Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Firefox opens a new tab on its own and loads an odd 'Women's Health' page


  • This topic is locked This topic is locked
22 replies to this topic

#1 Chareth

Chareth

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:02:14 AM

Posted 18 October 2013 - 08:45 AM

About 3 times over the last month, a new tab has suddenly opened in Firefox while I'm reading a webpage. It loads a somewhat credible-looking article surrounded by advertisements. The heading is 'Women's Health: Four', with the same logo as the actual 'Women's Health' magazine. I haven't clicked the mouse or pressed a key before the tab appears. It just opens on its own.
 
When I close the tab, a dialog opens saying that I'm the 1000th visitor and have won a prize or something like that. (I'm afraid I don't have screenshots or transcripts of any of this material, as I've closed the dialogs and tab quickly in fear of them further infecting my machine. I hope this doesn't hinder the diagnosis.)
 
When I close this dialog, the tab loads a new page with much more basic text and appearance. I don't recall the content, but it had few or no images and the page doesn't look nearly as convincing as the previous one. When I try to close the tab again, I get another dialog asking if I want to 'Leave Page' or 'Stay on Page'. Clicking 'Leave Page' finally closes the tab.
 
Nothing further happens, and the problem doesn't happen again for roughly a couple of weeks. However, in the interim, web pages can often be very slow to load in Firefox and Chrome. In Chrome, pages sometimes don't load at all, requiring manual refreshes to finally get them to load. But overall, my web experience hasn't been hindered much. So far the tab has not appeared in Chrome, but I use it less.
 
I have scanned my machine with Avast, Ad-Aware, MalwareBytes Anti-Malware, Spybot, SUPERAntispyware, and Adwcleaner. Only Ad-Aware found an infection at the end of last month, which I deleted. Unfortunately Ad-Aware's history doesn't tell me the name of the infection, so I can't provide it here, although I'm fairly sure it was a trojan. However, while Ad-Aware has not detected anything since, the Women's Health tab problem has recurred.
 
Some time before the problem first occurred, I installed one of the free A-PDF editors via CNET, which also installed a MySearchDial toolbar in all of my browsers. I found online reports that helped me remove the toolbar, but perhaps this problem originated there too.
 
I'm running Windows 7 Professional with Service Pack 1.
 
Thanks in advance.


BC AdBot (Login to Remove)

 


#2 Netghost56

Netghost56

  • Members
  • 865 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:10:14 AM

Posted 18 October 2013 - 09:08 AM

You could always try uninstalling and reinstalled FF and Chrome.

 

You might check your Internet Options- check your homepage address to see if it's been altered (www.google.com could be changed to www.google.com/redir/ad/xxxx.jg etc)

 

Also check your Addons.



#3 Chareth

Chareth
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:02:14 AM

Posted 18 October 2013 - 10:10 PM

Thanks for replying. My homepage address hasn't been altered, and there are no unfamiliar Firefox addons or plugins.

 

Do you therefore suspect it isn't serious malware if uninstalling the browser could solve it? I assume the randomly appearing tab might be a symptom of a more serious infection.

 

I forgot to mention that I also ran TDSSKiller, which didn't find any infections.



#4 Netghost56

Netghost56

  • Members
  • 865 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:10:14 AM

Posted 19 October 2013 - 04:38 AM

I'm not a Malware Expert, therefore I can't make any recommendations for cleanup.

You might try downloading and running Autoruns, which will give you a list of all processes that are active. It'smuch more comprehensive than Task Manager. Don't remove anything without checking with someone here first.

Hopefully you'll get some official assistance soon.

Good luck!

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,673 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:14 AM

Posted 22 October 2013 - 01:54 PM

Let's also do these.


Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner

Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#6 Chareth

Chareth
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:02:14 AM

Posted 23 October 2013 - 08:09 AM

Thanks for your help, boopme. ESET had some promising findings, at the very least.

 

 

 

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by ******* (administrator) on 23-10-2013 at 18:52:36
Running from "C:\Users\*******\Desktop"
Microsoft Windows 7 Professional  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
"network.proxy.type", 2
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled taskoffload=disabled
set interface interface="Local Area Connection" forwarding=disabled advertise=disabled mtu=1454 metric=0 siteprefixlength=0 nud=disabled routerdiscovery=disabled managedaddress=disabled otherstateful=disabled weakhostsend=disabled 
 
weakhostreceive=disabled ignoredefaultroutes=disabled advertisedrouterlifetime=0 advertisedefaultroute=disabled currenthoplimit=0 forcearpndwolpattern=disabled enabledirectedmacwolpattern=disabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : *******-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : ****
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : ****
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : **-**-**-**-**-**
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe***********************(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.**.**(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.***.***
   Lease Obtained. . . . . . . . . . : Wednesday, 23 October 2013 6:24:11 PM
   Lease Expires . . . . . . . . . . : Sunday, 30 November 2149 1:21:03 AM
   Default Gateway . . . . . . . . . : 192.168.**.**
   DHCP Server . . . . . . . . . . . : 192.168.**.**
   DHCPv6 IAID . . . . . . . . . . . : 2401*****
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-A7-2E-FC-**-**-**-**-**-**
   DNS Servers . . . . . . . . . . . : 192.168.2.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.{CD4****-****-****-****-**************}:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : **-**-**-**-**-**-**-**
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Teredo Tunneling Pseudo-Interface:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : **-**-**-**-**-**-**-**
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.**.**
 
Name:    google.com
Addresses:  2404:6800:4006:805::1007
 74.125.237.162
 74.125.237.160
 74.125.237.165
 74.125.237.174
 74.125.237.168
 74.125.237.167
 74.125.237.164
 74.125.237.161
 74.125.237.166
 74.125.237.169
 74.125.237.163
 
 
Pinging google.com [74.125.237.162] with 32 bytes of data:
Reply from 74.125.237.162: bytes=32 time=32ms TTL=57
Reply from 74.125.237.162: bytes=32 time=34ms TTL=57
 
Ping statistics for 74.125.237.162:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 32ms, Maximum = 34ms, Average = 33ms
Server:  UnKnown
Address:  192.168.2.1
 
Name:    yahoo.com
Addresses:  206.190.36.45
 98.138.253.109
 98.139.183.24
 
 
Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=210ms TTL=52
Reply from 206.190.36.45: bytes=32 time=235ms TTL=52
 
Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 210ms, Maximum = 235ms, Average = 222ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 11...** ** ** ** ** ** ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 12...** ** ** ** ** ** 00 e0 Microsoft ISATAP Adapter
 13...** ** ** ** ** ** 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.*.*.*          0.*.*.*      192.168.*.*      192.168.*.*     20
        127.*.*.*        255.*.*.*         On-link         127.*.*.*    306
        127.*.*.*  255.255.**.**           On-link         127.*.*.*    306
  127.255.***.***  255.255.**.**           On-link         127.*.*.*    306
      192.168.*.*    255.255.**.**         On-link       192.168.*.*    276
      192.168.*.*  255.255.**.**           On-link       192.168.*.*    276
    192.168.*.***  255.255.**.**           On-link       192.168.*.*    276
        224.*.*.*        240.0.*.*         On-link         127.0.*.*    306
        224.*.*.*        240.0.*.*         On-link       192.168.*.*    276
  255.***.***.***  255.***.***.***         On-link         127.0.*.*    306
  255.***.***.***  255.***.***.***         On-link       192.168.*.*    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::*/***                  On-link
 11    276 ****::/**                On-link
 11    276 ****::*******************
                                    On-link
  1    306 ****::/*                 On-link
 11    276 ****::/*                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (10/23/2013 06:24:13 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/23/2013 06:56:24 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/21/2013 11:09:37 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/21/2013 07:25:43 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/19/2013 06:33:46 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/19/2013 07:06:18 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/18/2013 10:39:00 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8018
 
Error: (10/18/2013 10:39:00 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8018
 
Error: (10/18/2013 10:39:00 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (10/18/2013 10:38:59 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7004
 
 
System errors:
=============
Error: (10/23/2013 06:26:36 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422
 
Error: (10/23/2013 06:26:36 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422
 
Error: (10/23/2013 06:26:36 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422
 
Error: (10/23/2013 06:26:36 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422
 
Error: (10/23/2013 06:58:40 AM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422
 
Error: (10/23/2013 06:58:40 AM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422
 
Error: (10/23/2013 06:58:40 AM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422
 
Error: (10/23/2013 06:58:40 AM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422
 
Error: (10/21/2013 11:10:08 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422
 
Error: (10/21/2013 11:10:08 PM) (Source: WMPNetworkSvc) (User: )
Description: 0x80070422
 
 
Microsoft Office Sessions:
=========================
Error: (10/23/2013 06:24:13 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/23/2013 06:56:24 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/21/2013 11:09:37 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/21/2013 07:25:43 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/19/2013 06:33:46 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/19/2013 07:06:18 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (10/18/2013 10:39:00 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 8018
 
Error: (10/18/2013 10:39:00 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 8018
 
Error: (10/18/2013 10:39:00 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second
 
Error: (10/18/2013 10:38:59 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 7004
 
