Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

vafmusic...how to remove this spyware(?)


  • Please log in to reply
8 replies to this topic

#1 thebirdster

thebirdster

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:09:44 PM

Posted 15 August 2013 - 01:29 PM

hello, I tried to dowload ibooks for pc and ended up getting the vafmusic (spyware) thing. the tool bar and searchbar are there and I am getting tons of ads and ad videos popping up.  I ran the malwarebytes thingy but the search bar and fake warnings for my supposed out of date "you name its" keep popping up. I am quite computer challenged so simple english and step by step instructions please. thank you so much!!!

 

EDIT Moved to Am I Infected...No logs posted~ boopme


Edited by boopme, 15 August 2013 - 02:09 PM.


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:44 PM

Posted 15 August 2013 - 02:07 PM

Hello have you done this yet?  Uninstall Process


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 thebirdster

thebirdster
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:09:44 PM

Posted 15 August 2013 - 08:54 PM

hello, thank you... yes I'm pretty sure I did uninstall everything VAFmusic but the search bar is still there and ads/ad videos still keep popping up and i keep getting taken to new pages as well as told I need to update stuff... firefox, adobe, etc... constantly.



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:44 PM

Posted 15 August 2013 - 09:57 PM

Ok then we'll do these.....
 
Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
 
Please Download TDSSkiller
Launch it.
Click on change parameters-Select TDLFS file system
Click on "Scan".
Please post the LOG report(log file should be in your C drive)
Do not change the default options on scan results.
 
Please download AdwCleaner by Xplode onto your desktop.
Close all open programs and internet browsers.
Double click on adwcleaner.exe to run the tool.
Click on Delete.
Confirm each time with Ok.
You will be prompted to restart your computer. A text file will open after the restart.
Please post the contents of that logfile with your next reply.
You can find the logfile at C:\AdwCleaner[S1].txt as well.
 
Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 thebirdster

thebirdster
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:09:44 PM

Posted 18 August 2013 - 08:00 AM

ok i think i ran all of these correctly.....

 

#1)

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Sara (administrator) on 16-08-2013 at 12:29:53
Running from "C:\Users\Sara\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================



========================= IP Configuration: ================================

Atheros AR5B97 Wireless Network Adapter = Wireless Network Connection (Connected)
Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled


popd
# End of IPv4 configuration



Windows IP Configuration

   Host Name . . . . . . . . . . . . : Sara-PC
   Primary Dns Suffix  . . . . . . . :
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No

Wireless LAN adapter Wireless Network Connection:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Atheros AR5B97 Wireless Network Adapter
   Physical Address. . . . . . . . . : 94-39-E5-19-41-42
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::f47b:fc07:4ead:4224%12(Preferred)
   IPv4 Address. . . . . . . . . . . : 192.168.1.25(Preferred)
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Friday, August 16, 2013 12:25:23 PM
   Lease Expires . . . . . . . . . . : Saturday, August 17, 2013 12:25:23 PM
   Default Gateway . . . . . . . . . : 192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 311704037
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-15-FF-D5-BC-B8-70-F4-F0-71-76
   DNS Servers . . . . . . . . . . . : 192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : hsd1.mi.comcast.net.
   Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet
   Physical Address. . . . . . . . . : B8-70-F4-F0-71-76
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter isatap.{365659ED-ECA5-423C-A315-5DFC2D2ACFA2}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Reusable ISATAP Interface {D8BC15E4-18F4-4E4F-BA32-EB7ADCAB3DA2}:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Teredo Tunneling Pseudo-Interface:

   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:4137:9e76:1861:3eaa:3f57:fee6(Preferred)
   Link-local IPv6 Address . . . . . : fe80::1861:3eaa:3f57:fee6%13(Preferred)
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled

Tunnel adapter isatap.hsd1.mi.comcast.net.:

   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . :
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #3
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.1

DNS request timed out.
    timeout was 2 seconds.
Name:    google.com
Address:  2607:f8b0:4009:804::1001


Pinging google.com [173.194.46.38] with 32 bytes of data:
Reply from 173.194.46.38: bytes=32 time=23ms TTL=54
Reply from 173.194.46.38: bytes=32 time=23ms TTL=54

Ping statistics for 173.194.46.38:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 23ms, Maximum = 23ms, Average = 23ms
Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.138.253.109
      98.139.183.24
      206.190.36.45


Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=60ms TTL=50
Request timed out.

Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),
Approximate round trip times in milli-seconds:
    Minimum = 60ms, Maximum = 60ms, Average = 60ms

Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time=9ms TTL=128
Reply from 127.0.0.1: bytes=32 time=6ms TTL=128

Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 6ms, Maximum = 9ms, Average = 7ms
===========================================================================
Interface List
 12...94 39 e5 19 41 42 ......Atheros AR5B97 Wireless Network Adapter
 11...b8 70 f4 f0 71 76 ......Broadcom NetLink ™ Gigabit Ethernet
  1...........................Software Loopback Interface 1
 14...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter
 15...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 13...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
 16...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #3
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.25     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.25    281
     192.168.1.25  255.255.255.255         On-link      192.168.1.25    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.25    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.25    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.25    281
===========================================================================
Persistent Routes:
  None

IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 13     58 2001::/32                On-link
 13    306 2001:0:4137:9e76:1861:3eaa:3f57:fee6/128
                                    On-link
 12    281 fe80::/64                On-link
 13    306 fe80::/64                On-link
 13    306 fe80::1861:3eaa:3f57:fee6/128
                                    On-link
 12    281 fe80::f47b:fc07:4ead:4224/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    306 ff00::/8                 On-link
 12    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 08 C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [232448] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [171392] (Microsoft Corp.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [326144] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (08/16/2013 10:04:39 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (08/15/2013 02:07:45 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (08/12/2013 10:49:43 AM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005

Error: (08/11/2013 08:57:24 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2013 07:28:45 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2013 07:24:22 PM) (Source: CVHSVC) (User: )
Description: Information only.
(Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (08/10/2013 07:14:32 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2013 05:51:08 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2013 05:29:26 PM) (Source: Application Hang) (User: )
Description: The program SoftwareUpdate.exe version 2.1.3.127 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: f0c

Start Time: 01ce9572bb4ec3c2

Termination Time: 183

Application Path: C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe

Report Id: db99136d-0203-11e3-843d-b870f4f07176

Error: (08/09/2013 11:22:42 PM) (Source: Customer Experience Improvement Program) (User: )
Description: 80004005


System errors:
=============
Error: (08/16/2013 10:04:32 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Browser service.

Error: (08/15/2013 10:05:52 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SysMain service.

Error: (08/11/2013 09:23:24 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.

Error: (08/10/2013 05:17:41 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.

Error: (08/09/2013 10:35:58 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Browser service.

Error: (08/08/2013 01:36:17 AM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.

Error: (08/06/2013 04:40:28 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Browser service.

Error: (08/06/2013 02:41:03 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.

Error: (08/03/2013 02:57:01 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.

Error: (08/02/2013 04:58:22 PM) (Source: Service Control Manager) (User: )
Description: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Wlansvc service.


Microsoft Office Sessions:
=========================
Error: (08/16/2013 10:04:39 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (08/15/2013 02:07:45 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (08/12/2013 10:49:43 AM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005

Error: (08/11/2013 08:57:24 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2013 07:28:45 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2013 07:24:22 PM) (Source: CVHSVC)(User: )
Description: (Patch task for {90140011-0066-0409-0000-0000000FF1CE}): DownloadLatest Failed: There are currently no active network connections. Background Intelligent Transfer Service (BITS) will try again when an adapter is connected.

Error: (08/10/2013 07:14:32 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2013 05:51:08 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (08/10/2013 05:29:26 PM) (Source: Application Hang)(User: )
Description: SoftwareUpdate.exe2.1.3.127f0c01ce9572bb4ec3c2183C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exedb99136d-0203-11e3-843d-b870f4f07176

Error: (08/09/2013 11:22:42 PM) (Source: Customer Experience Improvement Program)(User: )
Description: 80004005


=========================== Installed Programs ============================

Adobe Flash Player 11 ActiveX (Version: 11.7.700.202)
Adobe Flash Player 11 Plugin (Version: 11.7.700.202)
Adobe Reader X (10.1.7) MUI (Version: 10.1.7)
Adobe Shockwave Player 11.6 (Version: 11.6.4.634)
Amazon Kindle
Apple Software Update (Version: 2.1.3.127)
Backup Manager V3 (Version: 3.0.0.90)
Best Buy pc app (Version: 3.2.2.0)
Best Buy pc app (Version: 3.2.545.3)
Broadcom Card Reader Driver Installer (Version: 14.8.2.2)
Broadcom NetLink Controller (Version: 14.8.4.1)
Canon MG5200 series MP Drivers
CyberLink PowerDVD 10 (Version: 10.0.2912.52)
D3DX10 (Version: 15.4.2368.0902)
DefaultTab (Version: 2.2.7.0)
ETDWare PS/2-X64 8.0.6.3_WHQL (Version: 8.0.6.3)
Galerie de photos Windows Live (Version: 15.4.3502.0922)
Gateway MyBackup (Version: 3.0.0.90)
Gateway Power Management (Version: 6.00.3008)
Gateway Recovery Management (Version: 5.00.3504)
Gateway Registration (Version: 1.04.3503)
Gateway ScreenSaver (Version: 1.1.1022.2010)
Gateway Social Networks (Version: 3.0.3106)
Gateway Updater (Version: 1.02.3500)
Identity Card (Version: 1.00.3501)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1144)
Intel® Processor Graphics (Version: 8.15.10.2418)
Intel® Rapid Storage Technology (Version: 10.5.0.1026)
Java 7 Update 10 (64-bit) (Version: 7.0.100)
Java 7 Update 21 (Version: 7.0.210)
Java Auto Updater (Version: 2.1.9.5)
JavaFX 2.1.1 (Version: 2.1.1)
Junk Mail filter update (Version: 15.4.3502.0922)
Launch Manager (Version: 5.1.7)
LessTabs (Version: 1.7.1.0)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Mesh Runtime (Version: 15.4.5722.2)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Click-to-Run 2010 (Version: 14.0.4763.1000)
Microsoft Office Starter 2010 - English (Version: 14.0.5131.5000)
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mozilla Firefox 21.0 (x86 en-US) (Version: 21.0)
Mozilla Maintenance Service (Version: 21.0)
MSVCRT (Version: 15.4.2862.0708)
MSVCRT_amd64 (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero Control Center 10 (Version: 10.2.11100.1.1)
Nero ControlCenter 10 Help (CHM) (Version: 10.5.10000)
Nero Core Components 10 (Version: 2.0.18100.8.8)
Nero DiscSpeed 10 (Version: 6.2.10500.2.100)
Nero DiscSpeed 10 Help (CHM) (Version: 10.5.10000)
Nero Express 10 (Version: 10.2.12000.21.100)
Nero Express 10 Help (CHM) (Version: 10.5.10200)
Nero Multimedia Suite 10 Essentials (Version: 10.5.10300)
Nero StartSmart 10 (Version: 10.2.11600.14.100)
Nero StartSmart 10 Help (CHM) (Version: 10.5.10000)
Nero Update (Version: 1.0.0018)
Norton Security Suite (Version: 20.4.0.40)
QuickTime (Version: 7.69.80.9)
Realtek High Definition Audio Driver (Version: 6.0.1.6329)
Skype Click to Call (Version: 6.8.12323)
Skype™ 6.3 (Version: 6.3.107)
swMSM (Version: 12.0.0.1)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Video Web Camera (Version: 1.0.1904)
VisionBuilder
Welcome Center (Version: 1.02.3503)
Windows Live (Version: 15.4.3502.0922)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3538.0513)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3538.0513)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)

========================= Memory info: ===================================

Percentage of memory in use: 46%
Total physical RAM: 1899.86 MB
Available physical RAM: 1012.91 MB
Total Pagefile: 3799.72 MB
Available Pagefile: 2325.82 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.68 MB

========================= Partitions: =====================================

1 Drive c: (Gateway) (Fixed) (Total:284.99 GB) (Free:245.18 GB) NTFS

========================= Users: ========================================

User accounts for \\SARA-PC

Administrator            Guest                    Sara                     


**** End of log ****



#6 thebirdster

thebirdster
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:09:44 PM

Posted 18 August 2013 - 08:03 AM

#2)

