Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windows Explorer keeps crashing and restarting.


  • Please log in to reply
32 replies to this topic

#1 compbuff

compbuff

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 17 June 2013 - 08:40 PM

Hi all,

 

I have been having issues with my windows explorer. I have a HP Dv7 Pavillon running Windows 7 64 bit. The issue appeared to be my windows explorer would crash and restart when i ran my mouse cursor over the shortcut icons on the screen quickly; I'd even sometimes experience the same crashes from running my mouse cursor over the task bar or when clicking a program from Windows start.

 

I tried to idenitfy the problem first by starting Windows in safe mode to test if the problem still occured; it did but not as easily as in normal mode and not without some real prompting after a while.I then reverted back to normal mode, and called up msconfig to attempt to check it by doing the following:

 

- From the general tab I clicked the Selective startup option and cleared the Load startup items check box, then
- From the Services tab, I selected the “Hide all Microsoft services” check box, and then clicked Disable all.

 

I then restarted my computer to see whether Windows Explorer keeps crashing or not, to identify if it may have been anything recently installed or added to the computer, since if it was, removing the incompatible ones would stop the Windows Explorer from crashing suddenly. Unfortunately however it still did. I considered at this point that it could be a shell extension problem, broken registry entry(ies), corrupt or missing drivers or even a possible malware or virus. Also whether as a result of 3rd party installations, particularly 3rd party browser extensions/add ons/toolbars.. The only other possibility, although unlikely as my laptop is not all that old, was a hardware problem.

 

With those above issues in mind I proceeded as follows:

 

- Checked all my drivers were updated and rebooted, the problem still occurring after;

- Ran CHKDSK from the command prompt then typed chkdsk /r /f and rebooted. The problem remained.

- Ran regedit looking for the following registry HKEY_LOCAL_MACHINE\SOFTWARE\ Microsoft\ SQMClient\Windows\DisabledSessions to disable the subkey Machine Throttling in the right pane but it was not there.

- Ran SFC (System File Checker) to completely scan and fix any corrupted system files if found. No integrity violations were found were after typing SFC.EXE /SCANNOW and rebooting the PC.

 

I then ran my Avast Internet Security, doing a full scan to check for viruses and it found the following:

 

PUP:Win32:downloader-TPG (PUP)

PUP:Win:32:SProtector:A (PUP)
PUP:NSIS:Protector-B (PUP)
PUP:Win32:Crossrider-C (PUP)
PUP:32:PUP-gen (PUP)
PUP:JS:DownloadNSave-B (PUP)
PUP:Win32:MultiPlug-X (PUP)

 

all files which were classes as low in severity which I deleted, and also found a number of files stating Error:The system cannot find the path specified (3). I then rebooted my system and the problem still remained.

 

I then ran MalwarebytesPro with a full scan and found no malicious items.

 

Next I ran a deframentation of my hard drive and then used RegCure Pro to scan for system problems and there were a few entries found which I clicked to fix. On rebooting my PC the problem remained.

 

Lastly I did a system restore to an earlier good conguration but the problem remained. I then also got the Error: Bluetooth stack services won't start. I even repeated all of the above to no avail. I should note that sometime before I had been having a WMIprvse problem, which alone was running at between 25 or 40% of CPU and this only stopped when I disabled HP services from the msconfig and rebooted. Around that time Windows explorer did crash but only infrequently.

 

I may have not followed the order correctly and possibly made mistakes in attempting to overcome the problem. I would appreciate any help, as the problem is most annoying and tends to happen too often for my liking.


Edited by hamluis, 18 June 2013 - 09:23 PM.
Moved from Win 7 to Am I Infected - Hamluis.


BC AdBot (Login to Remove)

 


#2 hamluis

hamluis

    Moderator


  • Moderator
  • 55,727 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:40 PM

Posted 18 June 2013 - 09:59 AM

Please download MiniToolBox  , save it to your desktop and run it.

 

Checkmark the following checkboxes:

  List last 10 Event Viewer log

  List Installed Programs

  List Users, Partitions and Memory size.

 

Click Go and paste the content into your next post.

 

Also...please Publish a Snapshot using Speccy - http://www.bleepingcomputer.com/forums/topic323892.html/page__p__1797792#entry1797792 , taking care to post the link.

 

Louis



#3 compbuff

compbuff
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 18 June 2013 - 05:30 PM

Hi Louis,

 

Thank you for your reply and assistance. As requested, the results from the MiniToolBox are as follows:

 

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Marcus (administrator) on 18-06-2013 at 23:10:13
Running from "C:\Users\Marcus\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/18/2013 10:59:04 PM) (Source: Application Error) (User: )
Description: Faulting application name: DllHost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bca54
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000770f000a
Faulting process id: 0x43c8
Faulting application start time: 0xDllHost.exe0
Faulting application path: DllHost.exe1
Faulting module path: DllHost.exe2
Report Id: DllHost.exe3

Error: (06/18/2013 10:55:58 PM) (Source: Application Error) (User: )
Description: Faulting application name: DllHost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bca54
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000770f000a
Faulting process id: 0x4a70
Faulting application start time: 0xDllHost.exe0
Faulting application path: DllHost.exe1
Faulting module path: DllHost.exe2
Report Id: DllHost.exe3

Error: (06/18/2013 09:49:12 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (06/18/2013 09:49:12 PM) (Source: SideBySide) (User: )
Description: Activation context generation failed for "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest1".Error in manifest or policy file "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest2" on line C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest3.
A component version required by the application conflicts with another component version already active.
Conflicting components are:.
Component 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest.
Component 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest.

Error: (06/18/2013 03:54:47 AM) (Source: Application Error) (User: )
Description: Faulting application name: explorer.exe, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000770f000a
Faulting process id: 0xf4c
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3

Error: (06/18/2013 03:48:04 AM) (Source: Application Error) (User: )
Description: Faulting application name: explorer.exe, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000770f000a
Faulting process id: 0x39b8
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3

Error: (06/18/2013 03:00:14 AM) (Source: Application Error) (User: )
Description: Faulting application name: explorer.exe, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000770f000a
Faulting process id: 0x2dec
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3

Error: (06/18/2013 02:42:01 AM) (Source: Application Error) (User: )
Description: Faulting application name: explorer.exe, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x000000000007000a
Faulting process id: 0x1b54
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3

Error: (06/17/2013 10:54:11 PM) (Source: Application Error) (User: )
Description: Faulting application name: explorer.exe, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x000000000007000a
Faulting process id: 0x3bd8
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3

Error: (06/17/2013 10:50:21 PM) (Source: Application Error) (User: )
Description: Faulting application name: explorer.exe, version: 6.1.7601.17567, time stamp: 0x4d672ee4
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000770f000a
Faulting process id: 0x1108
Faulting application start time: 0xexplorer.exe0
Faulting application path: explorer.exe1
Faulting module path: explorer.exe2
Report Id: explorer.exe3


System errors:
=============
Error: (06/18/2013 10:07:13 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (06/18/2013 10:07:13 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (06/17/2013 10:32:55 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/17/2013 09:50:10 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/17/2013 09:39:42 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/17/2013 09:21:03 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/17/2013 09:19:25 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/17/2013 09:19:25 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/17/2013 09:19:25 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/17/2013 09:19:25 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-06-18 23:09:30.389
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 23:04:10.756
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 23:04:04.027
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 22:51:53.425
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 22:50:55.055
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 22:50:09.502
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 22:49:29.101
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 22:49:20.928
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 22:49:19.123
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-18 22:49:15.451
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
7-Zip 9.20
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.7.0.2090)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Adobe Shockwave Player 12.0 (Version: 12.0.2.122)
Advanced SystemCare 6 (Version: 6.2)
AMD Catalyst Install Manager (Version: 8.0.871.0)
AMD USB Filter Driver (Version: 1.0.10.84)
AOMEI Data Backuper
avast! Internet Security (Version: 8.0.1489.0)
Belarc Advisor 8.3 (Version: 8.3.0.0)
Big Fish Games: Game Manager (Version: 3.0.1.60)
BitTorrent (Version: 7.8.0.29626)
Broadcom Bluetooth Software (Version: 6.5.1.2700)
Broowise2suavve (Version: )
calibre (Version: 0.9.34)
CamStudio version 2.7 (Version: 2.7)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Full Existing (Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Full New (Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Light (Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Previews Common (Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Previews Vista (Version: 2009.0804.2223.38385)
Catalyst Control Center InstallProxy (Version: 2009.0804.2223.38385)
Catalyst Control Center Localization All (Version: 2009.0804.2223.38385)
CCC Help Chinese Standard (Version: 2009.0804.2222.38385)
CCC Help Chinese Traditional (Version: 2009.0804.2222.38385)
CCC Help Czech (Version: 2009.0804.2222.38385)
CCC Help Danish (Version: 2009.0804.2222.38385)
CCC Help Dutch (Version: 2009.0804.2222.38385)
CCC Help English (Version: 2009.0804.2222.38385)
CCC Help Finnish (Version: 2009.0804.2222.38385)
CCC Help French (Version: 2009.0804.2222.38385)
CCC Help German (Version: 2009.0804.2222.38385)
CCC Help Greek (Version: 2009.0804.2222.38385)
CCC Help Hungarian (Version: 2009.0804.2222.38385)
CCC Help Italian (Version: 2009.0804.2222.38385)
CCC Help Japanese (Version: 2009.0804.2222.38385)
CCC Help Korean (Version: 2009.0804.2222.38385)
CCC Help Norwegian (Version: 2009.0804.2222.38385)
CCC Help Polish (Version: 2009.0804.2222.38385)
CCC Help Portuguese (Version: 2009.0804.2222.38385)
CCC Help Russian (Version: 2009.0804.2222.38385)
CCC Help Spanish (Version: 2009.0804.2222.38385)
CCC Help Swedish (Version: 2009.0804.2222.38385)
CCC Help Thai (Version: 2009.0804.2222.38385)
CCC Help Turkish (Version: 2009.0804.2222.38385)
ccc-core-static (Version: 2009.0804.2223.38385)
ccc-utility64 (Version: 2009.0804.2223.38385)
Chimeras: Tune Of Revenge
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Cloudfogger (Version: 1.4.2143.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CyberLink DVD Suite (Version: 7.0.2111)
D3DX10 (Version: 15.4.2368.0902)
DiskMax 4.67 (Version: 4.67)
DVD Menu Pack for HP MediaSmart Video (Version: 3.1.3224)
ENE CIR Receiver Driver (Version: 2.7.4.0)
Eternal Journey: New Atlantis
European Mystery: Scent of Desire
express-files Toolbar (Version: 6.10.3.27)
Fake Webcam 7.3 (Version: 7.3.0)
Fake Webcam Codecs Pack 1.0.0 (Version: 1.0.0)
File Identifier version 1.0.3 (Version: 1.0.3)
FileASSASSIN (Version: 1.06)
FileSecureFree 1.2.0 (Version: 1.2.0)
FMRTE 5.2.5 (Version: 5.2.5)
GIMP 2.8.4 (Version: 2.8.4)
Google Chrome (Version: 27.0.1453.110)
Google Drive (Version: 1.9.4536.8202)
Google Update Helper (Version: 1.3.21.145)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
HP 3D DriveGuard (Version: 4.0.3.1)
HP Advisor (Version: 3.3.9512.3162)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Games (Version: 1.0.0.71)
HP MediaSmart DVD (Version: 3.1.3402)
HP MediaSmart Internet TV (Version: 3.1.2125)
HP MediaSmart Live TV (Version: 3.1.2206)
HP MediaSmart Music/Photo/Video (Version: 3.1.3405)
HP MediaSmart SmartMenu (Version: 3.1.0.1)
HP MediaSmart Software Notebook Demo (Version: 1.00.0000)
HP MediaSmart Webcam (Version: 3.1.2207)
HP Quick Launch Buttons (Version: 6.50.7.1)
HP Setup (Version: 1.2.3560.3170)
HP Update (Version: 5.005.000.002)
HP User Guides 0153 (Version: 1.01.0000)
HP Wireless Assistant (Version: 3.50.9.1)
IDT Audio (Version: 1.0.6433.0)
Inpaint 3.1
Java 7 Update 21 (Version: 7.0.210)
Java Auto Updater (Version: 2.1.9.5)
Java™ 6 Update 15 (64-bit) (Version: 6.0.150)
Java™ 6 Update 39 (Version: 6.0.390)
Java™ SE Development Kit 6 Update 15 (64-bit) (Version: 1.6.0.150)
JavaFX 2.1.1 (Version: 2.1.1)
JMicron Flash Media Controller Driver (Version: 1.0.32.1)
Junk Mail filter update (Version: 15.4.3502.0922)
LabelPrint (Version: 2.5.2111)
Lagarith lossless video codec (Remove Only)
LastPass(uninstall only)
LightScribe System Software (Version: 1.18.8.1)
Magic Desktop
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Milouz Market (Version: 1.0.35)
Mobile Broadband HL Service (Version: 22.001.16.00.03)
Movie Theme Pack for HP MediaSmart Video (Version: 3.1.3310)
Mozilla Firefox 21.0 (x86 en-US) (Version: 21.0)
Mozilla Maintenance Service (Version: 21.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NCDownloader (Version: 1.0)
Nemo Documents
NirSoft BlueScreenView
Norton Online Backup (Version: 1.2.20.0)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Password Door 9.0 (Version: 9.0)
Power2Go (Version: 6.0.3311)
PowerDirector (Version: 7.0.3311)
Process Hacker 2.30 (r5267) (Version: 2.30.0.5267)
QLBCASL (Version: 6.40.17.2)
Qualcomm Atheros Driver Installation Program (Version: 10.0)
Realtek Ethernet Controller All-In-One Windows Driver (Version: 7.58.411.2012)
Recovery Manager (Version: 5.5.2202)
RegCure Pro (Version: 3.1.5.0)
Screen Recorder
Search Protect by conduit (Version: 1.5.0.71)
SlimDrivers (Version: 2.2.29035)
Smart Defrag 2 (Version: 2.7)
Software Informer 1.2
SpywareBlaster 5.0 (Version: 5.0.0)
Steam (Version: 1.0.0.0)
Subtitles 1.3 (Version: 1.3)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.3.29.0)
The Lake House: Children of Silence
T-Mobile Internet Manager (Version: 11.301.05.17.55)
TopArcadeHits
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VLC media player 2.0.6 (Version: 2.0.6)
Windows Driver Package - Broadcom Bluetooth  (06/15/2009 6.2.0.9000) (Version: 06/15/2009 6.2.0.9000)
Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405) (Version: 07/30/2009 6.2.0.9405)
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800)
Windows File Viewer version 1.0 (Version: 1.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Wise Registry Cleaner 7.68 (Version: 7.68)
Yahoo! BrowserPlus 2.9.8
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar
YourFileDownloader (Version: 1.0.2)

========================= Memory info: ===================================

Percentage of memory in use: 52%
Total physical RAM: 4092.2 MB
Available physical RAM: 1947.09 MB
Total Pagefile: 8182.58 MB
Available Pagefile: 5727.54 MB
Total Virtual: 4095.88 MB
Available Virtual: 3976.86 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:283.66 GB) (Free:130.17 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:14.13 GB) (Free:2.52 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32

========================= Users: ========================================

User accounts for \\MARCUS-PC

Administrator            Guest                    Marcus                   


**** End of log ****

Also as requested, the snapshot from Speccy

 

http://speccy.piriform.com/results/kArAyamPggm5HZaHmaEpkQx

 

Hope this is sufficient. Much appreciated :)



#4 hamluis

hamluis

    Moderator


  • Moderator
  • 55,727 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Killeen, TX
  • Local time:06:40 PM

Posted 18 June 2013 - 09:23 PM

I would:

 

  a.  Uninstall Advanced System Care and anything else it installed as toolbars

 

  b.  Uninstall Conduit toolbar

 

On second thought...I'll move this to the Am I Infected forum, since it seems that the possibility exists for your system.

 

Louis



#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,190 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:40 PM

Posted 18 June 2013 - 10:33 PM

Yes good idea.. Run these and it should remove those for you.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes: Different settings than before...
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.



Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.



Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 compbuff

compbuff
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 19 June 2013 - 07:36 AM

Hi Louis,

 

Thank you again for you prompt reply. On reply from boopme from the 'Am I infected forum', I will follow his guided instructions then unintall Advanced System Care and everything else it installed as toolbars, and the Conduit toolbar on resolution of the issue I am having. I am now carrying out the instructions as requested.

