16:01:48.0063 0x1638 Product type: Workstation
16:01:48.0063 0x1638 ComputerName: GREG-PC
16:01:48.0063 0x1638 UserName: Greg
16:01:48.0063 0x1638 Windows directory: C:\Windows
16:01:48.0063 0x1638 System windows directory: C:\Windows
16:01:48.0063 0x1638 Running under WOW64
16:01:48.0063 0x1638 Processor architecture: Intel x64
16:01:48.0063 0x1638 Number of processors: 8
16:01:48.0063 0x1638 Page size: 0x1000
16:01:48.0063 0x1638 Boot type: Normal boot
16:01:48.0063 0x1638 ============================================================
16:01:49.0770 0x1638 KLMD registered as C:\Windows\system32\drivers\63176947.sys
16:01:50.0113 0x1638 System UUID: {BE12924C-7C28-F5EF-2A6F-F7C3E4D2B9D5}
16:01:50.0595 0x1638 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:01:50.0634 0x1638 Drive \Device\Harddisk5\DR5 - Size: 0x3A38B2E000 ( 232.89 Gb ), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:01:50.0681 0x1638 Drive \Device\Harddisk6\DR6 - Size: 0xE8E0DB6000 ( 931.51 Gb ), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:01:50.0685 0x1638 Drive \Device\Harddisk7\DR7 - Size: 0x7470C06000 ( 465.76 Gb ), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:01:50.0686 0x1638 ============================================================
16:01:50.0686 0x1638 \Device\Harddisk0\DR0:
16:01:50.0686 0x1638 MBR partitions:
16:01:50.0686 0x1638 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
16:01:50.0686 0x1638 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3800
16:01:50.0686 0x1638 \Device\Harddisk5\DR5:
16:01:50.0687 0x1638 MBR partitions:
16:01:50.0687 0x1638 \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1D1C4542
16:01:50.0687 0x1638 \Device\Harddisk6\DR6:
16:01:50.0687 0x1638 MBR partitions:
16:01:50.0687 0x1638 \Device\Harddisk6\DR6\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
16:01:50.0687 0x1638 \Device\Harddisk7\DR7:
16:01:50.0688 0x1638 MBR partitions:
16:01:50.0688 0x1638 \Device\Harddisk7\DR7\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A384C02
16:01:50.0688 0x1638 ============================================================
16:01:50.0719 0x1638 C: <-> \Device\Harddisk0\DR0\Partition2
16:01:50.0733 0x1638 W: <-> \Device\Harddisk6\DR6\Partition1
16:01:50.0810 0x1638 M: <-> \Device\Harddisk5\DR5\Partition1
16:01:50.0825 0x1638 E: <-> \Device\Harddisk7\DR7\Partition1
16:01:50.0837 0x1638 S: <-> \Device\Harddisk0\DR0\Partition1
16:01:50.0837 0x1638 ============================================================
16:01:50.0838 0x1638 Initialize success
16:01:50.0838 0x1638 ============================================================
16:02:42.0776 0x18a8 ============================================================
16:02:42.0776 0x18a8 Scan started
16:02:42.0776 0x18a8 Mode: Manual; SigCheck; TDLFS;
16:02:42.0776 0x18a8 ============================================================
16:02:42.0776 0x18a8 KSN ping started
16:02:56.0466 0x18a8 KSN ping finished: true
16:02:57.0826 0x18a8 ================ Scan system memory ========================
16:02:57.0826 0x18a8 System memory - ok
16:02:57.0827 0x18a8 ================ Scan services =============================
16:02:57.0958 0x18a8 [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
16:02:58.0064 0x18a8 1394ohci - ok
16:02:58.0121 0x18a8 [ E0A8525A951ADDB4655BC2068566407D, 7C08B9DB7C281422FD64219DF81B7064CE16EA53CF00EB1FC33CB0741CE6605F ] 61883           C:\Windows\system32\DRIVERS\61883.sys
16:02:58.0199 0x18a8 61883 - ok
16:02:58.0271 0x18a8 [ 8A46F63FA9E6BE67C4E062E173B45B29, 5F17B228D93C93396798E673E1F8ADB0091681585A44F286980106ABA59EA93A ] 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269 C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe
16:02:58.0304 0x18a8 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269 - ok
16:02:58.0327 0x18a8 [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
16:02:58.0343 0x18a8 ACPI - ok
16:02:58.0362 0x18a8 [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
16:02:58.0396 0x18a8 AcpiPmi - ok
16:02:58.0474 0x18a8 [ B362181ED3771DC03B4141927C80F801, 69514E5177A0AEA89C27C2234712F9F82E8D8F99E1FD4273898C9324C6FF7472 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
16:02:58.0491 0x18a8 AdobeARMservice - ok
16:02:58.0585 0x18a8 [ B5D8DE922237CEDDC7992297654A4BE4, 88EF0B5EBFB383C9069A29AEA8D76EDBE1E70DD6F7C18970EE01ECAE9F408B38 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
16:02:58.0605 0x18a8 AdobeFlashPlayerUpdateSvc - ok
16:02:58.0625 0x18a8 [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
16:02:58.0646 0x18a8 adp94xx - ok
16:02:58.0666 0x18a8 [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
16:02:58.0683 0x18a8 adpahci - ok
16:02:58.0695 0x18a8 [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
16:02:58.0709 0x18a8 adpu320 - ok
16:02:58.0728 0x18a8 [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
16:02:59.0105 0x18a8 AeLookupSvc - ok
16:02:59.0136 0x18a8 [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
16:02:59.0203 0x18a8 AFD - ok
16:02:59.0219 0x18a8 [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
16:02:59.0229 0x18a8 agp440 - ok
16:02:59.0250 0x18a8 [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
16:02:59.0367 0x18a8 ALG - ok
16:02:59.0392 0x18a8 [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
16:02:59.0410 0x18a8 aliide - ok
16:02:59.0424 0x18a8 [ A359974EAAC83A435497C52F62A2E590, 7A7AFFE1CCE8732C478AE3EA630AA46C94DE0DBFE19EE63E3FB99B0D3338F038 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
16:02:59.0498 0x18a8 AMD External Events Utility - ok
16:02:59.0509 0x18a8 [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
16:02:59.0523 0x18a8 amdide - ok
16:02:59.0529 0x18a8 [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
16:02:59.0557 0x18a8 AmdK8 - ok
16:02:59.0800 0x18a8 [ 60216B0E704584DE6D5A9F59E9C34C47, CC3E9F09FB28E50FDFCC5E6A996E28CB4E721DDDD50E23710DC74C5B0F7CE3E3 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
16:03:00.0118 0x18a8 amdkmdag - ok
16:03:00.0134 0x18a8 [ 6B4E9261B613B047A9A145F328889968, E5C6611E88381A9D40AD1CE80BFDDBDA733F4A8D3602AAE25A155D2C39B3B7FD ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
16:03:00.0162 0x18a8 amdkmdap - ok
16:03:00.0166 0x18a8 [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
16:03:00.0179 0x18a8 AmdPPM - ok
16:03:00.0208 0x18a8 [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
16:03:00.0220 0x18a8 amdsata - ok
16:03:00.0235 0x18a8 [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
16:03:00.0250 0x18a8 amdsbs - ok
16:03:00.0260 0x18a8 [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
16:03:00.0270 0x18a8 amdxata - ok
16:03:00.0293 0x18a8 [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
16:03:00.0425 0x18a8 AppID - ok
16:03:00.0440 0x18a8 [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
16:03:00.0481 0x18a8 AppIDSvc - ok
16:03:00.0502 0x18a8 [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
16:03:00.0553 0x18a8 Appinfo - ok
16:03:00.0616 0x18a8 [ 221564CC7BE37611FE15EACF443E1BF6, 381BDF17418C779D72332431BA174C2AD76CD9C7C1711FF5142EA9B05D5555E4 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
16:03:00.0631 0x18a8 Apple Mobile Device - ok
16:03:00.0663 0x18a8 [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
16:03:00.0697 0x18a8 AppMgmt - ok
16:03:00.0715 0x18a8 [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
16:03:00.0728 0x18a8 arc - ok
16:03:00.0742 0x18a8 [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
16:03:00.0755 0x18a8 arcsas - ok
16:03:00.0803 0x18a8 [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
16:03:00.0824 0x18a8 aspnet_state - ok
16:03:00.0843 0x18a8 [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
16:03:00.0900 0x18a8 AsyncMac - ok
16:03:00.0924 0x18a8 [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
16:03:00.0933 0x18a8 atapi - ok
16:03:00.0977 0x18a8 [ DAA29FDB8FAA8642ACF74DF4A862E259, 34A3F20F0F1FD572F53C7F6D79C8EEB20776BCA0960768F3F675E25F40800C57 ] atashost        C:\Windows\SysWOW64\atashost.exe
16:03:00.0993 0x18a8 atashost - ok
16:03:01.0027 0x18a8 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
16:03:01.0085 0x18a8 AudioEndpointBuilder - ok
16:03:01.0118 0x18a8 [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
16:03:01.0157 0x18a8 AudioSrv - ok
16:03:01.0174 0x18a8 [ 16FABE84916623D0607E4A975544032C, 9D960CAE27B1769ED5B024C0A3375912432521C73C1F59E21111596A7981BDC3 ] Avc             C:\Windows\system32\DRIVERS\avc.sys