 
=========================== Installed Programs ============================
 
Ad-Aware Antivirus (Version: 10.5.3.4405)
Ad-Aware Browsing Protection (Version: 1.0.1.110)
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Reader X (10.1.8) (Version: 10.1.8)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
avast! Free Antivirus (Version: 8.0.1497.0)
Bonjour (Version: 3.0.0.10)
calibre (Version: 0.9.38)
CameraHelperMsi (Version: 13.25.1010.0)
Canon Easy-PhotoPrint EX
Canon MG5300 series MP Drivers
Canon MG5300 series On-screen Manual
Canon MP Navigator EX 5.0
Canon My Printer
Canon Solution Menu EX
CCleaner (Version: 4.04)
CyberLink BD Advisor 2.0
CyberLink Blu-ray Disc Suite (Version: 6.0.3226)
CyberLink LabelPrint (Version: 2.5.1916)
CyberLink LG Burning Tool (Version: 6.2.3714)
CyberLink MediaShow (Version: 4.1.3402)
CyberLink PowerDVD 9 (Version: 9.0.4322.52)
CyberLink PowerProducer (Version: 5.0.1.1520)
CyberLink YouCam (Version: 1.0.2609)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition
erLT (Version: 1.20.138.34)
e-tax 2011 (Version: 11.1.704)
e-tax 2012 (Version: 6.0.577)
Etron USB3.0 Host Controller (Version: 0.98)
Google Chrome (Version: 30.0.1599.101)
Google Update Helper (Version: 1.3.21.165)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1118)
Intel® Processor Graphics (Version: 8.15.10.2321)
IrfanView (remove only) (Version: 4.36)
iTunes (Version: 11.1.1.11)
Java 7 Update 40 (Version: 7.0.400)
Java Auto Updater (Version: 2.1.9.8)
LastPass(uninstall only)
LG Tool Kit (Version: 10.01.0712.01)
LibreOffice 3.3 (Version: 3.3.301)
LightScribe System Software (Version: 1.18.14.1)
Logitech Vid HD (Version: 7.2 (7248))
Logitech Webcam Software (Version: 2.0)
LWS Facebook (Version: 13.20.1166.0)
LWS Gallery (Version: 13.20.1166.0)
LWS Help_main (Version: 13.25.1016.0)
LWS Launcher (Version: 13.20.1166.0)
LWS Motion Detection (Version: 13.20.1176.0)
LWS Pictures And Video (Version: 13.25.1010.0)
LWS Twitter (Version: 13.20.1166.0)
LWS Video Mask Maker (Version: 13.10.1216.0)
LWS VideoEffects (Version: 13.25.1005.0)
LWS Webcam Software (Version: 13.20.1168.0)
LWS WLM Plugin (Version: 1.20.1166.0)
LWS YouTube Plugin (Version: 13.20.1166.0)
MACREX-8 demonstration (Version: 8.55)
Malwarebytes Anti-Malware version 1.62.0.1300 (Version: 1.62.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Office 2010 Service Pack 1 (SP1)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Home and Student 2010 (Version: 14.0.6029.1000)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.6029.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.6029.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Office Single Image 2010 (Version: 14.0.6029.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.6029.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
MozBackup 1.5.1
Mozilla Firefox 24.0 (x86 en-GB) (Version: 24.0)
Mozilla Maintenance Service (Version: 24.0.1)
Mozilla Thunderbird 24.0.1 (x86 en-GB) (Version: 24.0.1)
ON_OFF Charge B11.0110.1 (Version: 1.00.0001)
QuickTime (Version: 7.74.80.86)
Realtek Ethernet Controller Driver (Version: 7.38.113.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6307)
Revo Uninstaller 1.92 (Version: 1.92)
Skype™ 6.3 (Version: 6.3.107)
Spybot - Search & Destroy (Version: 2.2.25)
SUPERAntiSpyware (Version: 5.6.1032)
The Ultimate Troubleshooter
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553065)
Update for Microsoft Office 2010 (KB2553181) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553267) 32-Bit Edition
Update for Microsoft Office 2010 (KB2553310) 32-Bit Edition
Update for Microsoft Office 2010 (KB2566458)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition
Update for Microsoft Office 2010 (KB2596964) 32-Bit Edition
Update for Microsoft Office 2010 (KB2598242) 32-Bit Edition
Update for Microsoft Office 2010 (KB2687503) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition
Update for Microsoft Office 2010 (KB2767886) 32-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2553290) 32-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition
Update for Microsoft Outlook 2010 (KB2687623) 32-Bit Edition
Update for Microsoft Outlook Social Connector 2010 (KB2553406) 32-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2589371) 32-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition
VLC media player 2.1.0 (Version: 2.1.0)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 30%
Total physical RAM: 8109.12 MB
Available physical RAM: 5658.97 MB
Total Pagefile: 16216.41 MB
Available Pagefile: 12938.63 MB
Total Virtual: 4095.88 MB
Available Virtual: 3955.16 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:1862.92 GB) (Free:1699.21 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\*******-PC
 
Administrator            Guest                    *******                     
********                     
 
 
**** End of log ****
 
 
 
 
 
 
 
 
 
