Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

JDIBackup, GOffer, MyPCBackup, and more!


  • This topic is locked This topic is locked
20 replies to this topic

#1 digitalmofo

digitalmofo

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 19 November 2013 - 03:08 AM

I cannot get rid of this.  It is popping up for me to install realplayer near my system tray and popping up telling me to backup my photos.  It is running lkuerjdi.exe and vrtytdrp.exe and will not go away.  I am running Windows 7.  MalwareBytes and Microsot Security are not even detecting it.  Combofix didn't remove it.  Hijackthis.de did not find it in my hijack log.  ADWCleaner and TDSSKiller are not finding anything.  There are no weird programs installed (that I can see) and I cannot find anything in the registry named any of this.  Could anyone please help?  This is drilling me.  I am being drilled by it.  If you can help, please do, I am out of ideas and this stinks.  :(



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:51 PM

Posted 19 November 2013 - 10:28 AM

Welcome, lets see how it is after these.

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
  • .
    .
    .
    ADW Cleaner

    Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .

    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.
  • Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 digitalmofo

digitalmofo
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 19 November 2013 - 08:08 PM

Mini toolbox result:

 

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Stormtrooper (administrator) on 19-11-2013 at 17:07:34
Running from "C:\Users\Stormtrooper\Downloads"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
127.0.0.1       localhost
 
========================= IP Configuration: ================================
 
Realtek PCIe GBE Family Controller = Local Area Connection (Connected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Stormtrooper-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : socal.rr.com
 
Ethernet adapter Local Area Connection:
 
   Connection-specific DNS Suffix  . : socal.rr.com
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : 8C-89-A5-C3-8A-A6
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : fd34:51b9:cb6b:0:f9b1:1cd7:99d:9edc(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::f9b1:1cd7:99d:9edc%13(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.102(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : Tuesday, November 19, 2013 6:46:47 AM
   Lease Expires . . . . . . . . . . : Wednesday, November 20, 2013 6:46:46 AM
   Default Gateway . . . . . . . . . : fe80::5a6d:8fff:fecf:7fdc%13
                                       192.168.1.1
   DHCP Server . . . . . . . . . . . : 192.168.1.1
   DHCPv6 IAID . . . . . . . . . . . : 361531813
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-17-2E-04-61-54-04-A6-DF-F2-2E
   DNS Servers . . . . . . . . . . . : 209.18.47.61
                                       209.18.47.62
                                       192.168.1.1
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Tunnel adapter isatap.socal.rr.com:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : socal.rr.com
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #5
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61
 
Name:    google.com
Addresses:  2607:f8b0:4007:803::1009
 74.125.239.1
 74.125.239.2
 74.125.239.3
 74.125.239.4
 74.125.239.5
 74.125.239.6
 74.125.239.7
 74.125.239.8
 74.125.239.9
 74.125.239.14
 74.125.239.0
 
 
Pinging google.com [74.125.239.2] with 32 bytes of data:
Reply from 74.125.239.2: bytes=32 time=31ms TTL=52
Reply from 74.125.239.2: bytes=32 time=18ms TTL=52
 
Ping statistics for 74.125.239.2:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 18ms, Maximum = 31ms, Average = 24ms
Server:  dns-cac-lb-01.rr.com
Address:  209.18.47.61
 
Name:    yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
Pinging yahoo.com [98.138.253.109] with 32 bytes of data:
Reply from 98.138.253.109: bytes=32 time=189ms TTL=45
Reply from 98.138.253.109: bytes=32 time=162ms TTL=45
 
Ping statistics for 98.138.253.109:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 162ms, Maximum = 189ms, Average = 175ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 13...8c 89 a5 c3 8a a6 ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 19...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #5
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1    192.168.1.102     20
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link     192.168.1.102    276
    192.168.1.102  255.255.255.255         On-link     192.168.1.102    276
    192.168.1.255  255.255.255.255         On-link     192.168.1.102    276
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link     192.168.1.102    276
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link     192.168.1.102    276
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 13    276 ::/0                     fe80::5a6d:8fff:fecf:7fdc
  1    306 ::1/128                  On-link
 13     36 2605:e000:1411:81c4::/64 fe80::5a6d:8fff:fecf:7fdc
 13     28 2605:e000:1411:81c4::/72 On-link
 13     28 fd34:51b9:cb6b::/64      On-link
 13    276 fd34:51b9:cb6b:0:f9b1:1cd7:99d:9edc/128
                                    On-link
 13    276 fe80::/64                On-link
 13    276 fe80::f9b1:1cd7:99d:9edc/128
                                    On-link
  1    306 ff00::/8                 On-link
 13    276 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\Windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\Windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\Windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [132968] (Apple Inc.)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (11/19/2013 06:48:24 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2013 11:49:07 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2013 04:10:17 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2013 07:09:43 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/17/2013 08:33:08 PM) (Source: Windows Backup) (User: )
Description: The backup was not successful. The error is: There is not enough space on this drive to save the backup. Free up space by deleting older backups and unnecessary data or change your backup settings. (0x81000005).
 
Error: (11/17/2013 09:45:41 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/17/2013 06:58:35 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/17/2013 06:57:55 AM) (Source: Windows Search Service) (User: )
Description: The index cannot be initialized.
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (11/17/2013 06:57:55 AM) (Source: Windows Search Service) (User: )
Description: The application cannot be initialized.
 
Context: Windows Application
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (11/17/2013 06:57:55 AM) (Source: Windows Search Service) (User: )
Description: The gatherer object cannot be initialized.
 
Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
 
System errors:
=============
Error: (11/19/2013 06:46:52 AM) (Source: Service Control Manager) (User: )
Description: The NPVR Recording Service service failed to start due to the following error: 
%%2
 
Error: (11/18/2013 11:47:35 PM) (Source: Service Control Manager) (User: )
Description: The NPVR Recording Service service failed to start due to the following error: 
%%2
 
Error: (11/18/2013 11:40:17 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (11/18/2013 11:38:24 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (11/18/2013 11:32:22 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (11/18/2013 11:31:59 PM) (Source: Application Popup) (User: )
Description: \??\C:\ComboFix\catchme.sys has been blocked from loading due to incompatibility with this system. Please contact your software vendor for a compatible version of the driver.
 
Error: (11/18/2013 11:30:12 PM) (Source: Service Control Manager) (User: )
Description: The PEVSystemStart service is marked as an interactive service.  However, the system is configured to not allow interactive services.  This service may not function properly.
 
Error: (11/18/2013 04:08:52 PM) (Source: Service Control Manager) (User: )
Description: The NPVR Recording Service service failed to start due to the following error: 
%%2
 
Error: (11/18/2013 07:43:29 AM) (Source: cdrom) (User: )
Description: The driver detected a controller error on \Device\CdRom0.
 
Error: (11/18/2013 07:08:05 AM) (Source: Service Control Manager) (User: )
Description: The NPVR Recording Service service failed to start due to the following error: 
%%2
 
 
Microsoft Office Sessions:
=========================
Error: (11/19/2013 06:48:24 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2013 11:49:07 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2013 04:10:17 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/18/2013 07:09:43 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/17/2013 08:33:08 PM) (Source: Windows Backup)(User: )
Description: There is not enough space on this drive to save the backup. Free up space by deleting older backups and unnecessary data or change your backup settings. (0x81000005)
 
Error: (11/17/2013 09:45:41 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/17/2013 06:58:35 AM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (11/17/2013 06:57:55 AM) (Source: Windows Search Service)(User: )
Description: 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (11/17/2013 06:57:55 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
Error: (11/17/2013 06:57:55 AM) (Source: Windows Search Service)(User: )
Description: Context: Windows Application, SystemIndex Catalog
 
 
Details:
The content index catalog is corrupt.  (HRESULT : 0xc0041801) (0xc0041801)
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-11-18 23:31:59.598
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
  Date: 2013-11-18 23:31:59.559
  Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 
 
=========================== Installed Programs ============================
 
Ace Stream Media 2.1.5.3 (Version: 2.1.5.3)
Adobe AIR (Version: 3.2.0.2070)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.117)
Adobe Flash Player 11 Plugin (Version: 11.9.900.117)
Adobe Reader X (10.1.7) (Version: 10.1.7)
Adobe Shockwave Player 11.6 (Version: 11.6.4.634)
Amazon MP3 Downloader 1.0.17 (Version: 1.0.17)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
Asmedia ASM104x USB 3.0 Host Controller Driver (Version: 1.14.8.0)
ASUS E-Green Uninstall
ASUS PCE-N10 WLAN Card Utilities & Driver (Version: 1.0.0.9)
Bonjour (Version: 3.0.0.10)
CCleaner (Version: 4.07)
Cisco EAP-FAST Module (Version: 2.2.14)
Cisco LEAP Module (Version: 1.0.19)
Cisco PEAP Module (Version: 1.1.6)
CLICKBIOSII (Version: 1.0.107)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Cyberduck 4.3.1 (11008) (Version: 4.3.1 (11008))
Dropbox (Version: 2.0.22)
DVD Flick 1.3.0.7 (Version: 1.3.0.7)
DVDFab 8.2.2.5 (14/12/2012) Qt
DVDFab 9.0.1.6 (14/12/2012) Qt
DVDStyler v2.5 beta 3
E-Hammer (Version: 1.0.0)
f.lux
Fast Boot (Version: 1.0.0.8)
Garmin Communicator Plugin (Version: 4.0.4)
Garmin Communicator Plugin x64 (Version: 4.0.4)
GeForce Experience NvStream Client Components (Version: 1.6.28)
Google Chrome (Version: 31.0.1650.57)
Google Earth (Version: 7.1.1.1888)
Google Update Helper (Version: 1.3.21.165)
HTC BMP USB Driver (Version: 1.0.5375)
HTC Driver Installer (Version: 4.0.1.002)
HTC Sync (Version: 3.2.20)
iCloud (Version: 3.0.2.163)
Intel® Management Engine Components (Version: 8.0.1.1399)
Intel® USB 3.0 eXtensible Host Controller Driver (Version: 1.0.5.235)
Intel® Trusted Connect Service Client (Version: 1.23.219.2)
IPTInstaller (Version: 4.0.8)
iTunes (Version: 11.1.3.8)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Java™ 6 Update 33 (Version: 6.0.330)
KeyTweak - Keyboard Remapper (remove only)
Launchpad Enhanced (Version: 0.05.000)
LAV Filters 0.57.0 (Version: 0.57.0)
Live Update 5 (Version: 5.0.101)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Marvel Heroes
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Office Excel Viewer (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Office Word Viewer 2003 (Version: 11.0.8173.0)
Microsoft PowerPoint Viewer (Version: 14.0.7015.1000)
Microsoft Security Client (Version: 4.4.0304.0)
Microsoft Security Essentials (Version: 4.4.304.0)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (Version: 10.0.30319)
MotioninJoy Gamepad tool 0.7.0000 (Version: 0.7.0000)
Motorola Device Manager (Version: 2.4.3)
Motorola Device Software Update (Version: 13.07.3101)
Motorola Mobile Drivers Installation 6.2.0 (Version: 6.2.0)
Mozilla Thunderbird 17.0.5 (x86 en-US) (Version: 17.0.5)
MSI SUITE (Version: 1.0.029)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB2721691) (Version: 4.30.2114.0)
MSXML 4.0 SP3 Parser (KB2758694) (Version: 4.30.2117.0)
MSXML 4.0 SP3 Parser (Version: 4.30.2100.0)
Nero BurnRights 10 Help (CHM) (Version: 1.0.10900)
Nero ControlCenter 10 Help (CHM) (Version: 1.0.10900)
Nero CoverDesigner 10 Help (CHM) (Version: 1.0.10900)
Nero DiscSpeed 10 Help (CHM) (Version: 1.0.10900)
Nero Express 10 Help (CHM) (Version: 1.0.10900)
Nero InfoTool 10 Help (CHM) (Version: 1.0.10900)
Nero MediaHub 10 Help (CHM) (Version: 1.0.10900)
Nero StartSmart 10 (Version: 10.0.12600.30.100)
Nero StartSmart 10 Help (CHM) (Version: 1.0.10900)
Nero Update (Version: 1.0.0018)
NVIDIA 3D Vision Controller Driver (Version: 275.33)
NVIDIA 3D Vision Controller Driver 331.65 (Version: 331.65)
NVIDIA 3D Vision Driver 331.65 (Version: 331.65)
NVIDIA Control Panel 331.65 (Version: 331.65)
NVIDIA GeForce Experience 1.7.1 (Version: 1.7.1)
NVIDIA Graphics Driver 331.65 (Version: 331.65)
NVIDIA HD Audio Driver 1.3.26.4 (Version: 1.3.26.4)
NVIDIA Install Application (Version: 2.1002.140.952)
NVIDIA LED Visualizer 1.0 (Version: 1.0)
NVIDIA PhysX (Version: 9.13.0725)
NVIDIA PhysX System Software 9.13.0725 (Version: 9.13.0725)
NVIDIA ShadowPlay 9.3.21 (Version: 9.3.21)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.13.3165)
NVIDIA Update 9.3.21 (Version: 9.3.21)
NVIDIA Update Components (Version: 9.3.21)
NVIDIA Virtual Audio 1.2.9 (Version: 1.2.9)
OpenOffice.org 3.3 (Version: 3.3.9567)
Paint.NET v3.5.10 (Version: 3.60.0)
Plex (Version: 0.9.504)
Plex Media Server (Version: 0.9.806)
QuickTime (Version: 7.74.80.86)
Realtek Ethernet Controller Driver (Version: 7.67.1226.2012)
Realtek High Definition Audio Driver (Version: 6.0.1.6823)
RSDLite (Version: 4.8)
SHIELD Streaming (Version: 1.6.53)
Skype™ 6.1 (Version: 6.1.129)
Spotify (Version: 0.9.6.72.ge389c074)
Star Wars: The Old Republic (Version: 1.00)
Steam (Version: 1.0.0.0)
Super-Charger (Version: 1.2.016)
swMSM (Version: 12.0.0.1)
System Requirements Lab CYRI (Version: 4.5.1.0)
TeamSpeak 3 Client (Version: 3.0.13.1)
THX TruStudio Pro (Version: 1.04.03)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Client Profile (KB2836939v3) (Version: 3)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2600217) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939) (Version: 1)
Update for Microsoft .NET Framework 4 Extended (KB2836939v3) (Version: 3)
VLC media player 2.0.8 (Version: 2.0.8)
War Thunder Launcher 1.0.1.149
Windows 7 Logon Background Changer (Version: 1.5.2)
Windows Movie Maker 2.6 (Version: 2.6.4037.0)
Winki (Version: 3.2.118)
WinRAR 4.20 (64-bit) (Version: 4.20.0)
WModem Driver Installer (Version: 3.0.2.0)
World of Tanks
World of Warplanes
XBMC
 