12:37:46.0811 0x07d4  TDSS rootkit removing tool 2.9.2.0 Aug 15 2013 16:44:29
12:37:47.0961 0x07d4  ============================================================
12:37:47.0961 0x07d4  Current date / time: 2013/08/16 12:37:47.0961
12:37:47.0961 0x07d4  SystemInfo:
12:37:47.0961 0x07d4  
12:37:47.0961 0x07d4  OS Version: 6.1.7601 ServicePack: 1.0
12:37:47.0961 0x07d4  Product type: Workstation
12:37:47.0961 0x07d4  ComputerName: SARA-PC
12:37:47.0961 0x07d4  UserName: Sara
12:37:47.0961 0x07d4  Windows directory: C:\Windows
12:37:47.0961 0x07d4  System windows directory: C:\Windows
12:37:47.0961 0x07d4  Running under WOW64
12:37:47.0961 0x07d4  Processor architecture: Intel x64
12:37:47.0961 0x07d4  Number of processors: 2
12:37:47.0961 0x07d4  Page size: 0x1000
12:37:47.0961 0x07d4  Boot type: Normal boot
12:37:47.0961 0x07d4  ============================================================
12:37:49.0371 0x07d4  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:37:49.0381 0x07d4  ============================================================
12:37:49.0381 0x07d4  \Device\Harddisk0\DR0:
12:37:49.0381 0x07d4  MBR partitions:
12:37:49.0381 0x07d4  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1A00800, BlocksNum 0x32000
12:37:49.0381 0x07d4  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A32800, BlocksNum 0x239FB800
12:37:49.0381 0x07d4  ============================================================
12:37:49.0441 0x07d4  C: <-> \Device\Harddisk0\DR0\Partition2
12:37:49.0441 0x07d4  ============================================================
12:37:49.0441 0x07d4  Initialize success
12:37:49.0441 0x07d4  ============================================================
12:38:21.0540 0x11c0  ============================================================
12:38:21.0540 0x11c0  Scan started
12:38:21.0540 0x11c0  Mode: Manual; TDLFS;
12:38:21.0540 0x11c0  ============================================================
12:38:23.0050 0x11c0  ================ Scan system memory ========================
12:38:23.0050 0x11c0  System memory - ok
12:38:23.0050 0x11c0  ================ Scan services =============================
12:38:23.0250 0x11c0  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
12:38:23.0280 0x11c0  1394ohci - ok
12:38:23.0320 0x11c0  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:38:23.0330 0x11c0  ACPI - ok
12:38:23.0350 0x11c0  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
12:38:23.0390 0x11c0  AcpiPmi - ok
12:38:23.0500 0x11c0  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:38:23.0520 0x11c0  AdobeARMservice - ok
12:38:23.0720 0x11c0  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:38:23.0720 0x11c0  AdobeFlashPlayerUpdateSvc - ok
12:38:23.0800 0x11c0  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:38:23.0820 0x11c0  adp94xx - ok
12:38:23.0860 0x11c0  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:38:23.0900 0x11c0  adpahci - ok
12:38:23.0940 0x11c0  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:38:23.0950 0x11c0  adpu320 - ok
12:38:24.0000 0x11c0  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:38:24.0000 0x11c0  AeLookupSvc - ok
12:38:24.0070 0x11c0  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
12:38:24.0080 0x11c0  AFD - ok
12:38:24.0140 0x11c0  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:38:24.0150 0x11c0  agp440 - ok
12:38:24.0160 0x11c0  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
12:38:24.0160 0x11c0  ALG - ok
12:38:24.0200 0x11c0  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:38:24.0210 0x11c0  aliide - ok
12:38:24.0240 0x11c0  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
12:38:24.0240 0x11c0  amdide - ok
12:38:24.0290 0x11c0  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
12:38:24.0330 0x11c0  AmdK8 - ok
12:38:24.0350 0x11c0  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
12:38:24.0350 0x11c0  AmdPPM - ok
12:38:24.0370 0x11c0  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:38:24.0380 0x11c0  amdsata - ok
12:38:24.0410 0x11c0  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
12:38:24.0420 0x11c0  amdsbs - ok
12:38:24.0430 0x11c0  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:38:24.0430 0x11c0  amdxata - ok
12:38:24.0470 0x11c0  AntiLog32 - ok
12:38:24.0510 0x11c0  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
12:38:24.0520 0x11c0  AppID - ok
12:38:24.0550 0x11c0  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:38:24.0550 0x11c0  AppIDSvc - ok
12:38:24.0592 0x11c0  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
12:38:24.0592 0x11c0  Appinfo - ok
12:38:24.0632 0x11c0  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
12:38:24.0652 0x11c0  arc - ok
12:38:24.0682 0x11c0  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:38:24.0682 0x11c0  arcsas - ok
12:38:24.0712 0x11c0  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:38:24.0712 0x11c0  AsyncMac - ok
12:38:24.0732 0x11c0  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
12:38:24.0732 0x11c0  atapi - ok
12:38:24.0832 0x11c0  [ C8679A07267F030704168E45E27C3D43 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
12:38:24.0862 0x11c0  athr - ok
12:38:24.0914 0x11c0  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:38:24.0934 0x11c0  AudioEndpointBuilder - ok
12:38:24.0954 0x11c0  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
12:38:24.0964 0x11c0  AudioSrv - ok
12:38:25.0004 0x11c0  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:38:25.0004 0x11c0  AxInstSV - ok
12:38:25.0054 0x11c0  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
12:38:25.0064 0x11c0  b06bdrv - ok
12:38:25.0094 0x11c0  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
12:38:25.0114 0x11c0  b57nd60a - ok
12:38:25.0154 0x11c0  [ A424CB46A145E5AABF15621550976DF2 ] b57xdbd         C:\Windows\system32\DRIVERS\b57xdbd.sys
12:38:25.0164 0x11c0  b57xdbd - ok
12:38:25.0174 0x11c0  [ BE4E6FD5A898812B85D5817AD9754A9F ] b57xdmp         C:\Windows\system32\DRIVERS\b57xdmp.sys
12:38:25.0174 0x11c0  b57xdmp - ok
12:38:25.0224 0x11c0  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:38:25.0224 0x11c0  BDESVC - ok
12:38:25.0254 0x11c0  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:38:25.0254 0x11c0  Beep - ok
12:38:25.0314 0x11c0  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
12:38:25.0324 0x11c0  BFE - ok
12:38:25.0534 0x11c0  [ 6E10DB69DB1AA96207F4B14B18FF12F8 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130715.001\BHDrvx64.sys
12:38:25.0554 0x11c0  BHDrvx64 - ok
12:38:25.0594 0x11c0  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
12:38:25.0624 0x11c0  BITS - ok
12:38:25.0644 0x11c0  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
12:38:25.0664 0x11c0  blbdrive - ok
12:38:25.0694 0x11c0  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:38:25.0704 0x11c0  bowser - ok
12:38:25.0734 0x11c0  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
12:38:25.0734 0x11c0  BrFiltLo - ok
12:38:25.0744 0x11c0  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
12:38:25.0744 0x11c0  BrFiltUp - ok
12:38:25.0785 0x11c0  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
12:38:25.0785 0x11c0  Browser - ok
12:38:25.0815 0x11c0  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
12:38:25.0835 0x11c0  Brserid - ok
12:38:25.0835 0x11c0  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
12:38:25.0845 0x11c0  BrSerWdm - ok
12:38:25.0875 0x11c0  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
12:38:25.0875 0x11c0  BrUsbMdm - ok
12:38:25.0885 0x11c0  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
12:38:25.0925 0x11c0  BrUsbSer - ok
12:38:25.0985 0x11c0  [ 0970D8B7151E9113BF8D44CE2E954DF7 ] bScsiMSa        C:\Windows\system32\DRIVERS\bScsiMSa.sys
12:38:25.0985 0x11c0  bScsiMSa - ok
12:38:26.0005 0x11c0  [ 0C1EEE5AF32402D306874B110DE237EC ] bScsiSDa        C:\Windows\system32\DRIVERS\bScsiSDa.sys
12:38:26.0005 0x11c0  bScsiSDa - ok
12:38:26.0025 0x11c0  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:38:26.0025 0x11c0  BTHMODEM - ok
12:38:26.0075 0x11c0  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
12:38:26.0075 0x11c0  bthserv - ok
12:38:26.0155 0x11c0  [ 56685951208AC81CF923B9B08BEDF3B7 ] ccSet_N360      C:\Windows\system32\drivers\N360x64\1404000.028\ccSetx64.sys
12:38:26.0165 0x11c0  ccSet_N360 - ok
12:38:26.0205 0x11c0  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:38:26.0215 0x11c0  cdfs - ok
12:38:26.0255 0x11c0  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:38:26.0255 0x11c0  cdrom - ok
12:38:26.0295 0x11c0  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
12:38:26.0295 0x11c0  CertPropSvc - ok
12:38:26.0345 0x11c0  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
12:38:26.0345 0x11c0  circlass - ok
12:38:26.0365 0x11c0  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
12:38:26.0365 0x11c0  CLFS - ok
12:38:26.0425 0x11c0  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:38:26.0425 0x11c0  clr_optimization_v2.0.50727_32 - ok
12:38:26.0455 0x11c0  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:38:26.0485 0x11c0  clr_optimization_v2.0.50727_64 - ok
12:38:26.0565 0x11c0  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:38:26.0575 0x11c0  clr_optimization_v4.0.30319_32 - ok
12:38:26.0595 0x11c0  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:38:26.0605 0x11c0  clr_optimization_v4.0.30319_64 - ok
12:38:26.0635 0x11c0  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
12:38:26.0635 0x11c0  CmBatt - ok
12:38:26.0655 0x11c0  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:38:26.0655 0x11c0  cmdide - ok
12:38:26.0685 0x11c0  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
12:38:26.0695 0x11c0  CNG - ok
12:38:26.0705 0x11c0  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
12:38:26.0705 0x11c0  Compbatt - ok
12:38:26.0715 0x11c0  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
12:38:26.0725 0x11c0  CompositeBus - ok
12:38:26.0735 0x11c0  COMSysApp - ok
12:38:26.0765 0x11c0  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:38:26.0775 0x11c0  crcdisk - ok
12:38:26.0815 0x11c0  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:38:26.0815 0x11c0  CryptSvc - ok
12:38:26.0915 0x11c0  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
12:38:26.0925 0x11c0  cvhsvc - ok
12:38:26.0975 0x11c0  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:38:26.0985 0x11c0  DcomLaunch - ok
12:38:27.0025 0x11c0  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
12:38:27.0035 0x11c0  defragsvc - ok
12:38:27.0075 0x11c0  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:38:27.0075 0x11c0  DfsC - ok
12:38:27.0115 0x11c0  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:38:27.0125 0x11c0  Dhcp - ok
12:38:27.0135 0x11c0  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
12:38:27.0135 0x11c0  discache - ok
12:38:27.0165 0x11c0  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
12:38:27.0165 0x11c0  Disk - ok
12:38:27.0195 0x11c0  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:38:27.0195 0x11c0  Dnscache - ok
12:38:27.0205 0x11c0  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:38:27.0205 0x11c0  dot3svc - ok
12:38:27.0225 0x11c0  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
12:38:27.0225 0x11c0  DPS - ok
12:38:27.0255 0x11c0  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:38:27.0265 0x11c0  drmkaud - ok
12:38:27.0335 0x11c0  [ 9DD3A22F804697606C2B7FF9E912FF6B ] DsiWMIService   C:\Program Files (x86)\Launch Manager\dsiwmis.exe
12:38:27.0345 0x11c0  DsiWMIService - ok
12:38:27.0385 0x11c0  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:38:27.0395 0x11c0  DXGKrnl - ok
12:38:27.0425 0x11c0  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
12:38:27.0425 0x11c0  EapHost - ok
12:38:27.0545 0x11c0  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
12:38:27.0615 0x11c0  ebdrv - ok
12:38:27.0685 0x11c0  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
12:38:27.0695 0x11c0  eeCtrl - ok
12:38:27.0725 0x11c0  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
12:38:27.0735 0x11c0  EFS - ok
12:38:27.0845 0x11c0  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:38:27.0865 0x11c0  ehRecvr - ok
12:38:27.0925 0x11c0  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
12:38:27.0935 0x11c0  ehSched - ok
12:38:28.0025 0x11c0  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:38:28.0035 0x11c0  elxstor - ok
12:38:28.0205 0x11c0  [ 48425C93B6F36529707206E4FA680CF3 ] ePowerSvc       C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
12:38:28.0225 0x11c0  ePowerSvc - ok
12:38:28.0285 0x11c0  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
12:38:28.0295 0x11c0  EraserUtilRebootDrv - ok
12:38:28.0325 0x11c0  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:38:28.0325 0x11c0  ErrDev - ok
12:38:28.0405 0x11c0  esgiguard - ok
12:38:28.0445 0x11c0  [ DBAA0C650C9549DC5C599D1E81DEDAAD ] ETD             C:\Windows\system32\DRIVERS\ETD.sys
12:38:28.0445 0x11c0  ETD - ok
12:38:28.0495 0x11c0  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
12:38:28.0505 0x11c0  EventSystem - ok
12:38:28.0525 0x11c0  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
12:38:28.0525 0x11c0  exfat - ok
12:38:28.0555 0x11c0  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:38:28.0555 0x11c0  fastfat - ok
12:38:28.0595 0x11c0  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
12:38:28.0605 0x11c0  Fax - ok
12:38:28.0635 0x11c0  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
12:38:28.0635 0x11c0  fdc - ok
12:38:28.0685 0x11c0  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
12:38:28.0685 0x11c0  fdPHost - ok
12:38:28.0695 0x11c0  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:38:28.0695 0x11c0  FDResPub - ok
12:38:28.0725 0x11c0  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:38:28.0725 0x11c0  FileInfo - ok
12:38:28.0745 0x11c0  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:38:28.0745 0x11c0  Filetrace - ok
12:38:28.0775 0x11c0  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
12:38:28.0775 0x11c0  flpydisk - ok
12:38:28.0795 0x11c0  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:38:28.0795 0x11c0  FltMgr - ok
12:38:28.0875 0x11c0  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
12:38:28.0895 0x11c0  FontCache - ok
12:38:28.0955 0x11c0  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:38:28.0955 0x11c0  FontCache3.0.0.0 - ok
12:38:28.0985 0x11c0  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:38:28.0985 0x11c0  FsDepends - ok
12:38:29.0025 0x11c0  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:38:29.0025 0x11c0  Fs_Rec - ok
12:38:29.0075 0x11c0  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:38:29.0085 0x11c0  fvevol - ok
12:38:29.0115 0x11c0  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:38:29.0125 0x11c0  gagp30kx - ok
12:38:29.0165 0x11c0  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
12:38:29.0175 0x11c0  gpsvc - ok
12:38:29.0235 0x11c0  [ C9B2D1D3F86FD3673EF847DEF73B6F9E ] GREGService     C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe
12:38:29.0235 0x11c0  GREGService - ok
12:38:29.0275 0x11c0  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
12:38:29.0275 0x11c0  hcw85cir - ok
12:38:29.0305 0x11c0  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:38:29.0315 0x11c0  HdAudAddService - ok
12:38:29.0345 0x11c0  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
12:38:29.0345 0x11c0  HDAudBus - ok
12:38:29.0365 0x11c0  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
12:38:29.0365 0x11c0  HidBatt - ok
12:38:29.0375 0x11c0  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:38:29.0375 0x11c0  HidBth - ok
12:38:29.0405 0x11c0  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:38:29.0405 0x11c0  HidIr - ok
12:38:29.0435 0x11c0  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
12:38:29.0435 0x11c0  hidserv - ok
12:38:29.0475 0x11c0  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:38:29.0485 0x11c0  HidUsb - ok
12:38:29.0515 0x11c0  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:38:29.0525 0x11c0  hkmsvc - ok
12:38:29.0535 0x11c0  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:38:29.0535 0x11c0  HomeGroupListener - ok
12:38:29.0575 0x11c0  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:38:29.0575 0x11c0  HomeGroupProvider - ok
12:38:29.0605 0x11c0  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:38:29.0605 0x11c0  HpSAMD - ok
12:38:29.0645 0x11c0  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:38:29.0655 0x11c0  HTTP - ok
12:38:29.0675 0x11c0  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:38:29.0675 0x11c0  hwpolicy - ok
12:38:29.0685 0x11c0  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:38:29.0695 0x11c0  i8042prt - ok
12:38:29.0725 0x11c0  [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
12:38:29.0725 0x11c0  iaStor - ok
12:38:29.0815 0x11c0  [ E79A8E33BD136D14BAE1FA20EB2EF124 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
12:38:29.0825 0x11c0  IAStorDataMgrSvc - ok
12:38:29.0885 0x11c0  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:38:29.0895 0x11c0  iaStorV - ok
12:38:29.0955 0x11c0  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:38:29.0965 0x11c0  idsvc - ok
12:38:30.0105 0x11c0  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130809.001\IDSvia64.sys
12:38:30.0135 0x11c0  IDSVia64 - ok
12:38:30.0475 0x11c0  [ 9937600A1584FF00565D5379EB4C9EDB ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
12:38:30.0775 0x11c0  igfx - ok
12:38:30.0825 0x11c0  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:38:30.0825 0x11c0  iirsp - ok
12:38:30.0875 0x11c0  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
12:38:30.0895 0x11c0  IKEEXT - ok
12:38:30.0995 0x11c0  [ B60ACCD29F8FAFC4A6344CD2BD5CA3A5 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:38:31.0075 0x11c0  IntcAzAudAddService - ok
12:38:31.0115 0x11c0  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
12:38:31.0165 0x11c0  IntcDAud - ok
12:38:31.0195 0x11c0  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
12:38:31.0225 0x11c0  intelide - ok
12:38:31.0265 0x11c0  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:38:31.0275 0x11c0  intelppm - ok
12:38:31.0325 0x11c0  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:38:31.0345 0x11c0  IPBusEnum - ok
12:38:31.0365 0x11c0  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:38:31.0375 0x11c0  IpFilterDriver - ok
12:38:31.0425 0x11c0  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:38:31.0435 0x11c0  iphlpsvc - ok
12:38:31.0445 0x11c0  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
12:38:31.0455 0x11c0  IPMIDRV - ok
12:38:31.0485 0x11c0  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:38:31.0525 0x11c0  IPNAT - ok
12:38:31.0565 0x11c0  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:38:31.0565 0x11c0  IRENUM - ok
12:38:31.0585 0x11c0  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:38:31.0605 0x11c0  isapnp - ok
12:38:31.0645 0x11c0  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
12:38:31.0655 0x11c0  iScsiPrt - ok
12:38:31.0745 0x11c0  [ 455B75C19BF3F1F2EE3AC10E1169826C ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
12:38:31.0755 0x11c0  k57nd60a - ok
12:38:31.0795 0x11c0  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
12:38:31.0795 0x11c0  kbdclass - ok
