Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer running Slow-Chrome and IE very slow to open and run


  • Please log in to reply
11 replies to this topic

#1 hYlAnDeR~TFC

hYlAnDeR~TFC

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:05:09 PM

Posted 07 April 2013 - 04:53 PM

While using computer last night trying to update my games and the various applications to ensure the system is safe, I kept getting these Zone Alarm Alerts that  bit-torrent rundl32 - u torrent and other various run32dll WinSys alerts notifying me that they are trying to access the internet. when I went to open Zone Alarm, I was startled to notice that both the fire wall the id protection tabs were disabled leaving my system vulnerable.  The last time I checked to update Zone Alarm was just a couple days ago.  I have this set to be done manually. And, when I checked it a couple days ago, the Zone Alarm was all up and running fine. So, either the update I just completed on it last night caused the program to be rendered vulnerable, or possibly whatever possible virus I have on my wife's computer caused ZoneAlarm to crash.  However,  I select the deny option on all request on the above mentioned alerts to access the internet.  I did not download this U-Torrent or whatever other program is causing all the problems, but evidently found out that my son is the culprit. He has been trying to download free peer to peer mp3's again for his Ipod.  So,  I ran the free version of Avast Antivirus, and it discovered (1) virus, called, " Wind32.Malware-Gen. After I ran the initial scan, I rebooted and let it complete the full bootscan.  It stated that It eliminated the infection and stored it in the Virus Chest.  Next, I ran a free ESET online Scan, it it found 23 threats/infections. The 3 primary threats/infections were identified as a variant of wind32toolbar.cross rider app;  wind32.conduit.search protect A application; and then it found wind32/Bundle Application.  It removed the infections and then I rebooted.  I also went into control panel, and then removed the  u - Torrent Program and anything else looking suspicious that should not be on the computer. Next, ran msconfig and disabled anything that looked suspicious. Next, I  ran the Full Scan on MallwareBytes, (free version), and it found 2 viruses called PuP.125 Apps.  After the scan, I chose to remove the infections.  Then I ran C Cleaner and Old Timers TFC.  Rebooted system, but now the system is running even slower than before,  and IE takes forever to boot up, and Chrome also takes a very long time to boot up and has a U-Torrent Tool Bar that I cannot get rid of under the windowed search box.  I am also still getting these annoying u-torrent pop ups at the bottom task bar occasionally. Also, I can't find or get rid of whatever traces of U-torrent is left on my system, and all I was able to do in the Task Manager is simply disable it at start up.

 

Opening up my Windows Live email takes a very long time to open. Also, pretty much any application and/or folder seems to take a very long time to open as well.

 

I think I have done all that I can to try and get rid of whatever infections my wife's computer just acquired.  So, at this point I am asking for any help I can get.  

 

Thank you in advance, and I look forward to hearing from you whenever you get an opportunity.


Edited by hYlAnDeR~TFC, 07 April 2013 - 09:57 PM.

hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:09 PM

Posted 11 April 2013 - 09:40 PM

Hello, this does sound ugly.. lets run these..

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.




    Please download AdwCleaner by Xplode onto your desktop.
    •Close all open programs and internet browsers.
    •Double click on adwcleaner.exe to run the tool.
    •Click on Delete.
    •Confirm each time with Ok.
    •You will be prompted to restart your computer. A text file will open after the restart.
    •Please post the contents of that logfile with your next reply.
    •You can find the logfile at C:\AdwCleaner[S1].txt as well.

    Please Download TDSSkiller
    Launch it.
    Click on change parameters-Select TDLFS file system
    Click on "Scan".
    Please post the LOG report(log file should be in your C drive)

    Do not change the default options on scan results.



    Please download aswMBR ( 4.5MB ) to your desktop.
    • Double click the aswMBR.exe icon, and click Run.
    • When asked if you'd like to "download the latest Avast! virus definitions", click Yes.
    • Click the Scan button to start the scan.
    • On completion of the scan, click the save log button, save it to your desktop, then copy and paste it in your next reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:05:09 PM

Posted 12 April 2013 - 08:27 PM

Thank you so much Boopme for your response and help!

 

Sorry it took me a while to reply to you.  I just got home tonight and the computer was running so slow, It was almost impossible to get to the website to view your response and instructions.  I tried to see if I could  boot into Windows 8 Safe Mode, but each time I got to the Startup Settings screen so I could select option #5 to enable safe mode with networking, the screen would finish posting each option 1-9 and I kept trying to select #5 from top of the keyboard, and then the number pad, and the last option of F5, but 3 times in a row the system would just shut down completely.  So, I decided to just boot up normal and struggle through the slowness and I finally got to this webpage and was able to successfully download all the programs per your instructions and below are the requested reports.

 

Here ya go!

 

 

 

 

Mini Tool Box Report:

 

 

 

MiniToolBox by Farbar  Version:05-03-2013
Ran by Janina (administrator) on 12-04-2013 at 17:46:10
Running from "C:\Users\Janina\Downloads"
Windows 8  (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ============================== 

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================



========================= IP Configuration: ================================

Realtek PCIe GBE Family Controller = Ethernet (Connected)
Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC = Wi-Fi (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
set interface interface="Local Area Connection* 9" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Ethernet" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Wi-Fi" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled
set interface interface="Local Area Connection* 11" forwarding=enabled advertise=enabled nud=enabled ignoredefaultroutes=disabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Janina
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Local Area Connection* 11:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Wi-Fi Direct Virtual Adapter
   Physical Address. . . . . . . . . : 20-68-9D-7C-91-D2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wi-Fi:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
   Physical Address. . . . . . . . . : 20-68-9D-7C-91-D2
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Ethernet:

   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : EC-A8-6B-32-04-73
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::1d63:c2b6:aa5c:346b%12(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.6(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, April 12, 2013 5:40:58 PM
   Lease Expires . . . . . . . . . . : Saturday, April 13, 2013 5:40:58 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 367831147
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-13-10-F8-20-68-9D-7C-91-D2
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Tunnel adapter isatap.{98E4898D-F1AB-46A2-87C6-27013E3A4F73}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft 6to4 Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  2001:4860:4007:800::100e
	  74.125.224.196
	  74.125.224.197
	  74.125.224.198
	  74.125.224.199
	  74.125.224.200
	  74.125.224.201
	  74.125.224.206
	  74.125.224.192
	  74.125.224.193
	  74.125.224.194
	  74.125.224.195


Pinging google.com [74.125.224.206] with 32 bytes of data:
Reply from 74.125.224.206: bytes=32 time=33ms TTL=53
Reply from 74.125.224.206: bytes=32 time=36ms TTL=55

Ping statistics for 74.125.224.206:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 33ms, Maximum = 36ms, Average = 34ms
Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  206.190.36.45
	  98.138.253.109
	  98.139.183.24


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=162ms TTL=51
Reply from 206.190.36.45: bytes=32 time=159ms TTL=51

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 159ms, Maximum = 162ms, Average = 160ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 17...20 68 9d 7c 91 d2 ......Microsoft Wi-Fi Direct Virtual Adapter
 16...20 68 9d 7c 91 d2 ......Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC
 12...ec a8 6b 32 04 73 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 15...00 00 00 00 00 00 00 e0 Microsoft 6to4 Adapter
 18...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1      192.168.1.6     10
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link       192.168.1.6    266
      192.168.1.6  255.255.255.255         On-link       192.168.1.6    266
    192.168.1.255  255.255.255.255         On-link       192.168.1.6    266
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link       192.168.1.6    266
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link       192.168.1.6    266
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 12    266 fe80::/64                On-link
 12    266 fe80::1d63:c2b6:aa5c:346b/128
                                    On-link
  1    306 ff00::/8                 On-link
 12    266 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [67584] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\NLAapi.dll [55296] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [21504] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [289280] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\napinsp.dll [66560] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [85504] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\NLAapi.dll [72192] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [53760] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [355328] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (04/11/2013 05:48:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5797

Error: (04/11/2013 05:48:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5797

Error: (04/11/2013 05:48:39 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/11/2013 07:28:15 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.

Error: (04/11/2013 07:27:50 AM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.

Error: (04/09/2013 06:38:07 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest1".Error in manifest or policy file "C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest2" on line C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifest.
Component 2: C:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifest.

Error: (04/09/2013 06:19:04 PM) (Source: Application Hang) (User: )
Description: The program wlmail.exe version 16.4.3505.912 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: fc4

Start Time: 01ce35891287ff6e

Termination Time: 0

Application Path: C:\Program Files (x86)\Windows Live\Mail\wlmail.exe

Report Id: 96ed5116-a17c-11e2-bed9-eca86b320473

Faulting package full name: 

Faulting package-relative application ID:

Error: (04/09/2013 05:19:00 PM) (Source: Application Hang) (User: )
Description: The program IEXPLORE.EXE version 10.0.9200.16519 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 15e8

Start Time: 01ce3580e06d56af

Termination Time: 12

Application Path: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

Report Id: 3ac9955d-a174-11e2-bed9-eca86b320473

Faulting package full name: 

Faulting package-relative application ID:

Error: (04/09/2013 05:14:25 PM) (Source: Application Error) (User: )
Description: Faulting application name: nvvsvc.exe, version: 8.17.13.593, time stamp: 0x502f4b6f
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0000000000000000
Faulting process id: 0x149c
Faulting application start time: 0xnvvsvc.exe0
Faulting application path: nvvsvc.exe1
Faulting module path: nvvsvc.exe2
Report Id: nvvsvc.exe3
Faulting package full name: nvvsvc.exe4
Faulting package-relative application ID: nvvsvc.exe5

Error: (04/09/2013 05:14:17 PM) (Source: Application Error) (User: )
Description: Faulting application name: nvvsvc.exe, version: 8.17.13.593, time stamp: 0x502f4b6f
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x0000000000000000
Faulting process id: 0x12cc
Faulting application start time: 0xnvvsvc.exe0
Faulting application path: nvvsvc.exe1
Faulting module path: nvvsvc.exe2
Report Id: nvvsvc.exe3
Faulting package full name: nvvsvc.exe4
Faulting package-relative application ID: nvvsvc.exe5


System errors:
=============
Error: (04/12/2013 05:41:06 PM) (Source: Service Control Manager) (User: )
Description: The Search Protect by Conduit Updater service failed to start due to the following error: 
%%2

Error: (04/12/2013 05:40:59 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\windows\system32\Rtlihvs.dll
Error Code: 126

Error: (04/12/2013 05:40:42 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
Description: 0xc000014d0

Error: (04/12/2013 05:34:00 PM) (Source: Service Control Manager) (User: )
Description: The Search Protect by Conduit Updater service failed to start due to the following error: 
%%2

Error: (04/12/2013 05:33:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\windows\system32\Rtlihvs.dll
Error Code: 126

Error: (04/12/2013 05:33:35 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
Description: 0xc000014d0

Error: (04/12/2013 05:26:57 PM) (Source: Service Control Manager) (User: )
Description: The Search Protect by Conduit Updater service failed to start due to the following error: 
%%2

Error: (04/12/2013 05:26:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (User: NT AUTHORITY)
Description: WLAN Extensibility Module has failed to start.

Module Path: C:\windows\system32\Rtlihvs.dll
Error Code: 126

Error: (04/12/2013 05:26:34 PM) (Source: Microsoft-Windows-Kernel-General) (User: NT AUTHORITY)
Description: 0xc000014d0

Error: (04/12/2013 05:24:47 PM) (Source: Service Control Manager) (User: )
Description: The Search Protect by Conduit Updater service failed to start due to the following error: 
%%2


Microsoft Office Sessions:
=========================
Error: (04/11/2013 05:48:39 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5797

Error: (04/11/2013 05:48:39 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5797

Error: (04/11/2013 05:48:39 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (04/11/2013 07:28:15 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (04/11/2013 07:27:50 AM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (04/09/2013 06:38:07 PM) (Source: SideBySide)(User: )
Description: C:\windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_418c2a697189c07f.manifestC:\windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9200.16384_none_893961408605e985.manifestc:\program files (x86)\ESET\eset online scanner\ESETSmartInstaller.exe

Error: (04/09/2013 06:19:04 PM) (Source: Application Hang)(User: )
Description: wlmail.exe16.4.3505.912fc401ce35891287ff6e0C:\Program Files (x86)\Windows Live\Mail\wlmail.exe96ed5116-a17c-11e2-bed9-eca86b320473

Error: (04/09/2013 05:19:00 PM) (Source: Application Hang)(User: )
Description: IEXPLORE.EXE10.0.9200.1651915e801ce3580e06d56af12C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE3ac9955d-a174-11e2-bed9-eca86b320473

Error: (04/09/2013 05:14:25 PM) (Source: Application Error)(User: )
Description: nvvsvc.exe8.17.13.593502f4b6funknown0.0.0.000000000c00000050000000000000000149c01ce35805be67a80C:\windows\system32\nvvsvc.exeunknown999ef22e-a173-11e2-bed9-eca86b320473

Error: (04/09/2013 05:14:17 PM) (Source: Application Error)(User: )
Description: nvvsvc.exe8.17.13.593502f4b6funknown0.0.0.000000000c0000005000000000000000012cc01ce3580573d22a9C:\windows\system32\nvvsvc.exeunknown9508adaa-a173-11e2-bed9-eca86b320473


CodeIntegrity Errors:
===================================
  Date: 2013-04-12 17:44:19.366
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-04-12 17:43:15.830
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-04-12 17:36:09.638
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-04-12 17:29:05.394
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-04-12 17:00:41.551
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-04-11 20:06:10.951
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-04-11 19:55:44.288
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-04-11 09:58:54.796
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-04-09 20:47:21.479
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-04-09 20:42:09.960
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume5\Program Files\CheckPoint\ZAForceField\Plugins\ISWSHEX.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