========================= Memory info: ===================================
 
Percentage of memory in use: 30%
Total physical RAM: 8142.93 MB
Available physical RAM: 5686.58 MB
Total Pagefile: 16284.05 MB
Available Pagefile: 13372.75 MB
Total Virtual: 4095.88 MB
Available Virtual: 3948.15 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:931.41 GB) (Free:624.56 GB) NTFS
3 Drive e: (New Volume) (Fixed) (Total:149.05 GB) (Free:0.01 GB) NTFS
4 Drive f: (New Volume) (Fixed) (Total:59.62 GB) (Free:59.5 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\STORMTROOPER-PC
 
Administrator            Guest                    Stormtrooper             
UpdatusUser              
 
 
**** End of log ****


#4 digitalmofo

digitalmofo
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 19 November 2013 - 08:36 PM

TDSSKILLER:

17:33:51.0928 0x1204  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
17:33:55.0897 0x1204  ============================================================
17:33:55.0897 0x1204  Current date / time: 2013/11/19 17:33:55.0897
17:33:55.0897 0x1204  SystemInfo:
17:33:55.0897 0x1204  
17:33:55.0897 0x1204  OS Version: 6.1.7601 ServicePack: 1.0
17:33:55.0897 0x1204  Product type: Workstation
17:33:55.0897 0x1204  ComputerName: STORMTROOPER-PC
17:33:55.0897 0x1204  UserName: Stormtrooper
17:33:55.0897 0x1204  Windows directory: C:\Windows
17:33:55.0897 0x1204  System windows directory: C:\Windows
17:33:55.0897 0x1204  Running under WOW64
17:33:55.0897 0x1204  Processor architecture: Intel x64
17:33:55.0897 0x1204  Number of processors: 4
17:33:55.0897 0x1204  Page size: 0x1000
17:33:55.0897 0x1204  Boot type: Normal boot
17:33:55.0897 0x1204  ============================================================
17:33:59.0408 0x1204  KLMD registered as C:\Windows\system32\drivers\92331843.sys
17:33:59.0703 0x1204  System UUID: {A0D4F2E3-4D65-A9F9-242D-ACBBCAE6C4F4}
17:34:00.0488 0x1204  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:34:00.0499 0x1204  Drive \Device\Harddisk2\DR2 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:34:00.0499 0x1204  Drive \Device\Harddisk0\DR0 - Size: 0xEE8156000 (59.63 Gb), SectorSize: 0x200, Cylinders: 0x1E67, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
17:34:00.0505 0x1204  ============================================================
17:34:00.0505 0x1204  \Device\Harddisk1\DR1:
17:34:00.0525 0x1204  MBR partitions:
17:34:00.0525 0x1204  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
17:34:00.0525 0x1204  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D3000
17:34:00.0525 0x1204  \Device\Harddisk2\DR2:
17:34:00.0532 0x1204  MBR partitions:
17:34:00.0532 0x1204  \Device\Harddisk0\DR0:
17:34:00.0532 0x1204  MBR partitions:
17:34:00.0532 0x1204  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x773F800
17:34:00.0532 0x1204  ============================================================
17:34:00.0686 0x1204  C: <-> \Device\Harddisk1\DR1\Partition2
17:34:00.0687 0x1204  F: <-> \Device\Harddisk0\DR0\Partition1
17:34:00.0687 0x1204  ============================================================
17:34:00.0687 0x1204  Initialize success
17:34:00.0687 0x1204  ============================================================
17:34:04.0115 0x0e18  ============================================================
17:34:04.0115 0x0e18  Scan started
17:34:04.0116 0x0e18  Mode: Manual; 
17:34:04.0116 0x0e18  ============================================================
17:34:04.0116 0x0e18  KSN ping started
17:34:06.0828 0x0e18  KSN ping finished: true
17:34:07.0979 0x0e18  ================ Scan system memory ========================
17:34:07.0979 0x0e18  System memory - ok
17:34:07.0979 0x0e18  ================ Scan services =============================
17:34:08.0269 0x0e18  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\DRIVERS\1394ohci.sys
17:34:08.0274 0x0e18  1394ohci - ok
17:34:08.0317 0x0e18  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
17:34:08.0324 0x0e18  ACPI - ok
17:34:08.0363 0x0e18  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
17:34:08.0364 0x0e18  AcpiPmi - ok
17:34:08.0543 0x0e18  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
17:34:08.0546 0x0e18  AdobeARMservice - ok
17:34:08.0821 0x0e18  [ A283108E14F3970432C21AF4C0CB1BCE, 1D3219EF916D54232838870EDE557296AACB714B456ED0AAE0DE3CE3822F4643 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
17:34:08.0830 0x0e18  AdobeFlashPlayerUpdateSvc - ok
17:34:08.0987 0x0e18  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\drivers\adp94xx.sys
17:34:09.0003 0x0e18  adp94xx - ok
17:34:09.0097 0x0e18  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\drivers\adpahci.sys
17:34:09.0109 0x0e18  adpahci - ok
17:34:09.0174 0x0e18  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\drivers\adpu320.sys
17:34:09.0181 0x0e18  adpu320 - ok
17:34:09.0245 0x0e18  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
17:34:09.0248 0x0e18  AeLookupSvc - ok
17:34:09.0484 0x0e18  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\Windows\system32\drivers\afd.sys
17:34:09.0539 0x0e18  AFD - ok
17:34:09.0562 0x0e18  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
17:34:09.0565 0x0e18  agp440 - ok
17:34:09.0667 0x0e18  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
17:34:09.0671 0x0e18  ALG - ok
17:34:09.0728 0x0e18  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
17:34:09.0730 0x0e18  aliide - ok
17:34:09.0786 0x0e18  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
17:34:09.0788 0x0e18  amdide - ok
17:34:09.0824 0x0e18  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\drivers\amdk8.sys
17:34:09.0828 0x0e18  AmdK8 - ok
17:34:09.0870 0x0e18  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\drivers\amdppm.sys
17:34:09.0873 0x0e18  AmdPPM - ok
17:34:09.0930 0x0e18  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
17:34:09.0934 0x0e18  amdsata - ok
17:34:10.0044 0x0e18  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\drivers\amdsbs.sys
17:34:10.0052 0x0e18  amdsbs - ok
17:34:10.0082 0x0e18  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
17:34:10.0083 0x0e18  amdxata - ok
17:34:10.0176 0x0e18  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\Windows\system32\drivers\appid.sys
17:34:10.0179 0x0e18  AppID - ok
17:34:10.0293 0x0e18  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
17:34:10.0295 0x0e18  AppIDSvc - ok
17:34:10.0467 0x0e18  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\Windows\System32\appinfo.dll
17:34:10.0470 0x0e18  Appinfo - ok
17:34:11.0061 0x0e18  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
17:34:11.0064 0x0e18  Apple Mobile Device - ok
17:34:11.0292 0x0e18  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\drivers\arc.sys
17:34:11.0296 0x0e18  arc - ok
17:34:11.0328 0x0e18  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\drivers\arcsas.sys
17:34:11.0332 0x0e18  arcsas - ok
17:34:12.0778 0x0e18  [ 9217D874131AE6FF8F642F124F00A555, BE2923D5AA7748FDAAED73AF567D015517B36F1C739C6E5637DD15112EFDF495 ] aspnet_state    C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
17:34:12.0810 0x0e18  aspnet_state - ok
17:34:12.0894 0x0e18  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
17:34:12.0895 0x0e18  AsyncMac - ok
17:34:12.0974 0x0e18  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
17:34:12.0975 0x0e18  atapi - ok
17:34:13.0174 0x0e18  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
17:34:13.0189 0x0e18  AudioEndpointBuilder - ok
17:34:13.0207 0x0e18  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\Windows\System32\Audiosrv.dll
17:34:13.0217 0x0e18  AudioSrv - ok
17:34:13.0304 0x0e18  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
17:34:13.0309 0x0e18  AxInstSV - ok
17:34:13.0425 0x0e18  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\drivers\bxvbda.sys
17:34:13.0435 0x0e18  b06bdrv - ok
17:34:13.0554 0x0e18  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
17:34:13.0560 0x0e18  b57nd60a - ok
17:34:13.0621 0x0e18  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
17:34:13.0623 0x0e18  BDESVC - ok
17:34:13.0669 0x0e18  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
17:34:13.0670 0x0e18  Beep - ok
17:34:13.0982 0x0e18  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
17:34:13.0998 0x0e18  BFE - ok
17:34:14.0240 0x0e18  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\system32\qmgr.dll
17:34:14.0266 0x0e18  BITS - ok
17:34:14.0309 0x0e18  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
17:34:14.0311 0x0e18  blbdrive - ok
17:34:14.0527 0x0e18  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
17:34:14.0537 0x0e18  Bonjour Service - ok
17:34:14.0577 0x0e18  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
17:34:14.0580 0x0e18  bowser - ok
17:34:14.0625 0x0e18  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\drivers\BrFiltLo.sys
17:34:14.0626 0x0e18  BrFiltLo - ok
17:34:14.0641 0x0e18  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\drivers\BrFiltUp.sys
17:34:14.0642 0x0e18  BrFiltUp - ok
17:34:14.0829 0x0e18  [ 5C2F352A4E961D72518261257AAE204B, 9EE1001E1D46A414A7A86FE1DBBE232203E26F54D9EF43ED31ED8EACD4D09853 ] BridgeMP        C:\Windows\system32\DRIVERS\bridge.sys
17:34:14.0833 0x0e18  BridgeMP - ok
17:34:14.0913 0x0e18  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
17:34:14.0919 0x0e18  Browser - ok
17:34:14.0988 0x0e18  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
17:34:14.0998 0x0e18  Brserid - ok
17:34:15.0051 0x0e18  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
17:34:15.0054 0x0e18  BrSerWdm - ok
17:34:15.0074 0x0e18  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
17:34:15.0075 0x0e18  BrUsbMdm - ok
17:34:15.0150 0x0e18  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
17:34:15.0152 0x0e18  BrUsbSer - ok
17:34:15.0183 0x0e18  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\drivers\bthmodem.sys
17:34:15.0187 0x0e18  BTHMODEM - ok
17:34:15.0285 0x0e18  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
17:34:15.0289 0x0e18  bthserv - ok
17:34:15.0373 0x0e18  catchme - ok
17:34:15.0398 0x0e18  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
17:34:15.0402 0x0e18  cdfs - ok
17:34:15.0505 0x0e18  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
17:34:15.0511 0x0e18  cdrom - ok
17:34:15.0609 0x0e18  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
17:34:15.0612 0x0e18  CertPropSvc - ok
17:34:15.0686 0x0e18  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\drivers\circlass.sys
17:34:15.0689 0x0e18  circlass - ok
17:34:15.0809 0x0e18  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\Windows\system32\CLFS.sys
17:34:15.0821 0x0e18  CLFS - ok
17:34:16.0068 0x0e18  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:34:16.0073 0x0e18  clr_optimization_v2.0.50727_32 - ok