 

Much appreciated and thank you for your help

 

Marcus



#7 compbuff

compbuff
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 19 June 2013 - 11:32 AM

Hi Boopme,

 

Thank you for your reply and assistance. I have followed your instructions in order as advised

 

1. MiniToolBox

2. TDSSkiller

3. AdwCleaner

4. ESET

 

As requested I have pasted the log reports for each one but because it is too long to show them all on one post, each will be pasted in it's own post

 

1. MiniToolBox

 

MiniToolBox by Farbar  Version: 16-06-2013
Ran by Marcus (administrator) on 19-06-2013 at 13:20:04
Running from "C:\Users\Marcus\Downloads"
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Remote NDIS based Internet Sharing Device = Local Area Connection 2 (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter = Wireless Network Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global defaultcurhoplimit=64 icmpredirects=enabled
set subinterface interface=?53 subinterface=ethernet_9 mtu=1477


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Marcus-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter
   Physical Address. . . . . . . . . : 78-E4-00-23-8F-E3
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection 2:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Remote NDIS based Internet Sharing Device
   Physical Address. . . . . . . . . : 58-2C-80-13-92-63
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::f0ce:cb8b:d6dc:3af3%21(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.100(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 19 June 2013 13:09:55
   Lease Expires . . . . . . . . . . : 20 June 2013 13:09:54
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 609758336
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-13-5C-86-C7-C8-0A-A9-70-25-2E
   DNS Servers . . . . . . . . . . . : 192.168.1.1
                                       192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Bluetooth Network Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network)
   Physical Address. . . . . . . . . : 00-27-13-CE-CB-1C
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : C8-0A-A9-70-25-2E
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{9BC19A5E-8654-46F9-8296-9EED53D61F75}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 1042:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  2a00:1450:4009:809::1004
      173.194.41.167
      173.194.41.168
      173.194.41.169
      173.194.41.174
      173.194.41.160
      173.194.41.161
      173.194.41.162
      173.194.41.163
      173.194.41.164
      173.194.41.165
      173.194.41.166


Pinging google.com [173.194.41.167] with 32 bytes of data:
Reply from 173.194.41.167: bytes=32 time=259ms TTL=58
Reply from 173.194.41.167: bytes=32 time=238ms TTL=58

Ping statistics for 173.194.41.167:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 238ms, Maximum = 259ms, Average = 248ms
Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  206.190.36.45
      98.138.253.109
      98.139.183.24


Pinging yahoo.com [206.190.36.45] with 32 bytes of data:
Reply from 206.190.36.45: bytes=32 time=420ms TTL=43
Reply from 206.190.36.45: bytes=32 time=407ms TTL=42

Ping statistics for 206.190.36.45:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 407ms, Maximum = 420ms, Average = 413ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=10ms TTL=64
Reply from 127.0.0.1: bytes=32 time=5ms TTL=64

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 5ms, Maximum = 10ms, Average = 7ms
===========================================================================
Interface List
1051...78 e4 00 23 8f e3 ......Qualcomm Atheros AR9285 802.11b/g/n WiFi Adapter
 21...58 2c 80 13 92 63 ......Remote NDIS based Internet Sharing Device
 12...00 27 13 ce cb 1c ......Bluetooth Device (Personal Area Network)
 10...c8 0a a9 70 25 2e ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
1029...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
1050...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.100     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.100    281
    192.168.1.100  255.255.255.255         On-link     192.168.1.100    281
    192.168.1.255  255.255.255.255         On-link     192.168.1.100    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.100    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.100    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
  1    306 ::1/128                  On-link
 21    281 fe80::/64                On-link
 21    281 fe80::f0ce:cb8b:d6dc:3af3/128
                                    On-link
  1    306 ff00::/8                 On-link
 21    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 07 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 09 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 07 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 09 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/19/2013 00:11:40 AM) (Source: PerfNet) (User: )
Description:

Error: (06/19/2013 00:03:40 AM) (Source: PerfNet) (User: )
Description:

Error: (06/18/2013 11:55:40 PM) (Source: PerfNet) (User: )
Description:

Error: (06/18/2013 11:47:40 PM) (Source: PerfNet) (User: )
Description:

Error: (06/18/2013 11:39:40 PM) (Source: PerfNet) (User: )
Description:

Error: (06/18/2013 11:31:40 PM) (Source: PerfNet) (User: )
Description:

Error: (06/18/2013 11:23:40 PM) (Source: PerfNet) (User: )
Description:

Error: (06/18/2013 11:17:40 PM) (Source: PerfNet) (User: )
Description:

Error: (06/18/2013 11:15:29 PM) (Source: PerfNet) (User: )
Description:

Error: (06/18/2013 10:59:04 PM) (Source: Application Error) (User: )
Description: Faulting application name: DllHost.exe, version: 6.1.7600.16385, time stamp: 0x4a5bca54
Faulting module name: unknown, version: 0.0.0.0, time stamp: 0x00000000
Exception code: 0xc0000005
Fault offset: 0x00000000770f000a
Faulting process id: 0x43c8
Faulting application start time: 0xDllHost.exe0
Faulting application path: DllHost.exe1
Faulting module path: DllHost.exe2
Report Id: DllHost.exe3


System errors:
=============
Error: (06/18/2013 10:07:13 PM) (Source: Service Control Manager) (User: )
Description: The Steam Client Service service failed to start due to the following error:
%%1053

Error: (06/18/2013 10:07:13 PM) (Source: Service Control Manager) (User: )
Description: A timeout was reached (30000 milliseconds) while waiting for the Steam Client Service service to connect.

Error: (06/17/2013 10:32:55 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/17/2013 09:50:10 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/17/2013 09:39:42 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/17/2013 09:21:03 PM) (Source: atikmdag) (User: )
Description: CPLIB :: General - Invalid Parameter

Error: (06/17/2013 09:19:25 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/17/2013 09:19:25 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/17/2013 09:19:25 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068

Error: (06/17/2013 09:19:25 PM) (Source: Service Control Manager) (User: )
Description: The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error:
%%1068


Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-06-19 13:18:06.235
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-19 13:17:41.024
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-19 13:10:45.883
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-19 13:09:45.805
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-19 13:09:40.630
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-19 13:09:03.578
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-19 03:35:09.268
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-19 03:34:03.761
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-19 03:33:51.111
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.

  Date: 2013-06-19 03:31:17.728
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\AESTAR64.dll because the set of per-page image hashes could not be found on the system.


=========================== Installed Programs ============================

 Update for Microsoft Office 2007 (KB2508958)
7-Zip 9.20
Acrobat.com (Version: 1.6.65)
Adobe AIR (Version: 3.7.0.2090)
Adobe Flash Player 11 ActiveX (Version: 11.7.700.224)
Adobe Flash Player 11 Plugin (Version: 11.7.700.224)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
Adobe Shockwave Player 12.0 (Version: 12.0.2.122)
Advanced SystemCare 6 (Version: 6.2)
AMD Catalyst Install Manager (Version: 8.0.871.0)
AMD USB Filter Driver (Version: 1.0.10.84)
AOMEI Data Backuper
avast! Internet Security (Version: 8.0.1489.0)
Belarc Advisor 8.3 (Version: 8.3.0.0)
Big Fish Games: Game Manager (Version: 3.0.1.60)
BitTorrent (Version: 7.8.0.29626)
Broadcom Bluetooth Software (Version: 6.5.1.2700)
Broowise2suavve (Version: )
calibre (Version: 0.9.34)
CamStudio version 2.7 (Version: 2.7)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Full Existing (Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Full New (Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Light (Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Previews Common (Version: 2009.0804.2223.38385)
Catalyst Control Center Graphics Previews Vista (Version: 2009.0804.2223.38385)
Catalyst Control Center InstallProxy (Version: 2009.0804.2223.38385)
Catalyst Control Center Localization All (Version: 2009.0804.2223.38385)
CCC Help Chinese Standard (Version: 2009.0804.2222.38385)
CCC Help Chinese Traditional (Version: 2009.0804.2222.38385)
CCC Help Czech (Version: 2009.0804.2222.38385)
CCC Help Danish (Version: 2009.0804.2222.38385)
CCC Help Dutch (Version: 2009.0804.2222.38385)
CCC Help English (Version: 2009.0804.2222.38385)
CCC Help Finnish (Version: 2009.0804.2222.38385)
CCC Help French (Version: 2009.0804.2222.38385)
CCC Help German (Version: 2009.0804.2222.38385)
CCC Help Greek (Version: 2009.0804.2222.38385)
CCC Help Hungarian (Version: 2009.0804.2222.38385)
CCC Help Italian (Version: 2009.0804.2222.38385)
CCC Help Japanese (Version: 2009.0804.2222.38385)
CCC Help Korean (Version: 2009.0804.2222.38385)
CCC Help Norwegian (Version: 2009.0804.2222.38385)
CCC Help Polish (Version: 2009.0804.2222.38385)
CCC Help Portuguese (Version: 2009.0804.2222.38385)
CCC Help Russian (Version: 2009.0804.2222.38385)
CCC Help Spanish (Version: 2009.0804.2222.38385)
CCC Help Swedish (Version: 2009.0804.2222.38385)
CCC Help Thai (Version: 2009.0804.2222.38385)
CCC Help Turkish (Version: 2009.0804.2222.38385)
ccc-core-static (Version: 2009.0804.2223.38385)
ccc-utility64 (Version: 2009.0804.2223.38385)
Chimeras: Tune Of Revenge
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
Cloudfogger (Version: 1.4.2143.0)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
CyberLink DVD Suite (Version: 7.0.2111)
D3DX10 (Version: 15.4.2368.0902)
DiskMax 4.67 (Version: 4.67)
DVD Menu Pack for HP MediaSmart Video (Version: 3.1.3224)
ENE CIR Receiver Driver (Version: 2.7.4.0)
Eternal Journey: New Atlantis
European Mystery: Scent of Desire
express-files Toolbar (Version: 6.10.3.27)
Fake Webcam 7.3 (Version: 7.3.0)
Fake Webcam Codecs Pack 1.0.0 (Version: 1.0.0)
File Identifier version 1.0.3 (Version: 1.0.3)
FileASSASSIN (Version: 1.06)
FileSecureFree 1.2.0 (Version: 1.2.0)
FMRTE 5.2.5 (Version: 5.2.5)
GIMP 2.8.4 (Version: 2.8.4)
Google Chrome (Version: 27.0.1453.110)
Google Drive (Version: 1.9.4536.8202)
Google Update Helper (Version: 1.3.21.145)
Hewlett-Packard ACLM.NET v1.2.1.1 (Version: 1.00.0000)
HP 3D DriveGuard (Version: 4.0.3.1)
HP Advisor (Version: 3.3.9512.3162)
HP Customer Experience Enhancements (Version: 6.0.1.7)
HP Games (Version: 1.0.0.71)
HP MediaSmart DVD (Version: 3.1.3402)
HP MediaSmart Internet TV (Version: 3.1.2125)
HP MediaSmart Live TV (Version: 3.1.2206)
HP MediaSmart Music/Photo/Video (Version: 3.1.3405)
HP MediaSmart SmartMenu (Version: 3.1.0.1)
HP MediaSmart Software Notebook Demo (Version: 1.00.0000)
HP MediaSmart Webcam (Version: 3.1.2207)
HP Quick Launch Buttons (Version: 6.50.7.1)
HP Setup (Version: 1.2.3560.3170)
HP Update (Version: 5.005.000.002)
HP User Guides 0153 (Version: 1.01.0000)
HP Wireless Assistant (Version: 3.50.9.1)
IDT Audio (Version: 1.0.6433.0)
Inpaint 3.1
Java 7 Update 21 (Version: 7.0.210)
Java Auto Updater (Version: 2.1.9.5)
Java™ 6 Update 15 (64-bit) (Version: 6.0.150)
Java™ 6 Update 39 (Version: 6.0.390)
Java™ SE Development Kit 6 Update 15 (64-bit) (Version: 1.6.0.150)
JavaFX 2.1.1 (Version: 2.1.1)
JMicron Flash Media Controller Driver (Version: 1.0.32.1)
Junk Mail filter update (Version: 15.4.3502.0922)
LabelPrint (Version: 2.5.2111)
Lagarith lossless video codec (Remove Only)
LastPass(uninstall only)
LightScribe System Software (Version: 1.18.8.1)
Magic Desktop
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Home and Student 2007 (Version: 12.0.6612.1000)
Microsoft Office Live Add-in 1.5 (Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office PowerPoint Viewer 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared 64-bit MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared 64-bit Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Suite Activation Assistant (Version: 2.9)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 5.1.20125.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works (Version: 9.7.0621)
Milouz Market (Version: 1.0.35)
Mobile Broadband HL Service (Version: 22.001.16.00.03)
Movie Theme Pack for HP MediaSmart Video (Version: 3.1.3310)
Mozilla Firefox 21.0 (x86 en-US) (Version: 21.0)
Mozilla Maintenance Service (Version: 21.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
NCDownloader (Version: 1.0)
Nemo Documents
NirSoft BlueScreenView
Norton Online Backup (Version: 1.2.20.0)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Password Door 9.0 (Version: 9.0)
Power2Go (Version: 6.0.3311)
PowerDirector (Version: 7.0.3311)
Process Hacker 2.30 (r5267) (Version: 2.30.0.5267)
QLBCASL (Version: 6.40.17.2)
Qualcomm Atheros Driver Installation Program (Version: 10.0)
Realtek Ethernet Controller All-In-One Windows Driver (Version: 7.58.411.2012)
Recovery Manager (Version: 5.5.2202)
RegCure Pro (Version: 3.1.5.0)
Screen Recorder
Search Protect by conduit (Version: 1.5.0.71)
SlimDrivers (Version: 2.2.29035)
Smart Defrag 2 (Version: 2.7)
Software Informer 1.2
Speccy (Version: 1.22)
SpywareBlaster 5.0 (Version: 5.0.0)
Steam (Version: 1.0.0.0)
Subtitles 1.3 (Version: 1.3)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 15.3.29.0)
The Lake House: Children of Silence
T-Mobile Internet Manager (Version: 11.301.05.17.55)
TopArcadeHits
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596660) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2596848) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2687493) 32-Bit Edition
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VLC media player 2.0.7 (Version: 2.0.7)
Windows Driver Package - Broadcom Bluetooth  (06/15/2009 6.2.0.9000) (Version: 06/15/2009 6.2.0.9000)
Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405) (Version: 07/30/2009 6.2.0.9405)
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (Version: 07/28/2009 6.2.0.9800)
Windows File Viewer version 1.0 (Version: 1.0)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live Sync (Version: 14.0.8117.416)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Wise Registry Cleaner 7.68 (Version: 7.68)
Yahoo! BrowserPlus 2.9.8
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar
YourFileDownloader (Version: 1.0.2)

========================= Memory info: ===================================

Percentage of memory in use: 53%
Total physical RAM: 4092.2 MB
Available physical RAM: 1886.59 MB
Total Pagefile: 8182.58 MB
Available Pagefile: 5720.22 MB
Total Virtual: 4095.88 MB
Available Virtual: 3961.18 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:283.66 GB) (Free:129.63 GB) NTFS
2 Drive d: (RECOVERY) (Fixed) (Total:14.13 GB) (Free:2.52 GB) NTFS
3 Drive e: (HP_TOOLS) (Fixed) (Total:0.1 GB) (Free:0.09 GB) FAT32

========================= Users: ========================================

User accounts for \\MARCUS-PC

Administrator            Guest                    Marcus                   


**** End of log ****



#8 compbuff

compbuff
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 19 June 2013 - 11:43 AM

2. TDSSkiller

 