16:03:01.0212 0x18a8 Avc - ok
16:03:01.0251 0x18a8 [ 155F536D6181508929F4FE177F4167CE, 479B100DA05EDFADEDC6853B561FF3AC6A00403AB8A54F83887B8D0BB4D76886 ] AVCSTRM         C:\Windows\system32\DRIVERS\avcstrm.sys
16:03:01.0293 0x18a8 AVCSTRM - ok
16:03:01.0313 0x18a8 [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
16:03:01.0391 0x18a8 AxInstSV - ok
16:03:01.0414 0x18a8 [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
16:03:01.0485 0x18a8 b06bdrv - ok
16:03:01.0508 0x18a8 [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
16:03:01.0532 0x18a8 b57nd60a - ok
16:03:01.0545 0x18a8 [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
16:03:01.0592 0x18a8 BDESVC - ok
16:03:01.0604 0x18a8 [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
16:03:01.0667 0x18a8 Beep - ok
16:03:01.0704 0x18a8 [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
16:03:01.0757 0x18a8 BFE - ok
16:03:01.0810 0x18a8 [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
16:03:01.0882 0x18a8 BITS - ok
16:03:01.0901 0x18a8 [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
16:03:01.0912 0x18a8 blbdrive - ok
16:03:01.0962 0x18a8 [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
16:03:01.0980 0x18a8 Bonjour Service - ok
16:03:02.0014 0x18a8 [ A1C6893D5AA52F79B97443720EEEA0F2, 66C51BA17AE0F069279A32FFDA6D44D98C747976CF04B343815D2032BDF263B0 ] BOT4Service     C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe
16:03:02.0022 0x18a8 BOT4Service - ok
16:03:02.0052 0x18a8 [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
16:03:02.0075 0x18a8 bowser - ok
16:03:02.0078 0x18a8 [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
16:03:02.0118 0x18a8 BrFiltLo - ok
16:03:02.0121 0x18a8 [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
16:03:02.0134 0x18a8 BrFiltUp - ok
16:03:02.0150 0x18a8 [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
16:03:02.0197 0x18a8 BridgeMP - ok
16:03:02.0237 0x18a8 [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
16:03:02.0304 0x18a8 Browser - ok
16:03:02.0334 0x18a8 [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
16:03:02.0380 0x18a8 Brserid - ok
16:03:02.0384 0x18a8 [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
16:03:02.0412 0x18a8 BrSerWdm - ok
16:03:02.0417 0x18a8 [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
16:03:02.0432 0x18a8 BrUsbMdm - ok
16:03:02.0436 0x18a8 [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
16:03:02.0459 0x18a8 BrUsbSer - ok
16:03:02.0464 0x18a8 [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
16:03:02.0478 0x18a8 BTHMODEM - ok
16:03:02.0498 0x18a8 [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
16:03:02.0544 0x18a8 bthserv - ok
16:03:02.0730 0x18a8 [ 3DF23B8A1541822DB268890B1B42FE6F, EB94B5CE8642F9BF20CF192C4DE7EC4A4186930EC3A50D796857A9A31BB65956 ] Carbonite-Mirror-Image-Svc C:\Program Files\Carbonite\Carbonite Mirror Image\CarboniteMirrorImage.exe
16:03:02.0933 0x18a8 Carbonite-Mirror-Image-Svc - ok
16:03:03.0138 0x18a8 [ D9EC7E6B14F983D28F8AE5AB834690A2, DD1A0C759EA819F1CF3E005772BCC8728F8A7952299BFE2E398D5DB19EE829D2 ] CarboniteService C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe
16:03:03.0354 0x18a8 CarboniteService - ok
16:03:03.0388 0x18a8 catchme - ok
16:03:03.0406 0x18a8 [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
16:03:03.0453 0x18a8 cdfs - ok
16:03:03.0471 0x18a8 [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
16:03:03.0488 0x18a8 cdrom - ok
16:03:03.0492 0x18a8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
16:03:03.0537 0x18a8 CertPropSvc - ok
16:03:03.0562 0x18a8 [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
16:03:03.0610 0x18a8 circlass - ok
16:03:03.0646 0x18a8 [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
16:03:03.0675 0x18a8 CLFS - ok
16:03:03.0717 0x18a8 [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
16:03:03.0728 0x18a8 clr_optimization_v2.0.50727_32 - ok
16:03:03.0758 0x18a8 [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
16:03:03.0768 0x18a8 clr_optimization_v2.0.50727_64 - ok
16:03:03.0814 0x18a8 [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
16:03:03.0830 0x18a8 clr_optimization_v4.0.30319_32 - ok
16:03:03.0840 0x18a8 [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
16:03:03.0855 0x18a8 clr_optimization_v4.0.30319_64 - ok
16:03:03.0867 0x18a8 [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
16:03:03.0900 0x18a8 CmBatt - ok
16:03:03.0915 0x18a8 [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
16:03:03.0926 0x18a8 cmdide - ok
16:03:03.0959 0x18a8 [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
16:03:03.0998 0x18a8 CNG - ok
16:03:04.0010 0x18a8 [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
16:03:04.0022 0x18a8 Compbatt - ok
16:03:04.0038 0x18a8 [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
16:03:04.0070 0x18a8 CompositeBus - ok
16:03:04.0073 0x18a8 COMSysApp - ok
16:03:04.0093 0x18a8 [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
16:03:04.0105 0x18a8 crcdisk - ok
16:03:04.0129 0x18a8 [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
16:03:04.0179 0x18a8 CryptSvc - ok
16:03:04.0214 0x18a8 [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
16:03:04.0268 0x18a8 CSC - ok
16:03:04.0286 0x18a8 [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
16:03:04.0334 0x18a8 CscService - ok
16:03:04.0369 0x18a8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
16:03:04.0427 0x18a8 DcomLaunch - ok
16:03:04.0453 0x18a8 [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
16:03:04.0488 0x18a8 defragsvc - ok
16:03:04.0501 0x18a8 [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
16:03:04.0542 0x18a8 DfsC - ok
16:03:04.0563 0x18a8 [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
16:03:04.0650 0x18a8 Dhcp - ok
16:03:04.0674 0x18a8 [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
16:03:04.0731 0x18a8 discache - ok
16:03:04.0758 0x18a8 [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
16:03:04.0768 0x18a8 Disk - ok
16:03:04.0786 0x18a8 [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
16:03:04.0828 0x18a8 dmvsc - ok
16:03:04.0858 0x18a8 [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
16:03:04.0910 0x18a8 Dnscache - ok
16:03:04.0948 0x18a8 [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
16:03:04.0990 0x18a8 dot3svc - ok
16:03:05.0004 0x18a8 [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
16:03:05.0047 0x18a8 DPS - ok
16:03:05.0081 0x18a8 [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
16:03:05.0131 0x18a8 drmkaud - ok
16:03:05.0183 0x18a8 [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
16:03:05.0219 0x18a8 DXGKrnl - ok
16:03:05.0225 0x18a8 [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
16:03:05.0254 0x18a8 EapHost - ok
16:03:05.0356 0x18a8 [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
16:03:05.0466 0x18a8 ebdrv - ok
16:03:05.0491 0x18a8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] EFS             C:\Windows\System32\lsass.exe
16:03:05.0510 0x18a8 EFS - ok
16:03:05.0556 0x18a8 [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
16:03:05.0614 0x18a8 ehRecvr - ok
16:03:05.0637 0x18a8 [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
16:03:05.0668 0x18a8 ehSched - ok
16:03:05.0696 0x18a8 [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
16:03:05.0719 0x18a8 elxstor - ok
16:03:05.0725 0x18a8 [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
16:03:05.0751 0x18a8 ErrDev - ok
16:03:05.0781 0x18a8 [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
16:03:05.0837 0x18a8 EventSystem - ok
16:03:05.0844 0x18a8 [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
16:03:05.0875 0x18a8 exfat - ok
16:03:05.0894 0x18a8 [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
16:03:05.0925 0x18a8 fastfat - ok
16:03:05.0929 0x18a8 [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
16:03:05.0953 0x18a8 fdc - ok
16:03:05.0967 0x18a8 [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
16:03:05.0995 0x18a8 fdPHost - ok
16:03:06.0013 0x18a8 [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
16:03:06.0040 0x18a8 FDResPub - ok
16:03:06.0047 0x18a8 [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
16:03:06.0058 0x18a8 FileInfo - ok
16:03:06.0070 0x18a8 [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
16:03:06.0097 0x18a8 Filetrace - ok