Adobe Reader X (10.1.3) (Version: 10.1.3)
Amazon Browser App (Version: 1.0.0.0)
Apple Application Support (Version: 2.3.2)
Apple Mobile Device Support (Version: 6.0.1.3)
Apple Software Update (Version: 2.1.3.127)
avast! Free Antivirus (Version: 8.0.1483.0)
Battlefield 3™ (Version: 1.5.0.0)
Battlelog Web Plugins (Version: 2.1.3)
Bonjour (Version: 3.0.0.10)
Canon MX410 series MP Drivers
CCleaner (Version: 4.00)
D3DX10 (Version: 15.4.2368.0902)
Driver & Application Installation (Version: 6.12.0815)
ESET Online Scanner v3
ESN Sonar (Version: 0.70.4)
e-Sword (Version: 10.01.0000)
FreeRide Games (Version: 07.05.80.00)
Genesys USB Mass Storage Device (Version: 4.1.1.0)
Google Chrome (Version: 26.0.1410.64)
Google Update Helper (Version: 1.3.21.135)
Hawken
Intel AppUp(SM) center (Version: 3.6.1.33057.10)
Intel(R) Management Engine Components (Version: 8.1.0.1252)
Intel® Trusted Connect Service Client (Version: 1.24.388.1)
iTunes (Version: 11.0.1.12)
Java 7 Update 10 (64-bit) (Version: 7.0.100)
Junk Mail filter update (Version: 16.4.3505.0912)
Lenovo Blacksilk USB Keyboard Driver (Version: V1.4.11.0608)
Lenovo Photos
Lenovo Power2Go (Version: 6.0.6418)
Lenovo PowerDVD10 (Version: 10.0.4126.52)
Lenovo Rescue System (Version: 4.0.0.0822)
Malwarebytes Anti-Malware version 1.70.0.1100 (Version: 1.70.0.1100)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office (Version: 14.0.6120.5004)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSVCRT110 (Version: 16.4.1108.0727)
MSVCRT110_amd64 (Version: 16.4.1109.0912)
Nitro Pro 7 (Version: 7.4.1.21)
NVIDIA Control Panel 305.93 (Version: 305.93)
NVIDIA Graphics Driver 305.93 (Version: 305.93)
NVIDIA HD Audio Driver 1.3.18.0 (Version: 1.3.18.0)
NVIDIA Install Application (Version: 2.1002.82.513)
NVIDIA PhysX (Version: 9.12.0213)
NVIDIA PhysX System Software 9.12.0213 (Version: 9.12.0213)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Origin (Version: 9.1.3.2637)
Power Control Switch (Version: 4.0.0.0704)
PunkBuster Services (Version: 0.993)
Realtek Ethernet Controller Driver (Version: 8.2.612.2012)
Realtek High Definition Audio Driver (Version: 6.0.1.6649)
REALTEK Wireless LAN Driver (Version: 1.00.0187)
Search Protect by conduit (Version: 1.4.1.12)
Shared C Run-time for x64 (Version: 10.0.0)
SpywareBlaster 5.0 (Version: 5.0.0)
Steam (Version: 1.0.0.0)
SugarSync Manager (Version: 1.9.61.90905)
SUPERAntiSpyware (Version: 5.6.1014)
Wajam (Version: 1.51)
Windows Live Communications Platform (Version: 16.4.3505.0912)
Windows Live Essentials (Version: 16.4.3505.0912)
Windows Live Installer (Version: 16.4.3505.0912)
Windows Live Mail (Version: 16.4.3505.0912)
Windows Live MIME IFilter (Version: 16.4.3505.0912)
Windows Live Photo Common (Version: 16.4.3505.0912)
Windows Live PIMT Platform (Version: 16.4.3505.0912)
Windows Live SOXE (Version: 16.4.3505.0912)
Windows Live SOXE Definitions (Version: 16.4.3505.0912)
Windows Live UX Platform (Version: 16.4.3505.0912)
Windows Live UX Platform Language Pack (Version: 16.4.3505.0912)
Windows Live Writer (Version: 16.4.3505.0912)
Windows Live Writer Resources (Version: 16.4.3505.0912)
WinRAR 4.20 (64-bit) (Version: 4.20.0)
WOT for Internet Explorer (Version: 12.8.2.0)
ZoneAlarm Firewall (Version: 11.0.000.020)
ZoneAlarm Free Firewall (Version: 11.0.000.020)
ZoneAlarm LTD Toolbar
ZoneAlarm Security (Version: 11.0.000.020)

========================= Memory info: ===================================

Percentage of memory in use: 16%
Total physical RAM: 8149.66 MB
Available physical RAM: 6810.78 MB
Total Pagefile: 16341.66 MB
Available Pagefile: 14768.61 MB
Total Virtual: 4095.88 MB
Available Virtual: 3962.33 MB

========================= Partitions: =====================================

1 Drive c: (Windows8_OS) (Fixed) (Total:1836.76 GB) (Free:1659.5 GB) NTFS

========================= Users: ========================================

User accounts for \\JANINA

Administrator            Guest                    Janina                   
Josh                     


**** End of log ****

 

 

 

*************************************************************************

************************************************************************

*************************************************************************

 

 

 

 

 

 

ADWARE CLEANER REPORT:

 

 

 

 

# AdwCleaner v2.200 - Logfile created 04/12/2013 at 17:49:40
# Updated 02/04/2013 by Xplode
# Operating system : Windows 8  (64 bits)
# User : Janina - JANINA
# Boot Mode : Normal
# Running from : C:\Users\Janina\Downloads\AdwCleaner.exe
# Option [Delete]
 
 
***** [Services] *****
 
Stopped & Deleted : CltMngSvc
 
***** [Files / Folders] *****
 
Deleted on reboot : C:\Users\Janina\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp
File Deleted : C:\Users\Josh\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\iLivid.lnk
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\SearchProtect
Folder Deleted : C:\Program Files (x86)\Wajam
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\Users\Janina\AppData\Local\Conduit
Folder Deleted : C:\Users\Janina\AppData\Local\Google\Chrome\User Data\Default\Extensions\cflheckfmhopnialghigdlggahiomebp
Folder Deleted : C:\Users\Janina\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Janina\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Janina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Wajam
Folder Deleted : C:\Users\Janina\AppData\Roaming\SearchProtect
Folder Deleted : C:\Users\Josh\AppData\Local\Ilivid
Folder Deleted : C:\Users\Josh\AppData\Roaming\SearchProtect
 
***** [Registry] *****
 
Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKCU\Software\SearchProtect
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\Wajam
Key Deleted : HKCU\Software\wecarereminder
Key Deleted : HKLM\Software\AVG Security Toolbar
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FAEE6D5-34F4-42AA-8025-3FD8F3EC4634}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\priam_bho.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3289075
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{095BFD3C-4602-4FE1-96F1-AEFAFBFD067D}
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader
Key Deleted : HKLM\SOFTWARE\Classes\wajam.WajamDownloader.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKLM\Software\Wajam
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5D64294B-1341-4FE7-B6D8-7C36828D4DD5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D824F0DE-3D60-4F57-9EB1-66033ECD8ABB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\cflheckfmhopnialghigdlggahiomebp
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Wajam
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WajamUpdater
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{431532BD-0AE1-4ABC-BE8C-919F3D1332E2}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F9E4A054-E9B1-4BC3-83A3-76A1AE736170}
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SearchProtectAll]
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v10.0.9200.16519
 
[OK] Registry is clean.
 
-\\ Google Chrome v26.0.1410.64
 
File : C:\Users\Josh\AppData\Local\Google\Chrome\User Data\Default\Preferences
 
Deleted [l.2399] : urls_to_restore_on_startup = [ "hxxp://www.google.com/", "hxxp://www.google.com", "hxxp://hom[...]
 
*************************
 
AdwCleaner[R1].txt - [2634 octets] - [30/12/2012 18:43:57]
AdwCleaner[R2].txt - [2356 octets] - [05/01/2013 19:29:13]
AdwCleaner[S2].txt - [2081 octets] - [05/01/2013 19:30:26]
AdwCleaner[S3].txt - [5126 octets] - [12/04/2013 17:49:40]
 
########## EOF - C:\AdwCleaner[S3].txt - [5186 octets] ##########
 
 
 
 
 
 
*******************************************************************************************************
******************************************************************************************************
*******************************************************************************************************
 
 
 
 
 
TDS KILLER REPORT:
 
 
 
