Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Was infected with trojan, not sure if clean now


  • Please log in to reply
12 replies to this topic

#1 Elil-Hrair-Rah

Elil-Hrair-Rah

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:09:36 PM

Posted 16 December 2013 - 07:12 AM

Hi. I managed to get my laptop (OS Windows 7 SP1 64-bit) infected with a trojan.

 

I was able to remove it (using BitDefender which identified it as Trojan.GenericKD.1424422). I am now back on McAfee and it and MalwareBytes Anti-Malware both say it is clean.

 

Unfortunately my computer does not seem to running correctly now, so I am not sure if I still have a nasty on it. There is nothing particularly specific, except the odd website not loading when it will load on my other computer. It just does not seem to be running quite "right" - things are a bit slower and clunky.

 

I was hoping somebody here could help me make sure my laptop is clean (and, if not, help me clean the infection with metaphorical fire).



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:36 PM

Posted 16 December 2013 - 03:10 PM

Hi ELR
 
Lets get a further look
 

Please download MiniToolBox, save it to your desktop and run it.
Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
 
Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
.
.
.
ADW Cleaner
Please download AdwCleaner by Xplode and save to your Desktop.
  • Double click on AdwCleaner.exe to run the tool
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • After the scan has finished...
    <-insert any special instructions here for what to uncheck OR remove this line if there are none->
  • This time click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S#].txt) will open automatically (where the largest value of # represents the most recent report).
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.
  • .
    .
    .
    thisisujrt.gif Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.
    .
    .
    .
    .
    • Last run ESET.
      • Hold down Control and click on this link to open ESET OnlineScan in a new window.
      • Click the esetonlinebtn.png button.
      • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
      • Double click on the esetsmartinstaller_enu.png icon on your desktop.
      • Check "YES, I accept the Terms of Use."
      • Click the Start button.
      • Accept any security warnings from your browser.
      • Under scan settings, check "Scan Archives" and "Remove found threats"
      • Click Advanced settings and select the following:
      • Scan potentially unwanted applications
      • Scan for potentially unsafe applications
      • Enable Anti-Stealth technology
      • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
      • When the scan completes, click List Threats
      • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
      • Click the Back button.
      • Click the Finish button.
      • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Elil-Hrair-Rah

Elil-Hrair-Rah
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:09:36 PM

Posted 17 December 2013 - 02:24 AM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Laura (administrator) on 16-12-2013 at 21:37:24
Running from "C:\Users\Laura\Desktop"
Microsoft Windows 7 Home Premium  Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************
 
========================= Flush DNS: ===================================
 
Windows IP Configuration
 
Successfully flushed the DNS Resolver Cache.
 
========================= IE Proxy Settings: ============================== 
 
Proxy is not enabled.
No Proxy Server is set.
 
"Reset IE Proxy Settings": IE Proxy Settings were reset.
 
========================= FF Proxy Settings: ============================== 
 
 
"Reset FF Proxy Settings": Firefox Proxy settings were reset.
 
========================= Hosts content: =================================
 
 
 
========================= IP Configuration: ================================
 
Broadcom 802.11n Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe GBE Family Controller = Local Area Connection (Media disconnected)
Bluetooth Device (Personal Area Network) = Bluetooth Network Connection 3 (Media disconnected)
Microsoft Virtual WiFi Miniport Adapter = Wireless Network Connection 2 (Media disconnected)
 
 
# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4
 
reset
set global icmpredirects=enabled
set subinterface interface=?;3 subinterface=ethernet_11 mtu=1477
add address name="ethernet_19" address=192.168.56.1 mask=255.255.255.0
 
 
popd
# End of IPv4 configuration
 
 
 
Windows IP Configuration
 
   Host Name . . . . . . . . . . . . : Laura-PC
   Primary Dns Suffix  . . . . . . . : 
   Node Type . . . . . . . . . . . . : Hybrid
   IP Routing Enabled. . . . . . . . : No
   WINS Proxy Enabled. . . . . . . . : No
   DNS Suffix Search List. . . . . . : home
 
Wireless LAN adapter Wireless Network Connection 2:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Microsoft Virtual WiFi Miniport Adapter
   Physical Address. . . . . . . . . : 30-14-4A-30-AF-B4
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Ethernet adapter Bluetooth Network Connection 3:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Bluetooth Device (Personal Area Network) #3
   Physical Address. . . . . . . . . : 90-A4-DE-E5-F1-7D
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Wireless LAN adapter Wireless Network Connection:
 
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Broadcom 802.11n Network Adapter
   Physical Address. . . . . . . . . : 30-14-4A-30-AF-B4
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
   Link-local IPv6 Address . . . . . : fe80::b147:afb0:aef8:3c43%16(Preferred) 
   IPv4 Address. . . . . . . . . . . : 192.168.1.71(Preferred) 
   Subnet Mask . . . . . . . . . . . : 255.255.255.0
   Lease Obtained. . . . . . . . . . : 16 December 2013 21:18:24
   Lease Expires . . . . . . . . . . : 17 December 2013 21:18:27
   Default Gateway . . . . . . . . . : 192.168.1.254
   DHCP Server . . . . . . . . . . . : 192.168.1.254
   DHCPv6 IAID . . . . . . . . . . . : 405804106
   DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-18-3B-AC-3A-E8-03-9A-0B-60-DC
   DNS Servers . . . . . . . . . . . : 192.168.1.254
                                       192.168.1.254
   NetBIOS over Tcpip. . . . . . . . : Enabled
 
Ethernet adapter Local Area Connection:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Realtek PCIe GBE Family Controller
   Physical Address. . . . . . . . . : E8-03-9A-0B-60-DC
   DHCP Enabled. . . . . . . . . . . : Yes
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter isatap.home:
 
   Media State . . . . . . . . . . . : Media disconnected
   Connection-specific DNS Suffix  . : home
   Description . . . . . . . . . . . : Microsoft ISATAP Adapter #2
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
 
Tunnel adapter Local Area Connection* 16:
 
   Connection-specific DNS Suffix  . : 
   Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
   Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
   DHCP Enabled. . . . . . . . . . . : No
   Autoconfiguration Enabled . . . . : Yes
   IPv6 Address. . . . . . . . . . . : 2001:0:5ef5:79fd:3cc5:3592:a96e:a761(Preferred) 
   Link-local IPv6 Address . . . . . : fe80::3cc5:3592:a96e:a761%27(Preferred) 
   Default Gateway . . . . . . . . . : ::
   NetBIOS over Tcpip. . . . . . . . : Disabled
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.254
 
Name:    google.com
Addresses:  173.194.34.166
 173.194.34.160
 173.194.34.168
 173.194.34.164
 173.194.34.161
 173.194.34.169
 173.194.34.174
 173.194.34.163
 173.194.34.167
 173.194.34.165
 173.194.34.162
 
 
Pinging google.com [173.194.34.166] with 32 bytes of data:
Reply from 173.194.34.166: bytes=32 time=33ms TTL=52
Reply from 173.194.34.166: bytes=32 time=16ms TTL=52
 
Ping statistics for 173.194.34.166:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 16ms, Maximum = 33ms, Average = 24ms
DNS request timed out.
    timeout was 2 seconds.
Server:  UnKnown
Address:  192.168.1.254
 
Name:    yahoo.com
Addresses:  98.139.183.24
 206.190.36.45
 98.138.253.109
 
 
Pinging yahoo.com [98.139.183.24] with 32 bytes of data:
Reply from 98.139.183.24: bytes=32 time=117ms TTL=45
Reply from 98.139.183.24: bytes=32 time=124ms TTL=44
 
Ping statistics for 98.139.183.24:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 117ms, Maximum = 124ms, Average = 120ms
 
Pinging 127.0.0.1 with 32 bytes of data:
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
Reply from 127.0.0.1: bytes=32 time<1ms TTL=128
 
Ping statistics for 127.0.0.1:
    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),
Approximate round trip times in milli-seconds:
    Minimum = 0ms, Maximum = 0ms, Average = 0ms
===========================================================================
Interface List
 21...30 14 4a 30 af b4 ......Microsoft Virtual WiFi Miniport Adapter
 18...90 a4 de e5 f1 7d ......Bluetooth Device (Personal Area Network) #3
 16...30 14 4a 30 af b4 ......Broadcom 802.11n Network Adapter
 13...e8 03 9a 0b 60 dc ......Realtek PCIe GBE Family Controller
  1...........................Software Loopback Interface 1
 28...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #2
 27...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
===========================================================================
 
IPv4 Route Table
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0    192.168.1.254     192.168.1.71     25
        127.0.0.0        255.0.0.0         On-link         127.0.0.1    306
        127.0.0.1  255.255.255.255         On-link         127.0.0.1    306
  127.255.255.255  255.255.255.255         On-link         127.0.0.1    306
      192.168.1.0    255.255.255.0         On-link      192.168.1.71    281
     192.168.1.71  255.255.255.255         On-link      192.168.1.71    281
    192.168.1.255  255.255.255.255         On-link      192.168.1.71    281
        224.0.0.0        240.0.0.0         On-link         127.0.0.1    306
        224.0.0.0        240.0.0.0         On-link      192.168.1.71    281
  255.255.255.255  255.255.255.255         On-link         127.0.0.1    306
  255.255.255.255  255.255.255.255         On-link      192.168.1.71    281
===========================================================================
Persistent Routes:
  None
 
IPv6 Route Table
===========================================================================
Active Routes:
 If Metric Network Destination      Gateway
 27     58 ::/0                     On-link
  1    306 ::1/128                  On-link
 27     58 2001::/32                On-link
 27    306 2001:0:5ef5:79fd:3cc5:3592:a96e:a761/128
                                    On-link
 16    281 fe80::/64                On-link
 27    306 fe80::/64                On-link
 27    306 fe80::3cc5:3592:a96e:a761/128
                                    On-link
 16    281 fe80::b147:afb0:aef8:3c43/128
                                    On-link
  1    306 ff00::/8                 On-link
 27    306 ff00::/8                 On-link
 16    281 ff00::/8                 On-link
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================
 
Catalog5 01 C:\windows\SysWOW64\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\windows\SysWOW64\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\windows\SysWOW64\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog5 06 C:\windows\SysWOW64\winrnr.dll [20992] (Microsoft Corporation)
Catalog5 07 C:\windows\SysWOW64\wshbth.dll [36352] (Microsoft Corporation)
Catalog9 01 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 02 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 03 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 04 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 05 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 06 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 07 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 08 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 09 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 10 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
Catalog9 11 C:\windows\SysWOW64\mswsock.dll [231424] (Microsoft Corporation)
x64-Catalog5 01 C:\Windows\System32\NLAapi.dll [70656] (Microsoft Corporation)
x64-Catalog5 02 C:\Windows\System32\napinsp.dll [68096] (Microsoft Corporation)
x64-Catalog5 03 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 04 C:\Windows\System32\pnrpnsp.dll [86016] (Microsoft Corporation)
x64-Catalog5 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog5 06 C:\Windows\System32\winrnr.dll [28672] (Microsoft Corporation)
x64-Catalog5 07 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 08 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [170880] (Microsoft Corp.)
x64-Catalog5 09 C:\Windows\System32\wshbth.dll [47104] (Microsoft Corporation)
x64-Catalog9 01 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 02 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 03 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 04 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 05 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 06 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 07 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 08 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 09 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 10 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
x64-Catalog9 11 C:\Windows\System32\mswsock.dll [327168] (Microsoft Corporation)
 
========================= Event log errors: ===============================
 
Application errors:
==================
Error: (12/16/2013 09:21:52 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/16/2013 09:20:37 PM) (Source: Sage ACT! Scheduler) (User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. ScheduledItems count is less than or equal to 0.
   at Act.Scheduler.SchedulerService.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (12/16/2013 09:07:56 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/16/2013 09:06:36 PM) (Source: Sage ACT! Scheduler) (User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. ScheduledItems count is less than or equal to 0.
   at Act.Scheduler.SchedulerService.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (12/16/2013 01:52:10 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/16/2013 01:51:20 PM) (Source: Sage ACT! Scheduler) (User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. ScheduledItems count is less than or equal to 0.
   at Act.Scheduler.SchedulerService.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (12/16/2013 01:17:23 PM) (Source: Microsoft Office 14) (User: )
Description: Microsoft Outlook: Rejected Safe Mode action : Outlook failed to start correctly last time.  Starting Outlook in safe mode will help you correct or isolate a startup problem in order to successfully start the program.  Some functionality may be disabled in this mode.
 
Do you want to start Outlook in safe mode?.
Rejected Safe Mode action : Microsoft Outlook.
 
Error: (12/16/2013 01:15:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/16/2013 01:15:18 PM) (Source: Sage ACT! Scheduler) (User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. ScheduledItems count is less than or equal to 0.
   at Act.Scheduler.SchedulerService.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (12/16/2013 01:04:48 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
System errors:
=============
Error: (12/16/2013 09:26:03 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
Error: (12/16/2013 09:26:03 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
%%1330
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (12/16/2013 09:25:33 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Home Network service hung on starting.
 
Error: (12/16/2013 09:25:18 PM) (Source: DCOM) (User: )
Description: {209500FC-6B45-4693-8871-6296C4843751}
 
Error: (12/16/2013 09:23:04 PM) (Source: DCOM) (User: )
Description: {209500FC-6B45-4693-8871-6296C4843751}
 
Error: (12/16/2013 09:19:36 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: application-specificLocalLaunch{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT AUTHORITYSYSTEMS-1-5-18LocalHost (Using LRPC)
 
Error: (12/16/2013 09:13:29 PM) (Source: Service Control Manager) (User: )
Description: The NVIDIA Update Service Daemon service failed to start due to the following error: 
%%1069
 
Error: (12/16/2013 09:13:29 PM) (Source: Service Control Manager) (User: )
Description: The nvUpdatusService service was unable to log on as .\UpdatusUser with the currently configured password due to the following error: 
%%1330
 
To ensure that the service is configured properly, use the Services snap-in in Microsoft Management Console (MMC).
 
Error: (12/16/2013 09:11:55 PM) (Source: Service Control Manager) (User: )
Description: The McAfee Home Network service hung on starting.
 
Error: (12/16/2013 09:11:29 PM) (Source: DCOM) (User: )
Description: {209500FC-6B45-4693-8871-6296C4843751}
 
 
Microsoft Office Sessions:
=========================
Error: (12/16/2013 09:21:52 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/16/2013 09:20:37 PM) (Source: Sage ACT! Scheduler)(User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. ScheduledItems count is less than or equal to 0.
   at Act.Scheduler.SchedulerService.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (12/16/2013 09:07:56 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/16/2013 09:06:36 PM) (Source: Sage ACT! Scheduler)(User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. ScheduledItems count is less than or equal to 0.
   at Act.Scheduler.SchedulerService.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (12/16/2013 01:52:10 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/16/2013 01:51:20 PM) (Source: Sage ACT! Scheduler)(User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. ScheduledItems count is less than or equal to 0.
   at Act.Scheduler.SchedulerService.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (12/16/2013 01:17:23 PM) (Source: Microsoft Office 14)(User: )
Description: Microsoft OutlookOutlook failed to start correctly last time.  Starting Outlook in safe mode will help you correct or isolate a startup problem in order to successfully start the program.  Some functionality may be disabled in this mode.
 
Do you want to start Outlook in safe mode?
 