17:34:16.0258 0x0e18  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
17:34:16.0273 0x0e18  clr_optimization_v2.0.50727_64 - ok
17:34:16.0779 0x0e18  [ C5A75EB48E2344ABDC162BDA79E16841, 6070A8AAFD38FBC6A68A2B10C20117612354DF21B4492D90CA522BFB6870D726 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
17:34:17.0003 0x0e18  clr_optimization_v4.0.30319_32 - ok
17:34:17.0127 0x0e18  [ C6F9AF94DCD58122A4D7E89DB6BED29D, CB0E5AE60EC76323585FB86D89E8DB7ADB5EDF6EA3D0B27E9ECE75B8CAA8BFDE ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
17:34:17.0207 0x0e18  clr_optimization_v4.0.30319_64 - ok
17:34:17.0271 0x0e18  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\drivers\CmBatt.sys
17:34:17.0273 0x0e18  CmBatt - ok
17:34:17.0295 0x0e18  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
17:34:17.0296 0x0e18  cmdide - ok
17:34:17.0478 0x0e18  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\Windows\system32\Drivers\cng.sys
17:34:17.0494 0x0e18  CNG - ok
17:34:17.0537 0x0e18  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\drivers\compbatt.sys
17:34:17.0538 0x0e18  Compbatt - ok
17:34:17.0598 0x0e18  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\DRIVERS\CompositeBus.sys
17:34:17.0600 0x0e18  CompositeBus - ok
17:34:17.0617 0x0e18  COMSysApp - ok
17:34:17.0656 0x0e18  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\drivers\crcdisk.sys
17:34:17.0658 0x0e18  crcdisk - ok
17:34:17.0764 0x0e18  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\Windows\system32\cryptsvc.dll
17:34:17.0771 0x0e18  CryptSvc - ok
17:34:17.0865 0x0e18  [ E6CE7188CC47AE5DAFDAF552D370C52F, D68E48F137BF8C6CD0BE4248F9F9D7C68F273C34304641756A76364E915BF428 ] dc3d            C:\Windows\system32\DRIVERS\dc3d.sys
17:34:17.0868 0x0e18  dc3d - ok
17:34:18.0043 0x0e18  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
17:34:18.0062 0x0e18  DcomLaunch - ok
17:34:18.0150 0x0e18  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
17:34:18.0161 0x0e18  defragsvc - ok
17:34:18.0208 0x0e18  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
17:34:18.0212 0x0e18  DfsC - ok
17:34:18.0322 0x0e18  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
17:34:18.0334 0x0e18  Dhcp - ok
17:34:18.0385 0x0e18  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
17:34:18.0387 0x0e18  discache - ok
17:34:18.0481 0x0e18  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\drivers\disk.sys
17:34:18.0484 0x0e18  Disk - ok
17:34:18.0566 0x0e18  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
17:34:18.0574 0x0e18  Dnscache - ok
17:34:18.0640 0x0e18  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
17:34:18.0651 0x0e18  dot3svc - ok
17:34:18.0738 0x0e18  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
17:34:18.0753 0x0e18  DPS - ok
17:34:18.0805 0x0e18  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
17:34:18.0806 0x0e18  drmkaud - ok
17:34:19.0035 0x0e18  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
17:34:19.0051 0x0e18  DXGKrnl - ok
17:34:19.0137 0x0e18  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
17:34:19.0140 0x0e18  EapHost - ok
17:34:19.0871 0x0e18  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\drivers\evbda.sys
17:34:19.0935 0x0e18  ebdrv - ok
17:34:20.0011 0x0e18  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\Windows\System32\lsass.exe
17:34:20.0024 0x0e18  EFS - ok
17:34:20.0352 0x0e18  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
17:34:20.0366 0x0e18  ehRecvr - ok
17:34:20.0425 0x0e18  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
17:34:20.0430 0x0e18  ehSched - ok
17:34:20.0576 0x0e18  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\drivers\elxstor.sys
17:34:20.0593 0x0e18  elxstor - ok
17:34:20.0605 0x0e18  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
17:34:20.0606 0x0e18  ErrDev - ok
17:34:20.0739 0x0e18  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
17:34:20.0754 0x0e18  EventSystem - ok
17:34:20.0869 0x0e18  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
17:34:20.0877 0x0e18  exfat - ok
17:34:20.0927 0x0e18  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
17:34:20.0935 0x0e18  fastfat - ok
17:34:21.0107 0x0e18  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
17:34:21.0129 0x0e18  Fax - ok
17:34:21.0202 0x0e18  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\drivers\fdc.sys
17:34:21.0204 0x0e18  fdc - ok
17:34:21.0229 0x0e18  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
17:34:21.0230 0x0e18  fdPHost - ok
17:34:21.0243 0x0e18  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
17:34:21.0244 0x0e18  FDResPub - ok
17:34:21.0265 0x0e18  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
17:34:21.0267 0x0e18  FileInfo - ok
17:34:21.0281 0x0e18  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
17:34:21.0283 0x0e18  Filetrace - ok
17:34:21.0301 0x0e18  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\drivers\flpydisk.sys
17:34:21.0302 0x0e18  flpydisk - ok
17:34:21.0375 0x0e18  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
17:34:21.0392 0x0e18  FltMgr - ok
17:34:21.0703 0x0e18  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\Windows\system32\FntCache.dll
17:34:21.0725 0x0e18  FontCache - ok
17:34:21.0797 0x0e18  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
17:34:21.0800 0x0e18  FontCache3.0.0.0 - ok
17:34:21.0820 0x0e18  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
17:34:21.0823 0x0e18  FsDepends - ok
17:34:21.0871 0x0e18  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
17:34:21.0872 0x0e18  Fs_Rec - ok
17:34:21.0992 0x0e18  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
17:34:22.0000 0x0e18  fvevol - ok
17:34:22.0047 0x0e18  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\drivers\gagp30kx.sys
17:34:22.0050 0x0e18  gagp30kx - ok
17:34:22.0144 0x0e18  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:34:22.0146 0x0e18  GEARAspiWDM - ok
17:34:22.0291 0x0e18  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
17:34:22.0310 0x0e18  gpsvc - ok
17:34:22.0496 0x0e18  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:34:22.0501 0x0e18  gupdate - ok
17:34:22.0522 0x0e18  [ 506708142BC63DABA64F2D3AD1DCD5BF, 9C36A08D9E7932FF4DA7B5F24E6B42C92F28685B8ABE964C870E8D7670FD531A ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
17:34:22.0526 0x0e18  gupdatem - ok
17:34:22.0542 0x0e18  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
17:34:22.0544 0x0e18  hcw85cir - ok
17:34:22.0656 0x0e18  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
17:34:22.0665 0x0e18  HdAudAddService - ok
17:34:22.0755 0x0e18  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\DRIVERS\HDAudBus.sys
17:34:22.0760 0x0e18  HDAudBus - ok
17:34:22.0782 0x0e18  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\drivers\HidBatt.sys
17:34:22.0784 0x0e18  HidBatt - ok
17:34:22.0800 0x0e18  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\drivers\hidbth.sys
17:34:22.0803 0x0e18  HidBth - ok
17:34:22.0864 0x0e18  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\drivers\hidir.sys
17:34:22.0866 0x0e18  HidIr - ok
17:34:22.0886 0x0e18  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\System32\hidserv.dll
17:34:22.0889 0x0e18  hidserv - ok
17:34:22.0990 0x0e18  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
17:34:22.0992 0x0e18  HidUsb - ok
17:34:23.0042 0x0e18  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
17:34:23.0044 0x0e18  hkmsvc - ok
17:34:23.0110 0x0e18  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
17:34:23.0119 0x0e18  HomeGroupListener - ok
17:34:23.0201 0x0e18  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
17:34:23.0209 0x0e18  HomeGroupProvider - ok
17:34:23.0273 0x0e18  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
17:34:23.0276 0x0e18  HpSAMD - ok
17:34:23.0356 0x0e18  [ F47CEC45FB85791D4AB237563AD0FA8F, 1035066D48BD179855BCA7F62EFA1B951E6E839D2E29E15A31844E18A126DD41 ] HTCAND64        C:\Windows\system32\Drivers\ANDROIDUSB.sys
17:34:23.0359 0x0e18  HTCAND64 - ok
17:34:23.0668 0x0e18  [ B8B1B284362E1D8135112573395D5DA5, 97BC6A7B2DCD7CC854B912A85BB2FCF199592E8E16A7C405EAF89B02D5DE4AEE ] htcnprot        C:\Windows\system32\DRIVERS\htcnprot.sys
17:34:23.0670 0x0e18  htcnprot - ok
17:34:23.0757 0x0e18  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
17:34:23.0777 0x0e18  HTTP - ok
17:34:23.0808 0x0e18  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
17:34:23.0809 0x0e18  hwpolicy - ok
17:34:23.0887 0x0e18  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
17:34:23.0891 0x0e18  i8042prt - ok
17:34:23.0955 0x0e18  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
17:34:23.0969 0x0e18  iaStorV - ok
17:34:24.0147 0x0e18  [ 33D4D4A24791587E83F7EE05A446FB7E, 081E48AF76D7D3A71850A4C910EFBB0B280235E2A5303178B0338230F4BA2DE2 ] ICCS            C:\Program Files (x86)\Intel\Intel® Integrated Clock Controller Service\ICCProxy.exe
17:34:24.0197 0x0e18  ICCS - ok
17:34:24.0498 0x0e18  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
17:34:24.0526 0x0e18  idsvc - ok
17:34:24.0561 0x0e18  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\drivers\iirsp.sys
17:34:24.0563 0x0e18  iirsp - ok
17:34:24.0799 0x0e18  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
17:34:24.0843 0x0e18  IKEEXT - ok
17:34:25.0136 0x0e18  [ 55FCBF5440EE61DBC5A6F637F7B4C776, 7D6F0DE6B8D38D4BA87592E9F39B402530007D43A23E8E7A57AA6CC30D53AC22 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHD64.sys
17:34:25.0185 0x0e18  IntcAzAudAddService - ok
17:34:25.0455 0x0e18  [ 7C76466F4E0F76CE259C6005D161E9E8, 19F3CCC3A86B68DB70B7608F9ED33746518F5B2450E5BAF9581127CE7A9AA5D2 ] Intel® Capability Licensing Service Interface C:\Program Files\Intel\iCLS Client\HeciServer.exe
17:34:26.0146 0x0e18  Intel® Capability Licensing Service Interface - ok
17:34:26.0184 0x0e18  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
17:34:26.0185 0x0e18  intelide - ok
17:34:26.0246 0x0e18  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
17:34:26.0248 0x0e18  intelppm - ok
17:34:26.0310 0x0e18  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
17:34:26.0314 0x0e18  IPBusEnum - ok
17:34:26.0386 0x0e18  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:34:26.0390 0x0e18  IpFilterDriver - ok
17:34:26.0608 0x0e18  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
17:34:26.0625 0x0e18  iphlpsvc - ok
17:34:26.0646 0x0e18  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
17:34:26.0648 0x0e18  IPMIDRV - ok
17:34:26.0679 0x0e18  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
17:34:26.0682 0x0e18  IPNAT - ok
17:34:27.0013 0x0e18  [ 33B286326BD2B1A7748C43391058FB19, C6240C9ED5B7C227595E953E3D1AB5F2D45CCD86FDBDF985836A970B4B6467FE ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