 
18:04:48.0924 3676  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
18:04:48.0924 3676  UEFI system
18:04:50.0925 3676  ============================================================
18:04:50.0925 3676  Current date / time: 2013/04/12 18:04:50.0925
18:04:50.0925 3676  SystemInfo:
18:04:50.0925 3676  
18:04:50.0925 3676  OS Version: 6.2.9200 ServicePack: 0.0
18:04:50.0925 3676  Product type: Workstation
18:04:50.0925 3676  ComputerName: JANINA
18:04:50.0925 3676  UserName: Janina
18:04:50.0925 3676  Windows directory: C:\windows
18:04:50.0925 3676  System windows directory: C:\windows
18:04:50.0925 3676  Running under WOW64
18:04:50.0926 3676  Processor architecture: Intel x64
18:04:50.0926 3676  Number of processors: 8
18:04:50.0926 3676  Page size: 0x1000
18:04:50.0926 3676  Boot type: Normal boot
18:04:50.0926 3676  ============================================================
18:04:57.0119 3676  Drive \Device\Harddisk0\DR0 - Size: 0x1D1C1116000 (1863.02 Gb), SectorSize: 0x200, Cylinders: 0x3B601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
18:04:57.0135 3676  ============================================================
18:04:57.0135 3676  \Device\Harddisk0\DR0:
18:04:57.0136 3676  GPT partitions:
18:04:57.0136 3676  \Device\Harddisk0\DR0\Partition1: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {9C414979-1259-479B-8F5F-7F4DC08F357D}, Name: , StartLBA 0x800, BlocksNum 0x1F4000
18:04:57.0136 3676  \Device\Harddisk0\DR0\Partition2: GPT, TypeGUID: {C12A7328-F81F-11D2-BA4B-00A0C93EC93B}, UniqueGUID: {4A7DFD70-778C-461A-9EDB-C77FA6101CB3}, Name: EFI system partition, StartLBA 0x1F4800, BlocksNum 0x82000
18:04:57.0136 3676  \Device\Harddisk0\DR0\Partition3: GPT, TypeGUID: {BFBFAFE7-A34F-448A-9A5B-6213EB736C22}, UniqueGUID: {FB99D11D-7AD4-43E2-88F7-424B105F2B56}, Name: , StartLBA 0x276800, BlocksNum 0xFA000
18:04:57.0136 3676  \Device\Harddisk0\DR0\Partition4: GPT, TypeGUID: {E3C9E316-0B5C-4DB8-817D-F92DF00215AE}, UniqueGUID: {98BB5600-4DB5-4A2B-8A57-B7B1E35E53FC}, Name: Microsoft reserved partition, StartLBA 0x370800, BlocksNum 0x40000
18:04:57.0136 3676  \Device\Harddisk0\DR0\Partition5: GPT, TypeGUID: {EBD0A0A2-B9E5-4433-87C0-68B6B72699C7}, UniqueGUID: {39BB9E70-99C8-4265-9C0E-0517850655AF}, Name: Basic data partition, StartLBA 0x3B0800, BlocksNum 0xE5984000
18:04:57.0136 3676  \Device\Harddisk0\DR0\Partition6: GPT, TypeGUID: {DE94BBA4-06D1-4D40-A16A-BFD50179D6AC}, UniqueGUID: {933FCBCE-5239-45AC-AFA0-EB9FA03861B9}, Name: , StartLBA 0xE5D34800, BlocksNum 0x30D4000
18:04:57.0137 3676  MBR partitions:
18:04:57.0137 3676  ============================================================
18:04:57.0146 3676  C: <-> \Device\Harddisk0\DR0\Partition5
18:04:57.0146 3676  ============================================================
18:04:57.0147 3676  Initialize success
18:04:57.0147 3676  ============================================================
18:05:33.0116 0200  ============================================================
18:05:33.0116 0200  Scan started
18:05:33.0116 0200  Mode: Manual; TDLFS; 
18:05:33.0116 0200  ============================================================
18:05:34.0072 0200  ================ Scan system memory ========================
18:05:34.0072 0200  System memory - ok
18:05:34.0073 0200  ================ Scan services =============================
18:05:34.0177 0200  [ 581D88B25C4D4121824FED2CA38E562F ] !SASCORE        C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
18:05:34.0179 0200  !SASCORE - ok
18:05:35.0384 0200  [ E890C46E4754F0DF51BAFCC8D2E07498 ] 1394ohci        C:\windows\System32\drivers\1394ohci.sys
18:05:35.0386 0200  1394ohci - ok
18:05:35.0396 0200  [ 4F18D4C7EA14F11A7211F60D553C03DB ] 3ware           C:\windows\system32\drivers\3ware.sys
18:05:35.0398 0200  3ware - ok
18:05:35.0443 0200  [ 975AABEB243B800C23626D6B652C5A9C ] ACPI            C:\windows\system32\drivers\ACPI.sys
18:05:35.0449 0200  ACPI - ok
18:05:35.0471 0200  [ DC968C37822117E576B933F34A2D130C ] acpiex          C:\windows\system32\Drivers\acpiex.sys
18:05:35.0472 0200  acpiex - ok
18:05:35.0484 0200  [ 0CA9F7C3A78227C21A0A7854E245CFB2 ] acpipagr        C:\windows\System32\drivers\acpipagr.sys
18:05:35.0486 0200  acpipagr - ok
18:05:35.0509 0200  [ 8EB8DA03B142D3DD1EB9ED8107A76C43 ] AcpiPmi         C:\windows\System32\drivers\acpipmi.sys
18:05:35.0511 0200  AcpiPmi - ok
18:05:35.0518 0200  [ CBCE725C5D86ABA7D2604E22951AA9B8 ] acpitime        C:\windows\System32\drivers\acpitime.sys
18:05:35.0521 0200  acpitime - ok
18:05:35.0606 0200  [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
18:05:35.0607 0200  AdobeARMservice - ok
18:05:35.0626 0200  [ 93C6388592B99925C1D1576E465BC80F ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
18:05:35.0630 0200  adp94xx - ok
18:05:35.0645 0200  [ D27763E0247292654E7F7D16444C7C72 ] adpahci         C:\windows\system32\drivers\adpahci.sys
18:05:35.0648 0200  adpahci - ok
18:05:35.0659 0200  [ 67B90070FF48F794AF19F9FCF0080D75 ] adpu320         C:\windows\system32\drivers\adpu320.sys
18:05:35.0661 0200  adpu320 - ok
18:05:35.0683 0200  [ 974AE60BF5B90E31412D93596C968E5B ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
18:05:35.0685 0200  AeLookupSvc - ok
18:05:35.0718 0200  [ 36D6A3201721558A8AFBCC09C2DA4C2C ] AFD             C:\windows\system32\drivers\afd.sys
18:05:35.0723 0200  AFD - ok
18:05:35.0737 0200  [ 01590377A5AB19E792528C628A2A68F9 ] agp440          C:\windows\system32\drivers\agp440.sys
18:05:35.0738 0200  agp440 - ok
18:05:35.0758 0200  [ D1BE8E6E5B3AF23A4393AF1BF867977A ] ALG             C:\windows\System32\alg.exe
18:05:35.0759 0200  ALG - ok
18:05:35.0765 0200  [ 025E8C755BE293E50854D26D1BBE5133 ] AllUserInstallAgent C:\windows\system32\AUInstallAgent.dll
18:05:35.0767 0200  AllUserInstallAgent - ok
18:05:35.0787 0200  [ 5A81054B824004B1ECC04F0034A1CDF9 ] AmdK8           C:\windows\System32\drivers\amdk8.sys
18:05:35.0789 0200  AmdK8 - ok
18:05:35.0803 0200  [ B849D453E644FAB9BC8EF6DC8CA9C4C6 ] AmdPPM          C:\windows\System32\drivers\amdppm.sys
18:05:35.0806 0200  AmdPPM - ok
18:05:35.0817 0200  [ 35A0EB5AECB0FA3C41A2FB514A562304 ] amdsata         C:\windows\system32\drivers\amdsata.sys
18:05:35.0819 0200  amdsata - ok
18:05:35.0827 0200  [ 00452671904F5EE94B50BF0219C97164 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
18:05:35.0829 0200  amdsbs - ok
18:05:35.0841 0200  [ EA3FFE53E92E59C87E3ECA9BEB20D9B7 ] amdxata         C:\windows\system32\drivers\amdxata.sys
18:05:35.0842 0200  amdxata - ok
18:05:35.0850 0200  [ 83B3682CE922FB0F415734B26D9D6233 ] AppID           C:\windows\system32\drivers\appid.sys
18:05:35.0852 0200  AppID - ok
18:05:35.0864 0200  [ CE2BEAD7F31816FF0AC490D048C969F9 ] AppIDSvc        C:\windows\System32\appidsvc.dll
18:05:35.0865 0200  AppIDSvc - ok
18:05:35.0879 0200  [ D64C4AFEE8277F35EF729A2B924666B0 ] Appinfo         C:\windows\System32\appinfo.dll
18:05:35.0881 0200  Appinfo - ok
18:05:35.0921 0200  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
18:05:35.0921 0200  Apple Mobile Device - ok
18:05:35.0933 0200  [ E933401B392387F4BE34DE8BAF1722A7 ] arc             C:\windows\system32\drivers\arc.sys
18:05:35.0936 0200  arc - ok
18:05:35.0951 0200  [ 07CA323EF2E8247A568AB0F3662AD644 ] arcsas          C:\windows\system32\drivers\arcsas.sys
18:05:35.0952 0200  arcsas - ok
18:05:35.0974 0200  [ B217378ED9A964E15346A67FEF609A17 ] aswFsBlk        C:\windows\system32\drivers\aswFsBlk.sys
18:05:35.0975 0200  aswFsBlk - ok
18:05:35.0989 0200  [ E92635BB235B03ED03B17CBB59F77FA4 ] aswMonFlt       C:\windows\system32\drivers\aswMonFlt.sys
18:05:35.0991 0200  aswMonFlt - ok
18:05:36.0005 0200  [ 8F90459AFB7FD4557D935CE639EF6110 ] aswRdr          C:\windows\System32\Drivers\aswrdr2.sys
18:05:36.0007 0200  aswRdr - ok
18:05:36.0019 0200  [ DE6759B8D8E62BF0FFF2B05F05AFCEE6 ] aswRvrt         C:\windows\system32\drivers\aswRvrt.sys
18:05:36.0020 0200  aswRvrt - ok
18:05:36.0043 0200  [ AB8B4D3136D18A20777036E0F0CFC5E1 ] aswSnx          C:\windows\system32\drivers\aswSnx.sys
18:05:36.0060 0200  aswSnx - ok
18:05:36.0068 0200  [ 97D4D725BD32C965119E6C8E252F8C64 ] aswSP           C:\windows\system32\drivers\aswSP.sys
18:05:36.0073 0200  aswSP - ok
18:05:36.0083 0200  [ D62C10D1829C65115111C160EA956260 ] aswTdi          C:\windows\system32\drivers\aswTdi.sys
18:05:36.0085 0200  aswTdi - ok
18:05:36.0107 0200  [ 7E44C2684A6CA779B9D07CB4BD3F649D ] aswVmm          C:\windows\system32\drivers\aswVmm.sys
18:05:36.0110 0200  aswVmm - ok
18:05:36.0119 0200  [ 74DBAEC35366C4EE7670428808715A6A ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
18:05:36.0121 0200  AsyncMac - ok
18:05:36.0131 0200  [ A721FF570C2387E383BDDEA9632863C9 ] atapi           C:\windows\system32\drivers\atapi.sys
18:05:36.0133 0200  atapi - ok
18:05:36.0148 0200  [ 810ED88782952228AF9C0985FB7D259E ] AudioEndpointBuilder C:\windows\System32\AudioEndpointBuilder.dll
18:05:36.0152 0200  AudioEndpointBuilder - ok
18:05:36.0194 0200  [ 25CA8B87479A374919563B3EE7136F32 ] Audiosrv        C:\windows\System32\Audiosrv.dll
18:05:36.0202 0200  Audiosrv - ok
18:05:36.0297 0200  [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
18:05:36.0298 0200  avast! Antivirus - ok
18:05:36.0310 0200  [ 89491EF71D5EA011127832C588002853 ] AxInstSV        C:\windows\System32\AxInstSV.dll
18:05:36.0317 0200  AxInstSV - ok
18:05:36.0346 0200  [ 87AB5BB072A3F128541D5B815F82FFDD ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
18:05:36.0352 0200  b06bdrv - ok
18:05:36.0368 0200  [ 81703BC5D68DEDBB086C2368FBE7B334 ] BasicDisplay    C:\windows\System32\drivers\BasicDisplay.sys
18:05:36.0370 0200  BasicDisplay - ok
18:05:36.0381 0200  [ 5EC68164E14D25675C98BBB5F09E8606 ] BasicRender     C:\windows\System32\drivers\BasicRender.sys
18:05:36.0383 0200  BasicRender - ok
18:05:36.0410 0200  [ 89143A7BA7850F5C7E61B43BB44B6418 ] BDESVC          C:\windows\System32\bdesvc.dll
18:05:36.0414 0200  BDESVC - ok
18:05:36.0426 0200  [ 9E7AEA59776D904607985AFFE7E5E183 ] Beep            C:\windows\system32\drivers\Beep.sys
18:05:36.0428 0200  Beep - ok
18:05:36.0468 0200  [ 9E6A544F465C582AB42444A217CF04DC ] BFE             C:\windows\System32\bfe.dll
18:05:36.0476 0200  BFE - ok
18:05:36.0503 0200  [ D598C44A7072D3108D8D8102EC5E07F7 ] BITS            C:\windows\System32\qmgr.dll
18:05:36.0517 0200  BITS - ok
18:05:36.0547 0200  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
18:05:36.0551 0200  Bonjour Service - ok
18:05:36.0563 0200  [ B17AC10B47C7FCB44D22A1F06415840E ] bowser          C:\windows\system32\DRIVERS\bowser.sys
18:05:36.0565 0200  bowser - ok
18:05:36.0597 0200  [ 975398A3D2C1FEA73FC93931978DF354 ] BrokerInfrastructure C:\windows\System32\bisrv.dll
18:05:36.0601 0200  BrokerInfrastructure - ok
18:05:36.0628 0200  [ 310068BDA80B1D55C36580FD8A873FAF ] Browser         C:\windows\System32\browser.dll
18:05:36.0631 0200  Browser - ok
18:05:36.0652 0200  [ F17DEEAC7D51D44CF1BFF8DD4F0A2B6D ] BthAvrcpTg      C:\windows\System32\drivers\BthAvrcpTg.sys
18:05:36.0653 0200  BthAvrcpTg - ok
18:05:36.0663 0200  [ 616EB8748C988AEE98D93DA141C3D3B4 ] BthHFEnum       C:\windows\System32\drivers\bthhfenum.sys
18:05:36.0666 0200  BthHFEnum - ok
18:05:36.0673 0200  [ DCB4EBD928A6FB368BE6CAE522412DE1 ] bthhfhid        C:\windows\System32\drivers\BthHFHid.sys
18:05:36.0675 0200  bthhfhid - ok
18:05:36.0682 0200  [ 033916CE8784A848B9A3D686B7F66D97 ] BTHMODEM        C:\windows\System32\drivers\bthmodem.sys
18:05:36.0684 0200  BTHMODEM - ok
18:05:36.0700 0200  [ A4387C3D271959313E2577DB7BE8BA7A ] bthserv         C:\windows\system32\bthserv.dll
18:05:36.0719 0200  bthserv - ok
18:05:36.0746 0200  [ 990B1BABE6E81FB18E65A87EBEFB1772 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
18:05:36.0770 0200  cdfs - ok
18:05:36.0783 0200  [ 339BFF85D788268752DA8C9644B188EE ] cdrom           C:\windows\System32\drivers\cdrom.sys
18:05:36.0786 0200  cdrom - ok
18:05:36.0800 0200  [ BAF8F0F55BC300E5F882E521F054E345 ] CertPropSvc     C:\windows\System32\certprop.dll
18:05:36.0804 0200  CertPropSvc - ok
18:05:36.0815 0200  [ F64B7D1A37CC1D5F421D5359EEC81E2E ] circlass        C:\windows\System32\drivers\circlass.sys
18:05:36.0816 0200  circlass - ok
18:05:36.0829 0200  [ 9905168708DB68849B879B5548F68AB3 ] CLFS            C:\windows\system32\drivers\CLFS.sys
18:05:36.0833 0200  CLFS - ok
18:05:36.0844 0200  [ 2DC8538A2260647484A6C921CA837313 ] CmBatt          C:\windows\System32\drivers\CmBatt.sys
18:05:36.0846 0200  CmBatt - ok
18:05:36.0866 0200  [ E708BFF0473EC6B271EA46B65B16CA56 ] CNG             C:\windows\system32\Drivers\cng.sys
18:05:36.0873 0200  CNG - ok
18:05:36.0880 0200  [ 0E5B1E9E7122EDAAF1F6CE047965CA92 ] CompositeBus    C:\windows\System32\drivers\CompositeBus.sys
18:05:36.0881 0200  CompositeBus - ok
18:05:36.0885 0200  COMSysApp - ok
18:05:36.0892 0200  [ D9CB0782AF819548072AA45B70F8B22D ] condrv          C:\windows\system32\drivers\condrv.sys
18:05:36.0893 0200  condrv - ok
18:05:36.0901 0200  [ F0E78B119D12BA81F163D48C0FF30B9A ] CryptSvc        C:\windows\system32\cryptsvc.dll
18:05:36.0903 0200  CryptSvc - ok
18:05:36.0906 0200  [ C4D01BD86D6B207275FC143EEA951D75 ] dam             C:\windows\system32\drivers\dam.sys
18:05:36.0907 0200  dam - ok
18:05:36.0921 0200  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] DcomLaunch      C:\windows\system32\rpcss.dll
18:05:36.0930 0200  DcomLaunch - ok
18:05:36.0943 0200  [ C8650D1F61149AA546BDBC99172EBBC1 ] defragsvc       C:\windows\System32\defragsvc.dll
18:05:36.0947 0200  defragsvc - ok
18:05:36.0960 0200  [ 5EAEF67AE2AF4D2DC664B649DB7B2E16 ] DeviceAssociationService C:\windows\system32\das.dll
18:05:36.0964 0200  DeviceAssociationService - ok
18:05:36.0977 0200  [ 799BE46D45D486704CE0F37CA5385262 ] DeviceInstall   C:\windows\system32\umpnpmgr.dll
18:05:36.0982 0200  DeviceInstall - ok
18:05:36.0990 0200  [ 09D9EB9E7898F8E6561473A20CC808B9 ] Dfsc            C:\windows\system32\Drivers\dfsc.sys
18:05:36.0992 0200  Dfsc - ok
18:05:37.0030 0200  [ 9E0E72222264745ADEB0E5AC680B0ED6 ] Dhcp            C:\windows\system32\dhcpcore.dll
18:05:37.0034 0200  Dhcp - ok
18:05:37.0037 0200  [ 3C736FAE17BA6F91BA37594AAB139CD0 ] discache        C:\windows\system32\drivers\discache.sys
18:05:37.0039 0200  discache - ok