Error: (12/16/2013 01:15:29 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
Error: (12/16/2013 01:15:18 PM) (Source: Sage ACT! Scheduler)(User: )
Description: Service cannot be started. System.Exception: Unable to start scheduler service. ScheduledItems count is less than or equal to 0.
   at Act.Scheduler.SchedulerService.OnStart(String[] args)
   at System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)
 
Error: (12/16/2013 01:04:48 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
 
 
CodeIntegrity Errors:
===================================
  Date: 2013-12-15 19:13:51.127
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore_3_8\VSC69AF.tmp\vscore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-15 19:13:51.122
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore_3_8\VSC69AF.tmp\vscore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-15 19:13:51.120
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore_3_8\VSC69AF.tmp\vscore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-15 19:13:51.117
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore_3_8\VSC69AF.tmp\vscore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-02 12:16:16.375
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore_3_8\VSC6BFC.tmp\vscore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-02 12:16:16.373
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore_3_8\VSC6BFC.tmp\vscore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-02 12:16:16.371
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore_3_8\VSC6BFC.tmp\vscore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-12-02 12:16:16.367
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Common Files\McAfee\VSCore_3_8\VSC6BFC.tmp\vscore\mfeelamk.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-26 20:10:52.307
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
 
  Date: 2013-11-26 20:10:52.307
  Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 14.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
 
 
=========================== Installed Programs ============================
 
Adobe AIR (Version: 3.9.0.1210)
Adobe Flash Player 11 ActiveX (Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (Version: 11.9.900.170)
Adobe Reader XI (11.0.05) (Version: 11.0.05)
Adobe Shockwave Player 12.0 (Version: 12.0.0.112)
Agatha Christie - Death on the Nile (Version: 2.2.0.82)
Apple Application Support (Version: 2.3.6)
Apple Mobile Device Support (Version: 7.0.0.117)
Apple Software Update (Version: 2.1.3.127)
BatteryLifeExtender (Version: 1.0.11)
Bejeweled 2 Deluxe (Version: 2.2.0.95)
Broadcom 802.11 Network Adapter (Version: 5.60.48.55)
BT NetProtect Plus (Version: 12.8.903)
Build-a-lot (Version: 2.2.0.82)
Camtasia Studio 8 (Version: 8.1.2.1327)
Camtasia Studio 8 (Version: 8.2.0.1416)
ChargeableUSB (Version: 1.0.0.0)
Chuzzle Deluxe (Version: 2.2.0.82)
CyberLink Media Suite (Version: 8.0.2227)
CyberLink MediaShow (Version: 5.0.1130a)
CyberLink Power2Go (Version: 6.1.4813b)
CyberLink PowerDirector (Version: 8.0.4207)
CyberLink PowerDVD 10 (Version: 10.0.3029.52)
CyberLink YouCam (Version: 3.1.3509)
Definition Update for Microsoft Office 2010 (KB982726) 64-Bit Edition
Deus Ex: Human Revolution
Diner Dash 2 Restaurant Rescue (Version: 2.2.0.82)
DoomRL version 0.9.9.7 (Version: 0.9.9.7)
Download Navigator (Version: 2.2.0)
Dropbox (Version: 2.0.26)
DWG TrueView 2013 (Version: 19.0.55.0)
Easy Content Share (Version: 1.0)
Easy Display Manager (Version: 3.2)
Easy Migration (Version: 1.0)
Easy Network Manager (Version: 4.4.7)
Easy SpeedUp Manager (Version: 2.1.1.1)
EasyBatteryManager (Version: 4.0.0.4)
EasyFileShare (Version: 1.0.13)
EPSON Scan
EPSON WP-4535 Series Printer Uninstall
EpsonNet SetupManager V2 (Version: 2.0.0)
ETDWare PS/2-X64 8.0.7.2_WHQL (Version: 8.0.7.2)
Farm Frenzy (Version: 2.2.0.82)
Fast Start (Version: 2.2.0.1)
Google Chrome (Version: 31.0.1650.63)
GoToMeeting 6.0.0.1259 (Version: 6.0.0.1259)
iCloud (Version: 3.0.2.163)
Insaniquarium Deluxe (Version: 2.2.0.82)
Intel® Control Center (Version: 1.2.1.1007)
Intel® Management Engine Components (Version: 7.0.0.1118)
Intel® Processor Graphics (Version: 8.15.10.2253)
Intel® Rapid Storage Technology (Version: 10.1.5.1001)
Intel® Turbo Boost Technology Monitor 2.0 (Version: 2.0.82.0)
Java 7 Update 45 (64-bit) (Version: 7.0.450)
Java 7 Update 45 (Version: 7.0.450)
Java Auto Updater (Version: 2.1.9.8)
Java SE Development Kit 7 Update 45 (64-bit) (Version: 1.7.0.450)
Java SE Development Kit 7 Update 7 (64-bit) (Version: 1.7.0.70)
John Deere Drive Green (Version: 2.2.0.82)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 4 Multi-Targeting Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938)
Microsoft Access database engine 2010 (English) (Version: 14.0.6029.1000)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Expression Encoder 4 Screen Capture Codec (Version: 4.0.1651.0)
Microsoft Help Viewer 1.1 (Version: 1.1.40219)
Microsoft Office 2010 (Version: 14.0.4763.1000)
Microsoft Office Access database engine 2007 (English) (Version: 12.0.6612.1000)
Microsoft Office Access MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Access Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Excel MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Groove MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office InfoPath MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Office 32-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proof (Spanish) 2010 (Version: 14.0.7015.1000)
Microsoft Office Proofing (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared 32-bit MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Office Word MUI (English) 2010 (Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft SQL Server 2008 (64-bit)
Microsoft SQL Server 2008 Database Engine Services (Version: 10.3.5500.0)
Microsoft SQL Server 2008 R2 (64-bit)
Microsoft SQL Server 2008 R2 Management Objects (Version: 10.50.1750.9)
Microsoft SQL Server 2008 R2 Native Client (Version: 10.51.2500.0)
Microsoft SQL Server 2008 R2 RsFx Driver (Version: 10.51.2500.0)
Microsoft SQL Server 2008 R2 Setup (English) (Version: 10.51.2500.0)
Microsoft SQL Server 2008 RsFx Driver (Version: 10.3.5500.0)
Microsoft SQL Server 2008 Setup Support Files  (Version: 10.3.5500.0)
Microsoft SQL Server Browser (Version: 10.51.2500.0)
Microsoft SQL Server Compact 3.5 SP2 ENU (Version: 3.5.8080.0)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (Version: 3.5.8080.0)
Microsoft SQL Server System CLR Types (Version: 10.50.1750.9)
Microsoft SQL Server VSS Writer (Version: 10.51.2500.0)
Microsoft Sync Framework 2.0 Core Components (x86) ENU  (Version: 2.0.1578.0)
Microsoft Sync Framework 2.0 Provider Services (x86) ENU  (Version: 2.0.1578.0)
Microsoft Visual C# 2010 Express - ENU (Version: 10.0.40219)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Runtime - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (Version: 10.0.40219)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (Version: 10.0.40219)
Microsoft Visual Studio 2010 Service Pack 1 (Version: 10.0.40219)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40303)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.40308)
Movie Color Enhancer (Version: 1.0)
Multimedia POP (Version: 1.1)
MyEpson Portal
MyEpson Portal (Version: 1.0.0.12)
NVIDIA Control Panel 307.21 (Version: 307.21)
NVIDIA DDS Utilities (Version: 1.0)
NVIDIA Graphics Driver 307.21 (Version: 307.21)
NVIDIA Install Application (Version: 2.1002.85.551)
NVIDIA Optimus 1.10.8 (Version: 1.10.8)
NVIDIA Update 1.10.8 (Version: 1.10.8)
NVIDIA Update Components (Version: 1.10.8)
Peggle (Version: 2.2.0.82)
Penguins! (Version: 2.2.0.82)
PhoneShare (Version: 9.1.4)
Plant Tycoon
Plants vs. Zombies (Version: 2.2.0.82)
Plants vs. Zombies: Game of the Year
Polar Golfer (Version: 2.2.0.82)
POV-Ray for Windows v3.62 (Version: 3.62)
PSPad editor
QuickTime (Version: 7.74.80.86)
Rapport (Version: 3.5.1205.20)
Rapport (Version: 3.5.1304.13)
Realtek Ethernet Controller Driver (Version: 7.45.516.2011)
Realtek High Definition Audio Driver (Version: 6.0.1.6400)
Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.0.30.0)
Sage ACT! Pro 2012 (Version: 14.0.0.0)
Samsung AnyWeb Print (Version: 2.0.67.1)
Samsung Printer Live Update
Samsung Recovery Solution 5 (Version: 5.0.0.9)
Samsung Support Center 1.0 (Version: 1.1.38)
Samsung Universal Print Driver (Version: 2.02.05.00:27)
Samsung Universal Scan Driver (Version: 1.2.5.0)
Samsung Update Plus (Version: 3.0.0.17)
SamsungMovie (Version: 1.0.0)
SEGA Genesis & Mega Drive Classics
Sentinel Protection Installer 7.6.1 (Version: 7.6.1)
Sentinel System Driver Installer 7.5.1 (Version: 7.5.1)
Service Pack 1 for SQL Server 2008 R2 (KB2528583) (64-bit) (Version: 10.51.2500.0)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
Service Pack 3 for SQL Server 2008 (KB2546951) (64-bit) (Version: 10.3.5500.0)
Shared C Run-time for x64 (Version: 10.0.0)
SISShortcut (Version: 1.00.000)
Slash'EM 0.0.7E7F3 (Version: 0.0.7E7F3)
SlimDX Redistributable for .NET 2.0 (March 2011) (Version: 2.0.11.43)
SlimDX Redistributable for .NET 4.0 (March 2011) (Version: 4.0.11.43)
SlimDX Runtime .NET 4.0 x64 (January 2012) (Version: 2.0.13.43)
SlimDX Runtime .NET 4.0 x86 (January 2012) (Version: 2.0.13.43)
SQL Server 2008 R2 SP1 Common Files (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 Database Engine Services (Version: 10.51.2500.0)
SQL Server 2008 R2 SP1 Database Engine Shared (Version: 10.51.2500.0)
Sql Server Customer Experience Improvement Program (Version: 10.50.1600.1)
Star Wars: Knights of the Old Republic
Steam (Version: 1.0.0.0)
StuffIt Expander 2011 (Version: 15.0.7.2518)
swMSM (Version: 12.0.0.1)
The Elder Scrolls V: Skyrim
Tomb Raider I
Trusteer Endpoint Protection (Version: 3.5.1304.13)
Update for Microsoft .NET Framework 4.5 (KB2750147) (Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (Version: 1)
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2810071) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760598) 64-Bit Edition
Update for Microsoft Office 2010 (KB2760631) 64-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
Update for Microsoft Office 2010 (KB2826026) 64-Bit Edition
Update for Microsoft Office 2010 (KB2850079) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2810072) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2553145) 64-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2810066) 64-Bit Edition
Update for Microsoft Word 2010 (KB2837593) 64-Bit Edition
User Guide (Version: 1.5)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (Version: 4.0.8080.0)
VLC media player 2.1.1 (Version: 2.1.1)
Vulture-SlashEM
Warhammer 40,000 Space Marine
WIDCOMM Bluetooth Software (Version: 6.3.0.7000)
WildTangent Games (Version: 1.0.1.5)
WildTangent ORB Game Console
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
World of Warcraft (Version: 5.0.5.16135)
Zuma Deluxe (Version: 2.2.0.95)
 
========================= Memory info: ===================================
 
Percentage of memory in use: 43%
Total physical RAM: 8104.29 MB
Available physical RAM: 4589.61 MB
Total Pagefile: 16206.76 MB
Available Pagefile: 12038.78 MB
Total Virtual: 4095.88 MB
Available Virtual: 3960.27 MB
 
========================= Partitions: =====================================
 
1 Drive c: () (Fixed) (Total:364 GB) (Free:159.5 GB) NTFS
2 Drive d: () (Fixed) (Total:544.49 GB) (Free:454.31 GB) NTFS
 
========================= Users: ========================================
 
User accounts for \\LAURA-PC
 
Administrator            Guest                    Laura                    
UpdatusUser              
 