17:34:27.0037 0x0e18  iPod Service - ok
17:34:27.0104 0x0e18  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
17:34:27.0106 0x0e18  IRENUM - ok
17:34:27.0190 0x0e18  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
17:34:27.0192 0x0e18  isapnp - ok
17:34:27.0294 0x0e18  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
17:34:27.0312 0x0e18  iScsiPrt - ok
17:34:27.0391 0x0e18  [ 4EE2423C38F43D37F8497A672FD10BDC, 031C5272DD28809255CF4FA8E6DE45DBFBD9A363BBD5156D0AEE0787C4297980 ] ISCT            C:\Windows\system32\DRIVERS\ISCTD64.sys
17:34:27.0393 0x0e18  ISCT - ok
17:34:27.0468 0x0e18  [ D596D915CF091DA1F8CE4BD38BB5D509, 9B4D246B6886FFD9BE329F3543B819FC010661B0F70206F16ECBF25A7B12AA6F ] iusb3hcs        C:\Windows\system32\DRIVERS\iusb3hcs.sys
17:34:27.0469 0x0e18  iusb3hcs - ok
17:34:27.0633 0x0e18  [ 023896E23B61543A15A230EED996D911, 2F8D15B67AB2C1E87EA46F2CB9DBA564865D89DEA93A83B44A9B148883B96731 ] iusb3hub        C:\Windows\system32\DRIVERS\iusb3hub.sys
17:34:27.0644 0x0e18  iusb3hub - ok
17:34:27.0844 0x0e18  [ 7FAEC13F1ADD619F4B5B2D2CBF841E8E, E7ED64DD26FD4EA04C2C32C33BDA16FB985F3C6F1F8451480A0D24375B7F57AC ] iusb3xhc        C:\Windows\system32\DRIVERS\iusb3xhc.sys
17:34:27.0859 0x0e18  iusb3xhc - ok
17:34:28.0005 0x0e18  [ D22982C269775BCBDDA8A0F82A9ADE9E, 26C19369F5F2B42C37F23842C5795FECEF21BC290968AABC9984502F0FD921DF ] jhi_service     C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe
17:34:28.0011 0x0e18  jhi_service - ok
17:34:28.0060 0x0e18  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\DRIVERS\kbdclass.sys
17:34:28.0062 0x0e18  kbdclass - ok
17:34:28.0121 0x0e18  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\DRIVERS\kbdhid.sys
17:34:28.0123 0x0e18  kbdhid - ok
17:34:28.0160 0x0e18  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\Windows\system32\lsass.exe
17:34:28.0162 0x0e18  KeyIso - ok
17:34:28.0203 0x0e18  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
17:34:28.0206 0x0e18  KSecDD - ok
17:34:28.0265 0x0e18  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
17:34:28.0271 0x0e18  KSecPkg - ok
17:34:28.0343 0x0e18  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
17:34:28.0344 0x0e18  ksthunk - ok
17:34:28.0457 0x0e18  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
17:34:28.0471 0x0e18  KtmRm - ok
17:34:28.0542 0x0e18  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\System32\srvsvc.dll
17:34:28.0557 0x0e18  LanmanServer - ok
17:34:28.0616 0x0e18  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
17:34:28.0622 0x0e18  LanmanWorkstation - ok
17:34:28.0722 0x0e18  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
17:34:28.0724 0x0e18  lltdio - ok
17:34:28.0780 0x0e18  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
17:34:28.0792 0x0e18  lltdsvc - ok
17:34:28.0862 0x0e18  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
17:34:28.0864 0x0e18  lmhosts - ok
17:34:28.0980 0x0e18  [ 5C08357C65F658E29B5DDC2EF18D575C, 80802787D7CD07BFB4F2EEE463837FB0CBB3626A2D5451B32794DB66A3CC3D98 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
17:34:28.0997 0x0e18  LMS - ok
17:34:29.0037 0x0e18  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\drivers\lsi_fc.sys
17:34:29.0041 0x0e18  LSI_FC - ok
17:34:29.0077 0x0e18  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\drivers\lsi_sas.sys
17:34:29.0080 0x0e18  LSI_SAS - ok
17:34:29.0120 0x0e18  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\drivers\lsi_sas2.sys
17:34:29.0123 0x0e18  LSI_SAS2 - ok
17:34:29.0208 0x0e18  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\drivers\lsi_scsi.sys
17:34:29.0213 0x0e18  LSI_SCSI - ok
17:34:29.0231 0x0e18  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
17:34:29.0234 0x0e18  luafv - ok
17:34:29.0264 0x0e18  [ 8FF2D95CBA49B405C5DE27039FF0BF35, 03BF7FC7F1C2C76EDB583BA342EA1C325DB8058517744EF2A78529D3938F4DC1 ] MBfilt          C:\Windows\system32\drivers\MBfilt64.sys
17:34:29.0265 0x0e18  MBfilt - ok
17:34:29.0308 0x0e18  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
17:34:29.0312 0x0e18  Mcx2Svc - ok
17:34:29.0595 0x0e18  [ 11F714F85530A2BD134074DC30E99FCA, BDB5FD3B2DF4ADD19B31965B3E789768B59E872B3EA85912B1FFB32B2AF9D5D8 ] MDM             C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
17:34:29.0611 0x0e18  MDM - ok
17:34:29.0648 0x0e18  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\drivers\megasas.sys
17:34:29.0649 0x0e18  megasas - ok
17:34:29.0793 0x0e18  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\drivers\MegaSR.sys
17:34:29.0806 0x0e18  MegaSR - ok
17:34:29.0838 0x0e18  [ 772A1DEEDFDBC244183B5C805D1B7D85, 7D821B8DF1F174E5414FFDEAB5207DB687740E9842F7203600AEBA086945AFC9 ] MEIx64          C:\Windows\system32\DRIVERS\HECIx64.sys
17:34:29.0840 0x0e18  MEIx64 - ok
17:34:29.0920 0x0e18  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
17:34:29.0924 0x0e18  MMCSS - ok
17:34:29.0974 0x0e18  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
17:34:29.0976 0x0e18  Modem - ok
17:34:30.0000 0x0e18  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
17:34:30.0001 0x0e18  monitor - ok
17:34:30.0097 0x0e18  [ 3CC500C9B0E4D476802D277353CB2C89, 9E4EE267BF70FE0A43A1B994546186FD5ED6E384A7B8F905DFA81617DBEF9AD8 ] MotDev          C:\Windows\system32\DRIVERS\motodrv.sys
17:34:30.0100 0x0e18  MotDev - ok
17:34:30.0188 0x0e18  [ C030F9E822A057C1A7A9BB4EA3E8877E, 2CCEC87DEB972B6B0196A08D3781002929E9107137FE3A61F1626D3BEE26630A ] MotioninJoyXFilter C:\Windows\system32\DRIVERS\MijXfilt.sys
17:34:30.0200 0x0e18  MotioninJoyXFilter - ok
17:34:30.0432 0x0e18  [ 1BCB26A55B2E092FAA4DA01D9A3DE528, A4A00F6DAB0EB8AC750184221E19F6182DC8A4CAD87D1259DC15AAF7ACA82360 ] Motorola Device Manager C:\Program Files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe
17:34:30.0473 0x0e18  Motorola Device Manager - ok
17:34:30.0558 0x0e18  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
17:34:30.0560 0x0e18  mouclass - ok
17:34:30.0606 0x0e18  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
17:34:30.0607 0x0e18  mouhid - ok
17:34:30.0703 0x0e18  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
17:34:30.0706 0x0e18  mountmgr - ok
17:34:30.0856 0x0e18  [ C6B88D62F20AC646C6BD5C032EC2FAF9, 111A07939F3C5A46F0C51B9D6F5C1D8478099E32EFD88BC260467109ADD975F8 ] MpFilter        C:\Windows\system32\DRIVERS\MpFilter.sys
17:34:30.0865 0x0e18  MpFilter - ok
17:34:30.0905 0x0e18  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
17:34:30.0909 0x0e18  mpio - ok
17:34:31.0005 0x0e18  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
17:34:31.0008 0x0e18  mpsdrv - ok
17:34:31.0239 0x0e18  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
17:34:31.0256 0x0e18  MpsSvc - ok
17:34:31.0305 0x0e18  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
17:34:31.0311 0x0e18  MRxDAV - ok
17:34:31.0376 0x0e18  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
17:34:31.0382 0x0e18  mrxsmb - ok
17:34:31.0470 0x0e18  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:34:31.0485 0x0e18  mrxsmb10 - ok
17:34:31.0547 0x0e18  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:34:31.0552 0x0e18  mrxsmb20 - ok
17:34:31.0593 0x0e18  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
17:34:31.0594 0x0e18  msahci - ok
17:34:31.0665 0x0e18  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
17:34:31.0671 0x0e18  msdsm - ok
17:34:31.0696 0x0e18  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
17:34:31.0700 0x0e18  MSDTC - ok
17:34:31.0765 0x0e18  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
17:34:31.0767 0x0e18  Msfs - ok
17:34:31.0816 0x0e18  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
17:34:31.0817 0x0e18  mshidkmdf - ok
17:34:31.0877 0x0e18  MSICDSetup - ok
17:34:32.0039 0x0e18  [ 2E19684E622D4CC9366BE57F71F36702, 23843AA33070A759E9CCDE23C0F6BDC3AB2678B2CF7EA2690915CB1364E84AC2 ] MSIFileSyncMonitor C:\MSI\MSI SUITE\MSIMonitor\MSIFileSyncMonitor.exe
17:34:32.0088 0x0e18  MSIFileSyncMonitor - ok
17:34:32.0117 0x0e18  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
17:34:32.0118 0x0e18  msisadrv - ok
17:34:32.0212 0x0e18  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
17:34:32.0227 0x0e18  MSiSCSI - ok
17:34:32.0231 0x0e18  msiserver - ok
17:34:32.0334 0x0e18  [ C7D11800D50D1956C9171F7455E00D9A, 3D5C1E68FB4E7CFFBDA3ACC78092F76C7708D6B909F5C88A46A7C3AFBDA6E51B ] MSI_ComCenService C:\MSI\MSI SUITE\ControlCenter\ComCenService.exe
17:34:32.0381 0x0e18  MSI_ComCenService - ok
17:34:32.0531 0x0e18  [ 629CC5BE3BD275ECD8BBDBEC412C3C8A, 8E115809735AB0C578D1CB024D2162FB97EB884C8CF0324D6BCF6CCC0F248E7D ] MSI_FastBoot    C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
17:34:32.0572 0x0e18  MSI_FastBoot - ok
17:34:32.0777 0x0e18  [ 905E4DCF86954B3130FCCE8FF26C44C5, 91FF182E4371EB13B5AD9A3DDEE37CA29F07ABA3AD14807EE89E5DB9026393F4 ] MSI_SuiteCharger C:\MSI\MSI SUITE\Super-Charger\SuiteChargeService.exe
17:34:32.0818 0x0e18  MSI_SuiteCharger - ok
17:34:32.0898 0x0e18  [ A9FD6D2612E06BA1E04AC7E72A82A188, 5816F7CF781CC315684E8FE38E9D4608AD140FF80DB2A45E51FA98C1D962BCA5 ] MSI_SuiteFastBoot C:\MSI\MSI SUITE\FastBoot\SuiteFastBootService.exe
17:34:32.0934 0x0e18  MSI_SuiteFastBoot - ok
17:34:33.0081 0x0e18  [ 7CABFAD0A84A232A151976FC4C4F05B2, 12EFC44FD80F7C2C643F7F5B8E2347CD667FB11746C9C15C10290CA5CAEDB37C ] MSI_SuperCharger C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
17:34:33.0124 0x0e18  MSI_SuperCharger - ok
17:34:33.0174 0x0e18  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
17:34:33.0176 0x0e18  MSKSSRV - ok
17:34:33.0285 0x0e18  [ 7675E15D1B2180745E4DA4D26AAD7385, 729AA6C610F67028CFFFF64B772FFA1CAE7581D37F8909BDA423D52AF85C92C8 ] MsMpSvc         c:\Program Files\Microsoft Security Client\MsMpEng.exe
17:34:33.0286 0x0e18  MsMpSvc - ok
17:34:33.0334 0x0e18  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
17:34:33.0335 0x0e18  MSPCLOCK - ok
17:34:33.0369 0x0e18  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
17:34:33.0370 0x0e18  MSPQM - ok
17:34:33.0447 0x0e18  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
17:34:33.0461 0x0e18  MsRPC - ok
17:34:33.0498 0x0e18  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\DRIVERS\mssmbios.sys
17:34:33.0499 0x0e18  mssmbios - ok
17:34:33.0540 0x0e18  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
17:34:33.0541 0x0e18  MSTEE - ok
17:34:33.0573 0x0e18  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\drivers\MTConfig.sys
17:34:33.0574 0x0e18  MTConfig - ok
17:34:33.0600 0x0e18  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
17:34:33.0602 0x0e18  Mup - ok
17:34:33.0732 0x0e18  MySQL56 - ok
17:34:33.0879 0x0e18  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
17:34:33.0898 0x0e18  napagent - ok
17:34:34.0035 0x0e18  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
17:34:34.0052 0x0e18  NativeWifiP - ok