18:05:37.0050 0200  [ 560495FF4CA22E1D9B1972FA18F43B6F ] disk            C:\windows\system32\drivers\disk.sys
18:05:37.0051 0200  disk - ok
18:05:37.0062 0200  [ 82A7C72593793FE1EADA7A305BD1567A ] dmvsc           C:\windows\System32\drivers\dmvsc.sys
18:05:37.0063 0200  dmvsc - ok
18:05:37.0070 0200  [ 066B9710B36AB550E01EEFCA52155968 ] Dnscache        C:\windows\System32\dnsrslvr.dll
18:05:37.0073 0200  Dnscache - ok
18:05:37.0091 0200  [ 9949AD2ABA168A618D46C799D6CC898C ] dot3svc         C:\windows\System32\dot3svc.dll
18:05:37.0095 0200  dot3svc - ok
18:05:37.0117 0200  [ 27069CFFF29B7F04F4B1BB10154BE52B ] dot4            C:\windows\system32\DRIVERS\Dot4.sys
18:05:37.0118 0200  dot4 - ok
18:05:37.0140 0200  [ 0BD906A79F9CE3013F7D9D0AC45F9F9D ] Dot4Print       C:\windows\System32\drivers\Dot4Prt.sys
18:05:37.0141 0200  Dot4Print - ok
18:05:37.0143 0200  [ B7D595F2F464F7B628AD53F06547792C ] dot4usb         C:\windows\system32\DRIVERS\dot4usb.sys
18:05:37.0144 0200  dot4usb - ok
18:05:37.0151 0200  [ 109FC3F80BF4F4DC5A071058074F13C1 ] DPS             C:\windows\system32\dps.dll
18:05:37.0153 0200  DPS - ok
18:05:37.0167 0200  [ 9C7C183F937951AE17C5B8B3259CF3FF ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
18:05:37.0169 0200  drmkaud - ok
18:05:37.0172 0200  [ BF48F32EE248C3D371DA5DC93BBEADA7 ] DsmSvc          C:\windows\System32\DeviceSetupManager.dll
18:05:37.0175 0200  DsmSvc - ok
18:05:37.0218 0200  [ ED120AA770A78B5079F8C7BB5AF8A035 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
18:05:37.0244 0200  DXGKrnl - ok
18:05:37.0259 0200  [ 651FBD69A9713D623D456A240F96179C ] e1iexpress      C:\windows\system32\DRIVERS\e1i63x64.sys
18:05:37.0263 0200  e1iexpress - ok
18:05:37.0279 0200  [ 58BA473DD88F5FC1932282BA683AA03E ] Eaphost         C:\windows\System32\eapsvc.dll
18:05:37.0283 0200  Eaphost - ok
18:05:37.0328 0200  [ 5AB97B3282D7D6114949D1EB5C8598E4 ] ebdrv           C:\windows\system32\drivers\evbda.sys
18:05:37.0362 0200  ebdrv - ok
18:05:37.0385 0200  [ F702AB6181513303AB0FC8D59E52708B ] EFS             C:\windows\System32\lsass.exe
18:05:37.0386 0200  EFS - ok
18:05:37.0389 0200  [ 66D60BD9A4C05616ABECA2A901475098 ] EhStorClass     C:\windows\system32\drivers\EhStorClass.sys
18:05:37.0390 0200  EhStorClass - ok
18:05:37.0393 0200  [ A61D0F543024E458C0FE32352E1978E2 ] EhStorTcgDrv    C:\windows\system32\drivers\EhStorTcgDrv.sys
18:05:37.0394 0200  EhStorTcgDrv - ok
18:05:37.0402 0200  [ D790D058D67582DB9C84C2D33695FE6B ] ErrDev          C:\windows\System32\drivers\errdev.sys
18:05:37.0403 0200  ErrDev - ok
18:05:37.0450 0200  [ F9E01C2D9F8BC049E04CF5DC24A5F638 ] EventSystem     C:\windows\system32\es.dll
18:05:37.0453 0200  EventSystem - ok
18:05:37.0457 0200  [ 7A4D6FEB8C52B3FE855E4DCDF9107E03 ] exfat           C:\windows\system32\drivers\exfat.sys
18:05:37.0460 0200  exfat - ok
18:05:37.0467 0200  [ 60996602A7111FD2D086E803F33E4282 ] fastfat         C:\windows\system32\drivers\fastfat.sys
18:05:37.0469 0200  fastfat - ok
18:05:37.0481 0200  [ F0E7F8382ED5E138B0DFA4CB5058BCFE ] Fax             C:\windows\system32\fxssvc.exe
18:05:37.0486 0200  Fax - ok
18:05:37.0495 0200  [ 73B2D11DF0B6E03A0CB0323218ACB3E4 ] fdc             C:\windows\System32\drivers\fdc.sys
18:05:37.0496 0200  fdc - ok
18:05:37.0503 0200  [ 0828E3E7BD77C89149EAD3232BFD38DB ] fdPHost         C:\windows\system32\fdPHost.dll
18:05:37.0505 0200  fdPHost - ok
18:05:37.0512 0200  [ 872506AAB591E8908DF4461475AF92DF ] FDResPub        C:\windows\system32\fdrespub.dll
18:05:37.0515 0200  FDResPub - ok
18:05:37.0527 0200  [ 0588950D93A426F97C7AAADB1A9B0458 ] fhsvc           C:\windows\system32\fhsvc.dll
18:05:37.0530 0200  fhsvc - ok
18:05:37.0539 0200  [ 88A9EBACD1058ABB237A6B4E96E7F397 ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
18:05:37.0540 0200  FileInfo - ok
18:05:37.0545 0200  [ 9E4EE3A0B00FF7D5F42A4AF9744CBA02 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
18:05:37.0546 0200  Filetrace - ok
18:05:37.0554 0200  [ B1D4C168FF7B8579E3745888658FFB1D ] flpydisk        C:\windows\System32\drivers\flpydisk.sys
18:05:37.0555 0200  flpydisk - ok
18:05:37.0566 0200  [ B33EC133AE4E6C1881D2302D93D2467D ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
18:05:37.0569 0200  FltMgr - ok
18:05:37.0588 0200  [ 0BCDC0FF11B984162B0CF0FF6E9E0146 ] FontCache       C:\windows\system32\FntCache.dll
18:05:37.0618 0200  FontCache - ok
18:05:37.0663 0200  [ 0B56259F5611787222A04A8F254E51D4 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
18:05:37.0665 0200  FontCache3.0.0.0 - ok
18:05:37.0675 0200  [ A5F7873A39E4E9FAAAE59B7E9E36B705 ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
18:05:37.0685 0200  FsDepends - ok
18:05:37.0698 0200  [ A6DD7D491F587F4BC13FB972977DC8E8 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
18:05:37.0698 0200  Fs_Rec - ok
18:05:37.0768 0200  [ FA228F4BB10DC7ED7E7D131C034E2331 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
18:05:37.0793 0200  fvevol - ok
18:05:37.0807 0200  [ A969D92973DFA895E7776B4BFE36DBB2 ] FxPPM           C:\windows\System32\drivers\fxppm.sys
18:05:37.0815 0200  FxPPM - ok
18:05:37.0820 0200  [ 52BC441E07A827EBAB70CDC7EAEDB28D ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
18:05:37.0821 0200  gagp30kx - ok
18:05:37.0840 0200  [ 8E98D21EE06192492A5671A6144D092F ] GEARAspiWDM     C:\windows\system32\DRIVERS\GEARAspiWDM.sys
18:05:37.0842 0200  GEARAspiWDM - ok
18:05:37.0850 0200  [ 721F8EEF5E9747F32670DEFF7FB92541 ] gencounter      C:\windows\System32\drivers\vmgencounter.sys
18:05:37.0852 0200  gencounter - ok
18:05:37.0868 0200  [ 2D15E93C8836D8F834695419E33EAB38 ] GeneStor        C:\windows\System32\drivers\GeneStor.sys
18:05:37.0870 0200  GeneStor - ok
18:05:37.0881 0200  [ CA18ECFCFFDD638ECE80799A9056B238 ] GPIOClx0101     C:\windows\system32\Drivers\msgpioclx.sys
18:05:37.0885 0200  GPIOClx0101 - ok
18:05:37.0912 0200  [ 5358678C6370F2ADC5291849F6503262 ] gpsvc           C:\windows\System32\gpsvc.dll
18:05:37.0958 0200  gpsvc - ok
18:05:38.0013 0200  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:05:38.0015 0200  gupdate - ok
18:05:38.0023 0200  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
18:05:38.0025 0200  gupdatem - ok
18:05:38.0051 0200  [ C2504AA983B5D411F7D31402E8B57725 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
18:05:38.0055 0200  HdAudAddService - ok
18:05:38.0083 0200  [ 7D87B5B6C7188D553E11B59DC7F0B111 ] HDAudBus        C:\windows\System32\drivers\HDAudBus.sys
18:05:38.0084 0200  HDAudBus - ok
18:05:38.0095 0200  [ 3F76BBA53D65E85A7F53E7A71082082C ] HidBatt         C:\windows\System32\drivers\HidBatt.sys
18:05:38.0097 0200  HidBatt - ok
18:05:38.0101 0200  [ A25BAE8C1F2830C8E5625EC7E4E968BE ] HidBth          C:\windows\System32\drivers\hidbth.sys
18:05:38.0103 0200  HidBth - ok
18:05:38.0113 0200  [ CC4A07E51D89575CAB6F4EB590D87CD4 ] hidi2c          C:\windows\System32\drivers\hidi2c.sys
18:05:38.0115 0200  hidi2c - ok
18:05:38.0132 0200  [ DC96F7DACB777CDEAEF9958A50BFDA06 ] HidIr           C:\windows\System32\drivers\hidir.sys
18:05:38.0134 0200  HidIr - ok
18:05:38.0143 0200  [ FAC37D7B3D6354A5A5E19A45B50B4008 ] hidserv         C:\windows\system32\hidserv.dll
18:05:38.0147 0200  hidserv - ok
18:05:38.0157 0200  [ 590B6F71BCDA4368B4BF7D8DF22B60F7 ] HidUsb          C:\windows\System32\drivers\hidusb.sys
18:05:38.0159 0200  HidUsb - ok
18:05:38.0174 0200  [ 43F884B61A24377567CD0FEB35236334 ] hkmsvc          C:\windows\system32\kmsvc.dll
18:05:38.0180 0200  hkmsvc - ok
18:05:38.0296 0200  [ 33DFC14DFDCCFA7AA10E392F6A8EC1CF ] HomeGroupListener C:\windows\system32\ListSvc.dll
18:05:38.0341 0200  HomeGroupListener - ok
18:05:38.0367 0200  [ E0D9F6FE18FA7F53ADD29AF719CE2B7E ] HomeGroupProvider C:\windows\system32\provsvc.dll
18:05:38.0374 0200  HomeGroupProvider - ok
18:05:38.0380 0200  [ 64DB7A8D97CA53DCCF93D0A1E08342CF ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
18:05:38.0381 0200  HpSAMD - ok
18:05:38.0410 0200  [ 29CB98187BB5711F7759540976D295FC ] HTTP            C:\windows\system32\drivers\HTTP.sys
18:05:38.0419 0200  HTTP - ok
18:05:38.0434 0200  [ 2A98301068801700906C06649860FE94 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
18:05:38.0435 0200  hwpolicy - ok
18:05:38.0445 0200  [ DC76901D82097C9E297F20C287CB9A27 ] hyperkbd        C:\windows\System32\drivers\hyperkbd.sys
18:05:38.0446 0200  hyperkbd - ok
18:05:38.0455 0200  [ 716413AB3CA12DE0A7222D28C1C9352C ] HyperVideo      C:\windows\system32\DRIVERS\HyperVideo.sys
18:05:38.0456 0200  HyperVideo - ok
18:05:38.0467 0200  [ C9E9CBF73AFFBFE3E801EFB516787BA3 ] i8042prt        C:\windows\System32\drivers\i8042prt.sys
18:05:38.0470 0200  i8042prt - ok
18:05:38.0493 0200  [ 5E394EBD26FD68AA9300332C46BEDD62 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
18:05:38.0498 0200  iaStorV - ok
18:05:38.0683 0200  [ E5272DDF2C9043411809171715B4633D ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
18:05:39.0045 0200  igfx - ok
18:05:39.0055 0200  [ 24847A06B84339FEEDE5CABF3D27D320 ] iirsp           C:\windows\system32\drivers\iirsp.sys
18:05:39.0058 0200  iirsp - ok
18:05:39.0090 0200  [ 531B5A98145DA689741A0AC18F14EA94 ] IKEEXT          C:\windows\System32\ikeext.dll
18:05:39.0107 0200  IKEEXT - ok
18:05:39.0151 0200  [ 01B5249AF90F308F0F07BA48F5386766 ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
18:05:39.0203 0200  IntcAzAudAddService - ok
18:05:39.0303 0200  [ C99F8E90DE4B8F0C7FE15BB1CBCD29DC ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
18:05:39.0308 0200  Intel® Capability Licensing Service Interface - ok
18:05:39.0331 0200  [ 4F37726CF764CA18A8A84F85EF3A7F24 ] intelide        C:\windows\system32\drivers\intelide.sys
18:05:39.0332 0200  intelide - ok
18:05:39.0345 0200  [ E15CDF68DD73423F15D4AC404793AF0D ] intelppm        C:\windows\System32\drivers\intelppm.sys
18:05:39.0346 0200  intelppm - ok
18:05:39.0359 0200  [ 8FCA66234A0933D796BB780B7953BAB9 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
18:05:39.0361 0200  IpFilterDriver - ok
18:05:39.0395 0200  [ C217B8D2E58C57A319B16125C3D4B69C ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
18:05:39.0407 0200  iphlpsvc - ok
18:05:39.0418 0200  [ 6E98A046A12AA113F8898AA5D612BD6E ] IPMIDRV         C:\windows\System32\drivers\IPMIDrv.sys
18:05:39.0420 0200  IPMIDRV - ok
18:05:39.0430 0200  [ 3969B9C218DD3FAA9F4ED2FFC3651C02 ] IPNAT           C:\windows\system32\drivers\ipnat.sys
18:05:39.0433 0200  IPNAT - ok
18:05:39.0460 0200  [ 0F261EC4F514926177C70C1832374231 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
18:05:39.0465 0200  iPod Service - ok
18:05:39.0476 0200  [ 25CD7C4BB2863FFC2B0B311F0AEBF77C ] IRENUM          C:\windows\system32\drivers\irenum.sys
18:05:39.0478 0200  IRENUM - ok
18:05:39.0486 0200  [ D940C5BB9DC92E588533C19ABCC3D2C2 ] isapnp          C:\windows\system32\drivers\isapnp.sys
18:05:39.0488 0200  isapnp - ok
18:05:39.0505 0200  [ 69C8BF0BC2B0EA10F130F4D3104DC2EF ] iScsiPrt        C:\windows\System32\drivers\msiscsi.sys
18:05:39.0508 0200  iScsiPrt - ok
18:05:39.0538 0200  [ AD1A85CA5535CC0EE40E0BADFB8DFB27 ] ISWKL           C:\Program Files\CheckPoint\ZAForceField\ISWKL.sys
18:05:39.0540 0200  ISWKL - ok
18:05:39.0554 0200  [ 9DFAE38F2E13C003EEB62AEAEAE61259 ] IswSvc          C:\Program Files\CheckPoint\ZAForceField\IswSvc.exe
18:05:39.0558 0200  IswSvc - ok
18:05:39.0579 0200  [ 3C4002D339491AF73D663FFC7F6E5ECB ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
18:05:39.0580 0200  jhi_service - ok
18:05:39.0595 0200  [ 1DED0D0AA513E2A5862B20A520D3A1E1 ] JME Keyboard    C:\Windows\jmesoft\Service.exe
18:05:39.0595 0200  JME Keyboard - ok
18:05:39.0618 0200  [ 8FBD94B69D6423E20ABCD59D86368B21 ] kbdclass        C:\windows\System32\drivers\kbdclass.sys
18:05:39.0620 0200  kbdclass - ok
18:05:39.0623 0200  [ E88C932ABDF8185A62C8F2FC7B051FB6 ] kbdhid          C:\windows\System32\drivers\kbdhid.sys
18:05:39.0624 0200  kbdhid - ok
18:05:39.0627 0200  [ FB6C185092E18011EF49989425C2AA87 ] kdnic           C:\windows\system32\DRIVERS\kdnic.sys
18:05:39.0627 0200  kdnic - ok
18:05:39.0635 0200  [ F702AB6181513303AB0FC8D59E52708B ] KeyIso          C:\windows\system32\lsass.exe
18:05:39.0637 0200  KeyIso - ok
18:05:39.0647 0200  [ DFA480F6DED551464F3A5B959F437800 ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
18:05:39.0648 0200  KSecDD - ok
18:05:39.0666 0200  [ 127FB0AAD232BAAD2C9BBACD374F4FC5 ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
18:05:39.0668 0200  KSecPkg - ok
18:05:39.0681 0200  [ 81492FEEBF2F26455B00EE8DBAE8A1B0 ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
18:05:39.0682 0200  ksthunk - ok
18:05:39.0729 0200  [ 5825DBACEDC3812B5CF8D40B997BF210 ] KtmRm           C:\windows\system32\msdtckrm.dll
18:05:39.0772 0200  KtmRm - ok
18:05:39.0801 0200  [ 256EE31588257E8A555DBFAA13F1908E ] LanmanServer    C:\windows\system32\srvsvc.dll
18:05:39.0810 0200  LanmanServer - ok
18:05:39.0827 0200  [ 16650912BE5A94B40E0B3B4C39652B56 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
18:05:39.0835 0200  LanmanWorkstation - ok
18:05:39.0872 0200  [ 5BBEB3DD63BB7598A32BE23667A553BD ] LenovoCOMSvc    C:\Program Files\Lenovo\Power Control Switch\LenovoCOMSvc.exe
18:05:39.0873 0200  LenovoCOMSvc - ok
18:05:39.0877 0200  [ DF94D1DE3318FB508723029C349C63A7 ] LitModeCtrl     C:\Program Files\Lenovo\Power Control Switch\LitModeCtrl.exe
18:05:39.0878 0200  LitModeCtrl - ok
18:05:39.0889 0200  [ CEEFD29FC551F289810B0B9381B321DC ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
18:05:39.0894 0200  lltdio - ok
18:05:39.0915 0200  [ BCF53485E0A94722CDE3C4A93CD8EB8C ] lltdsvc         C:\windows\System32\lltdsvc.dll
18:05:39.0922 0200  lltdsvc - ok
18:05:39.0938 0200  [ 5A2F7F1CBC2E631A497DAD16164E06D2 ] lmhosts         C:\windows\System32\lmhsvc.dll
18:05:39.0942 0200  lmhosts - ok
18:05:39.0959 0200  [ 4269D44BB47A6DA5D80B11F4C8536458 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
18:05:39.0962 0200  LMS - ok
18:05:39.0980 0200  [ 022CDD12161B063D7852B1075BF3FFF2 ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
18:05:39.0983 0200  LSI_SAS - ok
18:05:39.0997 0200  [ 07AD59D669B996F29F91817F0ECFA34F ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
18:05:40.0000 0200  LSI_SAS2 - ok