17:01:29.0726 9524  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
17:01:30.0220 9524  ============================================================
17:01:30.0220 9524  Current date / time: 2013/06/19 17:01:30.0220
17:01:30.0220 9524  SystemInfo:
17:01:30.0220 9524  
17:01:30.0220 9524  OS Version: 6.1.7601 ServicePack: 1.0
17:01:30.0220 9524  Product type: Workstation
17:01:30.0220 9524  ComputerName: MARCUS-PC
17:01:30.0220 9524  UserName: Marcus
17:01:30.0220 9524  Windows directory: C:\Windows
17:01:30.0230 9524  System windows directory: C:\Windows
17:01:30.0230 9524  Running under WOW64
17:01:30.0230 9524  Processor architecture: Intel x64
17:01:30.0230 9524  Number of processors: 2
17:01:30.0230 9524  Page size: 0x1000
17:01:30.0230 9524  Boot type: Normal boot
17:01:30.0230 9524  ============================================================
17:01:31.0522 9524  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:01:31.0532 9524  ============================================================
17:01:31.0532 9524  \Device\Harddisk0\DR0:
17:01:31.0532 9524  MBR partitions:
17:01:31.0532 9524  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
17:01:31.0532 9524  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x23751800
17:01:31.0532 9524  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x237B5800, BlocksNum 0x1C45000
17:01:31.0532 9524  \Device\Harddisk0\DR0\Partition4: MBR, Type 0xC, StartLBA 0x253FA800, BlocksNum 0x33AB0
17:01:31.0532 9524  ============================================================
17:01:31.0542 9524  C: <-> \Device\Harddisk0\DR0\Partition2
17:01:31.0592 9524  D: <-> \Device\Harddisk0\DR0\Partition3
17:01:31.0602 9524  E: <-> \Device\Harddisk0\DR0\Partition4
17:01:31.0602 9524  ============================================================
17:01:31.0602 9524  Initialize success
17:01:31.0602 9524  ============================================================
17:01:38.0166 9756  ============================================================
17:01:38.0166 9756  Scan started
17:01:38.0166 9756  Mode: Manual;
17:01:38.0166 9756  ============================================================
17:01:39.0476 9756  ================ Scan system memory ========================
17:01:39.0476 9756  System memory - ok
17:01:39.0486 9756  ================ Scan services =============================
17:01:39.0666 9756  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
17:01:39.0666 9756  1394ohci - ok
17:01:39.0716 9756  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
17:01:39.0716 9756  Accelerometer - ok
17:01:39.0766 9756  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:01:39.0776 9756  ACPI - ok
17:01:39.0816 9756  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:01:39.0816 9756  AcpiPmi - ok
17:01:39.0936 9756  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:01:39.0936 9756  AdobeARMservice - ok
17:01:40.0076 9756  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:01:40.0086 9756  AdobeFlashPlayerUpdateSvc - ok
17:01:40.0146 9756  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
17:01:40.0156 9756  adp94xx - ok
17:01:40.0206 9756  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
17:01:40.0226 9756  adpahci - ok
17:01:40.0246 9756  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
17:01:40.0246 9756  adpu320 - ok
17:01:40.0366 9756  [ 9243229DFCCC99B5441750EBA49F1B14 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
17:01:40.0386 9756  AdvancedSystemCareService6 - ok
17:01:40.0406 9756  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:01:40.0416 9756  AeLookupSvc - ok
17:01:40.0536 9756  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
17:01:40.0536 9756  AESTFilters - ok
17:01:40.0606 9756  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
17:01:40.0626 9756  AFD - ok
17:01:40.0706 9756  [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
17:01:40.0736 9756  AgereSoftModem - ok
17:01:40.0786 9756  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
17:01:40.0796 9756  agp440 - ok
17:01:40.0816 9756  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
17:01:40.0826 9756  ALG - ok
17:01:40.0866 9756  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:01:40.0866 9756  aliide - ok
17:01:40.0936 9756  [ ABDFE286F5BA0BB591D715B40181A9AE ] ambakdrv        C:\Windows\system32\ambakdrv.sys
17:01:40.0936 9756  ambakdrv - ok
17:01:41.0006 9756  [ BCC32BF5EBB5DFD4380FA053D3651949 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:01:41.0016 9756  AMD External Events Utility - ok
17:01:41.0026 9756  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
17:01:41.0026 9756  amdide - ok
17:01:41.0086 9756  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
17:01:41.0086 9756  AmdK8 - ok
17:01:41.0126 9756  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
17:01:41.0126 9756  AmdPPM - ok
17:01:41.0176 9756  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:01:41.0176 9756  amdsata - ok
17:01:41.0226 9756  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
17:01:41.0236 9756  amdsbs - ok
17:01:41.0256 9756  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:01:41.0256 9756  amdxata - ok
17:01:41.0306 9756  [ FE24ED97422FEEEAF9FF98CBF003E67C ] ammntdrv        C:\Windows\system32\ammntdrv.sys
17:01:41.0306 9756  ammntdrv - ok
17:01:41.0356 9756  [ 861E991C28594C2464196F35C07CC130 ] amwrtdrv        C:\Windows\system32\amwrtdrv.sys
17:01:41.0356 9756  amwrtdrv - ok
17:01:41.0406 9756  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
17:01:41.0406 9756  AppID - ok
17:01:41.0426 9756  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:01:41.0436 9756  AppIDSvc - ok
17:01:41.0486 9756  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
17:01:41.0486 9756  Appinfo - ok
17:01:41.0526 9756  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
17:01:41.0526 9756  arc - ok
17:01:41.0536 9756  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
17:01:41.0536 9756  arcsas - ok
17:01:41.0666 9756  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:01:41.0676 9756  aspnet_state - ok
17:01:41.0716 9756  [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
17:01:41.0716 9756  aswFsBlk - ok
17:01:41.0776 9756  [ 7A62C389380F6FF3FA952D511D8790B8 ] aswFW           C:\Windows\system32\drivers\aswFW.sys
17:01:41.0786 9756  aswFW - ok
17:01:41.0836 9756  [ 890918D53B80B474CFAFB48995B85AF3 ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
17:01:41.0846 9756  aswKbd - ok
17:01:41.0876 9756  [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
17:01:41.0886 9756  aswMonFlt - ok
17:01:41.0906 9756  [ 518B8D447A1975AB46DA093A2E743256 ] aswNdis         C:\Windows\system32\DRIVERS\aswNdis.sys
17:01:41.0906 9756  aswNdis - ok
17:01:41.0936 9756  [ 94CCA87794454E1824D59B092B9F70C4 ] aswNdis2        C:\Windows\system32\drivers\aswNdis2.sys
17:01:41.0936 9756  aswNdis2 - ok
17:01:41.0966 9756  [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
17:01:41.0966 9756  aswRdr - ok
17:01:42.0016 9756  [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
17:01:42.0026 9756  aswRvrt - ok
17:01:42.0056 9756  [ 10ED1CAB84AA65983C41A11F60294C9B ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
17:01:42.0086 9756  aswSnx - ok
17:01:42.0096 9756  [ 00E5253353717D3CA12A0F5A6F9991EC ] aswSP           C:\Windows\system32\drivers\aswSP.sys
17:01:42.0106 9756  aswSP - ok
17:01:42.0116 9756  [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
17:01:42.0116 9756  aswTdi - ok
17:01:42.0136 9756  [ 6359B99C955DB9F40B653159A0EED261 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
17:01:42.0136 9756  aswVmm - ok
17:01:42.0166 9756  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:01:42.0166 9756  AsyncMac - ok
17:01:42.0196 9756  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
17:01:42.0196 9756  atapi - ok
17:01:42.0326 9756  [ B347A59887FA80074403743090CF8D14 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
17:01:42.0396 9756  athr - ok
17:01:42.0456 9756  [ 3B9014FB7CE9E20FD726321C7DB7D8B0 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
17:01:42.0466 9756  AtiHdmiService - ok
17:01:42.0636 9756  [ A29087680A1C3B049E3C05438E8FF2B8 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
17:01:42.0766 9756  atikmdag - ok
17:01:42.0806 9756  [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie.sys
17:01:42.0806 9756  AtiPcie - ok
17:01:42.0866 9756  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:01:42.0886 9756  AudioEndpointBuilder - ok
17:01:42.0896 9756  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:01:42.0896 9756  AudioSrv - ok
17:01:42.0946 9756  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:01:42.0946 9756  avast! Antivirus - ok
17:01:42.0956 9756  [ C2009C6A452BD07B30D773349589B762 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
17:01:42.0956 9756  avast! Firewall - ok
17:01:43.0016 9756  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:01:43.0016 9756  AxInstSV - ok
17:01:43.0066 9756  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
17:01:43.0086 9756  b06bdrv - ok
17:01:43.0166 9756  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:01:43.0176 9756  b57nd60a - ok
17:01:43.0206 9756  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:01:43.0216 9756  BDESVC - ok
17:01:43.0256 9756  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:01:43.0256 9756  Beep - ok
17:01:43.0326 9756  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
17:01:43.0346 9756  BFE - ok
17:01:43.0416 9756  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
17:01:43.0476 9756  BITS - ok
17:01:43.0516 9756  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:01:43.0516 9756  blbdrive - ok
17:01:43.0556 9756  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:01:43.0566 9756  bowser - ok
17:01:43.0576 9756  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:01:43.0576 9756  BrFiltLo - ok
17:01:43.0596 9756  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:01:43.0606 9756  BrFiltUp - ok
17:01:43.0636 9756  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
17:01:43.0636 9756  Browser - ok
17:01:43.0646 9756  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:01:43.0656 9756  Brserid - ok
17:01:43.0666 9756  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:01:43.0666 9756  BrSerWdm - ok
17:01:43.0666 9756  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:01:43.0676 9756  BrUsbMdm - ok
17:01:43.0676 9756  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:01:43.0676 9756  BrUsbSer - ok
17:01:43.0736 9756  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
17:01:43.0736 9756  BthEnum - ok
17:01:43.0756 9756  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
17:01:43.0766 9756  BTHMODEM - ok
17:01:43.0776 9756  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
17:01:43.0786 9756  BthPan - ok
17:01:43.0826 9756  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
17:01:43.0846 9756  BTHPORT - ok
17:01:43.0926 9756  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
17:01:43.0936 9756  bthserv - ok
17:01:43.0956 9756  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
17:01:43.0956 9756  BTHUSB - ok
17:01:44.0036 9756  [ 3AFF6DC496B8A8D12C867E3FC7C86FAC ] btwampfl        C:\Windows\system32\drivers\btwampfl.sys
17:01:44.0056 9756  btwampfl - ok
17:01:44.0086 9756  [ 336BBA0909B3636AB7D06A71D7B1C0DC ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
17:01:44.0086 9756  btwaudio - ok
17:01:44.0106 9756  [ 9FF58F76024D25784755B01F926B00BE ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
17:01:44.0116 9756  btwavdt - ok
17:01:44.0166 9756  [ 26A80D7ACA49E03A403806418B5FED46 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
17:01:44.0206 9756  btwdins - ok
17:01:44.0226 9756  [ B1ACFD00CDD13B48D86F46BFEC153BF9 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
17:01:44.0226 9756  btwl2cap - ok
17:01:44.0236 9756  [ EDD953D635F3AA89EF902E3F82D60D22 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
17:01:44.0236 9756  btwrchid - ok
17:01:44.0286 9756  [ ED6F48C234555552FD31AAECFD792A8C ] CBFilterFS      C:\Windows\system32\drivers\cbfltfs.sys
17:01:44.0296 9756  CBFilterFS - ok
17:01:44.0366 9756  [ 6F6F6D035FDB86AE71FFA8A57A5C7E7C ] cbfs3           C:\Windows\system32\drivers\cbfs3.sys
17:01:44.0386 9756  cbfs3 - ok
17:01:44.0426 9756  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:01:44.0436 9756  cdfs - ok
17:01:44.0476 9756  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:01:44.0486 9756  cdrom - ok
17:01:44.0536 9756  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
17:01:44.0546 9756  CertPropSvc - ok
17:01:44.0586 9756  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
17:01:44.0586 9756  circlass - ok
17:01:44.0606 9756  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
17:01:44.0616 9756  CLFS - ok
17:01:44.0686 9756  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:01:44.0686 9756  clr_optimization_v2.0.50727_32 - ok
17:01:44.0716 9756  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:01:44.0716 9756  clr_optimization_v2.0.50727_64 - ok
17:01:44.0806 9756  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:01:44.0836 9756  clr_optimization_v4.0.30319_32 - ok
17:01:44.0856 9756  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:01:44.0856 9756  clr_optimization_v4.0.30319_64 - ok
17:01:44.0896 9756  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
17:01:44.0896 9756  CmBatt - ok
17:01:44.0916 9756  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:01:44.0916 9756  cmdide - ok
17:01:44.0956 9756  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
17:01:44.0966 9756  CNG - ok
17:01:45.0046 9756  [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx       C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
17:01:45.0056 9756  Com4QLBEx - ok
17:01:45.0086 9756  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
17:01:45.0096 9756  Compbatt - ok
17:01:45.0136 9756  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
17:01:45.0146 9756  CompositeBus - ok
17:01:45.0176 9756  COMSysApp - ok
17:01:45.0186 9756  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
17:01:45.0196 9756  crcdisk - ok
17:01:45.0238 9756  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:01:45.0248 9756  CryptSvc - ok
17:01:45.0318 9756  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:01:45.0328 9756  DcomLaunch - ok
17:01:45.0388 9756  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
17:01:45.0408 9756  defragsvc - ok
17:01:45.0438 9756  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:01:45.0438 9756  DfsC - ok
17:01:45.0488 9756  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:01:45.0488 9756  Dhcp - ok
17:01:45.0508 9756  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
17:01:45.0508 9756  discache - ok
17:01:45.0550 9756  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
17:01:45.0550 9756  Disk - ok
17:01:45.0590 9756  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:01:45.0600 9756  Dnscache - ok
17:01:45.0630 9756  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:01:45.0630 9756  dot3svc - ok
17:01:45.0660 9756  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
17:01:45.0660 9756  DPS - ok
17:01:45.0700 9756  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:01:45.0700 9756  drmkaud - ok
17:01:45.0740 9756  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:01:45.0760 9756  DXGKrnl - ok
17:01:45.0810 9756  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
17:01:45.0810 9756  EapHost - ok
17:01:45.0910 9756  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
17:01:45.0982 9756  ebdrv - ok
17:01:46.0012 9756  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
17:01:46.0012 9756  EFS - ok
17:01:46.0092 9756  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:01:46.0112 9756  ehRecvr - ok
17:01:46.0142 9756  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
17:01:46.0142 9756  ehSched - ok
17:01:46.0162 9756  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
17:01:46.0182 9756  elxstor - ok
17:01:46.0222 9756  [ 524C79054636D2E5751169005006460B ] enecir          C:\Windows\system32\DRIVERS\enecir.sys
17:01:46.0222 9756  enecir - ok
17:01:46.0252 9756  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:01:46.0252 9756  ErrDev - ok
17:01:46.0302 9756  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
17:01:46.0322 9756  EventSystem - ok
17:01:46.0332 9756  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
17:01:46.0342 9756  exfat - ok
17:01:46.0362 9756  ezSharedSvc - ok
17:01:46.0392 9756  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:01:46.0392 9756  fastfat - ok
17:01:46.0452 9756  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
17:01:46.0472 9756  Fax - ok
17:01:46.0492 9756  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
17:01:46.0492 9756  fdc - ok
17:01:46.0512 9756  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
17:01:46.0512 9756  fdPHost - ok
17:01:46.0522 9756  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:01:46.0522 9756  FDResPub - ok
17:01:46.0542 9756  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:01:46.0542 9756  FileInfo - ok
17:01:46.0552 9756  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:01:46.0562 9756  Filetrace - ok
17:01:46.0562 9756  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
17:01:46.0562 9756  flpydisk - ok
17:01:46.0622 9756  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:01:46.0632 9756  FltMgr - ok
17:01:46.0702 9756  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
17:01:46.0732 9756  FontCache - ok
17:01:46.0772 9756  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:01:46.0772 9756  FontCache3.0.0.0 - ok
17:01:46.0792 9756  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:01:46.0792 9756  FsDepends - ok
17:01:46.0822 9756  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:01:46.0822 9756  Fs_Rec - ok
17:01:46.0882 9756  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:01:46.0892 9756  fvevol - ok
17:01:46.0892 9756  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
17:01:46.0892 9756  gagp30kx - ok
17:01:46.0992 9756  [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:01:47.0002 9756  GameConsoleService - ok
17:01:47.0052 9756  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
17:01:47.0082 9756  gpsvc - ok
17:01:47.0162 9756  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:01:47.0162 9756  gupdate - ok
17:01:47.0162 9756  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:01:47.0172 9756  gupdatem - ok
17:01:47.0172 9756  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:01:47.0172 9756  hcw85cir - ok
17:01:47.0232 9756  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:01:47.0252 9756  HdAudAddService - ok
17:01:47.0302 9756  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
17:01:47.0302 9756  HDAudBus - ok
17:01:47.0332 9756  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
17:01:47.0332 9756  HidBatt - ok
17:01:47.0362 9756  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
17:01:47.0362 9756  HidBth - ok
17:01:47.0432 9756  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
17:01:47.0432 9756  HidIr - ok
17:01:47.0452 9756  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
17:01:47.0452 9756  hidserv - ok
17:01:47.0482 9756  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
17:01:47.0482 9756  HidUsb - ok
17:01:47.0512 9756  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:01:47.0522 9756  hkmsvc - ok
17:01:47.0542 9756  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:01:47.0562 9756  HomeGroupListener - ok
17:01:47.0592 9756  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:01:47.0602 9756  HomeGroupProvider - ok
17:01:47.0702 9756  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:01:47.0702 9756  HP Support Assistant Service - ok
17:01:47.0722 9756  [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
17:01:47.0722 9756  hpdskflt - ok
17:01:47.0792 9756  [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
17:01:47.0792 9756  HpqKbFiltr - ok
17:01:47.0852 9756  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
17:01:47.0882 9756  hpqwmiex - ok
17:01:47.0932 9756  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:01:47.0932 9756  HpSAMD - ok
17:01:47.0992 9756  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv           C:\Windows\system32\Hpservice.exe
17:01:47.0992 9756  hpsrv - ok
17:01:48.0042 9756  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:01:48.0052 9756  HTTP - ok
17:01:48.0112 9756  [ 4B5C07DB91A0099272FAAE732E1152BD ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
17:01:48.0122 9756  hwdatacard - ok
17:01:48.0142 9756  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:01:48.0142 9756  hwpolicy - ok
17:01:48.0182 9756  [ 1F24CF1F7DB6D4461AC65A86DB8E4BC2 ] hwusbfake       C:\Windows\system32\DRIVERS\ewusbfake.sys
17:01:48.0182 9756  hwusbfake - ok
17:01:48.0232 9756  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
17:01:48.0242 9756  i8042prt - ok
17:01:48.0302 9756  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:01:48.0312 9756  iaStorV - ok
17:01:48.0382 9756  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:01:48.0412 9756  idsvc - ok