17:34:34.0257 0x0e18  [ 9D1CCE440552500DED3A62F9D779CDB4, C6B3B1C891A8BA3F91CC1EC21919C4F80F4C9CAF88971AB6CA11F09820601EBD ] NAUpdate        C:\Program Files (x86)\Nero\Update\NASvc.exe
17:34:34.0276 0x0e18  NAUpdate - ok
17:34:34.0481 0x0e18  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\Windows\system32\drivers\ndis.sys
17:34:34.0500 0x0e18  NDIS - ok
17:34:34.0573 0x0e18  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
17:34:34.0575 0x0e18  NdisCap - ok
17:34:34.0619 0x0e18  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
17:34:34.0621 0x0e18  NdisTapi - ok
17:34:34.0680 0x0e18  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
17:34:34.0683 0x0e18  Ndisuio - ok
17:34:34.0732 0x0e18  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
17:34:34.0736 0x0e18  NdisWan - ok
17:34:34.0804 0x0e18  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
17:34:34.0807 0x0e18  NDProxy - ok
17:34:34.0849 0x0e18  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
17:34:34.0851 0x0e18  NetBIOS - ok
17:34:34.0902 0x0e18  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
17:34:34.0907 0x0e18  NetBT - ok
17:34:34.0944 0x0e18  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\Windows\system32\lsass.exe
17:34:34.0945 0x0e18  Netlogon - ok
17:34:35.0087 0x0e18  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
17:34:35.0101 0x0e18  Netman - ok
17:34:35.0170 0x0e18  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:35.0286 0x0e18  NetMsmqActivator - ok
17:34:35.0335 0x0e18  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:35.0339 0x0e18  NetPipeActivator - ok
17:34:35.0437 0x0e18  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
17:34:35.0451 0x0e18  netprofm - ok
17:34:35.0542 0x0e18  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:35.0546 0x0e18  NetTcpActivator - ok
17:34:35.0556 0x0e18  [ D22CD77D4F0D63D1169BB35911BFF12D, 85B1FDFA02E1B8EA4FCB9B7EEB687C5C448697FC7EC9D178C5A2F64D2C9CFEE8 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
17:34:35.0560 0x0e18  NetTcpPortSharing - ok
17:34:35.0610 0x0e18  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\drivers\nfrd960.sys
17:34:35.0613 0x0e18  nfrd960 - ok
17:34:35.0786 0x0e18  [ ACE8C64C57E4A711473C8BC10ADF692B, 53D8083CE78DB5527080B4570AC28ABAA262667744A319707AE0C46E46B297F9 ] NisDrv          C:\Windows\system32\DRIVERS\NisDrvWFP.sys
17:34:35.0790 0x0e18  NisDrv - ok
17:34:35.0868 0x0e18  [ 6247E8B31ED0A9D6BC5A26276E49BEB3, 230C0C560492C454B9EB14B50EB4A78DC74FAB6B662449A0EA3114B3E671BFF3 ] NisSrv          c:\Program Files\Microsoft Security Client\NisSrv.exe
17:34:35.0880 0x0e18  NisSrv - ok
17:34:35.0976 0x0e18  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\Windows\System32\nlasvc.dll
17:34:35.0987 0x0e18  NlaSvc - ok
17:34:36.0003 0x0e18  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
17:34:36.0005 0x0e18  Npfs - ok
17:34:36.0113 0x0e18  NPVR Recording Service - ok
17:34:36.0164 0x0e18  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
17:34:36.0167 0x0e18  nsi - ok
17:34:36.0211 0x0e18  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
17:34:36.0213 0x0e18  nsiproxy - ok
17:34:36.0479 0x0e18  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
17:34:36.0525 0x0e18  Ntfs - ok
17:34:36.0641 0x0e18  [ 23CF3DA010497EB2BF39A5C5A57E437C, 39CFDE7D401EFCE4F550E0A9461F5FC4D71FA07235E1336E4F0B4882BD76550E ] NTIOLib_1_0_3   C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys
17:34:36.0642 0x0e18  NTIOLib_1_0_3 - ok
17:34:36.0763 0x0e18  [ 1B32C54B95121AB1683C7B83B2DB4B96, 99F4994A0E5BD1BF6E3F637D3225C69FF4CD620557E23637533E7F18D7D6CBA1 ] NTIOLib_1_0_4   C:\Program Files (x86)\MSI\Live Update 5\NTIOLib_X64.sys
17:34:36.0785 0x0e18  NTIOLib_1_0_4 - ok
17:34:36.0847 0x0e18  [ 1ED043249C21AB201EDCCB37F1D40AF9, 79E2D37632C417138970B4FEBA91B7E10C2EA251C5EFE3D1FC6FA0190F176B57 ] NTIOLib_1_0_C   C:\MSI\MSI SUITE\NTIOLib_X64.sys
17:34:36.0894 0x0e18  NTIOLib_1_0_C - ok
17:34:37.0053 0x0e18  [ 300C5B1795C9B6CC1BC4D7D55C7BBE85, D92EAB70BCECE4432258C9C9A914483A2267F6AB5CE2630048D3A99E8CB1B482 ] NTIOLib_1_0_D   C:\MSI\MSI SUITE\ControlCenter\NTIOLib_X64.sys
17:34:37.0064 0x0e18  NTIOLib_1_0_D - ok
17:34:37.0148 0x0e18  [ F7CBBB5EB263EC9A35A1042F52E82CA4, 131D5490CEB9A5B2324D8E927FEA5BECFC633015661DE2F4C2F2375A3A3B64C6 ] NTIOLib_1_1_S   C:\MSI\MSI SUITE\Super-Charger\NTIOLib_X64.sys
17:34:37.0149 0x0e18  NTIOLib_1_1_S - ok
17:34:37.0330 0x0e18  [ 992DED5B623BE3C228F32EDB4CA3F2D2, 47F0CDAA2359A63AD1389EF4A635F1F6EEE1F63BDF6EF177F114BDCDADC2E005 ] NTIOLib_FastBoot C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys
17:34:37.0331 0x0e18  NTIOLib_FastBoot - ok
17:34:37.0441 0x0e18  [ 7B43DFD84DE5E81162EBCFAFB764B769, F088B2BA27DACD5C28F8EE428F1350DCA4BC7C6606309C287C801B2E1DA1A53D ] NTIOLib_SuiteFB C:\MSI\MSI SUITE\FastBoot\NTIOLib_X64.sys
17:34:37.0442 0x0e18  NTIOLib_SuiteFB - ok
17:34:37.0477 0x0e18  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
17:34:37.0479 0x0e18  Null - ok
17:34:37.0614 0x0e18  [ 554964B900AE2954B8B589B6287034AC, C6C9EA3ADAFEBBF2AF944E4A0656BD795AD37706008CC0CA3F2150BD709476E7 ] NVHDA           C:\Windows\system32\drivers\nvhda64v.sys
17:34:37.0620 0x0e18  NVHDA - ok
17:34:38.0483 0x0e18  [ E71E299FF15390E585BACF2C18F55078, 7A51D989DA55349B1761839DEAFD593B6E6F88C433B132E7B027467E050FBA67 ] nvlddmkm        C:\Windows\system32\DRIVERS\nvlddmkm.sys
17:34:38.0667 0x0e18  nvlddmkm - ok
17:34:38.0883 0x0e18  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
17:34:38.0889 0x0e18  nvraid - ok
17:34:38.0978 0x0e18  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
17:34:38.0983 0x0e18  nvstor - ok
17:34:41.0725 0x0e18  [ F0AD6B3A2352EFADC223A9587693A51A, A0B3AB07364BB59D531AD73145A606DE2B2CB9AF29691FD983F1B0E3197E6637 ] NvStreamSvc     C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
17:34:42.0072 0x0e18  NvStreamSvc - ok
17:34:42.0163 0x0e18  [ 415695F5A54E91E869EEBFEA261361A6, 1829C15E07D902686171C8A66EB03040A037CAC1E00E24BF598030D9DA795CEC ] nvsvc           C:\Windows\system32\nvvsvc.exe
17:34:42.0186 0x0e18  nvsvc - ok
17:34:42.0479 0x0e18  [ F313FFEA01C3DFF4E7E763DA29B0FF36, 6D9FA981A27E120DB7AF9B6545B476ACA08B511CB01A202553017F63A4709188 ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:34:42.0523 0x0e18  nvUpdatusService - ok
17:34:42.0564 0x0e18  [ 31B16657118E439B77B0A527F7EA66CB, 8C375D2AFF56125E08587DDDCE6AD31DE6D2DEEDC9AD95ADE95B7499F79A5B56 ] nvvad_WaveExtensible C:\Windows\system32\drivers\nvvad64v.sys
17:34:42.0565 0x0e18  nvvad_WaveExtensible - ok
17:34:42.0587 0x0e18  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
17:34:42.0590 0x0e18  nv_agp - ok
17:34:42.0618 0x0e18  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\drivers\ohci1394.sys
17:34:42.0620 0x0e18  ohci1394 - ok
17:34:42.0667 0x0e18  [ 7A56CF3E3F12E8AF599963B16F50FB6A, 882C82BAE96D263138D4C0D6C425458B770B7B9C8E9C1D28AC918BF6BE94A5C2 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:34:42.0670 0x0e18  ose - ok
17:34:42.0742 0x0e18  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
17:34:42.0768 0x0e18  p2pimsvc - ok
17:34:42.0827 0x0e18  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
17:34:42.0839 0x0e18  p2psvc - ok
17:34:42.0898 0x0e18  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
17:34:42.0901 0x0e18  Parport - ok
17:34:42.0948 0x0e18  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
17:34:42.0951 0x0e18  partmgr - ok
17:34:43.0140 0x0e18  [ 3CAE2BBC86FCF7F94C9696994AF30386, 4DA063A60523567272CFB35DF5D7CA142B100EF9123B1F23A6F11AB89DB83486 ] PassThru Service C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
17:34:43.0302 0x0e18  PassThru Service - ok
17:34:43.0318 0x0e18  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\Windows\System32\pcasvc.dll
17:34:43.0324 0x0e18  PcaSvc - ok
17:34:43.0339 0x0e18  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
17:34:43.0344 0x0e18  pci - ok
17:34:43.0372 0x0e18  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
17:34:43.0373 0x0e18  pciide - ok
17:34:43.0391 0x0e18  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\drivers\pcmcia.sys
17:34:43.0397 0x0e18  pcmcia - ok
17:34:43.0417 0x0e18  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
17:34:43.0418 0x0e18  pcw - ok
17:34:43.0444 0x0e18  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
17:34:43.0460 0x0e18  PEAUTH - ok
17:34:43.0539 0x0e18  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
17:34:43.0541 0x0e18  PerfHost - ok
17:34:43.0595 0x0e18  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
17:34:43.0637 0x0e18  pla - ok
17:34:43.0683 0x0e18  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
17:34:43.0693 0x0e18  PlugPlay - ok
17:34:43.0700 0x0e18  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
17:34:43.0702 0x0e18  PNRPAutoReg - ok
17:34:43.0714 0x0e18  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
17:34:43.0722 0x0e18  PNRPsvc - ok
17:34:43.0763 0x0e18  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
17:34:43.0773 0x0e18  PolicyAgent - ok
17:34:43.0795 0x0e18  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
17:34:43.0800 0x0e18  Power - ok
17:34:43.0815 0x0e18  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
17:34:43.0819 0x0e18  PptpMiniport - ok
17:34:43.0836 0x0e18  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\drivers\processr.sys
17:34:43.0839 0x0e18  Processor - ok
17:34:43.0869 0x0e18  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\Windows\system32\profsvc.dll
17:34:43.0876 0x0e18  ProfSvc - ok
17:34:43.0884 0x0e18  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\Windows\system32\lsass.exe
17:34:43.0886 0x0e18  ProtectedStorage - ok
17:34:43.0909 0x0e18  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
17:34:43.0913 0x0e18  Psched - ok
17:34:44.0043 0x0e18  [ EA735BF6DF13A857A83C99BF27A422AD, 026A57155FB9E01CFAFD8613980CDF0F3D744ABBBC66EFDC6C20B89980FB45CF ] PST Service     C:\Program Files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe
17:34:44.0219 0x0e18  PST Service - ok
17:34:44.0470 0x0e18  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\drivers\ql2300.sys
17:34:44.0500 0x0e18  ql2300 - ok
17:34:44.0544 0x0e18  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\drivers\ql40xx.sys
17:34:44.0549 0x0e18  ql40xx - ok
17:34:44.0612 0x0e18  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
17:34:44.0623 0x0e18  QWAVE - ok
17:34:44.0640 0x0e18  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
17:34:44.0643 0x0e18  QWAVEdrv - ok
17:34:44.0653 0x0e18  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
17:34:44.0655 0x0e18  RasAcd - ok
17:34:44.0696 0x0e18  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
17:34:44.0698 0x0e18  RasAgileVpn - ok
17:34:44.0720 0x0e18  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