18:05:40.0010 0200  [ 216FB796AA4E252ACCE93B1BCB80B5EC ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
18:05:40.0013 0200  LSI_SCSI - ok
18:05:40.0018 0200  [ 5E80530AF37102488EE980B4A92AF99F ] LSI_SSS         C:\windows\system32\drivers\lsi_sss.sys
18:05:40.0020 0200  LSI_SSS - ok
18:05:40.0049 0200  [ A57BA284F5996FFD32DCDBC41A4657DB ] LSM             C:\windows\System32\lsm.dll
18:05:40.0057 0200  LSM - ok
18:05:40.0072 0200  [ 2BDC5D711FA61307CE6190D47C956368 ] luafv           C:\windows\system32\drivers\luafv.sys
18:05:40.0074 0200  luafv - ok
18:05:40.0084 0200  [ 9B0D829C3BE4E7472DB9DD2B79908E3C ] megasas         C:\windows\system32\drivers\megasas.sys
18:05:40.0086 0200  megasas - ok
18:05:40.0105 0200  [ ECC3F54C7AFC318271C4F0B4606D8DB0 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
18:05:40.0110 0200  MegaSR - ok
18:05:40.0115 0200  [ 772A1DEEDFDBC244183B5C805D1B7D85 ] MEIx64          C:\windows\System32\drivers\HECIx64.sys
18:05:40.0116 0200  MEIx64 - ok
18:05:40.0133 0200  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] MMCSS           C:\windows\system32\mmcss.dll
18:05:40.0137 0200  MMCSS - ok
18:05:40.0152 0200  [ 780098AD5DA8A4822E2563984C85EF7B ] Modem           C:\windows\system32\drivers\modem.sys
18:05:40.0154 0200  Modem - ok
18:05:40.0158 0200  [ 83EB0BF7E6EBD5B1AAC97F9DBD5EB935 ] monitor         C:\windows\system32\DRIVERS\monitor.sys
18:05:40.0159 0200  monitor - ok
18:05:40.0164 0200  [ 618446B98C79776654340CE27C73485E ] mouclass        C:\windows\System32\drivers\mouclass.sys
18:05:40.0165 0200  mouclass - ok
18:05:40.0170 0200  [ CB2527B8B87D83E56FBF3944BBB6F606 ] mouhid          C:\windows\System32\drivers\mouhid.sys
18:05:40.0171 0200  mouhid - ok
18:05:40.0176 0200  [ 89D263DBF08119CE16273991C120D6DD ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
18:05:40.0178 0200  mountmgr - ok
18:05:40.0203 0200  [ 0D1609DD82C7440F5D5BF21A9D4D5C0C ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
18:05:40.0221 0200  mpsdrv - ok
18:05:40.0290 0200  [ 3031573A739DBEE8923851929D0AF423 ] MpsSvc          C:\windows\system32\mpssvc.dll
18:05:40.0325 0200  MpsSvc - ok
18:05:40.0337 0200  [ 3D70147F55F1EC84EB9139ED7FFE48BC ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
18:05:40.0340 0200  MRxDAV - ok
18:05:40.0371 0200  [ 93179D48066918323628CB016D8C94DC ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
18:05:40.0375 0200  mrxsmb - ok
18:05:40.0408 0200  [ 06D5F2FA3C61E8EA91648EA8E9F99FD3 ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
18:05:40.0416 0200  mrxsmb10 - ok
18:05:40.0432 0200  [ 5C7DD2E5759FFCCD2C7341C1B90F2B26 ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
18:05:40.0435 0200  mrxsmb20 - ok
18:05:40.0451 0200  [ 98487487D6B3797CA927E9D7B030AE13 ] MsBridge        C:\windows\system32\DRIVERS\bridge.sys
18:05:40.0454 0200  MsBridge - ok
18:05:40.0466 0200  [ 4A07458EB4F17573BD39F22029A991C1 ] MSDTC           C:\windows\System32\msdtc.exe
18:05:40.0472 0200  MSDTC - ok
18:05:40.0489 0200  [ 3886F1F2A4D2900ABAA7E4486BEEE6A2 ] Msfs            C:\windows\system32\drivers\Msfs.sys
18:05:40.0490 0200  Msfs - ok
18:05:40.0519 0200  [ C32A7A39B960A42BA9D4FBE47213CA03 ] msgpiowin32     C:\windows\System32\drivers\msgpiowin32.sys
18:05:40.0521 0200  msgpiowin32 - ok
18:05:40.0529 0200  [ D3857A767B91A061B408CCAB02DA4F40 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
18:05:40.0530 0200  mshidkmdf - ok
18:05:40.0542 0200  [ 839B48910FB1E887635C48F3EC11A05E ] mshidumdf       C:\windows\System32\drivers\mshidumdf.sys
18:05:40.0543 0200  mshidumdf - ok
18:05:40.0557 0200  [ 55C0DB741E3AB7463242B185B1C2997C ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
18:05:40.0558 0200  msisadrv - ok
18:05:40.0582 0200  [ 216C6B035A4BA5560E1255BD8E5BB89F ] MSiSCSI         C:\windows\system32\iscsiexe.dll
18:05:40.0587 0200  MSiSCSI - ok
18:05:40.0591 0200  msiserver - ok
18:05:40.0604 0200  [ 509809566E49F4411055864EA8D437CD ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
18:05:40.0605 0200  MSKSSRV - ok
18:05:40.0619 0200  [ 63145201D6458E4958E572E7D6FC2604 ] MsLldp          C:\windows\system32\DRIVERS\mslldp.sys
18:05:40.0622 0200  MsLldp - ok
18:05:40.0630 0200  [ 99D526E803DB6D7FF290FD98B6204641 ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
18:05:40.0632 0200  MSPCLOCK - ok
18:05:40.0642 0200  [ 06FA77C3E2A491ADCD704C5E73006269 ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
18:05:40.0643 0200  MSPQM - ok
18:05:40.0659 0200  [ E134EC4DE11CF78CB01432D180710D84 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
18:05:40.0665 0200  MsRPC - ok
18:05:40.0672 0200  [ B5AECF12F09DEE97C9FCAA5BA016CE1E ] mssmbios        C:\windows\System32\drivers\mssmbios.sys
18:05:40.0673 0200  mssmbios - ok
18:05:40.0676 0200  [ 72D66A05E0F99F2528F6C6204FD22AA1 ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
18:05:40.0678 0200  MSTEE - ok
18:05:40.0692 0200  [ 8AAAE399FC255FA105D4158CBA289001 ] MTConfig        C:\windows\System32\drivers\MTConfig.sys
18:05:40.0694 0200  MTConfig - ok
18:05:40.0699 0200  [ 3BCB702F3E6CC622DCAFCAA45D7CDE0A ] Mup             C:\windows\system32\Drivers\mup.sys
18:05:40.0700 0200  Mup - ok
18:05:40.0710 0200  [ 3A1E095277BBD406CEA8EA6B76950664 ] mvumis          C:\windows\system32\drivers\mvumis.sys
18:05:40.0713 0200  mvumis - ok
18:05:40.0739 0200  [ 4B18840511D720BA118D3017E8165875 ] napagent        C:\windows\system32\qagentRT.dll
18:05:40.0748 0200  napagent - ok
18:05:40.0765 0200  [ 43D7388A90A4C6EA346A4D6FF0377479 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
18:05:40.0770 0200  NativeWifiP - ok
18:05:40.0782 0200  [ 6A0C3996DA7DAE6D6939676D786EEEC4 ] NcaSvc          C:\windows\System32\ncasvc.dll
18:05:40.0788 0200  NcaSvc - ok
18:05:40.0802 0200  [ C982FE4CC91DECE2259F494FCEB4030F ] NcdAutoSetup    C:\windows\System32\NcdAutoSetup.dll
18:05:40.0808 0200  NcdAutoSetup - ok
18:05:40.0842 0200  [ 03CFE4108D1DE16D6C59455B5C73319C ] NDIS            C:\windows\system32\drivers\ndis.sys
18:05:40.0853 0200  NDIS - ok
18:05:40.0858 0200  [ 39C8A1D9D46F5E83A016BCAB72455284 ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
18:05:40.0860 0200  NdisCap - ok
18:05:40.0866 0200  [ 762941932B7E4C588E48A577BA9D6440 ] NdisImPlatform  C:\windows\system32\DRIVERS\NdisImPlatform.sys
18:05:40.0868 0200  NdisImPlatform - ok
18:05:40.0896 0200  [ 7A6F8A6D0E01432EBA294EF29CDD0FA7 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
18:05:40.0898 0200  NdisTapi - ok
18:05:40.0903 0200  [ 79AB68BB3FFF974AD4F41FA559F4EC67 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
18:05:40.0905 0200  Ndisuio - ok
18:05:40.0919 0200  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
18:05:40.0923 0200  NdisWan - ok
18:05:40.0928 0200  [ 62C7DBF4F9301F76CF87D4B9D8F57BF8 ] NDISWANLEGACY   C:\windows\system32\DRIVERS\ndiswan.sys
18:05:40.0930 0200  NDISWANLEGACY - ok
18:05:40.0937 0200  [ CE6EBC0AD38CC6482D8FBB744FF15CE2 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
18:05:40.0939 0200  NDProxy - ok
18:05:40.0944 0200  [ D3F60A4345FCA9C1BE68AD7D0D6DE770 ] Ndu             C:\windows\system32\drivers\Ndu.sys
18:05:40.0946 0200  Ndu - ok
18:05:40.0951 0200  [ 7C203A76394F9AE68F69EEE5F9612C4A ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
18:05:40.0952 0200  NetBIOS - ok
18:05:40.0959 0200  [ 7CEC25C682D319D484630B3952C31A11 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
18:05:40.0964 0200  NetBT - ok
18:05:40.0977 0200  [ F702AB6181513303AB0FC8D59E52708B ] Netlogon        C:\windows\system32\lsass.exe
18:05:40.0979 0200  Netlogon - ok
18:05:40.0993 0200  [ 89519D29CBEC2121CA65CC29C4D345E0 ] Netman          C:\windows\System32\netman.dll
18:05:40.0999 0200  Netman - ok
18:05:41.0013 0200  [ 5FF52E13C72838D87DAF228EC9E92C89 ] netprofm        C:\windows\System32\netprofmsvc.dll
18:05:41.0019 0200  netprofm - ok
18:05:41.0051 0200  [ 5243CFC2E7161C91C2B355240035B9E4 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
18:05:41.0067 0200  NetTcpPortSharing - ok
18:05:41.0184 0200  [ 57B9C04D673F236D41FAB03842C8640B ] NETwNs64        C:\windows\system32\DRIVERS\NETwNs64.sys
18:05:41.0426 0200  NETwNs64 - ok
18:05:41.0453 0200  [ 12DD2800E4EEA37DC9AE256AD62423B4 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
18:05:41.0454 0200  nfrd960 - ok
18:05:41.0478 0200  [ 8CE7F624D791733E8CECFA443B2DF513 ] NitroDriverReadSpool2 C:\Program Files\Common Files\Nitro PDF\Professional\7.0\NitroPDFDriverService2x64.exe
18:05:41.0479 0200  NitroDriverReadSpool2 - ok
18:05:41.0489 0200  [ 80ABCD4C2DE9FD832477303AE0CA3BE5 ] NlaSvc          C:\windows\System32\nlasvc.dll
18:05:41.0494 0200  NlaSvc - ok
18:05:41.0534 0200  [ AAAE3B793B248A3DF86C65928484AB9A ] nlsX86cc        C:\windows\SysWOW64\NLSSRV32.EXE
18:05:41.0536 0200  nlsX86cc - ok
18:05:41.0539 0200  [ 17E19A742FB30C002F8B43575451DBE1 ] Npfs            C:\windows\system32\drivers\Npfs.sys
18:05:41.0540 0200  Npfs - ok
18:05:41.0542 0200  [ 8ED299C30792544264E558BEA79F0947 ] npsvctrig       C:\windows\System32\drivers\npsvctrig.sys
18:05:41.0543 0200  npsvctrig - ok
18:05:41.0553 0200  [ 832B5FDF0B5577713FD7F2465FCD0ACE ] nsi             C:\windows\system32\nsisvc.dll
18:05:41.0558 0200  nsi - ok
18:05:41.0579 0200  [ 689B3B1E95C70ABF7AFF29F9406EF1E0 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
18:05:41.0581 0200  nsiproxy - ok
18:05:41.0603 0200  [ 76929F4A69E425911A63B407E26C2589 ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
18:05:41.0631 0200  Ntfs - ok
18:05:41.0641 0200  [ 4163ADE07DB51843AE31F65B94F5398D ] Null            C:\windows\system32\drivers\Null.sys
18:05:41.0642 0200  Null - ok
18:05:41.0661 0200  [ 1F07B814C0BB5AABA703ABFF1F31F2E8 ] NVHDA           C:\windows\system32\drivers\nvhda64v.sys
18:05:41.0664 0200  NVHDA - ok
18:05:41.0901 0200  [ D52CB937D5C23935F732B5D0BBAFF2D7 ] nvlddmkm        C:\windows\system32\DRIVERS\nvlddmkm.sys
18:05:42.0036 0200  nvlddmkm - ok
18:05:42.0062 0200  [ D6D34118263412D3AAA8348A9572B7F2 ] nvraid          C:\windows\system32\drivers\nvraid.sys
18:05:42.0063 0200  nvraid - ok
18:05:42.0079 0200  [ 27AFC428D1D32ABD04A86763A4EDDEA9 ] nvstor          C:\windows\system32\drivers\nvstor.sys
18:05:42.0081 0200  nvstor - ok
18:05:42.0098 0200  [ 3227EB0ECFBB7CB7F667AC2FFFCDC751 ] nvsvc           C:\windows\system32\nvvsvc.exe
18:05:42.0102 0200  nvsvc - ok
18:05:42.0114 0200  [ 051CFB5107BAAE510419BDC41F8C4036 ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
18:05:42.0117 0200  nv_agp - ok
18:05:42.0135 0200  [ AB76700D764A342D7475FB8F47CAB18C ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
18:05:42.0140 0200  p2pimsvc - ok
18:05:42.0156 0200  [ 4319FD931DCD796435ECB5DB4A04FBA5 ] p2psvc          C:\windows\system32\p2psvc.dll
18:05:42.0161 0200  p2psvc - ok
18:05:42.0170 0200  [ 4563DAF8C6A740AD7F501E219BD10766 ] Parport         C:\windows\System32\drivers\parport.sys
18:05:42.0172 0200  Parport - ok
18:05:42.0190 0200  [ D6ACCF9F2EEEEA711C14EFD976E573F3 ] partmgr         C:\windows\system32\drivers\partmgr.sys
18:05:42.0192 0200  partmgr - ok
18:05:42.0255 0200  [ 4811D9EC53649105A5A8BEA661B0F936 ] PcaSvc          C:\windows\System32\pcasvc.dll
18:05:42.0277 0200  PcaSvc - ok
18:05:42.0301 0200  [ 4A003E8F718C1E6A2050CA98CD53E3E2 ] pci             C:\windows\system32\drivers\pci.sys
18:05:42.0304 0200  pci - ok
18:05:42.0318 0200  [ F9908D274D458220F91E89B54D78D837 ] pciide          C:\windows\system32\drivers\pciide.sys
18:05:42.0321 0200  pciide - ok
18:05:42.0339 0200  [ 84D19CB6102627932DCB5DFDF89FE269 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
18:05:42.0342 0200  pcmcia - ok
18:05:42.0347 0200  [ CEBBAD5391C2644560C55628A40BFD27 ] pcw             C:\windows\system32\drivers\pcw.sys
18:05:42.0348 0200  pcw - ok
18:05:42.0377 0200  [ AECC24430301DBC6A76916E3029B6B83 ] pdc             C:\windows\system32\drivers\pdc.sys
18:05:42.0379 0200  pdc - ok
18:05:42.0396 0200  [ 70DBB6A8B52B3830922F1C5789E1BEEB ] PEAUTH          C:\windows\system32\drivers\peauth.sys
18:05:42.0406 0200  PEAUTH - ok
18:05:42.0423 0200  [ EB88FA19F0EA05DD04BE9C5FFEEFFE1A ] PerfHost        C:\windows\SysWow64\perfhost.exe
18:05:42.0428 0200  PerfHost - ok
18:05:42.0465 0200  [ 6E84BFF58F7643499277F29DFA2F8C8D ] pla             C:\windows\system32\pla.dll
18:05:42.0492 0200  pla - ok
18:05:42.0519 0200  [ 799BE46D45D486704CE0F37CA5385262 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
18:05:42.0525 0200  PlugPlay - ok
18:05:42.0529 0200  PnkBstrA - ok
18:05:42.0541 0200  [ 8E2414E818C26C4A9C70CB2B8567F04F ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
18:05:42.0546 0200  PNRPAutoReg - ok
18:05:42.0554 0200  [ AB76700D764A342D7475FB8F47CAB18C ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
18:05:42.0561 0200  PNRPsvc - ok
18:05:42.0601 0200  [ 0108C8E5176D590F242701EF5A62CC26 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
18:05:42.0610 0200  PolicyAgent - ok
18:05:42.0656 0200  [ F1E067F56373F11EA4B785CAE823740A ] Power           C:\windows\system32\umpo.dll
18:05:42.0667 0200  Power - ok
18:05:42.0677 0200  [ 362D47E5B4D67270DE4B8606036F4ADD ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
18:05:42.0680 0200  PptpMiniport - ok
18:05:42.0858 0200  [ CC0B8655E4B2A5BBB215CDA8FC3BE4DE ] PrintNotify     C:\Windows\system32\spool\DRIVERS\x64\3\PrintConfig.dll
18:05:42.0897 0200  PrintNotify - ok
18:05:42.0925 0200  [ DD979EB6A7212F60E4AFBE96EDC7AE6D ] Processor       C:\windows\System32\drivers\processr.sys
18:05:42.0927 0200  Processor - ok
18:05:42.0946 0200  [ 429E8502AD2227CF88F8840FC5BD590D ] ProfSvc         C:\windows\system32\profsvc.dll
18:05:42.0953 0200  ProfSvc - ok
18:05:42.0962 0200  [ EB8034147D4820CD31BFCB11A2A652DF ] Psched          C:\windows\system32\DRIVERS\pacer.sys
18:05:42.0971 0200  Psched - ok
18:05:42.0986 0200  [ 0AFBF333B6F87A2F598EAB379AF100B8 ] QWAVE           C:\windows\system32\qwave.dll
18:05:42.0991 0200  QWAVE - ok
18:05:43.0003 0200  [ 13D47BB0CCA2FC51BD15F8E85C6A078E ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
18:05:43.0005 0200  QWAVEdrv - ok
18:05:43.0013 0200  [ 873C60F8178100557740A832FCE10B5F ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
18:05:43.0014 0200  RasAcd - ok