16:03:06.0154 0x18a8 [ 1F63900E2EB00101B9ACA2B7A870704E, 5AFE1FC852937FECE6B33147BD0110436FE97F33BFDA3F69B1F5EDAD6FFC09C6 ] FLEXnet Licensing Service C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
16:03:06.0179 0x18a8 FLEXnet Licensing Service - ok
16:03:06.0183 0x18a8 [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
16:03:06.0194 0x18a8 flpydisk - ok
16:03:06.0214 0x18a8 [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
16:03:06.0230 0x18a8 FltMgr - ok
16:03:06.0278 0x18a8 [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
16:03:06.0337 0x18a8 FontCache - ok
16:03:06.0368 0x18a8 [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
16:03:06.0382 0x18a8 FontCache3.0.0.0 - ok
16:03:06.0395 0x18a8 [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
16:03:06.0408 0x18a8 FsDepends - ok
16:03:06.0415 0x18a8 [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
16:03:06.0425 0x18a8 Fs_Rec - ok
16:03:06.0448 0x18a8 [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
16:03:06.0465 0x18a8 fvevol - ok
16:03:06.0476 0x18a8 [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
16:03:06.0488 0x18a8 gagp30kx - ok
16:03:06.0515 0x18a8 [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:03:06.0523 0x18a8 GEARAspiWDM - ok
16:03:06.0562 0x18a8 [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
16:03:06.0614 0x18a8 gpsvc - ok
16:03:06.0646 0x18a8 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:03:06.0656 0x18a8 gupdate - ok
16:03:06.0661 0x18a8 [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
16:03:06.0669 0x18a8 gupdatem - ok
16:03:06.0672 0x18a8 [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
16:03:06.0703 0x18a8 hcw85cir - ok
16:03:06.0737 0x18a8 [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
16:03:06.0775 0x18a8 HdAudAddService - ok
16:03:06.0797 0x18a8 [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
16:03:06.0827 0x18a8 HDAudBus - ok
16:03:06.0831 0x18a8 [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
16:03:06.0846 0x18a8 HidBatt - ok
16:03:06.0851 0x18a8 [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
16:03:06.0873 0x18a8 HidBth - ok
16:03:06.0884 0x18a8 [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
16:03:06.0897 0x18a8 HidIr - ok
16:03:06.0904 0x18a8 [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
16:03:06.0948 0x18a8 hidserv - ok
16:03:06.0978 0x18a8 [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
16:03:07.0025 0x18a8 HidUsb - ok
16:03:07.0040 0x18a8 [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
16:03:07.0080 0x18a8 hkmsvc - ok
16:03:07.0104 0x18a8 [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
16:03:07.0140 0x18a8 HomeGroupListener - ok
16:03:07.0165 0x18a8 [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
16:03:07.0197 0x18a8 HomeGroupProvider - ok
16:03:07.0218 0x18a8 [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
16:03:07.0229 0x18a8 HpSAMD - ok
16:03:07.0258 0x18a8 [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
16:03:07.0319 0x18a8 HTTP - ok
16:03:07.0336 0x18a8 [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
16:03:07.0346 0x18a8 hwpolicy - ok
16:03:07.0358 0x18a8 [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
16:03:07.0371 0x18a8 i8042prt - ok
16:03:07.0420 0x18a8 [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
16:03:07.0438 0x18a8 iaStorV - ok
16:03:07.0485 0x18a8 [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
16:03:07.0513 0x18a8 idsvc - ok
16:03:07.0522 0x18a8 [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
16:03:07.0533 0x18a8 iirsp - ok
16:03:07.0571 0x18a8 [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
16:03:07.0610 0x18a8 IKEEXT - ok
16:03:07.0622 0x18a8 [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
16:03:07.0632 0x18a8 intelide - ok
16:03:07.0644 0x18a8 [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
16:03:07.0655 0x18a8 intelppm - ok
16:03:07.0660 0x18a8 [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
16:03:07.0689 0x18a8 IPBusEnum - ok
16:03:07.0700 0x18a8 [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:03:07.0757 0x18a8 IpFilterDriver - ok
16:03:07.0795 0x18a8 [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
16:03:07.0858 0x18a8 iphlpsvc - ok
16:03:07.0865 0x18a8 [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
16:03:07.0894 0x18a8 IPMIDRV - ok
16:03:07.0900 0x18a8 [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
16:03:07.0941 0x18a8 IPNAT - ok
16:03:08.0008 0x18a8 [ 835FC2EA0631B734BB06C12B0665F01D, B8A8B0148C6C3AFC40835B44E3D6508CB9EEE8AC430A7904711C8B51C2116A8D ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
16:03:08.0036 0x18a8 iPod Service - ok
16:03:08.0057 0x18a8 [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
16:03:08.0088 0x18a8 IRENUM - ok
16:03:08.0103 0x18a8 [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
16:03:08.0114 0x18a8 isapnp - ok
16:03:08.0143 0x18a8 [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
16:03:08.0159 0x18a8 iScsiPrt - ok
16:03:08.0179 0x18a8 [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
16:03:08.0190 0x18a8 kbdclass - ok
16:03:08.0207 0x18a8 [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
16:03:08.0231 0x18a8 kbdhid - ok
16:03:08.0249 0x18a8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] KeyIso          C:\Windows\system32\lsass.exe
16:03:08.0260 0x18a8 KeyIso - ok
16:03:08.0287 0x18a8 [ 353009DEDF918B2A51414F330CF72DEC, BF157D6E329F26E02FA16271B751B421396040DBB1D7BF9B2E0A21BC569672E2 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
16:03:08.0304 0x18a8 KSecDD - ok
16:03:08.0318 0x18a8 [ 1C2D8E18AA8FD50CD04C15CC27F7F5AB, 4BA3B0F9F01BD47D66091D3AD86B69A523981D61DFB4D677F2CD39405B2DA989 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
16:03:08.0332 0x18a8 KSecPkg - ok
16:03:08.0355 0x18a8 [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
16:03:08.0383 0x18a8 ksthunk - ok
16:03:08.0411 0x18a8 [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
16:03:08.0461 0x18a8 KtmRm - ok
16:03:08.0502 0x18a8 [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
16:03:08.0546 0x18a8 LanmanServer - ok
16:03:08.0568 0x18a8 [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
16:03:08.0597 0x18a8 LanmanWorkstation - ok
16:03:08.0612 0x18a8 [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
16:03:08.0657 0x18a8 lltdio - ok
16:03:08.0683 0x18a8 [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
16:03:08.0735 0x18a8 lltdsvc - ok
16:03:08.0751 0x18a8 [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
16:03:08.0779 0x18a8 lmhosts - ok
16:03:08.0795 0x18a8 [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
16:03:08.0807 0x18a8 LSI_FC - ok
16:03:08.0819 0x18a8 [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
16:03:08.0832 0x18a8 LSI_SAS - ok
16:03:08.0844 0x18a8 [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
16:03:08.0855 0x18a8 LSI_SAS2 - ok
16:03:08.0860 0x18a8 [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
16:03:08.0872 0x18a8 LSI_SCSI - ok
16:03:08.0899 0x18a8 [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
16:03:08.0928 0x18a8 luafv - ok
16:03:08.0944 0x18a8 [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
16:03:08.0968 0x18a8 Mcx2Svc - ok
16:03:08.0990 0x18a8 [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
16:03:09.0001 0x18a8 megasas - ok
16:03:09.0019 0x18a8 [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
16:03:09.0036 0x18a8 MegaSR - ok
16:03:09.0085 0x18a8 Microsoft SharePoint Workspace Audit Service - ok
16:03:09.0105 0x18a8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
16:03:09.0156 0x18a8 MMCSS - ok
16:03:09.0175 0x18a8 [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
16:03:09.0229 0x18a8 Modem - ok
16:03:09.0251 0x18a8 [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
16:03:09.0278 0x18a8 monitor - ok
16:03:09.0294 0x18a8 [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
16:03:09.0304 0x18a8 mouclass - ok
16:03:09.0327 0x18a8 [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
16:03:09.0356 0x18a8 mouhid - ok
16:03:09.0374 0x18a8 [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
16:03:09.0387 0x18a8 mountmgr - ok
16:03:09.0438 0x18a8 [ 26EA1DAD601EE3ACAC301D66F07BA219, C9594BB15D53D4AC2156CCCD2DB65B2C20620F1F60DA85F48D1586FC10028096 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
16:03:09.0458 0x18a8 MozillaMaintenance - ok
16:03:09.0503 0x18a8 [ 9EB89625A82AC961F25E7C865947BF9A, 91DB9530CDE883DC60BE621AC4210ACD069631D9466E37411D9D6AEE587098D9 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