17:34:44.0725 0x0e18  RasAuto - ok
17:34:44.0749 0x0e18  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
17:34:44.0754 0x0e18  Rasl2tp - ok
17:34:44.0842 0x0e18  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
17:34:44.0855 0x0e18  RasMan - ok
17:34:44.0876 0x0e18  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
17:34:44.0879 0x0e18  RasPppoe - ok
17:34:44.0892 0x0e18  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
17:34:44.0894 0x0e18  RasSstp - ok
17:34:44.0945 0x0e18  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
17:34:44.0951 0x0e18  rdbss - ok
17:34:44.0955 0x0e18  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\drivers\rdpbus.sys
17:34:44.0956 0x0e18  rdpbus - ok
17:34:44.0969 0x0e18  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
17:34:44.0970 0x0e18  RDPCDD - ok
17:34:44.0994 0x0e18  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
17:34:44.0995 0x0e18  RDPENCDD - ok
17:34:44.0999 0x0e18  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
17:34:45.0000 0x0e18  RDPREFMP - ok
17:34:45.0065 0x0e18  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
17:34:45.0066 0x0e18  RdpVideoMiniport - ok
17:34:45.0093 0x0e18  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
17:34:45.0098 0x0e18  RDPWD - ok
17:34:45.0149 0x0e18  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
17:34:45.0157 0x0e18  rdyboost - ok
17:34:45.0265 0x0e18  [ EA569D48B2E755AF6D96F03F3335D98A, EED2DCDF187A69F36A38129C8A1E0D6FE0EBF9232DEAF68A116E9A26E40AB636 ] RealtekSE       C:\Program Files (x86)\ASUS\PCE-N10 WLAN Card Utilities\RtlService.exe
17:34:45.0535 0x0e18  RealtekSE - ok
17:34:45.0584 0x0e18  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
17:34:45.0589 0x0e18  RemoteAccess - ok
17:34:45.0667 0x0e18  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
17:34:45.0683 0x0e18  RemoteRegistry - ok
17:34:45.0817 0x0e18  [ 5790BCA445CC40DF8B38C2C48608AAC2, E8CC273ECF44B6638FEC7AF443745C04E03580B5C6ECFE45648F18BA2B9B89E7 ] RimUsb          C:\Windows\system32\Drivers\RimUsb_AMD64.sys
17:34:45.0819 0x0e18  RimUsb - ok
17:34:45.0865 0x0e18  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
17:34:45.0869 0x0e18  RpcEptMapper - ok
17:34:45.0901 0x0e18  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
17:34:45.0903 0x0e18  RpcLocator - ok
17:34:45.0958 0x0e18  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
17:34:45.0973 0x0e18  RpcSs - ok
17:34:46.0026 0x0e18  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
17:34:46.0030 0x0e18  rspndr - ok
17:34:46.0184 0x0e18  [ 61A04C0C084D560BBEF1D09604608262, 27230BDFB479FBD1B18BB4035059A52F8BE74B19190951EAC95D569E284421B3 ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
17:34:46.0208 0x0e18  RTL8167 - ok
17:34:46.0511 0x0e18  [ FA088015155C4C6DAB5D1D9E68EB9D6B, 7B2BBA9001BD185E732B1C75AEB0B0ABD92AAA4BF8B0E5FDA2B4AD9A51D6A336 ] RTL8192Ce       C:\Windows\system32\DRIVERS\rtl8192Ce.sys
17:34:46.0533 0x0e18  RTL8192Ce - ok
17:34:46.0551 0x0e18  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\Windows\system32\lsass.exe
17:34:46.0552 0x0e18  SamSs - ok
17:34:46.0575 0x0e18  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
17:34:46.0580 0x0e18  sbp2port - ok
17:34:46.0649 0x0e18  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
17:34:46.0657 0x0e18  SCardSvr - ok
17:34:46.0672 0x0e18  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
17:34:46.0674 0x0e18  scfilter - ok
17:34:46.0932 0x0e18  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\Windows\system32\schedsvc.dll
17:34:46.0953 0x0e18  Schedule - ok
17:34:47.0007 0x0e18  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
17:34:47.0010 0x0e18  SCPolicySvc - ok
17:34:47.0056 0x0e18  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
17:34:47.0071 0x0e18  SDRSVC - ok
17:34:47.0103 0x0e18  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
17:34:47.0104 0x0e18  secdrv - ok
17:34:47.0112 0x0e18  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
17:34:47.0114 0x0e18  seclogon - ok
17:34:47.0153 0x0e18  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\system32\sens.dll
17:34:47.0155 0x0e18  SENS - ok
17:34:47.0189 0x0e18  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
17:34:47.0192 0x0e18  SensrSvc - ok
17:34:47.0195 0x0e18  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
17:34:47.0196 0x0e18  Serenum - ok
17:34:47.0278 0x0e18  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
17:34:47.0282 0x0e18  Serial - ok
17:34:47.0311 0x0e18  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\drivers\sermouse.sys
17:34:47.0313 0x0e18  sermouse - ok
17:34:47.0361 0x0e18  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
17:34:47.0365 0x0e18  SessionEnv - ok
17:34:47.0374 0x0e18  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
17:34:47.0376 0x0e18  sffdisk - ok
17:34:47.0379 0x0e18  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
17:34:47.0380 0x0e18  sffp_mmc - ok
17:34:47.0426 0x0e18  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
17:34:47.0428 0x0e18  sffp_sd - ok
17:34:47.0431 0x0e18  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\drivers\sfloppy.sys
17:34:47.0433 0x0e18  sfloppy - ok
17:34:47.0548 0x0e18  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
17:34:47.0565 0x0e18  SharedAccess - ok
17:34:47.0721 0x0e18  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
17:34:47.0735 0x0e18  ShellHWDetection - ok
17:34:47.0787 0x0e18  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\drivers\SiSRaid2.sys
17:34:47.0790 0x0e18  SiSRaid2 - ok
17:34:47.0832 0x0e18  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\drivers\sisraid4.sys
17:34:47.0835 0x0e18  SiSRaid4 - ok
17:34:48.0007 0x0e18  [ 0F575481EAD4CDD41AA82ED38BC8F6B3, D49ADFB7BA57B74DDAE9C6E70D3163FC075783CC75EFEE3A86A9BCE8CF7CA53D ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
17:34:48.0013 0x0e18  SkypeUpdate - ok
17:34:48.0081 0x0e18  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
17:34:48.0085 0x0e18  Smb - ok
17:34:48.0128 0x0e18  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
17:34:48.0130 0x0e18  SNMPTRAP - ok
17:34:48.0161 0x0e18  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
17:34:48.0162 0x0e18  spldr - ok
17:34:48.0351 0x0e18  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
17:34:48.0371 0x0e18  Spooler - ok
17:34:49.0091 0x0e18  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
17:34:49.0166 0x0e18  sppsvc - ok
17:34:49.0183 0x0e18  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
17:34:49.0185 0x0e18  sppuinotify - ok
17:34:49.0316 0x0e18  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
17:34:49.0332 0x0e18  srv - ok
17:34:49.0438 0x0e18  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
17:34:49.0452 0x0e18  srv2 - ok
17:34:49.0511 0x0e18  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
17:34:49.0525 0x0e18  srvnet - ok
17:34:49.0601 0x0e18  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
17:34:49.0609 0x0e18  SSDPSRV - ok
17:34:49.0640 0x0e18  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
17:34:49.0644 0x0e18  SstpSvc - ok
17:34:49.0726 0x0e18  [ 792C6BB1F02C528095EC349DAAF4C880, 8BB32B0AD7048B4667ACF2D11F63E37D63DFB508AC515FFE825AECADA0F8FD7A ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
17:34:49.0738 0x0e18  Steam Client Service - ok
17:34:49.0894 0x0e18  [ A9D26626BEADF5A0641BF6B5095EF309, EABC711466FECA20058D7E24CA2593059E1F113B38A2E7574822E48BFBBF4146 ] Stereo Service  C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
17:34:49.0912 0x0e18  Stereo Service - ok
17:34:49.0925 0x0e18  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\drivers\stexstor.sys
17:34:49.0927 0x0e18  stexstor - ok
17:34:50.0080 0x0e18  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
17:34:50.0102 0x0e18  stisvc - ok
17:34:50.0129 0x0e18  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\DRIVERS\swenum.sys
17:34:50.0130 0x0e18  swenum - ok
17:34:50.0208 0x0e18  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
17:34:50.0224 0x0e18  swprv - ok
17:34:50.0284 0x0e18  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\Windows\system32\sysmain.dll
17:34:50.0334 0x0e18  SysMain - ok
17:34:50.0363 0x0e18  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
17:34:50.0366 0x0e18  TabletInputService - ok
17:34:50.0454 0x0e18  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
17:34:50.0467 0x0e18  TapiSrv - ok
17:34:50.0490 0x0e18  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
17:34:50.0493 0x0e18  TBS - ok
17:34:50.0991 0x0e18  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
17:34:51.0028 0x0e18  Tcpip - ok
17:34:51.0093 0x0e18  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
17:34:51.0121 0x0e18  TCPIP6 - ok
17:34:51.0172 0x0e18  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
17:34:51.0174 0x0e18  tcpipreg - ok
17:34:51.0193 0x0e18  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
17:34:51.0194 0x0e18  TDPIPE - ok
17:34:51.0240 0x0e18  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
17:34:51.0242 0x0e18  TDTCP - ok
17:34:51.0292 0x0e18  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
17:34:51.0296 0x0e18  tdx - ok
17:34:51.0313 0x0e18  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\DRIVERS\termdd.sys
17:34:51.0316 0x0e18  TermDD - ok
17:34:51.0348 0x0e18  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\Windows\System32\termsrv.dll
17:34:51.0368 0x0e18  TermService - ok
17:34:51.0382 0x0e18  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
17:34:51.0384 0x0e18  Themes - ok
17:34:51.0409 0x0e18  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
17:34:51.0411 0x0e18  THREADORDER - ok
17:34:51.0433 0x0e18  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
17:34:51.0436 0x0e18  TrkWks - ok
17:34:51.0559 0x0e18  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
17:34:51.0567 0x0e18  TrustedInstaller - ok
17:34:51.0604 0x0e18  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
17:34:51.0606 0x0e18  tssecsrv - ok
17:34:51.0684 0x0e18  [ 17C6B51CBCCDED95B3CC14E22791F85E, EE417C19E9B2C258D62A74F1F2421AFFBAC67ACD62481CAA08F5B6A3439C1D7C ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
17:34:51.0687 0x0e18  TsUsbFlt - ok
17:34:51.0747 0x0e18  [ AD64450A4ABE076F5CB34CC08EEACB07, B5C386635441A19178E7FEEE299BA430C8D72F9110866C13A216B12A1080AD12 ] TsUsbGD         C:\Windows\system32\drivers\TsUsbGD.sys
17:34:51.0749 0x0e18  TsUsbGD - ok
17:34:51.0790 0x0e18  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
17:34:51.0795 0x0e18  tunnel - ok
17:34:51.0811 0x0e18  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\drivers\uagp35.sys
17:34:51.0814 0x0e18  uagp35 - ok
17:34:51.0886 0x0e18  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
17:34:51.0898 0x0e18  udfs - ok