18:05:43.0037 0200  [ 69B93F623B130976243ECA3D84CC99CA ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
18:05:43.0039 0200  RasAgileVpn - ok
18:05:43.0046 0200  [ 005F6E54C4A2DA4EBF68FB0392CE8BB0 ] RasAuto         C:\windows\System32\rasauto.dll
18:05:43.0049 0200  RasAuto - ok
18:05:43.0052 0200  [ A14D625C5AEE5FFE0F47D1A1D419FAAE ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
18:05:43.0054 0200  Rasl2tp - ok
18:05:43.0065 0200  [ C923C785A2DE0B396AD6D13ACAFF2DE9 ] RasMan          C:\windows\System32\rasmans.dll
18:05:43.0071 0200  RasMan - ok
18:05:43.0073 0200  [ 00695B9C2DB6111064499C529E90C042 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
18:05:43.0074 0200  RasPppoe - ok
18:05:43.0077 0200  [ A7F24D8CD1956B0A1FDCB86CC5114DE4 ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
18:05:43.0078 0200  RasSstp - ok
18:05:43.0091 0200  [ B72C33DBD5326B3864CF2091AF8B906B ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
18:05:43.0094 0200  rdbss - ok
18:05:43.0106 0200  [ CA7DF5EC95D8DE0DD24BE7FF97369F68 ] rdpbus          C:\windows\System32\drivers\rdpbus.sys
18:05:43.0107 0200  rdpbus - ok
18:05:43.0119 0200  [ B2A3AD74FF2E2FFA73AF2567108231B3 ] RDPDR           C:\windows\system32\drivers\rdpdr.sys
18:05:43.0120 0200  RDPDR - ok
18:05:43.0148 0200  [ 57F4787E4602A3FCA719C0A33137C6DA ] RdpVideoMiniport C:\windows\system32\drivers\rdpvideominiport.sys
18:05:43.0149 0200  RdpVideoMiniport - ok
18:05:43.0157 0200  [ B3CB0721E81E30419CE7D837EF4EA151 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
18:05:43.0159 0200  RDPWD - ok
18:05:43.0163 0200  [ 62C1F8A0685FE07E998AA296C4F697C4 ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
18:05:43.0165 0200  rdyboost - ok
18:05:43.0177 0200  [ 3663CCF243EE0C04E9F6F91ED1737273 ] RemoteAccess    C:\windows\System32\mprdim.dll
18:05:43.0181 0200  RemoteAccess - ok
18:05:43.0190 0200  [ E80DD61E52EDFFF9DA1ED7260A68855B ] RemoteRegistry  C:\windows\system32\regsvc.dll
18:05:43.0193 0200  RemoteRegistry - ok
18:05:43.0197 0200  [ 73F2E030B5C24E4E41401B5F0D59E6FD ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
18:05:43.0200 0200  RpcEptMapper - ok
18:05:43.0224 0200  [ 10B21284B3D964AB3DC45490E57D422E ] RpcLocator      C:\windows\system32\locator.exe
18:05:43.0246 0200  RpcLocator - ok
18:05:43.0297 0200  [ 1EC6E533C954BDDF2A37E7851A7E58FD ] RpcSs           C:\windows\system32\rpcss.dll
18:05:43.0308 0200  RpcSs - ok
18:05:43.0318 0200  [ E04E770DD198B9399640717145E79EBF ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
18:05:43.0320 0200  rspndr - ok
18:05:43.0372 0200  [ 7D9DA8EC6784A9EE213C676709D46BE6 ] RTL8168         C:\windows\system32\DRIVERS\Rt630x64.sys
18:05:43.0381 0200  RTL8168 - ok
18:05:43.0445 0200  [ 39E9712774EE4E9002A799F9A4FB5E8D ] RTL8192Ce       C:\windows\system32\DRIVERS\rtwlane.sys
18:05:43.0471 0200  RTL8192Ce - ok
18:05:43.0495 0200  [ 39E9712774EE4E9002A799F9A4FB5E8D ] RTWlanE         C:\windows\system32\DRIVERS\rtwlane.sys
18:05:43.0506 0200  RTWlanE - ok
18:05:43.0517 0200  [ 752EC7DCD2F96871A3857EEE6AFE965A ] s3cap           C:\windows\System32\drivers\vms3cap.sys
18:05:43.0519 0200  s3cap - ok
18:05:43.0527 0200  [ F702AB6181513303AB0FC8D59E52708B ] SamSs           C:\windows\system32\lsass.exe
18:05:43.0529 0200  SamSs - ok
18:05:43.0578 0200  [ 3289766038DB2CB14D07DC84392138D5 ] SASDIFSV        C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
18:05:43.0580 0200  SASDIFSV - ok
18:05:43.0582 0200  [ 58A38E75F3316A83C23DF6173D41F2B5 ] SASKUTIL        C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
18:05:43.0583 0200  SASKUTIL - ok
18:05:43.0593 0200  [ 9C7B28CE0D136DB226E24DB3BC817F92 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
18:05:43.0597 0200  sbp2port - ok
18:05:43.0609 0200  [ 14316954FCE79C9DE5A0AFF9D42C83AA ] SCardSvr        C:\windows\System32\SCardSvr.dll
18:05:43.0617 0200  SCardSvr - ok
18:05:43.0627 0200  [ 5D7733A12756B267FCA021672B26BC9E ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
18:05:43.0629 0200  scfilter - ok
18:05:43.0657 0200  [ EDCDF4DB82EF825B94B190D544C8C58B ] Schedule        C:\windows\system32\schedsvc.dll
18:05:43.0684 0200  Schedule - ok
18:05:43.0701 0200  [ BAF8F0F55BC300E5F882E521F054E345 ] SCPolicySvc     C:\windows\System32\certprop.dll
18:05:43.0703 0200  SCPolicySvc - ok
18:05:43.0765 0200  [ 12F06525912BBEF67837DE47D87C60A9 ] sdbus           C:\windows\System32\drivers\sdbus.sys
18:05:43.0791 0200  sdbus - ok
18:05:43.0819 0200  [ 92968277ED491E4B3DDA361E3952361E ] SDRSVC          C:\windows\System32\SDRSVC.dll
18:05:43.0827 0200  SDRSVC - ok
18:05:43.0850 0200  [ BB107AA9980B0DA4E19A3A90C3BD4460 ] sdstor          C:\windows\System32\drivers\sdstor.sys
18:05:43.0852 0200  sdstor - ok
18:05:43.0856 0200  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\windows\system32\drivers\secdrv.sys
18:05:43.0858 0200  secdrv - ok
18:05:43.0873 0200  [ CD282626738B6BC92B6E7CD0AAE95B63 ] seclogon        C:\windows\system32\seclogon.dll
18:05:43.0880 0200  seclogon - ok
18:05:43.0895 0200  [ 9C51620998F0763039DFA6BF68E475ED ] SENS            C:\windows\System32\sens.dll
18:05:43.0901 0200  SENS - ok
18:05:43.0915 0200  [ 0D50B4B860DAB65241628D04CD33ACAE ] SensrSvc        C:\windows\system32\sensrsvc.dll
18:05:43.0922 0200  SensrSvc - ok
18:05:43.0933 0200  [ 87C46B239A7EEF30FDFDD5E9BD46130C ] SerCx           C:\windows\system32\drivers\SerCx.sys
18:05:43.0936 0200  SerCx - ok
18:05:43.0949 0200  [ 7A1F9347C85FD55E39B8A76B3A25C5AD ] Serenum         C:\windows\System32\drivers\serenum.sys
18:05:43.0951 0200  Serenum - ok
18:05:43.0956 0200  [ F640A0A218BBF857F1D04A15D7D939F6 ] Serial          C:\windows\System32\drivers\serial.sys
18:05:43.0958 0200  Serial - ok
18:05:43.0971 0200  [ F1A5F56B2620B862CC28FF96A0A6DAAB ] sermouse        C:\windows\System32\drivers\sermouse.sys
18:05:43.0973 0200  sermouse - ok
18:05:44.0011 0200  [ CB60A60340788C8D6DE2A269D28086AB ] SessionEnv      C:\windows\system32\sessenv.dll
18:05:44.0021 0200  SessionEnv - ok
18:05:44.0036 0200  [ 7EE65419B29302C795714FF8073969A1 ] sfloppy         C:\windows\System32\drivers\sfloppy.sys
18:05:44.0039 0200  sfloppy - ok
18:05:44.0072 0200  [ 090AE16F79C8EAD04E6031F863DA85F3 ] SharedAccess    C:\windows\System32\ipnathlp.dll
18:05:44.0081 0200  SharedAccess - ok
18:05:44.0100 0200  [ A77F3ABE13FCC698511E5DEC7ACEBD5F ] ShellHWDetection C:\windows\System32\shsvcs.dll
18:05:44.0110 0200  ShellHWDetection - ok
18:05:44.0119 0200  [ 2560721D6F16D5B611C36A3A9D28C1B2 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
18:05:44.0121 0200  SiSRaid2 - ok
18:05:44.0137 0200  [ 3AA8FDE1DBF65BB8B88B053529554A0D ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
18:05:44.0140 0200  SiSRaid4 - ok
18:05:44.0154 0200  [ E660156A4588A84305CB772FD2C0DB21 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
18:05:44.0160 0200  SNMPTRAP - ok
18:05:44.0167 0200  [ 465F3C355CE5ED2779B8F460F14C5A78 ] spaceport       C:\windows\system32\drivers\spaceport.sys
18:05:44.0171 0200  spaceport - ok
18:05:44.0187 0200  [ 3D8679C8DF52EB26EB7583A4E0A29202 ] SpbCx           C:\windows\system32\drivers\SpbCx.sys
18:05:44.0190 0200  SpbCx - ok
18:05:44.0212 0200  [ 3F215BF2D4D8D6756298B25B579772C2 ] Spooler         C:\windows\System32\spoolsv.exe
18:05:44.0223 0200  Spooler - ok
18:05:44.0365 0200  [ EC84D961501054F87A6878EC5D53388F ] sppsvc          C:\windows\system32\sppsvc.exe
18:05:44.0390 0200  sppsvc - ok
18:05:44.0413 0200  [ 0F1FCD575A03ABDE13FCA9D0ADE4DDA6 ] srv             C:\windows\system32\DRIVERS\srv.sys
18:05:44.0421 0200  srv - ok
18:05:44.0451 0200  [ 9912FDF63EC78E1977083E20DEAE4889 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
18:05:44.0456 0200  srv2 - ok
18:05:44.0475 0200  [ FD8B4F201B681C555A4AF41922C52557 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
18:05:44.0477 0200  srvnet - ok
18:05:44.0484 0200  [ 7A20882D76D4A78240A5AC9F2C2EBA21 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
18:05:44.0488 0200  SSDPSRV - ok
18:05:44.0492 0200  [ D233B16999A8E626F6004BD7814C57EC ] SstpSvc         C:\windows\system32\sstpsvc.dll
18:05:44.0495 0200  SstpSvc - ok
18:05:44.0530 0200  Steam Client Service - ok
18:05:44.0537 0200  [ 4E85355B94CFCB67C135F6521A4895A7 ] stexstor        C:\windows\system32\drivers\stexstor.sys
18:05:44.0539 0200  stexstor - ok
18:05:44.0559 0200  [ BAC8A721736AECC55A4F71523AEAB65F ] stisvc          C:\windows\System32\wiaservc.dll
18:05:44.0565 0200  stisvc - ok
18:05:44.0568 0200  [ C588BBD37B432CE3204E5765B459E6B2 ] storahci        C:\windows\system32\drivers\storahci.sys
18:05:44.0568 0200  storahci - ok
18:05:44.0575 0200  [ F74DBC95A57B1EE866D3732EB5F79BE2 ] storflt         C:\windows\system32\DRIVERS\vmstorfl.sys
18:05:44.0576 0200  storflt - ok
18:05:44.0586 0200  [ 5337E138B49ED1F44CCBA4073BC35C20 ] StorSvc         C:\windows\system32\storsvc.dll
18:05:44.0589 0200  StorSvc - ok
18:05:44.0597 0200  [ 543CD3CC0E05B8D8815E0D4F040B6F59 ] storvsc         C:\windows\system32\drivers\storvsc.sys
18:05:44.0599 0200  storvsc - ok
18:05:44.0604 0200  [ 8BC1C1ED6EF9C985A3FAA6A72F41679A ] svsvc           C:\windows\system32\svsvc.dll
18:05:44.0607 0200  svsvc - ok
18:05:44.0613 0200  [ 4AFD66AAE74FFB5986BC240744DC5FC9 ] swenum          C:\windows\System32\drivers\swenum.sys
18:05:44.0615 0200  swenum - ok
18:05:44.0625 0200  [ 502F9488540051F3E6C39889ECFA76BB ] swprv           C:\windows\System32\swprv.dll
18:05:44.0631 0200  swprv - ok
18:05:44.0651 0200  [ DC21E1F06343773D7E24362DCEF7944B ] SysMain         C:\windows\system32\sysmain.dll
18:05:44.0667 0200  SysMain - ok
18:05:44.0694 0200  [ E219BF7BCCFE4881B0C053C7E0B47ECC ] SystemEventsBroker C:\windows\System32\SystemEventsBrokerServer.dll
18:05:44.0698 0200  SystemEventsBroker - ok
18:05:44.0704 0200  [ A6C06C45C44AD06C70AF8899AEC15BDC ] TabletInputService C:\windows\System32\TabSvc.dll
18:05:44.0814 0200  TabletInputService - ok
18:05:44.0865 0200  [ 5E8BAD078C6157E7D39560D4E1B53DF7 ] taphss6         C:\windows\system32\DRIVERS\taphss6.sys
18:05:44.0887 0200  taphss6 - ok
18:05:44.0905 0200  [ 88B7721AB551C4325036B25A34A2BF7B ] TapiSrv         C:\windows\System32\tapisrv.dll
18:05:44.0914 0200  TapiSrv - ok
18:05:44.0971 0200  [ F4F78B7F39BD56BD0BFE4C4399398F6F ] Tcpip           C:\windows\system32\drivers\tcpip.sys
18:05:45.0005 0200  Tcpip - ok
18:05:45.0040 0200  [ F4F78B7F39BD56BD0BFE4C4399398F6F ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
18:05:45.0052 0200  TCPIP6 - ok
18:05:45.0067 0200  [ 8F2A13A5DF99D72FDDE87F502A66F989 ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
18:05:45.0070 0200  tcpipreg - ok
18:05:45.0077 0200  [ 73DC722CE5DF26D7638CE2446F2655C7 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
18:05:45.0079 0200  tdx - ok
18:05:45.0095 0200  [ F7C8AB5D8AFFAA318D6A21093D139BF4 ] terminpt        C:\windows\System32\drivers\terminpt.sys
18:05:45.0097 0200  terminpt - ok
18:05:45.0114 0200  [ 541EE228D0DEF392F7B2DFD885DD021B ] TermService     C:\windows\System32\termsrv.dll
18:05:45.0128 0200  TermService - ok
18:05:45.0141 0200  [ 519A6F672FFF56B7D8EE8C730CEC8ECD ] Themes          C:\windows\system32\themeservice.dll
18:05:45.0148 0200  Themes - ok
18:05:45.0175 0200  [ EEE908BE7143FCA48CF0CB87214E2AB8 ] THREADORDER     C:\windows\system32\mmcss.dll
18:05:45.0179 0200  THREADORDER - ok
18:05:45.0187 0200  [ FF4135424A79DCC2998276D8E39C9B4D ] TimeBroker      C:\windows\System32\TimeBrokerServer.dll
18:05:45.0193 0200  TimeBroker - ok
18:05:45.0255 0200  [ B44EFE254C0B3719E4037088D24FE4B5 ] TPM             C:\windows\system32\drivers\tpm.sys
18:05:45.0282 0200  TPM - ok
18:05:45.0320 0200  [ 8C8CF3041B27E7657ADD0EE17F6DBFCA ] TrkWks          C:\windows\System32\trkwks.dll
18:05:45.0328 0200  TrkWks - ok
18:05:45.0369 0200  [ 8D516AEF3C1DF980664CF17BB1FF6093 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
18:05:45.0371 0200  TrustedInstaller - ok
18:05:45.0386 0200  [ 4E7C5FB10A50435523DE0CAA37DE2BD3 ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
18:05:45.0389 0200  TsUsbFlt - ok
18:05:45.0403 0200  [ 16D684A820872EE54F6370703AC0B513 ] TsUsbGD         C:\windows\System32\drivers\TsUsbGD.sys
18:05:45.0405 0200  TsUsbGD - ok
18:05:45.0410 0200  [ 78C9EE193AC2B4CBDBC48B620314D740 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
18:05:45.0414 0200  tunnel - ok
18:05:45.0423 0200  [ 6D4F67CA56ACA2085DFA2CD89EAFBC1A ] uagp35          C:\windows\system32\drivers\uagp35.sys
18:05:45.0425 0200  uagp35 - ok
18:05:45.0439 0200  [ 6FD6D03B7752C78712E5CFF29A305026 ] UASPStor        C:\windows\System32\drivers\uaspstor.sys
18:05:45.0441 0200  UASPStor - ok
18:05:45.0460 0200  [ 1ED222DFE6C13DA50FE081ABF90CAFE1 ] UCX01000        C:\windows\System32\drivers\ucx01000.sys
18:05:45.0464 0200  UCX01000 - ok
18:05:45.0480 0200  [ DC5A461591C71AF7F19DC048A81E3F88 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
18:05:45.0485 0200  udfs - ok
18:05:45.0503 0200  [ FB3475FEA1CCB0DAEA1EBE44D0E3BB7D ] UI0Detect       C:\windows\system32\UI0Detect.exe
18:05:45.0510 0200  UI0Detect - ok
18:05:45.0522 0200  [ 07FEBCDF24FABA0D47B635D85A0FFB7A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
18:05:45.0525 0200  uliagpkx - ok
18:05:45.0538 0200  [ 02CEB3FE6152668A7BA420B93B664860 ] umbus           C:\windows\System32\drivers\umbus.sys
18:05:45.0540 0200  umbus - ok
18:05:45.0550 0200  [ 991EE6B5FC41EAEF99C8AF5B92F2CA09 ] UmPass          C:\windows\System32\drivers\umpass.sys
18:05:45.0552 0200  UmPass - ok
18:05:45.0565 0200  [ 43FEFB040A0CC30F795FBF544169594D ] UmRdpService    C:\windows\System32\umrdp.dll
18:05:45.0574 0200  UmRdpService - ok
18:05:45.0621 0200  [ DBE2E6388379D5CC78099650541E9566 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
18:05:45.0624 0200  UNS - ok
18:05:45.0659 0200  [ 14D22C411854AA2560AFC94CD2D5E61F ] upnphost        C:\windows\System32\upnphost.dll
18:05:45.0684 0200  upnphost - ok
18:05:45.0705 0200  [ 43228F8EDD1B0BCDD3145AD246E63D39 ] USBAAPL64       C:\windows\System32\Drivers\usbaapl64.sys
18:05:45.0707 0200  USBAAPL64 - ok
18:05:45.0713 0200  [ 2AF9F0E16D75B8F783A1ACE74EF51C9B ] usbccgp         C:\windows\System32\drivers\usbccgp.sys
18:05:45.0715 0200  usbccgp - ok
18:05:45.0732 0200  [ B395B62B62F28106218FA6FB17F4C797 ] usbcir          C:\windows\System32\drivers\usbcir.sys