 
19:18:18.0464 0x1aa0  TDSS rootkit removing tool 3.0.0.14 Oct 15 2013 15:35:38
19:18:22.0711 0x1aa0  ============================================================
19:18:22.0711 0x1aa0  Current date / time: 2013/10/23 19:18:22.0711
19:18:22.0711 0x1aa0  SystemInfo:
19:18:22.0711 0x1aa0  
19:18:22.0711 0x1aa0  OS Version: 6.1.7601 ServicePack: 1.0
19:18:22.0711 0x1aa0  Product type: Workstation
19:18:22.0711 0x1aa0  ComputerName: ********-PC
19:18:22.0711 0x1aa0  UserName: ********
19:18:22.0711 0x1aa0  Windows directory: C:\Windows
19:18:22.0711 0x1aa0  System windows directory: C:\Windows
19:18:22.0711 0x1aa0  Running under WOW64
19:18:22.0711 0x1aa0  Processor architecture: Intel x64
19:18:22.0711 0x1aa0  Number of processors: 4
19:18:22.0711 0x1aa0  Page size: 0x1000
19:18:22.0711 0x1aa0  Boot type: Normal boot
19:18:22.0711 0x1aa0  ============================================================
19:18:24.0889 0x1aa0  System UUID: {*******-****-****-****-************}
19:18:25.0265 0x1aa0  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3F161, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
19:18:25.0275 0x1aa0  ============================================================
19:18:25.0275 0x1aa0  \Device\Harddisk0\DR0:
19:18:25.0276 0x1aa0  MBR partitions:
19:18:25.0276 0x1aa0  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum ***********
19:18:25.0276 0x1aa0  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum ***********
19:18:25.0276 0x1aa0  ============================================================
19:18:25.0373 0x1aa0  C: <-> \Device\Harddisk0\DR0\Partition2
19:18:25.0374 0x1aa0  ============================================================
19:18:25.0374 0x1aa0  Initialize success
19:18:25.0374 0x1aa0  ============================================================
19:18:57.0129 0x0c30  ============================================================
19:18:57.0129 0x0c30  Scan started
19:18:57.0129 0x0c30  Mode: Manual; 
19:18:57.0129 0x0c30  ============================================================
19:18:57.0129 0x0c30  KSN ping started
19:19:11.0092 0x0c30  KSN ping finished: true
19:19:11.0627 0x0c30  ================ Scan system memory ========================
19:19:11.0627 0x0c30  System memory - ok
19:19:11.0629 0x0c30  ================ Scan services =============================
19:19:11.0728 0x0c30  [ ABDCD326E1DD1C62509ED94C278A7453, 51E2722C7D2588BE1C29A1680C988B9BE45433E147CCE285C3A918216418E44B ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
19:19:11.0733 0x0c30  !SASCORE - ok
19:19:11.0858 0x0c30  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
19:19:11.0866 0x0c30  1394ohci - ok
19:19:11.0894 0x0c30  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
19:19:11.0903 0x0c30  ACPI - ok
19:19:11.0916 0x0c30  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
19:19:11.0917 0x0c30  AcpiPmi - ok
19:19:12.0017 0x0c30  [ AE1671A3C798A3467DE5E7DD12179803, 102DCD7552F27AB8B55C61601208705538F60AFDB81F8C3D0A82F575DDCF808A ] Ad-Aware Service C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
19:19:12.0043 0x0c30  Ad-Aware Service - ok
19:19:12.0127 0x0c30  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
19:19:12.0130 0x0c30  AdobeARMservice - ok
19:19:12.0242 0x0c30  [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
19:19:12.0250 0x0c30  AdobeFlashPlayerUpdateSvc - ok
19:19:12.0286 0x0c30  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
19:19:12.0300 0x0c30  adp94xx - ok
19:19:12.0319 0x0c30  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
19:19:12.0326 0x0c30  adpahci - ok
19:19:12.0338 0x0c30  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
19:19:12.0341 0x0c30  adpu320 - ok
19:19:12.0368 0x0c30  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
19:19:12.0369 0x0c30  AeLookupSvc - ok
19:19:12.0425 0x0c30  [ 314C17917AC8523EC77A710215012A65, 725CF2D5F63C06F7704C24FE0CFA696215DADC6C0EC445D9671E82F8E23E56AD ] AFD             C:\Windows\system32\drivers\afd.sys
19:19:12.0435 0x0c30  AFD - ok
19:19:12.0446 0x0c30  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
19:19:12.0448 0x0c30  agp440 - ok
19:19:12.0465 0x0c30  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
19:19:12.0468 0x0c30  ALG - ok
19:19:12.0501 0x0c30  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
19:19:12.0503 0x0c30  aliide - ok
19:19:12.0529 0x0c30  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
19:19:12.0531 0x0c30  amdide - ok
19:19:12.0541 0x0c30  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
19:19:12.0544 0x0c30  AmdK8 - ok
19:19:12.0550 0x0c30  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
19:19:12.0553 0x0c30  AmdPPM - ok
19:19:12.0587 0x0c30  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
19:19:12.0590 0x0c30  amdsata - ok
19:19:12.0612 0x0c30  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
19:19:12.0618 0x0c30  amdsbs - ok
19:19:12.0639 0x0c30  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
19:19:12.0640 0x0c30  amdxata - ok
19:19:12.0666 0x0c30  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
19:19:12.0669 0x0c30  AppID - ok
19:19:12.0699 0x0c30  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
19:19:12.0701 0x0c30  AppIDSvc - ok
19:19:12.0742 0x0c30  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
19:19:12.0744 0x0c30  Appinfo - ok
19:19:12.0818 0x0c30  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:19:12.0822 0x0c30  Apple Mobile Device - ok
19:19:12.0845 0x0c30  [ 6BE11AD81D4527D299F0CB5F3731AABC, 9C01278D3336CD74B9672A2A9EF7AF836CB0E7F2EA5BC310E9ADDD1238B92229 ] AppleCharger    C:\Windows\system32\DRIVERS\AppleCharger.sys
19:19:12.0846 0x0c30  AppleCharger - ok
19:19:12.0907 0x0c30  [ 95EF7247C50C7241FDAE39A9B3AFF4AE, 6E08FB095C04B2E217B139D6431336C0F24C128A2A83082A3085DC8C44AA247D ] AppleChargerSrv C:\Windows\system32\AppleChargerSrv.exe
19:19:12.0931 0x0c30  AppleChargerSrv - ok
19:19:13.0014 0x0c30  [ 4ABA3E75A76195A3E38ED2766C962899, E2001ACD44DA270B8289DA362D26416676301773AB22616C211F31CF2E7869AA ] AppMgmt         C:\Windows\System32\appmgmts.dll
19:19:13.0022 0x0c30  AppMgmt - ok
19:19:13.0034 0x0c30  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
19:19:13.0038 0x0c30  arc - ok
19:19:13.0048 0x0c30  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
19:19:13.0052 0x0c30  arcsas - ok
19:19:13.0088 0x0c30  [ A83C9C15680BB9E270ACF7172068E287, 0841A2151D9FDF834F989B1FD5A319871C9069BA62077947516BB9735B99B648 ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
19:19:13.0089 0x0c30  aswFsBlk - ok
19:19:13.0126 0x0c30  [ 5C40B8D77EBEE1DE0E7A8CDD0CD75773, 3D9C70795FE2C33F2561B40327EE4EB3FB0E06CB0B469668B373120C54D7C205 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
19:19:13.0129 0x0c30  aswMonFlt - ok
19:19:13.0182 0x0c30  [ 997F6977294B9ACB7F400431DF8E3A4A, E597F8096479554F0A5765E5F809DCBB8FB502BF96112F4B0E14E2034DC1FC06 ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
19:19:13.0185 0x0c30  aswRdr - ok
19:19:13.0247 0x0c30  [ 286193DC28CFB4CEB8D378E20A0850A9, 60E8C8E4ABBC127B3137E7854467F69AA2352C23AA2132AF92B9BFA1C5A0130A ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
19:19:13.0249 0x0c30  aswRvrt - ok
19:19:13.0293 0x0c30  [ 58B93BA20D4693D0800D2B0A62B8059D, 0109D189FF0D42F6F97C08C459EAF94F190E9F893E0C92A08A472A9E21D5E0E5 ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
19:19:13.0308 0x0c30  aswSnx - ok
19:19:13.0332 0x0c30  [ EC7148DB4D126C81426A67602822E62C, BA967D5A96813867571C1629292C1DEEB743168F2C2F21060FC3DA6354CB49B3 ] aswSP           C:\Windows\system32\drivers\aswSP.sys
19:19:13.0338 0x0c30  aswSP - ok
19:19:13.0341 0x0c30  [ 0E422E9CB7CD9C0AA6D4DFEAFA086EAA, E3DE7AE0906AA1D83F43B7AF001F1636E33FAE82919934B6B75DF7EA128CD52E ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
19:19:13.0343 0x0c30  aswTdi - ok
19:19:13.0357 0x0c30  [ 9FE455C916C656144B004E3EB48507CE, D645135ED01914135B7FE764528F8B20A445B5658E075D14459A10AE275E4871 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
19:19:13.0361 0x0c30  aswVmm - ok
19:19:13.0368 0x0c30  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
19:19:13.0369 0x0c30  AsyncMac - ok
19:19:13.0399 0x0c30  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
19:19:13.0400 0x0c30  atapi - ok
19:19:13.0434 0x0c30  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
19:19:13.0448 0x0c30  AudioEndpointBuilder - ok
19:19:13.0463 0x0c30  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
19:19:13.0473 0x0c30  AudioSrv - ok
19:19:13.0523 0x0c30  [ 9330941C8F6DF417F6DBBE998DB6687E, 28BC051D7C74721BAF85BE2AAB97EAE44152779106C5BDA1FDA07B9C049E2FDC ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
19:19:13.0525 0x0c30  avast! Antivirus - ok
19:19:13.0555 0x0c30  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
19:19:13.0560 0x0c30  AxInstSV - ok
19:19:13.0620 0x0c30  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
19:19:13.0634 0x0c30  b06bdrv - ok
19:19:13.0707 0x0c30  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
19:19:13.0736 0x0c30  b57nd60a - ok
19:19:13.0776 0x0c30  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
19:19:13.0780 0x0c30  BDESVC - ok
19:19:13.0794 0x0c30  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
19:19:13.0795 0x0c30  Beep - ok
19:19:13.0856 0x0c30  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
19:19:13.0869 0x0c30  BFE - ok
19:19:13.0907 0x0c30  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
19:19:13.0925 0x0c30  BITS - ok
19:19:13.0947 0x0c30  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
19:19:13.0948 0x0c30  blbdrive - ok
19:19:14.0020 0x0c30  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
19:19:14.0036 0x0c30  Bonjour Service - ok
19:19:14.0086 0x0c30  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
19:19:14.0090 0x0c30  bowser - ok
19:19:14.0101 0x0c30  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
19:19:14.0103 0x0c30  BrFiltLo - ok
19:19:14.0107 0x0c30  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
19:19:14.0108 0x0c30  BrFiltUp - ok
19:19:14.0141 0x0c30  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
19:19:14.0145 0x0c30  Browser - ok
19:19:14.0169 0x0c30  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
19:19:14.0177 0x0c30  Brserid - ok
19:19:14.0196 0x0c30  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
19:19:14.0198 0x0c30  BrSerWdm - ok
19:19:14.0201 0x0c30  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
19:19:14.0202 0x0c30  BrUsbMdm - ok
19:19:14.0205 0x0c30  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
19:19:14.0207 0x0c30  BrUsbSer - ok
19:19:14.0212 0x0c30  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
19:19:14.0214 0x0c30  BTHMODEM - ok
19:19:14.0245 0x0c30  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
19:19:14.0248 0x0c30  bthserv - ok
19:19:14.0264 0x0c30  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
19:19:14.0267 0x0c30  cdfs - ok
19:19:14.0281 0x0c30  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
19:19:14.0286 0x0c30  cdrom - ok
19:19:14.0299 0x0c30  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
19:19:14.0303 0x0c30  CertPropSvc - ok
19:19:14.0314 0x0c30  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
19:19:14.0316 0x0c30  circlass - ok
19:19:14.0356 0x0c30  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
19:19:14.0368 0x0c30  CLFS - ok
19:19:14.0452 0x0c30  [ 4642B5A3E0D2E61D08163DE95FC5B949, C1A502ED96EB4AF7FE8643AD139A0AAA5492583E6D83A3937443662CDD430FE4 ] CLKMSVC10_9EC60124 C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe
19:19:14.0461 0x0c30  CLKMSVC10_9EC60124 - ok
19:19:14.0517 0x0c30  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:19:14.0521 0x0c30  clr_optimization_v2.0.50727_32 - ok
19:19:14.0581 0x0c30  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