17:01:48.0592 9756  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
17:01:48.0732 9756  igfx - ok
17:01:48.0742 9756  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
17:01:48.0742 9756  iirsp - ok
17:01:48.0772 9756  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
17:01:48.0802 9756  IKEEXT - ok
17:01:48.0812 9756  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
17:01:48.0822 9756  intelide - ok
17:01:48.0852 9756  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:01:48.0852 9756  intelppm - ok
17:01:48.0892 9756  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:01:48.0892 9756  IPBusEnum - ok
17:01:48.0932 9756  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:01:48.0932 9756  IpFilterDriver - ok
17:01:48.0962 9756  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:01:48.0982 9756  iphlpsvc - ok
17:01:49.0022 9756  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:01:49.0022 9756  IPMIDRV - ok
17:01:49.0042 9756  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:01:49.0042 9756  IPNAT - ok
17:01:49.0072 9756  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:01:49.0082 9756  IRENUM - ok
17:01:49.0132 9756  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:01:49.0132 9756  isapnp - ok
17:01:49.0172 9756  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:01:49.0172 9756  iScsiPrt - ok
17:01:49.0222 9756  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
17:01:49.0222 9756  kbdclass - ok
17:01:49.0252 9756  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
17:01:49.0252 9756  kbdhid - ok
17:01:49.0272 9756  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
17:01:49.0272 9756  KeyIso - ok
17:01:49.0302 9756  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:01:49.0312 9756  KSecDD - ok
17:01:49.0322 9756  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:01:49.0332 9756  KSecPkg - ok
17:01:49.0342 9756  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:01:49.0352 9756  ksthunk - ok
17:01:49.0362 9756  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:01:49.0382 9756  KtmRm - ok
17:01:49.0412 9756  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
17:01:49.0412 9756  LanmanServer - ok
17:01:49.0452 9756  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:01:49.0452 9756  LanmanWorkstation - ok
17:01:49.0542 9756  [ 2238B91AC1A12CC6CC4C4FED41258B2A ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:01:49.0552 9756  LightScribeService - ok
17:01:49.0602 9756  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:01:49.0602 9756  lltdio - ok
17:01:49.0632 9756  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:01:49.0642 9756  lltdsvc - ok
17:01:49.0662 9756  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:01:49.0662 9756  lmhosts - ok
17:01:49.0712 9756  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
17:01:49.0712 9756  LSI_FC - ok
17:01:49.0722 9756  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
17:01:49.0722 9756  LSI_SAS - ok
17:01:49.0732 9756  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:01:49.0732 9756  LSI_SAS2 - ok
17:01:49.0742 9756  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:01:49.0742 9756  LSI_SCSI - ok
17:01:49.0762 9756  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
17:01:49.0762 9756  luafv - ok
17:01:49.0822 9756  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
17:01:49.0832 9756  MBAMProtector - ok
17:01:49.0912 9756  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:01:49.0932 9756  MBAMScheduler - ok
17:01:49.0992 9756  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:01:50.0012 9756  MBAMService - ok
17:01:50.0032 9756  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:01:50.0042 9756  Mcx2Svc - ok
17:01:50.0052 9756  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
17:01:50.0062 9756  megasas - ok
17:01:50.0082 9756  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
17:01:50.0082 9756  MegaSR - ok
17:01:50.0102 9756  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
17:01:50.0102 9756  MMCSS - ok
17:01:50.0472 9756  [ 24CFF4697702785872313159EC2434A2 ] Mobile Broadband HL Service C:\ProgramData\MobileBrServ\mbbservice.exe
17:01:50.0492 9756  Mobile Broadband HL Service - ok
17:01:50.0532 9756  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
17:01:50.0552 9756  Modem - ok
17:01:50.0632 9756  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:01:50.0642 9756  monitor - ok
17:01:50.0692 9756  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:01:50.0692 9756  mouclass - ok
17:01:50.0692 9756  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:01:50.0702 9756  mouhid - ok
17:01:50.0752 9756  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:01:50.0752 9756  mountmgr - ok
17:01:50.0842 9756  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:01:50.0852 9756  MozillaMaintenance - ok
17:01:50.0882 9756  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:01:50.0892 9756  mpio - ok
17:01:50.0902 9756  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:01:50.0902 9756  mpsdrv - ok
17:01:50.0952 9756  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:01:50.0982 9756  MpsSvc - ok
17:01:51.0002 9756  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:01:51.0012 9756  MRxDAV - ok
17:01:51.0042 9756  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:01:51.0052 9756  mrxsmb - ok
17:01:51.0072 9756  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:01:51.0092 9756  mrxsmb10 - ok
17:01:51.0122 9756  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:01:51.0132 9756  mrxsmb20 - ok
17:01:51.0152 9756  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:01:51.0152 9756  msahci - ok
17:01:51.0192 9756  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:01:51.0192 9756  msdsm - ok
17:01:51.0212 9756  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
17:01:51.0212 9756  MSDTC - ok
17:01:51.0262 9756  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:01:51.0262 9756  Msfs - ok
17:01:51.0272 9756  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:01:51.0282 9756  mshidkmdf - ok
17:01:51.0312 9756  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:01:51.0312 9756  msisadrv - ok
17:01:51.0362 9756  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:01:51.0362 9756  MSiSCSI - ok
17:01:51.0372 9756  msiserver - ok
17:01:51.0412 9756  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:01:51.0412 9756  MSKSSRV - ok
17:01:51.0442 9756  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:01:51.0442 9756  MSPCLOCK - ok
17:01:51.0452 9756  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:01:51.0452 9756  MSPQM - ok
17:01:51.0472 9756  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:01:51.0482 9756  MsRPC - ok
17:01:51.0492 9756  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
17:01:51.0492 9756  mssmbios - ok
17:01:51.0512 9756  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:01:51.0512 9756  MSTEE - ok
17:01:51.0532 9756  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
17:01:51.0532 9756  MTConfig - ok
17:01:51.0542 9756  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
17:01:51.0542 9756  Mup - ok
17:01:51.0582 9756  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
17:01:51.0602 9756  napagent - ok
17:01:51.0642 9756  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:01:51.0652 9756  NativeWifiP - ok
17:01:51.0722 9756  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:01:51.0752 9756  NDIS - ok
17:01:51.0782 9756  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:01:51.0782 9756  NdisCap - ok
17:01:51.0812 9756  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:01:51.0812 9756  NdisTapi - ok
17:01:51.0862 9756  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:01:51.0862 9756  Ndisuio - ok
17:01:51.0892 9756  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:01:51.0892 9756  NdisWan - ok
17:01:51.0952 9756  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:01:51.0952 9756  NDProxy - ok
17:01:52.0002 9756  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:01:52.0002 9756  NetBIOS - ok
17:01:52.0032 9756  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:01:52.0032 9756  NetBT - ok
17:01:52.0052 9756  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
17:01:52.0052 9756  Netlogon - ok
17:01:52.0112 9756  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
17:01:52.0132 9756  Netman - ok
17:01:52.0172 9756  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:01:52.0182 9756  NetMsmqActivator - ok
17:01:52.0202 9756  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:01:52.0202 9756  NetPipeActivator - ok
17:01:52.0232 9756  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
17:01:52.0252 9756  netprofm - ok
17:01:52.0252 9756  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:01:52.0252 9756  NetTcpActivator - ok
17:01:52.0262 9756  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:01:52.0262 9756  NetTcpPortSharing - ok
17:01:52.0392 9756  [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
17:01:52.0489 9756  netw5v64 - ok
17:01:52.0495 9756  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
17:01:52.0496 9756  nfrd960 - ok
17:01:52.0555 9756  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:01:52.0555 9756  NlaSvc - ok
17:01:52.0575 9756  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:01:52.0575 9756  Npfs - ok
17:01:52.0585 9756  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
17:01:52.0595 9756  nsi - ok
17:01:52.0605 9756  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:01:52.0605 9756  nsiproxy - ok
17:01:52.0665 9756  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:01:52.0705 9756  Ntfs - ok
17:01:52.0715 9756  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
17:01:52.0715 9756  Null - ok
17:01:52.0745 9756  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:01:52.0745 9756  nvraid - ok
17:01:52.0785 9756  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:01:52.0785 9756  nvstor - ok
17:01:52.0835 9756  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:01:52.0835 9756  nv_agp - ok
17:01:52.0885 9756  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:01:52.0905 9756  odserv - ok
17:01:52.0935 9756  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:01:52.0945 9756  ohci1394 - ok
17:01:52.0995 9756  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:01:52.0995 9756  ose - ok
17:01:53.0025 9756  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:01:53.0035 9756  p2pimsvc - ok
17:01:53.0055 9756  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
17:01:53.0075 9756  p2psvc - ok
17:01:53.0095 9756  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
17:01:53.0095 9756  Parport - ok
17:01:53.0125 9756  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:01:53.0125 9756  partmgr - ok
17:01:53.0135 9756  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:01:53.0145 9756  PcaSvc - ok
17:01:53.0175 9756  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
17:01:53.0175 9756  pci - ok
17:01:53.0195 9756  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
17:01:53.0195 9756  pciide - ok
17:01:53.0205 9756  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
17:01:53.0215 9756  pcmcia - ok
17:01:53.0225 9756  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:01:53.0225 9756  pcw - ok
17:01:53.0255 9756  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:01:53.0265 9756  PEAUTH - ok
17:01:53.0365 9756  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:01:53.0375 9756  PerfHost - ok
17:01:53.0445 9756  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
17:01:53.0485 9756  pla - ok
17:01:53.0535 9756  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:01:53.0545 9756  PlugPlay - ok
17:01:53.0555 9756  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:01:53.0565 9756  PNRPAutoReg - ok
17:01:53.0575 9756  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:01:53.0585 9756  PNRPsvc - ok
17:01:53.0605 9756  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:01:53.0625 9756  PolicyAgent - ok
17:01:53.0655 9756  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
17:01:53.0665 9756  Power - ok
17:01:53.0715 9756  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:01:53.0715 9756  PptpMiniport - ok
17:01:53.0735 9756  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
17:01:53.0735 9756  Processor - ok
17:01:53.0765 9756  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:01:53.0775 9756  ProfSvc - ok
17:01:53.0775 9756  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:01:53.0785 9756  ProtectedStorage - ok
17:01:53.0845 9756  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:01:53.0845 9756  Psched - ok
17:01:53.0895 9756  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
17:01:53.0935 9756  ql2300 - ok
17:01:53.0945 9756  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
17:01:53.0945 9756  ql40xx - ok
17:01:53.0975 9756  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
17:01:53.0985 9756  QWAVE - ok
17:01:53.0995 9756  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:01:53.0995 9756  QWAVEdrv - ok
17:01:54.0005 9756  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:01:54.0015 9756  RasAcd - ok
17:01:54.0055 9756  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:01:54.0055 9756  RasAgileVpn - ok
17:01:54.0085 9756  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
17:01:54.0095 9756  RasAuto - ok
17:01:54.0125 9756  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:01:54.0135 9756  Rasl2tp - ok
17:01:54.0195 9756  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
17:01:54.0215 9756  RasMan - ok
17:01:54.0235 9756  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:01:54.0235 9756  RasPppoe - ok
17:01:54.0275 9756  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:01:54.0275 9756  RasSstp - ok
17:01:54.0305 9756  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:01:54.0315 9756  rdbss - ok
17:01:54.0325 9756  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
17:01:54.0325 9756  rdpbus - ok
17:01:54.0345 9756  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:01:54.0345 9756  RDPCDD - ok
17:01:54.0395 9756  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:01:54.0395 9756  RDPENCDD - ok
17:01:54.0405 9756  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:01:54.0405 9756  RDPREFMP - ok
17:01:54.0475 9756  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:01:54.0475 9756  RdpVideoMiniport - ok
17:01:54.0505 9756  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:01:54.0515 9756  RDPWD - ok
17:01:54.0545 9756  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:01:54.0545 9756  rdyboost - ok
17:01:54.0575 9756  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:01:54.0575 9756  RemoteAccess - ok
17:01:54.0595 9756  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:01:54.0595 9756  RemoteRegistry - ok
17:01:54.0645 9756  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
17:01:54.0655 9756  RFCOMM - ok
17:01:54.0725 9756  [ 498EB62A160674E793FA40FD65390625 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:01:54.0735 9756  RichVideo - ok
17:01:54.0775 9756  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:01:54.0775 9756  RpcEptMapper - ok
17:01:54.0795 9756  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
17:01:54.0805 9756  RpcLocator - ok
17:01:54.0845 9756  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
17:01:54.0855 9756  RpcSs - ok
17:01:54.0865 9756  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:01:54.0865 9756  rspndr - ok
17:01:54.0905 9756  [ BD9BA262CF26EFE9A9867EBE32D12164 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
17:01:54.0925 9756  RTL8167 - ok
17:01:54.0935 9756  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
17:01:54.0935 9756  SamSs - ok
17:01:54.0965 9756  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:01:54.0975 9756  sbp2port - ok
17:01:54.0995 9756  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:01:54.0995 9756  SCardSvr - ok
17:01:55.0025 9756  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:01:55.0035 9756  scfilter - ok
17:01:55.0085 9756  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
17:01:55.0115 9756  Schedule - ok
17:01:55.0155 9756  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:01:55.0155 9756  SCPolicySvc - ok
17:01:55.0225 9756  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\drivers\sdbus.sys
17:01:55.0225 9756  sdbus - ok
17:01:55.0275 9756  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:01:55.0285 9756  SDRSVC - ok
17:01:55.0325 9756  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:01:55.0325 9756  secdrv - ok
17:01:55.0355 9756  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
17:01:55.0365 9756  seclogon - ok
17:01:55.0375 9756  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
17:01:55.0385 9756  SENS - ok
17:01:55.0425 9756  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:01:55.0435 9756  SensrSvc - ok
17:01:55.0465 9756  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
17:01:55.0465 9756  Serenum - ok
17:01:55.0485 9756  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:01:55.0485 9756  Serial - ok
17:01:55.0505 9756  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
17:01:55.0505 9756  sermouse - ok
17:01:55.0555 9756  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
17:01:55.0555 9756  SessionEnv - ok
17:01:55.0585 9756  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:01:55.0585 9756  sffdisk - ok
17:01:55.0585 9756  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:01:55.0595 9756  sffp_mmc - ok
17:01:55.0595 9756  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:01:55.0605 9756  sffp_sd - ok
17:01:55.0615 9756  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
17:01:55.0615 9756  sfloppy - ok
17:01:55.0645 9756  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:01:55.0655 9756  SharedAccess - ok
17:01:55.0685 9756  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:01:55.0695 9756  ShellHWDetection - ok
17:01:55.0705 9756  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:01:55.0705 9756  SiSRaid2 - ok
17:01:55.0725 9756  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
17:01:55.0725 9756  SiSRaid4 - ok
17:01:55.0825 9756  [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
17:01:55.0825 9756  SmartDefragDriver - ok
17:01:55.0875 9756  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:01:55.0875 9756  Smb - ok
17:01:55.0935 9756  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:01:55.0945 9756  SNMPTRAP - ok
17:01:55.0965 9756  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:01:55.0975 9756  spldr - ok
17:01:56.0005 9756  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
17:01:56.0025 9756  Spooler - ok
17:01:56.0135 9756  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
17:01:56.0205 9756  sppsvc - ok
17:01:56.0225 9756  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:01:56.0225 9756  sppuinotify - ok
17:01:56.0255 9756  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:01:56.0265 9756  srv - ok
17:01:56.0295 9756  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:01:56.0305 9756  srv2 - ok
17:01:56.0345 9756  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
17:01:56.0345 9756  SrvHsfHDA - ok
17:01:56.0385 9756  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
17:01:56.0415 9756  SrvHsfV92 - ok
17:01:56.0445 9756  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
17:01:56.0455 9756  SrvHsfWinac - ok
17:01:56.0485 9756  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:01:56.0495 9756  srvnet - ok
17:01:56.0525 9756  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:01:56.0535 9756  SSDPSRV - ok
17:01:56.0545 9756  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:01:56.0545 9756  SstpSvc - ok
17:01:56.0625 9756  [ 897C1273B7D74E19DDA7EBF495BF0133 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
17:01:56.0635 9756  STacSV - ok
17:01:56.0715 9756  Steam Client Service - ok
17:01:56.0735 9756  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
17:01:56.0745 9756  stexstor - ok
17:01:56.0795 9756  [ A883937A943DCE237B19E4A5558FCBE6 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
17:01:56.0815 9756  STHDA - ok
17:01:56.0885 9756  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
17:01:56.0915 9756  stisvc - ok
17:01:56.0965 9756  [ FDE3A9750B975796974E66F8F730F2F6 ] SWDUMon         C:\Windows\system32\DRIVERS\SWDUMon.sys
17:01:56.0965 9756  SWDUMon - ok
17:01:56.0995 9756  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
17:01:56.0995 9756  swenum - ok
17:01:57.0015 9756  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
17:01:57.0035 9756  swprv - ok
17:01:57.0095 9756  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
17:01:57.0115 9756  SynTP - ok
17:01:57.0195 9756  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
17:01:57.0235 9756  SysMain - ok
17:01:57.0275 9756  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:01:57.0275 9756  TabletInputService - ok
17:01:57.0315 9756  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:01:57.0325 9756  TapiSrv - ok