16:03:09.0522 0x18a8 MpFilter - ok
16:03:09.0537 0x18a8 [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
16:03:09.0550 0x18a8 mpio - ok
16:03:09.0564 0x18a8 [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
16:03:09.0592 0x18a8 mpsdrv - ok
16:03:09.0627 0x18a8 [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
16:03:09.0698 0x18a8 MpsSvc - ok
16:03:09.0723 0x18a8 [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
16:03:09.0743 0x18a8 MRxDAV - ok
16:03:09.0763 0x18a8 [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
16:03:09.0785 0x18a8 mrxsmb - ok
16:03:09.0810 0x18a8 [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:03:09.0827 0x18a8 mrxsmb10 - ok
16:03:09.0845 0x18a8 [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:03:09.0858 0x18a8 mrxsmb20 - ok
16:03:09.0872 0x18a8 [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
16:03:09.0882 0x18a8 msahci - ok
16:03:09.0898 0x18a8 [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
16:03:09.0911 0x18a8 msdsm - ok
16:03:09.0926 0x18a8 [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
16:03:09.0942 0x18a8 MSDTC - ok
16:03:09.0955 0x18a8 [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
16:03:09.0981 0x18a8 Msfs - ok
16:03:09.0993 0x18a8 [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
16:03:10.0022 0x18a8 mshidkmdf - ok
16:03:10.0042 0x18a8 [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
16:03:10.0051 0x18a8 msisadrv - ok
16:03:10.0080 0x18a8 [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
16:03:10.0113 0x18a8 MSiSCSI - ok
16:03:10.0116 0x18a8 msiserver - ok
16:03:10.0129 0x18a8 [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
16:03:10.0170 0x18a8 MSKSSRV - ok
16:03:10.0213 0x18a8 [ 89F2AEDC2788696702141AB82C3E7866, E166CBD8D3C708737C37172221945D8E56C25C2CC750889C3CE14AA2DE750F33 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
16:03:10.0232 0x18a8 MsMpSvc - ok
16:03:10.0237 0x18a8 [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
16:03:10.0264 0x18a8 MSPCLOCK - ok
16:03:10.0269 0x18a8 [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
16:03:10.0309 0x18a8 MSPQM - ok
16:03:10.0318 0x18a8 [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
16:03:10.0336 0x18a8 MsRPC - ok
16:03:10.0341 0x18a8 [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
16:03:10.0350 0x18a8 mssmbios - ok
16:03:10.0379 0x18a8 [ 966EC55988D580B9823C453781309450, 52942A68A3DE6C6A9730D27667A0AAA35B65889C37B243B83CC9B54DFAFE4A2D ] MSTAPE          C:\Windows\system32\DRIVERS\mstape.sys
16:03:10.0416 0x18a8 MSTAPE - ok
16:03:10.0435 0x18a8 [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
16:03:10.0461 0x18a8 MSTEE - ok
16:03:10.0470 0x18a8 [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
16:03:10.0480 0x18a8 MTConfig - ok
16:03:10.0494 0x18a8 [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
16:03:10.0504 0x18a8 Mup - ok
16:03:10.0536 0x18a8 [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
16:03:10.0589 0x18a8 napagent - ok
16:03:10.0612 0x18a8 [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
16:03:10.0634 0x18a8 NativeWifiP - ok
16:03:10.0692 0x18a8 [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
16:03:10.0728 0x18a8 NDIS - ok
16:03:10.0732 0x18a8 [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
16:03:10.0759 0x18a8 NdisCap - ok
16:03:10.0775 0x18a8 [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
16:03:10.0802 0x18a8 NdisTapi - ok
16:03:10.0811 0x18a8 [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
16:03:10.0837 0x18a8 Ndisuio - ok
16:03:10.0843 0x18a8 [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
16:03:10.0887 0x18a8 NdisWan - ok
16:03:10.0902 0x18a8 [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
16:03:10.0928 0x18a8 NDProxy - ok
16:03:10.0935 0x18a8 [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
16:03:10.0978 0x18a8 NetBIOS - ok
16:03:11.0005 0x18a8 [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
16:03:11.0036 0x18a8 NetBT - ok
16:03:11.0057 0x18a8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] Netlogon        C:\Windows\system32\lsass.exe
16:03:11.0068 0x18a8 Netlogon - ok
16:03:11.0093 0x18a8 [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
16:03:11.0131 0x18a8 Netman - ok
16:03:11.0152 0x18a8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:03:11.0167 0x18a8 NetMsmqActivator - ok
16:03:11.0183 0x18a8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:03:11.0196 0x18a8 NetPipeActivator - ok
16:03:11.0214 0x18a8 [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
16:03:11.0270 0x18a8 netprofm - ok
16:03:11.0275 0x18a8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:03:11.0288 0x18a8 NetTcpActivator - ok
16:03:11.0293 0x18a8 [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
16:03:11.0307 0x18a8 NetTcpPortSharing - ok
16:03:11.0321 0x18a8 [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
16:03:11.0332 0x18a8 nfrd960 - ok
16:03:11.0347 0x18a8 [ C3E0696C3B42F694C5822776AA6FFFDF, 80C3DEC2C48500F96C9E677450EFC1ADA9FE9FBB70F4CC2D7D9244B1A515418B ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
16:03:11.0361 0x18a8 NisDrv - ok
16:03:11.0395 0x18a8 [ DCEE3592299B2229A0DB98CB415059A2, 709AAA095DF44DDCB6159CE1635AB05EC666D845445790E569F56B297DC64AC3 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
16:03:11.0417 0x18a8 NisSrv - ok
16:03:11.0443 0x18a8 [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
16:03:11.0475 0x18a8 NlaSvc - ok
16:03:11.0492 0x18a8 [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
16:03:11.0520 0x18a8 Npfs - ok
16:03:11.0531 0x18a8 [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
16:03:11.0568 0x18a8 nsi - ok
16:03:11.0582 0x18a8 [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
16:03:11.0628 0x18a8 nsiproxy - ok
16:03:11.0700 0x18a8 [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
16:03:11.0763 0x18a8 Ntfs - ok
16:03:11.0777 0x18a8 [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
16:03:11.0804 0x18a8 Null - ok
16:03:12.0125 0x18a8 [ 757ACE4D4C9FF0571F86AA5D586B45E8, E7F23CC1DE26E2DAA690B78B05FC001EE0051F0ED9B9BCE9E7FA4E9684D4F3D4 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:03:12.0368 0x18a8 nvlddmkm - ok
16:03:12.0404 0x18a8 [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
16:03:12.0416 0x18a8 nvraid - ok
16:03:12.0430 0x18a8 [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
16:03:12.0444 0x18a8 nvstor - ok
16:03:12.0496 0x18a8 [ 1C7CC708AC4A02A3BE8915539780534A, 0EBDE100880963BF1EC05002BA244CA7700693E958D1974CDD2AC3927D93224F ] nvsvc           C:\Windows\system32\nvvsvc.exe
16:03:12.0532 0x18a8 nvsvc - ok
16:03:12.0611 0x18a8 [ 4F0F22B61DD9607AFE9828A567720D84, 006C6399D2B4303CD42A65548FA42E44F00E83D3010E4E9B732CB670C47AD275 ] NVWMI           C:\Windows\system32\nvwmi64.exe
16:03:12.0686 0x18a8 NVWMI - ok
16:03:12.0699 0x18a8 [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
16:03:12.0710 0x18a8 nv_agp - ok
16:03:12.0715 0x18a8 [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
16:03:12.0726 0x18a8 ohci1394 - ok
16:03:12.0762 0x18a8 [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
16:03:12.0780 0x18a8 ose - ok
16:03:12.0965 0x18a8 [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
16:03:13.0116 0x18a8 osppsvc - ok
16:03:13.0138 0x18a8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
16:03:13.0182 0x18a8 p2pimsvc - ok
16:03:13.0202 0x18a8 [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
16:03:13.0223 0x18a8 p2psvc - ok
16:03:13.0228 0x18a8 [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
16:03:13.0240 0x18a8 Parport - ok
16:03:13.0260 0x18a8 [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
16:03:13.0271 0x18a8 partmgr - ok
16:03:13.0285 0x18a8 [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
16:03:13.0315 0x18a8 PcaSvc - ok
16:03:13.0333 0x18a8 [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
16:03:13.0346 0x18a8 pci - ok
16:03:13.0363 0x18a8 [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
16:03:13.0374 0x18a8 pciide - ok
16:03:13.0381 0x18a8 [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
16:03:13.0395 0x18a8 pcmcia - ok
16:03:13.0421 0x18a8 [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
16:03:13.0432 0x18a8 pcw - ok
16:03:13.0447 0x18a8 [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
16:03:13.0489 0x18a8 PEAUTH - ok