 
**** End of log ****


#4 Elil-Hrair-Rah

Elil-Hrair-Rah
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:09:36 PM

Posted 17 December 2013 - 02:26 AM

21:40:03.0476 0x23ec  TDSS rootkit removing tool 3.0.0.19 Nov 18 2013 09:27:50
21:40:27.0597 0x23ec  ============================================================
21:40:27.0597 0x23ec  Current date / time: 2013/12/16 21:40:27.0597
21:40:27.0597 0x23ec  SystemInfo:
21:40:27.0597 0x23ec  
21:40:27.0597 0x23ec  OS Version: 6.1.7601 ServicePack: 1.0
21:40:27.0597 0x23ec  Product type: Workstation
21:40:27.0598 0x23ec  ComputerName: LAURA-PC
21:40:27.0598 0x23ec  UserName: Laura
21:40:27.0598 0x23ec  Windows directory: C:\windows
21:40:27.0598 0x23ec  System windows directory: C:\windows
21:40:27.0598 0x23ec  Running under WOW64
21:40:27.0598 0x23ec  Processor architecture: Intel x64
21:40:27.0598 0x23ec  Number of processors: 8
21:40:27.0598 0x23ec  Page size: 0x1000
21:40:27.0598 0x23ec  Boot type: Normal boot
21:40:27.0598 0x23ec  ============================================================
21:40:27.0765 0x23ec  KLMD registered as C:\windows\system32\drivers\42690586.sys
21:40:27.0851 0x23ec  System UUID: {37548C89-4EF1-9739-3BD4-D75033275673}
21:40:28.0221 0x23ec  Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
21:40:28.0227 0x23ec  ============================================================
21:40:28.0227 0x23ec  \Device\Harddisk0\DR0:
21:40:28.0227 0x23ec  MBR partitions:
21:40:28.0227 0x23ec  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
21:40:28.0227 0x23ec  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x2D800000
21:40:28.0248 0x23ec  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2D833000, BlocksNum 0x440FB800
21:40:28.0248 0x23ec  ============================================================
21:40:28.0456 0x23ec  C: <-> \Device\Harddisk0\DR0\Partition2
21:40:28.0493 0x23ec  D: <-> \Device\Harddisk0\DR0\Partition3
21:40:28.0493 0x23ec  ============================================================
21:40:28.0493 0x23ec  Initialize success
21:40:28.0493 0x23ec  ============================================================
21:40:36.0539 0x2040  ============================================================
21:40:36.0539 0x2040  Scan started
21:40:36.0539 0x2040  Mode: Manual; 
21:40:36.0539 0x2040  ============================================================
21:40:36.0539 0x2040  KSN ping started
21:40:38.0898 0x2040  KSN ping finished: true
21:40:39.0577 0x2040  ================ Scan system memory ========================
21:40:39.0577 0x2040  System memory - ok
21:40:39.0577 0x2040  ================ Scan services =============================
21:40:39.0757 0x2040  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\windows\system32\drivers\1394ohci.sys
21:40:39.0764 0x2040  1394ohci - ok
21:40:39.0812 0x2040  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\windows\system32\drivers\ACPI.sys
21:40:39.0820 0x2040  ACPI - ok
21:40:39.0847 0x2040  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\windows\system32\drivers\acpipmi.sys
21:40:39.0849 0x2040  AcpiPmi - ok
21:40:39.0960 0x2040  [ E7E084002ECA2B84C69209B004632107, 7F510F1E37DE2B7EAD91D5E6710BB85DD7AAB9F414BEC3E7E4B8B94B9047C47A ] ActService      C:\Program Files (x86)\ACT\Act for Windows\Act.Server.Host.exe
21:40:39.0982 0x2040  ActService - ok
21:40:40.0075 0x2040  [ ADDA5E1951B90D3D23C56D3CF0622ADC, E85E7BFD29F00ED34BF5BE8BD4DA93CBB14278E16809BB55406875F0DA88551E ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
21:40:40.0077 0x2040  AdobeARMservice - ok
21:40:40.0196 0x2040  [ 1BA1AB4141A92EB34DA99F1249CA2D4D, 43ADF35146E61E0DE58D2ACC2994538F6025135ECEB30073BEF05A804BB38107 ] AdobeFlashPlayerUpdateSvc C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
21:40:40.0201 0x2040  AdobeFlashPlayerUpdateSvc - ok
21:40:40.0255 0x2040  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\windows\system32\drivers\adp94xx.sys
21:40:40.0266 0x2040  adp94xx - ok
21:40:40.0303 0x2040  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\windows\system32\drivers\adpahci.sys
21:40:40.0312 0x2040  adpahci - ok
21:40:40.0395 0x2040  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\windows\system32\drivers\adpu320.sys
21:40:40.0403 0x2040  adpu320 - ok
21:40:40.0434 0x2040  [ 4B78B431F225FD8624C5655CB1DE7B61, 198A5AF2125C7C41F531A652D200C083A55A97DC541E3C0B5B253C7329949156 ] AeLookupSvc     C:\windows\System32\aelupsvc.dll
21:40:40.0436 0x2040  AeLookupSvc - ok
21:40:40.0496 0x2040  [ 79059559E89D06E8B80CE2944BE20228, 6E041D2FED2D0C3D8E16E56CB61D3245F9144EA92F5BDC9A4AA30598D1C8E6EE ] AFD             C:\windows\system32\drivers\afd.sys
21:40:40.0506 0x2040  AFD - ok
21:40:40.0607 0x2040  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\windows\system32\drivers\agp440.sys
21:40:40.0621 0x2040  agp440 - ok
21:40:40.0655 0x2040  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\windows\System32\alg.exe
21:40:40.0657 0x2040  ALG - ok
21:40:40.0704 0x2040  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\windows\system32\drivers\aliide.sys
21:40:40.0706 0x2040  aliide - ok
21:40:40.0739 0x2040  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\windows\system32\drivers\amdide.sys
21:40:40.0740 0x2040  amdide - ok
21:40:40.0843 0x2040  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\windows\system32\drivers\amdk8.sys
21:40:40.0857 0x2040  AmdK8 - ok
21:40:40.0878 0x2040  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\windows\system32\drivers\amdppm.sys
21:40:40.0880 0x2040  AmdPPM - ok
21:40:40.0927 0x2040  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\windows\system32\drivers\amdsata.sys
21:40:40.0930 0x2040  amdsata - ok
21:40:40.0961 0x2040  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\windows\system32\drivers\amdsbs.sys
21:40:40.0967 0x2040  amdsbs - ok
21:40:40.0981 0x2040  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\windows\system32\drivers\amdxata.sys
21:40:40.0982 0x2040  amdxata - ok
21:40:41.0072 0x2040  [ 89A69C3F2F319B43379399547526D952, 8ABDB4B8E106F96EBBA0D4D04C4F432296516E107E7BA5644ED2E50CF9BB491A ] AppID           C:\windows\system32\drivers\appid.sys
21:40:41.0074 0x2040  AppID - ok
21:40:41.0106 0x2040  [ 0BC381A15355A3982216F7172F545DE1, C33AF13CB218F7BF52E967452573DF2ADD20A95C6BF99229794FEF07C4BBE725 ] AppIDSvc        C:\windows\System32\appidsvc.dll
21:40:41.0107 0x2040  AppIDSvc - ok
21:40:41.0167 0x2040  [ 9D2A2369AB4B08A4905FE72DB104498F, D6FA1705018BABABFA2362E05691A0D6408D14DE7B76129B16D0A1DAD6378E58 ] Appinfo         C:\windows\System32\appinfo.dll
21:40:41.0169 0x2040  Appinfo - ok
21:40:41.0304 0x2040  [ 30E3850F303EAE5C364782EA78579CC9, 8C94E5A9052F6E794685194EEACB31A174A947D60246908B6A0DEFA081A747A3 ] Apple Mobile Device C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
21:40:41.0306 0x2040  Apple Mobile Device - ok
21:40:41.0348 0x2040  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\windows\system32\drivers\arc.sys
21:40:41.0352 0x2040  arc - ok
21:40:41.0388 0x2040  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\windows\system32\drivers\arcsas.sys
21:40:41.0391 0x2040  arcsas - ok
21:40:41.0575 0x2040  [ 9A262EDD17F8473B91B333D6B031A901, 05DFBD3A7D83FDE1D062EA719ACA9EC48CB7FD42D17DDD88B82E5D25469ADD23 ] aspnet_state    C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
21:40:41.0576 0x2040  aspnet_state - ok
21:40:41.0622 0x2040  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\windows\system32\DRIVERS\asyncmac.sys
21:40:41.0624 0x2040  AsyncMac - ok
21:40:41.0661 0x2040  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\windows\system32\drivers\atapi.sys
21:40:41.0662 0x2040  atapi - ok
21:40:41.0783 0x2040  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioEndpointBuilder C:\windows\System32\Audiosrv.dll
21:40:41.0796 0x2040  AudioEndpointBuilder - ok
21:40:41.0813 0x2040  [ F23FEF6D569FCE88671949894A8BECF1, FCE7B156ED663471CF9A736915F00302E93B50FC647563D235313A37FCE8F0F6 ] AudioSrv        C:\windows\System32\Audiosrv.dll
21:40:41.0826 0x2040  AudioSrv - ok
21:40:41.0862 0x2040  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\windows\System32\AxInstSV.dll
21:40:41.0864 0x2040  AxInstSV - ok
21:40:41.0965 0x2040  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\windows\system32\drivers\bxvbda.sys
21:40:41.0976 0x2040  b06bdrv - ok
21:40:42.0008 0x2040  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\windows\system32\DRIVERS\b57nd60a.sys
21:40:42.0015 0x2040  b57nd60a - ok
21:40:42.0092 0x2040  [ F8FE7E12F8151E0A17C23CF840599F9A, 5D1AA3A5DAC08B521A7BE775F32434AFF1F5F19B69CD16D2D94B0D399E61C371 ] bcbtums         C:\windows\system32\drivers\bcbtums.sys
21:40:42.0096 0x2040  bcbtums - ok
21:40:42.0236 0x2040  [ 43AD3D3E7674833FCA9A7C4E7180AD54, 81CBF3146853FCCA26C14D23160892BD892269C5BB8B2167837339372BD38DA2 ] BCM43XX         C:\windows\system32\DRIVERS\bcmwl664.sys
21:40:42.0330 0x2040  BCM43XX - ok
21:40:42.0541 0x2040  [ ACB44407FF63C3A5A22AB5782F209604, 86BE221F07EB49D2149710CCCE4F0C24677560FEFD41F093C6D2BA0C962CF5C3 ] BcmBtRSupport   C:\windows\system32\BtwRSupportService.exe
21:40:42.0588 0x2040  BcmBtRSupport - ok
21:40:42.0633 0x2040  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\windows\System32\bdesvc.dll
21:40:42.0636 0x2040  BDESVC - ok
21:40:42.0685 0x2040  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\windows\system32\drivers\Beep.sys
21:40:42.0686 0x2040  Beep - ok
21:40:42.0744 0x2040  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\windows\System32\bfe.dll
21:40:42.0756 0x2040  BFE - ok
21:40:42.0836 0x2040  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\windows\System32\qmgr.dll
21:40:42.0851 0x2040  BITS - ok
21:40:42.0876 0x2040  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\windows\system32\DRIVERS\blbdrive.sys
21:40:42.0878 0x2040  blbdrive - ok
21:40:42.0909 0x2040  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\windows\system32\DRIVERS\bowser.sys
21:40:42.0911 0x2040  bowser - ok
21:40:42.0948 0x2040  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\windows\system32\drivers\BrFiltLo.sys
21:40:42.0950 0x2040  BrFiltLo - ok
21:40:42.0953 0x2040  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\windows\system32\drivers\BrFiltUp.sys
21:40:42.0954 0x2040  BrFiltUp - ok
21:40:43.0045 0x2040  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\windows\System32\browser.dll
21:40:43.0048 0x2040  Browser - ok
21:40:43.0071 0x2040  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\windows\System32\Drivers\Brserid.sys
21:40:43.0081 0x2040  Brserid - ok
21:40:43.0085 0x2040  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\windows\System32\Drivers\BrSerWdm.sys
21:40:43.0087 0x2040  BrSerWdm - ok
21:40:43.0090 0x2040  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\windows\System32\Drivers\BrUsbMdm.sys
21:40:43.0092 0x2040  BrUsbMdm - ok
21:40:43.0109 0x2040  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\windows\System32\Drivers\BrUsbSer.sys
21:40:43.0110 0x2040  BrUsbSer - ok
21:40:43.0160 0x2040  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\windows\system32\drivers\BthEnum.sys
21:40:43.0161 0x2040  BthEnum - ok
21:40:43.0178 0x2040  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\windows\system32\DRIVERS\bthmodem.sys
21:40:43.0179 0x2040  BTHMODEM - ok
21:40:43.0259 0x2040  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\windows\system32\DRIVERS\bthpan.sys
21:40:43.0262 0x2040  BthPan - ok
21:40:43.0305 0x2040  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\windows\system32\Drivers\BTHport.sys
21:40:43.0315 0x2040  BTHPORT - ok
21:40:43.0348 0x2040  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\windows\system32\bthserv.dll
21:40:43.0351 0x2040  bthserv - ok
21:40:43.0380 0x2040  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\windows\system32\Drivers\BTHUSB.sys
21:40:43.0382 0x2040  BTHUSB - ok
21:40:43.0474 0x2040  [ BC279FCEE9FC8CBF991D5DE539771AA9, 5DE007672BFBFA78C44CC08251F495420402AFF4AD01541AA84AD37BD4A58190 ] BTWAMPFL        C:\windows\system32\DRIVERS\btwampfl.sys
21:40:43.0478 0x2040  BTWAMPFL - ok
21:40:43.0548 0x2040  [ F6135859A582A7294BA7A3336E08BAA1, DE30457F91C25950C2713CE3A2AE1F1EFFBB068DD3B0BCC87700E7CBAF73C818 ] btwaudio        C:\windows\system32\drivers\btwaudio.sys
21:40:43.0551 0x2040  btwaudio - ok
21:40:43.0599 0x2040  [ 3DEF2370E414B4E299673558BA171A51, 5A0923D9F941ABD34EC9BEE0EB62A62F135CBF128061239CC6EA0E6752791636 ] btwavdt         C:\windows\system32\DRIVERS\btwavdt.sys
21:40:43.0602 0x2040  btwavdt - ok
21:40:43.0759 0x2040  [ F0AF04A96CA48B869284B5DC4CDB8CBB, 0C2CB95061FB4673307D7700842BB0A92F7587FA054D8CDD8373053BC211B2D3 ] btwdins         C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
21:40:43.0776 0x2040  btwdins - ok
21:40:43.0819 0x2040  [ 07096D2BC22CCB6CEA5A532DF0BE8A75, A9B7F2EFFDF1E4EC0A5DC098F0ED2BE44E271844A4F1CBAD2FA1655DE1E03F6E ] btwl2cap        C:\windows\system32\DRIVERS\btwl2cap.sys
21:40:43.0820 0x2040  btwl2cap - ok
21:40:43.0846 0x2040  [ 9937E0E4DFC0030560A6DFE9D3A94B39, 0B9CF1932D4534BD7B1F5D7B7BD5FBF9C8D156838D24ABBDE475E79EEF1150F1 ] btwrchid        C:\windows\system32\DRIVERS\btwrchid.sys
21:40:43.0848 0x2040  btwrchid - ok
21:40:43.0925 0x2040  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\windows\system32\DRIVERS\cdfs.sys
21:40:43.0928 0x2040  cdfs - ok
21:40:43.0986 0x2040  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\windows\system32\DRIVERS\cdrom.sys
21:40:43.0989 0x2040  cdrom - ok
21:40:44.0042 0x2040  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\windows\System32\certprop.dll
21:40:44.0045 0x2040  CertPropSvc - ok
21:40:44.0211 0x2040  [ C3EF5F5F169165C01DF8DB9F884D3F1C, E192E46FDC8C15D3AD48B191A99EDFA6B6053384EF9DB76FDE4C1150911A05E8 ] cfwids          C:\windows\system32\drivers\cfwids.sys
21:40:44.0213 0x2040  cfwids - ok
21:40:44.0258 0x2040  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\windows\system32\drivers\circlass.sys
21:40:44.0260 0x2040  circlass - ok
21:40:44.0304 0x2040  [ FE1EC06F2253F691FE36217C592A0206, B9F122DB5E665ECDF29A5CB8BB6B531236F31A54A95769D6C5C1924C87FE70CE ] CLFS            C:\windows\system32\CLFS.sys
21:40:44.0311 0x2040  CLFS - ok
21:40:44.0461 0x2040  [ 524DC3807CB1746225F9D26ADD19C319, DC23392E8C542B02860BA1F57F03AD08A58B256D155CC6B81A48691A79D3A3F6 ] CLKMSVC10_38F51D56 C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\kmsvc.exe
21:40:44.0466 0x2040  CLKMSVC10_38F51D56 - ok
21:40:44.0531 0x2040  [ D88040F816FDA31C3B466F0FA0918F29, 39D3630E623DA25B8444B6D3AAAB16B98E7E289C5619E19A85D47B74C71449F3 ] clr_optimization_v2.0.50727_32 C:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
21:40:44.0533 0x2040  clr_optimization_v2.0.50727_32 - ok
21:40:44.0569 0x2040  [ D1CEEA2B47CB998321C579651CE3E4F8, 654013B8FD229A50017B08DEC6CA19C7DDA8CE0771260E057A92625201D539B1 ] clr_optimization_v2.0.50727_64 C:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
21:40:44.0571 0x2040  clr_optimization_v2.0.50727_64 - ok
21:40:44.0685 0x2040  [ E87213F37A13E2B54391E40934F071D0, 7EB221127EFB5BF158FB03D18EFDA2C55FB6CE3D1A1FE69C01D70DBED02C87E5 ] clr_optimization_v4.0.30319_32 C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
21:40:44.0688 0x2040  clr_optimization_v4.0.30319_32 - ok
21:40:44.0712 0x2040  [ 4AEDAB50F83580D0B4D6CF78191F92AA, D113C47013B018B45161911B96E93AF96A2F3B34FA47061BF6E7A71FBA03194A ] clr_optimization_v4.0.30319_64 C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
21:40:44.0715 0x2040  clr_optimization_v4.0.30319_64 - ok
21:40:44.0751 0x2040  [ 50F92C943F18B070F166D019DFAB3D9A, A997EAFFC1598B1D0A9E1A4475F25418CA8AA6B703B53A71B1AF028E247C9950 ] clwvd           C:\windows\system32\DRIVERS\clwvd.sys
21:40:44.0753 0x2040  clwvd - ok
21:40:44.0777 0x2040  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\windows\system32\DRIVERS\CmBatt.sys
21:40:44.0778 0x2040  CmBatt - ok
21:40:44.0812 0x2040  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\windows\system32\drivers\cmdide.sys
21:40:44.0813 0x2040  cmdide - ok
21:40:44.0917 0x2040  [ EBF28856F69CF094A902F884CF989706, AD6C9F0BC20AA49EEE5478DA0F856F0EA2B414B63208C5FFB03C9D7F5B59765F ] CNG             C:\windows\system32\Drivers\cng.sys
21:40:44.0928 0x2040  CNG - ok
21:40:44.0994 0x2040  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\windows\system32\DRIVERS\compbatt.sys
21:40:44.0995 0x2040  Compbatt - ok
21:40:45.0010 0x2040  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\windows\system32\DRIVERS\CompositeBus.sys
21:40:45.0011 0x2040  CompositeBus - ok
21:40:45.0020 0x2040  COMSysApp - ok
21:40:45.0035 0x2040  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\windows\system32\drivers\crcdisk.sys
21:40:45.0037 0x2040  crcdisk - ok