17:01:57.0335 9756  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
17:01:57.0345 9756  TBS - ok
17:01:57.0445 9756  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:01:57.0475 9756  Tcpip - ok
17:01:57.0545 9756  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:01:57.0555 9756  TCPIP6 - ok
17:01:57.0585 9756  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:01:57.0595 9756  tcpipreg - ok
17:01:57.0635 9756  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:01:57.0645 9756  TDPIPE - ok
17:01:57.0665 9756  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:01:57.0665 9756  TDTCP - ok
17:01:57.0685 9756  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:01:57.0695 9756  tdx - ok
17:01:57.0715 9756  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
17:01:57.0725 9756  TermDD - ok
17:01:57.0765 9756  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
17:01:57.0775 9756  TermService - ok
17:01:57.0795 9756  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
17:01:57.0805 9756  Themes - ok
17:01:57.0825 9756  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
17:01:57.0825 9756  THREADORDER - ok
17:01:57.0835 9756  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
17:01:57.0845 9756  TrkWks - ok
17:01:57.0875 9756  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:01:57.0875 9756  TrustedInstaller - ok
17:01:57.0915 9756  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:01:57.0915 9756  tssecsrv - ok
17:01:57.0975 9756  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:01:57.0975 9756  TsUsbFlt - ok
17:01:58.0025 9756  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:01:58.0035 9756  tunnel - ok
17:01:58.0055 9756  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
17:01:58.0055 9756  uagp35 - ok
17:01:58.0085 9756  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:01:58.0095 9756  udfs - ok
17:01:58.0115 9756  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:01:58.0125 9756  UI0Detect - ok
17:01:58.0165 9756  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:01:58.0175 9756  uliagpkx - ok
17:01:58.0225 9756  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
17:01:58.0225 9756  umbus - ok
17:01:58.0255 9756  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
17:01:58.0255 9756  UmPass - ok
17:01:58.0275 9756  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
17:01:58.0285 9756  upnphost - ok
17:01:58.0305 9756  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:01:58.0305 9756  usbccgp - ok
17:01:58.0335 9756  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:01:58.0335 9756  usbcir - ok
17:01:58.0355 9756  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
17:01:58.0355 9756  usbehci - ok
17:01:58.0405 9756  [ 44D9C773FEBFF10593B50DDFC2D6BC27 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
17:01:58.0405 9756  usbfilter - ok
17:01:58.0415 9756  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:01:58.0425 9756  usbhub - ok
17:01:58.0435 9756  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
17:01:58.0435 9756  usbohci - ok
17:01:58.0455 9756  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:01:58.0465 9756  usbprint - ok
17:01:58.0475 9756  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:01:58.0475 9756  USBSTOR - ok
17:01:58.0495 9756  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:01:58.0495 9756  usbuhci - ok
17:01:58.0515 9756  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
17:01:58.0515 9756  usbvideo - ok
17:01:58.0575 9756  [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
17:01:58.0575 9756  usb_rndisx - ok
17:01:58.0595 9756  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
17:01:58.0605 9756  UxSms - ok
17:01:58.0615 9756  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
17:01:58.0615 9756  VaultSvc - ok
17:01:58.0645 9756  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:01:58.0645 9756  vdrvroot - ok
17:01:58.0685 9756  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
17:01:58.0695 9756  vds - ok
17:01:58.0725 9756  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:01:58.0735 9756  vga - ok
17:01:58.0755 9756  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:01:58.0755 9756  VgaSave - ok
17:01:58.0785 9756  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:01:58.0795 9756  vhdmp - ok
17:01:58.0825 9756  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:01:58.0825 9756  viaide - ok
17:01:58.0835 9756  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:01:58.0835 9756  volmgr - ok
17:01:58.0865 9756  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:01:58.0875 9756  volmgrx - ok
17:01:58.0895 9756  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:01:58.0905 9756  volsnap - ok
17:01:58.0915 9756  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
17:01:58.0925 9756  vsmraid - ok
17:01:58.0985 9756  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
17:01:59.0045 9756  VSS - ok
17:01:59.0075 9756  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
17:01:59.0075 9756  vwifibus - ok
17:01:59.0125 9756  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
17:01:59.0125 9756  vwififlt - ok
17:01:59.0155 9756  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
17:01:59.0165 9756  W32Time - ok
17:01:59.0195 9756  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
17:01:59.0195 9756  WacomPen - ok
17:01:59.0235 9756  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:01:59.0245 9756  WANARP - ok
17:01:59.0255 9756  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:01:59.0255 9756  Wanarpv6 - ok
17:01:59.0335 9756  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:01:59.0365 9756  WatAdminSvc - ok
17:01:59.0415 9756  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
17:01:59.0455 9756  wbengine - ok
17:01:59.0475 9756  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:01:59.0475 9756  WbioSrvc - ok
17:01:59.0525 9756  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:01:59.0535 9756  wcncsvc - ok
17:01:59.0555 9756  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:01:59.0555 9756  WcsPlugInService - ok
17:01:59.0565 9756  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
17:01:59.0565 9756  Wd - ok
17:01:59.0615 9756  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:01:59.0645 9756  Wdf01000 - ok
17:01:59.0665 9756  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:01:59.0665 9756  WdiServiceHost - ok
17:01:59.0675 9756  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:01:59.0675 9756  WdiSystemHost - ok
17:01:59.0715 9756  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
17:01:59.0715 9756  WebClient - ok
17:01:59.0735 9756  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:01:59.0745 9756  Wecsvc - ok
17:01:59.0745 9756  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:01:59.0755 9756  wercplsupport - ok
17:01:59.0795 9756  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:01:59.0795 9756  WerSvc - ok
17:01:59.0815 9756  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
17:01:59.0815 9756  WfpLwf - ok
17:01:59.0825 9756  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:01:59.0835 9756  WIMMount - ok
17:01:59.0845 9756  WinDefend - ok
17:01:59.0875 9756  WinHttpAutoProxySvc - ok
17:01:59.0935 9756  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:01:59.0945 9756  Winmgmt - ok
17:02:00.0035 9756  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
17:02:00.0105 9756  WinRM - ok
17:02:00.0165 9756  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:02:00.0195 9756  Wlansvc - ok
17:02:00.0345 9756  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:02:00.0395 9756  wlidsvc - ok
17:02:00.0425 9756  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
17:02:00.0425 9756  WmiAcpi - ok
17:02:00.0445 9756  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] WmiApSrv        C:\Windows\System32\wbem\WmiApSrv.exe
17:02:00.0445 9756  WmiApSrv - ok
17:02:00.0495 9756  WMPNetworkSvc - ok
17:02:00.0525 9756  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:02:00.0535 9756  WPCSvc - ok
17:02:00.0575 9756  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:02:00.0575 9756  WPDBusEnum - ok
17:02:00.0606 9756  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:02:00.0607 9756  ws2ifsl - ok
17:02:00.0617 9756  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
17:02:00.0627 9756  wscsvc - ok
17:02:00.0627 9756  WSearch - ok
17:02:00.0717 9756  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:02:00.0777 9756  wuauserv - ok
17:02:00.0807 9756  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:02:00.0807 9756  WudfPf - ok
17:02:00.0847 9756  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:02:00.0857 9756  WUDFRd - ok
17:02:00.0887 9756  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:02:00.0897 9756  wudfsvc - ok
17:02:00.0937 9756  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:02:00.0947 9756  WwanSvc - ok
17:02:01.0077 9756  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
17:02:01.0097 9756  YahooAUService - ok
17:02:01.0147 9756  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
17:02:01.0167 9756  yukonw7 - ok
17:02:01.0207 9756  ================ Scan global ===============================
17:02:01.0237 9756  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:02:01.0257 9756  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:02:01.0277 9756  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:02:01.0307 9756  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:02:01.0337 9756  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:02:01.0347 9756  [Global] - ok
17:02:01.0347 9756  ================ Scan MBR ==================================
17:02:01.0357 9756  [ 09F52C118B409187B9FBD6B3C25EA5CE ] \Device\Harddisk0\DR0
17:02:01.0597 9756  \Device\Harddisk0\DR0 - ok
17:02:01.0597 9756  ================ Scan VBR ==================================
17:02:01.0597 9756  [ AB7429D24DFAED9D459F0BE6832B688B ] \Device\Harddisk0\DR0\Partition1
17:02:01.0597 9756  \Device\Harddisk0\DR0\Partition1 - ok
17:02:01.0607 9756  [ 72AA391A9D00C5E8212DF42BA8AA036F ] \Device\Harddisk0\DR0\Partition2
17:02:01.0607 9756  \Device\Harddisk0\DR0\Partition2 - ok
17:02:01.0637 9756  [ 67EA90AA2C3F30DEF3651DCE454DC0A3 ] \Device\Harddisk0\DR0\Partition3
17:02:01.0637 9756  \Device\Harddisk0\DR0\Partition3 - ok
17:02:01.0647 9756  [ 3EF0EFEA9228B268A48FEF282C408E46 ] \Device\Harddisk0\DR0\Partition4
17:02:01.0647 9756  \Device\Harddisk0\DR0\Partition4 - ok
17:02:01.0647 9756  ============================================================
17:02:01.0647 9756  Scan finished
17:02:01.0647 9756  ============================================================
17:02:01.0667 9244  Detected object count: 0
17:02:01.0667 9244  Actual detected object count: 0
17:03:40.0519 8960  ============================================================
17:03:40.0519 8960  Scan started
17:03:40.0519 8960  Mode: Manual; TDLFS;
17:03:40.0519 8960  ============================================================
17:03:40.0909 8960  ================ Scan system memory ========================
17:03:40.0909 8960  System memory - ok
17:03:40.0909 8960  ================ Scan services =============================
17:03:41.0079 8960  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
17:03:41.0089 8960  1394ohci - ok
17:03:41.0129 8960  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
17:03:41.0129 8960  Accelerometer - ok
17:03:41.0159 8960  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:03:41.0169 8960  ACPI - ok
17:03:41.0199 8960  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:03:41.0199 8960  AcpiPmi - ok
17:03:41.0259 8960  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:03:41.0259 8960  AdobeARMservice - ok
17:03:41.0349 8960  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:03:41.0349 8960  AdobeFlashPlayerUpdateSvc - ok
17:03:41.0379 8960  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
17:03:41.0389 8960  adp94xx - ok
17:03:41.0409 8960  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
17:03:41.0409 8960  adpahci - ok
17:03:41.0419 8960  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
17:03:41.0419 8960  adpu320 - ok
17:03:41.0509 8960  [ 9243229DFCCC99B5441750EBA49F1B14 ] AdvancedSystemCareService6 C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
17:03:41.0519 8960  AdvancedSystemCareService6 - ok
17:03:41.0549 8960  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:03:41.0549 8960  AeLookupSvc - ok
17:03:41.0619 8960  [ A6FB9DB8F1A86861D955FD6975977AE0 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
17:03:41.0629 8960  AESTFilters - ok
17:03:41.0679 8960  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
17:03:41.0679 8960  AFD - ok
17:03:41.0729 8960  [ 98022774D9930ECBB292E70DB7601DF6 ] AgereSoftModem  C:\Windows\system32\DRIVERS\agrsm64.sys
17:03:41.0739 8960  AgereSoftModem - ok
17:03:41.0769 8960  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
17:03:41.0769 8960  agp440 - ok
17:03:41.0789 8960  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
17:03:41.0789 8960  ALG - ok
17:03:41.0799 8960  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:03:41.0799 8960  aliide - ok
17:03:41.0819 8960  [ ABDFE286F5BA0BB591D715B40181A9AE ] ambakdrv        C:\Windows\system32\ambakdrv.sys
17:03:41.0819 8960  ambakdrv - ok
17:03:41.0839 8960  [ BCC32BF5EBB5DFD4380FA053D3651949 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
17:03:41.0849 8960  AMD External Events Utility - ok
17:03:41.0869 8960  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
17:03:41.0879 8960  amdide - ok
17:03:41.0899 8960  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
17:03:41.0899 8960  AmdK8 - ok
17:03:41.0909 8960  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
17:03:41.0909 8960  AmdPPM - ok
17:03:41.0949 8960  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:03:41.0949 8960  amdsata - ok
17:03:41.0959 8960  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
17:03:41.0959 8960  amdsbs - ok
17:03:41.0979 8960  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:03:41.0979 8960  amdxata - ok
17:03:41.0989 8960  [ FE24ED97422FEEEAF9FF98CBF003E67C ] ammntdrv        C:\Windows\system32\ammntdrv.sys
17:03:41.0989 8960  ammntdrv - ok
17:03:42.0009 8960  [ 861E991C28594C2464196F35C07CC130 ] amwrtdrv        C:\Windows\system32\amwrtdrv.sys
17:03:42.0009 8960  amwrtdrv - ok
17:03:42.0039 8960  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
17:03:42.0039 8960  AppID - ok
17:03:42.0049 8960  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:03:42.0049 8960  AppIDSvc - ok
17:03:42.0089 8960  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
17:03:42.0089 8960  Appinfo - ok
17:03:42.0099 8960  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\DRIVERS\arc.sys
17:03:42.0099 8960  arc - ok
17:03:42.0119 8960  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
17:03:42.0119 8960  arcsas - ok
17:03:42.0209 8960  [ 9217D874131AE6FF8F642F124F00A555 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:03:42.0209 8960  aspnet_state - ok
17:03:42.0249 8960  [ 0BAEFD3F648C6E7AB52990DD9565E4E2 ] aswFsBlk        C:\Windows\system32\drivers\aswFsBlk.sys
17:03:42.0259 8960  aswFsBlk - ok
17:03:42.0279 8960  [ 7A62C389380F6FF3FA952D511D8790B8 ] aswFW           C:\Windows\system32\drivers\aswFW.sys
17:03:42.0279 8960  aswFW - ok
17:03:42.0309 8960  [ 890918D53B80B474CFAFB48995B85AF3 ] aswKbd          C:\Windows\system32\drivers\aswKbd.sys
17:03:42.0309 8960  aswKbd - ok
17:03:42.0329 8960  [ FA562F34ED6633C66170B09182B4C049 ] aswMonFlt       C:\Windows\system32\drivers\aswMonFlt.sys
17:03:42.0329 8960  aswMonFlt - ok
17:03:42.0349 8960  [ 518B8D447A1975AB46DA093A2E743256 ] aswNdis         C:\Windows\system32\DRIVERS\aswNdis.sys
17:03:42.0349 8960  aswNdis - ok
17:03:42.0359 8960  [ 94CCA87794454E1824D59B092B9F70C4 ] aswNdis2        C:\Windows\system32\drivers\aswNdis2.sys
17:03:42.0359 8960  aswNdis2 - ok
17:03:42.0389 8960  [ 64E2BAB4096C13D2342BC4661C967E07 ] aswRdr          C:\Windows\System32\Drivers\aswrdr2.sys
17:03:42.0399 8960  aswRdr - ok
17:03:42.0419 8960  [ 5573AA70993A2BB81525B1C704B88763 ] aswRvrt         C:\Windows\system32\drivers\aswRvrt.sys
17:03:42.0419 8960  aswRvrt - ok
17:03:42.0449 8960  [ 10ED1CAB84AA65983C41A11F60294C9B ] aswSnx          C:\Windows\system32\drivers\aswSnx.sys
17:03:42.0449 8960  aswSnx - ok
17:03:42.0469 8960  [ 00E5253353717D3CA12A0F5A6F9991EC ] aswSP           C:\Windows\system32\drivers\aswSP.sys
17:03:42.0479 8960  aswSP - ok
17:03:42.0479 8960  [ 29DD8E458A84171202AA4979364C30C0 ] aswTdi          C:\Windows\system32\drivers\aswTdi.sys
17:03:42.0479 8960  aswTdi - ok
17:03:42.0499 8960  [ 6359B99C955DB9F40B653159A0EED261 ] aswVmm          C:\Windows\system32\drivers\aswVmm.sys
17:03:42.0499 8960  aswVmm - ok
17:03:42.0519 8960  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:03:42.0519 8960  AsyncMac - ok
17:03:42.0549 8960  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
17:03:42.0549 8960  atapi - ok
17:03:42.0659 8960  [ B347A59887FA80074403743090CF8D14 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
17:03:42.0689 8960  athr - ok
17:03:42.0709 8960  [ 3B9014FB7CE9E20FD726321C7DB7D8B0 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
17:03:42.0709 8960  AtiHdmiService - ok
17:03:42.0839 8960  [ A29087680A1C3B049E3C05438E8FF2B8 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
17:03:42.0869 8960  atikmdag - ok
17:03:42.0899 8960  [ 7C5D273E29DCC5505469B299C6F29163 ] AtiPcie         C:\Windows\system32\DRIVERS\AtiPcie.sys
17:03:42.0899 8960  AtiPcie - ok
17:03:42.0939 8960  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:03:42.0939 8960  AudioEndpointBuilder - ok
17:03:42.0959 8960  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:03:42.0969 8960  AudioSrv - ok
17:03:43.0019 8960  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
17:03:43.0019 8960  avast! Antivirus - ok
17:03:43.0039 8960  [ C2009C6A452BD07B30D773349589B762 ] avast! Firewall C:\Program Files\AVAST Software\Avast\afwServ.exe
17:03:43.0039 8960  avast! Firewall - ok
17:03:43.0069 8960  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:03:43.0079 8960  AxInstSV - ok
17:03:43.0109 8960  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
17:03:43.0119 8960  b06bdrv - ok
17:03:43.0149 8960  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:03:43.0149 8960  b57nd60a - ok
17:03:43.0179 8960  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:03:43.0189 8960  BDESVC - ok
17:03:43.0199 8960  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:03:43.0199 8960  Beep - ok
17:03:43.0239 8960  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
17:03:43.0239 8960  BFE - ok
17:03:43.0289 8960  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
17:03:43.0289 8960  BITS - ok
17:03:43.0309 8960  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:03:43.0309 8960  blbdrive - ok
17:03:43.0339 8960  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:03:43.0339 8960  bowser - ok
17:03:43.0349 8960  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
17:03:43.0349 8960  BrFiltLo - ok
17:03:43.0369 8960  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
17:03:43.0369 8960  BrFiltUp - ok
17:03:43.0399 8960  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
17:03:43.0399 8960  Browser - ok
17:03:43.0409 8960  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:03:43.0419 8960  Brserid - ok
17:03:43.0419 8960  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:03:43.0429 8960  BrSerWdm - ok
17:03:43.0429 8960  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:03:43.0429 8960  BrUsbMdm - ok
17:03:43.0439 8960  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:03:43.0439 8960  BrUsbSer - ok
17:03:43.0459 8960  [ CF98190A94F62E405C8CB255018B2315 ] BthEnum         C:\Windows\system32\drivers\BthEnum.sys
17:03:43.0459 8960  BthEnum - ok
17:03:43.0469 8960  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
17:03:43.0469 8960  BTHMODEM - ok
17:03:43.0479 8960  [ 02DD601B708DD0667E1331FA8518E9FF ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
17:03:43.0479 8960  BthPan - ok
17:03:43.0499 8960  [ 738D0E9272F59EB7A1449C3EC118E6C4 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
17:03:43.0499 8960  BTHPORT - ok
17:03:43.0519 8960  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
17:03:43.0519 8960  bthserv - ok
17:03:43.0529 8960  [ F188B7394D81010767B6DF3178519A37 ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
17:03:43.0529 8960  BTHUSB - ok
17:03:43.0559 8960  [ 3AFF6DC496B8A8D12C867E3FC7C86FAC ] btwampfl        C:\Windows\system32\drivers\btwampfl.sys
17:03:43.0569 8960  btwampfl - ok
17:03:43.0579 8960  [ 336BBA0909B3636AB7D06A71D7B1C0DC ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
17:03:43.0579 8960  btwaudio - ok
17:03:43.0599 8960  [ 9FF58F76024D25784755B01F926B00BE ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
17:03:43.0599 8960  btwavdt - ok
17:03:43.0649 8960  [ 26A80D7ACA49E03A403806418B5FED46 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
17:03:43.0669 8960  btwdins - ok
17:03:43.0679 8960  [ B1ACFD00CDD13B48D86F46BFEC153BF9 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