18:05:45.0734 0200  usbcir - ok
18:05:45.0739 0200  [ 52F267AEE8CA5AA5CEB88C6A71EE1E86 ] usbehci         C:\windows\System32\drivers\usbehci.sys
18:05:45.0742 0200  usbehci - ok
18:05:45.0780 0200  [ ADBF89B8E0BB372FEFE2E4B84E1E20AE ] usbhub          C:\windows\System32\drivers\usbhub.sys
18:05:45.0787 0200  usbhub - ok
18:05:45.0801 0200  [ C5986337DE3BF63ABD9ED4D834D34B89 ] USBHUB3         C:\windows\System32\drivers\UsbHub3.sys
18:05:45.0807 0200  USBHUB3 - ok
18:05:45.0822 0200  [ 325F6179009B5A7F6118951A5BA422AB ] usbohci         C:\windows\System32\drivers\usbohci.sys
18:05:45.0824 0200  usbohci - ok
18:05:45.0840 0200  [ BA3ABE0CD1C14B3295BAD0F076B84CAC ] usbprint        C:\windows\System32\drivers\usbprint.sys
18:05:45.0842 0200  usbprint - ok
18:05:45.0856 0200  [ A9858597B6DB695F78A37F6755A6FF98 ] usbscan         C:\windows\System32\drivers\usbscan.sys
18:05:45.0859 0200  usbscan - ok
18:05:45.0869 0200  [ F77177F6C95B2116EE7AD23B5EF57007 ] USBSTOR         C:\windows\System32\drivers\USBSTOR.SYS
18:05:45.0872 0200  USBSTOR - ok
18:05:45.0885 0200  [ D25EF4A6EC244C5DE85D88A05B7C149D ] usbuhci         C:\windows\System32\drivers\usbuhci.sys
18:05:45.0888 0200  usbuhci - ok
18:05:45.0913 0200  [ 09799E701B4327097E9F63D3FE221083 ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
18:05:45.0916 0200  usbvideo - ok
18:05:45.0925 0200  [ 9CD4259AD15F84DE27B94A956C978D6C ] USBXHCI         C:\windows\System32\drivers\USBXHCI.SYS
18:05:45.0929 0200  USBXHCI - ok
18:05:45.0944 0200  [ F702AB6181513303AB0FC8D59E52708B ] VaultSvc        C:\windows\system32\lsass.exe
18:05:45.0947 0200  VaultSvc - ok
18:05:45.0962 0200  [ BACECBFF9C97F7627A60B0E0F1FE7EE8 ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
18:05:45.0964 0200  vdrvroot - ok
18:05:45.0997 0200  [ 8A8CDA9E3CF2E0B4C6CC19FBC6FB9A71 ] vds             C:\windows\System32\vds.exe
18:05:46.0009 0200  vds - ok
18:05:46.0018 0200  [ 74FA2D4368DE6F6CE14393EDF1F342BE ] VerifierExt     C:\windows\system32\drivers\VerifierExt.sys
18:05:46.0021 0200  VerifierExt - ok
18:05:46.0039 0200  [ 8628FA679F0EC4B709CCD1F6B6A3233B ] vhdmp           C:\windows\System32\drivers\vhdmp.sys
18:05:46.0045 0200  vhdmp - ok
18:05:46.0056 0200  [ F5B4A14B00E89250C50982AC762DDD1D ] viaide          C:\windows\system32\drivers\viaide.sys
18:05:46.0057 0200  viaide - ok
18:05:46.0066 0200  [ 78DB50F7329F6D1311658DABFFFC8BE0 ] vmbus           C:\windows\system32\drivers\vmbus.sys
18:05:46.0070 0200  vmbus - ok
18:05:46.0078 0200  [ ECFEE2F2BA3932C7880D1A8F67D68F91 ] VMBusHID        C:\windows\System32\drivers\VMBusHID.sys
18:05:46.0080 0200  VMBusHID - ok
18:05:46.0100 0200  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicheartbeat   C:\windows\System32\ICSvc.dll
18:05:46.0241 0200  vmicheartbeat - ok
18:05:46.0248 0200  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmickvpexchange C:\windows\System32\ICSvc.dll
18:05:46.0253 0200  vmickvpexchange - ok
18:05:46.0282 0200  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicrdv         C:\windows\System32\ICSvc.dll
18:05:46.0286 0200  vmicrdv - ok
18:05:46.0333 0200  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicshutdown    C:\windows\System32\ICSvc.dll
18:05:46.0337 0200  vmicshutdown - ok
18:05:46.0356 0200  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmictimesync    C:\windows\System32\ICSvc.dll
18:05:46.0361 0200  vmictimesync - ok
18:05:46.0368 0200  [ B8FF4248103E6EA47B9D85C55673ABA3 ] vmicvss         C:\windows\System32\ICSvc.dll
18:05:46.0372 0200  vmicvss - ok
18:05:46.0377 0200  [ CB60FAAED8B49B812EBBF77EB87D9B18 ] volmgr          C:\windows\system32\drivers\volmgr.sys
18:05:46.0380 0200  volmgr - ok
18:05:46.0398 0200  [ A74101DA9809251BCD0E5A26BAE0F824 ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
18:05:46.0404 0200  volmgrx - ok
18:05:46.0411 0200  [ 2FB3CDFD5EAF4CD9D4AFAF96877D13AE ] volsnap         C:\windows\system32\drivers\volsnap.sys
18:05:46.0416 0200  volsnap - ok
18:05:46.0429 0200  [ A8DA1C1B52ECEA3726DEBED4FF1B700D ] vpci            C:\windows\System32\drivers\vpci.sys
18:05:46.0431 0200  vpci - ok
18:05:46.0459 0200  [ DBB357B5C3D97039CDD010E01D165870 ] Vsdatant        C:\windows\system32\drivers\vsdatant.sys
18:05:46.0463 0200  Vsdatant - ok
18:05:46.0493 0200  vsmon - ok
18:05:46.0506 0200  [ 38A60CD9C009C55C6D3B5586F8E6A353 ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
18:05:46.0509 0200  vsmraid - ok
18:05:46.0540 0200  [ EA658570314042C914964FC72AB50E6B ] VSS             C:\windows\system32\vssvc.exe
18:05:46.0566 0200  VSS - ok
18:05:46.0584 0200  [ A0F6FE0FC2F647C22BBFD6BD4249DBCC ] VSTXRAID        C:\windows\system32\drivers\vstxraid.sys
18:05:46.0589 0200  VSTXRAID - ok
18:05:46.0593 0200  [ 62460A45435A26A334907E3F2EA45611 ] vwifibus        C:\windows\System32\drivers\vwifibus.sys
18:05:46.0595 0200  vwifibus - ok
18:05:46.0599 0200  [ 095E943D27025E4D588AF0A72CC2318F ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
18:05:46.0601 0200  vwififlt - ok
18:05:46.0615 0200  [ 73FA1A41A97A5C34ADC03B3577FF1A86 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
18:05:46.0616 0200  vwifimp - ok
18:05:46.0629 0200  [ F690B6EEAA94576727B24376D7ED3601 ] W32Time         C:\windows\system32\w32time.dll
18:05:46.0635 0200  W32Time - ok
18:05:46.0648 0200  [ 6B806E893714019969E2B50D7EF6A4D9 ] WacomPen        C:\windows\System32\drivers\wacompen.sys
18:05:46.0650 0200  WacomPen - ok
18:05:46.0680 0200  [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarp          C:\windows\system32\DRIVERS\wanarp.sys
18:05:46.0682 0200  Wanarp - ok
18:05:46.0684 0200  [ 6081CEC9EF9EB145D8B46655C7708D51 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
18:05:46.0685 0200  Wanarpv6 - ok
18:05:46.0737 0200  [ 42DF22F8C448E7CD219F6D63743505E2 ] wbengine        C:\windows\system32\wbengine.exe
18:05:46.0801 0200  wbengine - ok
18:05:46.0856 0200  [ 31D37B2F6069C631EF0557D322924812 ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
18:05:46.0866 0200  WbioSrvc - ok
18:05:46.0874 0200  [ D9C1E82651BF19C6FF69CEC6FD400124 ] Wcmsvc          C:\windows\System32\wcmsvc.dll
18:05:46.0882 0200  Wcmsvc - ok
18:05:46.0906 0200  [ 5B5FEAB51172F5513C2CF7B39CFA6A01 ] wcncsvc         C:\windows\System32\wcncsvc.dll
18:05:46.0914 0200  wcncsvc - ok
18:05:46.0923 0200  [ E19556D414332E2BEBA1F368229006B4 ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
18:05:46.0933 0200  WcsPlugInService - ok
18:05:46.0945 0200  [ B3A4D918DAB90505B6BC7B70632913CB ] Wd              C:\windows\system32\drivers\wd.sys
18:05:46.0946 0200  Wd - ok
18:05:46.0954 0200  [ 260F8DFC4D5748F4CCB9B19CFB0E58EA ] WdBoot          C:\windows\system32\drivers\WdBoot.sys
18:05:46.0955 0200  WdBoot - ok
18:05:46.0980 0200  [ 2ADC985B85A71BD7D99712EC0C24358B ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
18:05:46.0988 0200  Wdf01000 - ok
18:05:47.0001 0200  [ 880FFFC4D5BBBB4187B6B04AB2E8C32A ] WdFilter        C:\windows\system32\drivers\WdFilter.sys
18:05:47.0004 0200  WdFilter - ok
18:05:47.0015 0200  [ 240FC332484572227CD1DF82407F33E5 ] WdiServiceHost  C:\windows\system32\wdi.dll
18:05:47.0020 0200  WdiServiceHost - ok
18:05:47.0022 0200  [ 240FC332484572227CD1DF82407F33E5 ] WdiSystemHost   C:\windows\system32\wdi.dll
18:05:47.0026 0200  WdiSystemHost - ok
18:05:47.0042 0200  [ F2002DA5E6B78C15B2CD48CFF8F0FBB6 ] WebClient       C:\windows\System32\webclnt.dll
18:05:47.0047 0200  WebClient - ok
18:05:47.0061 0200  [ 35FD720943D4FCD75C3275BF062FF140 ] Wecsvc          C:\windows\system32\wecsvc.dll
18:05:47.0067 0200  Wecsvc - ok
18:05:47.0070 0200  [ 4D2612E3C462B68F499D840B1133263E ] wercplsupport   C:\windows\System32\wercplsupport.dll
18:05:47.0074 0200  wercplsupport - ok
18:05:47.0104 0200  [ 5F70EBFC1F75B487DE79501E3CCBDB54 ] WerSvc          C:\windows\System32\WerSvc.dll
18:05:47.0108 0200  WerSvc - ok
18:05:47.0111 0200  [ FE762D3498719C3A23471BBA62F747B4 ] WFPLWFS         C:\windows\system32\DRIVERS\wfplwfs.sys
18:05:47.0113 0200  WFPLWFS - ok
18:05:47.0124 0200  [ 60E0C220593DA4F7C289CB909D2DBAE0 ] WiaRpc          C:\windows\System32\wiarpc.dll
18:05:47.0130 0200  WiaRpc - ok
18:05:47.0139 0200  [ A3C7624A42A3447EF5EDD1ED37FE4E60 ] WIMMount        C:\windows\system32\drivers\wimmount.sys
18:05:47.0140 0200  WIMMount - ok
18:05:47.0146 0200  WinDefend - ok
18:05:47.0183 0200  [ 7911470B6018059A880469A63B65700A ] WinHttpAutoProxySvc C:\windows\system32\winhttp.dll
18:05:47.0191 0200  WinHttpAutoProxySvc - ok
18:05:47.0236 0200  [ 3D6B518B71C75C8FA4115A33615C107A ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
18:05:47.0258 0200  Winmgmt - ok
18:05:47.0355 0200  [ 8E212A627F33F6FC3B5F3BB47212F66E ] WinRM           C:\windows\system32\WsmSvc.dll
18:05:47.0390 0200  WinRM - ok
18:05:47.0413 0200  [ BB20956C424531003F7FA6CD36F11D5D ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
18:05:47.0415 0200  WinUsb - ok
18:05:47.0457 0200  [ 6351724B8FA0255C2DBD970297F00B93 ] WlanSvc         C:\windows\System32\wlansvc.dll
18:05:47.0481 0200  WlanSvc - ok
18:05:47.0508 0200  [ B330CE47FB74A6BE9A3FFFF4B3F64D9B ] wlidsvc         C:\windows\system32\wlidsvc.dll
18:05:47.0533 0200  wlidsvc - ok
18:05:47.0544 0200  [ E2A596CACFC6504306CDB7B593B90084 ] WmiAcpi         C:\windows\System32\drivers\wmiacpi.sys
18:05:47.0545 0200  WmiAcpi - ok
18:05:47.0560 0200  [ D113499052C5E541906B727779F0F959 ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
18:05:47.0563 0200  wmiApSrv - ok
18:05:47.0592 0200  WMPNetworkSvc - ok
18:05:47.0603 0200  [ C6FF953D5D6F2EAE3B8883474D5076B3 ] wpcfltr         C:\windows\system32\DRIVERS\wpcfltr.sys
18:05:47.0605 0200  wpcfltr - ok
18:05:47.0618 0200  [ A6ED163169876BFD2437E872FE2F1509 ] WPCSvc          C:\windows\System32\wpcsvc.dll
18:05:47.0622 0200  WPCSvc - ok
18:05:47.0639 0200  [ 39D8AB837F91B729D12D32ED81E2062F ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
18:05:47.0643 0200  WPDBusEnum - ok
18:05:47.0655 0200  [ 0346CAFC181C91C6E2330332EB332ED6 ] WpdUpFltr       C:\windows\system32\drivers\WpdUpFltr.sys
18:05:47.0657 0200  WpdUpFltr - ok
18:05:47.0682 0200  [ BC8B5CB336E63BB25EAD1CE8EDD34B81 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
18:05:47.0683 0200  ws2ifsl - ok
18:05:47.0698 0200  [ FB0C1B7F94FA08E72F19F6F2CE7210E1 ] wscsvc          C:\windows\System32\wscsvc.dll
18:05:47.0701 0200  wscsvc - ok
18:05:47.0714 0200  [ 74EFDA0526862C3D8D01A776182798EA ] WSDPrintDevice  C:\windows\System32\drivers\WSDPrint.sys
18:05:47.0715 0200  WSDPrintDevice - ok
18:05:47.0738 0200  [ FA07DF46070F0826139709EF4D31FB71 ] WSDScan         C:\windows\System32\drivers\WSDScan.sys
18:05:47.0740 0200  WSDScan - ok
18:05:47.0741 0200  WSearch - ok
18:05:47.0787 0200  [ C10BFFEE7E0D7A1366E84F251796C51D ] WSService       C:\windows\System32\WSService.dll
18:05:47.0842 0200  WSService - ok
18:05:47.0864 0200  [ 72B4E9DF6456C43C42A1419B09486045 ] wsvd            C:\windows\system32\DRIVERS\wsvd.sys
18:05:47.0867 0200  wsvd - ok
18:05:47.0935 0200  [ A8484C0CB54DB48180FB7CA00F1C3F8F ] wuauserv        C:\windows\system32\wuaueng.dll
18:05:47.0986 0200  wuauserv - ok
18:05:47.0998 0200  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
18:05:48.0000 0200  WudfPf - ok
18:05:48.0015 0200  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\windows\System32\drivers\WUDFRd.sys
18:05:48.0017 0200  WUDFRd - ok
18:05:48.0021 0200  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFSensorLP    C:\windows\system32\DRIVERS\WUDFRd.sys
18:05:48.0021 0200  WUDFSensorLP - ok
18:05:48.0031 0200  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
18:05:48.0036 0200  wudfsvc - ok
18:05:48.0039 0200  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdFs       C:\windows\system32\DRIVERS\WUDFRd.sys
18:05:48.0040 0200  WUDFWpdFs - ok
18:05:48.0043 0200  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFWpdMtp      C:\windows\system32\DRIVERS\WUDFRd.sys
18:05:48.0044 0200  WUDFWpdMtp - ok
18:05:48.0072 0200  [ F9D8D2E6ECE08B278621D5BF3A7240A6 ] WwanSvc         C:\windows\System32\wwansvc.dll
18:05:48.0079 0200  WwanSvc - ok
18:05:48.0114 0200  [ C6B289A70A2D36242A2CCAA2715E1747 ] X5XSEx_Pr148    C:\Program Files (x86)\FreeRide Games\X5XSEx_Pr148.Sys
18:05:48.0116 0200  X5XSEx_Pr148 - ok
18:05:48.0127 0200  ================ Scan global ===============================
18:05:48.0152 0200  [ DDC1AFBF9DDF880CE9BD3896114D8DED ] C:\windows\system32\basesrv.dll
18:05:48.0171 0200  [ E9343076AE704D20BB0D01F3AF3EFFEF ] C:\windows\system32\winsrv.dll
18:05:48.0198 0200  [ BD7C6949984D19AAA609896B675E7357 ] C:\windows\system32\sxssrv.dll
18:05:48.0243 0200  [ 8F226143046435C75C033B0C52E90FFE ] C:\windows\system32\services.exe
18:05:48.0250 0200  [Global] - ok
18:05:48.0251 0200  ================ Scan MBR ==================================
18:05:48.0271 0200  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk0\DR0
18:05:48.0405 0200  \Device\Harddisk0\DR0 - ok
18:05:48.0405 0200  ================ Scan VBR ==================================
18:05:48.0434 0200  [ 8790DAABCE10E72D9266B6A1AB1AD961 ] \Device\Harddisk0\DR0\Partition1
18:05:48.0435 0200  \Device\Harddisk0\DR0\Partition1 - ok
18:05:48.0445 0200  [ 55D21A4F8E9611C6A039CB4F3CF3777C ] \Device\Harddisk0\DR0\Partition2
18:05:48.0446 0200  \Device\Harddisk0\DR0\Partition2 - ok
18:05:48.0456 0200  [ 5E5267D9271DD564F593F465F93FBA9A ] \Device\Harddisk0\DR0\Partition3
18:05:48.0457 0200  \Device\Harddisk0\DR0\Partition3 - ok
18:05:48.0469 0200  [ 944D706F6A0BA7B7DAAC2156B628C48F ] \Device\Harddisk0\DR0\Partition4
18:05:48.0470 0200  \Device\Harddisk0\DR0\Partition4 - ok
18:05:48.0476 0200  [ 20786A8A31295F25C8ADC49A32885EE7 ] \Device\Harddisk0\DR0\Partition5
18:05:48.0478 0200  \Device\Harddisk0\DR0\Partition5 - ok
18:05:48.0507 0200  [ 8E574AEDB0C47C4B0F698D9133607FFB ] \Device\Harddisk0\DR0\Partition6
18:05:48.0508 0200  \Device\Harddisk0\DR0\Partition6 - ok
18:05:48.0509 0200  ============================================================
18:05:48.0509 0200  Scan finished
18:05:48.0509 0200  ============================================================
18:05:48.0520 2232  Detected object count: 0
18:05:48.0520 2232  Actual detected object count: 0
18:06:00.0069 5048  Deinitialize success
 