17:34:51.0938 0x0e18  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
17:34:51.0940 0x0e18  UI0Detect - ok
17:34:51.0997 0x0e18  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
17:34:52.0000 0x0e18  uliagpkx - ok
17:34:52.0051 0x0e18  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
17:34:52.0053 0x0e18  umbus - ok
17:34:52.0113 0x0e18  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
17:34:52.0115 0x0e18  UmPass - ok
17:34:52.0328 0x0e18  [ 0DFC9713D117B349E41A2A477448107A, 0C7B2162C2FA0BA46C2D3D9986CB542926C1802532E0785A49AC9B18284267AC ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
17:34:52.0342 0x0e18  UNS - ok
17:34:52.0382 0x0e18  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
17:34:52.0391 0x0e18  upnphost - ok
17:34:52.0435 0x0e18  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
17:34:52.0437 0x0e18  usbaudio - ok
17:34:52.0468 0x0e18  [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
17:34:52.0472 0x0e18  usbccgp - ok
17:34:52.0518 0x0e18  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
17:34:52.0523 0x0e18  usbcir - ok
17:34:52.0539 0x0e18  [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci         C:\Windows\system32\drivers\usbehci.sys
17:34:52.0542 0x0e18  usbehci - ok
17:34:52.0619 0x0e18  [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
17:34:52.0634 0x0e18  usbhub - ok
17:34:52.0651 0x0e18  [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci         C:\Windows\system32\drivers\usbohci.sys
17:34:52.0653 0x0e18  usbohci - ok
17:34:52.0683 0x0e18  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\drivers\usbprint.sys
17:34:52.0685 0x0e18  usbprint - ok
17:34:52.0726 0x0e18  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:34:52.0730 0x0e18  USBSTOR - ok
17:34:52.0752 0x0e18  [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci         C:\Windows\system32\drivers\usbuhci.sys
17:34:52.0753 0x0e18  usbuhci - ok
17:34:52.0773 0x0e18  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
17:34:52.0777 0x0e18  usbvideo - ok
17:34:52.0817 0x0e18  [ 92B3172E8C14C1444682F510843A9988, 6B11FF921D0975B5E69848A89A98804CFD0F413F1AAA3DBBD60AA0DB5C29389C ] USB_RNDIS       C:\Windows\system32\DRIVERS\usb8023.sys
17:34:52.0817 0x0e18  USB_RNDIS - ok
17:34:52.0833 0x0e18  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
17:34:52.0834 0x0e18  UxSms - ok
17:34:52.0843 0x0e18  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\Windows\system32\lsass.exe
17:34:52.0844 0x0e18  VaultSvc - ok
17:34:52.0878 0x0e18  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
17:34:52.0879 0x0e18  vdrvroot - ok
17:34:52.0898 0x0e18  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
17:34:52.0910 0x0e18  vds - ok
17:34:52.0932 0x0e18  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
17:34:52.0933 0x0e18  vga - ok
17:34:52.0947 0x0e18  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
17:34:52.0948 0x0e18  VgaSave - ok
17:34:53.0014 0x0e18  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
17:34:53.0022 0x0e18  vhdmp - ok
17:34:53.0073 0x0e18  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
17:34:53.0075 0x0e18  viaide - ok
17:34:53.0100 0x0e18  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
17:34:53.0101 0x0e18  volmgr - ok
17:34:53.0144 0x0e18  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
17:34:53.0157 0x0e18  volmgrx - ok
17:34:53.0179 0x0e18  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
17:34:53.0186 0x0e18  volsnap - ok
17:34:53.0212 0x0e18  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\drivers\vsmraid.sys
17:34:53.0215 0x0e18  vsmraid - ok
17:34:53.0545 0x0e18  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
17:34:53.0579 0x0e18  VSS - ok
17:34:53.0599 0x0e18  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
17:34:53.0600 0x0e18  vwifibus - ok
17:34:53.0613 0x0e18  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
17:34:53.0615 0x0e18  vwififlt - ok
17:34:53.0646 0x0e18  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
17:34:53.0654 0x0e18  W32Time - ok
17:34:53.0667 0x0e18  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\drivers\wacompen.sys
17:34:53.0668 0x0e18  WacomPen - ok
17:34:53.0688 0x0e18  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
17:34:53.0690 0x0e18  WANARP - ok
17:34:53.0721 0x0e18  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
17:34:53.0723 0x0e18  Wanarpv6 - ok
17:34:54.0006 0x0e18  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\Windows\system32\Wat\WatAdminSvc.exe
17:34:54.0031 0x0e18  WatAdminSvc - ok
17:34:54.0072 0x0e18  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
17:34:54.0115 0x0e18  wbengine - ok
17:34:54.0134 0x0e18  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
17:34:54.0140 0x0e18  WbioSrvc - ok
17:34:54.0160 0x0e18  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
17:34:54.0169 0x0e18  wcncsvc - ok
17:34:54.0177 0x0e18  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
17:34:54.0179 0x0e18  WcsPlugInService - ok
17:34:54.0196 0x0e18  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\drivers\wd.sys
17:34:54.0197 0x0e18  Wd - ok
17:34:54.0245 0x0e18  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
17:34:54.0260 0x0e18  Wdf01000 - ok
17:34:54.0302 0x0e18  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\Windows\system32\wdi.dll
17:34:54.0305 0x0e18  WdiServiceHost - ok
17:34:54.0309 0x0e18  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\Windows\system32\wdi.dll
17:34:54.0311 0x0e18  WdiSystemHost - ok
17:34:54.0347 0x0e18  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\Windows\System32\webclnt.dll
17:34:54.0358 0x0e18  WebClient - ok
17:34:54.0381 0x0e18  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\Windows\system32\wecsvc.dll
17:34:54.0391 0x0e18  Wecsvc - ok
17:34:54.0406 0x0e18  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
17:34:54.0409 0x0e18  wercplsupport - ok
17:34:54.0442 0x0e18  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
17:34:54.0445 0x0e18  WerSvc - ok
17:34:54.0463 0x0e18  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
17:34:54.0464 0x0e18  WfpLwf - ok
17:34:54.0479 0x0e18  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
17:34:54.0480 0x0e18  WIMMount - ok
17:34:54.0507 0x0e18  WinDefend - ok
17:34:54.0523 0x0e18  WinHttpAutoProxySvc - ok
17:34:54.0634 0x0e18  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
17:34:54.0640 0x0e18  Winmgmt - ok
17:34:54.0749 0x0e18  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\Windows\system32\WsmSvc.dll
17:34:54.0788 0x0e18  WinRM - ok
17:34:54.0875 0x0e18  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] winusb          C:\Windows\system32\DRIVERS\WinUSB.SYS
17:34:54.0877 0x0e18  winusb - ok
17:34:54.0927 0x0e18  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
17:34:54.0945 0x0e18  Wlansvc - ok
17:34:54.0974 0x0e18  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\DRIVERS\wmiacpi.sys
17:34:54.0975 0x0e18  WmiAcpi - ok
17:34:55.0049 0x0e18  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
17:34:55.0056 0x0e18  wmiApSrv - ok
17:34:55.0081 0x0e18  WMPNetworkSvc - ok
17:34:55.0086 0x0e18  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
17:34:55.0089 0x0e18  WPCSvc - ok
17:34:55.0108 0x0e18  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll
17:34:55.0112 0x0e18  WPDBusEnum - ok
17:34:55.0123 0x0e18  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
17:34:55.0124 0x0e18  ws2ifsl - ok
17:34:55.0136 0x0e18  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\system32\wscsvc.dll
17:34:55.0140 0x0e18  wscsvc - ok
17:34:55.0144 0x0e18  WSearch - ok
17:34:55.0292 0x0e18  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\Windows\system32\wuaueng.dll
17:34:55.0345 0x0e18  wuauserv - ok
17:34:55.0398 0x0e18  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
17:34:55.0402 0x0e18  WudfPf - ok
17:34:55.0465 0x0e18  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
17:34:55.0472 0x0e18  WUDFRd - ok
17:34:55.0509 0x0e18  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
17:34:55.0513 0x0e18  wudfsvc - ok
17:34:55.0579 0x0e18  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\Windows\System32\wwansvc.dll
17:34:55.0589 0x0e18  WwanSvc - ok
17:34:55.0667 0x0e18  [ 9176C0822FAA649E45121875BE32F5D2, B7A7A906A7BB0F760ED241F998C647D728C4DB5D8778AFE585DF38331165803F ] xusb21          C:\Windows\system32\DRIVERS\xusb21.sys
17:34:55.0681 0x0e18  xusb21 - ok
17:34:55.0695 0x0e18  ================ Scan global ===============================
17:34:55.0723 0x0e18  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\Windows\system32\basesrv.dll
17:34:55.0763 0x0e18  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:34:55.0774 0x0e18  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\Windows\system32\winsrv.dll
17:34:55.0807 0x0e18  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
17:34:55.0847 0x0e18  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\Windows\system32\services.exe
17:34:55.0854 0x0e18  [ Global ] - ok
17:34:55.0856 0x0e18  ================ Scan MBR ==================================
17:34:55.0860 0x0e18  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
17:34:56.0115 0x0e18  \Device\Harddisk1\DR1 - ok
17:34:56.0140 0x0e18  [ C06575B18B90345CE86AB291B56DB94D ] \Device\Harddisk2\DR2
17:34:56.0148 0x0e18  \Device\Harddisk2\DR2 - ok
17:34:56.0151 0x0e18  [ 0792F22BCC85CFD3B28324561FFFCABB ] \Device\Harddisk0\DR0
17:34:57.0452 0x0e18  \Device\Harddisk0\DR0 - ok
17:34:57.0453 0x0e18  ================ Scan VBR ==================================
17:34:57.0454 0x0e18  [ C124D3B272039070A4A8BB47C418907E ] \Device\Harddisk1\DR1\Partition1
17:34:57.0456 0x0e18  \Device\Harddisk1\DR1\Partition1 - ok
17:34:57.0464 0x0e18  [ 5E5EBF924BBB85ADAD9C7E376CB56CE4 ] \Device\Harddisk1\DR1\Partition2
17:34:57.0465 0x0e18  \Device\Harddisk1\DR1\Partition2 - ok
17:34:57.0468 0x0e18  [ 33BD3E901F6AC3B6CEAD7074C16FDDB9 ] \Device\Harddisk0\DR0\Partition1
17:34:57.0469 0x0e18  \Device\Harddisk0\DR0\Partition1 - ok
17:34:57.0470 0x0e18  Waiting for KSN requests completion. In queue: 98
17:34:58.0470 0x0e18  Waiting for KSN requests completion. In queue: 98
17:34:59.0470 0x0e18  Waiting for KSN requests completion. In queue: 98
17:35:00.0480 0x0e18  AV detected via SS2: Microsoft Security Essentials, C:\Program Files\Microsoft Security Client\msseces.exe ( 4.4.304.0 ), 0x61000 ( enabled : updated )
17:35:00.0483 0x0e18  Win FW state via NFP2: enabled
17:35:03.0010 0x0e18  ============================================================
17:35:03.0010 0x0e18  Scan finished
17:35:03.0010 0x0e18  ============================================================
17:35:03.0019 0x0f80  Detected object count: 0
17:35:03.0019 0x0f80  Actual detected object count: 0