12:38:31.0855 0x11c0  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
12:38:31.0855 0x11c0  kbdhid - ok
12:38:31.0865 0x11c0  keycrypt - ok
12:38:31.0975 0x11c0  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
12:38:31.0975 0x11c0  KeyIso - ok
12:38:32.0015 0x11c0  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:38:32.0015 0x11c0  KSecDD - ok
12:38:32.0055 0x11c0  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:38:32.0065 0x11c0  KSecPkg - ok
12:38:32.0095 0x11c0  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:38:32.0095 0x11c0  ksthunk - ok
12:38:32.0145 0x11c0  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:38:32.0155 0x11c0  KtmRm - ok
12:38:32.0225 0x11c0  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:38:32.0235 0x11c0  LanmanServer - ok
12:38:32.0285 0x11c0  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:38:32.0295 0x11c0  LanmanWorkstation - ok
12:38:32.0375 0x11c0  [ B705C7097F9A0EC941D02DCE7C7D426C ] Live Updater Service C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
12:38:32.0375 0x11c0  Live Updater Service - ok
12:38:32.0415 0x11c0  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:38:32.0415 0x11c0  lltdio - ok
12:38:32.0465 0x11c0  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:38:32.0465 0x11c0  lltdsvc - ok
12:38:32.0505 0x11c0  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:38:32.0505 0x11c0  lmhosts - ok
12:38:32.0565 0x11c0  [ D7E0BED3EA21D7BDDD410ADE51708D90 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
12:38:32.0575 0x11c0  LMS - ok
12:38:32.0615 0x11c0  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:38:32.0625 0x11c0  LSI_FC - ok
12:38:32.0665 0x11c0  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:38:32.0675 0x11c0  LSI_SAS - ok
12:38:32.0685 0x11c0  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
12:38:32.0685 0x11c0  LSI_SAS2 - ok
12:38:32.0705 0x11c0  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:38:32.0705 0x11c0  LSI_SCSI - ok
12:38:32.0725 0x11c0  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
12:38:32.0735 0x11c0  luafv - ok
12:38:32.0775 0x11c0  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
12:38:32.0795 0x11c0  MBAMProtector - ok
12:38:32.0845 0x11c0  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
12:38:32.0845 0x11c0  MBAMScheduler - ok
12:38:32.0875 0x11c0  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
12:38:32.0885 0x11c0  MBAMService - ok
12:38:32.0925 0x11c0  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:38:32.0925 0x11c0  Mcx2Svc - ok
12:38:32.0955 0x11c0  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
12:38:32.0955 0x11c0  megasas - ok
12:38:32.0985 0x11c0  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
12:38:32.0995 0x11c0  MegaSR - ok
12:38:33.0015 0x11c0  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
12:38:33.0015 0x11c0  MEIx64 - ok
12:38:33.0045 0x11c0  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
12:38:33.0055 0x11c0  MMCSS - ok
12:38:33.0055 0x11c0  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
12:38:33.0055 0x11c0  Modem - ok
12:38:33.0085 0x11c0  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:38:33.0085 0x11c0  monitor - ok
12:38:33.0115 0x11c0  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:38:33.0115 0x11c0  mouclass - ok
12:38:33.0145 0x11c0  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:38:33.0145 0x11c0  mouhid - ok
12:38:33.0155 0x11c0  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:38:33.0155 0x11c0  mountmgr - ok
12:38:33.0185 0x11c0  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:38:33.0185 0x11c0  MozillaMaintenance - ok
12:38:33.0225 0x11c0  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:38:33.0225 0x11c0  mpio - ok
12:38:33.0235 0x11c0  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:38:33.0235 0x11c0  mpsdrv - ok
12:38:33.0275 0x11c0  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:38:33.0285 0x11c0  MpsSvc - ok
12:38:33.0295 0x11c0  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:38:33.0295 0x11c0  MRxDAV - ok
12:38:33.0315 0x11c0  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:38:33.0315 0x11c0  mrxsmb - ok
12:38:33.0345 0x11c0  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:38:33.0355 0x11c0  mrxsmb10 - ok
12:38:33.0355 0x11c0  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:38:33.0365 0x11c0  mrxsmb20 - ok
12:38:33.0395 0x11c0  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
12:38:33.0395 0x11c0  msahci - ok
12:38:33.0395 0x11c0  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:38:33.0405 0x11c0  msdsm - ok
12:38:33.0415 0x11c0  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
12:38:33.0425 0x11c0  MSDTC - ok
12:38:33.0475 0x11c0  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:38:33.0475 0x11c0  Msfs - ok
12:38:33.0485 0x11c0  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:38:33.0485 0x11c0  mshidkmdf - ok
12:38:33.0495 0x11c0  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:38:33.0505 0x11c0  msisadrv - ok
12:38:33.0545 0x11c0  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:38:33.0545 0x11c0  MSiSCSI - ok
12:38:33.0555 0x11c0  msiserver - ok
12:38:33.0575 0x11c0  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:38:33.0585 0x11c0  MSKSSRV - ok
12:38:33.0615 0x11c0  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:38:33.0615 0x11c0  MSPCLOCK - ok
12:38:33.0625 0x11c0  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:38:33.0625 0x11c0  MSPQM - ok
12:38:33.0645 0x11c0  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:38:33.0655 0x11c0  MsRPC - ok
12:38:33.0685 0x11c0  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
12:38:33.0695 0x11c0  mssmbios - ok
12:38:33.0715 0x11c0  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:38:33.0715 0x11c0  MSTEE - ok
12:38:33.0715 0x11c0  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
12:38:33.0725 0x11c0  MTConfig - ok
12:38:33.0725 0x11c0  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:38:33.0725 0x11c0  Mup - ok
12:38:33.0785 0x11c0  [ 1BF9D6476061B31CD7FC2BF848529A56 ] N360            C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\ccSvcHst.exe
12:38:33.0845 0x11c0  N360 - ok
12:38:33.0905 0x11c0  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
12:38:33.0915 0x11c0  napagent - ok
12:38:33.0975 0x11c0  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:38:33.0995 0x11c0  NativeWifiP - ok
12:38:34.0085 0x11c0  [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
12:38:34.0095 0x11c0  NAUpdate - ok
12:38:34.0175 0x11c0  [ 56540E526B46E379A476FB5BC381B290 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130815.001\ENG64.SYS
12:38:34.0185 0x11c0  NAVENG - ok
12:38:34.0285 0x11c0  [ 8A19D3991F9F14B885CDE8BC640F6B68 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130815.001\EX64.SYS
12:38:34.0325 0x11c0  NAVEX15 - ok
12:38:34.0385 0x11c0  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:38:34.0405 0x11c0  NDIS - ok
12:38:34.0445 0x11c0  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:38:34.0445 0x11c0  NdisCap - ok
12:38:34.0475 0x11c0  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:38:34.0485 0x11c0  NdisTapi - ok
12:38:34.0485 0x11c0  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:38:34.0485 0x11c0  Ndisuio - ok
12:38:34.0495 0x11c0  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:38:34.0495 0x11c0  NdisWan - ok
12:38:34.0505 0x11c0  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:38:34.0505 0x11c0  NDProxy - ok
12:38:34.0525 0x11c0  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:38:34.0525 0x11c0  NetBIOS - ok
12:38:34.0535 0x11c0  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:38:34.0545 0x11c0  NetBT - ok
12:38:34.0565 0x11c0  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
12:38:34.0565 0x11c0  Netlogon - ok
12:38:34.0615 0x11c0  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
12:38:34.0625 0x11c0  Netman - ok
12:38:34.0635 0x11c0  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
12:38:34.0635 0x11c0  netprofm - ok
12:38:34.0665 0x11c0  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:38:34.0675 0x11c0  NetTcpPortSharing - ok
12:38:34.0705 0x11c0  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:38:34.0715 0x11c0  nfrd960 - ok
12:38:34.0765 0x11c0  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:38:34.0775 0x11c0  NlaSvc - ok
12:38:34.0795 0x11c0  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:38:34.0795 0x11c0  Npfs - ok
12:38:34.0825 0x11c0  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
12:38:34.0825 0x11c0  nsi - ok
12:38:34.0845 0x11c0  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:38:34.0845 0x11c0  nsiproxy - ok
12:38:34.0925 0x11c0  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:38:34.0955 0x11c0  Ntfs - ok
12:38:35.0025 0x11c0  [ 6CC09D2F0BA4A09BABC3C41B8FD888F7 ] NTI IScheduleSvc C:\Program Files (x86)\NTI\Gateway MyBackup\IScheduleSvc.exe
12:38:35.0045 0x11c0  NTI IScheduleSvc - ok
12:38:35.0075 0x11c0  [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr         C:\Windows\system32\drivers\NTIDrvr.sys
12:38:35.0085 0x11c0  NTIDrvr - ok
12:38:35.0095 0x11c0  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
12:38:35.0095 0x11c0  Null - ok
12:38:35.0125 0x11c0  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:38:35.0125 0x11c0  nvraid - ok
12:38:35.0135 0x11c0  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:38:35.0135 0x11c0  nvstor - ok
12:38:35.0155 0x11c0  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:38:35.0165 0x11c0  nv_agp - ok
12:38:35.0175 0x11c0  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:38:35.0185 0x11c0  ohci1394 - ok
12:38:35.0225 0x11c0  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:38:35.0225 0x11c0  ose - ok
12:38:35.0435 0x11c0  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:38:35.0565 0x11c0  osppsvc - ok
12:38:35.0595 0x11c0  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:38:35.0595 0x11c0  p2pimsvc - ok
12:38:35.0625 0x11c0  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:38:35.0635 0x11c0  p2psvc - ok
12:38:35.0665 0x11c0  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
12:38:35.0665 0x11c0  Parport - ok
12:38:35.0685 0x11c0  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:38:35.0695 0x11c0  partmgr - ok
12:38:35.0695 0x11c0  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:38:35.0705 0x11c0  PcaSvc - ok
12:38:35.0725 0x11c0  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
12:38:35.0725 0x11c0  pci - ok
12:38:35.0745 0x11c0  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
12:38:35.0755 0x11c0  pciide - ok
12:38:35.0775 0x11c0  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:38:35.0795 0x11c0  pcmcia - ok
12:38:35.0795 0x11c0  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:38:35.0805 0x11c0  pcw - ok
12:38:35.0845 0x11c0  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:38:35.0865 0x11c0  PEAUTH - ok
12:38:35.0976 0x11c0  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:38:35.0986 0x11c0  PerfHost - ok
12:38:36.0076 0x11c0  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
12:38:36.0096 0x11c0  pla - ok
12:38:36.0136 0x11c0  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:38:36.0146 0x11c0  PlugPlay - ok
12:38:36.0156 0x11c0  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:38:36.0156 0x11c0  PNRPAutoReg - ok
12:38:36.0166 0x11c0  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:38:36.0176 0x11c0  PNRPsvc - ok
12:38:36.0206 0x11c0  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:38:36.0216 0x11c0  PolicyAgent - ok
12:38:36.0226 0x11c0  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
12:38:36.0226 0x11c0  Power - ok
12:38:36.0256 0x11c0  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:38:36.0266 0x11c0  PptpMiniport - ok
12:38:36.0286 0x11c0  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
12:38:36.0286 0x11c0  Processor - ok
12:38:36.0316 0x11c0  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:38:36.0316 0x11c0  ProfSvc - ok
12:38:36.0346 0x11c0  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:38:36.0346 0x11c0  ProtectedStorage - ok
12:38:36.0376 0x11c0  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:38:36.0376 0x11c0  Psched - ok
12:38:36.0426 0x11c0  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:38:36.0456 0x11c0  ql2300 - ok
12:38:36.0466 0x11c0  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:38:36.0466 0x11c0  ql40xx - ok
12:38:36.0486 0x11c0  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
12:38:36.0496 0x11c0  QWAVE - ok
12:38:36.0516 0x11c0  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:38:36.0516 0x11c0  QWAVEdrv - ok
12:38:36.0516 0x11c0  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:38:36.0536 0x11c0  RasAcd - ok
12:38:36.0566 0x11c0  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:38:36.0566 0x11c0  RasAgileVpn - ok
12:38:36.0586 0x11c0  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
12:38:36.0606 0x11c0  RasAuto - ok
12:38:36.0606 0x11c0  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:38:36.0606 0x11c0  Rasl2tp - ok
12:38:36.0636 0x11c0  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
12:38:36.0636 0x11c0  RasMan - ok
12:38:36.0656 0x11c0  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:38:36.0666 0x11c0  RasPppoe - ok
12:38:36.0676 0x11c0  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:38:36.0676 0x11c0  RasSstp - ok
12:38:36.0706 0x11c0  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:38:36.0706 0x11c0  rdbss - ok
12:38:36.0716 0x11c0  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
12:38:36.0726 0x11c0  rdpbus - ok
12:38:36.0746 0x11c0  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:38:36.0756 0x11c0  RDPCDD - ok
12:38:36.0756 0x11c0  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:38:36.0766 0x11c0  RDPENCDD - ok
12:38:36.0776 0x11c0  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
12:38:36.0786 0x11c0  RDPREFMP - ok
12:38:36.0816 0x11c0  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:38:36.0816 0x11c0  RDPWD - ok
12:38:36.0866 0x11c0  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:38:36.0876 0x11c0  rdyboost - ok
12:38:36.0906 0x11c0  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:38:36.0906 0x11c0  RemoteAccess - ok
12:38:36.0936 0x11c0  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:38:36.0936 0x11c0  RemoteRegistry - ok
12:38:36.0956 0x11c0  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:38:36.0956 0x11c0  RpcEptMapper - ok
12:38:36.0986 0x11c0  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
12:38:36.0996 0x11c0  RpcLocator - ok
12:38:37.0016 0x11c0  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
12:38:37.0016 0x11c0  RpcSs - ok
12:38:37.0056 0x11c0  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:38:37.0066 0x11c0  rspndr - ok
12:38:37.0076 0x11c0  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
12:38:37.0076 0x11c0  SamSs - ok
12:38:37.0086 0x11c0  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:38:37.0096 0x11c0  sbp2port - ok
12:38:37.0126 0x11c0  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:38:37.0136 0x11c0  SCardSvr - ok
12:38:37.0156 0x11c0  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:38:37.0156 0x11c0  scfilter - ok
12:38:37.0196 0x11c0  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
12:38:37.0216 0x11c0  Schedule - ok
12:38:37.0226 0x11c0  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:38:37.0226 0x11c0  SCPolicySvc - ok
12:38:37.0266 0x11c0  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
12:38:37.0286 0x11c0  sdbus - ok
12:38:37.0306 0x11c0  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:38:37.0316 0x11c0  SDRSVC - ok
12:38:37.0336 0x11c0  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:38:37.0356 0x11c0  secdrv - ok
12:38:37.0366 0x11c0  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
12:38:37.0366 0x11c0  seclogon - ok
12:38:37.0376 0x11c0  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
12:38:37.0376 0x11c0  SENS - ok
12:38:37.0396 0x11c0  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:38:37.0396 0x11c0  SensrSvc - ok
12:38:37.0406 0x11c0  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
12:38:37.0416 0x11c0  Serenum - ok
12:38:37.0456 0x11c0  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
12:38:37.0466 0x11c0  Serial - ok
12:38:37.0486 0x11c0  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:38:37.0486 0x11c0  sermouse - ok
12:38:37.0526 0x11c0  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
12:38:37.0536 0x11c0  SessionEnv - ok
12:38:37.0536 0x11c0  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:38:37.0546 0x11c0  sffdisk - ok
12:38:37.0546 0x11c0  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:38:37.0546 0x11c0  sffp_mmc - ok
12:38:37.0556 0x11c0  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:38:37.0556 0x11c0  sffp_sd - ok
12:38:37.0566 0x11c0  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
12:38:37.0566 0x11c0  sfloppy - ok
12:38:37.0616 0x11c0  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
12:38:37.0636 0x11c0  Sftfs - ok
12:38:37.0706 0x11c0  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
12:38:37.0706 0x11c0  sftlist - ok
12:38:37.0736 0x11c0  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
12:38:37.0736 0x11c0  Sftplay - ok
12:38:37.0756 0x11c0  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
12:38:37.0756 0x11c0  Sftredir - ok
12:38:37.0786 0x11c0  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
12:38:37.0846 0x11c0  Sftvol - ok
12:38:37.0866 0x11c0  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
12:38:37.0866 0x11c0  sftvsa - ok
12:38:37.0916 0x11c0  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:38:37.0926 0x11c0  SharedAccess - ok
12:38:37.0956 0x11c0  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:38:37.0966 0x11c0  ShellHWDetection - ok
12:38:37.0996 0x11c0  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
12:38:37.0996 0x11c0  SiSRaid2 - ok
12:38:38.0026 0x11c0  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:38:38.0026 0x11c0  SiSRaid4 - ok
12:38:38.0236 0x11c0  [ 0C1B2E3A897397738D9F81CD3D152AF0 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
12:38:38.0276 0x11c0  Skype C2C Service - ok
12:38:38.0356 0x11c0  [ CA355B308AA537C6B9D67CD3A5485AF9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
12:38:38.0356 0x11c0  SkypeUpdate - ok
12:38:38.0396 0x11c0  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:38:38.0396 0x11c0  Smb - ok
12:38:38.0446 0x11c0  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:38:38.0446 0x11c0  SNMPTRAP - ok
12:38:38.0456 0x11c0  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:38:38.0466 0x11c0  spldr - ok
12:38:38.0506 0x11c0  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
12:38:38.0516 0x11c0  Spooler - ok
12:38:38.0606 0x11c0  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
12:38:38.0646 0x11c0  sppsvc - ok
12:38:38.0666 0x11c0  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
12:38:38.0666 0x11c0  sppuinotify - ok
12:38:38.0776 0x11c0  [ 2FD9346F9D76CB4192D37329CFA47A82 ] SRTSP           C:\Windows\System32\Drivers\N360x64\1404000.028\SRTSP64.SYS
12:38:38.0786 0x11c0  SRTSP - ok