 
 
 
 
 
 
**************************************************************************
************************************************************************
**************************************************************************
 
 
 
 
aswMBR REPORT:
 
 
 
 
aswMBR version 0.9.9.1771 Copyright© 2011 AVAST Software
Run date: 2013-04-12 18:11:59
-----------------------------
18:11:59.322    OS Version: Windows x64 6.2.9200 
18:11:59.322    Number of processors: 8 586 0x3A09
18:11:59.323    ComputerName: JANINA  UserName: Janina
18:11:59.396    Initialze error 1 
18:11:59.455    AVAST engine defs: 13041201
18:12:34.665    Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000003a
18:12:34.666    Disk 0 Vendor: ST2000DM001-9YN164 CC62 Size: 1907729MB BusType: 11
18:12:34.692    Disk 0 MBR read successfully
18:12:34.694    Disk 0 MBR scan
18:12:34.695    Disk 0 unknown MBR code
18:12:34.697    Disk 0 Partition 1 00     EE          GPT           2097151 MB offset 1
18:12:34.698    Disk 0 scanning C:\windows\system32\drivers
18:12:34.700    Service scanning
18:12:35.294    Modules scanning
18:12:35.297    Disk 0 trace - called modules:
18:12:35.304    ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys storport.sys hal.dll storahci.sys 
18:12:35.309    1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80085ce060]
18:12:35.313    3 CLASSPNP.SYS[fffff88000b8d8aa] -> nt!IofCallDriver -> [0xfffffa8007341630]
18:12:35.320    5 ACPI.sys[fffff88001001a91] -> nt!IofCallDriver -> \Device\0000003a[0xfffffa8007340720]
18:12:35.325    AVAST engine scan C:\windows
18:12:35.334    AVAST engine scan C:\windows\system32
18:12:35.339    AVAST engine scan C:\windows\system32\drivers
18:12:35.343    AVAST engine scan C:\Users\Janina
18:12:35.348    AVAST engine scan C:\ProgramData
18:12:35.351    Scan finished successfully
18:13:31.967    Disk 0 MBR has been saved successfully to "C:\Users\Janina\Desktop\MBR.dat"
18:13:31.969    The log file has been saved successfully to "C:\Users\Janina\Desktop\aswMBR.txt"
 
 
 

hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:09 PM

Posted 12 April 2013 - 09:05 PM

You're welcome!

 

Please remove this

Java 7 Update 10 (64-bit) (Version: 7.0.100)

 

Reboot

 

Install Version 7 Update 17

 

This is a good app BTW, e-Sword

 

 

There are a lot of errors above lets run SFC and see how it is running after. System File Checker

 

 


 


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:05:09 PM

Posted 12 April 2013 - 11:11 PM

Successfully removed the Java 7 Update 10 (64-bit) (Version: 7.0.100)

 

During the uninstall process above, my Zone Alarm went crazy with a few warnings.  I will list a few below:  (all of these Zone Alarm Warnings popped up one after the other- trying to gain access to the net).

 

 

1. FIU is trying to communicate with c:\windows\system32\taskhostex.exe by opening its process;

 

2. C:\program Files\windowsapps\microsoft.communicationapps_16.4.4206.722_8wekyb3d8bbwe\livecomm.exe

 

3.  C:\windows\system32\runtimebroker.exe

 

4.  C:\program files\realtek\audio\hda\ravcp164.exe

 

5.  C:\ Program Files\(x86) openoffice.org\program\swriter.exe

 

6.  C:\Program Files (x86)openoffice.org3\program\soffice.exe

 

7.  C:\Program Files (x86)lenovo\powerc2go\clmlsvc.exe

 

8.  C:\ Program Files (x86) openoffice.org3\program\soffice.bin

 

There were about 7 others but I did not write them down.  I simply denied each and every one of them during the uninstall of Java.

 

 

 

I successfully installed the latest Java after the reboot.

 

 

 

Forgive me for my ignorance.  But, the link to run the System File Checker, I went to the site, but I do not know which program to choose to download and run the scan.  The options on the top include:

 

 

SFC /SCANNOW Command - System File Checker

                                                                        we recommend download windows repair tool link 

 

 

 

OR,

 

do i download from the one below? : 

 

 

 

REPAIR WINDOWS UPDATE ERRORS LINK?

 

 

 

When I scroll down on the page there options #1  to run SFC /Scan Now Command at boot, or option #2 run SFC/Scan Now  Command in Windows 7.  All of these instructions appear to be geared for Windows 7?

 

I am confused on which one of the links am I supposed to use to download for the System File Checker scan?

 

Thanks 


Edited by hYlAnDeR~TFC, 12 April 2013 - 11:48 PM.

hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#6 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:05:09 PM

Posted 13 April 2013 - 09:52 AM

Boopme,

 

Disregard the above regarding help with running SFC in Windows 8.  I think I got it figured out.

 

I looked it up on Windows 8 forum and I am running it now.  It is going very slow.  I had problems on how to get the cmd prompt to run in admin mode.  I am very new to Windows 8 and I am very slow at it actually.  I have Windows 7 on my computer and have had it for about 1 year, I like it alot.  Before that I was using Windows XP for the last 8 years.  I am not too happy with Windows 8 as the person who normally uses the current infected computer wants me to change it to Windows 7.  I just need to save up some money in order to go buy it.

 

Anyways, the SFC scan should be complete in about an hour or so.  What would you like me to do next ?

 

Thank you. 


hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#7 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:05:09 PM

Posted 13 April 2013 - 10:09 AM

ok,

 

I just finished the SFC Scan.  The message report stated:

 

Windows resource protection found corrupt files, but was unable to fix some of them... windir\Logs\CBS\CBS.Log

 

I attempted to view the CBS.log text file in the Windows8 directory in notepad and wordpad, but I received an access denied window. So, I don't know how to copy and paste the information here.  And, it will not let me copy the whole file so that i can attach it here on this thread.

 

What do you recommend next?


Edited by hYlAnDeR~TFC, 13 April 2013 - 07:16 PM.

hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:09 PM

Posted 13 April 2013 - 08:17 PM

OK, sorry for the delay. I am also still to new to Win 8 system files...
Please repost this last item in WIn 8 and let one of the 8 people give you the proper repair.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:05:09 PM

Posted 13 April 2013 - 08:41 PM

Thank you for getting back to me.

 

ok,

 

I just reposted the last 2 items from this thread onto the Windows 8 Forum in hopes to get the Windows 8 fixed.  Is the primary issues on my wife's computer now just Windows 8 errors and problems.  Or, Is my wife's system now clean of all viruses?  Or, will I need to come back here to this thread after the Windows 8 is fixed to further determine if it is clean or not?

 

Thank you.


hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:09 PM

Posted 14 April 2013 - 04:34 PM

I am quite confident you are clean.. Good luck in 8 !


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 hYlAnDeR~TFC

hYlAnDeR~TFC
  • Topic Starter

  • Members
  • 257 posts
  • OFFLINE
  •  
  • Local time:05:09 PM

Posted 15 April 2013 - 12:04 PM

Thank you very much for your assistance to get this system clean.  It is greatly appreciated.

 

I am getting help on the Windows 8 forum now to get the System back in working order.  It is running alot better now but I have many updates to do to finish.

 

Although I am not too fond of Windows 8, I will keep it for now until I can save enough cash to buy an OEM of Win 7 and then I'll just format the HD and to a clean install of Win7.  There are just too many things that are not yet compatable for the software and hardware I use.

 

Could you IM me so that I could have your email to send some $ via paypal for your help, or to donate toward this website?

 

Thanks.


hYlAnDeR~TFC~
[OF/FA] Orion Faction-Retired
Game Squad Fleet Admiral~Retired

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:09 PM

Posted 15 April 2013 - 01:53 PM

Thank you PM sent with a list of forum members.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users