16:03:13.0543 0x18a8 [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
16:03:13.0634 0x18a8 PeerDistSvc - ok
16:03:13.0699 0x18a8 [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
16:03:13.0733 0x18a8 PerfHost - ok
16:03:13.0795 0x18a8 [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
16:03:13.0889 0x18a8 pla - ok
16:03:13.0923 0x18a8 [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
16:03:13.0977 0x18a8 PlugPlay - ok
16:03:13.0984 0x18a8 [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
16:03:14.0014 0x18a8 PNRPAutoReg - ok
16:03:14.0024 0x18a8 [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
16:03:14.0042 0x18a8 PNRPsvc - ok
16:03:14.0095 0x18a8 [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
16:03:14.0175 0x18a8 PolicyAgent - ok
16:03:14.0209 0x18a8 [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
16:03:14.0260 0x18a8 Power - ok
16:03:14.0280 0x18a8 [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
16:03:14.0319 0x18a8 PptpMiniport - ok
16:03:14.0335 0x18a8 [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
16:03:14.0360 0x18a8 Processor - ok
16:03:14.0378 0x18a8 [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
16:03:14.0430 0x18a8 ProfSvc - ok
16:03:14.0440 0x18a8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] ProtectedStorage C:\Windows\system32\lsass.exe
16:03:14.0450 0x18a8 ProtectedStorage - ok
16:03:14.0479 0x18a8 [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
16:03:14.0524 0x18a8 Psched - ok
16:03:14.0573 0x18a8 [ 07D57B890DD5693A6AB660CBAE8F91B4, 934895A41C116056E22FE3298418332A9F4280F96E96EEE06C977A4925395674 ] PxHlpa64        C:\Windows\system32\Drivers\PxHlpa64.sys
16:03:14.0587 0x18a8 PxHlpa64 - ok
16:03:14.0671 0x18a8 [ 4EBDE95E7E66456E5655187054938C09, E9518342620DAEC58D5FA0CC90B2F131062DAC19C280F9F3DAFA5C3EAFF26BAF ] QBCFMonitorService C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBCFMonitorService.exe
16:03:14.0701 0x18a8 QBCFMonitorService - detected UnsignedFile.Multi.Generic ( 1 )
16:03:17.0465 0x18a8 Detect skipped due to KSN trusted
16:03:17.0465 0x18a8 QBCFMonitorService - ok
16:03:17.0509 0x18a8 [ 9EE9AA5D1FB3F3B99467A20B03B47C5D, 5C43150DF7FC7786DD7568219860BEC89460EE13889B37F01A6D15D4059EC146 ] QBFCService     C:\Program Files (x86)\Common Files\Intuit\QuickBooks\FCS\Intuit.QuickBooks.FCS.exe
16:03:17.0532 0x18a8 QBFCService - detected UnsignedFile.Multi.Generic ( 1 )
16:03:20.0474 0x18a8 Detect skipped due to KSN trusted
16:03:20.0474 0x18a8 QBFCService - ok
16:03:20.0553 0x18a8 [ 4347F8AD6D63BF75A6075B9817C3AE26, 5F7F595FBE1FC8745F3817E5A5773FBA3BC23AAB2D674FCD74C6B0BAFFAC06BA ] QBVSS           C:\Program Files (x86)\Common Files\Intuit\DataProtect\QBIDPService.exe
16:03:20.0650 0x18a8 QBVSS - detected UnsignedFile.Multi.Generic ( 1 )
16:03:23.0676 0x18a8 Detect skipped due to KSN trusted
16:03:23.0676 0x18a8 QBVSS - ok
16:03:23.0750 0x18a8 [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
16:03:23.0802 0x18a8 ql2300 - ok
16:03:23.0820 0x18a8 [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
16:03:23.0832 0x18a8 ql40xx - ok
16:03:23.0857 0x18a8 [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
16:03:23.0879 0x18a8 QWAVE - ok
16:03:23.0886 0x18a8 [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
16:03:23.0920 0x18a8 QWAVEdrv - ok
16:03:23.0935 0x18a8 [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
16:03:23.0977 0x18a8 RasAcd - ok
16:03:24.0018 0x18a8 [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
16:03:24.0056 0x18a8 RasAgileVpn - ok
16:03:24.0069 0x18a8 [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
16:03:24.0110 0x18a8 RasAuto - ok
16:03:24.0127 0x18a8 [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
16:03:24.0156 0x18a8 Rasl2tp - ok
16:03:24.0172 0x18a8 [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
16:03:24.0206 0x18a8 RasMan - ok
16:03:24.0216 0x18a8 [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
16:03:24.0244 0x18a8 RasPppoe - ok
16:03:24.0258 0x18a8 [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
16:03:24.0303 0x18a8 RasSstp - ok
16:03:24.0332 0x18a8 [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
16:03:24.0365 0x18a8 rdbss - ok
16:03:24.0376 0x18a8 [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
16:03:24.0411 0x18a8 rdpbus - ok
16:03:24.0440 0x18a8 [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
16:03:24.0484 0x18a8 RDPCDD - ok
16:03:24.0509 0x18a8 [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
16:03:24.0531 0x18a8 RDPDR - ok
16:03:24.0548 0x18a8 [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
16:03:24.0585 0x18a8 RDPENCDD - ok
16:03:24.0603 0x18a8 [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
16:03:24.0629 0x18a8 RDPREFMP - ok
16:03:24.0643 0x18a8 [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
16:03:24.0670 0x18a8 RdpVideoMiniport - ok
16:03:24.0691 0x18a8 [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
16:03:24.0742 0x18a8 RDPWD - ok
16:03:24.0754 0x18a8 [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
16:03:24.0771 0x18a8 rdyboost - ok
16:03:24.0794 0x18a8 [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
16:03:24.0834 0x18a8 RemoteAccess - ok
16:03:24.0852 0x18a8 [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll
16:03:24.0895 0x18a8 RemoteRegistry - ok
16:03:24.0993 0x18a8 [ 23F938355F9319734AC78B33398FD2F5, A1FF55DE6A5167BA5C5E776B9B8DFE0463A25D3D6A70D8AD7AFEB62500151983 ] RoxioBurnLauncher C:\Program Files (x86)\Roxio Easy CD & DVD Burning\Roxio Burn\RoxioBurnLauncher.exe
16:03:25.0031 0x18a8 RoxioBurnLauncher - ok
16:03:25.0122 0x18a8 [ 9A46BC4FCA714A64069366C00D8A7A59, BF2A37643845C6334636ABA24F0CA18AEAF452410AEC327256F64300593E6DAA ] RoxMediaDB14    C:\Program Files (x86)\Roxio Easy CD & DVD Burning\Common\RoxMediaDB14.exe
16:03:25.0162 0x18a8 RoxMediaDB14 - ok
16:03:25.0194 0x18a8 [ 5933CA33B2F7DE7B03506878D132CA85, 3B9C6CB3811D1F74111C5D6A706395FC416F404AC21EBF075A60728B92386FBA ] RoxWatch14      C:\Program Files (x86)\Roxio Easy CD & DVD Burning\Common\RoxWatch14.exe
16:03:25.0210 0x18a8 RoxWatch14 - ok
16:03:25.0224 0x18a8 [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
16:03:25.0253 0x18a8 RpcEptMapper - ok
16:03:25.0266 0x18a8 [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
16:03:25.0288 0x18a8 RpcLocator - ok
16:03:25.0317 0x18a8 [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\System32\rpcss.dll
16:03:25.0355 0x18a8 RpcSs - ok
16:03:25.0376 0x18a8 [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
16:03:25.0405 0x18a8 rspndr - ok
16:03:25.0419 0x18a8 [ ABCB5A38A0D85BDF69B7877E1AD1EED5, 44DF1A92E8FA53677A04C46088B0AD49F1F6A090820BE550A514C4FBFD91444D ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
16:03:25.0451 0x18a8 RTL8167 - ok
16:03:25.0465 0x18a8 [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
16:03:25.0487 0x18a8 s3cap - ok
16:03:25.0516 0x18a8 [ CC8BE8C0D2B549193E1B0E430F4C1717, D1E67C1D3C8EDFB7C1C601F9056C9249FFA07A7F2F48CE2F7E33CAF61656D974 ] Sahdad64        C:\Windows\system32\Drivers\Sahdad64.sys
16:03:25.0523 0x18a8 Sahdad64 - ok
16:03:25.0548 0x18a8 [ 8DF9EE8B6DEE33A77CCF03047B1B002C, DB54B4D2C9D842D1D52CECFED91DBFAFB6E12A4121AA97116F4977A5FA68DB65 ] Saibad64        C:\Windows\system32\Drivers\Saibad64.sys
16:03:25.0556 0x18a8 Saibad64 - ok
16:03:25.0598 0x18a8 [ E193BA11DF7D9383A1B2848088DDEE35, 4DCADD56958BF3BC31571EB08277AD0474898528E7D5232901898FD354DC0BE8 ] SaibVdAd64      C:\Windows\system32\Drivers\SaibVdAd64.sys
16:03:25.0606 0x18a8 SaibVdAd64 - ok
16:03:25.0615 0x18a8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] SamSs           C:\Windows\system32\lsass.exe
16:03:25.0625 0x18a8 SamSs - ok
16:03:25.0636 0x18a8 [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
16:03:25.0648 0x18a8 sbp2port - ok
16:03:25.0687 0x18a8 [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
16:03:25.0720 0x18a8 SCardSvr - ok
16:03:25.0729 0x18a8 [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
16:03:25.0770 0x18a8 scfilter - ok
16:03:25.0842 0x18a8 [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
16:03:25.0933 0x18a8 Schedule - ok
16:03:25.0955 0x18a8 [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
16:03:25.0983 0x18a8 SCPolicySvc - ok
16:03:26.0002 0x18a8 [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
16:03:26.0022 0x18a8 SDRSVC - ok
16:03:26.0029 0x18a8 [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