21:40:45.0146 0x2040  [ 6B400F211BEE880A37A1ED0368776BF4, 2F27C6FA96A1C8CBDA467846DA57E63949A7EA37DB094B13397DDD30114295BD ] CryptSvc        C:\windows\system32\cryptsvc.dll
21:40:45.0152 0x2040  CryptSvc - ok
21:40:45.0215 0x2040  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\windows\system32\rpcss.dll
21:40:45.0226 0x2040  DcomLaunch - ok
21:40:45.0324 0x2040  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\windows\System32\defragsvc.dll
21:40:45.0329 0x2040  defragsvc - ok
21:40:45.0371 0x2040  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\windows\system32\Drivers\dfsc.sys
21:40:45.0373 0x2040  DfsC - ok
21:40:45.0414 0x2040  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\windows\system32\dhcpcore.dll
21:40:45.0422 0x2040  Dhcp - ok
21:40:45.0434 0x2040  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\windows\system32\drivers\discache.sys
21:40:45.0435 0x2040  discache - ok
21:40:45.0523 0x2040  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\windows\system32\drivers\disk.sys
21:40:45.0525 0x2040  Disk - ok
21:40:45.0567 0x2040  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\windows\System32\dnsrslvr.dll
21:40:45.0574 0x2040  Dnscache - ok
21:40:45.0606 0x2040  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\windows\System32\dot3svc.dll
21:40:45.0611 0x2040  dot3svc - ok
21:40:45.0625 0x2040  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\windows\system32\dps.dll
21:40:45.0628 0x2040  DPS - ok
21:40:45.0704 0x2040  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\windows\system32\drivers\drmkaud.sys
21:40:45.0705 0x2040  drmkaud - ok
21:40:45.0760 0x2040  [ 88612F1CE3BF42256913BF6E61C70D52, 7CF190F83FA8F15C33008EB381D3E345CEF37CBC046227DED26B36799EF4D9A7 ] DXGKrnl         C:\windows\System32\drivers\dxgkrnl.sys
21:40:45.0777 0x2040  DXGKrnl - ok
21:40:45.0824 0x2040  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\windows\System32\eapsvc.dll
21:40:45.0827 0x2040  EapHost - ok
21:40:45.0935 0x2040  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\windows\system32\drivers\evbda.sys
21:40:46.0004 0x2040  ebdrv - ok
21:40:46.0060 0x2040  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] EFS             C:\windows\System32\lsass.exe
21:40:46.0061 0x2040  EFS - ok
21:40:46.0160 0x2040  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\windows\ehome\ehRecvr.exe
21:40:46.0172 0x2040  ehRecvr - ok
21:40:46.0190 0x2040  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\windows\ehome\ehsched.exe
21:40:46.0193 0x2040  ehSched - ok
21:40:46.0257 0x2040  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\windows\system32\drivers\elxstor.sys
21:40:46.0269 0x2040  elxstor - ok
21:40:46.0316 0x2040  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\windows\system32\drivers\errdev.sys
21:40:46.0317 0x2040  ErrDev - ok
21:40:46.0368 0x2040  [ 9D8739A2A2173C9D27C499A3FC6EDA3F, DB25F566A071FE935996CF6C63E1CDFB85162A92E9D3D5695A56900D54C83C76 ] ETD             C:\windows\system32\DRIVERS\ETD.sys
21:40:46.0371 0x2040  ETD - ok
21:40:46.0427 0x2040  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\windows\system32\es.dll
21:40:46.0435 0x2040  EventSystem - ok
21:40:46.0486 0x2040  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\windows\system32\drivers\exfat.sys
21:40:46.0492 0x2040  exfat - ok
21:40:46.0498 0x2040  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\windows\system32\drivers\fastfat.sys
21:40:46.0504 0x2040  fastfat - ok
21:40:46.0556 0x2040  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\windows\system32\fxssvc.exe
21:40:46.0569 0x2040  Fax - ok
21:40:46.0642 0x2040  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\windows\system32\drivers\fdc.sys
21:40:46.0644 0x2040  fdc - ok
21:40:46.0675 0x2040  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\windows\system32\fdPHost.dll
21:40:46.0676 0x2040  fdPHost - ok
21:40:46.0689 0x2040  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\windows\system32\fdrespub.dll
21:40:46.0690 0x2040  FDResPub - ok
21:40:46.0701 0x2040  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\windows\system32\drivers\fileinfo.sys
21:40:46.0703 0x2040  FileInfo - ok
21:40:46.0725 0x2040  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\windows\system32\drivers\filetrace.sys
21:40:46.0727 0x2040  Filetrace - ok
21:40:46.0746 0x2040  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\windows\system32\drivers\flpydisk.sys
21:40:46.0747 0x2040  flpydisk - ok
21:40:46.0770 0x2040  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\windows\system32\drivers\fltmgr.sys
21:40:46.0776 0x2040  FltMgr - ok
21:40:46.0856 0x2040  [ C4C183E6551084039EC862DA1C945E3D, 0874A2ACDD24D64965AA9A76E9C818E216880AE4C9A2E07ED932EE404585CEE6 ] FontCache       C:\windows\system32\FntCache.dll
21:40:46.0877 0x2040  FontCache - ok
21:40:46.0958 0x2040  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
21:40:46.0960 0x2040  FontCache3.0.0.0 - ok
21:40:46.0976 0x2040  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\windows\system32\drivers\FsDepends.sys
21:40:46.0977 0x2040  FsDepends - ok
21:40:47.0006 0x2040  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\windows\system32\drivers\Fs_Rec.sys
21:40:47.0007 0x2040  Fs_Rec - ok
21:40:47.0107 0x2040  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\windows\system32\DRIVERS\fvevol.sys
21:40:47.0112 0x2040  fvevol - ok
21:40:47.0149 0x2040  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\windows\system32\drivers\gagp30kx.sys
21:40:47.0151 0x2040  gagp30kx - ok
21:40:47.0272 0x2040  [ 521A469CAF61F00E1DE081CC2099C1D6, 5BF39C9797A28674203D5C3D5D942978B9C66F658A43D7696B4BE3E8A7880EB9 ] GameConsoleService C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
21:40:47.0277 0x2040  GameConsoleService - ok
21:40:47.0364 0x2040  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\windows\System32\gpsvc.dll
21:40:47.0383 0x2040  gpsvc - ok
21:40:47.0417 0x2040  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\windows\system32\drivers\hcw85cir.sys
21:40:47.0419 0x2040  hcw85cir - ok
21:40:47.0455 0x2040  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\windows\system32\drivers\HdAudio.sys
21:40:47.0463 0x2040  HdAudAddService - ok
21:40:47.0483 0x2040  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\windows\system32\DRIVERS\HDAudBus.sys
21:40:47.0485 0x2040  HDAudBus - ok
21:40:47.0503 0x2040  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\windows\system32\drivers\HidBatt.sys
21:40:47.0505 0x2040  HidBatt - ok
21:40:47.0510 0x2040  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\windows\system32\drivers\hidbth.sys
21:40:47.0513 0x2040  HidBth - ok
21:40:47.0529 0x2040  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\windows\system32\drivers\hidir.sys
21:40:47.0531 0x2040  HidIr - ok
21:40:47.0558 0x2040  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\windows\system32\hidserv.dll
21:40:47.0561 0x2040  hidserv - ok
21:40:47.0654 0x2040  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\windows\system32\DRIVERS\hidusb.sys
21:40:47.0655 0x2040  HidUsb - ok
21:40:47.0823 0x2040  [ 29F981739E50305128022CBE10B3659C, 25060937145B0DCA8CD088E78993BFEF1430CDDFF433E606AFC93993CBBF4B3E ] HipShieldK      C:\windows\system32\drivers\HipShieldK.sys
21:40:47.0827 0x2040  HipShieldK - ok
21:40:47.0854 0x2040  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\windows\system32\kmsvc.dll
21:40:47.0857 0x2040  hkmsvc - ok
21:40:47.0875 0x2040  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\windows\system32\ListSvc.dll
21:40:47.0880 0x2040  HomeGroupListener - ok
21:40:47.0914 0x2040  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\windows\system32\provsvc.dll
21:40:47.0921 0x2040  HomeGroupProvider - ok
21:40:48.0102 0x2040  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] HomeNetSvc      C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
21:40:48.0109 0x2040  HomeNetSvc - ok
21:40:48.0161 0x2040  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\windows\system32\drivers\HpSAMD.sys
21:40:48.0164 0x2040  HpSAMD - ok
21:40:48.0202 0x2040  [ 0EA7DE1ACB728DD5A369FD742D6EEE28, 21C489412EB33A12B22290EB701C19BA57006E8702E76F730954F0784DDE9779 ] HTTP            C:\windows\system32\drivers\HTTP.sys
21:40:48.0215 0x2040  HTTP - ok
21:40:48.0231 0x2040  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\windows\system32\drivers\hwpolicy.sys
21:40:48.0232 0x2040  hwpolicy - ok
21:40:48.0273 0x2040  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\windows\system32\DRIVERS\i8042prt.sys
21:40:48.0275 0x2040  i8042prt - ok
21:40:48.0469 0x2040  [ 53CC5BF8B5A219119953C7ABB19A7705, F342A9732978D893729EA2591CB72E5F5BD1B3E6C9E4DBFFE54EC866E534A8C0 ] iaStor          C:\windows\system32\DRIVERS\iaStor.sys
21:40:48.0477 0x2040  iaStor - ok
21:40:48.0518 0x2040  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\windows\system32\drivers\iaStorV.sys
21:40:48.0529 0x2040  iaStorV - ok
21:40:48.0682 0x2040  [ 5988FC40F8DB5B0739CD1E3A5D0D78BD, 2B9512324DBA4A97F6AC34E8067EE08E3B6874CD60F6CB4209AFC22A34D2BE99 ] idsvc           C:\windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
21:40:48.0697 0x2040  idsvc - ok
21:40:49.0098 0x2040  [ 0AC9E321D604BE48A0D72B69BA484BDC, CAB41D696F86105ABC660DB66EFC602E81F725B809E821DE48912F2452EA8BEC ] igfx            C:\windows\system32\DRIVERS\igdkmd64.sys
21:40:49.0298 0x2040  igfx - ok
21:40:49.0362 0x2040  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\windows\system32\drivers\iirsp.sys
21:40:49.0364 0x2040  iirsp - ok
21:40:49.0412 0x2040  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\windows\System32\ikeext.dll
21:40:49.0428 0x2040  IKEEXT - ok
21:40:49.0526 0x2040  [ 65F70696BE5ABC11634FCF96AF7D7896, A1950B4A64B25E8F8FA3F905B61B8EE9FE448B8403D9A3632A7214F90276D17A ] IntcAzAudAddService C:\windows\system32\drivers\RTKVHD64.sys
21:40:49.0575 0x2040  IntcAzAudAddService - ok
21:40:49.0637 0x2040  [ FC727061C0F47C8059E88E05D5C8E381, C7A3782F5D86C7FDE57AA1F2EE81638C5FC3072ACC6E572BA2EC7B3CFF389800 ] IntcDAud        C:\windows\system32\DRIVERS\IntcDAud.sys
21:40:49.0643 0x2040  IntcDAud - ok
21:40:49.0710 0x2040  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\windows\system32\drivers\intelide.sys
21:40:49.0712 0x2040  intelide - ok
21:40:49.0747 0x2040  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\windows\system32\DRIVERS\intelppm.sys
21:40:49.0749 0x2040  intelppm - ok
21:40:49.0784 0x2040  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\windows\system32\ipbusenum.dll
21:40:49.0787 0x2040  IPBusEnum - ok
21:40:49.0807 0x2040  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\windows\system32\DRIVERS\ipfltdrv.sys
21:40:49.0810 0x2040  IpFilterDriver - ok
21:40:49.0898 0x2040  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\windows\System32\iphlpsvc.dll
21:40:49.0909 0x2040  iphlpsvc - ok
21:40:49.0913 0x2040  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\windows\system32\drivers\IPMIDrv.sys
21:40:49.0916 0x2040  IPMIDRV - ok
21:40:49.0931 0x2040  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\windows\system32\drivers\ipnat.sys
21:40:49.0935 0x2040  IPNAT - ok
21:40:49.0944 0x2040  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\windows\system32\drivers\irenum.sys
21:40:49.0945 0x2040  IRENUM - ok
21:40:49.0964 0x2040  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\windows\system32\drivers\isapnp.sys
21:40:49.0965 0x2040  isapnp - ok
21:40:49.0986 0x2040  [ D931D7309DEB2317035B07C9F9E6B0BD, 13AD84172ED8C6153F8A98499C01733B74E48464CE07D099508E38D409913ED3 ] iScsiPrt        C:\windows\system32\drivers\msiscsi.sys
21:40:50.0054 0x2040  iScsiPrt - ok
21:40:50.0073 0x2040  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\windows\system32\DRIVERS\kbdclass.sys
21:40:50.0075 0x2040  kbdclass - ok
21:40:50.0111 0x2040  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\windows\system32\drivers\kbdhid.sys
21:40:50.0113 0x2040  kbdhid - ok
21:40:50.0141 0x2040  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] KeyIso          C:\windows\system32\lsass.exe
21:40:50.0143 0x2040  KeyIso - ok
21:40:50.0246 0x2040  [ 8F489706472F7E9A06BAAA198703FA64, F020406690FB38EABD82D63B91D33039CC93ED52A5497AE12BAF475F22D0B08A ] KSecDD          C:\windows\system32\Drivers\ksecdd.sys
21:40:50.0260 0x2040  KSecDD - ok
21:40:50.0280 0x2040  [ 868A2CAAB12EFC7A021682BCA0EEC54C, 12C4925B5B3D6EA7B6410C01F33158C6EAB50CBD6AF445F8B04ED9899720C2DD ] KSecPkg         C:\windows\system32\Drivers\ksecpkg.sys
21:40:50.0284 0x2040  KSecPkg - ok
21:40:50.0301 0x2040  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\windows\system32\drivers\ksthunk.sys
21:40:50.0303 0x2040  ksthunk - ok
21:40:50.0449 0x2040  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\windows\system32\msdtckrm.dll
21:40:50.0458 0x2040  KtmRm - ok
21:40:50.0494 0x2040  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\windows\system32\srvsvc.dll
21:40:50.0500 0x2040  LanmanServer - ok
21:40:50.0531 0x2040  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\windows\System32\wkssvc.dll
21:40:50.0535 0x2040  LanmanWorkstation - ok
21:40:50.0557 0x2040  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\windows\system32\DRIVERS\lltdio.sys
21:40:50.0559 0x2040  lltdio - ok
21:40:50.0641 0x2040  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\windows\System32\lltdsvc.dll
21:40:50.0649 0x2040  lltdsvc - ok
21:40:50.0661 0x2040  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\windows\System32\lmhsvc.dll
21:40:50.0663 0x2040  lmhosts - ok
21:40:50.0752 0x2040  [ 926EBA26A8B49D1597751CED06B50862, 886FC610E379BD77146ADDC376D77437D88B593C7F1C3FEE2B93D934A67310F8 ] LMS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
21:40:50.0758 0x2040  LMS - ok
21:40:50.0841 0x2040  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\windows\system32\drivers\lsi_fc.sys
21:40:50.0844 0x2040  LSI_FC - ok
21:40:50.0871 0x2040  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\windows\system32\drivers\lsi_sas.sys
21:40:50.0874 0x2040  LSI_SAS - ok
21:40:50.0893 0x2040  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\windows\system32\drivers\lsi_sas2.sys
21:40:50.0896 0x2040  LSI_SAS2 - ok
21:40:50.0917 0x2040  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\windows\system32\drivers\lsi_scsi.sys
21:40:50.0920 0x2040  LSI_SCSI - ok
21:40:50.0941 0x2040  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\windows\system32\drivers\luafv.sys
21:40:50.0944 0x2040  luafv - ok
21:40:51.0031 0x2040  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McAfee SiteAdvisor Service C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
21:40:51.0036 0x2040  McAfee SiteAdvisor Service - ok
21:40:51.0217 0x2040  [ 20D553F3AAFCECE3A2D0F8E3A2EFD4FC, 15318A09BDF71BC218190C59F46ABFF50E85B4FCC079BA4FCBC256ACD2B4BB37 ] McAPExe         C:\Program Files\McAfee\MSC\McAPExe.exe
21:40:51.0221 0x2040  McAPExe - ok
21:40:51.0255 0x2040  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McMPFSvc        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
21:40:51.0261 0x2040  McMPFSvc - ok
21:40:51.0290 0x2040  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McNaiAnn        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
21:40:51.0296 0x2040  McNaiAnn - ok
21:40:51.0467 0x2040  [ 63D93A440E7AC015D85B9A3DA0C1BBAF, 849A13E91B041DEC2A47F5BE65ADBA6CAC8AF01675D0D8E13730724B54B4DD15 ] McODS           C:\Program Files\McAfee\VirusScan\mcods.exe
21:40:51.0478 0x2040  McODS - ok
21:40:51.0520 0x2040  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] mcpltsvc        C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
21:40:51.0527 0x2040  mcpltsvc - ok
21:40:51.0556 0x2040  [ FB11715EEB23D0999C2295177EBBA5C0, 533754A3591B5852253C793CE08ADA6CAD0545E3A11F42430EFA9D959B6BF4F7 ] McProxy         C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe
21:40:51.0563 0x2040  McProxy - ok
21:40:51.0596 0x2040  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\windows\system32\Mcx2Svc.dll
21:40:51.0598 0x2040  Mcx2Svc - ok
21:40:51.0681 0x2040  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\windows\system32\drivers\megasas.sys
21:40:51.0683 0x2040  megasas - ok
21:40:51.0713 0x2040  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\windows\system32\drivers\MegaSR.sys
21:40:51.0719 0x2040  MegaSR - ok
21:40:51.0763 0x2040  [ A6518DCC42F7A6E999BB3BEA8FD87567, 8A9AE992F93F37E0723761EA271A7E1AA8172702C471041A17324474FC96B9BC ] MEIx64          C:\windows\system32\DRIVERS\HECIx64.sys
21:40:51.0764 0x2040  MEIx64 - ok
21:40:51.0795 0x2040  [ 895040402C88062B6E1F722AF01A1667, 51686E1F4FCBCD8377DE5C9A233837C76B32A64739044D715D313E598E6B68F5 ] mfeapfk         C:\windows\system32\drivers\mfeapfk.sys
21:40:51.0799 0x2040  mfeapfk - ok
21:40:51.0889 0x2040  [ B796F6230CF956FC95C6766BF845B3F3, 4EBE28AA2B767450C49871A136197110C7203B9882CD574B27E8B3F98B2D6334 ] mfeavfk         C:\windows\system32\drivers\mfeavfk.sys