12:38:38.0816 0x11c0  [ 0E76CEF892C45734F7AED09FDDF35D4D ] SRTSPX          C:\Windows\system32\drivers\N360x64\1404000.028\SRTSPX64.SYS
12:38:38.0816 0x11c0  SRTSPX - ok
12:38:38.0856 0x11c0  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:38:38.0856 0x11c0  srv - ok
12:38:38.0866 0x11c0  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:38:38.0876 0x11c0  srv2 - ok
12:38:38.0886 0x11c0  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:38:38.0886 0x11c0  srvnet - ok
12:38:38.0926 0x11c0  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:38:38.0926 0x11c0  SSDPSRV - ok
12:38:38.0936 0x11c0  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:38:38.0936 0x11c0  SstpSvc - ok
12:38:38.0956 0x11c0  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
12:38:38.0956 0x11c0  stexstor - ok
12:38:39.0006 0x11c0  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
12:38:39.0016 0x11c0  stisvc - ok
12:38:39.0046 0x11c0  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
12:38:39.0046 0x11c0  swenum - ok
12:38:39.0086 0x11c0  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
12:38:39.0096 0x11c0  swprv - ok
12:38:39.0146 0x11c0  [ 52DC0048D667757A8A2E4C87182890AC ] SymDS           C:\Windows\system32\drivers\N360x64\1404000.028\SYMDS64.SYS
12:38:39.0156 0x11c0  SymDS - ok
12:38:39.0226 0x11c0  [ 599872BAD7CFB45C7CE47CDED4B726D8 ] SymEFA          C:\Windows\system32\drivers\N360x64\1404000.028\SYMEFA64.SYS
12:38:39.0236 0x11c0  SymEFA - ok
12:38:39.0276 0x11c0  [ F19E5E37ED8134B9E5F6287F2D3A75D7 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
12:38:39.0286 0x11c0  SymEvent - ok
12:38:39.0316 0x11c0  [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON         C:\Windows\system32\drivers\N360x64\1404000.028\Ironx64.SYS
12:38:39.0316 0x11c0  SymIRON - ok
12:38:39.0366 0x11c0  [ 9CDCA70485BD6B9D230365F67C31F132 ] SymNetS         C:\Windows\System32\Drivers\N360x64\1404000.028\SYMNETS.SYS
12:38:39.0376 0x11c0  SymNetS - ok
12:38:39.0466 0x11c0  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
12:38:39.0486 0x11c0  SysMain - ok
12:38:39.0496 0x11c0  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:38:39.0496 0x11c0  TabletInputService - ok
12:38:39.0516 0x11c0  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:38:39.0516 0x11c0  TapiSrv - ok
12:38:39.0536 0x11c0  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
12:38:39.0536 0x11c0  TBS - ok
12:38:39.0626 0x11c0  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:38:39.0646 0x11c0  Tcpip - ok
12:38:39.0686 0x11c0  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:38:39.0706 0x11c0  TCPIP6 - ok
12:38:39.0726 0x11c0  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:38:39.0736 0x11c0  tcpipreg - ok
12:38:39.0766 0x11c0  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:38:39.0766 0x11c0  TDPIPE - ok
12:38:39.0816 0x11c0  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:38:39.0816 0x11c0  TDTCP - ok
12:38:39.0836 0x11c0  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:38:39.0846 0x11c0  tdx - ok
12:38:39.0866 0x11c0  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
12:38:39.0876 0x11c0  TermDD - ok
12:38:39.0916 0x11c0  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
12:38:39.0926 0x11c0  TermService - ok
12:38:39.0936 0x11c0  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
12:38:39.0936 0x11c0  Themes - ok
12:38:39.0956 0x11c0  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
12:38:39.0966 0x11c0  THREADORDER - ok
12:38:39.0976 0x11c0  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
12:38:39.0976 0x11c0  TrkWks - ok
12:38:40.0036 0x11c0  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:38:40.0046 0x11c0  TrustedInstaller - ok
12:38:40.0076 0x11c0  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:38:40.0076 0x11c0  tssecsrv - ok
12:38:40.0136 0x11c0  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:38:40.0136 0x11c0  TsUsbFlt - ok
12:38:40.0176 0x11c0  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
12:38:40.0176 0x11c0  TsUsbGD - ok
12:38:40.0196 0x11c0  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:38:40.0206 0x11c0  tunnel - ok
12:38:40.0226 0x11c0  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:38:40.0226 0x11c0  uagp35 - ok
12:38:40.0236 0x11c0  [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
12:38:40.0236 0x11c0  UBHelper - ok
12:38:40.0256 0x11c0  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:38:40.0266 0x11c0  udfs - ok
12:38:40.0296 0x11c0  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:38:40.0296 0x11c0  UI0Detect - ok
12:38:40.0326 0x11c0  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:38:40.0326 0x11c0  uliagpkx - ok
12:38:40.0356 0x11c0  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:38:40.0356 0x11c0  umbus - ok
12:38:40.0366 0x11c0  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
12:38:40.0366 0x11c0  UmPass - ok
12:38:40.0516 0x11c0  [ A678E5DDD974903DD71F503BDCACA218 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
12:38:40.0556 0x11c0  UNS - ok
12:38:40.0586 0x11c0  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
12:38:40.0596 0x11c0  upnphost - ok
12:38:40.0626 0x11c0  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:38:40.0626 0x11c0  usbccgp - ok
12:38:40.0656 0x11c0  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:38:40.0656 0x11c0  usbcir - ok
12:38:40.0666 0x11c0  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
12:38:40.0666 0x11c0  usbehci - ok
12:38:40.0686 0x11c0  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
12:38:40.0686 0x11c0  usbhub - ok
12:38:40.0706 0x11c0  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
12:38:40.0706 0x11c0  usbohci - ok
12:38:40.0736 0x11c0  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:38:40.0736 0x11c0  usbprint - ok
12:38:40.0776 0x11c0  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:38:40.0776 0x11c0  usbscan - ok
12:38:40.0796 0x11c0  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:38:40.0796 0x11c0  USBSTOR - ok
12:38:40.0816 0x11c0  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
12:38:40.0816 0x11c0  usbuhci - ok
12:38:40.0846 0x11c0  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
12:38:40.0846 0x11c0  usbvideo - ok
12:38:40.0886 0x11c0  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
12:38:40.0886 0x11c0  UxSms - ok
12:38:40.0896 0x11c0  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
12:38:40.0896 0x11c0  VaultSvc - ok
12:38:40.0936 0x11c0  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:38:40.0936 0x11c0  vdrvroot - ok
12:38:40.0967 0x11c0  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
12:38:40.0977 0x11c0  vds - ok
12:38:40.0987 0x11c0  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:38:40.0997 0x11c0  vga - ok
12:38:41.0017 0x11c0  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:38:41.0017 0x11c0  VgaSave - ok
12:38:41.0027 0x11c0  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
12:38:41.0027 0x11c0  vhdmp - ok
12:38:41.0047 0x11c0  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:38:41.0047 0x11c0  viaide - ok
12:38:41.0077 0x11c0  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:38:41.0077 0x11c0  volmgr - ok
12:38:41.0097 0x11c0  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:38:41.0107 0x11c0  volmgrx - ok
12:38:41.0117 0x11c0  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:38:41.0117 0x11c0  volsnap - ok
12:38:41.0147 0x11c0  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:38:41.0147 0x11c0  vsmraid - ok
12:38:41.0207 0x11c0  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
12:38:41.0227 0x11c0  VSS - ok
12:38:41.0247 0x11c0  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
12:38:41.0247 0x11c0  vwifibus - ok
12:38:41.0277 0x11c0  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:38:41.0277 0x11c0  vwififlt - ok
12:38:41.0297 0x11c0  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
12:38:41.0307 0x11c0  W32Time - ok
12:38:41.0327 0x11c0  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:38:41.0327 0x11c0  WacomPen - ok
12:38:41.0357 0x11c0  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:38:41.0367 0x11c0  WANARP - ok
12:38:41.0377 0x11c0  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:38:41.0377 0x11c0  Wanarpv6 - ok
12:38:41.0517 0x11c0  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
12:38:41.0547 0x11c0  WatAdminSvc - ok
12:38:41.0597 0x11c0  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
12:38:41.0617 0x11c0  wbengine - ok
12:38:41.0627 0x11c0  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:38:41.0637 0x11c0  WbioSrvc - ok
12:38:41.0647 0x11c0  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:38:41.0657 0x11c0  wcncsvc - ok
12:38:41.0667 0x11c0  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:38:41.0667 0x11c0  WcsPlugInService - ok
12:38:41.0697 0x11c0  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
12:38:41.0697 0x11c0  Wd - ok
12:38:41.0747 0x11c0  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:38:41.0757 0x11c0  Wdf01000 - ok
12:38:41.0757 0x11c0  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:38:41.0767 0x11c0  WdiServiceHost - ok
12:38:41.0767 0x11c0  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:38:41.0767 0x11c0  WdiSystemHost - ok
12:38:41.0837 0x11c0  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
12:38:41.0847 0x11c0  WebClient - ok
12:38:41.0867 0x11c0  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:38:41.0877 0x11c0  Wecsvc - ok
12:38:41.0897 0x11c0  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:38:41.0897 0x11c0  wercplsupport - ok
12:38:41.0917 0x11c0  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:38:41.0917 0x11c0  WerSvc - ok
12:38:41.0947 0x11c0  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
12:38:41.0957 0x11c0  WfpLwf - ok
12:38:41.0967 0x11c0  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:38:41.0977 0x11c0  WIMMount - ok
12:38:41.0997 0x11c0  WinDefend - ok
12:38:42.0007 0x11c0  WinHttpAutoProxySvc - ok
12:38:42.0077 0x11c0  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:38:42.0077 0x11c0  Winmgmt - ok
12:38:42.0157 0x11c0  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
12:38:42.0177 0x11c0  WinRM - ok
12:38:42.0277 0x11c0  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:38:42.0297 0x11c0  Wlansvc - ok
12:38:42.0357 0x11c0  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
12:38:42.0357 0x11c0  wlcrasvc - ok
12:38:42.0447 0x11c0  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:38:42.0477 0x11c0  wlidsvc - ok
12:38:42.0517 0x11c0  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:38:42.0517 0x11c0  WmiAcpi - ok
12:38:42.0547 0x11c0  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:38:42.0557 0x11c0  wmiApSrv - ok
12:38:42.0587 0x11c0  WMPNetworkSvc - ok
12:38:42.0627 0x11c0  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:38:42.0627 0x11c0  WPCSvc - ok
12:38:42.0637 0x11c0  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:38:42.0637 0x11c0  WPDBusEnum - ok
12:38:42.0667 0x11c0  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:38:42.0667 0x11c0  ws2ifsl - ok
12:38:42.0677 0x11c0  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
12:38:42.0677 0x11c0  wscsvc - ok
12:38:42.0687 0x11c0  WSearch - ok
12:38:42.0787 0x11c0  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:38:42.0817 0x11c0  wuauserv - ok
12:38:42.0847 0x11c0  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:38:42.0847 0x11c0  WudfPf - ok
12:38:42.0887 0x11c0  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:38:42.0887 0x11c0  WUDFRd - ok
12:38:42.0927 0x11c0  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:38:42.0927 0x11c0  wudfsvc - ok
12:38:42.0957 0x11c0  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:38:42.0957 0x11c0  WwanSvc - ok
12:38:42.0977 0x11c0  ================ Scan global ===============================
12:38:43.0007 0x11c0  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
12:38:43.0037 0x11c0  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
12:38:43.0047 0x11c0  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
12:38:43.0087 0x11c0  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
12:38:43.0117 0x11c0  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
12:38:43.0127 0x11c0  [Global] - ok
12:38:43.0127 0x11c0  ================ Scan MBR ==================================
12:38:43.0137 0x11c0  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:38:44.0087 0x11c0  \Device\Harddisk0\DR0 - ok
12:38:44.0087 0x11c0  ================ Scan VBR ==================================
12:38:44.0127 0x11c0  [ 19D351D056926FF3BB43E0544E36B886 ] \Device\Harddisk0\DR0\Partition1
12:38:44.0127 0x11c0  \Device\Harddisk0\DR0\Partition1 - ok
12:38:44.0147 0x11c0  [ 0875E517BC1E823FF79DEA37F81B37AF ] \Device\Harddisk0\DR0\Partition2
12:38:44.0157 0x11c0  \Device\Harddisk0\DR0\Partition2 - ok
12:38:44.0157 0x11c0  ============================================================
12:38:44.0157 0x11c0  Scan finished
12:38:44.0157 0x11c0  ============================================================
12:38:44.0177 0x0a64  Detected object count: 0
12:38:44.0177 0x0a64  Actual detected object count: 0
12:38:55.0259 0x15b4  ============================================================
12:38:55.0259 0x15b4  Scan started
12:38:55.0259 0x15b4  Mode: Manual; TDLFS;
12:38:55.0259 0x15b4  ============================================================
12:38:55.0599 0x15b4  ================ Scan system memory ========================
12:38:55.0599 0x15b4  System memory - ok
12:38:55.0599 0x15b4  ================ Scan services =============================
12:38:55.0779 0x15b4  [ A87D604AEA360176311474C87A63BB88 ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
12:38:55.0779 0x15b4  1394ohci - ok
12:38:55.0809 0x15b4  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
12:38:55.0809 0x15b4  ACPI - ok
12:38:55.0829 0x15b4  [ 99F8E788246D495CE3794D7E7821D2CA ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
12:38:55.0829 0x15b4  AcpiPmi - ok
12:38:55.0889 0x15b4  [ ADDA5E1951B90D3D23C56D3CF0622ADC ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
12:38:55.0889 0x15b4  AdobeARMservice - ok
12:38:56.0039 0x15b4  [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
12:38:56.0049 0x15b4  AdobeFlashPlayerUpdateSvc - ok
12:38:56.0090 0x15b4  [ 2F6B34B83843F0C5118B63AC634F5BF4 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
12:38:56.0090 0x15b4  adp94xx - ok
12:38:56.0130 0x15b4  [ 597F78224EE9224EA1A13D6350CED962 ] adpahci         C:\Windows\system32\drivers\adpahci.sys
12:38:56.0130 0x15b4  adpahci - ok
12:38:56.0140 0x15b4  [ E109549C90F62FB570B9540C4B148E54 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
12:38:56.0140 0x15b4  adpu320 - ok
12:38:56.0170 0x15b4  [ 4B78B431F225FD8624C5655CB1DE7B61 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
12:38:56.0180 0x15b4  AeLookupSvc - ok
12:38:56.0230 0x15b4  [ 1C7857B62DE5994A75B054A9FD4C3825 ] AFD             C:\Windows\system32\drivers\afd.sys
12:38:56.0240 0x15b4  AFD - ok
12:38:56.0270 0x15b4  [ 608C14DBA7299D8CB6ED035A68A15799 ] agp440          C:\Windows\system32\drivers\agp440.sys
12:38:56.0270 0x15b4  agp440 - ok
12:38:56.0280 0x15b4  [ 3290D6946B5E30E70414990574883DDB ] ALG             C:\Windows\System32\alg.exe
12:38:56.0280 0x15b4  ALG - ok
12:38:56.0310 0x15b4  [ 5812713A477A3AD7363C7438CA2EE038 ] aliide          C:\Windows\system32\drivers\aliide.sys
12:38:56.0310 0x15b4  aliide - ok
12:38:56.0340 0x15b4  [ 1FF8B4431C353CE385C875F194924C0C ] amdide          C:\Windows\system32\drivers\amdide.sys
12:38:56.0340 0x15b4  amdide - ok
12:38:56.0350 0x15b4  [ 7024F087CFF1833A806193EF9D22CDA9 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
12:38:56.0350 0x15b4  AmdK8 - ok
12:38:56.0380 0x15b4  [ 1E56388B3FE0D031C44144EB8C4D6217 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
12:38:56.0380 0x15b4  AmdPPM - ok
12:38:56.0390 0x15b4  [ D4121AE6D0C0E7E13AA221AA57EF2D49 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
12:38:56.0390 0x15b4  amdsata - ok
12:38:56.0450 0x15b4  [ F67F933E79241ED32FF46A4F29B5120B ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
12:38:56.0450 0x15b4  amdsbs - ok
12:38:56.0490 0x15b4  [ 540DAF1CEA6094886D72126FD7C33048 ] amdxata         C:\Windows\system32\drivers\amdxata.sys
12:38:56.0490 0x15b4  amdxata - ok
12:38:56.0500 0x15b4  AntiLog32 - ok
12:38:56.0540 0x15b4  [ 89A69C3F2F319B43379399547526D952 ] AppID           C:\Windows\system32\drivers\appid.sys
12:38:56.0540 0x15b4  AppID - ok
12:38:56.0560 0x15b4  [ 0BC381A15355A3982216F7172F545DE1 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
12:38:56.0560 0x15b4  AppIDSvc - ok
12:38:56.0590 0x15b4  [ 9D2A2369AB4B08A4905FE72DB104498F ] Appinfo         C:\Windows\System32\appinfo.dll
12:38:56.0590 0x15b4  Appinfo - ok
12:38:56.0610 0x15b4  [ C484F8CEB1717C540242531DB7845C4E ] arc             C:\Windows\system32\drivers\arc.sys
12:38:56.0610 0x15b4  arc - ok
12:38:56.0630 0x15b4  [ 019AF6924AEFE7839F61C830227FE79C ] arcsas          C:\Windows\system32\drivers\arcsas.sys
12:38:56.0630 0x15b4  arcsas - ok
12:38:56.0640 0x15b4  [ 769765CE2CC62867468CEA93969B2242 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
12:38:56.0640 0x15b4  AsyncMac - ok
12:38:56.0660 0x15b4  [ 02062C0B390B7729EDC9E69C680A6F3C ] atapi           C:\Windows\system32\drivers\atapi.sys
12:38:56.0660 0x15b4  atapi - ok
12:38:56.0740 0x15b4  [ C8679A07267F030704168E45E27C3D43 ] athr            C:\Windows\system32\DRIVERS\athrx.sys
12:38:56.0760 0x15b4  athr - ok
12:38:56.0800 0x15b4  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
12:38:56.0810 0x15b4  AudioEndpointBuilder - ok
12:38:56.0820 0x15b4  [ F23FEF6D569FCE88671949894A8BECF1 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
12:38:56.0830 0x15b4  AudioSrv - ok
12:38:56.0840 0x15b4  [ A6BF31A71B409DFA8CAC83159E1E2AFF ] AxInstSV        C:\Windows\System32\AxInstSV.dll
12:38:56.0840 0x15b4  AxInstSV - ok
12:38:56.0880 0x15b4  [ 3E5B191307609F7514148C6832BB0842 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
12:38:56.0880 0x15b4  b06bdrv - ok
12:38:56.0910 0x15b4  [ B5ACE6968304A3900EEB1EBFD9622DF2 ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
12:38:56.0910 0x15b4  b57nd60a - ok
12:38:56.0940 0x15b4  [ A424CB46A145E5AABF15621550976DF2 ] b57xdbd         C:\Windows\system32\DRIVERS\b57xdbd.sys
12:38:56.0940 0x15b4  b57xdbd - ok
12:38:56.0960 0x15b4  [ BE4E6FD5A898812B85D5817AD9754A9F ] b57xdmp         C:\Windows\system32\DRIVERS\b57xdmp.sys
12:38:56.0960 0x15b4  b57xdmp - ok
12:38:56.0990 0x15b4  [ FDE360167101B4E45A96F939F388AEB0 ] BDESVC          C:\Windows\System32\bdesvc.dll
12:38:56.0990 0x15b4  BDESVC - ok
12:38:57.0010 0x15b4  [ 16A47CE2DECC9B099349A5F840654746 ] Beep            C:\Windows\system32\drivers\Beep.sys
12:38:57.0010 0x15b4  Beep - ok
12:38:57.0040 0x15b4  [ 82974D6A2FD19445CC5171FC378668A4 ] BFE             C:\Windows\System32\bfe.dll
12:38:57.0050 0x15b4  BFE - ok
12:38:57.0200 0x15b4  [ 6E10DB69DB1AA96207F4B14B18FF12F8 ] BHDrvx64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\BASHDefs\20130715.001\BHDrvx64.sys
12:38:57.0210 0x15b4  BHDrvx64 - ok
12:38:57.0260 0x15b4  [ 1EA7969E3271CBC59E1730697DC74682 ] BITS            C:\Windows\System32\qmgr.dll
12:38:57.0270 0x15b4  BITS - ok