16:03:26.0070 0x18a8 secdrv - ok
16:03:26.0090 0x18a8 [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
16:03:26.0134 0x18a8 seclogon - ok
16:03:26.0200 0x18a8 [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
16:03:26.0253 0x18a8 SENS - ok
16:03:26.0340 0x18a8 [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
16:03:26.0404 0x18a8 SensrSvc - ok
16:03:26.0415 0x18a8 [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\drivers\serenum.sys
16:03:26.0434 0x18a8 Serenum - ok
16:03:26.0441 0x18a8 [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\drivers\serial.sys
16:03:26.0472 0x18a8 Serial - ok
16:03:26.0492 0x18a8 [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
16:03:26.0516 0x18a8 sermouse - ok
16:03:26.0538 0x18a8 [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
16:03:26.0583 0x18a8 SessionEnv - ok
16:03:26.0586 0x18a8 [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
16:03:26.0599 0x18a8 sffdisk - ok
16:03:26.0601 0x18a8 [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
16:03:26.0616 0x18a8 sffp_mmc - ok
16:03:26.0620 0x18a8 [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
16:03:26.0659 0x18a8 sffp_sd - ok
16:03:26.0662 0x18a8 [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
16:03:26.0672 0x18a8 sfloppy - ok
16:03:26.0710 0x18a8 [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
16:03:26.0765 0x18a8 SharedAccess - ok
16:03:26.0787 0x18a8 [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
16:03:26.0822 0x18a8 ShellHWDetection - ok
16:03:26.0838 0x18a8 [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
16:03:26.0849 0x18a8 SiSRaid2 - ok
16:03:26.0853 0x18a8 [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
16:03:26.0864 0x18a8 SiSRaid4 - ok
16:03:26.0869 0x18a8 [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
16:03:26.0897 0x18a8 Smb - ok
16:03:26.0910 0x18a8 [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
16:03:26.0935 0x18a8 SNMPTRAP - ok
16:03:26.0938 0x18a8 [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
16:03:26.0948 0x18a8 spldr - ok
16:03:27.0006 0x18a8 [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
16:03:27.0060 0x18a8 Spooler - ok
16:03:27.0169 0x18a8 [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
16:03:27.0306 0x18a8 sppsvc - ok
16:03:27.0330 0x18a8 [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
16:03:27.0358 0x18a8 sppuinotify - ok
16:03:27.0401 0x18a8 [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
16:03:27.0430 0x18a8 srv - ok
16:03:27.0441 0x18a8 [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
16:03:27.0460 0x18a8 srv2 - ok
16:03:27.0470 0x18a8 [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
16:03:27.0483 0x18a8 srvnet - ok
16:03:27.0510 0x18a8 [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
16:03:27.0560 0x18a8 SSDPSRV - ok
16:03:27.0564 0x18a8 [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
16:03:27.0593 0x18a8 SstpSvc - ok
16:03:27.0640 0x18a8 [ 3F0826F632F66906CB3ED62202A6BAD7, CA21B038DD1A1BED7293A8DEEBE19D43D1C12378ED5C6B82D36900CD4FFF23B7 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
16:03:28.0003 0x18a8 Steam Client Service - ok
16:03:28.0057 0x18a8 [ CDA9313E34887A111B8309B55BCDCD82, AC070AA093B7013E4D1B29F4FAF9B469C3C261E4D3D1512B4F77CC609CBD1484 ] Stereo Service C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
16:03:28.0074 0x18a8 Stereo Service - ok
16:03:28.0100 0x18a8 [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
16:03:28.0110 0x18a8 stexstor - ok
16:03:28.0147 0x18a8 [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
16:03:28.0175 0x18a8 stisvc - ok
16:03:28.0231 0x18a8 [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
16:03:28.0382 0x18a8 storflt - ok
16:03:28.0660 0x18a8 [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
16:03:29.0039 0x18a8 storvsc - ok
16:03:29.0053 0x18a8 [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
16:03:29.0081 0x18a8 swenum - ok
16:03:29.0235 0x18a8 [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] SwitchBoard     C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:03:29.0324 0x18a8 SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
16:03:32.0269 0x18a8 Detect skipped due to KSN trusted
16:03:32.0269 0x18a8 SwitchBoard - ok
16:03:32.0338 0x18a8 [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
16:03:32.0405 0x18a8 swprv - ok
16:03:32.0454 0x18a8 [ C3A39C4079305480972D29C44B868C78, 8F1BB75C743256F905EAEDE744B6082C53774C49126875FB4E4FBA30F5478B17 ] Synth3dVsc      C:\Windows\system32\drivers\synth3dvsc.sys
16:03:32.0473 0x18a8 Synth3dVsc - ok
16:03:32.0570 0x18a8 [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
16:03:32.0666 0x18a8 SysMain - ok
16:03:32.0691 0x18a8 [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
16:03:32.0708 0x18a8 TabletInputService - ok
16:03:32.0731 0x18a8 [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
16:03:32.0779 0x18a8 TapiSrv - ok
16:03:32.0801 0x18a8 [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
16:03:32.0829 0x18a8 TBS - ok
16:03:32.0931 0x18a8 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
16:03:33.0002 0x18a8 Tcpip - ok
16:03:33.0048 0x18a8 [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
16:03:33.0092 0x18a8 TCPIP6 - ok
16:03:33.0140 0x18a8 [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
16:03:33.0158 0x18a8 tcpipreg - ok
16:03:33.0216 0x18a8 [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
16:03:33.0263 0x18a8 TDPIPE - ok
16:03:33.0280 0x18a8 [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
16:03:33.0308 0x18a8 TDTCP - ok
16:03:33.0328 0x18a8 [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
16:03:33.0371 0x18a8 tdx - ok
16:03:33.0395 0x18a8 [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
16:03:33.0405 0x18a8 TermDD - ok
16:03:33.0421 0x18a8 [ EF4469AB69EB15E5D3754E6AEAFBCD3D, 3609214C3D5181364B544EBF17E9A109952BE1C4C35BE0A8727BFA8F49ECB130 ] terminpt        C:\Windows\system32\drivers\terminpt.sys
16:03:33.0459 0x18a8 terminpt - ok
16:03:33.0485 0x18a8 [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
16:03:33.0537 0x18a8 TermService - ok
16:03:33.0555 0x18a8 [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
16:03:33.0571 0x18a8 Themes - ok
16:03:33.0586 0x18a8 [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
16:03:33.0613 0x18a8 THREADORDER - ok
16:03:33.0652 0x18a8 [ 0A03E85A641F2672796D34F506066594, B2AA139CC53F25DB1709844483D404A8FA1D010167BCF164B4A31A029C606F7D ] TomTomHOMEService C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
16:03:33.0663 0x18a8 TomTomHOMEService - ok
16:03:33.0675 0x18a8 [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
16:03:33.0717 0x18a8 TrkWks - ok
16:03:33.0777 0x18a8 [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
16:03:33.0825 0x18a8 TrustedInstaller - ok
16:03:33.0861 0x18a8 [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
16:03:33.0926 0x18a8 tssecsrv - ok
16:03:33.0945 0x18a8 [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
16:03:34.0003 0x18a8 TsUsbFlt - ok
16:03:34.0020 0x18a8 [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
16:03:34.0045 0x18a8 TsUsbGD - ok
16:03:34.0068 0x18a8 [ E1748D04AE40118B62BC18AC86032192, A954B141D1B27272C771D14F3B40C7CC1F572DD72559F2C96182EFBE2B095FDE ] tsusbhub        C:\Windows\system32\drivers\tsusbhub.sys
16:03:34.0101 0x18a8 tsusbhub - ok
16:03:34.0132 0x18a8 [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
16:03:34.0184 0x18a8 tunnel - ok
16:03:34.0215 0x18a8 [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
16:03:34.0227 0x18a8 uagp35 - ok
16:03:34.0246 0x18a8 [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
16:03:34.0318 0x18a8 udfs - ok
16:03:34.0340 0x18a8 [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
16:03:34.0368 0x18a8 UI0Detect - ok
16:03:34.0388 0x18a8 [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
16:03:34.0401 0x18a8 uliagpkx - ok
16:03:34.0412 0x18a8 [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
16:03:34.0435 0x18a8 umbus - ok
16:03:34.0438 0x18a8 [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
16:03:34.0468 0x18a8 UmPass - ok
16:03:34.0490 0x18a8 [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
16:03:34.0521 0x18a8 UmRdpService - ok
16:03:34.0552 0x18a8 [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
16:03:34.0604 0x18a8 upnphost - ok
16:03:34.0624 0x18a8 [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