21:40:51.0895 0x2040  mfeavfk - ok
21:40:51.0973 0x2040  [ DE0FD24C4BAA2B280B59392C394C6599, 60E21CB2B9E19B9B874E4835F13E0D874DAD5BD492E8E39E1EC3D1FD2268CAD4 ] mfecore         C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe
21:40:51.0991 0x2040  mfecore - ok
21:40:52.0090 0x2040  [ 41C6D39FCBF849D69E73626B369763AC, 806F689C7F860438011D065A181D5331996FA94B797D56EFE708D6B3E754BB62 ] mfefire         C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe
21:40:52.0094 0x2040  mfefire - ok
21:40:52.0189 0x2040  [ 017664D9DC24B62C368E568011BD2D0A, 2A03C9B4C283D54488C503C402CA058A05B102986AD9304483D027B3AC9ECD27 ] mfefirek        C:\windows\system32\drivers\mfefirek.sys
21:40:52.0198 0x2040  mfefirek - ok
21:40:52.0261 0x2040  [ 238CBB4E02CD1B20A12A683F7AB5AF05, 8B6B67E35966E02CD8EF947E8FFB16D182F97D599A4A2A01CF49FEA34180DD23 ] mfehidk         C:\windows\system32\drivers\mfehidk.sys
21:40:52.0279 0x2040  mfehidk - ok
21:40:52.0373 0x2040  [ FDB02B0C2865DBDE9571D57D3ABC6A6B, 9AC814E8FEB1F928582B1AA76DD41B78981C9D211D8DB9F555AD5B334B14E11D ] mfencbdc        C:\windows\system32\DRIVERS\mfencbdc.sys
21:40:52.0381 0x2040  mfencbdc - ok
21:40:52.0403 0x2040  [ C3EE053D6A0CCD75C07FADC73D7BA4E4, 81F2F6716B86B2FE673F1C1252101F5E7AD4BE4258F8086C2F9F848E0B59EAF2 ] mfencrk         C:\windows\system32\DRIVERS\mfencrk.sys
21:40:52.0406 0x2040  mfencrk - ok
21:40:52.0479 0x2040  [ 1992C9EFA684A23E8047D9ADCA150E9E, 3F839BB3DFAB0B5AF2EBB576D1C4F235F155A23845AA0B3CAF9DD84F2D75B37F ] mfevtp          C:\windows\system32\mfevtps.exe
21:40:52.0483 0x2040  mfevtp - ok
21:40:52.0585 0x2040  [ 1477459C6A9BDE33474B45A32B92D59B, B6198F9F8E1A7A1EC3DD7865C4D0C3F61579A8DE5BFF19A30751932E2A053B55 ] mfewfpk         C:\windows\system32\drivers\mfewfpk.sys
21:40:52.0593 0x2040  mfewfpk - ok
21:40:52.0647 0x2040  Microsoft SharePoint Workspace Audit Service - ok
21:40:52.0698 0x2040  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\windows\system32\mmcss.dll
21:40:52.0701 0x2040  MMCSS - ok
21:40:52.0801 0x2040  [ 2397380B022384294A3D1E625DE98AF7, 5C9FDE706D6296ED49C904169A4FCD1AAFE0E8174EBC21FD868924E4D7AE6DBA ] Mo3Fltr         C:\windows\system32\drivers\Mo3Fltr.sys
21:40:52.0802 0x2040  Mo3Fltr - ok
21:40:52.0820 0x2040  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\windows\system32\drivers\modem.sys
21:40:52.0822 0x2040  Modem - ok
21:40:52.0864 0x2040  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\windows\system32\DRIVERS\monitor.sys
21:40:52.0865 0x2040  monitor - ok
21:40:52.0898 0x2040  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\windows\system32\DRIVERS\mouclass.sys
21:40:52.0900 0x2040  mouclass - ok
21:40:52.0925 0x2040  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\windows\system32\DRIVERS\mouhid.sys
21:40:52.0927 0x2040  mouhid - ok
21:40:52.0955 0x2040  [ 32E7A3D591D671A6DF2DB515A5CBE0FA, 47CED0B9067AE8BF5EEF60B17ADEE5906BEDCC56E4CB460B7BFBC12BB9A69E63 ] mountmgr        C:\windows\system32\drivers\mountmgr.sys
21:40:52.0957 0x2040  mountmgr - ok
21:40:52.0988 0x2040  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\windows\system32\drivers\mpio.sys
21:40:52.0994 0x2040  mpio - ok
21:40:53.0069 0x2040  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\windows\system32\drivers\mpsdrv.sys
21:40:53.0072 0x2040  mpsdrv - ok
21:40:53.0127 0x2040  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\windows\system32\mpssvc.dll
21:40:53.0142 0x2040  MpsSvc - ok
21:40:53.0173 0x2040  [ 1A4F75E63C9FB84B85DFFC6B63FD5404, 01AFA6DBB4CDE55FE4EA05BBE8F753A4266F8D072EA1EE01DB79F5126780C21F ] MRxDAV          C:\windows\system32\drivers\mrxdav.sys
21:40:53.0177 0x2040  MRxDAV - ok
21:40:53.0221 0x2040  [ A5D9106A73DC88564C825D317CAC68AC, 0457B2AEA4E05A91D0E43F317894A614434D8CEBE35020785387F307E231FBE4 ] mrxsmb          C:\windows\system32\DRIVERS\mrxsmb.sys
21:40:53.0224 0x2040  mrxsmb - ok
21:40:53.0282 0x2040  [ D711B3C1D5F42C0C2415687BE09FC163, 9B3013AC60BD2D0FF52086658BA5FF486ADE15954A552D7DD590580E8BAE3EFF ] mrxsmb10        C:\windows\system32\DRIVERS\mrxsmb10.sys
21:40:53.0288 0x2040  mrxsmb10 - ok
21:40:53.0314 0x2040  [ 9423E9D355C8D303E76B8CFBD8A5C30C, 220B33F120C2DD937FE4D5664F4B581DC0ACF78D62EB56B7720888F67B9644CC ] mrxsmb20        C:\windows\system32\DRIVERS\mrxsmb20.sys
21:40:53.0317 0x2040  mrxsmb20 - ok
21:40:53.0423 0x2040  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\windows\system32\drivers\msahci.sys
21:40:53.0424 0x2040  msahci - ok
21:40:53.0455 0x2040  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\windows\system32\drivers\msdsm.sys
21:40:53.0459 0x2040  msdsm - ok
21:40:53.0493 0x2040  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\windows\System32\msdtc.exe
21:40:53.0498 0x2040  MSDTC - ok
21:40:53.0532 0x2040  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\windows\system32\drivers\Msfs.sys
21:40:53.0533 0x2040  Msfs - ok
21:40:53.0561 0x2040  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\windows\System32\drivers\mshidkmdf.sys
21:40:53.0562 0x2040  mshidkmdf - ok
21:40:53.0637 0x2040  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\windows\system32\drivers\msisadrv.sys
21:40:53.0638 0x2040  msisadrv - ok
21:40:53.0673 0x2040  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\windows\system32\iscsiexe.dll
21:40:53.0676 0x2040  MSiSCSI - ok
21:40:53.0679 0x2040  msiserver - ok
21:40:53.0722 0x2040  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\windows\system32\drivers\MSKSSRV.sys
21:40:53.0723 0x2040  MSKSSRV - ok
21:40:53.0730 0x2040  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\windows\system32\drivers\MSPCLOCK.sys
21:40:53.0731 0x2040  MSPCLOCK - ok
21:40:53.0754 0x2040  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\windows\system32\drivers\MSPQM.sys
21:40:53.0755 0x2040  MSPQM - ok
21:40:53.0779 0x2040  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\windows\system32\drivers\MsRPC.sys
21:40:53.0790 0x2040  MsRPC - ok
21:40:53.0826 0x2040  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\windows\system32\DRIVERS\mssmbios.sys
21:40:53.0828 0x2040  mssmbios - ok
21:40:54.0000 0x2040  MSSQL$ACT7 - ok
21:40:54.0117 0x2040  MSSQL$SQLEXPRESS - ok
21:40:54.0180 0x2040  [ 04EF36EAF5C4DBCE424D81B76F1E9231, ABA97C3004903852357264291613649D823F5BB24806E6CF9952AB3AA0E97C15 ] MSSQLServerADHelper100 C:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE
21:40:54.0182 0x2040  MSSQLServerADHelper100 - ok
21:40:54.0210 0x2040  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\windows\system32\drivers\MSTEE.sys
21:40:54.0211 0x2040  MSTEE - ok
21:40:54.0240 0x2040  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\windows\system32\drivers\MTConfig.sys
21:40:54.0241 0x2040  MTConfig - ok
21:40:54.0266 0x2040  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\windows\system32\Drivers\mup.sys
21:40:54.0267 0x2040  Mup - ok
21:40:54.0434 0x2040  [ C3589FC4F3D38214F5C9409316C45658, 4CEEEB7D09672B0990713C0DAF3EB1B0EEFAE2D6ADF3FF0B4C07D2088E5E909D ] MyEpson Portal Service C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe
21:40:54.0447 0x2040  MyEpson Portal Service - ok
21:40:54.0481 0x2040  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\windows\system32\qagentRT.dll
21:40:54.0490 0x2040  napagent - ok
21:40:54.0536 0x2040  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\windows\system32\DRIVERS\nwifi.sys
21:40:54.0542 0x2040  NativeWifiP - ok
21:40:54.0612 0x2040  [ 760E38053BF56E501D562B70AD796B88, F856E81A975D44F8684A6F2466549CEEDFAEB3950191698555A93A1206E0A42D ] NDIS            C:\windows\system32\drivers\ndis.sys
21:40:54.0629 0x2040  NDIS - ok
21:40:54.0656 0x2040  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\windows\system32\DRIVERS\ndiscap.sys
21:40:54.0658 0x2040  NdisCap - ok
21:40:54.0681 0x2040  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\windows\system32\DRIVERS\ndistapi.sys
21:40:54.0682 0x2040  NdisTapi - ok
21:40:54.0757 0x2040  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\windows\system32\DRIVERS\ndisuio.sys
21:40:54.0759 0x2040  Ndisuio - ok
21:40:54.0789 0x2040  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\windows\system32\DRIVERS\ndiswan.sys
21:40:54.0792 0x2040  NdisWan - ok
21:40:54.0820 0x2040  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\windows\system32\drivers\NDProxy.sys
21:40:54.0822 0x2040  NDProxy - ok
21:40:54.0845 0x2040  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\windows\system32\DRIVERS\netbios.sys
21:40:54.0847 0x2040  NetBIOS - ok
21:40:54.0881 0x2040  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\windows\system32\DRIVERS\netbt.sys
21:40:54.0886 0x2040  NetBT - ok
21:40:54.0934 0x2040  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] Netlogon        C:\windows\system32\lsass.exe
21:40:54.0937 0x2040  Netlogon - ok
21:40:55.0036 0x2040  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\windows\System32\netman.dll
21:40:55.0045 0x2040  Netman - ok
21:40:55.0124 0x2040  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetMsmqActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:40:55.0127 0x2040  NetMsmqActivator - ok
21:40:55.0134 0x2040  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetPipeActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:40:55.0137 0x2040  NetPipeActivator - ok
21:40:55.0192 0x2040  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\windows\System32\netprofm.dll
21:40:55.0201 0x2040  netprofm - ok
21:40:55.0207 0x2040  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpActivator C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:40:55.0210 0x2040  NetTcpActivator - ok
21:40:55.0215 0x2040  [ 21318671BCAD3ACF16638F98D4D00973, CEA6E3B6BCB4B74A9ACACBEEA12EEA967BBC2240398E2EBC04D7910109CACA11 ] NetTcpPortSharing C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
21:40:55.0218 0x2040  NetTcpPortSharing - ok
21:40:55.0258 0x2040  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\windows\system32\drivers\nfrd960.sys
21:40:55.0260 0x2040  nfrd960 - ok
21:40:55.0307 0x2040  [ 8AD77806D336673F270DB31645267293, E23F324913554A23CD043DD27D4305AF62F48C0561A0FC7B7811E55B74B1BE79 ] NlaSvc          C:\windows\System32\nlasvc.dll
21:40:55.0316 0x2040  NlaSvc - ok
21:40:55.0339 0x2040  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\windows\system32\drivers\Npfs.sys
21:40:55.0341 0x2040  Npfs - ok
21:40:55.0437 0x2040  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\windows\system32\nsisvc.dll
21:40:55.0439 0x2040  nsi - ok
21:40:55.0469 0x2040  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\windows\system32\drivers\nsiproxy.sys
21:40:55.0470 0x2040  nsiproxy - ok
21:40:55.0755 0x2040  [ B98F8C6E31CD07B2E6F71F7F648E38C0, 2FEA100B80680FBBF644CB6763738804155DF1E94A6542CAE2B2786D770D554E ] Ntfs            C:\windows\system32\drivers\Ntfs.sys
21:40:55.0816 0x2040  Ntfs - ok
21:40:55.0849 0x2040  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\windows\system32\drivers\Null.sys
21:40:55.0850 0x2040  Null - ok
21:40:55.0940 0x2040  [ A7127E86F9FFE2A53E271B56B2C4CEDF, 9C8D60290B66976BBC6E6FE0C2B8EBBCF65B019C95116565CA75098E9F66C05D ] nusb3hub        C:\windows\system32\DRIVERS\nusb3hub.sys
21:40:55.0943 0x2040  nusb3hub - ok
21:40:55.0955 0x2040  [ 49BBEC6F48D5F9284B03ABF3A959B19B, 688AFDFA9E2F0AB3BDE22EC55C70FD592AA0236557DA9310E1557C083307CEC5 ] nusb3xhc        C:\windows\system32\DRIVERS\nusb3xhc.sys
21:40:55.0959 0x2040  nusb3xhc - ok
21:40:56.0338 0x2040  [ 75E1C886976F75D2280BF918C0A5FED1, F705EEFBD4C547A515771DDC6228A4DC20D7556B3265EE55701D82837F148C82 ] nvlddmkm        C:\windows\system32\DRIVERS\nvlddmkm.sys
21:40:56.0561 0x2040  nvlddmkm - ok
21:40:56.0653 0x2040  [ A4DBB77D9EA1B70D004C2348DCBB4486, DB66A1635AFFD96F99DD1D208E49ED8618421BE2539CBA0853D6F4F7EE263619 ] nvpciflt        C:\windows\system32\DRIVERS\nvpciflt.sys
21:40:56.0654 0x2040  nvpciflt - ok
21:40:56.0697 0x2040  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\windows\system32\drivers\nvraid.sys
21:40:56.0705 0x2040  nvraid - ok
21:40:56.0765 0x2040  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\windows\system32\drivers\nvstor.sys
21:40:56.0770 0x2040  nvstor - ok
21:40:56.0855 0x2040  [ 44B39A37D7C384C9E529A37EADBFEAD8, 13883B8F56F345CE42AE4FC69529D116B9803CC984698679369C070CA4D6B20E ] NVSvc           C:\windows\system32\nvvsvc.exe
21:40:56.0871 0x2040  NVSvc - ok
21:40:56.0947 0x2040  [ D97CEF25C45BDD7E28D498D49626DA35, E4B9D63FC7CD92F50C72F1129EC4DDC89A5BEE084973BA5CA996AA48AC8A80BF ] nvUpdatusService C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
21:40:56.0968 0x2040  nvUpdatusService - ok
21:40:56.0996 0x2040  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\windows\system32\drivers\nv_agp.sys
21:40:57.0000 0x2040  nv_agp - ok
21:40:57.0010 0x2040  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\windows\system32\drivers\ohci1394.sys
21:40:57.0013 0x2040  ohci1394 - ok
21:40:57.0163 0x2040  [ 5A432A042DAE460ABE7199B758E8606C, 6E5D1F477D290905BE27CEBF9572BAC6B05FFEF2FAD901D3C8E11F665F8B9A71 ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:40:57.0172 0x2040  ose - ok
21:40:57.0224 0x2040  [ 4965B005492CBA7719E82B71E3245495, 52AD72C05FACC1E0E416A1FA25F34FDD3CB274FAB973BEAAE911A2FACA42B650 ] ose64           C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:40:57.0239 0x2040  ose64 - ok
21:40:57.0530 0x2040  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
21:40:57.0677 0x2040  osppsvc - ok
21:40:57.0731 0x2040  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\windows\system32\pnrpsvc.dll
21:40:57.0737 0x2040  p2pimsvc - ok
21:40:57.0760 0x2040  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\windows\system32\p2psvc.dll
21:40:57.0768 0x2040  p2psvc - ok
21:40:57.0803 0x2040  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\windows\system32\drivers\parport.sys
21:40:57.0806 0x2040  Parport - ok
21:40:57.0832 0x2040  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\windows\system32\drivers\partmgr.sys
21:40:57.0834 0x2040  partmgr - ok
21:40:57.0846 0x2040  [ 3AEAA8B561E63452C655DC0584922257, 04C072969B58657602EB0C21CEDF24FCEE14E61B90A0F758F93925EF2C9FC32D ] PcaSvc          C:\windows\System32\pcasvc.dll
21:40:57.0850 0x2040  PcaSvc - ok
21:40:57.0868 0x2040  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\windows\system32\drivers\pci.sys
21:40:57.0873 0x2040  pci - ok
21:40:57.0896 0x2040  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\windows\system32\drivers\pciide.sys
21:40:57.0898 0x2040  pciide - ok
21:40:57.0913 0x2040  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\windows\system32\drivers\pcmcia.sys
21:40:57.0919 0x2040  pcmcia - ok
21:40:57.0940 0x2040  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\windows\system32\drivers\pcw.sys
21:40:57.0942 0x2040  pcw - ok
21:40:58.0008 0x2040  [ 68769C3356B3BE5D1C732C97B9A80D6E, FB2D61145980A2899D1B7729184C54070315B0E63C9A22400A76CCD39E00029C ] PEAUTH          C:\windows\system32\drivers\peauth.sys
21:40:58.0020 0x2040  PEAUTH - ok
21:40:58.0079 0x2040  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\windows\SysWow64\perfhost.exe
21:40:58.0081 0x2040  PerfHost - ok
21:40:58.0149 0x2040  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\windows\system32\pla.dll
21:40:58.0180 0x2040  pla - ok
21:40:58.0274 0x2040  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\windows\system32\umpnpmgr.dll
21:40:58.0283 0x2040  PlugPlay - ok
21:40:58.0308 0x2040  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\windows\system32\pnrpauto.dll
21:40:58.0310 0x2040  PNRPAutoReg - ok
21:40:58.0330 0x2040  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\windows\system32\pnrpsvc.dll
21:40:58.0337 0x2040  PNRPsvc - ok
21:40:58.0382 0x2040  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\windows\System32\ipsecsvc.dll
21:40:58.0392 0x2040  PolicyAgent - ok
21:40:58.0425 0x2040  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\windows\system32\umpo.dll
21:40:58.0429 0x2040  Power - ok
21:40:58.0515 0x2040  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\windows\system32\DRIVERS\raspptp.sys
21:40:58.0518 0x2040  PptpMiniport - ok
21:40:58.0532 0x2040  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\windows\system32\drivers\processr.sys
21:40:58.0535 0x2040  Processor - ok
21:40:58.0561 0x2040  [ 53E83F1F6CF9D62F32801CF66D8352A8, 1225FED810BE8E0729EEAE5B340035CCBB9BACD3EF247834400F9B72D05ACE48 ] ProfSvc         C:\windows\system32\profsvc.dll
21:40:58.0566 0x2040  ProfSvc - ok
21:40:58.0572 0x2040  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] ProtectedStorage C:\windows\system32\lsass.exe
21:40:58.0574 0x2040  ProtectedStorage - ok
21:40:58.0600 0x2040  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\windows\system32\DRIVERS\pacer.sys