19:19:14.0586 0x0c30  clr_optimization_v2.0.50727_64 - ok
19:19:14.0641 0x0c30  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
19:19:14.0646 0x0c30  clr_optimization_v4.0.30319_32 - ok
19:19:14.0699 0x0c30  [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
19:19:14.0705 0x0c30  clr_optimization_v4.0.30319_64 - ok
19:19:14.0718 0x0c30  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
19:19:14.0719 0x0c30  CmBatt - ok
19:19:14.0747 0x0c30  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
19:19:14.0748 0x0c30  cmdide - ok
19:19:14.0799 0x0c30  [ 9AC4F97C2D3E93367E2148EA940CD2CD, 530E089E5CF868AECDB2B5548EBE76E0CA98FC74A72897292AB2485734402E3B ] CNG             C:\Windows\system32\Drivers\cng.sys
19:19:14.0814 0x0c30  CNG - ok
19:19:14.0833 0x0c30  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
19:19:14.0834 0x0c30  Compbatt - ok
19:19:14.0869 0x0c30  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
19:19:14.0871 0x0c30  CompositeBus - ok
19:19:14.0875 0x0c30  COMSysApp - ok
19:19:14.0893 0x0c30  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
19:19:14.0895 0x0c30  crcdisk - ok
19:19:14.0948 0x0c30  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
19:19:14.0955 0x0c30  CryptSvc - ok
19:19:14.0995 0x0c30  [ 54DA3DFD29ED9F1619B6F53F3CE55E49, 9177C6907A983296BF188892A894B668A09FFA058FD56B50FE12940D54B0FA5E ] CSC             C:\Windows\system32\drivers\csc.sys
19:19:15.0010 0x0c30  CSC - ok
19:19:15.0042 0x0c30  [ 3AB183AB4D2C79DCF459CD2C1266B043, 72B0187EBA9DC74E61EC5CB3DC24058DDB768843E865801894AAEAA211610C56 ] CscService      C:\Windows\System32\cscsvc.dll
19:19:15.0061 0x0c30  CscService - ok
19:19:15.0115 0x0c30  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
19:19:15.0127 0x0c30  DcomLaunch - ok
19:19:15.0162 0x0c30  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
19:19:15.0168 0x0c30  defragsvc - ok
19:19:15.0179 0x0c30  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
19:19:15.0182 0x0c30  DfsC - ok
19:19:15.0204 0x0c30  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
19:19:15.0209 0x0c30  Dhcp - ok
19:19:15.0218 0x0c30  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
19:19:15.0220 0x0c30  discache - ok
19:19:15.0250 0x0c30  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
19:19:15.0253 0x0c30  Disk - ok
19:19:15.0275 0x0c30  [ 5DB085A8A6600BE6401F2B24EECB5415, 5FC5C7C1B4DB7BF6EFD0992E91DB41FD047E90D1ABA0B8F868CB72557F88FB13 ] dmvsc           C:\Windows\system32\drivers\dmvsc.sys
19:19:15.0278 0x0c30  dmvsc - ok
19:19:15.0324 0x0c30  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
19:19:15.0330 0x0c30  Dnscache - ok
19:19:15.0366 0x0c30  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
19:19:15.0376 0x0c30  dot3svc - ok
19:19:15.0392 0x0c30  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
19:19:15.0396 0x0c30  DPS - ok
19:19:15.0420 0x0c30  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
19:19:15.0421 0x0c30  drmkaud - ok
19:19:15.0481 0x0c30  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
19:19:15.0496 0x0c30  DXGKrnl - ok
19:19:15.0522 0x0c30  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
19:19:15.0525 0x0c30  EapHost - ok
19:19:15.0610 0x0c30  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
19:19:15.0671 0x0c30  ebdrv - ok
19:19:15.0700 0x0c30  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] EFS             C:\Windows\System32\lsass.exe
19:19:15.0702 0x0c30  EFS - ok
19:19:15.0769 0x0c30  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
19:19:15.0787 0x0c30  ehRecvr - ok
19:19:15.0798 0x0c30  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
19:19:15.0801 0x0c30  ehSched - ok
19:19:15.0828 0x0c30  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
19:19:15.0838 0x0c30  elxstor - ok
19:19:15.0854 0x0c30  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
19:19:15.0854 0x0c30  ErrDev - ok
19:19:15.0885 0x0c30  [ 3663291D0D26001A2BB67678AB61D14C, 33199EA9E25E2C262E58ADAA41030AF353A73F3C23225F457CDE1AC22E9A4FE3 ] EtronHub3       C:\Windows\system32\Drivers\EtronHub3.sys
19:19:15.0886 0x0c30  EtronHub3 - ok
19:19:15.0909 0x0c30  [ 744420D6C062C38F7361870F010D6D4B, F4FFA21A6DE872D5ACEC3DAD46AE2F18517CD11FD04D19D959643AA508B3E85E ] EtronXHCI       C:\Windows\system32\Drivers\EtronXHCI.sys
19:19:15.0912 0x0c30  EtronXHCI - ok
19:19:15.0940 0x0c30  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
19:19:15.0951 0x0c30  EventSystem - ok
19:19:15.0973 0x0c30  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
19:19:15.0977 0x0c30  exfat - ok
19:19:15.0992 0x0c30  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
19:19:15.0996 0x0c30  fastfat - ok
19:19:16.0039 0x0c30  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
19:19:16.0052 0x0c30  Fax - ok
19:19:16.0065 0x0c30  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
19:19:16.0067 0x0c30  fdc - ok
19:19:16.0083 0x0c30  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
19:19:16.0085 0x0c30  fdPHost - ok
19:19:16.0090 0x0c30  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
19:19:16.0092 0x0c30  FDResPub - ok
19:19:16.0105 0x0c30  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
19:19:16.0107 0x0c30  FileInfo - ok
19:19:16.0121 0x0c30  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
19:19:16.0122 0x0c30  Filetrace - ok
19:19:16.0143 0x0c30  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
19:19:16.0145 0x0c30  flpydisk - ok
19:19:16.0180 0x0c30  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
19:19:16.0188 0x0c30  FltMgr - ok
19:19:16.0261 0x0c30  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
19:19:16.0281 0x0c30  FontCache - ok
19:19:16.0326 0x0c30  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
19:19:16.0329 0x0c30  FontCache3.0.0.0 - ok
19:19:16.0343 0x0c30  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
19:19:16.0346 0x0c30  FsDepends - ok
19:19:16.0369 0x0c30  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
19:19:16.0370 0x0c30  Fs_Rec - ok
19:19:16.0410 0x0c30  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
19:19:16.0418 0x0c30  fvevol - ok
19:19:16.0433 0x0c30  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
19:19:16.0436 0x0c30  gagp30kx - ok
19:19:16.0448 0x0c30  gdrv - ok
19:19:16.0459 0x0c30  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:19:16.0460 0x0c30  GEARAspiWDM - ok
19:19:16.0495 0x0c30  [ 14908F4F9005C29DE8F5587E271390EE, 43DDFA99F52467F91019DB858989F111EBE48A2BED8D43EA2C15D1FD3C104489 ] gfibto          C:\Windows\system32\drivers\gfibto.sys
19:19:16.0496 0x0c30  gfibto - ok
19:19:16.0532 0x0c30  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
19:19:16.0548 0x0c30  gpsvc - ok
19:19:16.0638 0x0c30  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:19:16.0644 0x0c30  gupdate - ok
19:19:16.0651 0x0c30  [ F02A533F517EB38333CB12A9E8963773, 1F72CD1CF660766FA8F912E40B7323A0192A300B376186C10F6803DC5EFE28DF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
19:19:16.0655 0x0c30  gupdatem - ok
19:19:16.0672 0x0c30  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
19:19:16.0674 0x0c30  hcw85cir - ok
19:19:16.0709 0x0c30  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
19:19:16.0719 0x0c30  HdAudAddService - ok
19:19:16.0755 0x0c30  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
19:19:16.0759 0x0c30  HDAudBus - ok
19:19:16.0762 0x0c30  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
19:19:16.0764 0x0c30  HidBatt - ok
19:19:16.0778 0x0c30  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
19:19:16.0781 0x0c30  HidBth - ok
19:19:16.0785 0x0c30  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
19:19:16.0787 0x0c30  HidIr - ok
19:19:16.0790 0x0c30  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
19:19:16.0793 0x0c30  hidserv - ok
19:19:16.0835 0x0c30  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
19:19:16.0837 0x0c30  HidUsb - ok
19:19:16.0859 0x0c30  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
19:19:16.0864 0x0c30  hkmsvc - ok
19:19:16.0881 0x0c30  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
19:19:16.0888 0x0c30  HomeGroupListener - ok
19:19:16.0910 0x0c30  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
19:19:16.0915 0x0c30  HomeGroupProvider - ok
19:19:16.0946 0x0c30  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
19:19:16.0948 0x0c30  HpSAMD - ok
19:19:16.0974 0x0c30  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
19:19:16.0989 0x0c30  HTTP - ok
19:19:17.0021 0x0c30  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
19:19:17.0021 0x0c30  hwpolicy - ok
19:19:17.0051 0x0c30  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\drivers\i8042prt.sys
19:19:17.0055 0x0c30  i8042prt - ok
19:19:17.0108 0x0c30  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
19:19:17.0122 0x0c30  iaStorV - ok
19:19:17.0165 0x0c30  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
19:19:17.0182 0x0c30  idsvc - ok
19:19:17.0493 0x0c30  [ 66DC0CE2D1867B8178EAA0E11930DBD7, 8870CBBEDD81E0886E9021FB43A3B26486C2E8CD05A805028A136950B3FA809A ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
19:19:17.0726 0x0c30  igfx - ok
19:19:17.0753 0x0c30  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
19:19:17.0755 0x0c30  iirsp - ok
19:19:17.0786 0x0c30  [ FCD84C381E0140AF901E58D48882D26B, 76955FFC230C801E8ED890E32076075F04CD6E5EC79E594FDE6D23797A36B406 ] IKEEXT          C:\Windows\System32\ikeext.dll
19:19:17.0803 0x0c30  IKEEXT - ok
19:19:17.0927 0x0c30  [ 2CC2F7C5990BB76767038F4B16D17A56, 78D12EFC0AB81B87706D3F7ADFF3FA9C5AD05C7F02169DDBE7E2D2A67B47D9DE ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
19:19:17.0966 0x0c30  IntcAzAudAddService - ok
19:19:18.0012 0x0c30  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
19:19:18.0023 0x0c30  IntcDAud - ok
19:19:18.0053 0x0c30  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
19:19:18.0054 0x0c30  intelide - ok
19:19:18.0077 0x0c30  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
19:19:18.0079 0x0c30  intelppm - ok
19:19:18.0099 0x0c30  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
19:19:18.0104 0x0c30  IPBusEnum - ok
19:19:18.0113 0x0c30  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:19:18.0116 0x0c30  IpFilterDriver - ok
19:19:18.0161 0x0c30  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
19:19:18.0182 0x0c30  iphlpsvc - ok
19:19:18.0207 0x0c30  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
19:19:18.0210 0x0c30  IPMIDRV - ok
19:19:18.0225 0x0c30  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
19:19:18.0229 0x0c30  IPNAT - ok
19:19:18.0310 0x0c30  [ 6660920D05A32DF2DC1260CEF0B6D172, 2C4361B59CD9F41519FDF14EC69F2E37E1B0635ACA476E4BEF2152C925E35F9F ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
19:19:18.0328 0x0c30  iPod Service - ok
19:19:18.0351 0x0c30  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
19:19:18.0352 0x0c30  IRENUM - ok
19:19:18.0365 0x0c30  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
19:19:18.0366 0x0c30  isapnp - ok
19:19:18.0389 0x0c30  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
19:19:18.0395 0x0c30  iScsiPrt - ok
19:19:18.0412 0x0c30  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
19:19:18.0413 0x0c30  kbdclass - ok
19:19:18.0432 0x0c30  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
19:19:18.0433 0x0c30  kbdhid - ok
19:19:18.0448 0x0c30  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] KeyIso          C:\Windows\system32\lsass.exe
19:19:18.0450 0x0c30  KeyIso - ok
19:19:18.0479 0x0c30  [ 97A7070AEA4C058B6418519E869A63B4, 15345C2D6CA159BD498002974A0BD21CAB611124D85E3320248B47652AEF23C8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
19:19:18.0481 0x0c30  KSecDD - ok
19:19:18.0498 0x0c30  [ 26C43A7C2862447EC59DEDA188D1DA07, 5363BF87E650FE2010ACA9417D6920FF4ED752256FF47732882E9B2BA1ED154B ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