16:03:34.0636 0x18a8 USBAAPL64 - ok
16:03:34.0662 0x18a8 [ 5FCC71487888589A9244AF54CFEFAB29, 26ABD7B15B92231CB3090E888B15673964DC50BEDF65583A3FEA74DD315D5088 ] usbbus          C:\Windows\system32\DRIVERS\lgx64bus.sys
16:03:34.0682 0x18a8 usbbus - ok
16:03:34.0692 0x18a8 [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
16:03:34.0709 0x18a8 usbccgp - ok
16:03:34.0725 0x18a8 [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
16:03:34.0771 0x18a8 usbcir - ok
16:03:34.0794 0x18a8 [ 3FB6E423F7567C92C32EA786F5FD0C69, E9914DCCC0898497B4300D3D5ED424670551A4C8CB8F4DBF860BB86DBFCEF71A ] UsbDiag         C:\Windows\system32\DRIVERS\lgx64diag.sys
16:03:34.0818 0x18a8 UsbDiag - ok
16:03:34.0846 0x18a8 [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
16:03:34.0870 0x18a8 usbehci - ok
16:03:34.0896 0x18a8 [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
16:03:34.0935 0x18a8 usbhub - ok
16:03:34.0955 0x18a8 [ 78D551F5B93488B4666F5FC8DD4815F3, 04036C917AB2F5ADD556C29BDD767859D48812EAC6081EC6EF510AF2167BE967 ] USBModem        C:\Windows\system32\DRIVERS\lgx64modem.sys
16:03:34.0966 0x18a8 USBModem - ok
16:03:34.0970 0x18a8 [ 58E546BBAF87664FC57E0F6081E4F609, 1DD99D57369A0069654432AB5325AFD8F7D422D531E053EA05FF664BA6BDAEF9 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
16:03:34.0983 0x18a8 usbohci - ok
16:03:34.0996 0x18a8 [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
16:03:35.0026 0x18a8 usbprint - ok
16:03:35.0051 0x18a8 [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
16:03:35.0097 0x18a8 usbscan - ok
16:03:35.0120 0x18a8 [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:03:35.0173 0x18a8 USBSTOR - ok
16:03:35.0177 0x18a8 [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
16:03:35.0189 0x18a8 usbuhci - ok
16:03:35.0220 0x18a8 [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
16:03:35.0270 0x18a8 UxSms - ok
16:03:35.0289 0x18a8 [ 204F3F58212B3E422C90BD9691A2DF28, D748A8CEE4D59B4248C9B1ACA5155D0FF6635A29564B4391B7FAC6261F93FE99 ] VaultSvc        C:\Windows\system32\lsass.exe
16:03:35.0302 0x18a8 VaultSvc - ok
16:03:35.0315 0x18a8 [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
16:03:35.0325 0x18a8 vdrvroot - ok
16:03:35.0418 0x18a8 [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
16:03:35.0469 0x18a8 vds - ok
16:03:35.0484 0x18a8 [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
16:03:35.0497 0x18a8 vga - ok
16:03:35.0508 0x18a8 [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
16:03:35.0555 0x18a8 VgaSave - ok
16:03:35.0557 0x18a8 VGPU - ok
16:03:35.0583 0x18a8 [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
16:03:35.0599 0x18a8 vhdmp - ok
16:03:35.0618 0x18a8 [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
16:03:35.0628 0x18a8 viaide - ok
16:03:35.0652 0x18a8 [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
16:03:35.0667 0x18a8 vmbus - ok
16:03:35.0688 0x18a8 [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
16:03:35.0699 0x18a8 VMBusHID - ok
16:03:35.0717 0x18a8 [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
16:03:35.0728 0x18a8 volmgr - ok
16:03:35.0742 0x18a8 [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
16:03:35.0760 0x18a8 volmgrx - ok
16:03:35.0803 0x18a8 [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
16:03:35.0820 0x18a8 volsnap - ok
16:03:35.0882 0x18a8 [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
16:03:35.0903 0x18a8 vsmraid - ok
16:03:35.0962 0x18a8 [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
16:03:36.0062 0x18a8 VSS - ok
16:03:36.0073 0x18a8 [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
16:03:36.0097 0x18a8 vwifibus - ok
16:03:36.0125 0x18a8 [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
16:03:36.0161 0x18a8 W32Time - ok
16:03:36.0174 0x18a8 [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
16:03:36.0200 0x18a8 WacomPen - ok
16:03:36.0218 0x18a8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
16:03:36.0255 0x18a8 WANARP - ok
16:03:36.0275 0x18a8 [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
16:03:36.0302 0x18a8 Wanarpv6 - ok
16:03:36.0350 0x18a8 [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
16:03:36.0396 0x18a8 WatAdminSvc - ok
16:03:36.0439 0x18a8 [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
16:03:36.0549 0x18a8 wbengine - ok
16:03:36.0562 0x18a8 [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
16:03:36.0581 0x18a8 WbioSrvc - ok
16:03:36.0602 0x18a8 [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
16:03:36.0645 0x18a8 wcncsvc - ok
16:03:36.0667 0x18a8 [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
16:03:36.0685 0x18a8 WcsPlugInService - ok
16:03:36.0701 0x18a8 [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
16:03:36.0711 0x18a8 Wd - ok
16:03:36.0754 0x18a8 [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
16:03:36.0782 0x18a8 Wdf01000 - ok
16:03:36.0849 0x18a8 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost C:\Windows\system32\wdi.dll
16:03:36.0920 0x18a8 WdiServiceHost - ok
16:03:36.0924 0x18a8 [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
16:03:36.0940 0x18a8 WdiSystemHost - ok
16:03:36.0972 0x18a8 [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
16:03:37.0001 0x18a8 WebClient - ok
16:03:37.0029 0x18a8 [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
16:03:37.0077 0x18a8 Wecsvc - ok
16:03:37.0092 0x18a8 [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
16:03:37.0121 0x18a8 wercplsupport - ok
16:03:37.0143 0x18a8 [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
16:03:37.0191 0x18a8 WerSvc - ok
16:03:37.0205 0x18a8 [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
16:03:37.0233 0x18a8 WfpLwf - ok
16:03:37.0245 0x18a8 [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
16:03:37.0254 0x18a8 WIMMount - ok
16:03:37.0262 0x18a8 WinDefend - ok
16:03:37.0272 0x18a8 WinHttpAutoProxySvc - ok
16:03:37.0331 0x18a8 [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
16:03:37.0366 0x18a8 Winmgmt - ok
16:03:37.0584 0x18a8 [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
16:03:37.0662 0x18a8 WinRM - ok
16:03:37.0694 0x18a8 [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
16:03:37.0721 0x18a8 WinUsb - ok
16:03:37.0763 0x18a8 [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
16:03:37.0821 0x18a8 Wlansvc - ok
16:03:37.0838 0x18a8 [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
16:03:37.0849 0x18a8 WmiAcpi - ok
16:03:37.0865 0x18a8 [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
16:03:37.0892 0x18a8 wmiApSrv - ok
16:03:37.0910 0x18a8 WMPNetworkSvc - ok
16:03:37.0916 0x18a8 [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
16:03:37.0935 0x18a8 WPCSvc - ok
16:03:37.0945 0x18a8 [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
16:03:37.0961 0x18a8 WPDBusEnum - ok
16:03:37.0965 0x18a8 [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
16:03:38.0007 0x18a8 ws2ifsl - ok
16:03:38.0034 0x18a8 [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
16:03:38.0070 0x18a8 wscsvc - ok
16:03:38.0073 0x18a8 WSearch - ok
16:03:38.0184 0x18a8 [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
16:03:38.0266 0x18a8 wuauserv - ok
16:03:38.0296 0x18a8 [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
16:03:38.0316 0x18a8 WudfPf - ok
16:03:38.0331 0x18a8 [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
16:03:38.0358 0x18a8 WUDFRd - ok
16:03:38.0385 0x18a8 [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
16:03:38.0410 0x18a8 wudfsvc - ok
16:03:38.0440 0x18a8 [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
16:03:38.0469 0x18a8 WwanSvc - ok
16:03:38.0472 0x18a8 ================ Scan global ===============================
16:03:38.0505 0x18a8 [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
16:03:38.0524 0x18a8 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:03:38.0540 0x18a8 [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
16:03:38.0586 0x18a8 [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
16:03:38.0620 0x18a8 [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
16:03:38.0632 0x18a8 [ Global ] - ok
16:03:38.0633 0x18a8 ================ Scan MBR ==================================
16:03:38.0650 0x18a8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
16:03:40.0889 0x18a8 \Device\Harddisk0\DR0 - ok
16:03:40.0900 0x18a8 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk5\DR5
16:03:41.0571 0x18a8 \Device\Harddisk5\DR5 - ok