ADW Cleaner:

 

# AdwCleaner v3.012 - Report created 19/11/2013 at 17:29:54
# Updated 11/11/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Stormtrooper - STORMTROOPER-PC
# Running from : C:\Users\Stormtrooper\Desktop\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
Folder Deleted : C:\ProgramData\boost_interprocess
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : HKCU\Software\Softonic
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.16736
 
 
-\\ Mozilla Firefox v
 
-\\ Google Chrome v31.0.1650.57
 
[ File : C:\Users\Stormtrooper\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [11997 octets] - [24/09/2013 16:55:24]
AdwCleaner[R1].txt - [1446 octets] - [26/10/2013 09:42:52]
AdwCleaner[R2].txt - [1182 octets] - [19/11/2013 17:11:00]
AdwCleaner[S0].txt - [11788 octets] - [24/09/2013 16:57:08]
AdwCleaner[S1].txt - [1521 octets] - [26/10/2013 09:43:42]
AdwCleaner[S2].txt - [1068 octets] - [19/11/2013 17:29:54]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1128 octets] ##########


#5 digitalmofo

digitalmofo
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 19 November 2013 - 08:45 PM

Junkware Removal Tool:

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Stormtrooper on Tue 11/19/2013 at 17:38:06.66
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Main\\Start Page
Successfully repaired: [Registry Value] HKEY_USERS\S-1-5-21-2751212622-2696776098-2188675485-1000\Software\Microsoft\Internet Explorer\Main\\Start Page
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CLASSES_ROOT\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Tue 11/19/2013 at 17:44:21.77
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


#6 digitalmofo

digitalmofo
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 20 November 2013 - 02:38 AM

ESET Scanner:

 

C:\Windows\SysWOW64\rp.dll Win32/AdWare.HotBar.V application
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\update[1] multiple threats
C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\update[2] multiple threats
C:\AdwCleaner\Quarantine\C\Program Files (x86)\KeyBar_1.25\ldrtbKeyB.dll.vir a variant of Win32/Toolbar.Conduit.P application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\KeyBar_1.25\tbKeyB.dll.vir a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Mozilla Firefox\nsprotector.js.vir Win32/Conduit.SearchProtect.A application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Stormtrooper\AppData\LocalLow\KeyBar_1.25\ldrtbKeyB.dll.vir a variant of Win32/Toolbar.Conduit.P application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Stormtrooper\AppData\LocalLow\KeyBar_1.25\tbKeyB.dll.vir a variant of Win32/Toolbar.Conduit.B application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Users\Stormtrooper\AppData\Roaming\BitLord\BrowserCache\f_000038.vir Win32/TopMedia.B application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\ARFC\wrtc.exe.vir a variant of Win32/Toolbar.Perion.G application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\jmdp\lmrn.dll.vir Win32/SweetIM.G application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\jmdp\stij.exe.vir Win32/SweetIM.G application cleaned by deleting - quarantined
C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\jmdp\SweetNT.crx.vir Win32/SweetIM.E application deleted - quarantined
C:\AdwCleaner\Quarantine\C\Windows\SysWOW64\WNLT\Installation\SKSetup.exe.vir Win32/SweetIM.G application cleaned by deleting - quarantined
C:\HD2\New Volume\STORMTROOPER-PC\Backup Set 2012-12-24 152702\Backup Files 2012-12-24 152702\Backup files 15.zip Android/Exploit.Lotoor.AT trojan deleted - quarantined
C:\Users\Stormtrooper\AppData\Local\Temp\vrtytdrp.exe a variant of MSIL/Adware.GOffer.B application cleaned by deleting - quarantined
C:\Users\Stormtrooper\AppData\Local\Temp\2hugn4rj.0e1\lkuerjdi.exe a variant of MSIL/Adware.GOffer.A application cleaned by deleting - quarantined
C:\Users\Stormtrooper\AppData\Local\Temp\f4enlkce.5ly\lkuerjdi.exe a variant of MSIL/Adware.GOffer.A application cleaned by deleting - quarantined
C:\Users\Stormtrooper\AppData\Local\Temp\fueqsnan.d0a\lkuerjdi.exe a variant of MSIL/Adware.GOffer.A application cleaned by deleting - quarantined
C:\Users\Stormtrooper\AppData\Local\Temp\tuxebnjj.1yg\lkuerjdi.exe a variant of MSIL/Adware.GOffer.A application cleaned by deleting - quarantined
C:\Windows\System32\rp.dll Win32/AdWare.HotBar.V application cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\update[1] multiple threats cleaned by deleting - quarantined
C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\update[2] multiple threats cleaned by deleting - quarantined
E:\Downloads\DoomLords-One Click\files\zergRush Android/Exploit.Lotoor.AT trojan cleaned by deleting - quarantined
E:\Downloads\Unfortunately\Jack.Reacher.2012.480p.BRRip.XViD.AC3-NYDIC_secure.exe Win32/TopMedia.B application cleaned by deleting - quarantined
E:\Downloads\Zips\DoomLords-One Click.zip Android/Exploit.Lotoor.AT trojan deleted - quarantined
E:\STORMTROOPER-PC\Backup Set 2013-10-27 190004\Backup Files 2013-10-27 190004\Backup files 28.zip Android/Exploit.Lotoor.AT trojan deleted - quarantined
E:\STORMTROOPER-PC\Backup Set 2013-10-27 190004\Backup Files 2013-10-27 190004\Backup files 36.zip Win32/TopMedia.B application deleted - quarantined


#7 digitalmofo

digitalmofo
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 20 November 2013 - 02:43 AM

JDI Backup lkuerjdi.exe is still showing up in my Notification Area Icons.  That did seem to find a lot, though.  



#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:51 PM

Posted 20 November 2013 - 11:21 AM

Do this and see

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 digitalmofo

digitalmofo
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 20 November 2013 - 07:15 PM

It ran, cleared 495 bytes.  JDI Backup lkuerjdi.exe is still showing up in my Notification Area Icons and still have popups for realplayer installation and another 'install toolbar' popup.



#10 digitalmofo

digitalmofo
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 20 November 2013 - 07:19 PM

Also, I have not said thank you enough yet.  I really appreciate the time you're taking to help me.  I'm a support professional, but this one has me stumped, so THANK YOU!!!!!!!



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:51 PM

Posted 20 November 2013 - 07:57 PM

You are welcome..
 
In FireFox it may be the Add ons/Plugins. First look for those items and disable. Or
Try disabling them one at a time and see which one was at fault.
How to disable extensions and plugins
Keeping your third-party plugins up to date


In Chrome

Disabling Plugins in Google Chrome


Edited by boopme, 20 November 2013 - 07:59 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 digitalmofo

digitalmofo
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 20 November 2013 - 08:07 PM

I don't have FireFox, only Chrome, but it's not a browser popup, it's showing up as a system notification (above my clock) even with no browser open.  

 

uU6CtoY.png

 

Here's one now, lol.

 

EQNFViB.png



#13 digitalmofo

digitalmofo
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 20 November 2013 - 08:11 PM

Here's the program it's running.  I can't even find information about them other than they're a shady backup company.  

 

A4g6XX1.png



#14 digitalmofo

digitalmofo
  • Topic Starter

  • Members
  • 56 posts
  • OFFLINE
  •  
  • Local time:03:51 PM

Posted 20 November 2013 - 08:16 PM

Ok, I disabled each of the chrome plugins one by one and restarted each time, no difference.  :(



#15 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:05:51 PM

Posted 20 November 2013 - 09:52 PM

Can you End that task?


1.Click the Start orb in the Start Search
2.Type msconfig and press enter, this brings up the System Configuration Utility. images, Scroll to the  Startup tab and disable those .exes
3.If the User Account Control (UAC) prompts you for permission click the Continue button.


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users