19:19:18.0503 0x0c30  KSecPkg - ok
19:19:18.0508 0x0c30  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
19:19:18.0509 0x0c30  ksthunk - ok
19:19:18.0542 0x0c30  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
19:19:18.0554 0x0c30  KtmRm - ok
19:19:18.0587 0x0c30  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
19:19:18.0596 0x0c30  LanmanServer - ok
19:19:18.0630 0x0c30  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
19:19:18.0635 0x0c30  LanmanWorkstation - ok
19:19:18.0700 0x0c30  [ 17203D81A68D9162DB9022A1FC601778, 7D4D4018D6BC95604003F15B792EAB061EF7CA9BC8443E32B99185D89095EA28 ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
19:19:18.0703 0x0c30  LightScribeService - ok
19:19:18.0757 0x0c30  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
19:19:18.0760 0x0c30  lltdio - ok
19:19:18.0805 0x0c30  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
19:19:18.0817 0x0c30  lltdsvc - ok
19:19:18.0832 0x0c30  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
19:19:18.0834 0x0c30  lmhosts - ok
19:19:18.0917 0x0c30  [ 0803906D607A9B83184447B75B60ECC2, A7A599C4CEDD4AC4196A558442E80B4F852AF6C6104A53C8819A79AA5D388DE8 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
19:19:18.0928 0x0c30  LMS - ok
19:19:18.0958 0x0c30  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
19:19:18.0961 0x0c30  LSI_FC - ok
19:19:18.0976 0x0c30  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
19:19:18.0981 0x0c30  LSI_SAS - ok
19:19:18.0998 0x0c30  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
19:19:19.0001 0x0c30  LSI_SAS2 - ok
19:19:19.0013 0x0c30  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
19:19:19.0017 0x0c30  LSI_SCSI - ok
19:19:19.0047 0x0c30  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
19:19:19.0050 0x0c30  luafv - ok
19:19:19.0190 0x0c30  [ EDF73BFA1BD24D74D1D64DC0ED28A7CD, BD8D9D15C83EF1C9467A137764E128D80CFE58A2B728CDB57CB272D426702318 ] LVUVC64         C:\Windows\system32\DRIVERS\lvuvc64.sys
19:19:19.0250 0x0c30  LVUVC64 - ok
19:19:19.0280 0x0c30  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
19:19:19.0283 0x0c30  Mcx2Svc - ok
19:19:19.0297 0x0c30  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
19:19:19.0299 0x0c30  megasas - ok
19:19:19.0321 0x0c30  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
19:19:19.0329 0x0c30  MegaSR - ok
19:19:19.0346 0x0c30  [ 1C6E73FC46B509EFF9D0086AA37132DF, B4FB5512D75112C553FC22593F6123A7C9B9B7825D40148F604CCEFEB149FD97 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
19:19:19.0348 0x0c30  MEIx64 - ok
19:19:19.0359 0x0c30  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
19:19:19.0362 0x0c30  MMCSS - ok
19:19:19.0374 0x0c30  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
19:19:19.0376 0x0c30  Modem - ok
19:19:19.0393 0x0c30  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
19:19:19.0394 0x0c30  monitor - ok
19:19:19.0419 0x0c30  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
19:19:19.0421 0x0c30  mouclass - ok
19:19:19.0445 0x0c30  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
19:19:19.0447 0x0c30  mouhid - ok
19:19:19.0465 0x0c30  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
19:19:19.0469 0x0c30  mountmgr - ok
19:19:19.0555 0x0c30  [ 3121304FEBE28A90AF199DBF1AFD4518, 95B5188B71ADB8934183828C2AEEF16620CB5C97C7141DF4A7140D72B79210D9 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
19:19:19.0560 0x0c30  MozillaMaintenance - ok
19:19:19.0587 0x0c30  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
19:19:19.0592 0x0c30  mpio - ok
19:19:19.0632 0x0c30  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
19:19:19.0635 0x0c30  mpsdrv - ok
19:19:19.0682 0x0c30  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
19:19:19.0702 0x0c30  MpsSvc - ok
19:19:19.0728 0x0c30  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
19:19:19.0731 0x0c30  MRxDAV - ok
19:19:19.0754 0x0c30  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
19:19:19.0757 0x0c30  mrxsmb - ok
19:19:19.0790 0x0c30  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:19:19.0796 0x0c30  mrxsmb10 - ok
19:19:19.0823 0x0c30  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:19:19.0826 0x0c30  mrxsmb20 - ok
19:19:19.0857 0x0c30  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
19:19:19.0859 0x0c30  msahci - ok
19:19:19.0875 0x0c30  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
19:19:19.0881 0x0c30  msdsm - ok
19:19:19.0892 0x0c30  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
19:19:19.0899 0x0c30  MSDTC - ok
19:19:19.0921 0x0c30  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
19:19:19.0923 0x0c30  Msfs - ok
19:19:19.0938 0x0c30  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
19:19:19.0939 0x0c30  mshidkmdf - ok
19:19:19.0952 0x0c30  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
19:19:19.0952 0x0c30  msisadrv - ok
19:19:19.0994 0x0c30  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
19:19:20.0002 0x0c30  MSiSCSI - ok
19:19:20.0006 0x0c30  msiserver - ok
19:19:20.0036 0x0c30  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
19:19:20.0037 0x0c30  MSKSSRV - ok
19:19:20.0052 0x0c30  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
19:19:20.0053 0x0c30  MSPCLOCK - ok
19:19:20.0069 0x0c30  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
19:19:20.0070 0x0c30  MSPQM - ok
19:19:20.0096 0x0c30  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
19:19:20.0107 0x0c30  MsRPC - ok
19:19:20.0124 0x0c30  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
19:19:20.0126 0x0c30  mssmbios - ok
19:19:20.0143 0x0c30  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
19:19:20.0144 0x0c30  MSTEE - ok
19:19:20.0147 0x0c30  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
19:19:20.0149 0x0c30  MTConfig - ok
19:19:20.0166 0x0c30  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
19:19:20.0168 0x0c30  Mup - ok
19:19:20.0203 0x0c30  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
19:19:20.0217 0x0c30  napagent - ok
19:19:20.0246 0x0c30  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
19:19:20.0252 0x0c30  NativeWifiP - ok
19:19:20.0318 0x0c30  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
19:19:20.0342 0x0c30  NDIS - ok
19:19:20.0370 0x0c30  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
19:19:20.0372 0x0c30  NdisCap - ok
19:19:20.0396 0x0c30  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
19:19:20.0398 0x0c30  NdisTapi - ok
19:19:20.0414 0x0c30  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
19:19:20.0417 0x0c30  Ndisuio - ok
19:19:20.0436 0x0c30  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
19:19:20.0441 0x0c30  NdisWan - ok
19:19:20.0458 0x0c30  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
19:19:20.0460 0x0c30  NDProxy - ok
19:19:20.0470 0x0c30  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
19:19:20.0472 0x0c30  NetBIOS - ok
19:19:20.0492 0x0c30  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
19:19:20.0499 0x0c30  NetBT - ok
19:19:20.0512 0x0c30  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] Netlogon        C:\Windows\system32\lsass.exe
19:19:20.0515 0x0c30  Netlogon - ok
19:19:20.0544 0x0c30  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
19:19:20.0552 0x0c30  Netman - ok
19:19:20.0571 0x0c30  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
19:19:20.0581 0x0c30  netprofm - ok
19:19:20.0604 0x0c30  [ 3E5A36127E201DDF663176B66828FAFE, 5A08BA9EFB1A72DF1DD839BA5FA2B8994012BA62A515588FF62333B33B60045B ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:19:20.0607 0x0c30  NetTcpPortSharing - ok
19:19:20.0635 0x0c30  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
19:19:20.0636 0x0c30  nfrd960 - ok
19:19:20.0665 0x0c30  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
19:19:20.0671 0x0c30  NlaSvc - ok
19:19:20.0693 0x0c30  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
19:19:20.0695 0x0c30  Npfs - ok
19:19:20.0708 0x0c30  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
19:19:20.0711 0x0c30  nsi - ok
19:19:20.0728 0x0c30  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
19:19:20.0729 0x0c30  nsiproxy - ok
19:19:20.0813 0x0c30  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
19:19:20.0844 0x0c30  Ntfs - ok
19:19:20.0859 0x0c30  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
19:19:20.0859 0x0c30  Null - ok
19:19:20.0901 0x0c30  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
19:19:20.0907 0x0c30  nvraid - ok
19:19:20.0926 0x0c30  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
19:19:20.0932 0x0c30  nvstor - ok
19:19:20.0951 0x0c30  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
19:19:20.0955 0x0c30  nv_agp - ok
19:19:20.0964 0x0c30  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
19:19:20.0966 0x0c30  ohci1394 - ok
19:19:21.0023 0x0c30  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:19:21.0029 0x0c30  ose - ok
19:19:21.0206 0x0c30  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
19:19:21.0297 0x0c30  osppsvc - ok
19:19:21.0326 0x0c30  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
19:19:21.0332 0x0c30  p2pimsvc - ok
19:19:21.0350 0x0c30  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
19:19:21.0358 0x0c30  p2psvc - ok
19:19:21.0375 0x0c30  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\drivers\parport.sys
19:19:21.0377 0x0c30  Parport - ok
19:19:21.0412 0x0c30  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
19:19:21.0415 0x0c30  partmgr - ok
19:19:21.0435 0x0c30  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
19:19:21.0445 0x0c30  PcaSvc - ok
19:19:21.0465 0x0c30  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
19:19:21.0472 0x0c30  pci - ok
19:19:21.0504 0x0c30  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
19:19:21.0505 0x0c30  pciide - ok
19:19:21.0530 0x0c30  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
19:19:21.0538 0x0c30  pcmcia - ok
19:19:21.0559 0x0c30  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
19:19:21.0562 0x0c30  pcw - ok
19:19:21.0592 0x0c30  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
19:19:21.0607 0x0c30  PEAUTH - ok
19:19:21.0649 0x0c30  [ B9B0A4299DD2D76A4243F75FD54DC680, BBF62E9628131FA396EB08D63B76D2D5FBDD61339E92B759125A066470D1C039 ] PeerDistSvc     C:\Windows\system32\peerdistsvc.dll
19:19:21.0676 0x0c30  PeerDistSvc - ok
19:19:21.0725 0x0c30  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
19:19:21.0728 0x0c30  PerfHost - ok
19:19:21.0788 0x0c30  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
19:19:21.0815 0x0c30  pla - ok
19:19:21.0860 0x0c30  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
19:19:21.0867 0x0c30  PlugPlay - ok
19:19:21.0878 0x0c30  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
19:19:21.0880 0x0c30  PNRPAutoReg - ok
19:19:21.0888 0x0c30  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
19:19:21.0894 0x0c30  PNRPsvc - ok
19:19:21.0935 0x0c30  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
19:19:21.0955 0x0c30  PolicyAgent - ok
19:19:21.0983 0x0c30  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
19:19:21.0987 0x0c30  Power - ok
19:19:22.0017 0x0c30  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
19:19:22.0019 0x0c30  PptpMiniport - ok
19:19:22.0030 0x0c30  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
19:19:22.0033 0x0c30  Processor - ok
19:19:22.0076 0x0c30  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
19:19:22.0082 0x0c30  ProfSvc - ok
19:19:22.0091 0x0c30  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] ProtectedStorage C:\Windows\system32\lsass.exe
19:19:22.0093 0x0c30  ProtectedStorage - ok
19:19:22.0108 0x0c30  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
19:19:22.0111 0x0c30  Psched - ok