17:03:43.0679 8960  btwl2cap - ok
17:03:43.0699 8960  [ EDD953D635F3AA89EF902E3F82D60D22 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
17:03:43.0699 8960  btwrchid - ok
17:03:43.0719 8960  [ ED6F48C234555552FD31AAECFD792A8C ] CBFilterFS      C:\Windows\system32\drivers\cbfltfs.sys
17:03:43.0719 8960  CBFilterFS - ok
17:03:43.0749 8960  [ 6F6F6D035FDB86AE71FFA8A57A5C7E7C ] cbfs3           C:\Windows\system32\drivers\cbfs3.sys
17:03:43.0749 8960  cbfs3 - ok
17:03:43.0759 8960  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:03:43.0759 8960  cdfs - ok
17:03:43.0799 8960  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:03:43.0799 8960  cdrom - ok
17:03:43.0829 8960  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
17:03:43.0829 8960  CertPropSvc - ok
17:03:43.0839 8960  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
17:03:43.0849 8960  circlass - ok
17:03:43.0859 8960  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
17:03:43.0859 8960  CLFS - ok
17:03:43.0919 8960  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:03:43.0919 8960  clr_optimization_v2.0.50727_32 - ok
17:03:43.0959 8960  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:03:43.0959 8960  clr_optimization_v2.0.50727_64 - ok
17:03:44.0029 8960  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:03:44.0029 8960  clr_optimization_v4.0.30319_32 - ok
17:03:44.0049 8960  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:03:44.0059 8960  clr_optimization_v4.0.30319_64 - ok
17:03:44.0069 8960  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
17:03:44.0069 8960  CmBatt - ok
17:03:44.0089 8960  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:03:44.0089 8960  cmdide - ok
17:03:44.0129 8960  [ AAFCB52FE0037207FB6FBEA070D25EFE ] CNG             C:\Windows\system32\Drivers\cng.sys
17:03:44.0139 8960  CNG - ok
17:03:44.0189 8960  [ F9A79C5B27037821112C50A9C8FB367A ] Com4QLBEx       C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
17:03:44.0189 8960  Com4QLBEx - ok
17:03:44.0219 8960  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
17:03:44.0219 8960  Compbatt - ok
17:03:44.0249 8960  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
17:03:44.0249 8960  CompositeBus - ok
17:03:44.0259 8960  COMSysApp - ok
17:03:44.0279 8960  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
17:03:44.0289 8960  crcdisk - ok
17:03:44.0319 8960  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:03:44.0319 8960  CryptSvc - ok
17:03:44.0369 8960  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:03:44.0369 8960  DcomLaunch - ok
17:03:44.0399 8960  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
17:03:44.0399 8960  defragsvc - ok
17:03:44.0429 8960  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:03:44.0429 8960  DfsC - ok
17:03:44.0459 8960  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:03:44.0469 8960  Dhcp - ok
17:03:44.0479 8960  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
17:03:44.0479 8960  discache - ok
17:03:44.0499 8960  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\DRIVERS\disk.sys
17:03:44.0509 8960  Disk - ok
17:03:44.0549 8960  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:03:44.0549 8960  Dnscache - ok
17:03:44.0579 8960  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:03:44.0579 8960  dot3svc - ok
17:03:44.0609 8960  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
17:03:44.0609 8960  DPS - ok
17:03:44.0629 8960  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:03:44.0629 8960  drmkaud - ok
17:03:44.0659 8960  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:03:44.0669 8960  DXGKrnl - ok
17:03:44.0679 8960  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
17:03:44.0679 8960  EapHost - ok
17:03:44.0749 8960  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
17:03:44.0769 8960  ebdrv - ok
17:03:44.0799 8960  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
17:03:44.0799 8960  EFS - ok
17:03:44.0869 8960  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:03:44.0879 8960  ehRecvr - ok
17:03:44.0899 8960  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
17:03:44.0909 8960  ehSched - ok
17:03:44.0939 8960  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
17:03:44.0949 8960  elxstor - ok
17:03:44.0969 8960  [ 524C79054636D2E5751169005006460B ] enecir          C:\Windows\system32\DRIVERS\enecir.sys
17:03:44.0979 8960  enecir - ok
17:03:44.0999 8960  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:03:44.0999 8960  ErrDev - ok
17:03:45.0039 8960  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
17:03:45.0039 8960  EventSystem - ok
17:03:45.0059 8960  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
17:03:45.0059 8960  exfat - ok
17:03:45.0069 8960  ezSharedSvc - ok
17:03:45.0079 8960  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:03:45.0079 8960  fastfat - ok
17:03:45.0129 8960  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
17:03:45.0129 8960  Fax - ok
17:03:45.0149 8960  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
17:03:45.0149 8960  fdc - ok
17:03:45.0169 8960  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
17:03:45.0169 8960  fdPHost - ok
17:03:45.0179 8960  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:03:45.0179 8960  FDResPub - ok
17:03:45.0199 8960  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:03:45.0199 8960  FileInfo - ok
17:03:45.0209 8960  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:03:45.0209 8960  Filetrace - ok
17:03:45.0209 8960  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
17:03:45.0209 8960  flpydisk - ok
17:03:45.0249 8960  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:03:45.0249 8960  FltMgr - ok
17:03:45.0299 8960  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
17:03:45.0309 8960  FontCache - ok
17:03:45.0369 8960  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:03:45.0369 8960  FontCache3.0.0.0 - ok
17:03:45.0389 8960  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:03:45.0389 8960  FsDepends - ok
17:03:45.0429 8960  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:03:45.0429 8960  Fs_Rec - ok
17:03:45.0459 8960  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:03:45.0459 8960  fvevol - ok
17:03:45.0469 8960  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
17:03:45.0469 8960  gagp30kx - ok
17:03:45.0539 8960  [ C1BBCE4B30B45410178EE674C818D10C ] GameConsoleService C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe
17:03:45.0549 8960  GameConsoleService - ok
17:03:45.0609 8960  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
17:03:45.0619 8960  gpsvc - ok
17:03:45.0649 8960  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:03:45.0649 8960  gupdate - ok
17:03:45.0659 8960  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:03:45.0659 8960  gupdatem - ok
17:03:45.0669 8960  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:03:45.0669 8960  hcw85cir - ok
17:03:45.0699 8960  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:03:45.0709 8960  HdAudAddService - ok
17:03:45.0739 8960  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
17:03:45.0739 8960  HDAudBus - ok
17:03:45.0759 8960  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
17:03:45.0759 8960  HidBatt - ok
17:03:45.0779 8960  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
17:03:45.0779 8960  HidBth - ok
17:03:45.0789 8960  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
17:03:45.0789 8960  HidIr - ok
17:03:45.0809 8960  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
17:03:45.0819 8960  hidserv - ok
17:03:45.0839 8960  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
17:03:45.0839 8960  HidUsb - ok
17:03:45.0879 8960  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:03:45.0879 8960  hkmsvc - ok
17:03:45.0909 8960  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:03:45.0909 8960  HomeGroupListener - ok
17:03:45.0939 8960  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:03:45.0939 8960  HomeGroupProvider - ok
17:03:45.0989 8960  [ BB1FC298BE53AAB1E110F6E786BD8AC5 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
17:03:45.0989 8960  HP Support Assistant Service - ok
17:03:46.0019 8960  [ 4E0BEC0F78096FFD6D3314B497FC49D3 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
17:03:46.0019 8960  hpdskflt - ok
17:03:46.0049 8960  [ 9AF482D058BE59CC28BCE52E7C4B747C ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
17:03:46.0049 8960  HpqKbFiltr - ok
17:03:46.0119 8960  [ 9B7EDD3FE7C211C36E921D34D18A3A0A ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
17:03:46.0119 8960  hpqwmiex - ok
17:03:46.0149 8960  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:03:46.0149 8960  HpSAMD - ok
17:03:46.0179 8960  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278 ] hpsrv           C:\Windows\system32\Hpservice.exe
17:03:46.0179 8960  hpsrv - ok
17:03:46.0229 8960  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:03:46.0239 8960  HTTP - ok
17:03:46.0279 8960  [ 4B5C07DB91A0099272FAAE732E1152BD ] hwdatacard      C:\Windows\system32\DRIVERS\ewusbmdm.sys
17:03:46.0279 8960  hwdatacard - ok
17:03:46.0299 8960  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:03:46.0309 8960  hwpolicy - ok
17:03:46.0339 8960  [ 1F24CF1F7DB6D4461AC65A86DB8E4BC2 ] hwusbfake       C:\Windows\system32\DRIVERS\ewusbfake.sys
17:03:46.0339 8960  hwusbfake - ok
17:03:46.0379 8960  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
17:03:46.0379 8960  i8042prt - ok
17:03:46.0399 8960  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:03:46.0399 8960  iaStorV - ok
17:03:46.0439 8960  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:03:46.0449 8960  idsvc - ok
17:03:46.0619 8960  [ A87261EF1546325B559374F5689CF5BC ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
17:03:46.0649 8960  igfx - ok
17:03:46.0669 8960  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
17:03:46.0669 8960  iirsp - ok
17:03:46.0699 8960  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
17:03:46.0709 8960  IKEEXT - ok
17:03:46.0719 8960  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
17:03:46.0719 8960  intelide - ok
17:03:46.0739 8960  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:03:46.0739 8960  intelppm - ok
17:03:46.0769 8960  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:03:46.0769 8960  IPBusEnum - ok
17:03:46.0789 8960  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:03:46.0799 8960  IpFilterDriver - ok
17:03:46.0829 8960  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:03:46.0829 8960  iphlpsvc - ok
17:03:46.0849 8960  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:03:46.0849 8960  IPMIDRV - ok
17:03:46.0869 8960  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:03:46.0869 8960  IPNAT - ok
17:03:46.0879 8960  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:03:46.0879 8960  IRENUM - ok
17:03:46.0919 8960  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:03:46.0919 8960  isapnp - ok
17:03:46.0939 8960  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:03:46.0939 8960  iScsiPrt - ok
17:03:46.0949 8960  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
17:03:46.0949 8960  kbdclass - ok
17:03:46.0959 8960  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
17:03:46.0959 8960  kbdhid - ok
17:03:46.0969 8960  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
17:03:46.0979 8960  KeyIso - ok
17:03:46.0999 8960  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:03:46.0999 8960  KSecDD - ok
17:03:47.0019 8960  [ 7EFB9333E4ECCE6AE4AE9D777D9E553E ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:03:47.0019 8960  KSecPkg - ok
17:03:47.0029 8960  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:03:47.0029 8960  ksthunk - ok
17:03:47.0039 8960  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:03:47.0049 8960  KtmRm - ok
17:03:47.0079 8960  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
17:03:47.0079 8960  LanmanServer - ok
17:03:47.0109 8960  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:03:47.0119 8960  LanmanWorkstation - ok
17:03:47.0159 8960  [ 2238B91AC1A12CC6CC4C4FED41258B2A ] LightScribeService C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
17:03:47.0159 8960  LightScribeService - ok
17:03:47.0169 8960  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:03:47.0169 8960  lltdio - ok
17:03:47.0189 8960  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:03:47.0189 8960  lltdsvc - ok
17:03:47.0209 8960  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:03:47.0209 8960  lmhosts - ok
17:03:47.0219 8960  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
17:03:47.0219 8960  LSI_FC - ok
17:03:47.0229 8960  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
17:03:47.0229 8960  LSI_SAS - ok
17:03:47.0239 8960  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
17:03:47.0239 8960  LSI_SAS2 - ok
17:03:47.0259 8960  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
17:03:47.0259 8960  LSI_SCSI - ok
17:03:47.0269 8960  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
17:03:47.0269 8960  luafv - ok
17:03:47.0299 8960  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
17:03:47.0299 8960  MBAMProtector - ok
17:03:47.0349 8960  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
17:03:47.0359 8960  MBAMScheduler - ok
17:03:47.0389 8960  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
17:03:47.0389 8960  MBAMService - ok
17:03:47.0409 8960  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:03:47.0419 8960  Mcx2Svc - ok
17:03:47.0439 8960  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
17:03:47.0439 8960  megasas - ok
17:03:47.0449 8960  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
17:03:47.0449 8960  MegaSR - ok
17:03:47.0459 8960  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
17:03:47.0469 8960  MMCSS - ok
17:03:47.0529 8960  [ 24CFF4697702785872313159EC2434A2 ] Mobile Broadband HL Service C:\ProgramData\MobileBrServ\mbbservice.exe
17:03:47.0529 8960  Mobile Broadband HL Service - ok
17:03:47.0569 8960  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
17:03:47.0569 8960  Modem - ok
17:03:47.0589 8960  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:03:47.0589 8960  monitor - ok
17:03:47.0619 8960  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:03:47.0619 8960  mouclass - ok
17:03:47.0629 8960  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:03:47.0629 8960  mouhid - ok
17:03:47.0669 8960  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:03:47.0669 8960  mountmgr - ok
17:03:47.0729 8960  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
17:03:47.0739 8960  MozillaMaintenance - ok
17:03:47.0769 8960  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:03:47.0779 8960  mpio - ok
17:03:47.0789 8960  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:03:47.0789 8960  mpsdrv - ok
17:03:47.0839 8960  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:03:47.0859 8960  MpsSvc - ok
17:03:47.0889 8960  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:03:47.0889 8960  MRxDAV - ok
17:03:47.0919 8960  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:03:47.0919 8960  mrxsmb - ok
17:03:47.0929 8960  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:03:47.0939 8960  mrxsmb10 - ok
17:03:47.0959 8960  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:03:47.0959 8960  mrxsmb20 - ok
17:03:47.0979 8960  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:03:47.0979 8960  msahci - ok
17:03:48.0009 8960  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:03:48.0009 8960  msdsm - ok
17:03:48.0029 8960  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
17:03:48.0029 8960  MSDTC - ok
17:03:48.0049 8960  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:03:48.0049 8960  Msfs - ok
17:03:48.0059 8960  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:03:48.0059 8960  mshidkmdf - ok
17:03:48.0089 8960  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:03:48.0089 8960  msisadrv - ok
17:03:48.0109 8960  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:03:48.0119 8960  MSiSCSI - ok
17:03:48.0119 8960  msiserver - ok
17:03:48.0139 8960  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:03:48.0139 8960  MSKSSRV - ok
17:03:48.0159 8960  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:03:48.0159 8960  MSPCLOCK - ok
17:03:48.0159 8960  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:03:48.0159 8960  MSPQM - ok
17:03:48.0189 8960  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:03:48.0189 8960  MsRPC - ok
17:03:48.0199 8960  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
17:03:48.0199 8960  mssmbios - ok
17:03:48.0219 8960  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:03:48.0219 8960  MSTEE - ok
17:03:48.0239 8960  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
17:03:48.0239 8960  MTConfig - ok
17:03:48.0259 8960  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
17:03:48.0259 8960  Mup - ok
17:03:48.0299 8960  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
17:03:48.0309 8960  napagent - ok
17:03:48.0329 8960  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:03:48.0329 8960  NativeWifiP - ok
17:03:48.0369 8960  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:03:48.0379 8960  NDIS - ok
17:03:48.0389 8960  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:03:48.0399 8960  NdisCap - ok
17:03:48.0409 8960  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:03:48.0409 8960  NdisTapi - ok
17:03:48.0439 8960  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:03:48.0439 8960  Ndisuio - ok
17:03:48.0469 8960  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:03:48.0479 8960  NdisWan - ok
17:03:48.0509 8960  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:03:48.0509 8960  NDProxy - ok
17:03:48.0529 8960  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:03:48.0529 8960  NetBIOS - ok
17:03:48.0559 8960  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:03:48.0559 8960  NetBT - ok
17:03:48.0579 8960  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
17:03:48.0579 8960  Netlogon - ok
17:03:48.0609 8960  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
17:03:48.0609 8960  Netman - ok
17:03:48.0629 8960  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:03:48.0629 8960  NetMsmqActivator - ok
17:03:48.0639 8960  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:03:48.0639 8960  NetPipeActivator - ok
17:03:48.0649 8960  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
17:03:48.0649 8960  netprofm - ok
17:03:48.0659 8960  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:03:48.0659 8960  NetTcpActivator - ok
17:03:48.0659 8960  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:03:48.0659 8960  NetTcpPortSharing - ok
17:03:48.0779 8960  [ 64428DFDAF6E88366CB51F45A79C5F69 ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
17:03:48.0809 8960  netw5v64 - ok
17:03:48.0819 8960  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
17:03:48.0819 8960  nfrd960 - ok
17:03:48.0859 8960  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:03:48.0869 8960  NlaSvc - ok
17:03:48.0889 8960  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:03:48.0889 8960  Npfs - ok
17:03:48.0899 8960  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
17:03:48.0899 8960  nsi - ok
17:03:48.0919 8960  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:03:48.0919 8960  nsiproxy - ok
17:03:48.0969 8960  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:03:48.0979 8960  Ntfs - ok
17:03:48.0999 8960  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
17:03:48.0999 8960  Null - ok
17:03:49.0019 8960  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:03:49.0019 8960  nvraid - ok
17:03:49.0059 8960  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:03:49.0059 8960  nvstor - ok
17:03:49.0089 8960  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:03:49.0099 8960  nv_agp - ok
17:03:49.0149 8960  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
17:03:49.0149 8960  odserv - ok
17:03:49.0189 8960  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:03:49.0189 8960  ohci1394 - ok
17:03:49.0219 8960  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:03:49.0219 8960  ose - ok
17:03:49.0239 8960  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:03:49.0249 8960  p2pimsvc - ok
17:03:49.0269 8960  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
17:03:49.0279 8960  p2psvc - ok
17:03:49.0299 8960  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
17:03:49.0299 8960  Parport - ok
17:03:49.0329 8960  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:03:49.0329 8960  partmgr - ok
17:03:49.0339 8960  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:03:49.0349 8960  PcaSvc - ok
17:03:49.0359 8960  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
17:03:49.0369 8960  pci - ok
17:03:49.0379 8960  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
17:03:49.0379 8960  pciide - ok
17:03:49.0399 8960  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
17:03:49.0399 8960  pcmcia - ok
17:03:49.0409 8960  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:03:49.0419 8960  pcw - ok