12:38:57.0280 0x15b4  [ 61583EE3C3A17003C4ACD0475646B4D3 ] blbdrive        C:\Windows\system32\drivers\blbdrive.sys
12:38:57.0280 0x15b4  blbdrive - ok
12:38:57.0300 0x15b4  [ 6C02A83164F5CC0A262F4199F0871CF5 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
12:38:57.0300 0x15b4  bowser - ok
12:38:57.0310 0x15b4  [ F09EEE9EDC320B5E1501F749FDE686C8 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
12:38:57.0310 0x15b4  BrFiltLo - ok
12:38:57.0320 0x15b4  [ B114D3098E9BDB8BEA8B053685831BE6 ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
12:38:57.0320 0x15b4  BrFiltUp - ok
12:38:57.0350 0x15b4  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694 ] Browser         C:\Windows\System32\browser.dll
12:38:57.0360 0x15b4  Browser - ok
12:38:57.0380 0x15b4  [ 43BEA8D483BF1870F018E2D02E06A5BD ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
12:38:57.0380 0x15b4  Brserid - ok
12:38:57.0390 0x15b4  [ A6ECA2151B08A09CACECA35C07F05B42 ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
12:38:57.0390 0x15b4  BrSerWdm - ok
12:38:57.0400 0x15b4  [ B79968002C277E869CF38BD22CD61524 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
12:38:57.0400 0x15b4  BrUsbMdm - ok
12:38:57.0410 0x15b4  [ A87528880231C54E75EA7A44943B38BF ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
12:38:57.0410 0x15b4  BrUsbSer - ok
12:38:57.0430 0x15b4  [ 0970D8B7151E9113BF8D44CE2E954DF7 ] bScsiMSa        C:\Windows\system32\DRIVERS\bScsiMSa.sys
12:38:57.0430 0x15b4  bScsiMSa - ok
12:38:57.0450 0x15b4  [ 0C1EEE5AF32402D306874B110DE237EC ] bScsiSDa        C:\Windows\system32\DRIVERS\bScsiSDa.sys
12:38:57.0450 0x15b4  bScsiSDa - ok
12:38:57.0460 0x15b4  [ 9DA669F11D1F894AB4EB69BF546A42E8 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
12:38:57.0460 0x15b4  BTHMODEM - ok
12:38:57.0480 0x15b4  [ 95F9C2976059462CBBF227F7AAB10DE9 ] bthserv         C:\Windows\system32\bthserv.dll
12:38:57.0480 0x15b4  bthserv - ok
12:38:57.0530 0x15b4  [ 56685951208AC81CF923B9B08BEDF3B7 ] ccSet_N360      C:\Windows\system32\drivers\N360x64\1404000.028\ccSetx64.sys
12:38:57.0540 0x15b4  ccSet_N360 - ok
12:38:57.0570 0x15b4  [ B8BD2BB284668C84865658C77574381A ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
12:38:57.0570 0x15b4  cdfs - ok
12:38:57.0590 0x15b4  [ F036CE71586E93D94DAB220D7BDF4416 ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
12:38:57.0590 0x15b4  cdrom - ok
12:38:57.0660 0x15b4  [ F17D1D393BBC69C5322FBFAFACA28C7F ] CertPropSvc     C:\Windows\System32\certprop.dll
12:38:57.0660 0x15b4  CertPropSvc - ok
12:38:57.0700 0x15b4  [ D7CD5C4E1B71FA62050515314CFB52CF ] circlass        C:\Windows\system32\drivers\circlass.sys
12:38:57.0700 0x15b4  circlass - ok
12:38:57.0730 0x15b4  [ FE1EC06F2253F691FE36217C592A0206 ] CLFS            C:\Windows\system32\CLFS.sys
12:38:57.0740 0x15b4  CLFS - ok
12:38:57.0810 0x15b4  [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
12:38:57.0810 0x15b4  clr_optimization_v2.0.50727_32 - ok
12:38:57.0860 0x15b4  [ D1CEEA2B47CB998321C579651CE3E4F8 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
12:38:57.0860 0x15b4  clr_optimization_v2.0.50727_64 - ok
12:38:57.0940 0x15b4  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
12:38:57.0950 0x15b4  clr_optimization_v4.0.30319_32 - ok
12:38:58.0000 0x15b4  [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
12:38:58.0000 0x15b4  clr_optimization_v4.0.30319_64 - ok
12:38:58.0040 0x15b4  [ 0840155D0BDDF1190F84A663C284BD33 ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
12:38:58.0040 0x15b4  CmBatt - ok
12:38:58.0070 0x15b4  [ E19D3F095812725D88F9001985B94EDD ] cmdide          C:\Windows\system32\drivers\cmdide.sys
12:38:58.0070 0x15b4  cmdide - ok
12:38:58.0110 0x15b4  [ 9AC4F97C2D3E93367E2148EA940CD2CD ] CNG             C:\Windows\system32\Drivers\cng.sys
12:38:58.0120 0x15b4  CNG - ok
12:38:58.0130 0x15b4  [ 102DE219C3F61415F964C88E9085AD14 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
12:38:58.0130 0x15b4  Compbatt - ok
12:38:58.0140 0x15b4  [ 03EDB043586CCEBA243D689BDDA370A8 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
12:38:58.0140 0x15b4  CompositeBus - ok
12:38:58.0140 0x15b4  COMSysApp - ok
12:38:58.0160 0x15b4  [ 1C827878A998C18847245FE1F34EE597 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
12:38:58.0160 0x15b4  crcdisk - ok
12:38:58.0190 0x15b4  [ D8129C49798CBBFB2E4351D4B7B8EF9C ] CryptSvc        C:\Windows\system32\cryptsvc.dll
12:38:58.0200 0x15b4  CryptSvc - ok
12:38:58.0280 0x15b4  [ 72794D112CBAFF3BC0C29BF7350D4741 ] cvhsvc          C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
12:38:58.0290 0x15b4  cvhsvc - ok
12:38:58.0330 0x15b4  [ 5C627D1B1138676C0A7AB2C2C190D123 ] DcomLaunch      C:\Windows\system32\rpcss.dll
12:38:58.0340 0x15b4  DcomLaunch - ok
12:38:58.0370 0x15b4  [ 3CEC7631A84943677AA8FA8EE5B6B43D ] defragsvc       C:\Windows\System32\defragsvc.dll
12:38:58.0380 0x15b4  defragsvc - ok
12:38:58.0410 0x15b4  [ 9BB2EF44EAA163B29C4A4587887A0FE4 ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
12:38:58.0410 0x15b4  DfsC - ok
12:38:58.0430 0x15b4  [ 43D808F5D9E1A18E5EEB5EBC83969E4E ] Dhcp            C:\Windows\system32\dhcpcore.dll
12:38:58.0430 0x15b4  Dhcp - ok
12:38:58.0440 0x15b4  [ 13096B05847EC78F0977F2C0F79E9AB3 ] discache        C:\Windows\system32\drivers\discache.sys
12:38:58.0440 0x15b4  discache - ok
12:38:58.0440 0x15b4  [ 9819EEE8B5EA3784EC4AF3B137A5244C ] Disk            C:\Windows\system32\drivers\disk.sys
12:38:58.0440 0x15b4  Disk - ok
12:38:58.0460 0x15b4  [ 16835866AAA693C7D7FCEBA8FFF706E4 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
12:38:58.0460 0x15b4  Dnscache - ok
12:38:58.0470 0x15b4  [ B1FB3DDCA0FDF408750D5843591AFBC6 ] dot3svc         C:\Windows\System32\dot3svc.dll
12:38:58.0470 0x15b4  dot3svc - ok
12:38:58.0510 0x15b4  [ B26F4F737E8F9DF4F31AF6CF31D05820 ] DPS             C:\Windows\system32\dps.dll
12:38:58.0510 0x15b4  DPS - ok
12:38:58.0530 0x15b4  [ 9B19F34400D24DF84C858A421C205754 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
12:38:58.0530 0x15b4  drmkaud - ok
12:38:58.0580 0x15b4  [ 9DD3A22F804697606C2B7FF9E912FF6B ] DsiWMIService   C:\Program Files (x86)\Launch Manager\dsiwmis.exe
12:38:58.0580 0x15b4  DsiWMIService - ok
12:38:58.0660 0x15b4  [ AF2E16242AA723F68F461B6EAE2EAD3D ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
12:38:58.0670 0x15b4  DXGKrnl - ok
12:38:58.0710 0x15b4  [ E2DDA8726DA9CB5B2C4000C9018A9633 ] EapHost         C:\Windows\System32\eapsvc.dll
12:38:58.0710 0x15b4  EapHost - ok
12:38:58.0810 0x15b4  [ DC5D737F51BE844D8C82C695EB17372F ] ebdrv           C:\Windows\system32\drivers\evbda.sys
12:38:58.0840 0x15b4  ebdrv - ok
12:38:58.0890 0x15b4  [ 4353FF94D47A0A9D52B89ECCF0CDB013 ] eeCtrl          C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys
12:38:58.0890 0x15b4  eeCtrl - ok
12:38:58.0930 0x15b4  [ C118A82CD78818C29AB228366EBF81C3 ] EFS             C:\Windows\System32\lsass.exe
12:38:58.0930 0x15b4  EFS - ok
12:38:59.0010 0x15b4  [ C4002B6B41975F057D98C439030CEA07 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
12:38:59.0020 0x15b4  ehRecvr - ok
12:38:59.0040 0x15b4  [ 4705E8EF9934482C5BB488CE28AFC681 ] ehSched         C:\Windows\ehome\ehsched.exe
12:38:59.0040 0x15b4  ehSched - ok
12:38:59.0080 0x15b4  [ 0E5DA5369A0FCAEA12456DD852545184 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
12:38:59.0080 0x15b4  elxstor - ok
12:38:59.0160 0x15b4  [ 48425C93B6F36529707206E4FA680CF3 ] ePowerSvc       C:\Program Files\Gateway\Gateway Power Management\ePowerSvc.exe
12:38:59.0180 0x15b4  ePowerSvc - ok
12:38:59.0210 0x15b4  [ C5BCCB378D0A896304A3E71BE7215983 ] EraserUtilRebootDrv C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
12:38:59.0210 0x15b4  EraserUtilRebootDrv - ok
12:38:59.0230 0x15b4  [ 34A3C54752046E79A126E15C51DB409B ] ErrDev          C:\Windows\system32\drivers\errdev.sys
12:38:59.0230 0x15b4  ErrDev - ok
12:38:59.0270 0x15b4  esgiguard - ok
12:38:59.0300 0x15b4  [ DBAA0C650C9549DC5C599D1E81DEDAAD ] ETD             C:\Windows\system32\DRIVERS\ETD.sys
12:38:59.0300 0x15b4  ETD - ok
12:38:59.0340 0x15b4  [ 4166F82BE4D24938977DD1746BE9B8A0 ] EventSystem     C:\Windows\system32\es.dll
12:38:59.0340 0x15b4  EventSystem - ok
12:38:59.0360 0x15b4  [ A510C654EC00C1E9BDD91EEB3A59823B ] exfat           C:\Windows\system32\drivers\exfat.sys
12:38:59.0360 0x15b4  exfat - ok
12:38:59.0390 0x15b4  [ 0ADC83218B66A6DB380C330836F3E36D ] fastfat         C:\Windows\system32\drivers\fastfat.sys
12:38:59.0390 0x15b4  fastfat - ok
12:38:59.0420 0x15b4  [ DBEFD454F8318A0EF691FDD2EAAB44EB ] Fax             C:\Windows\system32\fxssvc.exe
12:38:59.0420 0x15b4  Fax - ok
12:38:59.0450 0x15b4  [ D765D19CD8EF61F650C384F62FAC00AB ] fdc             C:\Windows\system32\drivers\fdc.sys
12:38:59.0450 0x15b4  fdc - ok
12:38:59.0470 0x15b4  [ 0438CAB2E03F4FB61455A7956026FE86 ] fdPHost         C:\Windows\system32\fdPHost.dll
12:38:59.0470 0x15b4  fdPHost - ok
12:38:59.0480 0x15b4  [ 802496CB59A30349F9A6DD22D6947644 ] FDResPub        C:\Windows\system32\fdrespub.dll
12:38:59.0480 0x15b4  FDResPub - ok
12:38:59.0500 0x15b4  [ 655661BE46B5F5F3FD454E2C3095B930 ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
12:38:59.0500 0x15b4  FileInfo - ok
12:38:59.0510 0x15b4  [ 5F671AB5BC87EEA04EC38A6CD5962A47 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
12:38:59.0510 0x15b4  Filetrace - ok
12:38:59.0530 0x15b4  [ C172A0F53008EAEB8EA33FE10E177AF5 ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
12:38:59.0530 0x15b4  flpydisk - ok
12:38:59.0570 0x15b4  [ DA6B67270FD9DB3697B20FCE94950741 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
12:38:59.0570 0x15b4  FltMgr - ok
12:38:59.0620 0x15b4  [ C4C183E6551084039EC862DA1C945E3D ] FontCache       C:\Windows\system32\FntCache.dll
12:38:59.0630 0x15b4  FontCache - ok
12:38:59.0690 0x15b4  [ A8B7F3818AB65695E3A0BB3279F6DCE6 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
12:38:59.0690 0x15b4  FontCache3.0.0.0 - ok
12:38:59.0700 0x15b4  [ D43703496149971890703B4B1B723EAC ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
12:38:59.0710 0x15b4  FsDepends - ok
12:38:59.0750 0x15b4  [ 6BD9295CC032DD3077C671FCCF579A7B ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
12:38:59.0750 0x15b4  Fs_Rec - ok
12:38:59.0790 0x15b4  [ 8F6322049018354F45F05A2FD2D4E5E0 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
12:38:59.0800 0x15b4  fvevol - ok
12:38:59.0830 0x15b4  [ 8C778D335C9D272CFD3298AB02ABE3B6 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
12:38:59.0830 0x15b4  gagp30kx - ok
12:38:59.0910 0x15b4  [ 277BBC7E1AA1EE957F573A10ECA7EF3A ] gpsvc           C:\Windows\System32\gpsvc.dll
12:38:59.0920 0x15b4  gpsvc - ok
12:38:59.0970 0x15b4  [ C9B2D1D3F86FD3673EF847DEF73B6F9E ] GREGService     C:\Program Files (x86)\Gateway\Registration\GREGsvc.exe
12:38:59.0970 0x15b4  GREGService - ok
12:39:00.0000 0x15b4  [ F2523EF6460FC42405B12248338AB2F0 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
12:39:00.0000 0x15b4  hcw85cir - ok
12:39:00.0040 0x15b4  [ 975761C778E33CD22498059B91E7373A ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
12:39:00.0050 0x15b4  HdAudAddService - ok
12:39:00.0070 0x15b4  [ 97BFED39B6B79EB12CDDBFEED51F56BB ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
12:39:00.0070 0x15b4  HDAudBus - ok
12:39:00.0080 0x15b4  [ 78E86380454A7B10A5EB255DC44A355F ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
12:39:00.0080 0x15b4  HidBatt - ok
12:39:00.0090 0x15b4  [ 7FD2A313F7AFE5C4DAB14798C48DD104 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
12:39:00.0090 0x15b4  HidBth - ok
12:39:00.0120 0x15b4  [ 0A77D29F311B88CFAE3B13F9C1A73825 ] HidIr           C:\Windows\system32\drivers\hidir.sys
12:39:00.0120 0x15b4  HidIr - ok
12:39:00.0150 0x15b4  [ BD9EB3958F213F96B97B1D897DEE006D ] hidserv         C:\Windows\system32\hidserv.dll
12:39:00.0150 0x15b4  hidserv - ok
12:39:00.0170 0x15b4  [ 9592090A7E2B61CD582B612B6DF70536 ] HidUsb          C:\Windows\system32\DRIVERS\hidusb.sys
12:39:00.0170 0x15b4  HidUsb - ok
12:39:00.0190 0x15b4  [ 387E72E739E15E3D37907A86D9FF98E2 ] hkmsvc          C:\Windows\system32\kmsvc.dll
12:39:00.0190 0x15b4  hkmsvc - ok
12:39:00.0200 0x15b4  [ EFDFB3DD38A4376F93E7985173813ABD ] HomeGroupListener C:\Windows\system32\ListSvc.dll
12:39:00.0200 0x15b4  HomeGroupListener - ok
12:39:00.0240 0x15b4  [ 908ACB1F594274965A53926B10C81E89 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
12:39:00.0250 0x15b4  HomeGroupProvider - ok
12:39:00.0260 0x15b4  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
12:39:00.0260 0x15b4  HpSAMD - ok
12:39:00.0290 0x15b4  [ 0EA7DE1ACB728DD5A369FD742D6EEE28 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
12:39:00.0300 0x15b4  HTTP - ok
12:39:00.0320 0x15b4  [ A5462BD6884960C9DC85ED49D34FF392 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
12:39:00.0320 0x15b4  hwpolicy - ok
12:39:00.0330 0x15b4  [ FA55C73D4AFFA7EE23AC4BE53B4592D3 ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
12:39:00.0330 0x15b4  i8042prt - ok
12:39:00.0360 0x15b4  [ 26CF4275034214ECEDD8EC17B0A18A99 ] iaStor          C:\Windows\system32\drivers\iaStor.sys
12:39:00.0360 0x15b4  iaStor - ok
12:39:00.0420 0x15b4  [ E79A8E33BD136D14BAE1FA20EB2EF124 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
12:39:00.0420 0x15b4  IAStorDataMgrSvc - ok
12:39:00.0440 0x15b4  [ AAAF44DB3BD0B9D1FB6969B23ECC8366 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
12:39:00.0450 0x15b4  iaStorV - ok
12:39:00.0500 0x15b4  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
12:39:00.0510 0x15b4  idsvc - ok
12:39:00.0570 0x15b4  [ A48928D4CCA6F8B731989DB08CF2C0AB ] IDSVia64        C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\IPSDefs\20130809.001\IDSvia64.sys
12:39:00.0580 0x15b4  IDSVia64 - ok
12:39:00.0890 0x15b4  [ 9937600A1584FF00565D5379EB4C9EDB ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
12:39:00.0990 0x15b4  igfx - ok
12:39:01.0090 0x15b4  [ 5C18831C61933628F5BB0EA2675B9D21 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
12:39:01.0090 0x15b4  iirsp - ok
12:39:01.0141 0x15b4  [ FCD84C381E0140AF901E58D48882D26B ] IKEEXT          C:\Windows\System32\ikeext.dll
12:39:01.0161 0x15b4  IKEEXT - ok
12:39:01.0241 0x15b4  [ B60ACCD29F8FAFC4A6344CD2BD5CA3A5 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
12:39:01.0271 0x15b4  IntcAzAudAddService - ok
12:39:01.0281 0x15b4  [ FC727061C0F47C8059E88E05D5C8E381 ] IntcDAud        C:\Windows\system32\DRIVERS\IntcDAud.sys
12:39:01.0291 0x15b4  IntcDAud - ok
12:39:01.0301 0x15b4  [ F00F20E70C6EC3AA366910083A0518AA ] intelide        C:\Windows\system32\drivers\intelide.sys
12:39:01.0301 0x15b4  intelide - ok
12:39:01.0331 0x15b4  [ ADA036632C664CAA754079041CF1F8C1 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
12:39:01.0331 0x15b4  intelppm - ok
12:39:01.0361 0x15b4  [ 098A91C54546A3B878DAD6A7E90A455B ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
12:39:01.0361 0x15b4  IPBusEnum - ok
12:39:01.0361 0x15b4  [ C9F0E1BD74365A8771590E9008D22AB6 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:39:01.0371 0x15b4  IpFilterDriver - ok
12:39:01.0411 0x15b4  [ 08C2957BB30058E663720C5606885653 ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
12:39:01.0421 0x15b4  iphlpsvc - ok
12:39:01.0441 0x15b4  [ 0FC1AEA580957AA8817B8F305D18CA3A ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
12:39:01.0441 0x15b4  IPMIDRV - ok
12:39:01.0451 0x15b4  [ AF9B39A7E7B6CAA203B3862582E9F2D0 ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
12:39:01.0451 0x15b4  IPNAT - ok
12:39:01.0481 0x15b4  [ 3ABF5E7213EB28966D55D58B515D5CE9 ] IRENUM          C:\Windows\system32\drivers\irenum.sys
12:39:01.0481 0x15b4  IRENUM - ok
12:39:01.0481 0x15b4  [ 2F7B28DC3E1183E5EB418DF55C204F38 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
12:39:01.0481 0x15b4  isapnp - ok
12:39:01.0511 0x15b4  [ D931D7309DEB2317035B07C9F9E6B0BD ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
12:39:01.0521 0x15b4  iScsiPrt - ok
12:39:01.0541 0x15b4  [ 455B75C19BF3F1F2EE3AC10E1169826C ] k57nd60a        C:\Windows\system32\DRIVERS\k57nd60a.sys
12:39:01.0551 0x15b4  k57nd60a - ok
12:39:01.0551 0x15b4  [ BC02336F1CBA7DCC7D1213BB588A68A5 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
12:39:01.0551 0x15b4  kbdclass - ok
12:39:01.0561 0x15b4  [ 0705EFF5B42A9DB58548EEC3B26BB484 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
12:39:01.0561 0x15b4  kbdhid - ok
12:39:01.0571 0x15b4  keycrypt - ok
12:39:01.0591 0x15b4  [ C118A82CD78818C29AB228366EBF81C3 ] KeyIso          C:\Windows\system32\lsass.exe
12:39:01.0591 0x15b4  KeyIso - ok
12:39:01.0611 0x15b4  [ 97A7070AEA4C058B6418519E869A63B4 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
12:39:01.0611 0x15b4  KSecDD - ok
12:39:01.0641 0x15b4  [ 26C43A7C2862447EC59DEDA188D1DA07 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
12:39:01.0641 0x15b4  KSecPkg - ok
12:39:01.0661 0x15b4  [ 6869281E78CB31A43E969F06B57347C4 ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
12:39:01.0661 0x15b4  ksthunk - ok
12:39:01.0691 0x15b4  [ 6AB66E16AA859232F64DEB66887A8C9C ] KtmRm           C:\Windows\system32\msdtckrm.dll
12:39:01.0691 0x15b4  KtmRm - ok
12:39:01.0721 0x15b4  [ D9F42719019740BAA6D1C6D536CBDAA6 ] LanmanServer    C:\Windows\system32\srvsvc.dll
12:39:01.0731 0x15b4  LanmanServer - ok
12:39:01.0741 0x15b4  [ 851A1382EED3E3A7476DB004F4EE3E1A ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
12:39:01.0751 0x15b4  LanmanWorkstation - ok
12:39:01.0811 0x15b4  [ B705C7097F9A0EC941D02DCE7C7D426C ] Live Updater Service C:\Program Files\Gateway\Gateway Updater\UpdaterService.exe
12:39:01.0821 0x15b4  Live Updater Service - ok
12:39:01.0841 0x15b4  [ 1538831CF8AD2979A04C423779465827 ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
12:39:01.0841 0x15b4  lltdio - ok
12:39:01.0881 0x15b4  [ C1185803384AB3FEED115F79F109427F ] lltdsvc         C:\Windows\System32\lltdsvc.dll
12:39:01.0891 0x15b4  lltdsvc - ok
12:39:01.0901 0x15b4  [ F993A32249B66C9D622EA5592A8B76B8 ] lmhosts         C:\Windows\System32\lmhsvc.dll
12:39:01.0911 0x15b4  lmhosts - ok
12:39:01.0941 0x15b4  [ D7E0BED3EA21D7BDDD410ADE51708D90 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
12:39:01.0941 0x15b4  LMS - ok
12:39:01.0991 0x15b4  [ 1A93E54EB0ECE102495A51266DCDB6A6 ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
12:39:01.0991 0x15b4  LSI_FC - ok
12:39:02.0041 0x15b4  [ 1047184A9FDC8BDBFF857175875EE810 ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
12:39:02.0051 0x15b4  LSI_SAS - ok
12:39:02.0051 0x15b4  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
12:39:02.0061 0x15b4  LSI_SAS2 - ok
12:39:02.0071 0x15b4  [ 0504EACAFF0D3C8AED161C4B0D369D4A ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
12:39:02.0081 0x15b4  LSI_SCSI - ok
12:39:02.0101 0x15b4  [ 43D0F98E1D56CCDDB0D5254CFF7B356E ] luafv           C:\Windows\system32\drivers\luafv.sys
12:39:02.0101 0x15b4  luafv - ok
12:39:02.0131 0x15b4  [ 0BB97D43299910CBFBA59C461B99B910 ] MBAMProtector   C:\Windows\system32\drivers\mbam.sys
12:39:02.0131 0x15b4  MBAMProtector - ok
12:39:02.0161 0x15b4  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
12:39:02.0171 0x15b4  MBAMScheduler - ok
12:39:02.0201 0x15b4  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
12:39:02.0211 0x15b4  MBAMService - ok
12:39:02.0241 0x15b4  [ 0BE09CD858ABF9DF6ED259D57A1A1663 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