16:03:41.0574 0x18a8 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk6\DR6
16:03:41.0667 0x18a8 \Device\Harddisk6\DR6 - ok
16:03:41.0672 0x18a8 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk7\DR7
16:03:41.0788 0x18a8 \Device\Harddisk7\DR7 - ok
16:03:41.0788 0x18a8 ================ Scan VBR ==================================
16:03:41.0798 0x18a8 [ C5202E31455B1FF24035DB9A142F5C49 ] \Device\Harddisk0\DR0\Partition1
16:03:42.0040 0x18a8 \Device\Harddisk0\DR0\Partition1 - ok
16:03:42.0103 0x18a8 [ 3153E6F68952D45DB351ABA69D724DC6 ] \Device\Harddisk0\DR0\Partition2
16:03:42.0215 0x18a8 \Device\Harddisk0\DR0\Partition2 - ok
16:03:42.0219 0x18a8 [ C966EF1181721A9BD1648B705A67DBE9 ] \Device\Harddisk5\DR5\Partition1
16:03:42.0255 0x18a8 \Device\Harddisk5\DR5\Partition1 - ok
16:03:42.0259 0x18a8 [ 5A43E8DB2F40C35FD0B06F988CA6C52D ] \Device\Harddisk6\DR6\Partition1
16:03:42.0282 0x18a8 \Device\Harddisk6\DR6\Partition1 - ok
16:03:42.0286 0x18a8 [ 24084A8DC5B70F26A4231DC0B30BC45C ] \Device\Harddisk7\DR7\Partition1
16:03:42.0290 0x18a8 \Device\Harddisk7\DR7\Partition1 - ok
16:03:42.0290 0x18a8 ================ Scan generic autorun ======================
16:03:42.0488 0x18a8 [ D8034ECA85CC95AAC3E884F33A7421E3, CE73E94F6967BEAA1840E68FF947DCCA5DC93186FC0DB83794007CF588D5E7A7 ] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe
16:03:42.0559 0x18a8 nwiz - ok
16:03:42.0681 0x18a8 [ 569AC1376B12D4083FC66CC7A304F234, DD209F09573F10A77D710E30EF3D0461D2E8F4E5F18106B18EFB587C88393460 ] c:\Program Files\Microsoft Security Client\msseces.exe
16:03:42.0726 0x18a8 MSC - ok
16:03:42.0836 0x18a8 [ F5A5DBADCD24BDF33BFDAA789E39C876, A0D931FA339CA1FB6198BF5DF327ECEB0881796FFF92BDE0F9FC2C233C46E83C ] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe
16:03:42.0860 0x18a8 AdobeAAMUpdater-1.0 - ok
16:03:43.0105 0x18a8 [ 6358ED328AA08D7D0A7A2E40A32ACD80, 0859E7BA6350CF4DB01E998217FD72B0B0D0D5F1219CF8876F37D07322EE11AB ] C:\Program Files (x86)\Hightail Desktop App\Hightail.exe
16:03:43.0319 0x18a8 Hightail Sync Agent - ok
16:03:43.0433 0x18a8 Labaol - ok
16:03:43.0530 0x18a8 [ 187F4C75A89E3F412322C94526320074, D78FA7EF93C8C7B4326A5B6DB04A92ADD091DF00658FA8731D07C5D3BE29ED04 ] C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe
16:03:43.0563 0x18a8 BCSSync - ok
16:03:43.0610 0x18a8 [ 5B6E8E09BE6401A7E022F52FDFCB2FF8, 471C556CF9405BBB380A8CEFE945C126B954B7C94F79CC72441B51F80141FC5E ] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
16:03:43.0631 0x18a8 SunJavaUpdateSched - ok
16:03:43.0726 0x18a8 [ 048EA4B978851788E9F5E8E4F081DF7A, EB62719AC0DCC18FF056F2CD84438BF14B61E38F0619617C81961C6257BDFCEC ] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
16:03:43.0771 0x18a8 Adobe ARM - ok
16:03:43.0832 0x18a8 [ 94A4D6915D4F572309DF6137E1846528, E46BDF83CAA6683AA655DBA3D2C8DC7AC06251E952466A20CFDA3A16B1840455 ] C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
16:03:43.0839 0x18a8 APSDaemon - ok
16:03:43.0895 0x18a8 [ 08E7173D1B74095335052459200CB1EA, 5B6EB8A65B5F451BF6115EB7CD1355E5870E6D764F22D767D13216BF17C5668F ] C:\Program Files (x86)\QuickTime\QTTask.exe
16:03:43.0926 0x18a8 QuickTime Task - detected UnsignedFile.Multi.Generic ( 1 )
16:03:46.0874 0x18a8 Detect skipped due to KSN trusted
16:03:46.0874 0x18a8 QuickTime Task - ok
16:03:47.0025 0x18a8 [ 27CFFB1E41A2BE2A25957A679BD84E10, 521DC8F3439EAA780AE0DA68B0FC6E671963AF76E165590EA83D2F6896B1C941 ] C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe
16:03:47.0066 0x18a8 AdobeCS5ServiceManager - detected UnsignedFile.Multi.Generic ( 1 )
16:03:49.0827 0x18a8 Detect skipped due to KSN trusted
16:03:49.0827 0x18a8 AdobeCS5ServiceManager - ok
16:03:49.0918 0x18a8 [ F577910A133A592234EBAAD3F3AFA258, 36F514740EE2D2B2F7ABFFFA13D575233EC4CE774EB58BF889C09930FEF1F443 ] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
16:03:49.0942 0x18a8 SwitchBoard - detected UnsignedFile.Multi.Generic ( 1 )
16:03:49.0942 0x18a8 Detect skipped due to KSN trusted
16:03:49.0942 0x18a8 SwitchBoard - ok
16:03:50.0080 0x18a8 [ E43A851F7B12DE589424D6C656155CFC, FD42172921C18D1BBDFC0C5CFFFD6D0534764D770E210CA3E1DF61A66A99BE62 ] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe
16:03:50.0110 0x18a8 AdobeCS4ServiceManager - ok
16:03:51.0107 0x18a8 [ 4CDF90E852837C827C855F8E8E2C5FE2, 1918CE3A880E2067D52C538096DA2D35DFCA2D742E2ED370CF2DFE22840024FD ] C:\Program Files (x86)\Common Files\Intuit\Sync\IntuitSyncManager.exe
16:03:51.0198 0x18a8 Intuit SyncManager - ok
16:03:51.0323 0x18a8 [ 35FD33EAE23AF69715EE3231A9F15B82, C7351F3537F4B938E4E8A8A8DD59039298F9B09678A4BC09B2A362DC4B25E2C0 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe
16:03:51.0336 0x18a8 Adobe Acrobat Speed Launcher - ok
16:03:51.0377 0x18a8 [ 0FE0EDF01CEA3BEB2E65A904BB87525E, 8846CE71FC5DD86151F467B656D886A8E81E337B10A591097E5695BDB2821447 ] C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe
16:03:51.0397 0x18a8 Acrobat Assistant 8.0 - ok
16:03:51.0543 0x18a8 [ 43ECFBA026E6CFEF983FF6CD1D38D639, D13ACC5191F9FBB8234BEE91BC6FA5E4ECF88ED44CA6B8644C5D05AB34ECA358 ] C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
16:03:51.0632 0x18a8 Adobe Creative Cloud - ok
16:03:51.0775 0x18a8 [ 2D06E8AF7C75F9B4D19FD9F135CA7F4F, 05EA44F98FD747E51C19CD311D65E3557C9B36D0CD2929BF853A13E9C5BADDCE ] C:\Program Files (x86)\Carbonite\Carbonite Backup\CarboniteUI.exe
16:03:51.0809 0x18a8 Carbonite Backup - ok
16:03:52.0000 0x18a8 [ D3F0452392C45081D8866A92C86D1C7C, A746ED0D69FC51D974B445AB387C7315B70D7555B7499945A1D64F3E8A865340 ] C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe
16:03:52.0211 0x18a8 ISUSPM - ok
16:03:52.0252 0x18a8 [ 7E7B79B166114D6B168F162B2F31E5BD, D5A21C102D045DF0A0AC0808F74409E4AEBD35560C6E8223B85C80EE06810934 ] C:\Program Files (x86)\Roxio Easy CD & DVD Burning\Common\RoxWatchTray14.exe
16:03:52.0265 0x18a8 RoxWatchTray - ok
16:03:52.0336 0x18a8 [ D2E3E6D94A9E1CFA1561D9C748136FD0, C8CD851F1872086D18A329B47C7DEFAD2CE2E3A8F4321411247D06D07B2DB1D3 ] C:\Program Files (x86)\iTunes\iTunesHelper.exe
16:03:52.0347 0x18a8 iTunesHelper - ok
16:03:53.0036 0x18a8 [ BB43BF89E37C6AF6CFD6CDADFBC81D97, 2864A3F89E8EB390B376DD6766BCBE45FBDDA0965B84839E0F9D148F75104065 ] C:\Program Files\Gadwin\Gadwin PrintScreen\PrintScreen64.exe
16:03:53.0393 0x18a8 Gadwin PrintScreen (64-bit) - ok
16:03:53.0454 0x18a8 [ 3C8989CF2B59228785F16B3EB547F58C, B410410258129E00B16EDF404F6A8BEDD8E1A6598864F000056D352A002607D9 ] C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
16:03:53.0473 0x18a8 TomTomHOME.exe - ok
16:03:53.0473 0x18a8 Sidebar - ok
16:03:53.0475 0x18a8 Waiting for KSN requests completion. In queue: 11
16:03:54.0476 0x18a8 Waiting for KSN requests completion. In queue: 11
16:03:55.0476 0x18a8 Waiting for KSN requests completion. In queue: 11
16:03:56.0493 0x18a8 AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.5.216.0 ), 0x61000 ( enabled : updated )
16:03:56.0497 0x18a8 Win FW state via NFP2: enabled
16:04:10.0320 0x18a8 ============================================================
16:04:10.0320 0x18a8 Scan finished
16:04:10.0320 0x18a8 ============================================================
16:04:10.0332 0x1914 Detected object count: 0
16:04:10.0332 0x1914 Actual detected object count: 0

#45
briz_dad

Posted 01 July 2014 - 05:11 PM

Member

Topic Starter
Member
251 posts

As an aside I have another case of this and AswMBR reported it ???

mysteriouser, mysteriouser.... :headscratch:

Back to Virus, Spyware, Malware Removal · Next Unread Topic →

Also tagged with one or more of these keywords: usps, email, executable

Software → Web Browsers and Email → E-mail gat hacked... how? and now what? Started by Light Knight , 19 Mar 2024 email	1 reply 310 views	phillpower2 19 Mar 2024
Discussion → Off-Topic → Microsoft Live email inbox full and will not let me delete them Started by Primaxuk , 23 Jan 2019 Email	2 replies 4,159 views	richardmiller 14 Feb 2019
email Software → Web Browsers and Email → Beap.gemini.yahoo.com in my email Started by Gwatrobski , 14 Jan 2019 email	2 replies 3,660 views	Gwatrobski 19 Jan 2019
Security → Smartphone Virus / Mobile Malware → Twitter - Locked Out of Verified Account Started by sklgtech , 07 Jan 2019 twitter, social media, security and 5 more...	1 reply 6,480 views	paws 08 Jan 2019
Operating Systems → Google Android → Can't get rid of old Gmail labels on my GS8 Started by RoadRunnerMeepMeep , 29 Mar 2018 gmail, email, labels	1 reply 3,315 views	SpywareDr 31 Mar 2018