19:19:22.0149 0x0c30  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
19:19:22.0178 0x0c30  ql2300 - ok
19:19:22.0200 0x0c30  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
19:19:22.0203 0x0c30  ql40xx - ok
19:19:22.0228 0x0c30  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
19:19:22.0234 0x0c30  QWAVE - ok
19:19:22.0247 0x0c30  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
19:19:22.0249 0x0c30  QWAVEdrv - ok
19:19:22.0265 0x0c30  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
19:19:22.0267 0x0c30  RasAcd - ok
19:19:22.0292 0x0c30  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
19:19:22.0295 0x0c30  RasAgileVpn - ok
19:19:22.0312 0x0c30  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
19:19:22.0319 0x0c30  RasAuto - ok
19:19:22.0332 0x0c30  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
19:19:22.0336 0x0c30  Rasl2tp - ok
19:19:22.0359 0x0c30  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
19:19:22.0369 0x0c30  RasMan - ok
19:19:22.0385 0x0c30  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
19:19:22.0387 0x0c30  RasPppoe - ok
19:19:22.0396 0x0c30  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
19:19:22.0398 0x0c30  RasSstp - ok
19:19:22.0419 0x0c30  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
19:19:22.0425 0x0c30  rdbss - ok
19:19:22.0440 0x0c30  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
19:19:22.0441 0x0c30  rdpbus - ok
19:19:22.0446 0x0c30  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
19:19:22.0447 0x0c30  RDPCDD - ok
19:19:22.0475 0x0c30  [ 1B6163C503398B23FF8B939C67747683, 339A5AA7970FF34FAAB213B655860C5B0DEC5F983A4A11A088017D849F320ACE ] RDPDR           C:\Windows\system32\drivers\rdpdr.sys
19:19:22.0479 0x0c30  RDPDR - ok
19:19:22.0497 0x0c30  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
19:19:22.0498 0x0c30  RDPENCDD - ok
19:19:22.0505 0x0c30  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
19:19:22.0506 0x0c30  RDPREFMP - ok
19:19:22.0542 0x0c30  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
19:19:22.0551 0x0c30  RDPWD - ok
19:19:22.0574 0x0c30  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
19:19:22.0581 0x0c30  rdyboost - ok
19:19:22.0616 0x0c30  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
19:19:22.0622 0x0c30  RemoteAccess - ok
19:19:22.0657 0x0c30  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
19:19:22.0664 0x0c30  RemoteRegistry - ok
19:19:22.0729 0x0c30  [ F12A68ED55053940CADD59CA5E3468DD, 75331E6DA4E30717085E7D8131989241EBC492DC3EE455546F91DA9DFFFD2BFC ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
19:19:22.0738 0x0c30  RichVideo - ok
19:19:22.0756 0x0c30  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
19:19:22.0760 0x0c30  RpcEptMapper - ok
19:19:22.0777 0x0c30  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
19:19:22.0780 0x0c30  RpcLocator - ok
19:19:22.0820 0x0c30  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
19:19:22.0834 0x0c30  RpcSs - ok
19:19:22.0848 0x0c30  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
19:19:22.0850 0x0c30  rspndr - ok
19:19:22.0890 0x0c30  [ 6D3C7E7D82D3DC92DC2A8B0DF9F20F8A, AB2615EB7313C02F6311143B27A426042A16925480ECBA6880448BE9818E9A39 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
19:19:22.0896 0x0c30  RTL8167 - ok
19:19:22.0909 0x0c30  [ E60C0A09F997826C7627B244195AB581, E8630ED74B38B98BF584E353D992C1311BC36AB7F20A1BB66C9CD65CE1E46F8D ] s3cap           C:\Windows\system32\drivers\vms3cap.sys
19:19:22.0910 0x0c30  s3cap - ok
19:19:22.0913 0x0c30  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] SamSs           C:\Windows\system32\lsass.exe
19:19:22.0915 0x0c30  SamSs - ok
19:19:22.0979 0x0c30  [ 3289766038DB2CB14D07DC84392138D5, A7790B787690CC1A8B97E4532090C5295350A836A9474DEA74CEB3E81CF26124 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
19:19:22.0980 0x0c30  SASDIFSV - ok
19:19:22.0993 0x0c30  [ 58A38E75F3316A83C23DF6173D41F2B5, B0A8CDA1D164B7534FB41AB80792861384709BF0F914F44553275CF20194F1A1 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
19:19:22.0994 0x0c30  SASKUTIL - ok
19:19:23.0145 0x0c30  [ 99FC1599F89A80216E41175B8CA44D89, 20306278CF081E58002D6ADCC07CA65D7651C8D059392337562612EDFAC5BEB5 ] SBAMSvc         C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
19:19:23.0198 0x0c30  SBAMSvc - ok
19:19:23.0218 0x0c30  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
19:19:23.0221 0x0c30  sbp2port - ok
19:19:23.0256 0x0c30  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
19:19:23.0266 0x0c30  SCardSvr - ok
19:19:23.0283 0x0c30  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
19:19:23.0285 0x0c30  scfilter - ok
19:19:23.0332 0x0c30  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
19:19:23.0354 0x0c30  Schedule - ok
19:19:23.0383 0x0c30  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
19:19:23.0385 0x0c30  SCPolicySvc - ok
19:19:23.0398 0x0c30  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
19:19:23.0404 0x0c30  SDRSVC - ok
19:19:23.0569 0x0c30  [ 98EF79CC2B07398AC525F9EA1AE0366F, D0D5D69696ED339F363024AF3271867F4C55572C67FD0F2AA27D24B37982E39A ] SDScannerService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
19:19:23.0625 0x0c30  SDScannerService - ok
19:19:23.0670 0x0c30  [ 14BF6B3AB327D519ED007CDDC56F6900, 4E5DC4AF45347C885E0E87F205EE1F95BB4713A0B581CD7317FBEEE2A9628982 ] SDUpdateService C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
19:19:23.0685 0x0c30  SDUpdateService - ok
19:19:23.0705 0x0c30  [ 820EBE67AB99F033FDE25B2692157991, A9E86FE6EFD3CFD4EA1A26121C706335A6791CC6F81EE98AE2BE7EA566ECFEBB ] SDWSCService    C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
19:19:23.0708 0x0c30  SDWSCService - ok
19:19:23.0729 0x0c30  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
19:19:23.0730 0x0c30  secdrv - ok
19:19:23.0756 0x0c30  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
19:19:23.0759 0x0c30  seclogon - ok
19:19:23.0770 0x0c30  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
19:19:23.0776 0x0c30  SENS - ok
19:19:23.0790 0x0c30  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
19:19:23.0794 0x0c30  SensrSvc - ok
19:19:23.0817 0x0c30  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
19:19:23.0819 0x0c30  Serenum - ok
19:19:23.0839 0x0c30  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
19:19:23.0842 0x0c30  Serial - ok
19:19:23.0861 0x0c30  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
19:19:23.0862 0x0c30  sermouse - ok
19:19:23.0877 0x0c30  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
19:19:23.0882 0x0c30  SessionEnv - ok
19:19:23.0891 0x0c30  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
19:19:23.0892 0x0c30  sffdisk - ok
19:19:23.0909 0x0c30  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
19:19:23.0910 0x0c30  sffp_mmc - ok
19:19:23.0913 0x0c30  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
19:19:23.0914 0x0c30  sffp_sd - ok
19:19:23.0916 0x0c30  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
19:19:23.0917 0x0c30  sfloppy - ok
19:19:23.0949 0x0c30  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
19:19:23.0957 0x0c30  SharedAccess - ok
19:19:23.0977 0x0c30  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
19:19:23.0984 0x0c30  ShellHWDetection - ok
19:19:24.0009 0x0c30  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
19:19:24.0010 0x0c30  SiSRaid2 - ok
19:19:24.0025 0x0c30  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
19:19:24.0027 0x0c30  SiSRaid4 - ok
19:19:24.0072 0x0c30  [ 7C15061CD0372487903B07B9BB03AFAD, FB96CDA29C7C1E8A315BA89E8B150918E59F32CE749D3EF43FCBEB3FB57BF1C6 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
19:19:24.0078 0x0c30  SkypeUpdate - ok
19:19:24.0098 0x0c30  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
19:19:24.0102 0x0c30  Smb - ok
19:19:24.0110 0x0c30  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
19:19:24.0114 0x0c30  SNMPTRAP - ok
19:19:24.0131 0x0c30  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
19:19:24.0132 0x0c30  spldr - ok
19:19:24.0180 0x0c30  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
19:19:24.0196 0x0c30  Spooler - ok
19:19:24.0301 0x0c30  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
19:19:24.0368 0x0c30  sppsvc - ok
19:19:24.0386 0x0c30  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
19:19:24.0389 0x0c30  sppuinotify - ok
19:19:24.0433 0x0c30  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
19:19:24.0450 0x0c30  srv - ok
19:19:24.0470 0x0c30  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
19:19:24.0478 0x0c30  srv2 - ok
19:19:24.0502 0x0c30  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
19:19:24.0506 0x0c30  srvnet - ok
19:19:24.0531 0x0c30  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
19:19:24.0536 0x0c30  SSDPSRV - ok
19:19:24.0547 0x0c30  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
19:19:24.0550 0x0c30  SstpSvc - ok
19:19:24.0559 0x0c30  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
19:19:24.0561 0x0c30  stexstor - ok
19:19:24.0618 0x0c30  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
19:19:24.0636 0x0c30  stisvc - ok
19:19:24.0670 0x0c30  [ 7785DC213270D2FC066538DAF94087E7, F09CB2895241719CA5147B2EE9F7ECBD0303AFFB5CD896F06D4D29BAAAFC207B ] storflt         C:\Windows\system32\drivers\vmstorfl.sys
19:19:24.0671 0x0c30  storflt - ok
19:19:24.0695 0x0c30  [ C40841817EF57D491F22EB103DA587CC, 5FAA2DE43BADC16A898C0C290C44C41E4411D919A95FE8C6FF45EA7A34495079 ] StorSvc         C:\Windows\system32\storsvc.dll
19:19:24.0700 0x0c30  StorSvc - ok
19:19:24.0733 0x0c30  [ D34E4943D5AC096C8EDEEBFD80D76E23, 1DD7F6F97060B5F763A04ACA1F75E59DAB09EF824FD09B83FC3C192837D006DE ] storvsc         C:\Windows\system32\drivers\storvsc.sys
19:19:24.0736 0x0c30  storvsc - ok
19:19:24.0751 0x0c30  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
19:19:24.0752 0x0c30  swenum - ok
19:19:24.0775 0x0c30  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
19:19:24.0789 0x0c30  swprv - ok
19:19:24.0842 0x0c30  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
19:19:24.0874 0x0c30  SysMain - ok
19:19:24.0900 0x0c30  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
19:19:24.0904 0x0c30  TabletInputService - ok
19:19:24.0925 0x0c30  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
19:19:24.0931 0x0c30  TapiSrv - ok
19:19:24.0940 0x0c30  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
19:19:24.0944 0x0c30  TBS - ok
19:19:25.0027 0x0c30  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
19:19:25.0062 0x0c30  Tcpip - ok
19:19:25.0115 0x0c30  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
19:19:25.0142 0x0c30  TCPIP6 - ok
19:19:25.0166 0x0c30  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
19:19:25.0167 0x0c30  tcpipreg - ok
19:19:25.0193 0x0c30  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
19:19:25.0194 0x0c30  TDPIPE - ok
19:19:25.0216 0x0c30  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
19:19:25.0218 0x0c30  TDTCP - ok
19:19:25.0242 0x0c30  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
19:19:25.0247 0x0c30  tdx - ok
19:19:25.0267 0x0c30  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
19:19:25.0269 0x0c30  TermDD - ok
19:19:25.0314 0x0c30  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
19:19:25.0330 0x0c30  TermService - ok
19:19:25.0339 0x0c30  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
19:19:25.0341 0x0c30  Themes - ok
19:19:25.0344 0x0c30  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
19:19:25.0347 0x0c30  THREADORDER - ok
19:19:25.0378 0x0c30  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
19:19:25.0384 0x0c30  TrkWks - ok
19:19:25.0434 0x0c30  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
19:19:25.0441 0x0c30  TrustedInstaller - ok