12:39:02.0241 0x15b4  Mcx2Svc - ok
12:39:02.0261 0x15b4  [ A55805F747C6EDB6A9080D7C633BD0F4 ] megasas         C:\Windows\system32\drivers\megasas.sys
12:39:02.0261 0x15b4  megasas - ok
12:39:02.0291 0x15b4  [ BAF74CE0072480C3B6B7C13B2A94D6B3 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
12:39:02.0291 0x15b4  MegaSR - ok
12:39:02.0321 0x15b4  [ A6518DCC42F7A6E999BB3BEA8FD87567 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
12:39:02.0321 0x15b4  MEIx64 - ok
12:39:02.0351 0x15b4  [ E40E80D0304A73E8D269F7141D77250B ] MMCSS           C:\Windows\system32\mmcss.dll
12:39:02.0351 0x15b4  MMCSS - ok
12:39:02.0361 0x15b4  [ 800BA92F7010378B09F9ED9270F07137 ] Modem           C:\Windows\system32\drivers\modem.sys
12:39:02.0361 0x15b4  Modem - ok
12:39:02.0381 0x15b4  [ B03D591DC7DA45ECE20B3B467E6AADAA ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
12:39:02.0381 0x15b4  monitor - ok
12:39:02.0401 0x15b4  [ 7D27EA49F3C1F687D357E77A470AEA99 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
12:39:02.0401 0x15b4  mouclass - ok
12:39:02.0411 0x15b4  [ D3BF052C40B0C4166D9FD86A4288C1E6 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
12:39:02.0411 0x15b4  mouhid - ok
12:39:02.0421 0x15b4  [ 32E7A3D591D671A6DF2DB515A5CBE0FA ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
12:39:02.0421 0x15b4  mountmgr - ok
12:39:02.0451 0x15b4  [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
12:39:02.0451 0x15b4  MozillaMaintenance - ok
12:39:02.0481 0x15b4  [ A44B420D30BD56E145D6A2BC8768EC58 ] mpio            C:\Windows\system32\drivers\mpio.sys
12:39:02.0481 0x15b4  mpio - ok
12:39:02.0491 0x15b4  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
12:39:02.0491 0x15b4  mpsdrv - ok
12:39:02.0531 0x15b4  [ 54FFC9C8898113ACE189D4AA7199D2C1 ] MpsSvc          C:\Windows\system32\mpssvc.dll
12:39:02.0541 0x15b4  MpsSvc - ok
12:39:02.0541 0x15b4  [ DC722758B8261E1ABAFD31A3C0A66380 ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
12:39:02.0551 0x15b4  MRxDAV - ok
12:39:02.0581 0x15b4  [ A5D9106A73DC88564C825D317CAC68AC ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
12:39:02.0581 0x15b4  mrxsmb - ok
12:39:02.0611 0x15b4  [ D711B3C1D5F42C0C2415687BE09FC163 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:39:02.0621 0x15b4  mrxsmb10 - ok
12:39:02.0621 0x15b4  [ 9423E9D355C8D303E76B8CFBD8A5C30C ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:39:02.0631 0x15b4  mrxsmb20 - ok
12:39:02.0651 0x15b4  [ C25F0BAFA182CBCA2DD3C851C2E75796 ] msahci          C:\Windows\system32\drivers\msahci.sys
12:39:02.0651 0x15b4  msahci - ok
12:39:02.0651 0x15b4  [ DB801A638D011B9633829EB6F663C900 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
12:39:02.0651 0x15b4  msdsm - ok
12:39:02.0671 0x15b4  [ DE0ECE52236CFA3ED2DBFC03F28253A8 ] MSDTC           C:\Windows\System32\msdtc.exe
12:39:02.0681 0x15b4  MSDTC - ok
12:39:02.0701 0x15b4  [ AA3FB40E17CE1388FA1BEDAB50EA8F96 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
12:39:02.0701 0x15b4  Msfs - ok
12:39:02.0711 0x15b4  [ F9D215A46A8B9753F61767FA72A20326 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
12:39:02.0711 0x15b4  mshidkmdf - ok
12:39:02.0731 0x15b4  [ D916874BBD4F8B07BFB7FA9B3CCAE29D ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
12:39:02.0731 0x15b4  msisadrv - ok
12:39:02.0761 0x15b4  [ 808E98FF49B155C522E6400953177B08 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
12:39:02.0761 0x15b4  MSiSCSI - ok
12:39:02.0761 0x15b4  msiserver - ok
12:39:02.0781 0x15b4  [ 49CCF2C4FEA34FFAD8B1B59D49439366 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
12:39:02.0781 0x15b4  MSKSSRV - ok
12:39:02.0801 0x15b4  [ BDD71ACE35A232104DDD349EE70E1AB3 ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
12:39:02.0801 0x15b4  MSPCLOCK - ok
12:39:02.0831 0x15b4  [ 4ED981241DB27C3383D72092B618A1D0 ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
12:39:02.0831 0x15b4  MSPQM - ok
12:39:02.0861 0x15b4  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
12:39:02.0861 0x15b4  MsRPC - ok
12:39:02.0881 0x15b4  [ 0EED230E37515A0EAEE3C2E1BC97B288 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
12:39:02.0881 0x15b4  mssmbios - ok
12:39:02.0901 0x15b4  [ 2E66F9ECB30B4221A318C92AC2250779 ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
12:39:02.0901 0x15b4  MSTEE - ok
12:39:02.0911 0x15b4  [ 7EA404308934E675BFFDE8EDF0757BCD ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
12:39:02.0911 0x15b4  MTConfig - ok
12:39:02.0911 0x15b4  [ F9A18612FD3526FE473C1BDA678D61C8 ] Mup             C:\Windows\system32\Drivers\mup.sys
12:39:02.0921 0x15b4  Mup - ok
12:39:02.0981 0x15b4  [ 1BF9D6476061B31CD7FC2BF848529A56 ] N360            C:\Program Files (x86)\Norton Security Suite\Engine\20.4.0.40\ccSvcHst.exe
12:39:02.0981 0x15b4  N360 - ok
12:39:03.0031 0x15b4  [ 582AC6D9873E31DFA28A4547270862DD ] napagent        C:\Windows\system32\qagentRT.dll
12:39:03.0041 0x15b4  napagent - ok
12:39:03.0081 0x15b4  [ 1EA3749C4114DB3E3161156FFFFA6B33 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
12:39:03.0081 0x15b4  NativeWifiP - ok
12:39:03.0141 0x15b4  [ 9D1CCE440552500DED3A62F9D779CDB4 ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
12:39:03.0141 0x15b4  NAUpdate - ok
12:39:03.0221 0x15b4  [ 56540E526B46E379A476FB5BC381B290 ] NAVENG          C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130815.001\ENG64.SYS
12:39:03.0221 0x15b4  NAVENG - ok
12:39:03.0301 0x15b4  [ 8A19D3991F9F14B885CDE8BC640F6B68 ] NAVEX15         C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_20.1.0.24\Definitions\VirusDefs\20130815.001\EX64.SYS
12:39:03.0321 0x15b4  NAVEX15 - ok
12:39:03.0381 0x15b4  [ 760E38053BF56E501D562B70AD796B88 ] NDIS            C:\Windows\system32\drivers\ndis.sys
12:39:03.0391 0x15b4  NDIS - ok
12:39:03.0421 0x15b4  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
12:39:03.0421 0x15b4  NdisCap - ok
12:39:03.0441 0x15b4  [ 30639C932D9FEF22B31268FE25A1B6E5 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
12:39:03.0441 0x15b4  NdisTapi - ok
12:39:03.0441 0x15b4  [ 136185F9FB2CC61E573E676AA5402356 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
12:39:03.0441 0x15b4  Ndisuio - ok
12:39:03.0451 0x15b4  [ 53F7305169863F0A2BDDC49E116C2E11 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
12:39:03.0451 0x15b4  NdisWan - ok
12:39:03.0461 0x15b4  [ 015C0D8E0E0421B4CFD48CFFE2825879 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
12:39:03.0461 0x15b4  NDProxy - ok
12:39:03.0461 0x15b4  [ 86743D9F5D2B1048062B14B1D84501C4 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
12:39:03.0461 0x15b4  NetBIOS - ok
12:39:03.0471 0x15b4  [ 09594D1089C523423B32A4229263F068 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
12:39:03.0481 0x15b4  NetBT - ok
12:39:03.0501 0x15b4  [ C118A82CD78818C29AB228366EBF81C3 ] Netlogon        C:\Windows\system32\lsass.exe
12:39:03.0501 0x15b4  Netlogon - ok
12:39:03.0541 0x15b4  [ 847D3AE376C0817161A14A82C8922A9E ] Netman          C:\Windows\System32\netman.dll
12:39:03.0551 0x15b4  Netman - ok
12:39:03.0571 0x15b4  [ 5F28111C648F1E24F7DBC87CDEB091B8 ] netprofm        C:\Windows\System32\netprofm.dll
12:39:03.0571 0x15b4  netprofm - ok
12:39:03.0601 0x15b4  [ 3E5A36127E201DDF663176B66828FAFE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe
12:39:03.0601 0x15b4  NetTcpPortSharing - ok
12:39:03.0631 0x15b4  [ 77889813BE4D166CDAB78DDBA990DA92 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
12:39:03.0631 0x15b4  nfrd960 - ok
12:39:03.0671 0x15b4  [ 8AD77806D336673F270DB31645267293 ] NlaSvc          C:\Windows\System32\nlasvc.dll
12:39:03.0681 0x15b4  NlaSvc - ok
12:39:03.0701 0x15b4  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7 ] Npfs            C:\Windows\system32\drivers\Npfs.sys
12:39:03.0701 0x15b4  Npfs - ok
12:39:03.0731 0x15b4  [ D54BFDF3E0C953F823B3D0BFE4732528 ] nsi             C:\Windows\system32\nsisvc.dll
12:39:03.0731 0x15b4  nsi - ok
12:39:03.0741 0x15b4  [ E7F5AE18AF4168178A642A9247C63001 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
12:39:03.0741 0x15b4  nsiproxy - ok
12:39:03.0851 0x15b4  [ B98F8C6E31CD07B2E6F71F7F648E38C0 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
12:39:03.0871 0x15b4  Ntfs - ok
12:39:03.0931 0x15b4  [ 6CC09D2F0BA4A09BABC3C41B8FD888F7 ] NTI IScheduleSvc C:\Program Files (x86)\NTI\Gateway MyBackup\IScheduleSvc.exe
12:39:03.0941 0x15b4  NTI IScheduleSvc - ok
12:39:03.0971 0x15b4  [ 64DDD0DEE976302F4BD93E5EFCC2F013 ] NTIDrvr         C:\Windows\system32\drivers\NTIDrvr.sys
12:39:03.0971 0x15b4  NTIDrvr - ok
12:39:03.0981 0x15b4  [ 9899284589F75FA8724FF3D16AED75C1 ] Null            C:\Windows\system32\drivers\Null.sys
12:39:03.0981 0x15b4  Null - ok
12:39:04.0001 0x15b4  [ 0A92CB65770442ED0DC44834632F66AD ] nvraid          C:\Windows\system32\drivers\nvraid.sys
12:39:04.0001 0x15b4  nvraid - ok
12:39:04.0011 0x15b4  [ DAB0E87525C10052BF65F06152F37E4A ] nvstor          C:\Windows\system32\drivers\nvstor.sys
12:39:04.0011 0x15b4  nvstor - ok
12:39:04.0031 0x15b4  [ 270D7CD42D6E3979F6DD0146650F0E05 ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
12:39:04.0031 0x15b4  nv_agp - ok
12:39:04.0051 0x15b4  [ 3589478E4B22CE21B41FA1BFC0B8B8A0 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
12:39:04.0051 0x15b4  ohci1394 - ok
12:39:04.0071 0x15b4  [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
12:39:04.0071 0x15b4  ose - ok
12:39:04.0251 0x15b4  [ 61BFFB5F57AD12F83AB64B7181829B34 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
12:39:04.0291 0x15b4  osppsvc - ok
12:39:04.0321 0x15b4  [ 3EAC4455472CC2C97107B5291E0DCAFE ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
12:39:04.0331 0x15b4  p2pimsvc - ok
12:39:04.0361 0x15b4  [ 927463ECB02179F88E4B9A17568C63C3 ] p2psvc          C:\Windows\system32\p2psvc.dll
12:39:04.0371 0x15b4  p2psvc - ok
12:39:04.0391 0x15b4  [ 0086431C29C35BE1DBC43F52CC273887 ] Parport         C:\Windows\system32\drivers\parport.sys
12:39:04.0391 0x15b4  Parport - ok
12:39:04.0411 0x15b4  [ E9766131EEADE40A27DC27D2D68FBA9C ] partmgr         C:\Windows\system32\drivers\partmgr.sys
12:39:04.0411 0x15b4  partmgr - ok
12:39:04.0421 0x15b4  [ 3AEAA8B561E63452C655DC0584922257 ] PcaSvc          C:\Windows\System32\pcasvc.dll
12:39:04.0431 0x15b4  PcaSvc - ok
12:39:04.0451 0x15b4  [ 94575C0571D1462A0F70BDE6BD6EE6B3 ] pci             C:\Windows\system32\drivers\pci.sys
12:39:04.0451 0x15b4  pci - ok
12:39:04.0461 0x15b4  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA ] pciide          C:\Windows\system32\drivers\pciide.sys
12:39:04.0461 0x15b4  pciide - ok
12:39:04.0481 0x15b4  [ B2E81D4E87CE48589F98CB8C05B01F2F ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
12:39:04.0491 0x15b4  pcmcia - ok
12:39:04.0501 0x15b4  [ D6B9C2E1A11A3A4B26A182FFEF18F603 ] pcw             C:\Windows\system32\drivers\pcw.sys
12:39:04.0501 0x15b4  pcw - ok
12:39:04.0521 0x15b4  [ 68769C3356B3BE5D1C732C97B9A80D6E ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
12:39:04.0531 0x15b4  PEAUTH - ok
12:39:04.0611 0x15b4  [ E495E408C93141E8FC72DC0C6046DDFA ] PerfHost        C:\Windows\SysWow64\perfhost.exe
12:39:04.0621 0x15b4  PerfHost - ok
12:39:04.0681 0x15b4  [ C7CF6A6E137463219E1259E3F0F0DD6C ] pla             C:\Windows\system32\pla.dll
12:39:04.0701 0x15b4  pla - ok
12:39:04.0731 0x15b4  [ 25FBDEF06C4D92815B353F6E792C8129 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
12:39:04.0741 0x15b4  PlugPlay - ok
12:39:04.0751 0x15b4  [ 7195581CEC9BB7D12ABE54036ACC2E38 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
12:39:04.0751 0x15b4  PNRPAutoReg - ok
12:39:04.0761 0x15b4  [ 3EAC4455472CC2C97107B5291E0DCAFE ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
12:39:04.0761 0x15b4  PNRPsvc - ok
12:39:04.0791 0x15b4  [ 4F15D75ADF6156BF56ECED6D4A55C389 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
12:39:04.0801 0x15b4  PolicyAgent - ok
12:39:04.0811 0x15b4  [ 6BA9D927DDED70BD1A9CADED45F8B184 ] Power           C:\Windows\system32\umpo.dll
12:39:04.0811 0x15b4  Power - ok
12:39:04.0841 0x15b4  [ F92A2C41117A11A00BE01CA01A7FCDE9 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
12:39:04.0841 0x15b4  PptpMiniport - ok
12:39:04.0861 0x15b4  [ 0D922E23C041EFB1C3FAC2A6F943C9BF ] Processor       C:\Windows\system32\drivers\processr.sys
12:39:04.0861 0x15b4  Processor - ok
12:39:04.0891 0x15b4  [ 53E83F1F6CF9D62F32801CF66D8352A8 ] ProfSvc         C:\Windows\system32\profsvc.dll
12:39:04.0901 0x15b4  ProfSvc - ok
12:39:04.0911 0x15b4  [ C118A82CD78818C29AB228366EBF81C3 ] ProtectedStorage C:\Windows\system32\lsass.exe
12:39:04.0911 0x15b4  ProtectedStorage - ok
12:39:04.0931 0x15b4  [ 0557CF5A2556BD58E26384169D72438D ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
12:39:04.0931 0x15b4  Psched - ok
12:39:04.0981 0x15b4  [ A53A15A11EBFD21077463EE2C7AFEEF0 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
12:39:04.0991 0x15b4  ql2300 - ok
12:39:05.0001 0x15b4  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8 ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
12:39:05.0001 0x15b4  ql40xx - ok
12:39:05.0021 0x15b4  [ 906191634E99AEA92C4816150BDA3732 ] QWAVE           C:\Windows\system32\qwave.dll
12:39:05.0031 0x15b4  QWAVE - ok
12:39:05.0051 0x15b4  [ 76707BB36430888D9CE9D705398ADB6C ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
12:39:05.0051 0x15b4  QWAVEdrv - ok
12:39:05.0051 0x15b4  [ 5A0DA8AD5762FA2D91678A8A01311704 ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
12:39:05.0051 0x15b4  RasAcd - ok
12:39:05.0091 0x15b4  [ 7ECFF9B22276B73F43A99A15A6094E90 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
12:39:05.0091 0x15b4  RasAgileVpn - ok
12:39:05.0111 0x15b4  [ 8F26510C5383B8DBE976DE1CD00FC8C7 ] RasAuto         C:\Windows\System32\rasauto.dll
12:39:05.0111 0x15b4  RasAuto - ok
12:39:05.0121 0x15b4  [ 471815800AE33E6F1C32FB1B97C490CA ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
12:39:05.0121 0x15b4  Rasl2tp - ok
12:39:05.0141 0x15b4  [ EE867A0870FC9E4972BA9EAAD35651E2 ] RasMan          C:\Windows\System32\rasmans.dll
12:39:05.0151 0x15b4  RasMan - ok
12:39:05.0151 0x15b4  [ 855C9B1CD4756C5E9A2AA58A15F58C25 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
12:39:05.0161 0x15b4  RasPppoe - ok
12:39:05.0161 0x15b4  [ E8B1E447B008D07FF47D016C2B0EEECB ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
12:39:05.0161 0x15b4  RasSstp - ok
12:39:05.0191 0x15b4  [ 77F665941019A1594D887A74F301FA2F ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
12:39:05.0191 0x15b4  rdbss - ok
12:39:05.0211 0x15b4  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
12:39:05.0211 0x15b4  rdpbus - ok
12:39:05.0241 0x15b4  [ CEA6CC257FC9B7715F1C2B4849286D24 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
12:39:05.0241 0x15b4  RDPCDD - ok
12:39:05.0251 0x15b4  [ BB5971A4F00659529A5C44831AF22365 ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
12:39:05.0251 0x15b4  RDPENCDD - ok
12:39:05.0271 0x15b4  [ 216F3FA57533D98E1F74DED70113177A ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
12:39:05.0271 0x15b4  RDPREFMP - ok
12:39:05.0291 0x15b4  [ E61608AA35E98999AF9AAEEEA6114B0A ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
12:39:05.0301 0x15b4  RDPWD - ok
12:39:05.0301 0x15b4  [ 34ED295FA0121C241BFEF24764FC4520 ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
12:39:05.0311 0x15b4  rdyboost - ok
12:39:05.0341 0x15b4  [ 254FB7A22D74E5511C73A3F6D802F192 ] RemoteAccess    C:\Windows\System32\mprdim.dll
12:39:05.0341 0x15b4  RemoteAccess - ok
12:39:05.0371 0x15b4  [ E4D94F24081440B5FC5AA556C7C62702 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
12:39:05.0371 0x15b4  RemoteRegistry - ok
12:39:05.0391 0x15b4  [ E4DC58CF7B3EA515AE917FF0D402A7BB ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
12:39:05.0391 0x15b4  RpcEptMapper - ok
12:39:05.0411 0x15b4  [ D5BA242D4CF8E384DB90E6A8ED850B8C ] RpcLocator      C:\Windows\system32\locator.exe
12:39:05.0411 0x15b4  RpcLocator - ok
12:39:05.0431 0x15b4  [ 5C627D1B1138676C0A7AB2C2C190D123 ] RpcSs           C:\Windows\system32\rpcss.dll
12:39:05.0441 0x15b4  RpcSs - ok
12:39:05.0471 0x15b4  [ DDC86E4F8E7456261E637E3552E804FF ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
12:39:05.0471 0x15b4  rspndr - ok
12:39:05.0491 0x15b4  [ C118A82CD78818C29AB228366EBF81C3 ] SamSs           C:\Windows\system32\lsass.exe
12:39:05.0491 0x15b4  SamSs - ok
12:39:05.0501 0x15b4  [ AC03AF3329579FFFB455AA2DAABBE22B ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
12:39:05.0501 0x15b4  sbp2port - ok
12:39:05.0531 0x15b4  [ 9B7395789E3791A3B6D000FE6F8B131E ] SCardSvr        C:\Windows\System32\SCardSvr.dll
12:39:05.0531 0x15b4  SCardSvr - ok
12:39:05.0561 0x15b4  [ 253F38D0D7074C02FF8DEB9836C97D2B ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
12:39:05.0561 0x15b4  scfilter - ok
12:39:05.0591 0x15b4  [ 262F6592C3299C005FD6BEC90FC4463A ] Schedule        C:\Windows\system32\schedsvc.dll
12:39:05.0601 0x15b4  Schedule - ok
12:39:05.0631 0x15b4  [ F17D1D393BBC69C5322FBFAFACA28C7F ] SCPolicySvc     C:\Windows\System32\certprop.dll
12:39:05.0631 0x15b4  SCPolicySvc - ok
12:39:05.0691 0x15b4  [ 111E0EBC0AD79CB0FA014B907B231CF0 ] sdbus           C:\Windows\system32\DRIVERS\sdbus.sys
12:39:05.0691 0x15b4  sdbus - ok
12:39:05.0741 0x15b4  [ 6EA4234DC55346E0709560FE7C2C1972 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
12:39:05.0751 0x15b4  SDRSVC - ok
12:39:05.0771 0x15b4  [ 3EA8A16169C26AFBEB544E0E48421186 ] secdrv          C:\Windows\system32\drivers\secdrv.sys
12:39:05.0771 0x15b4  secdrv - ok
12:39:05.0811 0x15b4  [ BC617A4E1B4FA8DF523A061739A0BD87 ] seclogon        C:\Windows\system32\seclogon.dll
12:39:05.0811 0x15b4  seclogon - ok
12:39:05.0821 0x15b4  [ C32AB8FA018EF34C0F113BD501436D21 ] SENS            C:\Windows\System32\sens.dll
12:39:05.0821 0x15b4  SENS - ok
12:39:05.0831 0x15b4  [ 0336CFFAFAAB87A11541F1CF1594B2B2 ] SensrSvc        C:\Windows\system32\sensrsvc.dll
12:39:05.0831 0x15b4  SensrSvc - ok
12:39:05.0841 0x15b4  [ CB624C0035412AF0DEBEC78C41F5CA1B ] Serenum         C:\Windows\system32\drivers\serenum.sys
12:39:05.0841 0x15b4  Serenum - ok
12:39:05.0891 0x15b4  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6 ] Serial          C:\Windows\system32\drivers\serial.sys
12:39:05.0891 0x15b4  Serial - ok
12:39:05.0901 0x15b4  [ 1C545A7D0691CC4A027396535691C3E3 ] sermouse        C:\Windows\system32\drivers\sermouse.sys
12:39:05.0901 0x15b4  sermouse - ok
12:39:05.0931 0x15b4  [ 0B6231BF38174A1628C4AC812CC75804 ] SessionEnv      C:\Windows\system32\sessenv.dll
12:39:05.0931 0x15b4  SessionEnv - ok
12:39:05.0931 0x15b4  [ A554811BCD09279536440C964AE35BBF ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
12:39:05.0941 0x15b4  sffdisk - ok
12:39:05.0941 0x15b4  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
12:39:05.0941 0x15b4  sffp_mmc - ok
12:39:05.0951 0x15b4  [ DD85B78243A19B59F0637DCF284DA63C ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
12:39:05.0951 0x15b4  sffp_sd - ok
12:39:05.0951 0x15b4  [ A9D601643A1647211A1EE2EC4E433FF4 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
12:39:05.0951 0x15b4  sfloppy - ok
12:39:05.0991 0x15b4  [ C6CC9297BD53E5229653303E556AA539 ] Sftfs           C:\Windows\system32\DRIVERS\Sftfslh.sys
12:39:06.0001 0x15b4  Sftfs - ok
12:39:06.0061 0x15b4  [ 13693B6354DD6E72DC5131DA7D764B90 ] sftlist         C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