17:03:49.0439 8960  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:03:49.0449 8960  PEAUTH - ok
17:03:49.0519 8960  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:03:49.0529 8960  PerfHost - ok
17:03:49.0589 8960  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
17:03:49.0599 8960  pla - ok
17:03:49.0629 8960  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:03:49.0639 8960  PlugPlay - ok
17:03:49.0659 8960  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:03:49.0659 8960  PNRPAutoReg - ok
17:03:49.0679 8960  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:03:49.0689 8960  PNRPsvc - ok
17:03:49.0709 8960  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:03:49.0719 8960  PolicyAgent - ok
17:03:49.0739 8960  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
17:03:49.0749 8960  Power - ok
17:03:49.0769 8960  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:03:49.0779 8960  PptpMiniport - ok
17:03:49.0799 8960  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\DRIVERS\processr.sys
17:03:49.0799 8960  Processor - ok
17:03:49.0829 8960  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:03:49.0829 8960  ProfSvc - ok
17:03:49.0839 8960  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
17:03:49.0849 8960  ProtectedStorage - ok
17:03:49.0879 8960  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:03:49.0879 8960  Psched - ok
17:03:49.0919 8960  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
17:03:49.0929 8960  ql2300 - ok
17:03:49.0939 8960  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
17:03:49.0939 8960  ql40xx - ok
17:03:49.0969 8960  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
17:03:49.0979 8960  QWAVE - ok
17:03:49.0989 8960  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:03:49.0989 8960  QWAVEdrv - ok
17:03:50.0009 8960  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:03:50.0009 8960  RasAcd - ok
17:03:50.0039 8960  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:03:50.0039 8960  RasAgileVpn - ok
17:03:50.0049 8960  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
17:03:50.0059 8960  RasAuto - ok
17:03:50.0089 8960  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:03:50.0089 8960  Rasl2tp - ok
17:03:50.0129 8960  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
17:03:50.0139 8960  RasMan - ok
17:03:50.0149 8960  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:03:50.0159 8960  RasPppoe - ok
17:03:50.0169 8960  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:03:50.0169 8960  RasSstp - ok
17:03:50.0189 8960  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:03:50.0189 8960  rdbss - ok
17:03:50.0209 8960  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
17:03:50.0209 8960  rdpbus - ok
17:03:50.0229 8960  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:03:50.0229 8960  RDPCDD - ok
17:03:50.0239 8960  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:03:50.0239 8960  RDPENCDD - ok
17:03:50.0249 8960  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:03:50.0249 8960  RDPREFMP - ok
17:03:50.0279 8960  [ 313F68E1A3E6345A4F47A36B07062F34 ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:03:50.0279 8960  RdpVideoMiniport - ok
17:03:50.0309 8960  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:03:50.0319 8960  RDPWD - ok
17:03:50.0349 8960  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:03:50.0349 8960  rdyboost - ok
17:03:50.0369 8960  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:03:50.0369 8960  RemoteAccess - ok
17:03:50.0379 8960  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:03:50.0389 8960  RemoteRegistry - ok
17:03:50.0409 8960  [ 3DD798846E2C28102B922C56E71B7932 ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
17:03:50.0419 8960  RFCOMM - ok
17:03:50.0479 8960  [ 498EB62A160674E793FA40FD65390625 ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
17:03:50.0479 8960  RichVideo - ok
17:03:50.0509 8960  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:03:50.0519 8960  RpcEptMapper - ok
17:03:50.0539 8960  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
17:03:50.0539 8960  RpcLocator - ok
17:03:50.0579 8960  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
17:03:50.0589 8960  RpcSs - ok
17:03:50.0599 8960  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:03:50.0599 8960  rspndr - ok
17:03:50.0649 8960  [ BD9BA262CF26EFE9A9867EBE32D12164 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
17:03:50.0649 8960  RTL8167 - ok
17:03:50.0669 8960  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
17:03:50.0669 8960  SamSs - ok
17:03:50.0699 8960  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:03:50.0699 8960  sbp2port - ok
17:03:50.0719 8960  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:03:50.0729 8960  SCardSvr - ok
17:03:50.0759 8960  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:03:50.0759 8960  scfilter - ok
17:03:50.0809 8960  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
17:03:50.0819 8960  Schedule - ok
17:03:50.0849 8960  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:03:50.0859 8960  SCPolicySvc - ok
17:03:50.0889 8960  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\drivers\sdbus.sys
17:03:50.0889 8960  sdbus - ok
17:03:50.0919 8960  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:03:50.0919 8960  SDRSVC - ok
17:03:50.0929 8960  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:03:50.0929 8960  secdrv - ok
17:03:50.0959 8960  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
17:03:50.0969 8960  seclogon - ok
17:03:50.0979 8960  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
17:03:50.0979 8960  SENS - ok
17:03:50.0989 8960  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:03:50.0989 8960  SensrSvc - ok
17:03:51.0009 8960  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
17:03:51.0009 8960  Serenum - ok
17:03:51.0039 8960  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:03:51.0039 8960  Serial - ok
17:03:51.0049 8960  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
17:03:51.0049 8960  sermouse - ok
17:03:51.0089 8960  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
17:03:51.0089 8960  SessionEnv - ok
17:03:51.0119 8960  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:03:51.0119 8960  sffdisk - ok
17:03:51.0129 8960  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:03:51.0129 8960  sffp_mmc - ok
17:03:51.0139 8960  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:03:51.0139 8960  sffp_sd - ok
17:03:51.0159 8960  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
17:03:51.0159 8960  sfloppy - ok
17:03:51.0199 8960  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:03:51.0209 8960  SharedAccess - ok
17:03:51.0249 8960  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:03:51.0259 8960  ShellHWDetection - ok
17:03:51.0269 8960  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
17:03:51.0269 8960  SiSRaid2 - ok
17:03:51.0289 8960  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
17:03:51.0289 8960  SiSRaid4 - ok
17:03:51.0319 8960  [ DD0443BC6CC78A19FD399817F8C51401 ] SmartDefragDriver C:\Windows\system32\Drivers\SmartDefragDriver.sys
17:03:51.0319 8960  SmartDefragDriver - ok
17:03:51.0349 8960  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:03:51.0349 8960  Smb - ok
17:03:51.0369 8960  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:03:51.0369 8960  SNMPTRAP - ok
17:03:51.0379 8960  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:03:51.0379 8960  spldr - ok
17:03:51.0419 8960  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
17:03:51.0429 8960  Spooler - ok
17:03:51.0539 8960  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
17:03:51.0569 8960  sppsvc - ok
17:03:51.0589 8960  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:03:51.0589 8960  sppuinotify - ok
17:03:51.0619 8960  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:03:51.0629 8960  srv - ok
17:03:51.0669 8960  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:03:51.0669 8960  srv2 - ok
17:03:51.0689 8960  [ 0C4540311E11664B245A263E1154CEF8 ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
17:03:51.0689 8960  SrvHsfHDA - ok
17:03:51.0729 8960  [ 02071D207A9858FBE3A48CBFD59C4A04 ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
17:03:51.0739 8960  SrvHsfV92 - ok
17:03:51.0749 8960  [ 18E40C245DBFAF36FD0134A7EF2DF396 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
17:03:51.0759 8960  SrvHsfWinac - ok
17:03:51.0799 8960  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:03:51.0799 8960  srvnet - ok
17:03:51.0819 8960  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:03:51.0829 8960  SSDPSRV - ok
17:03:51.0839 8960  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:03:51.0839 8960  SstpSvc - ok
17:03:51.0929 8960  [ 897C1273B7D74E19DDA7EBF495BF0133 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
17:03:51.0939 8960  STacSV - ok
17:03:51.0959 8960  Steam Client Service - ok
17:03:51.0979 8960  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
17:03:51.0979 8960  stexstor - ok
17:03:51.0999 8960  [ A883937A943DCE237B19E4A5558FCBE6 ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
17:03:52.0009 8960  STHDA - ok
17:03:52.0049 8960  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
17:03:52.0049 8960  stisvc - ok
17:03:52.0089 8960  [ FDE3A9750B975796974E66F8F730F2F6 ] SWDUMon         C:\Windows\system32\DRIVERS\SWDUMon.sys
17:03:52.0089 8960  SWDUMon - ok
17:03:52.0119 8960  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
17:03:52.0119 8960  swenum - ok
17:03:52.0129 8960  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
17:03:52.0139 8960  swprv - ok
17:03:52.0179 8960  [ AC3CC98B1BDB6540021D3FFB105AC2B9 ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
17:03:52.0179 8960  SynTP - ok
17:03:52.0239 8960  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
17:03:52.0249 8960  SysMain - ok
17:03:52.0279 8960  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:03:52.0279 8960  TabletInputService - ok
17:03:52.0319 8960  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:03:52.0319 8960  TapiSrv - ok
17:03:52.0339 8960  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
17:03:52.0349 8960  TBS - ok
17:03:52.0419 8960  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:03:52.0449 8960  Tcpip - ok
17:03:52.0499 8960  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:03:52.0519 8960  TCPIP6 - ok
17:03:52.0559 8960  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:03:52.0559 8960  tcpipreg - ok
17:03:52.0569 8960  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:03:52.0569 8960  TDPIPE - ok
17:03:52.0599 8960  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:03:52.0599 8960  TDTCP - ok
17:03:52.0619 8960  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:03:52.0619 8960  tdx - ok
17:03:52.0639 8960  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
17:03:52.0639 8960  TermDD - ok
17:03:52.0679 8960  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
17:03:52.0689 8960  TermService - ok
17:03:52.0729 8960  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
17:03:52.0739 8960  Themes - ok
17:03:52.0759 8960  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
17:03:52.0769 8960  THREADORDER - ok
17:03:52.0779 8960  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
17:03:52.0789 8960  TrkWks - ok
17:03:52.0819 8960  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:03:52.0829 8960  TrustedInstaller - ok
17:03:52.0859 8960  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:03:52.0859 8960  tssecsrv - ok
17:03:52.0889 8960  [ 17C6B51CBCCDED95B3CC14E22791F85E ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:03:52.0889 8960  TsUsbFlt - ok
17:03:52.0919 8960  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:03:52.0919 8960  tunnel - ok
17:03:52.0939 8960  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
17:03:52.0939 8960  uagp35 - ok
17:03:52.0969 8960  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:03:52.0969 8960  udfs - ok
17:03:52.0999 8960  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:03:52.0999 8960  UI0Detect - ok
17:03:53.0039 8960  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:03:53.0039 8960  uliagpkx - ok
17:03:53.0059 8960  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\drivers\umbus.sys
17:03:53.0059 8960  umbus - ok
17:03:53.0079 8960  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
17:03:53.0079 8960  UmPass - ok
17:03:53.0099 8960  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
17:03:53.0109 8960  upnphost - ok
17:03:53.0129 8960  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:03:53.0129 8960  usbccgp - ok
17:03:53.0159 8960  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:03:53.0159 8960  usbcir - ok
17:03:53.0179 8960  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
17:03:53.0179 8960  usbehci - ok
17:03:53.0199 8960  [ 44D9C773FEBFF10593B50DDFC2D6BC27 ] usbfilter       C:\Windows\system32\DRIVERS\usbfilter.sys
17:03:53.0199 8960  usbfilter - ok
17:03:53.0209 8960  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:03:53.0209 8960  usbhub - ok
17:03:53.0219 8960  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\DRIVERS\usbohci.sys
17:03:53.0219 8960  usbohci - ok
17:03:53.0239 8960  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
17:03:53.0239 8960  usbprint - ok
17:03:53.0259 8960  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:03:53.0259 8960  USBSTOR - ok
17:03:53.0279 8960  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:03:53.0279 8960  usbuhci - ok
17:03:53.0289 8960  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
17:03:53.0299 8960  usbvideo - ok
17:03:53.0319 8960  [ 7B28E2FBE75115660FAB31079C0A9F29 ] usb_rndisx      C:\Windows\system32\drivers\usb8023x.sys
17:03:53.0329 8960  usb_rndisx - ok
17:03:53.0349 8960  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
17:03:53.0349 8960  UxSms - ok
17:03:53.0359 8960  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
17:03:53.0369 8960  VaultSvc - ok
17:03:53.0389 8960  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:03:53.0389 8960  vdrvroot - ok
17:03:53.0429 8960  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
17:03:53.0439 8960  vds - ok
17:03:53.0449 8960  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:03:53.0459 8960  vga - ok
17:03:53.0469 8960  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:03:53.0469 8960  VgaSave - ok
17:03:53.0489 8960  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:03:53.0499 8960  vhdmp - ok
17:03:53.0519 8960  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:03:53.0519 8960  viaide - ok
17:03:53.0529 8960  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:03:53.0529 8960  volmgr - ok
17:03:53.0579 8960  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:03:53.0579 8960  volmgrx - ok
17:03:53.0599 8960  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:03:53.0599 8960  volsnap - ok
17:03:53.0609 8960  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
17:03:53.0609 8960  vsmraid - ok
17:03:53.0679 8960  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
17:03:53.0699 8960  VSS - ok
17:03:53.0709 8960  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
17:03:53.0709 8960  vwifibus - ok
17:03:53.0719 8960  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
17:03:53.0719 8960  vwififlt - ok
17:03:53.0739 8960  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
17:03:53.0749 8960  W32Time - ok
17:03:53.0769 8960  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
17:03:53.0769 8960  WacomPen - ok
17:03:53.0789 8960  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:03:53.0789 8960  WANARP - ok
17:03:53.0789 8960  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:03:53.0789 8960  Wanarpv6 - ok
17:03:53.0859 8960  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:03:53.0869 8960  WatAdminSvc - ok
17:03:53.0939 8960  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
17:03:53.0959 8960  wbengine - ok
17:03:53.0969 8960  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:03:53.0979 8960  WbioSrvc - ok
17:03:54.0009 8960  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:03:54.0019 8960  wcncsvc - ok
17:03:54.0039 8960  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:03:54.0049 8960  WcsPlugInService - ok
17:03:54.0059 8960  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\DRIVERS\wd.sys
17:03:54.0059 8960  Wd - ok
17:03:54.0109 8960  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:03:54.0129 8960  Wdf01000 - ok
17:03:54.0139 8960  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:03:54.0149 8960  WdiServiceHost - ok
17:03:54.0149 8960  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:03:54.0159 8960  WdiSystemHost - ok
17:03:54.0189 8960  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
17:03:54.0189 8960  WebClient - ok
17:03:54.0209 8960  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:03:54.0209 8960  Wecsvc - ok
17:03:54.0209 8960  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:03:54.0219 8960  wercplsupport - ok
17:03:54.0229 8960  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:03:54.0229 8960  WerSvc - ok
17:03:54.0239 8960  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
17:03:54.0249 8960  WfpLwf - ok
17:03:54.0259 8960  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:03:54.0259 8960  WIMMount - ok
17:03:54.0279 8960  WinDefend - ok
17:03:54.0289 8960  WinHttpAutoProxySvc - ok
17:03:54.0339 8960  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:03:54.0339 8960  Winmgmt - ok
17:03:54.0399 8960  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
17:03:54.0419 8960  WinRM - ok
17:03:54.0449 8960  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:03:54.0459 8960  Wlansvc - ok
17:03:54.0589 8960  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
17:03:54.0599 8960  wlidsvc - ok
17:03:54.0629 8960  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
17:03:54.0629 8960  WmiAcpi - ok
17:03:54.0649 8960  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] WmiApSrv        C:\Windows\System32\wbem\WmiApSrv.exe
17:03:54.0649 8960  WmiApSrv - ok
17:03:54.0669 8960  WMPNetworkSvc - ok
17:03:54.0689 8960  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:03:54.0699 8960  WPCSvc - ok
17:03:54.0729 8960  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:03:54.0729 8960  WPDBusEnum - ok
17:03:54.0739 8960  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:03:54.0739 8960  ws2ifsl - ok
17:03:54.0749 8960  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
17:03:54.0759 8960  wscsvc - ok
17:03:54.0759 8960  WSearch - ok
17:03:54.0829 8960  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:03:54.0839 8960  wuauserv - ok
17:03:54.0869 8960  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:03:54.0869 8960  WudfPf - ok
17:03:54.0889 8960  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:03:54.0889 8960  WUDFRd - ok
17:03:54.0929 8960  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:03:54.0929 8960  wudfsvc - ok
17:03:54.0969 8960  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:03:54.0969 8960  WwanSvc - ok
17:03:55.0079 8960  [ DD0042F0C3B606A6A8B92D49AFB18AD6 ] YahooAUService  C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
17:03:55.0079 8960  YahooAUService - ok
17:03:55.0109 8960  [ B3EEACF62445E24FBB2CD4B0FB4DB026 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
17:03:55.0119 8960  yukonw7 - ok
17:03:55.0129 8960  ================ Scan global ===============================
17:03:55.0149 8960  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
17:03:55.0179 8960  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:03:55.0199 8960  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
17:03:55.0219 8960  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
17:03:55.0239 8960  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
17:03:55.0249 8960  [Global] - ok
17:03:55.0249 8960  ================ Scan MBR ==================================
17:03:55.0259 8960  [ 09F52C118B409187B9FBD6B3C25EA5CE ] \Device\Harddisk0\DR0
17:03:55.0589 8960  \Device\Harddisk0\DR0 - ok
17:03:55.0589 8960  ================ Scan VBR ==================================
17:03:55.0589 8960  [ AB7429D24DFAED9D459F0BE6832B688B ] \Device\Harddisk0\DR0\Partition1
17:03:55.0589 8960  \Device\Harddisk0\DR0\Partition1 - ok
17:03:55.0619 8960  [ 72AA391A9D00C5E8212DF42BA8AA036F ] \Device\Harddisk0\DR0\Partition2
17:03:55.0619 8960  \Device\Harddisk0\DR0\Partition2 - ok
17:03:55.0649 8960  [ 67EA90AA2C3F30DEF3651DCE454DC0A3 ] \Device\Harddisk0\DR0\Partition3
17:03:55.0649 8960  \Device\Harddisk0\DR0\Partition3 - ok
17:03:55.0669 8960  [ 3EF0EFEA9228B268A48FEF282C408E46 ] \Device\Harddisk0\DR0\Partition4
17:03:55.0669 8960  \Device\Harddisk0\DR0\Partition4 - ok
17:03:55.0669 8960  ============================================================
17:03:55.0669 8960  Scan finished
17:03:55.0669 8960  ============================================================
17:03:55.0679 9052  Detected object count: 0
17:03:55.0679 9052  Actual detected object count: 0
17:05:20.0474 4312  Deinitialize success
 