19:19:25.0474 0x0c30  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
19:19:25.0476 0x0c30  tssecsrv - ok
19:19:25.0495 0x0c30  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
19:19:25.0497 0x0c30  TsUsbFlt - ok
19:19:25.0506 0x0c30  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
19:19:25.0508 0x0c30  TsUsbGD - ok
19:19:25.0547 0x0c30  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
19:19:25.0552 0x0c30  tunnel - ok
19:19:25.0570 0x0c30  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
19:19:25.0573 0x0c30  uagp35 - ok
19:19:25.0600 0x0c30  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
19:19:25.0610 0x0c30  udfs - ok
19:19:25.0633 0x0c30  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
19:19:25.0636 0x0c30  UI0Detect - ok
19:19:25.0649 0x0c30  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
19:19:25.0651 0x0c30  uliagpkx - ok
19:19:25.0662 0x0c30  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
19:19:25.0664 0x0c30  umbus - ok
19:19:25.0666 0x0c30  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\drivers\umpass.sys
19:19:25.0667 0x0c30  UmPass - ok
19:19:25.0693 0x0c30  [ A293DCD756D04D8492A750D03B9A297C, 203600ED0B7F8BA4C6D6F4ED810F4DF5AB70928B06EC4131C5D8ADF628444ED1 ] UmRdpService    C:\Windows\System32\umrdp.dll
19:19:25.0699 0x0c30  UmRdpService - ok
19:19:25.0759 0x0c30  [ 8B802B483CBDE06F62DBC04DC7AFAF8E, 92E20096D2953DF8C4812EED2ED1A8AD1AF9CE20740B3ACDA33A1DC5B4D0E00B ] UMVPFSrv        C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
19:19:25.0771 0x0c30  UMVPFSrv - ok
19:19:25.0932 0x0c30  [ EB79C6C91A99930015EF29AE7FA802D1, 96D00BA330854C7763BF385D84D47C3D1B87C4085A91D73B558C86829930DC4B ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
19:19:25.0981 0x0c30  UNS - ok
19:19:26.0000 0x0c30  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
19:19:26.0009 0x0c30  upnphost - ok
19:19:26.0039 0x0c30  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\Windows\system32\Drivers\usbaapl64.sys
19:19:26.0041 0x0c30  USBAAPL64 - ok
19:19:26.0082 0x0c30  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
19:19:26.0086 0x0c30  usbaudio - ok
19:19:26.0109 0x0c30  [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
19:19:26.0113 0x0c30  usbccgp - ok
19:19:26.0149 0x0c30  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
19:19:26.0153 0x0c30  usbcir - ok
19:19:26.0165 0x0c30  [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci         C:\Windows\system32\drivers\usbehci.sys
19:19:26.0167 0x0c30  usbehci - ok
19:19:26.0187 0x0c30  [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
19:19:26.0196 0x0c30  usbhub - ok
19:19:26.0213 0x0c30  [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci         C:\Windows\system32\drivers\usbohci.sys
19:19:26.0215 0x0c30  usbohci - ok
19:19:26.0252 0x0c30  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
19:19:26.0254 0x0c30  usbprint - ok
19:19:26.0269 0x0c30  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
19:19:26.0272 0x0c30  usbscan - ok
19:19:26.0288 0x0c30  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:19:26.0291 0x0c30  USBSTOR - ok
19:19:26.0303 0x0c30  [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
19:19:26.0305 0x0c30  usbuhci - ok
19:19:26.0332 0x0c30  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
19:19:26.0338 0x0c30  usbvideo - ok
19:19:26.0366 0x0c30  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
19:19:26.0370 0x0c30  UxSms - ok
19:19:26.0396 0x0c30  [ C118A82CD78818C29AB228366EBF81C3, 00820F3065871DCBA52A27C7F73BA470C4F2CB26EFB7F76FEF8B1207F81B284D ] VaultSvc        C:\Windows\system32\lsass.exe
19:19:26.0399 0x0c30  VaultSvc - ok
19:19:26.0416 0x0c30  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
19:19:26.0418 0x0c30  vdrvroot - ok
19:19:26.0448 0x0c30  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
19:19:26.0463 0x0c30  vds - ok
19:19:26.0476 0x0c30  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
19:19:26.0477 0x0c30  vga - ok
19:19:26.0494 0x0c30  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
19:19:26.0496 0x0c30  VgaSave - ok
19:19:26.0516 0x0c30  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
19:19:26.0521 0x0c30  vhdmp - ok
19:19:26.0548 0x0c30  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
19:19:26.0550 0x0c30  viaide - ok
19:19:26.0569 0x0c30  [ 86EA3E79AE350FEA5331A1303054005F, 7E7D6027EB41E591633C7383A5D29A3BA8ECFC08C177D2BCF741EE27686B1691 ] vmbus           C:\Windows\system32\drivers\vmbus.sys
19:19:26.0577 0x0c30  vmbus - ok
19:19:26.0593 0x0c30  [ 7DE90B48F210D29649380545DB45A187, 09522F84285D62B961868DA98C40B82E746CA4D24A9780905673A2349D6B07F4 ] VMBusHID        C:\Windows\system32\drivers\VMBusHID.sys
19:19:26.0595 0x0c30  VMBusHID - ok
19:19:26.0607 0x0c30  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
19:19:26.0610 0x0c30  volmgr - ok
19:19:26.0631 0x0c30  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
19:19:26.0641 0x0c30  volmgrx - ok
19:19:26.0657 0x0c30  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
19:19:26.0663 0x0c30  volsnap - ok
19:19:26.0693 0x0c30  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
19:19:26.0697 0x0c30  vsmraid - ok
19:19:26.0755 0x0c30  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
19:19:26.0786 0x0c30  VSS - ok
19:19:26.0803 0x0c30  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\System32\drivers\vwifibus.sys
19:19:26.0804 0x0c30  vwifibus - ok
19:19:26.0830 0x0c30  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
19:19:26.0847 0x0c30  W32Time - ok
19:19:26.0862 0x0c30  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
19:19:26.0863 0x0c30  WacomPen - ok
19:19:26.0890 0x0c30  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
19:19:26.0893 0x0c30  WANARP - ok
19:19:26.0896 0x0c30  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
19:19:26.0898 0x0c30  Wanarpv6 - ok
19:19:26.0977 0x0c30  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
19:19:27.0000 0x0c30  WatAdminSvc - ok
19:19:27.0042 0x0c30  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
19:19:27.0071 0x0c30  wbengine - ok
19:19:27.0100 0x0c30  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
19:19:27.0106 0x0c30  WbioSrvc - ok
19:19:27.0120 0x0c30  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
19:19:27.0127 0x0c30  wcncsvc - ok
19:19:27.0138 0x0c30  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
19:19:27.0141 0x0c30  WcsPlugInService - ok
19:19:27.0155 0x0c30  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
19:19:27.0157 0x0c30  Wd - ok
19:19:27.0210 0x0c30  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
19:19:27.0224 0x0c30  Wdf01000 - ok
19:19:27.0239 0x0c30  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
19:19:27.0242 0x0c30  WdiServiceHost - ok
19:19:27.0245 0x0c30  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
19:19:27.0249 0x0c30  WdiSystemHost - ok
19:19:27.0285 0x0c30  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
19:19:27.0292 0x0c30  WebClient - ok
19:19:27.0313 0x0c30  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
19:19:27.0320 0x0c30  Wecsvc - ok
19:19:27.0337 0x0c30  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
19:19:27.0340 0x0c30  wercplsupport - ok
19:19:27.0361 0x0c30  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
19:19:27.0365 0x0c30  WerSvc - ok
19:19:27.0373 0x0c30  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
19:19:27.0374 0x0c30  WfpLwf - ok
19:19:27.0389 0x0c30  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
19:19:27.0390 0x0c30  WIMMount - ok
19:19:27.0410 0x0c30  WinDefend - ok
19:19:27.0419 0x0c30  WinHttpAutoProxySvc - ok
19:19:27.0457 0x0c30  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
19:19:27.0466 0x0c30  Winmgmt - ok
19:19:27.0551 0x0c30  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
19:19:27.0591 0x0c30  WinRM - ok
19:19:27.0636 0x0c30  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
19:19:27.0639 0x0c30  WinUsb - ok
19:19:27.0680 0x0c30  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
19:19:27.0700 0x0c30  Wlansvc - ok
19:19:27.0719 0x0c30  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
19:19:27.0719 0x0c30  WmiAcpi - ok
19:19:27.0745 0x0c30  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
19:19:27.0749 0x0c30  wmiApSrv - ok
19:19:27.0763 0x0c30  WMPNetworkSvc - ok
19:19:27.0778 0x0c30  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
19:19:27.0780 0x0c30  WPCSvc - ok
19:19:27.0785 0x0c30  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
19:19:27.0790 0x0c30  WPDBusEnum - ok
19:19:27.0804 0x0c30  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
19:19:27.0805 0x0c30  ws2ifsl - ok
19:19:27.0818 0x0c30  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
19:19:27.0822 0x0c30  wscsvc - ok
19:19:27.0824 0x0c30  WSearch - ok
19:19:27.0926 0x0c30  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
19:19:27.0971 0x0c30  wuauserv - ok
19:19:28.0009 0x0c30  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
19:19:28.0012 0x0c30  WudfPf - ok
19:19:28.0046 0x0c30  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
19:19:28.0053 0x0c30  WUDFRd - ok
19:19:28.0068 0x0c30  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
19:19:28.0073 0x0c30  wudfsvc - ok
19:19:28.0109 0x0c30  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
19:19:28.0118 0x0c30  WwanSvc - ok
19:19:28.0152 0x0c30  [ 2EE48CFCE7CA8E0DB4C44C7476C0943B, 2C324592F3F2D50BABA7123B6F9FC922667CC132777E019FF615F2D6F273A45E ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
19:19:28.0154 0x0c30  xusb21 - ok
19:19:28.0161 0x0c30  ================ Scan global ===============================
19:19:28.0185 0x0c30  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
19:19:28.0220 0x0c30  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
19:19:28.0236 0x0c30  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
19:19:28.0271 0x0c30  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
19:19:28.0298 0x0c30  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
19:19:28.0312 0x0c30  [ Global ] - ok
19:19:28.0312 0x0c30  ================ Scan MBR ==================================
19:19:28.0318 0x0c30  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
19:19:28.0443 0x0c30  \Device\Harddisk0\DR0 - ok
19:19:28.0444 0x0c30  ================ Scan VBR ==================================
19:19:28.0445 0x0c30  [ 81260AB8E93C3DB47545500FFD94572C ] \Device\Harddisk0\DR0\Partition1
19:19:28.0446 0x0c30  \Device\Harddisk0\DR0\Partition1 - ok
19:19:28.0447 0x0c30  [ 41D709D0B25AB71807745D801F56AC2F ] \Device\Harddisk0\DR0\Partition2
19:19:28.0448 0x0c30  \Device\Harddisk0\DR0\Partition2 - ok
19:19:28.0448 0x0c30  Waiting for KSN requests completion. In queue: 345
19:19:29.0449 0x0c30  Waiting for KSN requests completion. In queue: 345
19:19:30.0449 0x0c30  Waiting for KSN requests completion. In queue: 38
19:19:31.0449 0x0c30  Waiting for KSN requests completion. In queue: 38
19:19:32.0466 0x0c30  AV detected via SS2: avast! Antivirus, C:\Program Files\AVAST Software\Avast\VisthAux.exe ( 8.0.1497.376 ), 0x41000 ( enabled : updated )
19:19:32.0479 0x0c30  AV detected via SS2: Lavasoft Ad-Aware, C:\Program Files (x86)\Ad-Aware Antivirus\SBAMWSC.EXE ( 10.5.3.4405 ), 0x40010 ( disabled : outofdate )
19:19:32.0481 0x0c30  FW detected via SS2: Lavasoft Ad-Aware, C:\Program Files (x86)\Ad-Aware Antivirus\SBAMWSC.EXE ( 10.5.3.4405 ), 0x40010 ( disabled )
19:19:32.0484 0x0c30  Win FW state via NFP2: enabled
19:19:35.0193 0x0c30  ============================================================
19:19:35.0193 0x0c30  Scan finished
19:19:35.0193 0x0c30  ============================================================
19:19:35.0201 0x194c  Detected object count: 0
19:19:35.0201 0x194c  Actual detected object count: 0
 