12:39:06.0071 0x15b4  sftlist - ok
12:39:06.0091 0x15b4  [ 390AA7BC52CEE43F6790CDEA1E776703 ] Sftplay         C:\Windows\system32\DRIVERS\Sftplaylh.sys
12:39:06.0091 0x15b4  Sftplay - ok
12:39:06.0111 0x15b4  [ 617E29A0B0A2807466560D4C4E338D3E ] Sftredir        C:\Windows\system32\DRIVERS\Sftredirlh.sys
12:39:06.0111 0x15b4  Sftredir - ok
12:39:06.0131 0x15b4  [ 8F571F016FA1976F445147E9E6C8AE9B ] Sftvol          C:\Windows\system32\DRIVERS\Sftvollh.sys
12:39:06.0131 0x15b4  Sftvol - ok
12:39:06.0141 0x15b4  [ C3CDDD18F43D44AB713CF8C4916F7696 ] sftvsa          C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
12:39:06.0141 0x15b4  sftvsa - ok
12:39:06.0181 0x15b4  [ B95F6501A2F8B2E78C697FEC401970CE ] SharedAccess    C:\Windows\System32\ipnathlp.dll
12:39:06.0191 0x15b4  SharedAccess - ok
12:39:06.0231 0x15b4  [ AAF932B4011D14052955D4B212A4DA8D ] ShellHWDetection C:\Windows\System32\shsvcs.dll
12:39:06.0231 0x15b4  ShellHWDetection - ok
12:39:06.0251 0x15b4  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
12:39:06.0251 0x15b4  SiSRaid2 - ok
12:39:06.0261 0x15b4  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4 ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
12:39:06.0261 0x15b4  SiSRaid4 - ok
12:39:06.0391 0x15b4  [ 0C1B2E3A897397738D9F81CD3D152AF0 ] Skype C2C Service C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
12:39:06.0421 0x15b4  Skype C2C Service - ok
12:39:06.0471 0x15b4  [ CA355B308AA537C6B9D67CD3A5485AF9 ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
12:39:06.0471 0x15b4  SkypeUpdate - ok
12:39:06.0501 0x15b4  [ 548260A7B8654E024DC30BF8A7C5BAA4 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
12:39:06.0501 0x15b4  Smb - ok
12:39:06.0521 0x15b4  [ 6313F223E817CC09AA41811DAA7F541D ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
12:39:06.0531 0x15b4  SNMPTRAP - ok
12:39:06.0541 0x15b4  [ B9E31E5CACDFE584F34F730A677803F9 ] spldr           C:\Windows\system32\drivers\spldr.sys
12:39:06.0541 0x15b4  spldr - ok
12:39:06.0581 0x15b4  [ 85DAA09A98C9286D4EA2BA8D0E644377 ] Spooler         C:\Windows\System32\spoolsv.exe
12:39:06.0591 0x15b4  Spooler - ok
12:39:06.0691 0x15b4  [ E17E0188BB90FAE42D83E98707EFA59C ] sppsvc          C:\Windows\system32\sppsvc.exe
12:39:06.0721 0x15b4  sppsvc - ok
12:39:06.0741 0x15b4  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
12:39:06.0741 0x15b4  sppuinotify - ok
12:39:06.0841 0x15b4  [ 2FD9346F9D76CB4192D37329CFA47A82 ] SRTSP           C:\Windows\System32\Drivers\N360x64\1404000.028\SRTSP64.SYS
12:39:06.0851 0x15b4  SRTSP - ok
12:39:06.0881 0x15b4  [ 0E76CEF892C45734F7AED09FDDF35D4D ] SRTSPX          C:\Windows\system32\drivers\N360x64\1404000.028\SRTSPX64.SYS
12:39:06.0881 0x15b4  SRTSPX - ok
12:39:06.0921 0x15b4  [ 441FBA48BFF01FDB9D5969EBC1838F0B ] srv             C:\Windows\system32\DRIVERS\srv.sys
12:39:06.0921 0x15b4  srv - ok
12:39:06.0931 0x15b4  [ B4ADEBBF5E3677CCE9651E0F01F7CC28 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
12:39:06.0941 0x15b4  srv2 - ok
12:39:06.0951 0x15b4  [ 27E461F0BE5BFF5FC737328F749538C3 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
12:39:06.0951 0x15b4  srvnet - ok
12:39:06.0981 0x15b4  [ 51B52FBD583CDE8AA9BA62B8B4298F33 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
12:39:06.0981 0x15b4  SSDPSRV - ok
12:39:06.0991 0x15b4  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB ] SstpSvc         C:\Windows\system32\sstpsvc.dll
12:39:06.0991 0x15b4  SstpSvc - ok
12:39:07.0011 0x15b4  [ F3817967ED533D08327DC73BC4D5542A ] stexstor        C:\Windows\system32\drivers\stexstor.sys
12:39:07.0011 0x15b4  stexstor - ok
12:39:07.0061 0x15b4  [ 8DD52E8E6128F4B2DA92CE27402871C1 ] stisvc          C:\Windows\System32\wiaservc.dll
12:39:07.0071 0x15b4  stisvc - ok
12:39:07.0091 0x15b4  [ D01EC09B6711A5F8E7E6564A4D0FBC90 ] swenum          C:\Windows\system32\drivers\swenum.sys
12:39:07.0091 0x15b4  swenum - ok
12:39:07.0131 0x15b4  [ E08E46FDD841B7184194011CA1955A0B ] swprv           C:\Windows\System32\swprv.dll
12:39:07.0131 0x15b4  swprv - ok
12:39:07.0181 0x15b4  [ 52DC0048D667757A8A2E4C87182890AC ] SymDS           C:\Windows\system32\drivers\N360x64\1404000.028\SYMDS64.SYS
12:39:07.0181 0x15b4  SymDS - ok
12:39:07.0241 0x15b4  [ 599872BAD7CFB45C7CE47CDED4B726D8 ] SymEFA          C:\Windows\system32\drivers\N360x64\1404000.028\SYMEFA64.SYS
12:39:07.0261 0x15b4  SymEFA - ok
12:39:07.0291 0x15b4  [ F19E5E37ED8134B9E5F6287F2D3A75D7 ] SymEvent        C:\Windows\system32\Drivers\SYMEVENT64x86.SYS
12:39:07.0291 0x15b4  SymEvent - ok
12:39:07.0321 0x15b4  [ ADF37F1A715D6C56C8E065FD8569A9A4 ] SymIRON         C:\Windows\system32\drivers\N360x64\1404000.028\Ironx64.SYS
12:39:07.0331 0x15b4  SymIRON - ok
12:39:07.0371 0x15b4  [ 9CDCA70485BD6B9D230365F67C31F132 ] SymNetS         C:\Windows\System32\Drivers\N360x64\1404000.028\SYMNETS.SYS
12:39:07.0371 0x15b4  SymNetS - ok
12:39:07.0441 0x15b4  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D ] SysMain         C:\Windows\system32\sysmain.dll
12:39:07.0461 0x15b4  SysMain - ok
12:39:07.0471 0x15b4  [ E3C61FD7B7C2557E1F1B0B4CEC713585 ] TabletInputService C:\Windows\System32\TabSvc.dll
12:39:07.0471 0x15b4  TabletInputService - ok
12:39:07.0481 0x15b4  [ 40F0849F65D13EE87B9A9AE3C1DD6823 ] TapiSrv         C:\Windows\System32\tapisrv.dll
12:39:07.0491 0x15b4  TapiSrv - ok
12:39:07.0501 0x15b4  [ 1BE03AC720F4D302EA01D40F588162F6 ] TBS             C:\Windows\System32\tbssvc.dll
12:39:07.0501 0x15b4  TBS - ok
12:39:07.0571 0x15b4  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
12:39:07.0591 0x15b4  Tcpip - ok
12:39:07.0624 0x15b4  [ 9849EA3843A2ADBDD1497E97A85D8CAE ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
12:39:07.0633 0x15b4  TCPIP6 - ok
12:39:07.0663 0x15b4  [ 1B16D0BD9841794A6E0CDE0CEF744ABC ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
12:39:07.0663 0x15b4  tcpipreg - ok
12:39:07.0703 0x15b4  [ 3371D21011695B16333A3934340C4E7C ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
12:39:07.0703 0x15b4  TDPIPE - ok
12:39:07.0733 0x15b4  [ 51C5ECEB1CDEE2468A1748BE550CFBC8 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
12:39:07.0733 0x15b4  TDTCP - ok
12:39:07.0753 0x15b4  [ DDAD5A7AB24D8B65F8D724F5C20FD806 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
12:39:07.0753 0x15b4  tdx - ok
12:39:07.0763 0x15b4  [ 561E7E1F06895D78DE991E01DD0FB6E5 ] TermDD          C:\Windows\system32\drivers\termdd.sys
12:39:07.0763 0x15b4  TermDD - ok
12:39:07.0793 0x15b4  [ 2E648163254233755035B46DD7B89123 ] TermService     C:\Windows\System32\termsrv.dll
12:39:07.0803 0x15b4  TermService - ok
12:39:07.0813 0x15b4  [ F0344071948D1A1FA732231785A0664C ] Themes          C:\Windows\system32\themeservice.dll
12:39:07.0813 0x15b4  Themes - ok
12:39:07.0853 0x15b4  [ E40E80D0304A73E8D269F7141D77250B ] THREADORDER     C:\Windows\system32\mmcss.dll
12:39:07.0853 0x15b4  THREADORDER - ok
12:39:07.0873 0x15b4  [ 7E7AFD841694F6AC397E99D75CEAD49D ] TrkWks          C:\Windows\System32\trkwks.dll
12:39:07.0883 0x15b4  TrkWks - ok
12:39:07.0923 0x15b4  [ 773212B2AAA24C1E31F10246B15B276C ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
12:39:07.0933 0x15b4  TrustedInstaller - ok
12:39:07.0943 0x15b4  [ CE18B2CDFC837C99E5FAE9CA6CBA5D30 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
12:39:07.0943 0x15b4  tssecsrv - ok
12:39:07.0983 0x15b4  [ D11C783E3EF9A3C52C0EBE83CC5000E9 ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
12:39:07.0983 0x15b4  TsUsbFlt - ok
12:39:08.0003 0x15b4  [ 9CC2CCAE8A84820EAECB886D477CBCB8 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
12:39:08.0003 0x15b4  TsUsbGD - ok
12:39:08.0023 0x15b4  [ 3566A8DAAFA27AF944F5D705EAA64894 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
12:39:08.0023 0x15b4  tunnel - ok
12:39:08.0053 0x15b4  [ B4DD609BD7E282BFC683CEC7EAAAAD67 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
12:39:08.0053 0x15b4  uagp35 - ok
12:39:08.0053 0x15b4  [ 2E22C1FD397A5A9FFEF55E9D1FC96C00 ] UBHelper        C:\Windows\system32\drivers\UBHelper.sys
12:39:08.0053 0x15b4  UBHelper - ok
12:39:08.0083 0x15b4  [ FF4232A1A64012BAA1FD97C7B67DF593 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
12:39:08.0083 0x15b4  udfs - ok
12:39:08.0123 0x15b4  [ 3CBDEC8D06B9968ABA702EBA076364A1 ] UI0Detect       C:\Windows\system32\UI0Detect.exe
12:39:08.0123 0x15b4  UI0Detect - ok
12:39:08.0143 0x15b4  [ 4BFE1BC28391222894CBF1E7D0E42320 ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
12:39:08.0153 0x15b4  uliagpkx - ok
12:39:08.0163 0x15b4  [ DC54A574663A895C8763AF0FA1FF7561 ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
12:39:08.0163 0x15b4  umbus - ok
12:39:08.0173 0x15b4  [ B2E8E8CB557B156DA5493BBDDCC1474D ] UmPass          C:\Windows\system32\drivers\umpass.sys
12:39:08.0173 0x15b4  UmPass - ok
12:39:08.0323 0x15b4  [ A678E5DDD974903DD71F503BDCACA218 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
12:39:08.0343 0x15b4  UNS - ok
12:39:08.0373 0x15b4  [ D47EC6A8E81633DD18D2436B19BAF6DE ] upnphost        C:\Windows\System32\upnphost.dll
12:39:08.0383 0x15b4  upnphost - ok
12:39:08.0413 0x15b4  [ 6F1A3157A1C89435352CEB543CDB359C ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
12:39:08.0413 0x15b4  usbccgp - ok
12:39:08.0433 0x15b4  [ AF0892A803FDDA7492F595368E3B68E7 ] usbcir          C:\Windows\system32\drivers\usbcir.sys
12:39:08.0433 0x15b4  usbcir - ok
12:39:08.0443 0x15b4  [ C025055FE7B87701EB042095DF1A2D7B ] usbehci         C:\Windows\system32\drivers\usbehci.sys
12:39:08.0443 0x15b4  usbehci - ok
12:39:08.0463 0x15b4  [ 287C6C9410B111B68B52CA298F7B8C24 ] usbhub          C:\Windows\system32\drivers\usbhub.sys
12:39:08.0463 0x15b4  usbhub - ok
12:39:08.0483 0x15b4  [ 9840FC418B4CBD632D3D0A667A725C31 ] usbohci         C:\Windows\system32\drivers\usbohci.sys
12:39:08.0483 0x15b4  usbohci - ok
12:39:08.0503 0x15b4  [ 73188F58FB384E75C4063D29413CEE3D ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
12:39:08.0503 0x15b4  usbprint - ok
12:39:08.0533 0x15b4  [ AAA2513C8AED8B54B189FD0C6B1634C0 ] usbscan         C:\Windows\system32\DRIVERS\usbscan.sys
12:39:08.0533 0x15b4  usbscan - ok
12:39:08.0563 0x15b4  [ FED648B01349A3C8395A5169DB5FB7D6 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:39:08.0563 0x15b4  USBSTOR - ok
12:39:08.0583 0x15b4  [ 62069A34518BCF9C1FD9E74B3F6DB7CD ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
12:39:08.0583 0x15b4  usbuhci - ok
12:39:08.0593 0x15b4  [ 454800C2BC7F3927CE030141EE4F4C50 ] usbvideo        C:\Windows\system32\Drivers\usbvideo.sys
12:39:08.0593 0x15b4  usbvideo - ok
12:39:08.0633 0x15b4  [ EDBB23CBCF2CDF727D64FF9B51A6070E ] UxSms           C:\Windows\System32\uxsms.dll
12:39:08.0633 0x15b4  UxSms - ok
12:39:08.0643 0x15b4  [ C118A82CD78818C29AB228366EBF81C3 ] VaultSvc        C:\Windows\system32\lsass.exe
12:39:08.0643 0x15b4  VaultSvc - ok
12:39:08.0663 0x15b4  [ C5C876CCFC083FF3B128F933823E87BD ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
12:39:08.0663 0x15b4  vdrvroot - ok
12:39:08.0683 0x15b4  [ 8D6B481601D01A456E75C3210F1830BE ] vds             C:\Windows\System32\vds.exe
12:39:08.0693 0x15b4  vds - ok
12:39:08.0723 0x15b4  [ DA4DA3F5E02943C2DC8C6ED875DE68DD ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
12:39:08.0723 0x15b4  vga - ok
12:39:08.0733 0x15b4  [ 53E92A310193CB3C03BEA963DE7D9CFC ] VgaSave         C:\Windows\System32\drivers\vga.sys
12:39:08.0743 0x15b4  VgaSave - ok
12:39:08.0753 0x15b4  [ 2CE2DF28C83AEAF30084E1B1EB253CBB ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
12:39:08.0753 0x15b4  vhdmp - ok
12:39:08.0763 0x15b4  [ E5689D93FFE4E5D66C0178761240DD54 ] viaide          C:\Windows\system32\drivers\viaide.sys
12:39:08.0763 0x15b4  viaide - ok
12:39:08.0783 0x15b4  [ D2AAFD421940F640B407AEFAAEBD91B0 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
12:39:08.0783 0x15b4  volmgr - ok
12:39:08.0823 0x15b4  [ A255814907C89BE58B79EF2F189B843B ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
12:39:08.0823 0x15b4  volmgrx - ok
12:39:08.0853 0x15b4  [ 0D08D2F3B3FF84E433346669B5E0F639 ] volsnap         C:\Windows\system32\drivers\volsnap.sys
12:39:08.0853 0x15b4  volsnap - ok
12:39:08.0873 0x15b4  [ 5E2016EA6EBACA03C04FEAC5F330D997 ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
12:39:08.0873 0x15b4  vsmraid - ok
12:39:08.0933 0x15b4  [ B60BA0BC31B0CB414593E169F6F21CC2 ] VSS             C:\Windows\system32\vssvc.exe
12:39:08.0943 0x15b4  VSS - ok
12:39:08.0953 0x15b4  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
12:39:08.0963 0x15b4  vwifibus - ok
12:39:08.0993 0x15b4  [ 6A3D66263414FF0D6FA754C646612F3F ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
12:39:08.0993 0x15b4  vwififlt - ok
12:39:09.0013 0x15b4  [ 1C9D80CC3849B3788048078C26486E1A ] W32Time         C:\Windows\system32\w32time.dll
12:39:09.0023 0x15b4  W32Time - ok
12:39:09.0043 0x15b4  [ 4E9440F4F152A7B944CB1663D3935A3E ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
12:39:09.0043 0x15b4  WacomPen - ok
12:39:09.0063 0x15b4  [ 356AFD78A6ED4457169241AC3965230C ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
12:39:09.0063 0x15b4  WANARP - ok
12:39:09.0063 0x15b4  [ 356AFD78A6ED4457169241AC3965230C ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
12:39:09.0063 0x15b4  Wanarpv6 - ok
12:39:09.0153 0x15b4  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
12:39:09.0173 0x15b4  WatAdminSvc - ok
12:39:09.0223 0x15b4  [ 78F4E7F5C56CB9716238EB57DA4B6A75 ] wbengine        C:\Windows\system32\wbengine.exe
12:39:09.0233 0x15b4  wbengine - ok
12:39:09.0243 0x15b4  [ 3AA101E8EDAB2DB4131333F4325C76A3 ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
12:39:09.0253 0x15b4  WbioSrvc - ok
12:39:09.0263 0x15b4  [ 7368A2AFD46E5A4481D1DE9D14848EDD ] wcncsvc         C:\Windows\System32\wcncsvc.dll
12:39:09.0263 0x15b4  wcncsvc - ok
12:39:09.0283 0x15b4  [ 20F7441334B18CEE52027661DF4A6129 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
12:39:09.0283 0x15b4  WcsPlugInService - ok
12:39:09.0293 0x15b4  [ 72889E16FF12BA0F235467D6091B17DC ] Wd              C:\Windows\system32\drivers\wd.sys
12:39:09.0293 0x15b4  Wd - ok
12:39:09.0343 0x15b4  [ 442783E2CB0DA19873B7A63833FF4CB4 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
12:39:09.0353 0x15b4  Wdf01000 - ok
12:39:09.0353 0x15b4  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiServiceHost  C:\Windows\system32\wdi.dll
12:39:09.0363 0x15b4  WdiServiceHost - ok
12:39:09.0363 0x15b4  [ BF1FC3F79B863C914687A737C2F3D681 ] WdiSystemHost   C:\Windows\system32\wdi.dll
12:39:09.0373 0x15b4  WdiSystemHost - ok
12:39:09.0403 0x15b4  [ 3DB6D04E1C64272F8B14EB8BC4616280 ] WebClient       C:\Windows\System32\webclnt.dll
12:39:09.0403 0x15b4  WebClient - ok
12:39:09.0423 0x15b4  [ C749025A679C5103E575E3B48E092C43 ] Wecsvc          C:\Windows\system32\wecsvc.dll
12:39:09.0423 0x15b4  Wecsvc - ok
12:39:09.0443 0x15b4  [ 7E591867422DC788B9E5BD337A669A08 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
12:39:09.0443 0x15b4  wercplsupport - ok
12:39:09.0453 0x15b4  [ 6D137963730144698CBD10F202E9F251 ] WerSvc          C:\Windows\System32\WerSvc.dll
12:39:09.0453 0x15b4  WerSvc - ok
12:39:09.0473 0x15b4  [ 611B23304BF067451A9FDEE01FBDD725 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
12:39:09.0473 0x15b4  WfpLwf - ok
12:39:09.0493 0x15b4  [ 05ECAEC3E4529A7153B3136CEB49F0EC ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
12:39:09.0493 0x15b4  WIMMount - ok
12:39:09.0523 0x15b4  WinDefend - ok
12:39:09.0533 0x15b4  WinHttpAutoProxySvc - ok
12:39:09.0593 0x15b4  [ 19B07E7E8915D701225DA41CB3877306 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
12:39:09.0593 0x15b4  Winmgmt - ok
12:39:09.0663 0x15b4  [ BCB1310604AA415C4508708975B3931E ] WinRM           C:\Windows\system32\WsmSvc.dll
12:39:09.0683 0x15b4  WinRM - ok
12:39:09.0743 0x15b4  [ 4FADA86E62F18A1B2F42BA18AE24E6AA ] Wlansvc         C:\Windows\System32\wlansvc.dll
12:39:09.0753 0x15b4  Wlansvc - ok
12:39:09.0803 0x15b4  [ 06C8FA1CF39DE6A735B54D906BA791C6 ] wlcrasvc        C:\Program Files\Windows Live\Mesh\wlcrasvc.exe
12:39:09.0803 0x15b4  wlcrasvc - ok
12:39:09.0893 0x15b4  [ 2BACD71123F42CEA603F4E205E1AE337 ] wlidsvc         C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
12:39:09.0913 0x15b4  wlidsvc - ok
12:39:09.0933 0x15b4  [ F6FF8944478594D0E414D3F048F0D778 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
12:39:09.0943 0x15b4  WmiAcpi - ok
12:39:09.0973 0x15b4  [ 38B84C94C5A8AF291ADFEA478AE54F93 ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
12:39:09.0973 0x15b4  wmiApSrv - ok
12:39:10.0003 0x15b4  WMPNetworkSvc - ok
12:39:10.0043 0x15b4  [ 96C6E7100D724C69FCF9E7BF590D1DCA ] WPCSvc          C:\Windows\System32\wpcsvc.dll
12:39:10.0043 0x15b4  WPCSvc - ok
12:39:10.0043 0x15b4  [ 93221146D4EBBF314C29B23CD6CC391D ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
12:39:10.0053 0x15b4  WPDBusEnum - ok
12:39:10.0073 0x15b4  [ 6BCC1D7D2FD2453957C5479A32364E52 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
12:39:10.0073 0x15b4  ws2ifsl - ok
12:39:10.0093 0x15b4  [ E8B1FE6669397D1772D8196DF0E57A9E ] wscsvc          C:\Windows\System32\wscsvc.dll
12:39:10.0093 0x15b4  wscsvc - ok
12:39:10.0103 0x15b4  WSearch - ok
12:39:10.0193 0x15b4  [ D9EF901DCA379CFE914E9FA13B73B4C4 ] wuauserv        C:\Windows\system32\wuaueng.dll
12:39:10.0223 0x15b4  wuauserv - ok
12:39:10.0263 0x15b4  [ AB886378EEB55C6C75B4F2D14B6C869F ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
12:39:10.0263 0x15b4  WudfPf - ok
12:39:10.0283 0x15b4  [ DDA4CAF29D8C0A297F886BFE561E6659 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
12:39:10.0283 0x15b4  WUDFRd - ok
12:39:10.0313 0x15b4  [ B20F051B03A966392364C83F009F7D17 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
12:39:10.0313 0x15b4  wudfsvc - ok
12:39:10.0343 0x15b4  [ FE90B750AB808FB9DD8FBB428B5FF83B ] WwanSvc         C:\Windows\System32\wwansvc.dll
12:39:10.0353 0x15b4  WwanSvc - ok
12:39:10.0353 0x15b4  ================ Scan global ===============================
12:39:10.0393 0x15b4  [ BA0CD8C393E8C9F83354106093832C7B ] C:\Windows\system32\basesrv.dll
12:39:10.0433 0x15b4  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
12:39:10.0443 0x15b4  [ 0C27239FEA4DB8A2AAC9E502186B7264 ] C:\Windows\system32\winsrv.dll
12:39:10.0463 0x15b4  [ D6160F9D869BA3AF0B787F971DB56368 ] C:\Windows\system32\sxssrv.dll
12:39:10.0493 0x15b4  [ 24ACB7E5BE595468E3B9AA488B9B4FCB ] C:\Windows\system32\services.exe
12:39:10.0503 0x15b4  [Global] - ok
12:39:10.0503 0x15b4  ================ Scan MBR ==================================
12:39:10.0523 0x15b4  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
12:39:11.0724 0x15b4  \Device\Harddisk0\DR0 - ok
12:39:11.0724 0x15b4  ================ Scan VBR ==================================
12:39:11.0754 0x15b4  [ 19D351D056926FF3BB43E0544E36B886 ] \Device\Harddisk0\DR0\Partition1
12:39:11.0754 0x15b4  \Device\Harddisk0\DR0\Partition1 - ok
12:39:11.0774 0x15b4  [ 0875E517BC1E823FF79DEA37F81B37AF ] \Device\Harddisk0\DR0\Partition2
12:39:11.0774 0x15b4  \Device\Harddisk0\DR0\Partition2 - ok
12:39:11.0784 0x15b4  ============================================================
12:39:11.0784 0x15b4  Scan finished
12:39:11.0784 0x15b4  ============================================================
12:39:11.0794 0x14f4  Detected object count: 0
12:39:11.0794 0x14f4  Actual detected object count: 0
12:40:57.0529 0x1094  Deinitialize success
 