21:40:58.0603 0x2040  Psched - ok
21:40:58.0635 0x2040  [ 7712267DBAD69820E0766B17D8F6543E, 707D4D9687843CC825550BE5798D2109B6D924CC447A5BBB62DFE49785C553A6 ] PSI_SVC_2       C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
21:40:58.0640 0x2040  PSI_SVC_2 - ok
21:40:58.0751 0x2040  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\windows\system32\drivers\ql2300.sys
21:40:58.0784 0x2040  ql2300 - ok
21:40:58.0817 0x2040  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\windows\system32\drivers\ql40xx.sys
21:40:58.0820 0x2040  ql40xx - ok
21:40:58.0893 0x2040  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\windows\system32\qwave.dll
21:40:58.0899 0x2040  QWAVE - ok
21:40:58.0930 0x2040  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\windows\system32\drivers\qwavedrv.sys
21:40:58.0932 0x2040  QWAVEdrv - ok
21:40:59.0313 0x2040  [ 000D82CC258E2D341605A6F350C4D1E6, 59EC5BA95D8B9EC739BC7D0BBE0E244CA2AE2DF01A8B65BFF7741DFBE38C2940 ] RapportCerberus_59849 C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus64_59849.sys
21:40:59.0324 0x2040  RapportCerberus_59849 - ok
21:40:59.0479 0x2040  [ 89D5A81F6C20D0DD74F11769DCA858BB, 19D68361D332350D404860514588656D4DCF9A7595EA1731ACDF78244D984FBA ] RapportEI64     C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys
21:40:59.0485 0x2040  RapportEI64 - ok
21:40:59.0520 0x2040  [ DD4C7AAAE0DBDE3A0091B2D552F3785E, A149F7A70BCC07DEAA8B77BCAA76C553B3069DC8ED3D059BA46EF6DA5D13ADE0 ] RapportKE64     C:\windows\system32\Drivers\RapportKE64.sys
21:40:59.0527 0x2040  RapportKE64 - ok
21:40:59.0588 0x2040  [ D11162F92258E1F09CFB4054941F2E24, B8522D8BCAEFE5CD9BB36BF74AE0B9ADE065D6472AD2CDB001101D211D332367 ] RapportMgmtService C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
21:40:59.0614 0x2040  RapportMgmtService - ok
21:40:59.0704 0x2040  [ 538DF814851E721B24BFF7D50766BF9E, F63267E30F2F1267DC9B43E15F5B8A862856C69432A770ACDC9CB291ED0A8E9D ] RapportPG64     C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys
21:40:59.0712 0x2040  RapportPG64 - ok
21:40:59.0726 0x2040  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\windows\system32\DRIVERS\rasacd.sys
21:40:59.0728 0x2040  RasAcd - ok
21:40:59.0765 0x2040  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\windows\system32\DRIVERS\AgileVpn.sys
21:40:59.0766 0x2040  RasAgileVpn - ok
21:40:59.0800 0x2040  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\windows\System32\rasauto.dll
21:40:59.0803 0x2040  RasAuto - ok
21:40:59.0826 0x2040  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\windows\system32\DRIVERS\rasl2tp.sys
21:40:59.0829 0x2040  Rasl2tp - ok
21:40:59.0849 0x2040  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\windows\System32\rasmans.dll
21:40:59.0856 0x2040  RasMan - ok
21:40:59.0909 0x2040  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\windows\system32\DRIVERS\raspppoe.sys
21:40:59.0911 0x2040  RasPppoe - ok
21:40:59.0926 0x2040  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\windows\system32\DRIVERS\rassstp.sys
21:40:59.0928 0x2040  RasSstp - ok
21:40:59.0960 0x2040  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\windows\system32\DRIVERS\rdbss.sys
21:40:59.0966 0x2040  rdbss - ok
21:40:59.0994 0x2040  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\windows\system32\drivers\rdpbus.sys
21:40:59.0996 0x2040  rdpbus - ok
21:41:00.0024 0x2040  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\windows\system32\DRIVERS\RDPCDD.sys
21:41:00.0025 0x2040  RDPCDD - ok
21:41:00.0099 0x2040  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\windows\system32\drivers\rdpencdd.sys
21:41:00.0100 0x2040  RDPENCDD - ok
21:41:00.0116 0x2040  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\windows\system32\drivers\rdprefmp.sys
21:41:00.0117 0x2040  RDPREFMP - ok
21:41:00.0163 0x2040  [ E61608AA35E98999AF9AAEEEA6114B0A, F754CDE89DC96786D2A3C4D19EE2AEF1008E634E4DE3C0CBF927436DE90C04A6 ] RDPWD           C:\windows\system32\drivers\RDPWD.sys
21:41:00.0169 0x2040  RDPWD - ok
21:41:00.0197 0x2040  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\windows\system32\drivers\rdyboost.sys
21:41:00.0202 0x2040  rdyboost - ok
21:41:00.0238 0x2040  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\windows\System32\mprdim.dll
21:41:00.0244 0x2040  RemoteAccess - ok
21:41:00.0272 0x2040  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\windows\system32\regsvc.dll
21:41:00.0276 0x2040  RemoteRegistry - ok
21:41:00.0321 0x2040  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\windows\system32\DRIVERS\rfcomm.sys
21:41:00.0324 0x2040  RFCOMM - ok
21:41:00.0442 0x2040  [ F12A68ED55053940CADD59CA5E3468DD, 75331E6DA4E30717085E7D8131989241EBC492DC3EE455546F91DA9DFFFD2BFC ] RichVideo       C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
21:41:00.0447 0x2040  RichVideo - ok
21:41:00.0487 0x2040  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\windows\System32\RpcEpMap.dll
21:41:00.0489 0x2040  RpcEptMapper - ok
21:41:00.0514 0x2040  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\windows\system32\locator.exe
21:41:00.0516 0x2040  RpcLocator - ok
21:41:00.0567 0x2040  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\windows\system32\rpcss.dll
21:41:00.0577 0x2040  RpcSs - ok
21:41:00.0683 0x2040  [ C9FE05A63C500ABE3AFA5786504C4D36, F076B57B9EF6A179A37D5E00E1891236025D451CF067D2F1A1CBA2113218FEB6 ] RsFx0105        C:\windows\system32\DRIVERS\RsFx0105.sys
21:41:00.0690 0x2040  RsFx0105 - ok
21:41:00.0769 0x2040  [ C606C5F712A3761896CEFFA4AF6B1268, 8E6411B0E818DF621B7E1AB271684712CAF741C38B57C0609D6978FA0198523C ] RsFx0151        C:\windows\system32\DRIVERS\RsFx0151.sys
21:41:00.0836 0x2040  RsFx0151 - ok
21:41:00.0866 0x2040  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\windows\system32\DRIVERS\rspndr.sys
21:41:00.0868 0x2040  rspndr - ok
21:41:00.0918 0x2040  [ E50CFB92986DCAB49DE93788FD695813, EAE103008B967B0F064EDDA551AA553EE7C22D39D14FA0BBFEF41C4D1B6C99E5 ] RTL8167         C:\windows\system32\DRIVERS\Rt64win7.sys
21:41:00.0928 0x2040  RTL8167 - ok
21:41:01.0066 0x2040  [ 4CA0DBA9E224473D664C25E411F5A3BD, 71423A66165782EFB4DB7BE6CE48DDB463D9F65FD0F266D333A6558791D158E5 ] rtport          C:\windows\SysWOW64\drivers\rtport.sys
21:41:01.0067 0x2040  rtport - ok
21:41:01.0100 0x2040  [ 62DB6CC4B0818F1B5F3441241B098F12, 7A53B3FBA3F82EDE6FA688E531FBE7EC9E1AE329090C0AFE0DCD64F65BD90F21 ] SABI            C:\windows\system32\Drivers\SABI.sys
21:41:01.0101 0x2040  SABI - ok
21:41:01.0158 0x2040  [ E9385E91295ED23A80D0CC605FE0306A, 29A30A32CA7046F528A5F3C0CFE99C67FFB2F130C1098382C8E77E05E8918648 ] Sage ACT! Scheduler C:\Program Files (x86)\ACT\Act for Windows\Act.Scheduler.exe
21:41:01.0160 0x2040  Sage ACT! Scheduler - ok
21:41:01.0168 0x2040  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] SamSs           C:\windows\system32\lsass.exe
21:41:01.0170 0x2040  SamSs - ok
21:41:01.0197 0x2040  [ D641337B75B9A9D5AE10687AA1097755, 1495654D9090FDE04EF8605D1C8A4B0ACA1A50A4E0A992DE2F049CB8413E860C ] Samsung UPD Service C:\windows\System32\SUPDSvc.exe
21:41:01.0202 0x2040  Samsung UPD Service - ok
21:41:01.0230 0x2040  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\windows\system32\drivers\sbp2port.sys
21:41:01.0233 0x2040  sbp2port - ok
21:41:01.0271 0x2040  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\windows\System32\SCardSvr.dll
21:41:01.0277 0x2040  SCardSvr - ok
21:41:01.0294 0x2040  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\windows\system32\DRIVERS\scfilter.sys
21:41:01.0296 0x2040  scfilter - ok
21:41:01.0348 0x2040  [ 262F6592C3299C005FD6BEC90FC4463A, 54095E37F0B6CC677A3E9BDD40F4647C713273D197DB341063AA7F342A60C4A7 ] Schedule        C:\windows\system32\schedsvc.dll
21:41:01.0368 0x2040  Schedule - ok
21:41:01.0402 0x2040  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\windows\System32\certprop.dll
21:41:01.0404 0x2040  SCPolicySvc - ok
21:41:01.0429 0x2040  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\windows\System32\SDRSVC.dll
21:41:01.0434 0x2040  SDRSVC - ok
21:41:01.0464 0x2040  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\windows\system32\drivers\secdrv.sys
21:41:01.0466 0x2040  secdrv - ok
21:41:01.0477 0x2040  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\windows\system32\seclogon.dll
21:41:01.0480 0x2040  seclogon - ok
21:41:01.0493 0x2040  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\windows\System32\sens.dll
21:41:01.0496 0x2040  SENS - ok
21:41:01.0509 0x2040  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\windows\system32\sensrsvc.dll
21:41:01.0511 0x2040  SensrSvc - ok
21:41:01.0557 0x2040  [ 255476B54C82A89416EFDF09FD62F107, 000A6F7F15177A08ED4E22DB1C06F9FF0F8D324541A3E7AF7F35123D9CA4122D ] Sentinel64      C:\windows\System32\Drivers\Sentinel64.sys
21:41:01.0560 0x2040  Sentinel64 - ok
21:41:01.0676 0x2040  [ 1BA2C677C6146A8B3ADEA7B69D2EED56, B8BA275B748C0F729CED224A415CC0D0EBB1EE2FC0F59DA0275C18EE9BDC1604 ] SentinelKeysServer C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
21:41:01.0683 0x2040  SentinelKeysServer - ok
21:41:01.0761 0x2040  [ D1A2BA8BF092DDF18F3D3DB1D5AC7803, EE1B349DD8D5C00B4E13F9F71BFDBA73A4870C6BC90F1845D2AEAD8EFEE02322 ] SentinelProtectionServer C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
21:41:01.0783 0x2040  SentinelProtectionServer - ok
21:41:01.0846 0x2040  [ E80B91AEC007711B1EEC9C83487754E2, 8C417EF2FC3460F05C3BCA955C628A65AA86E9DB080235CCF61FB98745BB2F90 ] SentinelSecurityRuntime C:\Program Files (x86)\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
21:41:01.0851 0x2040  SentinelSecurityRuntime - ok
21:41:01.0885 0x2040  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\windows\system32\drivers\serenum.sys
21:41:01.0887 0x2040  Serenum - ok
21:41:01.0917 0x2040  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\windows\system32\drivers\serial.sys
21:41:01.0920 0x2040  Serial - ok
21:41:01.0924 0x2040  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\windows\system32\drivers\sermouse.sys
21:41:01.0926 0x2040  sermouse - ok
21:41:01.0960 0x2040  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\windows\system32\sessenv.dll
21:41:01.0964 0x2040  SessionEnv - ok
21:41:01.0968 0x2040  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\windows\system32\drivers\sffdisk.sys
21:41:01.0969 0x2040  sffdisk - ok
21:41:01.0972 0x2040  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\windows\system32\drivers\sffp_mmc.sys
21:41:01.0974 0x2040  sffp_mmc - ok
21:41:01.0978 0x2040  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\windows\system32\drivers\sffp_sd.sys
21:41:01.0979 0x2040  sffp_sd - ok
21:41:01.0983 0x2040  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\windows\system32\drivers\sfloppy.sys
21:41:01.0984 0x2040  sfloppy - ok
21:41:02.0035 0x2040  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\windows\System32\ipnathlp.dll
21:41:02.0042 0x2040  SharedAccess - ok
21:41:02.0111 0x2040  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\windows\System32\shsvcs.dll
21:41:02.0121 0x2040  ShellHWDetection - ok
21:41:02.0143 0x2040  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\windows\system32\drivers\SiSRaid2.sys
21:41:02.0145 0x2040  SiSRaid2 - ok
21:41:02.0184 0x2040  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\windows\system32\drivers\sisraid4.sys
21:41:02.0187 0x2040  SiSRaid4 - ok
21:41:02.0214 0x2040  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\windows\system32\DRIVERS\smb.sys
21:41:02.0217 0x2040  Smb - ok
21:41:02.0289 0x2040  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\windows\System32\snmptrap.exe
21:41:02.0290 0x2040  SNMPTRAP - ok
21:41:02.0327 0x2040  [ 2D5576C01C8A34AA614870E745FE8F19, FAAD06A4B912B8A7B6971E152D89356191C9655DDA494A04F0AA086DFB46BD11 ] SNTUSB64        C:\windows\system32\DRIVERS\SNTUSB64.SYS
21:41:02.0329 0x2040  SNTUSB64 - ok
21:41:02.0362 0x2040  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\windows\system32\drivers\spldr.sys
21:41:02.0363 0x2040  spldr - ok
21:41:02.0419 0x2040  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\windows\System32\spoolsv.exe
21:41:02.0430 0x2040  Spooler - ok
21:41:02.0581 0x2040  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\windows\system32\sppsvc.exe
21:41:02.0642 0x2040  sppsvc - ok
21:41:02.0671 0x2040  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\windows\system32\sppuinotify.dll
21:41:02.0673 0x2040  sppuinotify - ok
21:41:02.0879 0x2040  [ 3420E0482AD95120B471B7328A8D7D08, D3D8C45EC601B59ACBE7FE76B7C8478256DD29ADBF9A22938BFD4098E593B682 ] SQLAgent$ACT7   C:\Program Files\Microsoft SQL Server\MSSQL10_50.ACT7\MSSQL\Binn\SQLAGENT.EXE
21:41:02.0890 0x2040  SQLAgent$ACT7 - ok
21:41:03.0001 0x2040  [ 45E65FB17A4CD5FACBD3CA16C8334C82, E488A89D750C32F327CD70E54AA8D027524BE8D18CA516CB1CC3388E6C98A35D ] SQLAgent$SQLEXPRESS C:\Program Files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE
21:41:03.0011 0x2040  SQLAgent$SQLEXPRESS - ok
21:41:03.0052 0x2040  [ 7D67C07C63796775CC5492BCFEAFF125, BAEFF806F656FA252D1DBC1E21603CF5F7D54C5AFB3FC91F2723729A7740DF8A ] SQLBrowser      C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
21:41:03.0057 0x2040  SQLBrowser - ok
21:41:03.0154 0x2040  [ F98DDFBFE0EE66D4C4B00693512B9527, 322FF75D1CA460368FD72ADCD93273F1D5AA5CF2C4DF65A94BF9ABAA2E695150 ] SQLWriter       C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
21:41:03.0157 0x2040  SQLWriter - ok
21:41:03.0196 0x2040  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\windows\system32\DRIVERS\srv.sys
21:41:03.0205 0x2040  srv - ok
21:41:03.0230 0x2040  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\windows\system32\DRIVERS\srv2.sys
21:41:03.0238 0x2040  srv2 - ok
21:41:03.0273 0x2040  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\windows\system32\DRIVERS\srvnet.sys
21:41:03.0276 0x2040  srvnet - ok
21:41:03.0337 0x2040  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\windows\System32\ssdpsrv.dll
21:41:03.0342 0x2040  SSDPSRV - ok
21:41:03.0359 0x2040  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\windows\system32\sstpsvc.dll
21:41:03.0362 0x2040  SstpSvc - ok
21:41:03.0423 0x2040  [ A87A39F9B42D82F5D60D36BB1D3CC9D3, F609CC721B898B5053FE34B24C94970453BD57441F9A2C93D4F77CB297D56169 ] Steam Client Service C:\Program Files (x86)\Common Files\Steam\SteamService.exe
21:41:03.0434 0x2040  Steam Client Service - ok
21:41:03.0468 0x2040  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\windows\system32\drivers\stexstor.sys
21:41:03.0470 0x2040  stexstor - ok
21:41:03.0502 0x2040  [ DECACB6921DED1A38642642685D77DAC, 1633711CE973F818EBCCCA28538772431167C33ECDD44D1E846A9436598B52DC ] StillCam        C:\windows\system32\DRIVERS\serscan.sys
21:41:03.0503 0x2040  StillCam - ok
21:41:03.0552 0x2040  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\windows\System32\wiaservc.dll
21:41:03.0564 0x2040  stisvc - ok
21:41:03.0599 0x2040  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\windows\system32\DRIVERS\swenum.sys
21:41:03.0600 0x2040  swenum - ok
21:41:03.0632 0x2040  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\windows\System32\swprv.dll
21:41:03.0645 0x2040  swprv - ok
21:41:03.0699 0x2040  [ BF9CCC0BF39B418C8D0AE8B05CF95B7D, 3C13217548BE61F2BDB8BD41F77345CDDA1F97BF0AE17241C335B9807EB3DBB8 ] SysMain         C:\windows\system32\sysmain.dll
21:41:03.0730 0x2040  SysMain - ok
21:41:03.0748 0x2040  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\windows\System32\TabSvc.dll
21:41:03.0751 0x2040  TabletInputService - ok
21:41:03.0769 0x2040  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\windows\System32\tapisrv.dll
21:41:03.0777 0x2040  TapiSrv - ok
21:41:03.0805 0x2040  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\windows\System32\tbssvc.dll
21:41:03.0807 0x2040  TBS - ok
21:41:03.0923 0x2040  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] Tcpip           C:\windows\system32\drivers\tcpip.sys
21:41:03.0963 0x2040  Tcpip - ok
21:41:04.0025 0x2040  [ 40AF23633D197905F03AB5628C558C51, 644656A15236E964E4BE57B42225EAA5643C4CF1FFF6D306813A000716F9D72C ] TCPIP6          C:\windows\system32\DRIVERS\tcpip.sys
21:41:04.0058 0x2040  TCPIP6 - ok
21:41:04.0097 0x2040  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\windows\system32\drivers\tcpipreg.sys
21:41:04.0099 0x2040  tcpipreg - ok
21:41:04.0132 0x2040  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\windows\system32\drivers\tdpipe.sys
21:41:04.0133 0x2040  TDPIPE - ok
21:41:04.0165 0x2040  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\windows\system32\drivers\tdtcp.sys
21:41:04.0167 0x2040  TDTCP - ok
21:41:04.0193 0x2040  [ DDAD5A7AB24D8B65F8D724F5C20FD806, B71F2967A4EE7395E4416C1526CB85368AEA988BDD1F2C9719C48B08FAFA9661 ] tdx             C:\windows\system32\DRIVERS\tdx.sys