#9 compbuff

compbuff
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 19 June 2013 - 11:46 AM

3. AdwCleaner

 

# AdwCleaner v2.303 - Logfile created 06/19/2013 at 13:45:01
# Updated 08/06/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Marcus - MARCUS-PC
# Boot Mode : Normal
# Running from : C:\Users\Marcus\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****

Stopped & Deleted : CltMngSvc

***** [Files / Folders] *****

File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml
File Deleted : C:\Program Files (x86)\Mozilla Firefox\searchplugins\babylon.xml
File Deleted : C:\user.js
File Deleted : C:\Users\Marcus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_apps.conduit.com_0.localstorage
File Deleted : C:\Users\Marcus\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_search.conduit.com_0.localstorage
File Deleted : C:\Users\Marcus\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\o45rnubg.default\searchplugins\spamfreesearch.xml
File Deleted : C:\Users\Public\Desktop\YourFile Downloader.lnk
Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
Folder Deleted : C:\Program Files (x86)\Common Files\ParetoLogic
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\Coupon Companion Plugin
Folder Deleted : C:\Program Files (x86)\ExpressFiles
Folder Deleted : C:\Program Files (x86)\express-files
Folder Deleted : C:\Program Files (x86)\Ilivid
Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Folder Deleted : C:\Program Files (x86)\MyWebFace_5a
Folder Deleted : C:\Program Files (x86)\ParetoLogic
Folder Deleted : C:\Program Files (x86)\SearchProtect
Folder Deleted : C:\Program Files (x86)\VideoDownloadConverter_4z
Folder Deleted : C:\Program Files (x86)\Yontoo
Folder Deleted : C:\Program Files (x86)\yourfiledownloader
Folder Deleted : C:\ProgramData\APN
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\Broowise2suavve
Folder Deleted : C:\ProgramData\InstallMate
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Broowise2suavve
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\ProgramData\SoftSafe
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Users\Marcus\AppData\Local\Conduit
Folder Deleted : C:\Users\Marcus\AppData\Local\Coupon Companion Plugin
Folder Deleted : C:\Users\Marcus\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcpomjdkajjnjebpbgonnjomichphjfc
Folder Deleted : C:\Users\Marcus\AppData\Local\Google\Chrome\User Data\Default\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Folder Deleted : C:\Users\Marcus\AppData\Local\Ilivid Player
Folder Deleted : C:\Users\Marcus\AppData\Local\MyWebFace_5a
Folder Deleted : C:\Users\Marcus\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Marcus\AppData\Local\VideoDownloadConverter_4z
Folder Deleted : C:\Users\Marcus\AppData\Local\Zoom_Downloader
Folder Deleted : C:\Users\Marcus\AppData\LocalLow\blekko
Folder Deleted : C:\Users\Marcus\AppData\LocalLow\Broowise2suavve
Folder Deleted : C:\Users\Marcus\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Marcus\AppData\LocalLow\express-files
Folder Deleted : C:\Users\Marcus\AppData\LocalLow\MyWebFace_5a
Folder Deleted : C:\Users\Marcus\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Marcus\AppData\LocalLow\VideoDownloadConverter_4z
Folder Deleted : C:\Users\Marcus\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Marcus\AppData\Roaming\DriverCure
Folder Deleted : C:\Users\Marcus\AppData\Roaming\ExpressFiles
Folder Deleted : C:\Users\Marcus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ParetoLogic
Folder Deleted : C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\o45rnubg.default\extensions\4zffxtbr@VideoDownloadConverter_4z.com
Folder Deleted : C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\o45rnubg.default\extensions\5affxtbr@MyWebFace_5a.com
Folder Deleted : C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\o45rnubg.default\extensions\plugin@yontoo.com
Folder Deleted : C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\o45rnubg.default\extensions\staged
Folder Deleted : C:\Users\Marcus\AppData\Roaming\NCdownloader
Folder Deleted : C:\Users\Marcus\AppData\Roaming\ParetoLogic
Folder Deleted : C:\Users\Marcus\AppData\Roaming\SearchProtect
Folder Deleted : C:\Users\Marcus\AppData\Roaming\Yontoo
Folder Deleted : C:\Users\Marcus\AppData\Roaming\yourfiledownloader

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKCU\Software\AppDataLow\Software\express-files
Key Deleted : HKCU\Software\AppDataLow\Software\MyWebFace_5a
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\BabylonToolbar
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Cr_Installer
Key Deleted : HKCU\Software\ExpressFiles
Key Deleted : HKCU\Software\Google\Chrome\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Key Deleted : HKCU\Software\IGearSettings
Key Deleted : HKCU\Software\InstalledBrowserExtensions
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BAE35237-8D73-44D0-905C-8A95EA1E7E69}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EECF410C-006C-4A05-AD13-6741A0814DBF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7AD1455F-5ACB-4A56-80AD-A1EDD5A2174B}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A7A6995D-6EE1-4FD1-A258-49395D5BF99C}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BAE35237-8D73-44D0-905C-8A95EA1E7E69}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EECF410C-006C-4A05-AD13-6741A0814DBF}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\YourFileDownloader
Key Deleted : HKCU\Software\SearchProtect
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\YahooPartnerToolbar
Key Deleted : HKCU\Software\YourFileDownloader
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1005247F-A178-490A-8DC3-6BAF09EA427B}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{35C1605E-438B-4D64-AAB1-8885F097A9B1}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL
Key Deleted : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0021804.BHO
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0021804.BHO.1
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0021804.Sandbox
Key Deleted : HKLM\SOFTWARE\Classes\CrossriderApp0021804.Sandbox.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3176921
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers
Key Deleted : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\ExpressFiles
Key Deleted : HKLM\Software\express-files
Key Deleted : HKLM\Software\InstallIQ
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\blekko_1311013_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\blekko_1311013_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\ConduitInstaller_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\iLividSetupV1_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\wajam_install_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WajamUpdater_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{11111111-1111-1111-1111-110211181104}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1F6F39C1-00A8-4752-A94C-D0EA92D978B6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{41B7C739-4708-42A5-85CA-EEDE4C816578}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5354D921-3F52-47C5-938D-77A2FB6DEFE7}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{71144427-1368-4D18-8DC9-2AE3CC4C4F83}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{75CDADBD-7A6C-4CED-9EA7-93ED462CCF71}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AD1455F-5ACB-4A56-80AD-A1EDD5A2174B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{91244959-96FF-47D5-A989-ACE3CC7DB0B1}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{99E1F6FD-2E94-4CF6-8344-1BA63CD3BD9B}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C522512A-9C2C-4DE5-9F63-976B560FEF14}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D749CF46-ABB0-4A52-BAF6-34461B8DD8CE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EC6FAB8B-2417-4B2B-813B-E70BBBADF666}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{ED345812-2722-4DCA-9976-D01832DB44EE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@MyWebFace_5a.com/Plugin
Key Deleted : HKLM\Software\MyWebFace_5a
Key Deleted : HKLM\Software\SearchProtect
Key Deleted : HKLM\Software\SP Global
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7AD1455F-5ACB-4A56-80AD-A1EDD5A2174B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7CD74AFF-3433-4E34-92E2-D98DFDB30754}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\iibmmjhgclhlahmjniokmhleigemjpbh
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{11111111-1111-1111-1111-110211181104}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{21111111-1111-1111-1111-110211181104}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2263BE11-ACB7-49D9-8313-6B1D5CC42FAA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3C4D7454-61B2-491F-B7BF-47F2FEE6B5FF}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6372C122-1E82-494A-9D5A-DE31ED303036}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7425D477-1B89-446A-BF6C-6687CB269A9B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{768AF043-5C5B-408B-A3E0-671B60E3FCD3}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{97FC5555-8BDC-40EA-8DE2-B1E46B9EA629}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F0999591-2EDB-4A3E-907E-337B1591F643}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11111111-1111-1111-1111-110211181104}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{14D02517-C8BE-4735-A344-3C8366C77AA0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{312F84FB-8970-4FD3-BDDB-7012EAC4AFC9}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{88AC3CB6-596B-4217-964C-B6757EF9602D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B1DF253A-9E7A-480D-B6A5-7A435B520DBB}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C547C6C2-561B-4169-A2A5-20BA771CA93B}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{739126B3-1B80-4F9F-8D59-312A19633E1A}_is1
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{C3F3165C-74D3-6FDB-3274-14FDA8698CFA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\express-files Toolbar
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\SearchProtect
Key Deleted : HKLM\Software\YourFileDownloader
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}
Key Deleted : HKLM\SOFTWARE\Tarma Installer
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{88AC3CB6-596B-4217-964C-B6757EF9602D}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{8040829D-1177-46E2-9157-8282438B79C7}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{88AC3CB6-596B-4217-964C-B6757EF9602D}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{93A3111F-4F74-4ED8-895E-D9708497629E}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{88AC3CB6-596B-4217-964C-B6757EF9602D}]
Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [5affxtbr@MyWebFace_5a.com]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{88AC3CB6-596B-4217-964C-B6757EF9602D}]
Value Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar [{EF99BD32-C1FB-11D2-892F-0090271D4F88}]

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16611

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\dknj16lx.default-1371482158493\prefs.js

[OK] File is clean.

File : C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\o45rnubg.default\prefs.js

C:\Users\Marcus\AppData\Roaming\Mozilla\Firefox\Profiles\o45rnubg.default\user.js ... Deleted !

Deleted : user_pref("browser.startup.homepage", "hxxp://blekko.com/ws/?source=5f97ddbe&tbp=homepage&u=70f5bf39[...]
Deleted : user_pref("browser.search.selectedEngine", "blekko");

-\\ Google Chrome v27.0.1453.110

File : C:\Users\Marcus\AppData\Local\Google\Chrome\User Data\Default\Preferences

Deleted [l.3093] : urls_to_restore_on_startup = [ "hxxp://blekko.com/ws/?source=5f97ddbe&tbp=homepage&u=70f5bf39[...]

*************************

AdwCleaner[S1].txt - [19569 octets] - [19/06/2013 13:45:01]

########## EOF - C:\AdwCleaner[S1].txt - [19630 octets] ##########



#10 compbuff

compbuff
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 19 June 2013 - 11:48 AM

4. ESET

 

C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\SearchProtect\ffprotect\application.js    Win32/Conduit.SearchProtect.A application    
C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\SearchProtect\ffprotect\nsprotector.js    Win32/Conduit.SearchProtect.A application    
C:\$Recycle.Bin\S-1-5-21-3581586168-3875862106-1370833555-1001\$RVJ9QI7.exe    a variant of Win32/ExpressFiles.B application    cleaned by deleting - quarantined
C:\Users\Marcus\Fansadox collection 324 - Beyond Sanity.exe    Win32/InstalleRex.E application    cleaned by deleting - quarantined
C:\Users\Marcus\fansadox_collection_240_war_games_pdf_downloader_gb_99260.exe    a variant of Win32/ExpressFiles.B application    cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8OZKXLCV\wsconduit__166[1].exe    a variant of Win32/Amonetize.B application    cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\8OZKXLCV\yontoosetup[1].exe    multiple threats    cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Local\Temp\SecondStepInstaller.exe    multiple threats    cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Local\Temp\toolbar49805253.exe    multiple threats    cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Local\Temp\uninstall198981412.exe    a variant of Win32/ExpressFiles.B application    cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Local\Temp\uninstall198996918.exe    a variant of Win32/ExpressFiles.A application    cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Local\Temp\update802812.exe    a variant of Win32/ExpressFiles.B application    cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Local\Temp\Bunndle\BunndleOfferManager.dll    a variant of Win32/Bunndle application    cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Local\Temp\{395D20D4-11F5-4FCE-AD25-59D7E2BE0222}\Addons\wsconduit__166.exe    a variant of Win32/Amonetize.B application    cleaned by deleting - quarantined
C:\Users\Marcus\AppData\Local\Updater21804\Updater21804.exe    a variant of Win32/Toolbar.CrossRider.C application    cleaned by deleting - quarantined
C:\Users\Marcus\Documents\cbsidlm-tr1_10a-DiskMax-BP-10912587.exe    Win32/DownloadAdmin.G application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\avira_free_antivirus_en.exe    a variant of Win32/Bundled.Toolbar.Ask application    deleted - quarantined
C:\Users\Marcus\Downloads\cbsidlm-tr1_10a-Free_Window_Registry_Repair-ORG-10606555.exe    Win32/DownloadAdmin.G application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\cbsidlm-tr1_13-Cloudfogger-ORG-75710395.exe    Win32/DownloadAdmin.G application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\Fansadox_337_-_Predondo_-_Harem_Horror_Hell_4_pdf.exe    Win32/Adware.1ClickDownload.W application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\Fansadox_Collection_223_Mobsters_Vendetta.pdf_downloader_gb_99260(1).exe    a variant of Win32/ExpressFiles.B application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\Fansadox_Collection_223_Mobsters_Vendetta.pdf_downloader_gb_99260.exe    a variant of Win32/ExpressFiles.B application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\Fansadox_collection_322_-_Babysitting_Horror_Games.exe    Win32/Adware.1ClickDownload.W application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\iLividSetupV1.exe    Win32/Toolbar.SearchSuite application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\serial_key_for_avast_internet_security_7.0.1466.rar_downloader_224.exe    a variant of Win32/YourFileDownloader application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\serial_key_for_avast_internet_security_7.0.1466_downloader_224.exe    a variant of Win32/YourFileDownloader application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\SoftonicDownloader_for_bittorrent.exe    a variant of Win32/SoftonicDownloader.E application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\SoftonicDownloader_for_inpaint.exe    a variant of Win32/SoftonicDownloader.E application    cleaned by deleting - quarantined
C:\Users\Marcus\Downloads\Subtitles13.exe    Win32/InstallMonetizer.AF application    cleaned by deleting - quarantined
C:\Users\Marcus\Music\cbsidlm-cbsi109-Advanced_SystemCare-BP-10407614.exe    probably a variant of Win32/CNETInstaller.A application    cleaned by deleting - quarantined
C:\Users\Marcus\Music\cbsidlm-tr1_10a-Belarc_Advisor-ORG-10007277.exe    Win32/DownloadAdmin.G application    cleaned by deleting - quarantined
C:\Users\Marcus\Music\cbsidlm-tr1_10a-Launchy-ORG-10655308.exe    Win32/DownloadAdmin.G application    cleaned by deleting - quarantined
C:\Users\Marcus\Pictures\Taboo\dog_sex_comics_downloader_gb_99260.exe    a variant of Win32/ExpressFiles.B application    cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Roaming\SearchProtect\ffprotect\application.js    Win32/Conduit.SearchProtect.A application    cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Roaming\SearchProtect\ffprotect\nsprotector.js    Win32/Conduit.SearchProtect.A application    cleaned by deleting - quarantined

 

I will await your advice in conclusion to those log reports. I've refrained from adding or uninstalling any applications other than the downoaded tools required for this. As an additional note, after carring out the above my RegCurePro application seemed to have disappeared.

 

Your help is much appreciated and I will await your reply.

 

Marcus



#11 compbuff

compbuff
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 19 June 2013 - 11:51 AM

In footnote to the above, I've noticed all infected files were deleted and quarantined on running ESET except the first two from the Conduit Search Protect Application.



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,190 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:40 PM

Posted 19 June 2013 - 06:01 PM

Hello they were removed at the end of the ESET log.

Looks like Conduit is removed also.

Reg cleaners are usually removed as they do more harm then good in most cases. CDid you pay for that ,it can be put back.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 compbuff

compbuff
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 19 June 2013 - 06:34 PM

Hello Boopme,

 

Thank you for your prompt reply.

 

Yes I did remove my Reg cleaner, and unfortunately yes, I did buy it till reading about how reg cleaners could do more harm than good generally, in an article. My PC seems to be running smoothly and I have not seemed to be getting Windows explorer crashing and restarting so far, touch wood.

 

The only thing I'm wondering about is that I get an error saying the Bluetooth stack services cannot be started. It seems to show the Bluetooth is running but I'm wondering otherwise, as I had intended to buy a Mifi mobile broadband which may require bluetooth to discover the device. Any ideas?

 

Again, I vey much appreciate your help on the my windows explorer issue.



#14 compbuff

compbuff
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 20 June 2013 - 12:35 PM

Hi Boopme,

 

My Windows explorer problem is not resolved. I bought a new external hard drive and set it up, added the driver and restarted my PC. Since then I've been getting the same problem, my Windows explorer crashing and restarting with regularity. Also I could not even safely remove my external hard drive  no matter what I tried. Windows explorer seems to be holding onto a handle. Whatever I did I could not safely close it and had to unplug it from the port, much to my dismay. I would appreciate further help here on both issues.

 

Thank you



#15 compbuff

compbuff
  • Topic Starter

  • Members
  • 117 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:40 AM

Posted 20 June 2013 - 07:36 PM

Further to the above, I am wondering whether to do a Windows repair installion from recovery, to avoid doing a reinstall which would be a last resort. Unless I'm missing the point here, if the infections were cleaned previously using ESET but the issue remained, albeit after a reboot, are there any other options remaining other than to perhaps do a Windows repair installation?






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users