#3.)

 

# AdwCleaner v2.306 - Logfile created 08/16/2013 at 12:42:32
# Updated 19/07/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Sara - SARA-PC
# Boot Mode : Normal
# Running from : C:\Users\Sara\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : C:\END
File Deleted : C:\Users\Sara\AppData\Roaming\Mozilla\Firefox\Profiles\f3o6jkd3.default\extensions\addon@defaulttab.com.xpi
File Deleted : C:\Users\Sara\AppData\Roaming\Mozilla\Firefox\Profiles\f3o6jkd3.default\searchplugins\Conduit.xml
File Deleted : C:\Users\Sara\AppData\Roaming\Mozilla\Firefox\Profiles\f3o6jkd3.default\searchplugins\search.xml
Folder Deleted : C:\Program Files (x86)\Conduit
Folder Deleted : C:\Program Files (x86)\DefaultTab
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\Users\Sara\AppData\Local\Conduit
Folder Deleted : C:\Users\Sara\AppData\LocalLow\Conduit
Folder Deleted : C:\Users\Sara\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Sara\AppData\Roaming\DefaultTab

***** [Registry] *****

Key Deleted : HKCU\Software\AppDataLow\Software\Conduit
Key Deleted : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\DefaultTab
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\xfin_portal
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\Default Tab
Key Deleted : HKCU\Software\DefaultTab
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{49BC4DD1-0E69-4611-9164-0009538C5E46}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\DefaultTabBHO.DLL
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX
Key Deleted : HKLM\SOFTWARE\Classes\DefaultTabBHO.DefaultTabBrowserActiveX.1
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3287375
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A11A6BD-7880-49BD-92D4-6F09D0BD3250}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{68DE31F7-43FF-4EE2-B88B-10665016970D}
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\Default Tab
Key Deleted : HKLM\Software\DefaultTab
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{08635077-8829-49E2-B338-C968817EB460}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{20A3F109-F7C1-47B4-8098-8E654B264B1D}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4B9BCCE8-A70B-402A-A7E1-DB96831EE26F}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{8C7478AB-3155-463E-936F-55F91F0F10D0}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9E1B65EE-A131-42B4-94CA-847505E2F611}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\kdidombaedgpfiiedeimiebkmbilgmlc
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{1791C1B5-FFD0-4D4B-ABCD-7A7DF6EAA89C}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49BC4DD1-0E69-4611-9164-0009538C5E46}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\DefaultTab
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0214A12B-C5A3-437F-A6F3-068ABCD8C85E}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{96DD9437-5D20-4EFB-BF52-A4A605A4E0AA}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{49BC4DD1-0E69-4611-9164-0009538C5E46}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

***** [Internet Browsers] *****

-\\ Internet Explorer v10.0.9200.16635

[OK] Registry is clean.

-\\ Mozilla Firefox v21.0 (en-US)

File : C:\Users\Sara\AppData\Roaming\Mozilla\Firefox\Profiles\f3o6jkd3.default\prefs.js

Deleted : user_pref("CT3287375.1000082.isPlayDisplay", "true");
Deleted : user_pref("CT3287375.1000082.state", "{\"state\":\"stopped\",\"text\":\"Californi...\",\"description[...]
Deleted : user_pref("CT3287375.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3287375.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"tru[...]
Deleted : user_pref("CT3287375.FF19Solved", "true");
Deleted : user_pref("CT3287375.FirstTime", "true");
Deleted : user_pref("CT3287375.FirstTimeFF3", "true");
Deleted : user_pref("CT3287375.PG_ENABLE", "dHJ1ZQ==");
Deleted : user_pref("CT3287375.SearchFromAddressBarUrl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT328[...]
Deleted : user_pref("CT3287375.UserID", "UN29844981905797123");
Deleted : user_pref("CT3287375.YTbyClickFavorites.enc", "W10=");
Deleted : user_pref("CT3287375.YTbyClickRecent.enc", "W10=");
Deleted : user_pref("CT3287375.addressBarTakeOverEnabledInHidden", "true");
Deleted : user_pref("CT3287375.autoDisableScopes", -1);
Deleted : user_pref("CT3287375.browser.search.defaultthis.engineName", "true");
Deleted : user_pref("CT3287375.defaultSearch", "true");
Deleted : user_pref("CT3287375.embeddedsData", "[{\"appId\":\"10000002\",\"apiPermissions\":{\"crossDomainAjax[...]
Deleted : user_pref("CT3287375.enableAlerts", "true");
Deleted : user_pref("CT3287375.enableFix404ByUser", "TRUE");
Deleted : user_pref("CT3287375.enableSearchFromAddressBar", "true");
Deleted : user_pref("CT3287375.firstTimeDialogOpened", "true");
Deleted : user_pref("CT3287375.fixPageNotFoundError", "true");
Deleted : user_pref("CT3287375.fixPageNotFoundErrorByUser", "true");
Deleted : user_pref("CT3287375.fixPageNotFoundErrorInHidden", "true");
Deleted : user_pref("CT3287375.fixUrls", true);
Deleted : user_pref("CT3287375.installDate", "12/5/2013 21:13:39");
Deleted : user_pref("CT3287375.installId", "stub.exe");
Deleted : user_pref("CT3287375.installSessionId", "{B3D4E984-EC37-48CA-AF10-2B19081C9683}");
Deleted : user_pref("CT3287375.installSp", "TRUE");
Deleted : user_pref("CT3287375.installType", "conduitnsisintegration");
Deleted : user_pref("CT3287375.installUsage", "2013-05-13T05:07:55.6767226+03:00");
Deleted : user_pref("CT3287375.installUsageEarly", "2013-05-13T05:07:54.5223078+03:00");
Deleted : user_pref("CT3287375.installerVersion", "1.4.2.3");
Deleted : user_pref("CT3287375.isCheckedStartAsHidden", true);
Deleted : user_pref("CT3287375.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3287375.isFirstTimeToolbarLoading", "false");
Deleted : user_pref("CT3287375.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
Deleted : user_pref("CT3287375.keyword", "true");
Deleted : user_pref("CT3287375.lastNewTabSettings", "{\"isEnabled\":true,\"newTabUrl\":\"hxxp://search.conduit[...]
Deleted : user_pref("CT3287375.lastVersion", "10.16.1.21");
Deleted : user_pref("CT3287375.mam_gk_appStateReportTime.enc", "MTM2ODQxMDg4OTQyNQ==");
Deleted : user_pref("CT3287375.mam_gk_appState_CouponBuddy.enc", "b24=");
Deleted : user_pref("CT3287375.mam_gk_appState_PriceGong.enc", "b24=");
Deleted : user_pref("CT3287375.mam_gk_appsData.enc", "eyJhcHBzIjpbeyJpZCI6IlByaWNlR29uZyIsInVybCI6Imh0dHA6Ly9w[...]
Deleted : user_pref("CT3287375.mam_gk_appsDefaultEnabled.enc", "dHJ1ZQ==");
Deleted : user_pref("CT3287375.mam_gk_configuration.enc", "eyJjb25maWd1cmF0aW9uIjpbeyJpZCI6IkNvdXBvbkJ1ZGR5Iiw[...]
Deleted : user_pref("CT3287375.mam_gk_currentVersion.enc", "MS41LjAuMw==");
Deleted : user_pref("CT3287375.mam_gk_eventsCache.enc", "eyJkYzM5YmJlNi1mNTExLTRjMTktODhiZC0xY2RiMjNjYWUxNDMiO[...]
Deleted : user_pref("CT3287375.mam_gk_first_time.enc", "MQ==");
Deleted : user_pref("CT3287375.mam_gk_gadgetOpen.enc", "MA==");
Deleted : user_pref("CT3287375.mam_gk_installer_preapproved.enc", "ZmFsc2U=");
Deleted : user_pref("CT3287375.mam_gk_lastLoginTime.enc", "MTM2ODQxMDg4NTYxNg==");
Deleted : user_pref("CT3287375.mam_gk_localization.enc", "eyJnYWRnZXRDb250ZW50UG9saWN5Ijp7IlRleHQiOiJDb250ZW50[...]
Deleted : user_pref("CT3287375.mam_gk_pgUnloadedOnce.enc", "dHJ1ZQ==");
Deleted : user_pref("CT3287375.mam_gk_settings1.5.0.3.enc", "eyJTdGF0dXMiOiJzdWNjZWVkZWQiLCJEYXRhIjp7ImludGVyd[...]
Deleted : user_pref("CT3287375.mam_gk_showCloseButton.enc", "dHJ1ZQ==");
Deleted : user_pref("CT3287375.mam_gk_showWelcomeGadget.enc", "dHJ1ZQ==");
Deleted : user_pref("CT3287375.mam_gk_userId.enc", "MGQ5OTg3MGQtMDY1My00YmI2LWFkZDMtNGNkNDc0MjU4N2Fk");
Deleted : user_pref("CT3287375.migrateAppsAndComponents", true);
Deleted : user_pref("CT3287375.navigationAliasesJson", "{\"EB_SEARCH_TERM\":\"\",\"EB_MAIN_FRAME_URL\":\"hxxp%[...]
Deleted : user_pref("CT3287375.openThankYouPage", "false");
Deleted : user_pref("CT3287375.openUninstallPage", "true");
Deleted : user_pref("CT3287375.originalHomepage", "hxxp://www.yahoo.com/?ilc=1");
Deleted : user_pref("CT3287375.originalSearchAddressUrl", "");
Deleted : user_pref("CT3287375.originalSearchEngine", "");
Deleted : user_pref("CT3287375.price-gong.isManagedApp", "true");
Deleted : user_pref("CT3287375.revertSettingsEnabled", "false");
Deleted : user_pref("CT3287375.search.searchAppId", "10000002");
Deleted : user_pref("CT3287375.search.searchCount", "0");
Deleted : user_pref("CT3287375.searchFromAddressBarEnabledByUser", "true");
Deleted : user_pref("CT3287375.searchInNewTabEnabledByUser", "true");
Deleted : user_pref("CT3287375.searchInNewTabEnabledInHidden", "true");
Deleted : user_pref("CT3287375.searchRevert", "false");
Deleted : user_pref("CT3287375.searchUserMode", "2");
Deleted : user_pref("CT3287375.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
Deleted : user_pref("CT3287375.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"d[...]
Deleted : user_pref("CT3287375.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"2\[...]
Deleted : user_pref("CT3287375.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"d[...]
Deleted : user_pref("CT3287375.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"strin[...]
Deleted : user_pref("CT3287375.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"strin[...]
Deleted : user_pref("CT3287375.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data[...]
Deleted : user_pref("CT3287375.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1368410879164");
Deleted : user_pref("CT3287375.serviceLayer_services_appsMetadata_lastUpdate", "1368410879037");
Deleted : user_pref("CT3287375.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1368410878921");
Deleted : user_pref("CT3287375.serviceLayer_services_installUsage_ToolbarInstallEarly_lastUpdate", "1368410878[...]
Deleted : user_pref("CT3287375.serviceLayer_services_installUsage_ToolbarInstall_lastUpdate", "1368410879389")[...]
Deleted : user_pref("CT3287375.serviceLayer_services_location_lastUpdate", "1368410878008");
Deleted : user_pref("CT3287375.serviceLayer_services_login_10.16.1.21_lastUpdate", "1368410879183");
Deleted : user_pref("CT3287375.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1368410878976");
Deleted : user_pref("CT3287375.serviceLayer_services_searchAPI_lastUpdate", "1368410878016");
Deleted : user_pref("CT3287375.serviceLayer_services_serviceMap_lastUpdate", "1368410876922");
Deleted : user_pref("CT3287375.serviceLayer_services_toolbarContextMenu_lastUpdate", "1368410878815");
Deleted : user_pref("CT3287375.serviceLayer_services_toolbarSettings_lastUpdate", "1368410877894");
Deleted : user_pref("CT3287375.serviceLayer_services_translation_lastUpdate", "1368410879053");
Deleted : user_pref("CT3287375.settingsINI", true);
Deleted : user_pref("CT3287375.shouldFirstTimeDialog", "false");
Deleted : user_pref("CT3287375.showToolbarPermission", "false");
Deleted : user_pref("CT3287375.smartbar.CTID", "CT3287375");
Deleted : user_pref("CT3287375.smartbar.Uninstall", "0");
Deleted : user_pref("CT3287375.smartbar.homepage", "true");
Deleted : user_pref("CT3287375.smartbar.toolbarName", "Vafmusic ");
Deleted : user_pref("CT3287375.startPage", "true");
Deleted : user_pref("CT3287375.toolbarBornServerTime", "13-5-2013");
Deleted : user_pref("CT3287375.toolbarCurrentServerTime", "13-5-2013");
Deleted : user_pref("CT3287375.toolbarLoginClientTime", "Sun May 12 2013 22:07:59 GMT-0400 (Eastern Daylight T[...]
Deleted : user_pref("CT3287375.versionFromInstaller", "10.16.1.21");
Deleted : user_pref("CT3287375_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\"[...]
Deleted : user_pref("Smartbar.ConduitHomepagesList", "hxxp://search.conduit.com/?ctid=CT3287375&CUI=UN29844981[...]
Deleted : user_pref("Smartbar.ConduitSearchEngineList", "Vafmusic Customized Web Search");
Deleted : user_pref("Smartbar.ConduitSearchUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3287375[...]
Deleted : user_pref("Smartbar.SearchFromAddressBarSavedUrl", "");
Deleted : user_pref("Smartbar.keywordURLSelectedCTID", "CT3287375");
Deleted : user_pref("browser.search.defaultthis.engineName", "Vafmusic Customized Web Search");
Deleted : user_pref("browser.search.defaulturl", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3287375&CUI[...]
Deleted : user_pref("browser.search.order.1", "Ask.com");
Deleted : user_pref("browser.search.selectedEngine", "Vafmusic Customized Web Search");
Deleted : user_pref("extensions.defaulttab.config", "{\"status\": \"ok\", \"config\": {\"dns_error_handling\":[...]
Deleted : user_pref("keyword.URL", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT3287375&SearchSource=2&CU[...]
Deleted : user_pref("smartbar.addressBarOwnerCTID", "CT3287375");
Deleted : user_pref("smartbar.conduitHomepageList", "hxxp://search.conduit.com/?ctid=CT3287375&CUI=UN298449819[...]
Deleted : user_pref("smartbar.conduitSearchAddressUrlList", "hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT[...]
Deleted : user_pref("smartbar.defaultSearchOwnerCTID", "CT3287375");
Deleted : user_pref("smartbar.homePageOwnerCTID", "CT3287375");
Deleted : user_pref("smartbar.machineId", "Y5T+SYDQQA4TEBYCP068BBQ8UVUPYZTWHBRQYODVGTGD3OJD+ZUTLKUKSJCJDHW9MWR[...]
Deleted : user_pref("smartbar.originalHomepage", "hxxp://search.conduit.com/?ctid=CT3287375&CUI=UN298449819057[...]

*************************

AdwCleaner[S1].txt - [16123 octets] - [16/08/2013 12:42:32]

########## EOF - C:\AdwCleaner[S1].txt - [16184 octets] ##########
 

#4)

C:\OEM\Preload\Autorun\APP\Nero 10 Essentials Gateway Edition\ISSetupPrerequisites\{BF80A1C0-C3FF-4B1C-ABEF-22CD4F97A0AB}\Toolbar.exe    a variant of Win32/Bundled.Toolbar.Ask.A application    cleaned by deleting - quarantined
 

Thank you!!!!!



#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:44 PM

Posted 19 August 2013 - 08:40 AM

Has the music stooped?


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 thebirdster

thebirdster
  • Topic Starter

  • Members
  • 21 posts
  • OFFLINE
  •  
  • Local time:09:44 PM

Posted 19 August 2013 - 12:43 PM

there was never any music playing just a "vafmusic" searchbar and tool bar and tons of pop up videos (ads) and my computer kept spontaneously opening new pages/tabs ( with ads etc) also, some of the words in otherwise ordinary text/articles was highlighted in blue so you would "click" on it i guess. also, there are regular popup thingies telling me my yada yada yada is out of date and i need to install or update. ( not the legit ones.. cheesy looking ones) the vafmusic searchbar is now gone but everything else is still going on :/



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,906 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:09:44 PM

Posted 19 August 2013 - 01:27 PM

Appears to be a Bootkit. Please Start a new topic with that info  above and a DDS log from here.
 
Preparation Guide and post in a new topic.
Let me know if all went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users