21:41:04.0196 0x2040  tdx - ok
21:41:04.0265 0x2040  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\windows\system32\DRIVERS\termdd.sys
21:41:04.0267 0x2040  TermDD - ok
21:41:04.0501 0x2040  [ 2E648163254233755035B46DD7B89123, 6FA0D07CE18A3A69D82EE49D875F141E39406E92C34EAC76AC4EB052E6EBCBCD ] TermService     C:\windows\System32\termsrv.dll
21:41:04.0542 0x2040  TermService - ok
21:41:04.0566 0x2040  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\windows\system32\themeservice.dll
21:41:04.0569 0x2040  Themes - ok
21:41:04.0612 0x2040  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\windows\system32\mmcss.dll
21:41:04.0614 0x2040  THREADORDER - ok
21:41:04.0628 0x2040  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\windows\System32\trkwks.dll
21:41:04.0632 0x2040  TrkWks - ok
21:41:04.0732 0x2040  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\windows\servicing\TrustedInstaller.exe
21:41:04.0736 0x2040  TrustedInstaller - ok
21:41:04.0769 0x2040  [ 4CE278FC9671BA81A138D70823FCAA09, CBE501436696E32A3701B9F377B823AC36647B6626595F76CC63E2396AD7D300 ] tssecsrv        C:\windows\system32\DRIVERS\tssecsrv.sys
21:41:04.0771 0x2040  tssecsrv - ok
21:41:04.0796 0x2040  [ D11C783E3EF9A3C52C0EBE83CC5000E9, A136C355D4C8945729163D15801364A614E23217B15F9313C85BA45BB71A74EB ] TsUsbFlt        C:\windows\system32\drivers\tsusbflt.sys
21:41:04.0798 0x2040  TsUsbFlt - ok
21:41:04.0821 0x2040  [ 9CC2CCAE8A84820EAECB886D477CBCB8, 50D8AA2D7477A6618A0C31BB4D1C4887B457865FB1105E2E7B984EEFA337B804 ] TsUsbGD         C:\windows\system32\drivers\TsUsbGD.sys
21:41:04.0824 0x2040  TsUsbGD - ok
21:41:04.0865 0x2040  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\windows\system32\DRIVERS\tunnel.sys
21:41:04.0868 0x2040  tunnel - ok
21:41:04.0953 0x2040  [ 48743B69EA47C020A792D8649F753F44, 58BFF60271F62F5CB02A1181F44E94C230DF4A6EC5C072A476B2BED13239A70C ] TurboB          C:\windows\system32\DRIVERS\TurboB.sys
21:41:04.0954 0x2040  TurboB - ok
21:41:04.0998 0x2040  [ 759F59E3EA3802FF23F93DCDB6FE9171, DB5A6C1EDA10380C14A8C318D6C65ED691C36F726A6A20DB3038D8F55F1B76D8 ] TurboBoost      C:\Program Files\Intel\TurboBoost\TurboBoost.exe
21:41:05.0001 0x2040  TurboBoost - ok
21:41:05.0016 0x2040  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\windows\system32\drivers\uagp35.sys
21:41:05.0018 0x2040  uagp35 - ok
21:41:05.0038 0x2040  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\windows\system32\DRIVERS\udfs.sys
21:41:05.0046 0x2040  udfs - ok
21:41:05.0087 0x2040  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\windows\system32\UI0Detect.exe
21:41:05.0089 0x2040  UI0Detect - ok
21:41:05.0119 0x2040  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\windows\system32\drivers\uliagpkx.sys
21:41:05.0122 0x2040  uliagpkx - ok
21:41:05.0147 0x2040  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\windows\system32\DRIVERS\umbus.sys
21:41:05.0149 0x2040  umbus - ok
21:41:05.0162 0x2040  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\windows\system32\drivers\umpass.sys
21:41:05.0164 0x2040  UmPass - ok
21:41:05.0356 0x2040  [ FDF92EC84FECEE834FB10A2A0A19BCDA, F81FCA3BEC10C84335DBAD9D2CDAB98C62252A864F23BDD482F97F86D5FA0B15 ] UNS             C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
21:41:05.0402 0x2040  UNS - ok
21:41:05.0447 0x2040  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\windows\System32\upnphost.dll
21:41:05.0456 0x2040  upnphost - ok
21:41:05.0486 0x2040  [ C9E9D59C0099A9FF51697E9306A44240, 78D9A7A5E5742962B6978F475BF06CB32262F1D214699D3D40538476A58012A1 ] USBAAPL64       C:\windows\system32\Drivers\usbaapl64.sys
21:41:05.0488 0x2040  USBAAPL64 - ok
21:41:05.0566 0x2040  [ ACCEA6BC68D0C9A78EB97EE159028B4E, 132F7A543C1DA9456FBABA50552B37E3162ACA612A8567BB3FF0F7DA84231419 ] usbccgp         C:\windows\system32\DRIVERS\usbccgp.sys
21:41:05.0568 0x2040  usbccgp - ok
21:41:05.0615 0x2040  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\windows\system32\drivers\usbcir.sys
21:41:05.0619 0x2040  usbcir - ok
21:41:05.0642 0x2040  [ 311C1DD1088E55BEAE15954D17F50646, A663344ABD1414D570617F59CC00020640F31DB34265142EFCA8817328DB842A ] usbehci         C:\windows\system32\drivers\usbehci.sys
21:41:05.0644 0x2040  usbehci - ok
21:41:05.0681 0x2040  [ 280E90CBF4B2DDD169F0728CB44D726F, 2B39666C022A4F7338BDDB4CB0D7B4D0CC6B398298D29E38826F27FADF4C29DD ] usbhub          C:\windows\system32\DRIVERS\usbhub.sys
21:41:05.0688 0x2040  usbhub - ok
21:41:05.0751 0x2040  [ 9406D801042FAF859CF81B2C886413DC, D16536EC05260D7A2902314E1AA5E5F73533483B9967739C381FD41B6192B92F ] usbohci         C:\windows\system32\drivers\usbohci.sys
21:41:05.0753 0x2040  usbohci - ok
21:41:05.0786 0x2040  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\windows\system32\drivers\usbprint.sys
21:41:05.0788 0x2040  usbprint - ok
21:41:05.0827 0x2040  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\windows\system32\DRIVERS\USBSTOR.SYS
21:41:05.0830 0x2040  USBSTOR - ok
21:41:05.0858 0x2040  [ A83D0EC9AE4C31704442099D40BA2471, A29D714FCDF10DF7A2A17D54B131AEFDA61AED988CF8B99C7B30728C50130DCE ] usbuhci         C:\windows\system32\drivers\usbuhci.sys
21:41:05.0860 0x2040  usbuhci - ok
21:41:05.0963 0x2040  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\windows\System32\Drivers\usbvideo.sys
21:41:05.0967 0x2040  usbvideo - ok
21:41:05.0989 0x2040  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\windows\System32\uxsms.dll
21:41:05.0993 0x2040  UxSms - ok
21:41:06.0026 0x2040  [ 4D71227301DD8D09097B9E4CC6527E5A, 193D47ADCB722B581CC0F29B794AB3E455B6E9BEA367CE9A5216A09E055B7F1E ] VaultSvc        C:\windows\system32\lsass.exe
21:41:06.0028 0x2040  VaultSvc - ok
21:41:06.0116 0x2040  [ 8980F9528BAB3AA881892669DFC79228, CAB42BC506A84593D06DD5AB6401821B67F2556F9B8EB7B6878E2E4C3B3CE6B9 ] VBoxNetAdp      C:\windows\system32\DRIVERS\VBoxNetAdp.sys
21:41:06.0120 0x2040  VBoxNetAdp - ok
21:41:06.0146 0x2040  VBoxNetFlt - ok
21:41:06.0179 0x2040  [ 84BB306B7863883018D7F3EB0C453BD5, 0602C6987E42ADB3F98D200BA078363F80389941938E0611C3CCA6AD6A183DD0 ] VClone          C:\windows\system32\DRIVERS\VClone.sys
21:41:06.0190 0x2040  VClone - ok
21:41:06.0228 0x2040  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\windows\system32\drivers\vdrvroot.sys
21:41:06.0230 0x2040  vdrvroot - ok
21:41:06.0357 0x2040  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\windows\System32\vds.exe
21:41:06.0367 0x2040  vds - ok
21:41:06.0402 0x2040  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\windows\system32\DRIVERS\vgapnp.sys
21:41:06.0403 0x2040  vga - ok
21:41:06.0425 0x2040  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\windows\System32\drivers\vga.sys
21:41:06.0427 0x2040  VgaSave - ok
21:41:06.0452 0x2040  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\windows\system32\drivers\vhdmp.sys
21:41:06.0459 0x2040  vhdmp - ok
21:41:06.0493 0x2040  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\windows\system32\drivers\viaide.sys
21:41:06.0495 0x2040  viaide - ok
21:41:06.0523 0x2040  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\windows\system32\drivers\volmgr.sys
21:41:06.0525 0x2040  volmgr - ok
21:41:06.0557 0x2040  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\windows\system32\drivers\volmgrx.sys
21:41:06.0564 0x2040  volmgrx - ok
21:41:06.0594 0x2040  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\windows\system32\drivers\volsnap.sys
21:41:06.0601 0x2040  volsnap - ok
21:41:06.0637 0x2040  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\windows\system32\drivers\vsmraid.sys
21:41:06.0641 0x2040  vsmraid - ok
21:41:06.0705 0x2040  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\windows\system32\vssvc.exe
21:41:06.0734 0x2040  VSS - ok
21:41:06.0750 0x2040  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\windows\system32\DRIVERS\vwifibus.sys
21:41:06.0751 0x2040  vwifibus - ok
21:41:06.0782 0x2040  [ 13A0DECD1794DE60A8427862C8669D27, 4024AF9F2F052BC80C85F5B9A671499C20AF38838206CC649E6EFE37C380D3BF ] vwififlt        C:\windows\system32\DRIVERS\vwififlt.sys
21:41:06.0784 0x2040  vwififlt - ok
21:41:06.0837 0x2040  [ 49003B357D101CDC474937437ECF5ABC, D3EC570D616DC39FE6BF02DA1CD6C30CD07C27CC5B4B6FD6DACB5D8A4F1596A6 ] vwifimp         C:\windows\system32\DRIVERS\vwifimp.sys
21:41:06.0838 0x2040  vwifimp - ok
21:41:06.0889 0x2040  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\windows\system32\w32time.dll
21:41:06.0897 0x2040  W32Time - ok
21:41:06.0922 0x2040  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\windows\system32\drivers\wacompen.sys
21:41:06.0924 0x2040  WacomPen - ok
21:41:06.0964 0x2040  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\windows\system32\DRIVERS\wanarp.sys
21:41:06.0966 0x2040  WANARP - ok
21:41:06.0971 0x2040  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\windows\system32\DRIVERS\wanarp.sys
21:41:06.0973 0x2040  Wanarpv6 - ok
21:41:07.0039 0x2040  [ 3CEC96DE223E49EAAE3651FCF8FAEA6C, 4150DAB33E8D61076F1D4767BCAFC9B4ECCCCBD58FD4FB3CFE5B8D27DCDCAB61 ] WatAdminSvc     C:\windows\system32\Wat\WatAdminSvc.exe
21:41:07.0061 0x2040  WatAdminSvc - ok
21:41:07.0174 0x2040  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\windows\system32\wbengine.exe
21:41:07.0201 0x2040  wbengine - ok
21:41:07.0233 0x2040  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\windows\System32\wbiosrvc.dll
21:41:07.0238 0x2040  WbioSrvc - ok
21:41:07.0264 0x2040  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\windows\System32\wcncsvc.dll
21:41:07.0275 0x2040  wcncsvc - ok
21:41:07.0350 0x2040  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\windows\System32\WcsPlugInService.dll
21:41:07.0353 0x2040  WcsPlugInService - ok
21:41:07.0390 0x2040  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\windows\system32\drivers\wd.sys
21:41:07.0392 0x2040  Wd - ok
21:41:07.0449 0x2040  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\windows\system32\drivers\Wdf01000.sys
21:41:07.0464 0x2040  Wdf01000 - ok
21:41:07.0517 0x2040  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiServiceHost  C:\windows\system32\wdi.dll
21:41:07.0521 0x2040  WdiServiceHost - ok
21:41:07.0526 0x2040  [ BF1FC3F79B863C914687A737C2F3D681, B2DF47AC4931ACFB243775767B77065CC0D98778FC0243C793A3E219EB961209 ] WdiSystemHost   C:\windows\system32\wdi.dll
21:41:07.0529 0x2040  WdiSystemHost - ok
21:41:07.0577 0x2040  [ 0EB0E5D22B1760F2DBCE632F2DD7A54D, B8A4CC62F88768947FB0A161CF9564DB28FD9C1C037B5475DF192982DE035C22 ] WebClient       C:\windows\System32\webclnt.dll
21:41:07.0585 0x2040  WebClient - ok
21:41:07.0669 0x2040  [ C749025A679C5103E575E3B48E092C43, B71171D07EE7AB085A24BF3A1072FF2CE7EA021AAE695F6A90640E6EE8EB55C1 ] Wecsvc          C:\windows\system32\wecsvc.dll
21:41:07.0674 0x2040  Wecsvc - ok
21:41:07.0697 0x2040  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\windows\System32\wercplsupport.dll
21:41:07.0703 0x2040  wercplsupport - ok
21:41:07.0749 0x2040  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\windows\System32\WerSvc.dll
21:41:07.0753 0x2040  WerSvc - ok
21:41:07.0780 0x2040  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\windows\system32\DRIVERS\wfplwf.sys
21:41:07.0782 0x2040  WfpLwf - ok
21:41:07.0830 0x2040  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\windows\system32\drivers\wimmount.sys
21:41:07.0832 0x2040  WIMMount - ok
21:41:07.0865 0x2040  WinDefend - ok
21:41:07.0881 0x2040  WinHttpAutoProxySvc - ok
21:41:07.0971 0x2040  [ 19B07E7E8915D701225DA41CB3877306, D6555E8D276DBB11358246E0FE215F76F1FB358791C76B88D82C2A66A42DA19F ] Winmgmt         C:\windows\system32\wbem\WMIsvc.dll
21:41:07.0976 0x2040  Winmgmt - ok
21:41:08.0095 0x2040  [ BCB1310604AA415C4508708975B3931E, 9D943F086D454345153A0DD426B4432532A44FD87950386B186E1CAD2AC70565 ] WinRM           C:\windows\system32\WsmSvc.dll
21:41:08.0173 0x2040  WinRM - ok
21:41:08.0228 0x2040  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\windows\system32\DRIVERS\WinUsb.sys
21:41:08.0230 0x2040  WinUsb - ok
21:41:08.0276 0x2040  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\windows\System32\wlansvc.dll
21:41:08.0296 0x2040  Wlansvc - ok
21:41:08.0309 0x2040  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\windows\system32\DRIVERS\wmiacpi.sys
21:41:08.0310 0x2040  WmiAcpi - ok
21:41:08.0354 0x2040  [ 38B84C94C5A8AF291ADFEA478AE54F93, 1AC267AC73670BEA5F3785C9AD9DB146F8E993A862C843742B21FDB90D102B2A ] wmiApSrv        C:\windows\system32\wbem\WmiApSrv.exe
21:41:08.0358 0x2040  wmiApSrv - ok
21:41:08.0393 0x2040  WMPNetworkSvc - ok
21:41:08.0487 0x2040  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\windows\System32\wpcsvc.dll
21:41:08.0490 0x2040  WPCSvc - ok
21:41:08.0522 0x2040  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\windows\system32\wpdbusenum.dll
21:41:08.0526 0x2040  WPDBusEnum - ok
21:41:08.0552 0x2040  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\windows\system32\drivers\ws2ifsl.sys
21:41:08.0554 0x2040  ws2ifsl - ok
21:41:08.0590 0x2040  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\windows\System32\wscsvc.dll
21:41:08.0593 0x2040  wscsvc - ok
21:41:08.0662 0x2040  [ 8D918B1DB190A4D9B1753A66FA8C96E8, DB7D2714DC04D2D6999A207D7399A5647C8653E5A1AD80856A65C5B6065AEDFE ] WSDPrintDevice  C:\windows\system32\DRIVERS\WSDPrint.sys
21:41:08.0672 0x2040  WSDPrintDevice - ok
21:41:08.0758 0x2040  [ 4A2A5C50DD1A63577D3ACA94269FBC7F, F75C1906D431CF871AD954218DF32A0F206E45FF49332DEF9F13C0A36A407047 ] WSDScan         C:\windows\system32\DRIVERS\WSDScan.sys
21:41:08.0760 0x2040  WSDScan - ok
21:41:08.0763 0x2040  WSearch - ok
21:41:09.0041 0x2040  [ D9EF901DCA379CFE914E9FA13B73B4C4, 3BE9693B7B2AFEE23D72AF5DA211379724D752F0EC18ACB7D3DE3DDFC5AE0004 ] wuauserv        C:\windows\system32\wuaueng.dll
21:41:09.0085 0x2040  wuauserv - ok
21:41:09.0133 0x2040  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\windows\system32\drivers\WudfPf.sys
21:41:09.0135 0x2040  WudfPf - ok
21:41:09.0203 0x2040  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\windows\system32\DRIVERS\WUDFRd.sys
21:41:09.0210 0x2040  WUDFRd - ok
21:41:09.0288 0x2040  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\windows\System32\WUDFSvc.dll
21:41:09.0291 0x2040  wudfsvc - ok
21:41:09.0334 0x2040  [ FE90B750AB808FB9DD8FBB428B5FF83B, 3F8F592EC813BE292D305A87C5BA852F8BC3D7CE610612D9871F209A17326AA8 ] WwanSvc         C:\windows\System32\wwansvc.dll
21:41:09.0342 0x2040  WwanSvc - ok
21:41:09.0449 0x2040  ================ Scan global ===============================
21:41:09.0555 0x2040  [ BA0CD8C393E8C9F83354106093832C7B, 18D8A4780A2BAA6CEF7FBBBDA0EF6BF2DADF146E1E578A618DD5859E8ADBF1A8 ] C:\windows\system32\basesrv.dll
21:41:09.0596 0x2040  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
21:41:09.0609 0x2040  [ 88EDD0B34EED542745931E581AD21A32, DC2B93E1CEF5B0BCEE08D72669BB0F3AD0E8E6E75BDC08858407ED92F6FFA031 ] C:\windows\system32\winsrv.dll
21:41:09.0653 0x2040  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\windows\system32\sxssrv.dll
21:41:09.0685 0x2040  [ 24ACB7E5BE595468E3B9AA488B9B4FCB, 63541E3432FCE953F266AE553E7A394978D6EE3DB52388D885F668CF42C5E7E2 ] C:\windows\system32\services.exe
21:41:09.0692 0x2040  [ Global ] - ok
21:41:09.0693 0x2040  ================ Scan MBR ==================================
21:41:09.0729 0x2040  [ 2E5DEBB2116B3417023E0D6562D7ED07 ] \Device\Harddisk0\DR0
21:41:09.0972 0x2040  \Device\Harddisk0\DR0 - ok
21:41:09.0973 0x2040  ================ Scan VBR ==================================
21:41:09.0975 0x2040  [ AF6EED2AAA51958942714BC7D8F601E0 ] \Device\Harddisk0\DR0\Partition1
21:41:09.0976 0x2040  \Device\Harddisk0\DR0\Partition1 - ok
21:41:09.0983 0x2040  [ 9C7DFA9A93573706FD2313620AF7B3E4 ] \Device\Harddisk0\DR0\Partition2
21:41:09.0984 0x2040  \Device\Harddisk0\DR0\Partition2 - ok
21:41:10.0000 0x2040  [ 3AE226627FAC383ACAC391A04EEE3F53 ] \Device\Harddisk0\DR0\Partition3
21:41:10.0001 0x2040  \Device\Harddisk0\DR0\Partition3 - ok
21:41:10.0003 0x2040  Waiting for KSN requests completion. In queue: 95
21:41:11.0004 0x2040  Waiting for KSN requests completion. In queue: 95
21:41:12.0004 0x2040  Waiting for KSN requests completion. In queue: 95
21:41:13.0025 0x2040  AV detected via SS2: McAfee Anti-Virus and Anti-Spyware, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 12.8.0.0 ), 0x51000 ( enabled : updated )
21:41:13.0029 0x2040  FW detected via SS2: McAfee Firewall, C:\Program Files\McAfee.com\Agent\mcupdate.exe ( 12.8.0.0 ), 0x51010 ( enabled )
21:41:15.0414 0x2040  ============================================================
21:41:15.0414 0x2040  Scan finished
21:41:15.0414 0x2040  ============================================================
21:41:15.0418 0x0648  Detected object count: 0
21:41:15.0418 0x0648  Actual detected object count: 0
21:41:41.0210 0x0948  Deinitialize success