 
 
 
 
 
 
 
 
 
 
# AdwCleaner v3.010 - Report created 23/10/2013 at 19:34:05
# Updated 20/10/2013 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)
# Username : ******* - *******-PC
# Running from : C:\Users\*******\Desktop\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.16720
 
 
-\\ Mozilla Firefox v24.0 (en-GB)
 
[ File : C:\Users\*******\AppData\Roaming\Mozilla\Firefox\Profiles\8ml8i1en.default\prefs.js ]
 
 
[ File : C:\Users\*********\AppData\Roaming\Mozilla\Firefox\Profiles\sab26118.default\prefs.js ]
 
 
-\\ Google Chrome v30.0.1599.101
 
[ File : C:\Users\*********\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
[ File : C:\Users\*********\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [4223 octets] - [03/10/2013 21:13:17]
AdwCleaner[R1].txt - [1546 octets] - [18/10/2013 17:25:44]
AdwCleaner[R2].txt - [1318 octets] - [23/10/2013 19:33:06]
AdwCleaner[S0].txt - [4325 octets] - [03/10/2013 21:39:33]
AdwCleaner[S1].txt - [1619 octets] - [18/10/2013 17:26:38]
AdwCleaner[S2].txt - [1239 octets] - [23/10/2013 19:34:05]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1299 octets] ##########
 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.7 (10.15.2013:3)
OS: Windows 7 Professional x64
Ran by ********* on Wed 23/10/2013 at 19:45:13.68
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\adawarebp
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{62C1A47A-29DE-43AB-BB10-858B0401DCC2}
 
 
 
~~~ Files
 
Successfully deleted: [File] "C:\Users\*********\appdata\local\mysearchdial_speedial_v9.0.2.crx"
 
 
 
~~~ Folders
 
Successfully deleted: [Folder] "C:\Users\*********\appdata\local\adawarebp"
 
 
 
~~~ FireFox
 
Successfully deleted: [File] C:\Users\*********\AppData\Roaming\mozilla\firefox\profiles\8ml8i1en.default\searchplugins\youtube-video-search.xml
Successfully deleted: [Folder] C:\Users\*********\AppData\Roaming\mozilla\firefox\profiles\8ml8i1en.default\extensions\staged
Emptied folder: C:\Users\*********\AppData\Roaming\mozilla\firefox\profiles\8ml8i1en.default\minidumps [94 files]
 
 
 
~~~ Chrome
 
Successfully deleted: [Folder] C:\Users\*********\appdata\local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Wed 23/10/2013 at 19:49:52.38
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
ESET
 
C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareSafeBrowsing.exe multiple threats cleaned by deleting - quarantined
C:\Users\*****\Downloads\WinZip170.exe a variant of Win32/OpenInstall application cleaned by deleting - quarantined
C:\Users\*****\Downloads\YouTubeDownloaderSetup33.exe a variant of Win32/Toolbar.Widgi application cleaned by deleting - quarantined


#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,673 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:14 AM

Posted 23 October 2013 - 12:28 PM

Looks good there. I see both Ad Aware and Avast AV's running this isot a good idea,, You should ony have one active AV product running, so remove one.

How is it now?
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#8 Chareth

Chareth
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:02:14 AM

Posted 23 October 2013 - 04:52 PM

Ironically I installed Ad Aware to try and solve my original problem, not aware that it now installs crapware too. I also somehow glossed over that Ad-Aware is partly an anti-virus program now too. The anti-virus component doesn't even appear in Revo Uninstaller - just the Browsing Protection component. I've had to use its own uninstallation process. Hopefully that's enough.

 

I probably won't know for sure that the problem is fixed until a few months go by and the advertisement tab doesn't appear again. That said, am I right in thinking that the infections ESET detected most likely caused this?

 

Also, Chrome is still slow to load some webpages, and says some remembered tabs can't be found. They require a refresh. Time will tell whether it will do the same for newly visited sites with the same frequency as it did before. Do you believe that the infections we've found could affect webpage loading like this? Perhaps the current issue is just a browser or connection issue.

 

Lastly, I'm discovering how difficult it is to close avast. JRT removed it from my system tray, which I assumed closed it to the degree necessary for successful JRT and ESET scans. Running those two on my other machine now reveals that the avast process is still running in TaskManager despite it disappearing from the system tray. Do I need to worry about whether these two scans have been able to perform properly? Or does JRT's automatic shutdown of some part of avast's running give them both the space to run an unimpeded scan?



#9 Netghost56

Netghost56

  • Members
  • 865 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:10:14 AM

Posted 23 October 2013 - 05:32 PM

Not a fan of Avast. Uses too many resources while similar apps do the same job for much less power.

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,673 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:14 AM

Posted 23 October 2013 - 09:09 PM

Lets see if you have some file corruption due to the malwares and see if these issues go away.

Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.


Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

p22002979.gif



Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

p22002980.gif


Go to Step 4 and under "System Restore" click on Create button:

p22002982.gif


Go to Start Repairs tab and click Start button.

Leave all checkmarks as they're.
NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

Click on Start button.

p22003030.gif

Post Windows Repair log (_windows_repair_log.txt) which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#11 Chareth

Chareth
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:02:14 AM

Posted 23 October 2013 - 11:39 PM

Thanks boopme. As I mentioned, I was unable to deactivate avast, but I did turn off its shields for these scans. Is this enough for these results - and the earlier ones - to have value?

 

 

 

Starting Repairs...
   Start (24/10/2013 1:41:00 PM)
 
01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (24/10/2013 1:41:00 PM)
   Running Repair Under Current User Account
   Done (24/10/2013 1:41:03 PM)
 
01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (24/10/2013 1:41:03 PM)
   Running Repair Under System Account
   Done (24/10/2013 1:42:01 PM)
 
01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (24/10/2013 1:42:01 PM)
   Running Repair Under System Account
   Done (24/10/2013 1:42:30 PM)
 
03 - Register System Files
   Start (24/10/2013 1:42:30 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:42:47 PM)
 
04 - Repair WMI
   Start (24/10/2013 1:42:47 PM)
   Running Repair Under Current User Account
   Done (24/10/2013 1:45:28 PM)
 
05 - Repair Windows Firewall
   Start (24/10/2013 1:45:28 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:45:59 PM)
 
06 - Repair Internet Explorer
   Start (24/10/2013 1:45:59 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:46:15 PM)
 
07 - Repair MDAC/MS Jet
   Start (24/10/2013 1:46:15 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:46:21 PM)
 
08 - Repair Hosts File
   Start (24/10/2013 1:46:21 PM)
   Running Repair Under System Account
   Done (24/10/2013 1:46:24 PM)
 
09 - Remove Policies Set By Infections
   Start (24/10/2013 1:46:24 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:46:28 PM)
 
11 - Repair Icons
   Start (24/10/2013 1:46:28 PM)
   Running Repair Under System Account
   Done (24/10/2013 1:46:31 PM)
 
12 - Repair Winsock & DNS Cache
   Start (24/10/2013 1:46:31 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:46:44 PM)
 
14 - Repair Proxy Settings
   Start (24/10/2013 1:46:44 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:46:48 PM)
 
16 - Repair Windows Updates
   Start (24/10/2013 1:46:48 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:47:09 PM)
 
17 - Repair CD/DVD Missing/Not Working
   Start (24/10/2013 1:47:09 PM)
   Done (24/10/2013 1:47:09 PM)
 
18 - Repair Volume Shadow Copy Service
   Start (24/10/2013 1:47:09 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:47:16 PM)
 
20 - Repair MSI (Windows Installer)
   Start (24/10/2013 1:47:16 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:47:25 PM)
 
22.01 - Repair bat Association
   Start (24/10/2013 1:47:25 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:47:29 PM)
 
22.02 - Repair cmd Association
   Start (24/10/2013 1:47:29 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:47:34 PM)
 
22.03 - Repair com Association
   Start (24/10/2013 1:47:34 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:47:39 PM)
 
22.04 - Repair Directory Association
   Start (24/10/2013 1:47:39 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:47:43 PM)
 
22.05 - Repair Drive Association
   Start (24/10/2013 1:47:43 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:47:48 PM)
 
22.06 - Repair exe Association
   Start (24/10/2013 1:47:48 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:47:52 PM)
 
22.07 - Repair Folder Association
   Start (24/10/2013 1:47:52 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:47:57 PM)
 
22.08 - Repair inf Association
   Start (24/10/2013 1:47:57 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:48:02 PM)
 
22.09 - Repair lnk (Shortcuts) Association
   Start (24/10/2013 1:48:02 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:48:06 PM)
 
22.10 - Repair msc Association
   Start (24/10/2013 1:48:06 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:48:11 PM)
 
22.11 - Repair reg Association
   Start (24/10/2013 1:48:11 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:48:16 PM)
 
22.12 - Repair scr Association
   Start (24/10/2013 1:48:16 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:48:20 PM)
 
23 - Repair Windows Safe Mode
   Start (24/10/2013 1:48:20 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:48:25 PM)
 
24 - Repair Print Spooler
   Start (24/10/2013 1:48:25 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:48:40 PM)
 
25 - Restore Important Windows Services
   Start (24/10/2013 1:48:40 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:48:47 PM)
 
26 - Set Windows Services To Default Startup
   Start (24/10/2013 1:48:47 PM)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (24/10/2013 1:49:44 PM)
 
Cleaning up empty logs...
 
All Selected Repairs Done.
   Done (24/10/2013 1:49:44 PM)
   Total Repair Time: 00:08:44
 
 
...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under Current User Account


#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,673 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:14 AM

Posted 24 October 2013 - 02:07 PM

Ok, there must be some buried file(s),Lets get a deeper look.

Start a new topic, "Can't remove Avast"

Please follow this Preparation Guide, do steps 6,7 and 8 and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security

#13 Chareth

Chareth
  • Topic Starter

  • Members
  • 15 posts
  • OFFLINE
  •  
  • Local time:02:14 AM

Posted 24 October 2013 - 04:55 PM

I have't actually tried to uninstall Avast though. I tried to close it, but there's no option to do so. Ending the process in Task Manager leads to an 'Access Denied' message. Other reports online indicate this is a feature of Avast rather than an unexpected problem.

 

So I've got no reason to believe I can't remove Avast from my system. I just didn't uninstall it to run these scans - I was unsure if it was necessary and safe to do so. Should I have?



#14 Netghost56

Netghost56

  • Members
  • 865 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Texas
  • Local time:10:14 AM

Posted 24 October 2013 - 04:58 PM

Some AV apps- Avast and AVG, for one- have a AV agent shield program that can't actually be stopped. You might be able to disable it under the Services menu in services.msc, but generally the only way to actually stop it is to uninstall the program.

 

I can't answer whether its necessary to disable it for scans or not, I'll leave that up to boopme. Just clarifying.


Edited by Netghost56, 24 October 2013 - 04:59 PM.


#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 62,673 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:14 AM

Posted 24 October 2013 - 08:30 PM

Right click the icon and choose "avast! shields control".
Options will appear for you to disable shields for varied amounts of time.
At this time it will not detect virus'.
How do I get help? Who is helping me?
Staying Updated Calendar of Updates.
For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....
Become a BleepingComputer fan: Facebook Have you seen..Select Real Security




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users