#5 Elil-Hrair-Rah

Elil-Hrair-Rah
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:09:36 PM

Posted 17 December 2013 - 02:31 AM

# AdwCleaner v3.015 - Report created 16/12/2013 at 21:44:36
# Updated 10/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Laura - LAURA-PC
# Running from : C:\Users\Laura\Desktop\AdwCleaner.exe
# Option : Clean
 
***** [ Services ] *****
 
 
***** [ Files / Folders ] *****
 
 
***** [ Shortcuts ] *****
 
 
***** [ Registry ] *****
 
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5}
 
***** [ Browsers ] *****
 
-\\ Internet Explorer v10.0.9200.16750
 
 
-\\ Mozilla Firefox v
 
[ File : C:\Users\Laura\AppData\Roaming\Mozilla\Firefox\Profiles\wridmgjo.default\prefs.js ]
 
 
-\\ Google Chrome v
 
[ File : C:\Users\Laura\AppData\Local\Google\Chrome\User Data\Default\preferences ]
 
 
*************************
 
AdwCleaner[R0].txt - [961 octets] - [16/12/2013 21:43:35]
AdwCleaner[S0].txt - [881 octets] - [16/12/2013 21:44:36]
 
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [940 octets] ##########
 
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Laura on 16/12/2013 at 21:56:40.89
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
~~~ Services
 
 
 
~~~ Registry Values
 
 
 
~~~ Registry Keys
 
Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\AppDataLow\software\adawarebp
 
 
 
~~~ Files
 
 
 
~~~ Folders
 
 
 
~~~ Event Viewer Logs were cleared
 
 
 
 
 
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 16/12/2013 at 22:06:30.53
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
 
 
 
 
 
ESET Log
 
 
C:\Windows\SysWOW64\Adobe\Shockwave 12\gt.exe Win32/Bundled.Toolbar.Google.D application
C:\Users\Laura\Downloads\ccsetup408.exe Win32/Bundled.Toolbar.Google.D application cleaned by deleting - quarantined
C:\Windows\System32\Adobe\Shockwave 12\gt.exe Win32/Bundled.Toolbar.Google.D application cleaned by deleting - quarantined
D:\LAURA-PC\Backup Set 2013-08-16 144228\Backup Files 2013-08-16 144228\Backup files 34.zip Win32/Bundled.Toolbar.Google.D application deleted - quarantined
 


#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:36 PM

Posted 17 December 2013 - 12:27 PM

Hi ,OK not too bad .. Looks clean.
 
You should uninstall these
 
Java 7 Update 45 (Version: 7.0.450)
if you don't use these
Java SE Development Kit 7 Update 45 (64-bit) (Version: 1.7.0.450)
Java SE Development Kit 7 Update 7 (64-bit) (Version: 1.7.0.70)
 
 

Empty your temp folders using TFC (Temporary File Cleaner)
  • Please download TFC by Old Timer and save it to your desktop.
    alternate download link
  • Save any unsaved work. (TFC will close ALL open programs including your browser!)
  • Double-click on TFC.exe to run it. (If you are using Vista, right-click on the file and choose "Run As Administrator".)
  • Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
  • Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway allowing Windows to load normally (not into Safe Mode) to ensure a complete clean.
I did not see an antivirus application. Any reason for that?

How is it now as maybe we will run a system file check.

Edited by boopme, 17 December 2013 - 12:29 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Elil-Hrair-Rah

Elil-Hrair-Rah
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:09:36 PM

Posted 17 December 2013 - 01:37 PM

Hi boopme. Thank you ever so much for the help.

I will uninstall the Java and Development Kit (I needed it to do something at some point and for the life of me I cannot remember what, so I think it is safe to say I no longer need it).

Due to forgetfulness, I do not have my laptop with me at the moment, but I will run TFC .exe when I am back with it tomorrow (sorry).

I should have an antivirus application - BT Net Protect Plus, which is McAfee, but free with my internet provider. It is running on my laptop so should be hidden somewhere above.

I was on my laptop earlier and it was running a bit more happily - it was not as slow as it had been.

I will uninstall those programmes and run TFC tomorrow, and get back to you, if that is alright.

Thank you again for the help.

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:36 PM

Posted 17 December 2013 - 02:03 PM

Hi EHR
Correct, I missed that... BT NetProtect Plus (Version: 12.8.903)

Take those off, reboot and I think you should do this any way and then see how it is.
When you have the time.



Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.


Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

p22002979.gif



Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

p22002980.gif


Go to Step 4 and under "System Restore" click on Create button:

p22002982.gif


Go to Start Repairs tab and click Start button.

Leave all checkmarks as they're.
NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

Click on Start button.

p22003030.gif

Post Windows Repair log (_windows_repair_log.txt) which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 Elil-Hrair-Rah

Elil-Hrair-Rah
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:09:36 PM

Posted 18 December 2013 - 02:03 PM

Hi boopme. Thank you again for helping me.

 

I have uninstalled the Java bits and ran TFC.exe, which cleaned up a lot of stuff.

 

I downloaded Windows Repair (All-in-One) and ran the Check Disk and System File Check. I ran the repairs as instructed.

 

I must say my computer is now running better than I can remember it running before, thank you very much.

 

One thing - when the Start Repairs was running, I noticed the checkmarks that were ticked by default were different to the ones in the picture, so I might not have done it right, but here is the _Windows_Repair_Log.txt log anyway:

 

Starting Repairs...
   Start (18/12/2013 18:18:49)
 
01 - Reset Registry Permissions 01/03
   HKEY_CURRENT_USER & Sub Keys
   Start (18/12/2013 18:18:49)
   Running Repair Under Current User Account
   Done (18/12/2013 18:18:56)
 
01 - Reset Registry Permissions 02/03
   HKEY_LOCAL_MACHINE & Sub Keys
   Start (18/12/2013 18:18:56)
   Running Repair Under System Account
   Done (18/12/2013 18:20:28)
 
01 - Reset Registry Permissions 03/03
   HKEY_CLASSES_ROOT & Sub Keys
   Start (18/12/2013 18:20:28)
   Running Repair Under System Account
   Done (18/12/2013 18:21:19)
 
03 - Register System Files
   Start (18/12/2013 18:21:19)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:22:22)
 
04 - Repair WMI
   Start (18/12/2013 18:22:22)
   Running Repair Under Current User Account
   Done (18/12/2013 18:26:53)
 
05 - Repair Windows Firewall
   Start (18/12/2013 18:26:53)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:27:25)
 
06 - Repair Internet Explorer
   Start (18/12/2013 18:27:25)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:28:25)
 
07 - Repair MDAC/MS Jet
   Start (18/12/2013 18:28:25)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:28:52)
 
08 - Repair Hosts File
   Start (18/12/2013 18:28:52)
   Running Repair Under System Account
   Done (18/12/2013 18:28:55)
 
09 - Remove Policies Set By Infections
   Start (18/12/2013 18:28:55)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:29:00)
 
11 - Repair Icons
   Start (18/12/2013 18:29:00)
   Running Repair Under System Account
   Done (18/12/2013 18:29:02)
 
12 - Repair Winsock & DNS Cache
   Start (18/12/2013 18:29:02)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:29:17)
 
14 - Repair Proxy Settings
   Start (18/12/2013 18:29:17)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:29:22)
 
16 - Repair Windows Updates
   Start (18/12/2013 18:29:22)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:30:03)
 
17 - Repair CD/DVD Missing/Not Working
   Start (18/12/2013 18:30:03)
   Done (18/12/2013 18:30:03)
 
18 - Repair Volume Shadow Copy Service
   Start (18/12/2013 18:30:03)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:30:12)
 
20 - Repair MSI (Windows Installer)
   Start (18/12/2013 18:30:12)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:30:25)
 
22.01 - Repair bat Association
   Start (18/12/2013 18:30:25)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:30:30)
 
22.02 - Repair cmd Association
   Start (18/12/2013 18:30:30)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:30:35)
 
22.03 - Repair com Association
   Start (18/12/2013 18:30:35)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:30:40)
 
22.04 - Repair Directory Association
   Start (18/12/2013 18:30:40)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:30:45)
 
22.05 - Repair Drive Association
   Start (18/12/2013 18:30:45)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:30:49)
 
22.06 - Repair exe Association
   Start (18/12/2013 18:30:49)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:30:54)
 
22.07 - Repair Folder Association
   Start (18/12/2013 18:30:54)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:30:59)
 
22.08 - Repair inf Association
   Start (18/12/2013 18:30:59)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:31:04)
 
22.09 - Repair lnk (Shortcuts) Association
   Start (18/12/2013 18:31:04)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:31:09)
 
22.10 - Repair msc Association
   Start (18/12/2013 18:31:09)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:31:13)
 
22.11 - Repair reg Association
   Start (18/12/2013 18:31:13)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:31:18)
 
22.12 - Repair scr Association
   Start (18/12/2013 18:31:18)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:31:23)
 
23 - Repair Windows Safe Mode
   Start (18/12/2013 18:31:23)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:31:28)
 
24 - Repair Print Spooler
   Start (18/12/2013 18:31:28)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:31:41)
 
25 - Restore Important Windows Services
   Start (18/12/2013 18:31:41)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:31:52)
 
26 - Set Windows Services To Default Startup
   Start (18/12/2013 18:31:52)
   Running Repair Under Current User Account
   Running Repair Under System Account
   Done (18/12/2013 18:32:01)
 
   Skipping Repair.
   Repair is for Windows v6.2 (Windows 8 & Newer) or higher.
   Current version: 6.1
 
Cleaning up empty logs...
 
All Selected Repairs Done.
   Done (18/12/2013 18:32:01)
   Total Repair Time: 00:13:12
 
 
...YOU MUST RESTART YOUR SYSTEM...
   Running Repair Under Current User Account


#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:36 PM

Posted 18 December 2013 - 03:20 PM

You're welcome I see they changed it a bit after I poste..

You can run it again if you want.

Download Windows Repair (All in One) from this site

Install the program then run it.

NOTE 1. In Windows Vista, 7 and 8 right click on the program, click "Run As Administrator".
NOTE 2. Disable your antivirus program before running Windows Repair.


Go to Step 2 and click on Check button next to 1. See If Check Disk Is Needed.
If the tool that the Check Disk is needed click on Do It button next to 2. Check Disk.
In that case make sure you restart computer.

p22004342.gif


Once the above is done go to Step 3 and allow it to run System File Check by clicking on Do It button:

p22004343.gif


Go to Step 4 and under "System Restore" click on Create button:

p22004346.gif


Go to Start Repairs tab and click Start button.

Leave all checkmarks as they're.
NOTE for Windows 8 users. Reset Registry Permissions is NOT checked by design.

Click on Start button.

p22004347.gif

Post Windows Repair log which is located in the following folder:
64-bit systems - C:\Program Files (x86)\Tweaking.com\Windows Repair (All in One)\Logs
32-bit systems - C:\Program Files\Tweaking.com\Windows Repair (All in One)\Logs
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 Elil-Hrair-Rah

Elil-Hrair-Rah
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:09:36 PM

Posted 18 December 2013 - 04:30 PM

Hi boopme.

 

I ran it again, but I think it was the same in the end.

 

Thank you for all the help, my computer is running fine now - in fact it seems to be running better than it has done for quite a while :) . I am glad it turned out not to have been malware in the end.

 

Is there anything else I need to do?



#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,569 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:36 PM

Posted 18 December 2013 - 08:43 PM

Excellent !! No it's good now.
Keep windows, adobe and Java updated.
Check to see if your machine needs to be Defragmented

 

When you install app/updates /tools.. use the custom install. this way you can UNcheck any extra things like Toolbars etc... they try to slip in with the install.

 

You're welcome :santa:


How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 Elil-Hrair-Rah

Elil-Hrair-Rah
  • Topic Starter

  • Members
  • 36 posts
  • OFFLINE
  •  
  • Local time:09:36 PM

Posted 19 December 2013 - 02:39 PM

I will do, thank you very much  :)






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users